UNPKG

jscas-server

Version:

An implementation of Apereo's CAS protocol

github.com/jscas/jscas-server

jscas/jscas-server

148 lines (133 loc) 4.92 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
'use strict' require('make-promises-safe') const path = require('path') const config = require('./lib/config') const log = require('./lib/logger')() log.trace(config.config, 'parsed configuration') const server = require('fastify')({logger: log}) const fastifyCaching = require('fastify-caching') const cachingConfig = config.get('caching') const abcache = require('abstract-cache')(cachingConfig.cache) server .register(require('fastify-no-icon')) .register(require('fastify-url-data')) .register(require('fastify-formbody')) .register(require('fastify-helmet'), config.get('helmet')) .register(require('fastify-cookie')) .register(fastifyCaching, { privacy: cachingConfig.privacy || fastifyCaching.privacy.NOCACHE, segment: cachingConfig.segment || 'jscas', cache: abcache }) .register(require('fastify-server-session'), config.get('session')) .decorate('jscasTGTCookie', config.get('tickets.ticketGrantingTicket.cookieName')) const dataSources = config.get('dataSources') if (dataSources && dataSources.mongodb) { server.register(require('fastify-mongodb'), dataSources.mongodb) } if (dataSources && dataSources.postgres) { server.register(require('fastify-postgres'), dataSources.postgres) } if (dataSources && dataSources.redis) { server.register(require('fastify-redis'), dataSources.redis) } server .decorate('jscasHooks', { userAttributes: [], preAuth: [] }) .decorate('jscasPlugins', { attributesResolver: { async attributesFor (username) { return undefined } }, ticketRegistry: {}, serviceRegistry: {}, theme: {}, auth: [], misc: [] }) const pluginsToLoad = config.get('plugins') const pluginsConf = config.get('pluginsConf') || {} if (!pluginsToLoad) { log.fatal('missing plugins to load configuration, cannot continue') process.kill(process.pid, 'SIGTERM') process.exit(1) } function resolvePlugin (inputName) { if (inputName.startsWith('~/')) { const internalName = path.join(__dirname, 'lib', 'plugins', inputName.substr(2)) return require(internalName) } if (inputName.includes('>')) { const parts = inputName.split('>') try { const plugin = require(parts[0]) return plugin[parts[1]] } catch (e) { log.error('could not find nested plugin `%s` from `%s`', parts[1], inputName) throw e } } return require(inputName) } const attributesResolverPlugin = resolvePlugin(pluginsToLoad.attributesResolver) const ticketRegistryPlugin = resolvePlugin(pluginsToLoad.ticketRegistry) const serviceRegistryPlugin = resolvePlugin(pluginsToLoad.serviceRegistry) const themePlugin = resolvePlugin(pluginsToLoad.theme) // Registration order is important. Some plugins are dependent on prior plugins // being present, and we want our routes added before miscellaneous plugins. server .register(resolvePlugin('~/pluginApiPlugin')) .register(attributesResolverPlugin, pluginsConf[attributesResolverPlugin.pluginName]) .register(ticketRegistryPlugin, pluginsConf[ticketRegistryPlugin.pluginName]) .register(serviceRegistryPlugin, pluginsConf[serviceRegistryPlugin.pluginName]) .register(themePlugin, pluginsConf[themePlugin.pluginName]) .register(resolvePlugin('~/errorHandlers')) .register(resolvePlugin('~/casInterfacePlugin')) .register(resolvePlugin('~/csrf')) .register(resolvePlugin('~/ticketUtils')) .register(require('./lib/routes/login'), {cookie: config.get('cookie')}) .register(require('./lib/routes/logout'), {cookie: config.get('cookie')}) .register(require('./lib/routes/serviceValidate'), {useV3: config.get('v3overv2')}) .register(require('./lib/routes/slash')) .register(require('./lib/routes/success')) .register(require('./lib/routes/validate')) .register(require('./lib/routes/samlValidate'), { banner9Hack: config.get('saml11Banner9Hack'), sessionMaxAge: config.get('session.sessionMaxAge') }) for (const type of ['auth', 'misc']) { if (!pluginsToLoad[type]) continue for (const pluginName of pluginsToLoad[type]) { const pluginToLoad = resolvePlugin(pluginName) log.debug('registering %s plugin: %s', type, pluginToLoad.pluginName) server.register(pluginToLoad, pluginsConf[pluginToLoad.pluginName]) } } server.ready((err) => { if (err) { log.error('could not boot server: %s', err.message) log.debug(err.stack) log.info('aborting startup') process.kill(process.pid, 'SIGTERM') process.exit(1) } server.listen( config.get('server').port, config.get('server').address, serverListenCB ) }) function serverListenCB (err) { if (err) { log.error('could not start web server: %s', err.message) log.debug(err.stack) process.kill(process.pid, 'SIGTERM') process.exit(1) } process.on('SIGINT', server.close.bind(server)) process.on('SIGTERM', server.close.bind(server)) if (process.send) process.send('ready') }