94 lines
2.3 KiB
JavaScript
94 lines
2.3 KiB
JavaScript
const authPkg = require("@budibase/auth")
|
|
const { google } = require("@budibase/auth/src/middleware")
|
|
const { Configs } = require("../../constants")
|
|
const CouchDB = require("../../db")
|
|
const { clearCookie } = authPkg.utils
|
|
const { Cookies } = authPkg.constants
|
|
const { passport } = authPkg.auth
|
|
|
|
const GLOBAL_DB = authPkg.StaticDatabases.GLOBAL.name
|
|
|
|
exports.authenticate = async (ctx, next) => {
|
|
return passport.authenticate("local", async (err, user) => {
|
|
if (err) {
|
|
return ctx.throw(403, "Unauthorized")
|
|
}
|
|
|
|
const expires = new Date()
|
|
expires.setDate(expires.getDate() + 1)
|
|
|
|
if (!user) {
|
|
return ctx.throw(403, "Unauthorized")
|
|
}
|
|
|
|
ctx.cookies.set(Cookies.Auth, user.token, {
|
|
expires,
|
|
path: "/",
|
|
httpOnly: false,
|
|
overwrite: true,
|
|
})
|
|
|
|
delete user.token
|
|
|
|
ctx.body = { user }
|
|
})(ctx, next)
|
|
}
|
|
|
|
exports.logout = async ctx => {
|
|
clearCookie(ctx, Cookies.Auth)
|
|
ctx.body = { message: "User logged out" }
|
|
}
|
|
|
|
/**
|
|
* The initial call that google authentication makes to take you to the google login screen.
|
|
* On a successful login, you will be redirected to the googleAuth callback route.
|
|
*/
|
|
exports.googlePreAuth = async (ctx, next) => {
|
|
const db = new CouchDB(GLOBAL_DB)
|
|
const config = await authPkg.db.getScopedFullConfig(db, {
|
|
type: Configs.GOOGLE,
|
|
group: ctx.query.group,
|
|
})
|
|
const strategy = await google.strategyFactory(config)
|
|
|
|
return passport.authenticate(strategy, {
|
|
scope: ["profile", "email"],
|
|
})(ctx, next)
|
|
}
|
|
|
|
exports.googleAuth = async (ctx, next) => {
|
|
const db = new CouchDB(GLOBAL_DB)
|
|
|
|
const config = await authPkg.db.getScopedFullConfig(db, {
|
|
type: Configs.GOOGLE,
|
|
group: ctx.query.group,
|
|
})
|
|
const strategy = await google.strategyFactory(config)
|
|
|
|
return passport.authenticate(
|
|
strategy,
|
|
{ successRedirect: "/", failureRedirect: "/error" },
|
|
async (err, user) => {
|
|
if (err) {
|
|
return ctx.throw(403, "Unauthorized")
|
|
}
|
|
|
|
const expires = new Date()
|
|
expires.setDate(expires.getDate() + 1)
|
|
|
|
if (!user) {
|
|
return ctx.throw(403, "Unauthorized")
|
|
}
|
|
|
|
ctx.cookies.set(Cookies.Auth, user.token, {
|
|
expires,
|
|
path: "/",
|
|
httpOnly: false,
|
|
overwrite: true,
|
|
})
|
|
|
|
ctx.redirect("/")
|
|
}
|
|
)(ctx, next)
|
|
}
|