encode buffer to hex when decoding the jwt, not everytime we use it

2025-12-13 07:45:54 +00:00 · 2021-11-17 12:51:58 +01:00 · 2021-11-17 12:51:58 +01:00 · 8eb5c74ba8
commit 8eb5c74ba8
parent 0341ae0d13
5 changed files with 6 additions and 11 deletions
--- a/backend/src/graphql/directive/isAuthorized.ts
+++ b/backend/src/graphql/directive/isAuthorized.ts
@ -10,7 +10,7 @@ const isAuthorized: AuthChecker<any> = async (
 ) => {
  if (context.token) {
    const decoded = decode(context.token)
-    context.pubKey = decoded.pubKey
+    context.pubKey = Buffer.from(decoded.pubKey).toString('hex')
    context.setHeaders.push({ key: 'token', value: encode(decoded.pubKey) })
    return true
  }
--- a/backend/src/graphql/resolver/BalanceResolver.ts
+++ b/backend/src/graphql/resolver/BalanceResolver.ts
@ -18,8 +18,7 @@ export class BalanceResolver {
    const balanceRepository = getCustomRepository(BalanceRepository)
    const userRepository = getCustomRepository(UserRepository)

-    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
-    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
+    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
    const balanceEntity = await balanceRepository.findByUser(userEntity.id)
    const now = new Date()

--- a/backend/src/graphql/resolver/GdtResolver.ts
+++ b/backend/src/graphql/resolver/GdtResolver.ts
@ -22,8 +22,7 @@ export class GdtResolver {
  ): Promise<GdtEntryList> {
    // load user
    const userRepository = getCustomRepository(UserRepository)
-    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
-    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
+    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)

    const resultGDT = await apiGet(
      `${CONFIG.GDT_API_URL}/GdtEntries/listPerEmailApi/${userEntity.email}/${currentPage}/${pageSize}/${order}`,
--- a/backend/src/graphql/resolver/TransactionResolver.ts
+++ b/backend/src/graphql/resolver/TransactionResolver.ts
@ -473,8 +473,7 @@ export class TransactionResolver {
  ): Promise<TransactionList> {
    // load user
    const userRepository = getCustomRepository(UserRepository)
-    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
-    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
+    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)

    const transactions = await listTransactions(currentPage, pageSize, order, userEntity)

@ -509,8 +508,7 @@ export class TransactionResolver {
    // TODO this is subject to replay attacks
    // validate sender user (logged in)
    const userRepository = getCustomRepository(UserRepository)
-    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
-    const senderUser = await userRepository.findByPubkeyHex(pubKeyString)
+    const senderUser = await userRepository.findByPubkeyHex(context.pubKey)
    if (senderUser.pubkey.length !== 32) {
      throw new Error('invalid sender public key')
    }
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@ -621,8 +621,7 @@ export class UserResolver {
  @Query(() => Boolean)
  async hasElopage(@Ctx() context: any): Promise<boolean> {
    const userRepository = getCustomRepository(UserRepository)
-    const pubKey = Buffer.from(context.pubKey).toString('hex')
-    const userEntity = await userRepository.findByPubkeyHex(pubKey).catch()
+    const userEntity = await userRepository.findByPubkeyHex(context.pubKey).catch()
    if (!userEntity) {
      return false
    }