gancio/server/api/auth.js

const log = require('../log')
const oauth = require('./oauth')
const get = require('lodash/get')

const Auth = {

  fillUser (req, res, next) {
    const token = get(req.cookies, 'auth._token.local', null)
    const authorization = get(req.headers, 'authorization', null)
    if (!authorization && token) {
      req.headers.authorization = token
    }

    if (!authorization && !token) {
      return next()
    }

    oauth.oauthServer.authenticate()(req, res, () => {
      res.locals.user = get(res, 'locals.oauth.token.user', null)
      next()
    })
  },

  isAuth (_req, res, next) {
    if (res.locals.user) {
      next()
    } else {
      res.sendStatus(403)
    }
  },

  isAdmin (req, res, next) {
    if (res.locals.user && res.locals.user.is_admin) {
      next()
    } else {
      res.sendStatus(403)
    }
  },

  // TODO
  hasPerm (scope) {
    return (req, res, next) => {
      log.debug(scope, req.path)
      oauth.oauthServer.authenticate({ scope })(req, res, err => {
        if (err) {
          next()
        } else {
          next(Error(err))
        }
      })
    }
  }
}

module.exports = Auth
refactoring logs: use winston 2021-03-05 14:17:10 +01:00			`const log = require('../log')`
use oauth2 password flow for webclient 2020-01-27 00:47:03 +01:00			`const oauth = require('./oauth')`
fix auth/oauth 2020-01-30 23:43:58 +01:00			`const get = require('lodash/get')`
start with nuxt 2019-04-03 00:25:12 +02:00
			`const Auth = {`
[refactoring] auth as middleware 2019-10-30 14:58:40 +01:00
oauth fillUser 2020-01-30 12:39:32 +01:00			`fillUser (req, res, next) {`
fix auth/oauth 2020-01-30 23:43:58 +01:00			`const token = get(req.cookies, 'auth._token.local', null)`
			`const authorization = get(req.headers, 'authorization', null)`
			`if (!authorization && token) {`
			`req.headers.authorization = token`
			`}`

			`if (!authorization && !token) {`
			`return next()`
			`}`

oauth fillUser 2020-01-30 12:39:32 +01:00			`oauth.oauthServer.authenticate()(req, res, () => {`
refactor res.locals and settings 2022-02-26 21:27:40 +01:00			`res.locals.user = get(res, 'locals.oauth.token.user', null)`
oauth fillUser 2020-01-30 12:39:32 +01:00			`next()`
			`})`
			`},`

fix SMTP configuration 2022-07-18 10:05:59 +02:00			`isAuth (_req, res, next) {`
refactor res.locals and settings 2022-02-26 21:27:40 +01:00			`if (res.locals.user) {`
fix auth/oauth 2020-01-30 23:43:58 +01:00			`next()`
			`} else {`
minor with logging and cleanup bootstrap 2022-03-10 12:37:05 +01:00			`res.sendStatus(403)`
fix auth/oauth 2020-01-30 23:43:58 +01:00			`}`
			`},`

linting 2019-09-11 19:12:24 +02:00			`isAdmin (req, res, next) {`
typo 2022-03-10 13:12:37 +01:00			`if (res.locals.user && res.locals.user.is_admin) {`
fix auth/oauth 2020-01-30 23:43:58 +01:00			`next()`
			`} else {`
minor with logging and cleanup bootstrap 2022-03-10 12:37:05 +01:00			`res.sendStatus(403)`
fix auth/oauth 2020-01-30 23:43:58 +01:00			`}`
use oauth2 password flow for webclient 2020-01-27 00:47:03 +01:00			`},`

fix auth/oauth 2020-01-30 23:43:58 +01:00			`// TODO`
use oauth2 password flow for webclient 2020-01-27 00:47:03 +01:00			`hasPerm (scope) {`
			`return (req, res, next) => {`
refactoring logs: use winston 2021-03-05 14:17:10 +01:00			`log.debug(scope, req.path)`
refactoring acl 2021-05-19 16:38:22 +02:00			`oauth.oauthServer.authenticate({ scope })(req, res, err => {`
			`if (err) {`
			`next()`
			`} else {`
			`next(Error(err))`
			`}`
use oauth2 password flow for webclient 2020-01-27 00:47:03 +01:00			`})`
. 2019-06-06 23:54:32 +02:00			`}`
linting 2019-09-11 19:12:24 +02:00			`}`
start with nuxt 2019-04-03 00:25:12 +02:00			`}`

			`module.exports = Auth`