Secure your code as it's written. Use Snyk Code to scan source code in minutes - no build needed - and fix issues immediately.
// allow only users in the ApiMessageWrite and ApiMessageWriteLimited groups
AzureApiAuthMiddleware(
new Set([UserGroup.ApiMessageWrite, UserGroup.ApiLimitedMessageWrite])
),
// extracts the client IP from the request
ClientIpMiddleware,
// extracts custom user attributes from the request
AzureUserAttributesMiddleware(serviceModel),
// extracts the fiscal code from the request params
FiscalCodeMiddleware,
// extracts the create message payload from the request body
MessagePayloadMiddleware
);
return wrapRequestHandler(
middlewaresWrap(
checkSourceIpForHandler(handler, (_, __, c, u, ___, ____) =>
ipTuple(c, u)
)
)
);
}
serviceModel: ServiceModel,
senderServiceModel: SenderServiceModel
): express.RequestHandler {
const handler = GetServicesByRecipientHandler(senderServiceModel);
const azureUserAttributesMiddleware = AzureUserAttributesMiddleware(
serviceModel
);
const middlewaresWrap = withRequestMiddlewares(
AzureApiAuthMiddleware(new Set([UserGroup.ApiServiceByRecipientQuery])),
ClientIpMiddleware,
azureUserAttributesMiddleware,
RequiredParamMiddleware("fiscalcode", FiscalCode)
);
return wrapRequestHandler(
middlewaresWrap(
checkSourceIpForHandler(handler, (_, c, u, __) => ipTuple(c, u))
)
);
}
notificationModel,
notificationStatusModel,
blobService
);
const middlewaresWrap = withRequestMiddlewares(
AzureApiAuthMiddleware(
new Set([UserGroup.ApiMessageRead, UserGroup.ApiMessageList])
),
ClientIpMiddleware,
AzureUserAttributesMiddleware(serviceModel),
FiscalCodeMiddleware,
RequiredParamMiddleware("id", NonEmptyString)
);
return wrapRequestHandler(
middlewaresWrap(
checkSourceIpForHandler(handler, (_, c, u, __, ___) => ipTuple(c, u))
)
);
}
serviceModel: ServiceModel
): express.RequestHandler {
const handler = UpdateServiceHandler(serviceModel);
const azureUserAttributesMiddleware = AzureUserAttributesMiddleware(
serviceModel
);
const middlewaresWrap = withRequestMiddlewares(
AzureApiAuthMiddleware(new Set([UserGroup.ApiServiceWrite])),
ClientIpMiddleware,
azureUserAttributesMiddleware,
requiredServiceIdMiddleware,
ServicePayloadMiddleware
);
return wrapRequestHandler(
middlewaresWrap(
checkSourceIpForHandler(handler, (_, c, u, __, ___) => ipTuple(c, u))
)
);
}