UNPKG

cloudcms-server

Version:

Cloud CMS Application Server Module

github.com/gitana/cloudcms-server

gitana/cloudcms-server

156 lines (138 loc) 4.24 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
class AbstractProvider { constructor(req, config) { this.config = config || {}; if (!config.properties) { config.properties = {}; } if (!config.properties.id) { config.properties.id = "id"; } } /** * Given the user profile acquired from the authentication provider, extract the * user identifier (which serves as the providerUserId). * * @param profile */ userIdentifier(profile) { return profile[this.config.properties.id]; } /** * Handles the request when a call is made to "/auth/<providerId>". * * This method is responsible for redirecting the user to the authentication provider's login page. * * @param req * @param res * @param next */ handleAuth(req, res, next) { // by default, we throw an error throw new Error("This authentication provider does not support handleAuth()"); } /** * Handles the request when the authentication provider's login process completes and the user is redirected back * to the server with a code - to the URL "/auth/<providerId>/callback". * * @param req * @param res * @param next * @param callback */ handleAuthCallback(req, res, next, callback) { // by default, we throw an error throw new Error("This authentication provider does not support handleAuthCallback()"); } /** * Given the auth profile, fires the callback with the extracted user object (JSON) and the * extracted token and refresh token. * * A default implementation is supported here. * A few core properties are supported. * * @param req * @param profile */ parseProfile(req, profile, callback) { var userObject = {}; var groupsArray = []; if (!profile) { return callback(null, userObject, groupsArray); } var userProperties = this.config.userProperties; if (!userProperties) { userProperties = {}; userProperties["firstName"] = "given_name"; userProperties["lastName"] = "family_name"; userProperties["email"] = "email"; userProperties["name"] = "unique_name"; } for (var userProperty in userProperties) { if (!userObject[userProperty]) { var profileProperty = userProperties[userProperty]; if (profileProperty) { if (profile[profileProperty]) { userObject[userProperty] = profile[profileProperty]; } } } } // NOTE: no handling of groupsArray callback(null, userObject, groupsArray); } /** * Given the auth profile, loads avatar icon information and stores it onto the given * Gitana User object. * * @param gitanaUser * @param profile * @param callback */ syncAvatar(gitanaUser, profile, callback) { // by default, don't do anything // extend this to pull down an image and attach to the user account // see twitter provider for example callback(); } /** * Verifies that what we know about a user from their request attributes describes an authenticated user * against the authentication provider. * * @param properties * @param callback (err, valid, profile) */ verify(properties, callback) { this.load(properties, function(err, profile) { if (err) { return callback(err); } callback(null, true, profile); }); } /** * Loads a user profile from the authentication provider given what we know about them from * the identity properties. * * @param properties * @param callback (err, profile) */ load(properties, callback) { // by default, we throw an error throw new Error("This authentication provider does not support load()"); } } module.exports = AbstractProvider;