swaf/src/auth/AuthController.ts

import Controller from "../Controller";
import {NextFunction, Request, Response} from "express";
import AuthComponent, {AuthMiddleware, RequireAuthMiddleware, RequireGuestMiddleware} from "./AuthComponent";
import {BadRequestError} from "../HttpError";
import ModelFactory from "../db/ModelFactory";
import User from "./models/User";
import UserPasswordComponent from "./password/UserPasswordComponent";
import UserNameComponent from "./models/UserNameComponent";
import {log} from "../Logger";

export default class AuthController extends Controller {
    public getRoutesPrefix(): string {
        return '/auth';
    }

    public routes(): void {
        this.post('/logout', this.postLogout, 'logout', RequireAuthMiddleware);

        this.use(async (req, res, next) => {
            const authGuard = this.getApp().as(AuthComponent).getAuthGuard();
            if (await authGuard.interruptAuth(req, res)) return;
            next();
        });

        this.get('/', this.getAuth, 'auth', RequireGuestMiddleware);
        this.post('/login', this.postLogin, 'login', RequireGuestMiddleware);
        this.post('/register', this.postRegister, 'register', RequireGuestMiddleware);
    }

    protected async getAuth(req: Request, res: Response, _next: NextFunction): Promise<void> {
        const authGuard = this.getApp().as(AuthComponent).getAuthGuard();

        const userModelFactory = ModelFactory.get(User);
        const hasUsername = userModelFactory.hasComponent(UserNameComponent);
        res.render('auth/auth', {
            auth_methods: authGuard.getAuthMethodNames(),
            has_username: hasUsername,
            register_with_password: hasUsername && userModelFactory.hasComponent(UserPasswordComponent),
        });
    }

    protected async postLogin(req: Request, res: Response): Promise<void> {
        return await this.handleAuth(req, res, false);
    }

    protected async postRegister(req: Request, res: Response): Promise<void> {
        return await this.handleAuth(req, res, true);
    }

    protected async handleAuth(req: Request, res: Response, isRegistration: boolean): Promise<void> {
        const authGuard = this.getApp().as(AuthComponent).getAuthGuard();

        const identifier = req.body.identifier;
        if (!identifier) throw new BadRequestError('Identifier not specified.', 'Please try again.', req.originalUrl);

        // Get requested auth method
        if (req.body.auth_method) {
            const method = await authGuard.getAuthMethodByName(req.body.auth_method);
            if (!method) {
                throw new BadRequestError('Invalid auth method: ' + req.body.auth_method,
                    'Available methods are: ' + authGuard.getAuthMethodNames(), req.url);
            }

            const user = await method.findUserByIdentifier(identifier);
            if (!user) { // Register
                if (!isRegistration) return await this.redirectToRegistration(req, res, identifier);

                await method.attemptRegister(req, res, identifier);
                return;
            }

            // Login
            return await method.attemptLogin(req, res, user);
        }


        const methods = await authGuard.getAuthMethodsByIdentifier(identifier);

        if (methods.length === 0) { // Register
            if (!isRegistration) return await this.redirectToRegistration(req, res, identifier);

            await authGuard.getRegistrationMethod().attemptRegister(req, res, identifier);
            return;
        }

        const {user, method} = methods[0];
        return await method.attemptLogin(req, res, user);
    }

    protected async postLogout(req: Request, res: Response, _next: NextFunction): Promise<void> {
        const userId = typeof req.body.user_id === 'string' ? parseInt(req.body.user_id) : null;

        const proofs = await req.as(AuthMiddleware).getAuthGuard().getProofs(req);

        for (const proof of proofs) {
            if (userId === null || (await proof.getResource())?.id === userId) {
                await proof.revoke();
            }
        }

        req.flash('success', 'Successfully logged out.');
        res.redirect(req.query.redirect_uri?.toString() || '/');
    }

    protected async redirectToRegistration(req: Request, res: Response, identifier: string): Promise<void> {
        req.flash('register_identifier', identifier);
        req.flash('info', `User with identifier "${identifier}" not found.`);
        res.redirect(Controller.route('auth', undefined, {
            redirect_uri: req.query.redirect_uri?.toString() || undefined,
        }));
    }
}
Promote auth view to core 2020-07-14 15:06:30 +02:00			`import Controller from "../Controller";`
			`import {NextFunction, Request, Response} from "express";`
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`import AuthComponent, {AuthMiddleware, RequireAuthMiddleware, RequireGuestMiddleware} from "./AuthComponent";`
			`import {BadRequestError} from "../HttpError";`
Add required username to magic link authentication and fix many errors 2020-11-14 17:24:42 +01:00			`import ModelFactory from "../db/ModelFactory";`
			`import User from "./models/User";`
			`import UserPasswordComponent from "./password/UserPasswordComponent";`
			`import UserNameComponent from "./models/UserNameComponent";`
			`import {log} from "../Logger";`
Promote auth view to core 2020-07-14 15:06:30 +02:00
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`export default class AuthController extends Controller {`
Promote auth view to core 2020-07-14 15:06:30 +02:00			`public getRoutesPrefix(): string {`
			`return '/auth';`
			`}`

Add many eslint rules and fix all linting issues 2020-09-25 23:42:15 +02:00			`public routes(): void {`
Add required username to magic link authentication and fix many errors 2020-11-14 17:24:42 +01:00			`this.post('/logout', this.postLogout, 'logout', RequireAuthMiddleware);`

Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`this.use(async (req, res, next) => {`
			`const authGuard = this.getApp().as(AuthComponent).getAuthGuard();`
			`if (await authGuard.interruptAuth(req, res)) return;`
			`next();`
			`});`

Improve middleware definition and cleanup code 2020-09-25 22:03:22 +02:00			`this.get('/', this.getAuth, 'auth', RequireGuestMiddleware);`
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`this.post('/login', this.postLogin, 'login', RequireGuestMiddleware);`
			`this.post('/register', this.postRegister, 'register', RequireGuestMiddleware);`
Promote auth view to core 2020-07-14 15:06:30 +02:00			`}`

Add many eslint rules and fix all linting issues 2020-09-25 23:42:15 +02:00			`protected async getAuth(req: Request, res: Response, _next: NextFunction): Promise<void> {`
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`const authGuard = this.getApp().as(AuthComponent).getAuthGuard();`

Add required username to magic link authentication and fix many errors 2020-11-14 17:24:42 +01:00			`const userModelFactory = ModelFactory.get(User);`
			`const hasUsername = userModelFactory.hasComponent(UserNameComponent);`
Promote auth view to core 2020-07-14 15:06:30 +02:00			`res.render('auth/auth', {`
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`auth_methods: authGuard.getAuthMethodNames(),`
Add required username to magic link authentication and fix many errors 2020-11-14 17:24:42 +01:00			`has_username: hasUsername,`
			`register_with_password: hasUsername && userModelFactory.hasComponent(UserPasswordComponent),`
Promote auth view to core 2020-07-14 15:06:30 +02:00			`});`
			`}`

Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`protected async postLogin(req: Request, res: Response): Promise<void> {`
			`return await this.handleAuth(req, res, false);`
			`}`

			`protected async postRegister(req: Request, res: Response): Promise<void> {`
			`return await this.handleAuth(req, res, true);`
			`}`

			`protected async handleAuth(req: Request, res: Response, isRegistration: boolean): Promise<void> {`
			`const authGuard = this.getApp().as(AuthComponent).getAuthGuard();`

			`const identifier = req.body.identifier;`
			`if (!identifier) throw new BadRequestError('Identifier not specified.', 'Please try again.', req.originalUrl);`

			`// Get requested auth method`
			`if (req.body.auth_method) {`
			`const method = await authGuard.getAuthMethodByName(req.body.auth_method);`
			`if (!method) {`
			`throw new BadRequestError('Invalid auth method: ' + req.body.auth_method,`
			`'Available methods are: ' + authGuard.getAuthMethodNames(), req.url);`
			`}`

			`const user = await method.findUserByIdentifier(identifier);`
			`if (!user) { // Register`
Add required username to magic link authentication and fix many errors 2020-11-14 17:24:42 +01:00			`if (!isRegistration) return await this.redirectToRegistration(req, res, identifier);`

			`await method.attemptRegister(req, res, identifier);`
			`return;`
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`}`
Promote auth view to core 2020-07-14 15:06:30 +02:00
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`// Login`
			`return await method.attemptLogin(req, res, user);`
			`}`


			`const methods = await authGuard.getAuthMethodsByIdentifier(identifier);`

			`if (methods.length === 0) { // Register`
Add required username to magic link authentication and fix many errors 2020-11-14 17:24:42 +01:00			`if (!isRegistration) return await this.redirectToRegistration(req, res, identifier);`

			`await authGuard.getRegistrationMethod().attemptRegister(req, res, identifier);`
			`return;`
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`}`

			`const {user, method} = methods[0];`
			`return await method.attemptLogin(req, res, user);`
			`}`
Promote auth view to core 2020-07-14 15:06:30 +02:00
Add many eslint rules and fix all linting issues 2020-09-25 23:42:15 +02:00			`protected async postLogout(req: Request, res: Response, _next: NextFunction): Promise<void> {`
Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`const userId = typeof req.body.user_id === 'string' ? parseInt(req.body.user_id) : null;`

			`const proofs = await req.as(AuthMiddleware).getAuthGuard().getProofs(req);`

			`for (const proof of proofs) {`
			`if (userId === null \|\| (await proof.getResource())?.id === userId) {`
			`await proof.revoke();`
			`}`
			`}`

Promote auth view to core 2020-07-14 15:06:30 +02:00			`req.flash('success', 'Successfully logged out.');`
Fix auth redirect_uri chain 2020-07-15 11:42:49 +02:00			`res.redirect(req.query.redirect_uri?.toString() \|\| '/');`
Promote auth view to core 2020-07-14 15:06:30 +02:00			`}`

Auth: refactor to support multiple auth factors and add password factor 2020-11-11 19:08:33 +01:00			`protected async redirectToRegistration(req: Request, res: Response, identifier: string): Promise<void> {`
			`req.flash('register_identifier', identifier);`
			req.flash('info', `User with identifier "${identifier}" not found.`);
			`res.redirect(Controller.route('auth', undefined, {`
			`redirect_uri: req.query.redirect_uri?.toString() \|\| undefined,`
			`}));`
			`}`
Add many eslint rules and fix all linting issues 2020-09-25 23:42:15 +02:00			`}`