UNPKG

cabmin

Version:

Simple control panel for Node.js based on OrangeBox

github.com/mirrr/orangebox-cabmin

mirrr/orangebox-cabmin

70 lines (59 loc) 2.43 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
var utils = require('./utils'); var extend = require('util')._extend; var swig = require('swig'); var authTpl = swig.compileFile(__dirname + '/../views/auth-content.html'); var lockTpl = swig.compileFile(__dirname + '/../views/lock-content.html'); exports.test = function(req, res, next) { var login = req.cookies.login; var hash = req.cookies.hash; if (req.options.noAuth || req.params.module == 'logout') { next(); } else { // Данные с формы if (req.body.login && req.body.password && req.body.entercabmin && req.options.users[req.body.login]) { if (utils.sha512(req.body.password) === req.options.users[req.body.login].hash) { login = req.body.login; if (req.body.remember) { res.cookie('remember', '1', { maxAge: 3 * utils.YEAR, path: req.options.baseUrl}); req.cookies.remember = true; } else { res.clearCookie('remember', {path: req.options.baseUrl}); req.cookies.remember = false; } hash = utils.md5(req.options.users[login].hash + req.body.login + 'slt'); } } if (login && hash && req.options.users[login] && checkLogin(login, hash, req.options.users[login])) { req.options.user = extend({login: login}, req.options.users[login]); res.cookie('login', login, { maxAge: 3 * utils.YEAR, path: req.options.baseUrl}); res.cookie('hash', hash, req.cookies.remember ? { maxAge: 3 * utils.YEAR, path: req.options.baseUrl} : {path: req.options.baseUrl}); next(); } else if (login && req.options.users[login]) { res.clearCookie('hash', {path: req.options.baseUrl}); var settings = req.options.users[login]; req.options.login = login; req.options.userpic = settings.userpic || parseInt( Math.random() * 19 + 1, 10); render_lock (req, res, next); } else { res.clearCookie('hash', {path: req.options.baseUrl}); render_auth (req, res, next); } } }; function render_auth (req, res, next) { // res.render(authTpl(), "auth"); res.render(__dirname + '/../views/auth-content.html', {}, 'auth'); next(); } function render_lock (req, res, next) { res.render(__dirname + '/../views/lock-content.html', { login: req.options.login, remember: req.cookies.remember, userpic: req.options.userpic, staticUrl: req.options.staticUrl }, 'auth', {showDropMenu: true, login: req.options.login}); next(); } function checkLogin(login, hash, settings) { return utils.md5(settings.hash + login + 'slt') === hash; }