mirror of
https://github.com/hexastack/hexabot
synced 2024-11-24 13:05:15 +00:00
51 lines
1.6 KiB
TypeScript
51 lines
1.6 KiB
TypeScript
/*
|
|
* Copyright © 2024 Hexastack. All rights reserved.
|
|
*
|
|
* Licensed under the GNU Affero General Public License v3.0 (AGPLv3) with the following additional terms:
|
|
* 1. The name "Hexabot" is a trademark of Hexastack. You may not use this name in derivative works without express written permission.
|
|
* 2. All derivative works must include clear attribution to the original creator and software, Hexastack and Hexabot, in a prominent location (e.g., in the software's "About" section, documentation, and README file).
|
|
*/
|
|
|
|
import { Controller, Get, Req, Session } from '@nestjs/common';
|
|
import { CsrfCheck, CsrfGenAuth } from '@tekuconcept/nestjs-csrf';
|
|
import { CsrfGenerator } from '@tekuconcept/nestjs-csrf/dist/csrf.generator';
|
|
import { Request } from 'express';
|
|
import { Session as ExpressSession } from 'express-session';
|
|
|
|
import { AppService } from './app.service';
|
|
import { LoggerService } from './logger/logger.service';
|
|
import { Roles } from './utils/decorators/roles.decorator';
|
|
|
|
@Controller()
|
|
export class AppController {
|
|
constructor(
|
|
private readonly appService: AppService,
|
|
private readonly logger: LoggerService,
|
|
) {}
|
|
|
|
@Roles('public')
|
|
@Get()
|
|
getHello(): string {
|
|
return this.appService.getHello();
|
|
}
|
|
|
|
@Roles('public')
|
|
@Get('csrftoken')
|
|
@CsrfCheck(false)
|
|
@CsrfGenAuth(true)
|
|
csrf(@Session() session: ExpressSession) {
|
|
return {
|
|
_csrf: session?.csrfSecret
|
|
? new CsrfGenerator().create(session.csrfSecret)
|
|
: '',
|
|
};
|
|
}
|
|
|
|
@Roles('public')
|
|
@Get('__getcookie')
|
|
cookies(@Req() req: Request): string {
|
|
req.session.anonymous = true;
|
|
return '';
|
|
}
|
|
}
|