UNPKG

on-http-y1

Version:

OnRack Http Server

github.com/RackHD/on-http

RackHD/on-http

109 lines (100 loc) 4.31 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
// Copyright 2016, EMC, Inc. 'use strict'; var injector = require('../../../index.js').injector; var redfish = injector.get('Http.Api.Services.Redfish'); var Promise = injector.get('Promise'); // jshint ignore:line var _ = injector.get('_'); // jshint ignore:line var controller = injector.get('Http.Services.Swagger').controller; var auth = injector.get('Auth.Services'); var uuid = injector.get('uuid'); var Errors = injector.get('Errors'); var getSessionService = controller(function(req, res) { var options = redfish.makeOptions(req, res); return redfish.render('redfish.1.0.0.sessionservice.1.0.0.json', 'SessionService.v1_1_1.json#/definitions/SessionService', options) .catch(function(error) { return redfish.handleError(error, res); }); }); var getSessions = controller(function(req, res) { var options = redfish.makeOptions(req, res); options.sessions = _.filter(auth.getRedfishSession(), function(session) { if( req.isAuthenticated && req.isAuthenticated() ) { if( req.hasRole('Administrator') || req.hasRole('ConfigureUsers') || (req.user === session.user && req.hasRole('ConfigureSelf'))) { return true; } } return false; }); return redfish.render('redfish.1.0.0.sessioncollection.json', 'SessionCollection.json#/definitions/SessionCollection', options) .catch(function(error) { return redfish.handleError(error, res); }); }); var postSession = controller(function(req, res) { var options = redfish.makeOptions(req, res); var payload = req.swagger.params.payload.value; return Promise.fromNode(auth.localStrategyAuth.bind(auth, payload.UserName, payload.Password)) .then(function(user) { if(payload.UserName === user) { var id = uuid('v4'); res.setHeader('X-Auth-Token', auth.addRedfishSession(user, id)); options.entry = auth.getRedfishSession(id); return redfish.render('redfish.1.0.0.session.1.0.0.json', 'Session.v1_0_3.json#/definitions/Session', options); } res.status(401).send("Unauthorized"); }); }); var getSessionInfo = controller(function(req, res) { var options = redfish.makeOptions(req, res); var identifier = req.swagger.params.identifier.value; var found = auth.getRedfishSession(identifier); return Promise.resolve(found).then(function(found) { if(found) { if( req.isAuthenticated && req.isAuthenticated() ) { if( req.hasRole('Administrator') || req.hasRole('ConfigureUsers') || (req.user === found.user && req.hasRole('ConfigureSelf'))) { options.entry = found; return redfish.render('redfish.1.0.0.session.1.0.0.json', 'Session.v1_0_3.json#/definitions/Session', options); } } } throw new Errors.NotFoundError('session identifier ' + identifier + ' was not found'); }).catch(function(error) { return redfish.handleError(error, res); }); }); var doLogoutSession = controller({success: 204}, function(req, res) { var identifier = req.swagger.params.identifier.value; var found = auth.getRedfishSession(identifier); return Promise.resolve(found).then(function(found) { if(found) { if( req.hasRole('Administrator') || req.hasRole('ConfigureUsers')) { auth.delRedfishSession(identifier); } else if(req.user === found.user && req.hasRole('ConfigureSelf')) { auth.delRedfishSession(identifier); } else { throw new Errors.ForbiddenError('Forbidden'); } } else { throw new Errors.NotFoundError('session identifier ' + identifier + ' was not found'); } }).catch(function(error) { return redfish.handleError(error, res); }); }); module.exports = { getSessionService: getSessionService, getSessions: getSessions, postSession: postSession, getSessionInfo: getSessionInfo, doLogoutSession: doLogoutSession };