UNPKG

@adonisjs/auth

Version:

Official authentication provider for Adonis framework

github.com/adonisjs/auth

adonisjs/auth

143 lines (142 loc) 4.35 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
"use strict"; /* * @adonisjs/auth * * (c) Harminder Virk <virk@adonisjs.com> * * For the full copyright and license information, please view the LICENSE * file that was distributed with this source code. */ Object.defineProperty(exports, "__esModule", { value: true }); exports.AuthenticationException = void 0; const utils_1 = require("@poppinss/utils"); /** * Exception raised when unable to authenticate user session */ class AuthenticationException extends utils_1.Exception { /** * Raise exception with message and redirect url */ constructor(message, code, guard, redirectTo) { super(message, 401, code); this.redirectTo = '/login'; this.responseText = this.message; if (redirectTo) { this.redirectTo = redirectTo; } if (guard) { this.guard = guard; } } /** * Prompts user to enter credentials */ respondWithBasicAuthPrompt(ctx, realm) { realm = realm || 'Authenticate'; ctx.response .status(this.status) .header('WWW-Authenticate', `Basic realm="${realm}", charset="UTF-8"`) .send(this.responseText); } /** * Send response as an array of errors */ respondWithJson(ctx) { ctx.response.status(this.status).send({ errors: [ { message: this.responseText, }, ], }); } /** * Flash error message and redirect the user back */ respondWithRedirect(ctx) { if (!ctx.session) { return ctx.response.status(this.status).send(this.responseText); } ctx.session.flashExcept(['_csrf']); ctx.session.flash('auth', { error: this.responseText }); ctx.response.redirect(this.redirectTo, true); } /** * Send response as an array of errors formatted as per JSONAPI spec */ respondWithJsonAPI(ctx) { ctx.response.status(this.status).send({ errors: [ { code: this.code, title: this.responseText, source: null, }, ], }); } /** * Missing session or unable to lookup user from session */ static invalidSession(guard) { return new this('Invalid session', 'E_INVALID_AUTH_SESSION', guard); } /** * Missing/Invalid token or unable to lookup user from the token */ static invalidToken(guard) { return new this('Invalid API token', 'E_INVALID_API_TOKEN', guard); } /** * Missing or invalid basic auth credentials */ static invalidBasicCredentials(guard) { return new this('Invalid basic auth credentials', 'E_INVALID_BASIC_CREDENTIALS', guard); } /** * Self handle exception and attempt to make the best response based * upon the type of request */ async handle(_, ctx) { /** * We need access to the guard config and driver to make appropriate response */ const config = this.guard ? ctx.auth.use(this.guard).config : null; /** * Use translation when using i18n */ if ('i18n' in ctx) { this.responseText = ctx.i18n.formatMessage(`auth.${this.code}`, {}, this.message); } /** * Show username, password prompt when using basic auth driver */ if (config && config.driver === 'basic') { this.respondWithBasicAuthPrompt(ctx, config.realm); return; } /** * Respond with json for ajax requests */ if (ctx.request.ajax()) { this.respondWithJson(ctx); return; } /** * Uses content negotiation to make the response */ switch (ctx.request.accepts(['html', 'application/vnd.api+json', 'json'])) { case 'html': case null: this.respondWithRedirect(ctx); break; case 'json': this.respondWithJson(ctx); break; case 'application/vnd.api+json': this.respondWithJsonAPI(ctx); break; } } } exports.AuthenticationException = AuthenticationException;