UNPKG

nodulator

Version:

Complete NodeJS Framework for Restfull APIs

github.com/Champii/Nodulator

Champii/Nodulator

113 lines (95 loc) 3.33 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
var xtend = require('xtend'); function parseCookie(auth, cookieHeader) { var cookieParser = auth.cookieParser(auth.secret); var req = { headers:{ cookie: cookieHeader } }; var result; cookieParser(req, {}, function (err) { if (err) throw err; result = req.signedCookies || req.cookies; }); return result; } function authorize(options) { var defaults = { passport: require('passport'), key: 'connect.sid', secret: null, store: null, success: function (data, accept){ if (data.socketio_version_1) { accept(); } else { accept(null, true); } }, fail: function (data, message, critical, accept) { if (data.socketio_version_1) { accept(new Error(message)); } else { accept(null, false); } } }; var auth = xtend(defaults, options); auth.userProperty = auth.passport._userProperty || 'user'; if (!auth.cookieParser) { try { auth.cookieParser = require('cookie-parser'); } catch (err) { throw new Error('cookieParser is required use require(\'cookie-parser\'), connect.cookieParser or express.cookieParser'); } } return function(data, accept){ // socket.io v1.0 now provides socket handshake data via `socket.request` if (data.request) { data = data.request; data.socketio_version_1 = true; } data.cookie = parseCookie(auth, data.headers.cookie || ''); data.sessionID = (data.query && data.query.session_id) || (data._query && data._query.session_id) || data.cookie[auth.key] || ''; data[auth.userProperty] = { logged_in: false }; if(data.xdomain && !data.sessionID) return auth.fail(data, 'Can not read cookies from CORS-Requests. See CORS-Workaround in the readme.', false, accept); auth.store.get(data.sessionID, function(err, session){ if(err) return auth.fail(data, 'Error in session store:\n' + err.message, true, accept); if(!session) return auth.fail(data, 'No session found', false, accept); if(!session[auth.passport._key]) return auth.fail(data, 'Passport was not initialized', true, accept); var userKey = session[auth.passport._key][auth.userProperty]; if(typeof(userKey) === 'undefined') return auth.fail(data, 'User not authorized through passport. (User Property not found)', false, accept); auth.passport.deserializeUser(userKey, data, function(err, user) { if (err) return auth.fail(data, err, true, accept); if (!user) return auth.fail(data, "User not found", false, accept); data[auth.userProperty] = user; data[auth.userProperty].logged_in = true; auth.success(data, accept); }); }); }; } function filterSocketsByUser(socketIo, filter){ var handshaken = []; for ( var i in socketIo.sockets.connected ) if ( socketIo.sockets.connected[i].handshake ) handshaken.push( socketIo.sockets.connected[i] ) return Object.keys(handshaken || {}) .filter(function(skey){ return filter(handshaken[skey].conn.request.user); }) .map(function(skey){ return handshaken[skey]; }); } exports.authorize = authorize; exports.filterSocketsByUser = filterSocketsByUser;