HackMD/lib/web/auth/index.js

'use strict'

const Router = require('express').Router
const passport = require('passport')

const config = require('../../config')
const logger = require('../../logger')
const models = require('../../models')

const authRouter = module.exports = Router()

// serialize and deserialize
passport.serializeUser(function (user, done) {
  logger.info('serializeUser: ' + user.id)
  return done(null, user.id)
})

passport.deserializeUser(function (id, done) {
  models.User.findOne({
    where: {
      id: id
    }
  }).then(function (user) {
    // Don't die on non-existent user
    if (user == null) {
      return done(null, false, { message: 'Invalid UserID' })
    }

    logger.info('deserializeUser: ' + user.id)
    return done(null, user)
  }).catch(function (err) {
    logger.error(err)
    return done(err, null)
  })
})

if (config.isFacebookEnable) authRouter.use(require('./facebook'))
if (config.isTwitterEnable) authRouter.use(require('./twitter'))
if (config.isGitHubEnable) authRouter.use(require('./github'))
if (config.isGitLabEnable) authRouter.use(require('./gitlab'))
if (config.isMattermostEnable) authRouter.use(require('./mattermost'))
if (config.isDropboxEnable) authRouter.use(require('./dropbox'))
if (config.isGoogleEnable) authRouter.use(require('./google'))
if (config.isLDAPEnable) authRouter.use(require('./ldap'))
if (config.isSAMLEnable) authRouter.use(require('./saml'))
if (config.isOAuth2Enable) authRouter.use(require('./oauth2'))
if (config.isEmailEnable) authRouter.use(require('./email'))
if (config.isOpenIDEnable) authRouter.use(require('./openid'))

// logout
authRouter.get('/logout', function (req, res) {
  if (config.debug && req.isAuthenticated()) {
    logger.debug('user logout: ' + req.user.id)
  }
  req.logout()
  res.redirect(config.serverURL + '/')
})
refactor(app.js, auth.js): Extract all auth method to individual modules 2017-04-11 21:41:14 +00:00			`'use strict'`

			`const Router = require('express').Router`
refactor(app.js): Move passport serialize and deserialize to auth module 2017-04-11 22:07:19 +00:00			`const passport = require('passport')`
refactor(app.js, auth.js): Extract all auth method to individual modules 2017-04-11 21:41:14 +00:00
			`const config = require('../../config')`
			`const logger = require('../../logger')`
refactor(app.js): Move passport serialize and deserialize to auth module 2017-04-11 22:07:19 +00:00			`const models = require('../../models')`
refactor(app.js, auth.js): Extract all auth method to individual modules 2017-04-11 21:41:14 +00:00
			`const authRouter = module.exports = Router()`

refactor(app.js): Move passport serialize and deserialize to auth module 2017-04-11 22:07:19 +00:00			`// serialize and deserialize`
			`passport.serializeUser(function (user, done) {`
			`logger.info('serializeUser: ' + user.id)`
			`return done(null, user.id)`
			`})`

			`passport.deserializeUser(function (id, done) {`
			`models.User.findOne({`
			`where: {`
			`id: id`
			`}`
			`}).then(function (user) {`
Fix uncaught exception for non-existent user Since we added user management it's possible to get non-existent users which can cause a crash of the Backend server. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com> 2018-01-30 20:06:34 +00:00			`// Don't die on non-existent user`
			`if (user == null) {`
			`return done(null, false, { message: 'Invalid UserID' })`
			`}`

refactor(app.js): Move passport serialize and deserialize to auth module 2017-04-11 22:07:19 +00:00			`logger.info('deserializeUser: ' + user.id)`
			`return done(null, user)`
			`}).catch(function (err) {`
			`logger.error(err)`
			`return done(err, null)`
			`})`
			`})`

refactor(config.js): Extract config file * Separate different config source to each files * Freeze config object 2017-04-12 17:57:55 +00:00			`if (config.isFacebookEnable) authRouter.use(require('./facebook'))`
			`if (config.isTwitterEnable) authRouter.use(require('./twitter'))`
			`if (config.isGitHubEnable) authRouter.use(require('./github'))`
			`if (config.isGitLabEnable) authRouter.use(require('./gitlab'))`
Add mattermost authentication 2017-10-29 10:16:40 +00:00			`if (config.isMattermostEnable) authRouter.use(require('./mattermost'))`
refactor(config.js): Extract config file * Separate different config source to each files * Freeze config object 2017-04-12 17:57:55 +00:00			`if (config.isDropboxEnable) authRouter.use(require('./dropbox'))`
			`if (config.isGoogleEnable) authRouter.use(require('./google'))`
			`if (config.isLDAPEnable) authRouter.use(require('./ldap'))`
Initial support for SAML authentication 2017-11-28 03:46:58 +00:00			`if (config.isSAMLEnable) authRouter.use(require('./saml'))`
Add support for generic OAuth2 providers Signed-off-by: Pedro Ferreira <pedro.ferreira@cern.ch> 2017-06-27 17:08:05 +00:00			`if (config.isOAuth2Enable) authRouter.use(require('./oauth2'))`
refactor(config.js): Extract config file * Separate different config source to each files * Freeze config object 2017-04-12 17:57:55 +00:00			`if (config.isEmailEnable) authRouter.use(require('./email'))`
Add OpenID to CodiMD With OpenID every OpenID capable provider can provide authentication for users of a CodiMD instance. This means we have federated authentication. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com> 2017-08-31 21:33:55 +00:00			`if (config.isOpenIDEnable) authRouter.use(require('./openid'))`
refactor(app.js, auth.js): Extract all auth method to individual modules 2017-04-11 21:41:14 +00:00
			`// logout`
			`authRouter.get('/logout', function (req, res) {`
			`if (config.debug && req.isAuthenticated()) {`
			`logger.debug('user logout: ' + req.user.id)`
			`}`
			`req.logout()`
Change config to camel case with backwards compatibility This refactors the configs a bit to now use camel case everywhere. This change should help to clean up the config interface and make it better understandable. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com> 2018-03-07 14:17:35 +00:00			`res.redirect(config.serverURL + '/')`
refactor(app.js, auth.js): Extract all auth method to individual modules 2017-04-11 21:41:14 +00:00			`})`