budibase/packages/auth/src/middleware/passport/local.js

const jwt = require("jsonwebtoken")
const { UserStatus } = require("../../constants")
const { compare } = require("../../hashing")
const env = require("../../environment")
const { getGlobalUserByEmail } = require("../../utils")

const INVALID_ERR = "Invalid Credentials"

exports.options = {}

/**
 * Passport Local Authentication Middleware.
 * @param {*} email - username to login with
 * @param {*} password - plain text password to log in with
 * @param {*} done - callback from passport to return user information and errors
 * @returns The authenticated user, or errors if they occur
 */
exports.authenticate = async function (email, password, done) {
  if (!email) return done(null, false, "Email Required.")
  if (!password) return done(null, false, "Password Required.")

  const dbUser = await getGlobalUserByEmail(email)
  if (dbUser == null) {
    return done(null, false, { message: "User not found" })
  }

  // check that the user is currently inactive, if this is the case throw invalid
  if (dbUser.status === UserStatus.INACTIVE) {
    return done(null, false, { message: INVALID_ERR })
  }

  // authenticate
  if (await compare(password, dbUser.password)) {
    const payload = {
      userId: dbUser._id,
    }

    dbUser.token = jwt.sign(payload, env.JWT_SECRET, {
      expiresIn: "1 day",
    })
    // Remove users password in payload
    delete dbUser.password

    return done(null, dbUser)
  } else {
    done(new Error(INVALID_ERR), false)
  }
}
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00			`const jwt = require("jsonwebtoken")`
JWT auth on admin endpoints 2021-04-07 16:15:05 +02:00			`const { UserStatus } = require("../../constants")`
			`const { compare } = require("../../hashing")`
Updating environment in auth package, easily see required env settings. 2021-04-14 15:13:48 +02:00			`const env = require("../../environment")`
Updating auth package to remove use of email address (bar logging in). 2021-04-19 18:31:47 +02:00			`const { getGlobalUserByEmail } = require("../../utils")`
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00
			`const INVALID_ERR = "Invalid Credentials"`

			`exports.options = {}`

			`/**`
			`* Passport Local Authentication Middleware.`
Updating auth package to remove use of email address (bar logging in). 2021-04-19 18:31:47 +02:00			`* @param {*} email - username to login with`
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00			`* @param {*} password - plain text password to log in with`
			`* @param {*} done - callback from passport to return user information and errors`
			`* @returns The authenticated user, or errors if they occur`
			`*/`
lint:fix 2021-05-03 09:31:09 +02:00			`exports.authenticate = async function (email, password, done) {`
Updating auth package to remove use of email address (bar logging in). 2021-04-19 18:31:47 +02:00			`if (!email) return done(null, false, "Email Required.")`
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00			`if (!password) return done(null, false, "Password Required.")`

Swapping over everything to use the new user ID and updating everything after some end to end testing. 2021-04-20 18:17:44 +02:00			`const dbUser = await getGlobalUserByEmail(email)`
			`if (dbUser == null) {`
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00			`return done(null, false, { message: "User not found" })`
			`}`

			`// check that the user is currently inactive, if this is the case throw invalid`
			`if (dbUser.status === UserStatus.INACTIVE) {`
			`return done(null, false, { message: INVALID_ERR })`
			`}`

			`// authenticate`
			`if (await compare(password, dbUser.password)) {`
			`const payload = {`
Authentication working on builder homepage, integration with currentapp middleware 2021-04-13 12:56:57 +02:00			`userId: dbUser._id,`
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00			`}`

Updating environment in auth package, easily see required env settings. 2021-04-14 15:13:48 +02:00			`dbUser.token = jwt.sign(payload, env.JWT_SECRET, {`
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00			`expiresIn: "1 day",`
			`})`
groundwork for budibase auth lib 2021-04-07 12:33:16 +02:00			`// Remove users password in payload`
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00			`delete dbUser.password`
groundwork for budibase auth lib 2021-04-07 12:33:16 +02:00
basic couchDB authentication using passport 2021-04-01 21:34:43 +02:00			`return done(null, dbUser)`
			`} else {`
			`done(new Error(INVALID_ERR), false)`
			`}`
			`}`