mjs

index.mjs

@@ -0,0 +1,42 @@
+import { Authorizer } from '@authorizerdev/authorizer-js';
+import { Server } from '@hocuspocus/server';
+
+const authorizer = new Authorizer({
+  clientID: process.env.AUTHORIZER_CLIENT_ID,
+  authorizerURL: 'https://auth.discours.io',
+  redirectURL: 'https://testing.discours.io',
+});
+
+const startServer = async () => {
+  const server = await Server.configure({
+    port: 4242,
+    async onConnect({ connection }) {
+      connection.requiresAuthentication = true;
+    },
+    async onAuthenticate(data) {
+      if (data.requestHeaders) {
+        const params = {
+          token_type: 'access_token',
+          token: data.requestHeaders['authorization'] || '',
+        };
+        if (params.token) {
+          const response = await authorizer.validateJWTToken(params);
+          if (response?.data?.is_valid) {
+            const { sub: user, allowed_roles: roles } = response.data.claims;
+            console.debug(`user_id: ${user} roles: ${roles}`);
+            return {
+              id: user,
+              roles,
+            };
+          }
+          console.error('no valid auth token presented');
+          throw new Error('Not authorized!');
+        }
+      }
+    },
+  }).listen();
+
+  server.listen();
+};
+
+startServer();