"use strict"; var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) { var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d; if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc); else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r; return c > 3 && r && Object.defineProperty(target, key, r), r; }; var __metadata = (this && this.__metadata) || function (k, v) { if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v); }; Object.defineProperty(exports, "__esModule", { value: true }); exports.AuthMiddleware = void 0; const common_1 = require("@nestjs/common"); const token_service_1 = require("../services/token.service"); let AuthMiddleware = class AuthMiddleware { constructor(tokenService) { this.tokenService = tokenService; } use(req, res, next) { const authHeader = req.headers['authorization']; if (!authHeader || !authHeader.startsWith('Bearer ')) { throw new common_1.HttpException({ requestError: { serviceException: { messageId: '401', text: 'Missing or invalid authorization header', }, }, }, common_1.HttpStatus.UNAUTHORIZED); } const token = authHeader.substring(7); if (!this.tokenService.validateToken(token)) { throw new common_1.HttpException({ requestError: { serviceException: { messageId: '401', text: 'Invalid or expired token', }, }, }, common_1.HttpStatus.UNAUTHORIZED); } next(); } }; exports.AuthMiddleware = AuthMiddleware; exports.AuthMiddleware = AuthMiddleware = __decorate([ (0, common_1.Injectable)(), __metadata("design:paramtypes", [token_service_1.TokenService]) ], AuthMiddleware); //# sourceMappingURL=auth.middleware.js.map