UNPKG

@qelos/auth

Version:

Express Passport authentication service

73 lines (72 loc) 3.63 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; var __importDefault = (this && this.__importDefault) || function (mod) { return (mod && mod.__esModule) ? mod : { "default": mod }; }; Object.defineProperty(exports, "__esModule", { value: true }); const config_1 = require("../../config"); const users_1 = require("../services/users"); const passport_local_1 = require("passport-local"); const workspace_configuration_1 = require("../services/workspace-configuration"); const logger_1 = __importDefault(require("../services/logger")); const workspaces_1 = require("../services/workspaces"); module.exports = new passport_local_1.Strategy({ usernameField: 'username', passwordField: 'password', session: false, passReqToCallback: true, }, (req, username, password, done) => __awaiter(void 0, void 0, void 0, function* () { var _a, _b, _c, _d, _e, _f; const query = { username: username.trim() || ((_b = (_a = req.body) === null || _a === void 0 ? void 0 : _a.email) === null || _b === void 0 ? void 0 : _b.trim()), tenant: req.headers.tenant }; const authType = req.body.authType || config_1.defaultAuthType; if (req.body.roles && req.body.roles instanceof Array) { query.roles = { $in: req.body.roles }; } const preSelectedWorkspace = req.body.workspace; const [wsConfig, user] = yield Promise.all([ (0, workspace_configuration_1.getWorkspaceConfiguration)(query.tenant), (0, users_1.getUser)(query) .then((user) => user && (0, users_1.comparePassword)(user, password)) .catch(() => null) ]); if (!user) { return done({ message: 'Invalid username or password' }); } let workspace; if (wsConfig.isActive) { try { workspace = yield (0, workspaces_1.getWorkspaceForUser)(query.tenant, user._id, preSelectedWorkspace || ((_c = user.lastLogin) === null || _c === void 0 ? void 0 : _c.workspace) || ((_f = (_e = (_d = user.tokens) === null || _d === void 0 ? void 0 : _d.at(-1)) === null || _e === void 0 ? void 0 : _e.metadata) === null || _f === void 0 ? void 0 : _f.workspace)); } catch (err) { logger_1.default.log('Error getting workspace', query); } } (0, users_1.setToken)({ user: user, workspace }, authType) .then(({ user, token, refreshToken, cookieToken }) => { done(null, { tenant: query.tenant, token, refreshToken, cookieToken, workspace, user: { username: user.username, email: user.email, firstName: user.firstName, lastName: user.lastName, name: user.name || user.fullName || `${user.firstName} ${user.lastName}`, roles: user.roles, }, }); }) .catch((err) => done(err)) .finally(() => setTimeout(() => (0, users_1.clearOldTokens)(user._id).catch(), 1)); }));