UNPKG

mdds-mongoose-express-auth-server

Version:

Model Driver Development Stack - authentication and authorization server for mongoose and express based application. It can be enabled to work as authentication, user profile managment, and authorization management servers.

65 lines (53 loc) 2.9 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
const meanRestExpress = require('mean-rest-express') const addPasswordHandlers = require('./authn/password_handler'); const addPasswordHandlersToDef = function(authDef) { let authUserSchema, authPasswordField; if (!authDef.authn ) { throw Error("addPasswordHandlersToDef: authn not defined for the schema."); } authUserSchema = authDef.authn.authUserSchema; authPasswordField = authDef.authn.authPasswordField; //add password handler for the default auth account schema authDef.schemas[authUserSchema].schema = addPasswordHandlers(authDef.schemas[authUserSchema].schema, authPasswordField); } //authentication const GetAuthnRouter = require('./authn/router') //a function, input is the schema definition, return router const authUserDef = require('./authn/model.user') //default auth user schema definition const authAccountDef = require('./authn/model.account'); addPasswordHandlersToDef(authUserDef); addPasswordHandlersToDef(authAccountDef); module.exports.authUserDef = authUserDef; module.exports.authAccountDef = authAccountDef; //authorization - Admin Roles based authorization const GetAuthzModuleDef = require('./authz/model.role'); let accScmName = authAccountDef.authn.authUserSchema; const authzDef = GetAuthzModuleDef(accScmName, authAccountDef.schemas[accScmName]); // need a restController instance that the role table can be accessed. const internalRoleRouter = meanRestExpress.RestRouter(authzDef, 'internal-role-manager'); const restController = internalRoleRouter.restController; //getAccountRoles - the function to get account roles that can be used as middleware in Authn router. const AuthzController = require('./authz/controller'); let getAccountRoles = AuthzController.getAccountRoles(restController) //authorization - Public Access based authorization, used to manage the public access const accessDef = require('./authz/model.access'); module.exports.authzDef = authzDef; //authentication router module.exports.GetDefaultAuthnRouter = function(authDef, withRoles) { if (withRoles) return GetAuthnRouter(authDef, getAccountRoles); //append user roles in user info return GetAuthnRouter(authDef); } const dbOperations = require('./defaultDbOperations'); //used to manage the admin user authorizations module.exports.GetDefaultRolesManageRouter = function(moduleName, authAppFuncs) { const authzRouter = meanRestExpress.RestRouter(authzDef, moduleName, authAppFuncs); const restController = authzRouter.restController; dbOperations.populateAdminRoles(restController); return authzRouter; } //used to manage the public access module.exports.GetDefaultAccessManageRouter = function(moduleName, authAppFuncs) { const accessRouter = meanRestExpress.RestRouter(accessDef, moduleName, authAppFuncs); const restController = accessRouter.restController; dbOperations.populatePublicAccess(restController); return accessRouter; }