UNPKG

taas-server

Version:

Things-as-a-service for 'hidden servers' (behind firewalls/NATs) and 'mobile clients' using a third-party service

github.com/TheThingSystem/taas-server

TheThingSystem/taas-server

81 lines (63 loc) 2.55 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
var redis = require('redis') , speakeasy = require('speakeasy') , winston = require('winston') , options = require('./local').options , vous = require('./taas') ; if (options.redisHost === '127.0.0.1') { require('nedis').createServer({ server: options.redisHost, port: options.redisPort }).listen(options.redisPort); } options.logger = new (winston.Logger)({ transports : [ new (winston.transports.Console)({ level : 'error' }) , new (winston.transports.File) ({ filename : 'server.log' }) ] }); options.logger.setLevels(winston.config.syslog.levels); var startP = false; var client = redis.createClient(options.redisPort, options.redisHost, { parser: 'javascript' }); client.auth(options.redisAuth, function(err) { if (err) throw err; }); client.on('ready', function() { if (startP) return; startP = true; options.logger.info('redis started'); vous.listen(options); }).on('connect', function() { }).on('error', function(err) { options.logger.error('redis error: ' + err.message); throw err; }).on('end', function() { }); options.lookup = function(options, params, cb) { if (params.response.length < 6) return cb(new Error('response too short')); client.get(params.username, function(err, reply) { var entry, i, label, labels, now, otparams, portno, x; if (err) return cb(err); if (reply === null) return cb(new Error('no such entry')); try { entry = JSON.parse(reply); } catch(ex) { return cb(ex); } // compare against previous, current, and next key to avoid worrying about clock synchornization... now = [ parseInt(Date.now() / 1000, 10) ]; now.push(now[0] - 30); now.push(now[0] + 30); otparams = { key : entry.authParams.base32 , length : params.response.length , encoding : 'base32' , step : entry.authParams.step }; labels = {}; for (i = 0; i < entry.labels.length; i++) { label = entry.labels[i]; x = label.indexOf(':'); if (x !== -1) { portno = label.substring(x + 1); label = label.substring(0, x); } else portno = 0; labels[label] = portno; } for (i = 0; i < now.length; i++) { otparams.time = now[i]; if (speakeasy.totp(otparams) === params.response.toString()) return cb(null, labels); } cb(new Error('authentication mismatch')); }); };