Adding Basic API Documentation

2019-03-14 18:10:39 -04:00
parent e09c6df9f6
commit 18ea5de8aa
21 changed files with 828 additions and 97 deletions
--- a/src/api/oauth/index.ts
+++ b/src/api/oauth/index.ts
@ -5,9 +5,59 @@ import Public from "./public";
 import RefreshTokenRoute from "./refresh";

 const OAuthRoue: Router = Router();
+/**
+ * @api {post} /oauth/auth
+ * @apiName OAuthAuth
+ * 
+ * @apiGroup oauth
+ * @apiPermission user Special required
+ * 
+ * @apiParam {String} response_type must be "code" others are not supported
+ * @apiParam {String} client_id ClientID
+ * @apiParam {String} redirect_uri The URI to redirect with code
+ * @apiParam {String} scope Scope that contains the requested permissions (comma seperated list of permissions)
+ * @apiParam {String} state State, that will be passed to redirect_uri for client
+ * @apiParam {String} nored Deactivates the Redirect response from server and instead returns the redirect URI in JSON response
+ */
 OAuthRoue.post("/auth", AuthRoute);
+
+/**
+ * @api {get} /oauth/jwt
+ * @apiName OAuthJwt
+ * 
+ * @apiGroup oauth
+ * @apiPermission none
+ * 
+ * @apiParam {String} refreshtoken
+ * 
+ * @apiSuccess {String} token The JWT that allowes the application to access the recources granted for refresh token
+ */
 OAuthRoue.get("/jwt", JWTRoute)
+
+/**
+ * @api {get} /oauth/public
+ * @apiName OAuthPublic
+ * 
+ * @apiGroup oauth
+ * @apiPermission none
+ * 
+ * @apiSuccess {String} public_key The applications public_key. Used to verify JWT.
+ */
 OAuthRoue.get("/public", Public)
+
+/**
+ * @api {get} /oauth/refresh
+ * @apiName OAuthRefreshGet
+ * 
+ * @apiGroup oauth
+ */
 OAuthRoue.get("/refresh", RefreshTokenRoute);
+
+/**
+ * @api {post} /oauth/refresh
+ * @apiName OAuthRefreshPost
+ * 
+ * @apiGroup oauth
+ */
 OAuthRoue.post("/refresh", RefreshTokenRoute);
 export default OAuthRoue;
--- a/src/api/oauth/jwt.ts
+++ b/src/api/oauth/jwt.ts
@ -3,7 +3,6 @@ import promiseMiddleware from "../../helper/promiseMiddleware";
 import RequestError, { HttpStatusCode } from "../../helper/request_error";
 import RefreshToken from "../../models/refresh_token";
 import User from "../../models/user";
-import Permission from "../../models/permissions";
 import Client from "../../models/client";
 import getOAuthJWT from "../../helper/jwt";

@ -16,7 +15,9 @@ const JWTRoute = promiseMiddleware(async (req: Request, res: Response) => {

   let user = await User.findById(token.user);
   if (!user) {
-      //TODO handle error!
+      token.valid = false;
+      await RefreshToken.save(token);
+      throw new RequestError(req.__("Invalid token"), HttpStatusCode.BAD_REQUEST);
   }

   let client = await Client.findById(token.client);