117 lines
3.1 KiB
JavaScript
117 lines
3.1 KiB
JavaScript
//auth.js
|
|
|
|
//Importing first and third-party modules.
|
|
var qs = require('querystring');
|
|
var https = require('socks5-https-client');
|
|
|
|
//Importing self-written modules.
|
|
var crypt = require('./crypt');
|
|
var config = require('./configuration');
|
|
var lookup = require('./lookup');
|
|
|
|
/**
|
|
* Function for starting a login request with the Magister servers.
|
|
* @param {String} username - Username needed for login.
|
|
* @param {String} password - Password needed for login.
|
|
* @param {Function} callback - Callback function to be called after request.
|
|
*/
|
|
function getLogin(username, password, callback) {
|
|
var login = qs.stringify({
|
|
GebruikersNaam : username,
|
|
Wachtwoord : password
|
|
});
|
|
|
|
https.request({
|
|
host : 'werkman.magister.net',
|
|
port : 443,
|
|
path : '/api/sessie',
|
|
method : 'POST',
|
|
headers : {
|
|
'Content-Type' : 'application/x-www-form-urlencoded',
|
|
'Content-Length' : login.length
|
|
},
|
|
socksPort: config().torPort,
|
|
socksHost: config().torHost
|
|
}, function (res) {
|
|
if (res.statusCode == 201 || res.statusCode == 200) callback(true);
|
|
else callback(false);
|
|
}).write(login);
|
|
}
|
|
|
|
/**
|
|
* Function for doing a login to the rooster.io server
|
|
* this is being called by the web frontend when the
|
|
* user logs in.
|
|
* @param {Object} req - Request object supplied by Express.
|
|
* @param {Object} res - Response object supplied by Express.
|
|
* @param {Function} next - Next function supplied by Express.
|
|
*/
|
|
function login(req, res, next) {
|
|
var _data = '';
|
|
|
|
req.on('data', function (data) {
|
|
_data += data;
|
|
});
|
|
|
|
req.on('end', function () {
|
|
var loginInformation = qs.parse(_data)
|
|
|
|
getLogin(loginInformation.username, loginInformation.password, function (legit) {
|
|
var username = crypt.encrypt(loginInformation.username);
|
|
var password = crypt.encrypt(loginInformation.password);
|
|
if (legit) {
|
|
res.cookie('username', username);
|
|
res.cookie('password', password);
|
|
res.redirect('/');
|
|
}
|
|
else {res.end('Er is wat mis, misschien je wachtwoord?')}
|
|
});
|
|
});
|
|
}
|
|
|
|
/**
|
|
* Function for logging a user out
|
|
* of a session on rooster.io.
|
|
* @param {Object} req - Request object supplied by Express.
|
|
* @param {Object} res - Response object supplied by Express.
|
|
*/
|
|
function logout(req, res) {
|
|
res.cookie('username', '');
|
|
res.cookie('password', '');
|
|
res.redirect('/');
|
|
}
|
|
|
|
/**
|
|
* Function for checking if the user is currently authenticated.
|
|
* @param {Object} req - Request object supplied by Express.
|
|
* @param {Object} res - Response object supplied by Express.
|
|
* @param {Function} next - Next function supplied by Express.
|
|
*/
|
|
function is(req, res, next) {
|
|
var cookies = qs.parse((req.headers.cookie || '').replace(/\s/g, ''), ';', '=');
|
|
if (!cookies.username || !cookies.password) {next(); return;}
|
|
|
|
var username = crypt.decrypt(cookies.username),
|
|
password = crypt.decrypt(cookies.password);
|
|
|
|
getLogin(username, password, function (legit) {
|
|
if (legit) {
|
|
req.query.name = username;
|
|
lookup.api(req, function (databaseEntry) {
|
|
req.headers.user = databaseEntry.data[0];
|
|
next();
|
|
});
|
|
}
|
|
else {
|
|
next();
|
|
}
|
|
});
|
|
}
|
|
|
|
//Exporting the functions as a module.
|
|
module.exports = {
|
|
'login' : login,
|
|
'logout' : logout,
|
|
'is' : is
|
|
}
|