feature: add authentication guard

Author: luanpersini

src/api/guards/AuthenticationGuard.ts

@@ -0,0 +1,17 @@
+import { InfrastructureInjectionList } from '@infrastructure/InfrastructureInjectionList'
+import { IAuthenticationClient } from '@modules/shared/infrastructure/IAuthenticationClient'
+import { CanActivate, ExecutionContext, Inject, Injectable } from '@nestjs/common'
+
+@Injectable()
+export class AuthenticationGuard implements CanActivate {
+ constructor(
+ @Inject(InfrastructureInjectionList.AUTHENTICATION_CLIENT.provide)
+ private readonly authenticationClient: IAuthenticationClient
+ ) {}
+
+ async canActivate(context: ExecutionContext): Promise<boolean> {
+ const req = context.switchToHttp().getRequest()
+ 
+ return await this.authenticationClient.validateLogin(req.headers.authorization)
+ }
+}

src/app.module.ts

@@ -1,8 +1,10 @@
-import { AuthenticationModule } from './modules/authentication/authentication.module'
+import { InfrastructureModule } from '@infrastructure/infrastructure.module'
+import { UsersModule } from '@modules/users/users.module'
 import { Module } from '@nestjs/common'
+import { AuthenticationModule } from './modules/authentication/authentication.module'
 
 @Module({
- imports: [AuthenticationModule],
+ imports: [AuthenticationModule, UsersModule, InfrastructureModule],
  controllers: [],
  providers: []
 })

src/infrastructure/clients/AuthenticationClient.ts

@@ -1,14 +1,16 @@
 import { EnumCountry } from '@modules/authentication/presentation/dtos/enums/EnumCountry'
 import { AccountDto } from '@modules/shared/presentation/dto/AccountDto'
-import { Injectable } from '@nestjs/common'
-import { clientErrorMessages, ClientResult, IAuthenticationClient } from './IAuthenticationClient'
+import { BadRequestException, Injectable } from '@nestjs/common'
+import * as crypto from 'node:crypto'
+import { IAuthenticationClient } from '../../modules/shared/infrastructure/IAuthenticationClient'
+import { ClientErrorMessages } from './ClientErrorMessages'
 
 //Fake client adapter simulating requests to a third party authentication API
 
 export const account1: AccountDto = {
  id: 'bd10c4e7-6385-41a6-a9d1-90c0ee80db0d',
  name: 'Name One',
- email: 'one@mail.com', 
+ email: 'one@mail.com',
  age: 11,
  password: 'user1',
  address: {
@@ -20,55 +22,55 @@ export const account1: AccountDto = {
 export const account2: AccountDto = {
  id: 'e77b7a0a-b26e-438d-8bff-d6160c98fb4a',
  name: 'Name Two',
- email: 'two@mail.com', 
+ email: 'two@mail.com',
  password: 'user2',
  age: 22,
  address: {
- country:  EnumCountry.US
+ country: EnumCountry.US
  }
 }
 
 const accounts: AccountDto[] = [account1, account2]
 
-
+const loginTokens: string[] = []
 @Injectable()
 export class AuthenticationClient implements IAuthenticationClient {
- async getAccountByEmail(email: string): Promise<AccountDto> {
- return accounts.find((account) => account.email === email)
- }
- 
- async createAccount(account: AccountDto): Promise<ClientResult<AccountDto>> {
+ async createAccount(account: AccountDto): Promise<AccountDto> {
  const accountExists = await this.getAccountByEmail(account.email)
  if (accountExists) {
- return {status: 400, data: clientErrorMessages.ACCOUNT_ALREADY_EXISTS}
+ throw new BadRequestException(ClientErrorMessages.ACCOUNT_ALREADY_EXISTS)
  }
- accounts.push(account) 
- return {status: 200, data: account} 
+ accounts.push(account)
+ return account
  }
 
- async login(email: string, password: string): Promise<ClientResult<string>> {
+ async login(email: string, password: string): Promise<string> {
  const account = await this.getAccountByEmail(email)
- if (!account) {
- return {status: 400, data: clientErrorMessages.ACCOUNT_NOT_FOUND}
+ if (account && account.password === password) {
+ const loginToken = crypto.randomUUID() //Generate fake token for login
+ loginTokens.push(loginToken)
+ return loginToken
  }
- if(account.password !== password){
- return {status: 400, data: clientErrorMessages.INVALID_CREDENTIALS}
- }
- return {status: 200, data: 'SuccessLoginString'}
+ throw new BadRequestException(ClientErrorMessages.INVALID_CREDENTIALS)
  }
 
- async deleteAccountByEmail(email: string): Promise<boolean> {
- const accountExists = await this.getAccountByEmail(email) 
- if(!accountExists){
- return false 
- }
-
- accounts.splice(accounts.indexOf(accountExists), 1)
- return true 
+ async validateLogin(loginToken: string): Promise<boolean> {
+ const isLoggedIn = loginTokens.find((token) => token === loginToken)
+ 
+ if (isLoggedIn) return true
+ 
+ return false
  }
 
- // TODO replace Account for a DTO
  async getAllAccounts(): Promise<AccountDto[]> {
  return Promise.resolve(accounts)
  }
+
+ async getAccountByEmail(email: string): Promise<AccountDto> {
+ return accounts.find((account) => account.email === email)
+ }
+
+ async getAccountById(id: string): Promise<AccountDto> {
+ return accounts.find((account) => account.id === id)
+ }
 }

src/infrastructure/clients/ClientErrorMessages.ts

@@ -0,0 +1,5 @@
+export enum ClientErrorMessages {
+ ACCOUNT_NOT_FOUND = 'An account with the given email was not found.',
+ ACCOUNT_ALREADY_EXISTS = 'An account with the given email already exists.',
+ INVALID_CREDENTIALS = 'Invalid email or password.',
+}

src/infrastructure/clients/IAuthenticationClient.ts

@@ -1,9 +1,9 @@
 import { InfrastructureInjectionList } from '@infrastructure/InfrastructureInjectionList'
+import { AccountDto } from '@modules/shared/presentation/dto/AccountDto'
 import { BadRequestException, Inject, Injectable, InternalServerErrorException } from '@nestjs/common'
-import { IAuthenticationClient } from '../../../infrastructure/clients/IAuthenticationClient'
+import { IAuthenticationClient } from '../../shared/infrastructure/IAuthenticationClient'
 import { Account } from '../domain/entities/Account'
 import { AuthenticationErrorMessages } from '../domain/errors/AuthenticationErrorMessages'
-import { ItemAlreadyExistsError } from '../domain/errors/itemAlreadyExists.error'
 import { CreateAccountDto } from '../presentation/dtos/CreateAccountDto'
 import { LoginDto } from '../presentation/dtos/LoginDto'
 import { IAuthenticationService } from './IAuthenticationService'
@@ -15,15 +15,13 @@ export class AuthenticationService implements IAuthenticationService {
  private readonly authenticationClient: IAuthenticationClient
  ) {}
 
- async createAccount(body: CreateAccountDto): Promise<Account> {
+ async createAccount(body: CreateAccountDto): Promise<AccountDto> {
  this.validateZipCode(body)
  const newAccount = await this.authenticationClient.createAccount(new Account(body))
- if (newAccount.status === 200) return newAccount.data as Account
+ 
+ if (newAccount) return newAccount
 
- if (newAccount?.status === 400) {
- throw new BadRequestException(new ItemAlreadyExistsError('Account', 'Email'))
- }
- throw new InternalServerErrorException(AuthenticationErrorMessages.AUTHENTICATION_CLIENT_ERROR)
+ throw new InternalServerErrorException(AuthenticationErrorMessages.SIGNUP_ERROR)
  }
 
  //Useless business method created to simulate Throw - Reject on tests (authentication.service.spec.ts)
@@ -42,13 +40,8 @@ export class AuthenticationService implements IAuthenticationService {
  async login(body: LoginDto): Promise<string> {
  const login = await this.authenticationClient.login(body.email, body.password)
 
- if (login?.status === 200) {
- return login.data
- }
-
- if (login?.status === 400) {
- throw new BadRequestException(AuthenticationErrorMessages.INVALID_CREDENTIALS)
- }
- throw new InternalServerErrorException(AuthenticationErrorMessages.AUTHENTICATION_CLIENT_ERROR)
+ if (login) return login
+ 
+ throw new InternalServerErrorException(AuthenticationErrorMessages.LOGIN_ERROR)
  }
 }

src/modules/authentication/application/AuthenticationService.ts

@@ -1,7 +1,7 @@
-import { Account } from '../domain/entities/Account'
+import { AccountDto } from '@modules/shared/presentation/dto/AccountDto'
 import { CreateAccountDto } from '../presentation/dtos/CreateAccountDto'
 import { LoginDto } from '../presentation/dtos/LoginDto'
 export interface IAuthenticationService {
- createAccount(body: CreateAccountDto): Promise<Account>
+ createAccount(body: CreateAccountDto): Promise<AccountDto>
  login(body: LoginDto): Promise<string>
 }

src/modules/authentication/application/IAuthenticationService.ts

@@ -1,5 +1,6 @@
 export enum AuthenticationErrorMessages { 
  INVALID_CREDENTIALS = 'Invalid email or password.',
  INVALID_ZIPCODE = 'Invalid ZipCode',
- AUTHENTICATION_CLIENT_ERROR = 'Authentication Client Error'
+ SIGNUP_ERROR = 'There was an unexpected error when trying to create your account. Please try again later.',
+ LOGIN_ERROR = 'There was an unexpected error when trying to authenticate. Please try again later.'
 }

src/modules/authentication/domain/errors/AuthenticationErrorMessages.ts

@@ -21,9 +21,3 @@ content-type: application/json
  "email": "email@email.com",
  "password": "12345" 
 }
-
-###
-GET http://localhost:3003/getAllAccounts
-content-type: application/json
-
-{}

src/modules/authentication/presentation/authentication.http

@@ -0,0 +1,15 @@
+import { AccountDto } from '@modules/shared/presentation/dto/AccountDto'
+
+export interface ClientResult<T> {
+ status: number
+ data: T | string
+}
+
+export interface IAuthenticationClient { 
+ createAccount(account: AccountDto): Promise<AccountDto>
+ login(email: string, password: string): Promise<string> 
+ validateLogin(loginToken: string): Promise<boolean>
+ getAllAccounts(): Promise<AccountDto[]> 
+ getAccountByEmail(email: string): Promise<AccountDto>
+ getAccountById(id: string): Promise<AccountDto>
+}