albert/mrfrys-node-server
1
0
Fork 0
mirror of https://gitlab.com/MrFry/mrfrys-node-server synced 2025-04-01 20:24:18 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions

prettier 4 tabwidth

Browse source
This commit is contained in:
mrfry 2022-12-10 15:34:54 +01:00
parent 00ec614f1d
commit 96b413a365
42 changed files with 7034 additions and 6905 deletions
Download patch file Download diff file Expand all files Collapse all files

244
src/middlewares/auth.middleware.ts
View file

@ -27,148 +27,148 @@ import utils from '../utils/utils'
import dbtools from '../utils/dbtools'
interface Options {
userDB: Database
jsonResponse: boolean
exceptions: Array<string>
userDB: Database
jsonResponse: boolean
exceptions: Array<string>
}
export const testUser = {
id: 19,
avaiblePWRequests: 645,
pwRequestCount: 19,
created: new Date(),
pw: 'secret',
loginCount: 3,
createdBy: 1,
id: 19,
avaiblePWRequests: 645,
pwRequestCount: 19,
created: new Date(),
pw: 'secret',
loginCount: 3,
createdBy: 1,
}
function renderLogin(_req: Request, res: Response, jsonResponse: boolean) {
res.status(401) // Unauthorized
if (jsonResponse) {
res.json({
result: 'nouser',
msg: 'You are not logged in',
})
} else {
res.render('login', {
devel: process.env.NS_DEVEL,
})
}
res.status(401) // Unauthorized
if (jsonResponse) {
res.json({
result: 'nouser',
msg: 'You are not logged in',
})
} else {
res.render('login', {
devel: process.env.NS_DEVEL,
})
}
}
export default function (options: Options): RequestHandler {
const {
userDB,
jsonResponse,
exceptions,
}: {
userDB: Database
jsonResponse: boolean
exceptions: string[]
} = options
const {
userDB,
jsonResponse,
exceptions,
}: {
userDB: Database
jsonResponse: boolean
exceptions: string[]
} = options
return function (req: Request, res: Response, next: NextFunction) {
const sessionID = req.cookies.sessionID
const isException = exceptions.some((exc) => {
return req.url.split('?')[0] === exc
})
return function (req: Request, res: Response, next: NextFunction) {
const sessionID = req.cookies.sessionID
const isException = exceptions.some((exc) => {
return req.url.split('?')[0] === exc
})
if (process.env.NS_NOUSER) {
req.session = {
user: testUser,
sessionID: sessionID || 11111111111,
isException: false,
}
next()
return
}
if (process.env.NS_NOUSER) {
req.session = {
user: testUser,
sessionID: sessionID || 11111111111,
isException: false,
}
next()
return
}
// FIXME Allowing all urls with _next in it, but not in params
if (
req.url.split('?')[0].includes('_next') ||
req.url.split('?')[0].includes('well-known/acme-challenge')
) {
req.session = { isException: true }
next()
return
}
// FIXME Allowing all urls with _next in it, but not in params
if (
req.url.split('?')[0].includes('_next') ||
req.url.split('?')[0].includes('well-known/acme-challenge')
) {
req.session = { isException: true }
next()
return
}
if (!sessionID) {
if (isException) {
logger.DebugLog(`EXCEPTION: ${req.url}`, 'auth', 1)
req.session = { isException: true }
next()
return
}
logger.DebugLog(`No session ID: ${req.url}`, 'auth', 1)
renderLogin(req, res, jsonResponse)
return
}
const user = GetUserBySessionID(userDB, sessionID)
if (!user) {
if (isException) {
logger.DebugLog(`EXCEPTION: ${req.url}`, 'auth', 1)
req.session = { isException: true }
next()
return
}
logger.DebugLog(`No user:${req.url}`, 'auth', 1)
renderLogin(req, res, jsonResponse)
return
}
req.session = {
user: user,
sessionID: sessionID,
isException: isException,
}
logger.DebugLog(`ID #${user.id}: ${req.url}`, 'auth', 1)
dbtools.Update(
userDB,
'sessions',
{
lastAccess: utils.GetDateString(),
},
{
id: sessionID,
}
)
dbtools.Update(
userDB,
'users',
{
lastAccess: utils.GetDateString(),
},
{
id: user.id,
}
)
if (!sessionID) {
if (isException) {
logger.DebugLog(`EXCEPTION: ${req.url}`, 'auth', 1)
req.session = { isException: true }
next()
return
}
logger.DebugLog(`No session ID: ${req.url}`, 'auth', 1)
renderLogin(req, res, jsonResponse)
return
}
const user = GetUserBySessionID(userDB, sessionID)
if (!user) {
if (isException) {
logger.DebugLog(`EXCEPTION: ${req.url}`, 'auth', 1)
req.session = { isException: true }
next()
return
}
logger.DebugLog(`No user:${req.url}`, 'auth', 1)
renderLogin(req, res, jsonResponse)
return
}
req.session = {
user: user,
sessionID: sessionID,
isException: isException,
}
logger.DebugLog(`ID #${user.id}: ${req.url}`, 'auth', 1)
dbtools.Update(
userDB,
'sessions',
{
lastAccess: utils.GetDateString(),
},
{
id: sessionID,
}
)
dbtools.Update(
userDB,
'users',
{
lastAccess: utils.GetDateString(),
},
{
id: user.id,
}
)
next()
}
}
function GetUserBySessionID(db: Database, sessionID: string) {
logger.DebugLog(`Getting user from db`, 'auth', 2)
logger.DebugLog(`Getting user from db`, 'auth', 2)
const session = dbtools.Select(db, 'sessions', {
id: sessionID,
})[0]
const session = dbtools.Select(db, 'sessions', {
id: sessionID,
})[0]
if (!session) {
return
}
if (!session) {
return
}
const user = dbtools.Select(db, 'users', {
id: session.userID,
})[0]
const user = dbtools.Select(db, 'users', {
id: session.userID,
})[0]
if (user) {
return user
}
if (user) {
return user
}
}