will-auth
Version:
authentication and authorization module
296 lines (295 loc) • 15.8 kB
JavaScript
"use strict";
var __extends = (this && this.__extends) || (function () {
var extendStatics = function (d, b) {
extendStatics = Object.setPrototypeOf ||
({ __proto__: [] } instanceof Array && function (d, b) { d.__proto__ = b; }) ||
function (d, b) { for (var p in b) if (Object.prototype.hasOwnProperty.call(b, p)) d[p] = b[p]; };
return extendStatics(d, b);
};
return function (d, b) {
if (typeof b !== "function" && b !== null)
throw new TypeError("Class extends value " + String(b) + " is not a constructor or null");
extendStatics(d, b);
function __() { this.constructor = d; }
d.prototype = b === null ? Object.create(b) : (__.prototype = b.prototype, new __());
};
})();
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
return new (P || (P = Promise))(function (resolve, reject) {
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
step((generator = generator.apply(thisArg, _arguments || [])).next());
});
};
var __generator = (this && this.__generator) || function (thisArg, body) {
var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g;
return g = { next: verb(0), "throw": verb(1), "return": verb(2) }, typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
function verb(n) { return function (v) { return step([n, v]); }; }
function step(op) {
if (f) throw new TypeError("Generator is already executing.");
while (_) try {
if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
if (y = 0, t) op = [op[0] & 2, t.value];
switch (op[0]) {
case 0: case 1: t = op; break;
case 4: _.label++; return { value: op[1], done: false };
case 5: _.label++; y = op[1]; op = [0]; continue;
case 7: op = _.ops.pop(); _.trys.pop(); continue;
default:
if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
if (t[2]) _.ops.pop();
_.trys.pop(); continue;
}
op = body.call(thisArg, _);
} catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
}
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.LoginHandler = void 0;
var will_sql_1 = require("will-sql");
var will_lib_1 = require("will-lib");
var will_api_1 = require("will-api");
var uuid_1 = require("uuid");
var VerifyError_1 = require("../models/VerifyError");
var SchemeHandler_1 = require("./SchemeHandler");
var LoginHandler = /** @class */ (function (_super) {
__extends(LoginHandler, _super);
function LoginHandler() {
var _this = _super !== null && _super.apply(this, arguments) || this;
_this.model = { name: "tusertoken", alias: { privateAlias: _this.section } };
//declared addon actions name
_this.handlers = [{ name: "logincallback" }, { name: "logoutcallback" }, { name: "anonymouslogin" }];
return _this;
}
LoginHandler.prototype.logincallback = function (context) {
return __awaiter(this, void 0, void 0, function () {
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
if (!(this.model && this.isValidModelConfig("privateAlias", this.model))) return [3 /*break*/, 2];
return [4 /*yield*/, this.exposeFunctional(context, this.model, { operate: "logincallback" })];
case 1:
_a.sent();
return [2 /*return*/, this.doLoginCallback(context, this.model)];
case 2: return [2 /*return*/, Promise.reject(new VerifyError_1.VerifyError("Invalid setting", will_api_1.HTTP.NOT_ACCEPTABLE, -16006))];
}
});
});
};
LoginHandler.prototype.logoutcallback = function (context) {
return __awaiter(this, void 0, void 0, function () {
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
if (!(this.model && this.isValidModelConfig("privateAlias", this.model))) return [3 /*break*/, 2];
return [4 /*yield*/, this.exposeFunctional(context, this.model, { operate: "logoutcallback" })];
case 1:
_a.sent();
return [2 /*return*/, this.doLogoutCallback(context, this.model)];
case 2: return [2 /*return*/, Promise.reject(new VerifyError_1.VerifyError("Invalid setting", will_api_1.HTTP.NOT_ACCEPTABLE, -16006))];
}
});
});
};
LoginHandler.prototype.anonymouslogin = function (context) {
return __awaiter(this, void 0, void 0, function () {
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
if (!(this.model && this.isValidModelConfig("privateAlias", this.model))) return [3 /*break*/, 2];
return [4 /*yield*/, this.exposeFunctional(context, this.model, { operate: "anonymouslogin" })];
case 1:
_a.sent();
return [2 /*return*/, this.doAnonymousLogin(context, this.model)];
case 2: return [2 /*return*/, Promise.reject(new VerifyError_1.VerifyError("Invalid setting", will_api_1.HTTP.NOT_ACCEPTABLE, -16006))];
}
});
});
};
LoginHandler.prototype.doLoginCallback = function (context, model) {
return __awaiter(this, void 0, void 0, function () {
var pcode, pnonce, ptoken, pplayUri, atoken, db, db;
return __generator(this, function (_a) {
pcode = context.params.code;
pnonce = context.params.nonce;
ptoken = context.params.token;
pplayUri = context.params.playUri;
this.logger.debug("LoginHandler.doLoginCallback : uri=" + pplayUri + ", token=" + ptoken);
if (ptoken != undefined) {
atoken = will_lib_1.AuthenToken.verifyAuthenToken(ptoken, false);
if (atoken.identifier == undefined) {
return [2 /*return*/, Promise.reject(new VerifyError_1.VerifyError("Token undefined", will_api_1.HTTP.UNAUTHORIZED, -16071))];
}
db = this.getPrivateConnector(model);
try {
return [2 /*return*/, this.processLogin(context, db, atoken.identifier, ptoken)];
}
finally {
if (db)
db.close();
}
}
else {
if (pnonce == undefined) {
return [2 /*return*/, Promise.reject(new VerifyError_1.VerifyError("Bad request", will_api_1.HTTP.BAD_REQUEST, -16072))];
}
db = this.getPrivateConnector(model);
try {
return [2 /*return*/, this.processLoginByNonce(context, db, "" + pnonce, "" + pcode)];
}
finally {
if (db)
db.close();
}
}
return [2 /*return*/];
});
});
};
LoginHandler.prototype.processLogin = function (context, db, useruuid, token) {
return __awaiter(this, void 0, void 0, function () {
var sql, rs;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
this.logger.debug("LoginHandler.processLogin: uuid=" + useruuid);
sql = new will_sql_1.KnSQL("select tusertoken.*,tuserinfo.userename,tuserinfo.useresurname,tuserinfo.email,tuserinfo.displayname,tuserinfo.usercontents ");
sql.append("from tusertoken,tuserinfo ");
sql.append("where tusertoken.useruuid = ?useruuid ");
sql.append("and tusertoken.userid = tuserinfo.userid ");
sql.set("useruuid", useruuid);
this.logger.info(sql);
return [4 /*yield*/, sql.executeQuery(db)];
case 1:
rs = _a.sent();
this.logger.debug("LoginHandler.processLogin", "effected " + rs.rows.length + " rows.");
if (rs.rows && rs.rows.length > 0) {
return [2 /*return*/, Promise.resolve(this.composeResponseInfo(rs.rows[0]))];
}
else {
return [2 /*return*/, Promise.reject(new VerifyError_1.VerifyError("Not found", will_api_1.HTTP.UNAUTHORIZED, -16073))];
}
return [2 /*return*/];
}
});
});
};
LoginHandler.prototype.composeResponseInfo = function (row) {
var userinfo = {};
if (row.usercontents && row.usercontents.trim().length > 0) {
userinfo = JSON.parse(row.usercontents);
}
this.logger.debug("LoginHandler.composeResponseInfo: userinfo", userinfo);
var accessinfo = {};
if (row.accesscontents && row.accesscontents.trim().length > 0) {
accessinfo = JSON.parse(row.accesscontents);
}
this.logger.debug("LoginHandler.composeResponseInfo: accessinfo", accessinfo);
var response = {
authToken: row.authtoken,
userUuid: row.useruuid,
textures: [],
email: row.email,
displayName: row.displayname,
userPrincipalName: row.userename + " " + row.useresurname,
userContents: userinfo,
accessContents: accessinfo,
info: {
prime: row.prime,
generator: row.generator,
publickey: row.publickey,
}
};
return response;
};
LoginHandler.prototype.processLoginByNonce = function (context, db, nonce, code) {
return __awaiter(this, void 0, void 0, function () {
var sql, rs;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
this.logger.debug("LoginHandler.processLoginByNonce: nonce=" + nonce + ", code=" + code);
sql = new will_sql_1.KnSQL("select tusertoken.*,tuserinfo.userename,tuserinfo.useresurname,tuserinfo.email,tuserinfo.displayname,tuserinfo.usercontents ");
sql.append("from tusertoken,tuserinfo ");
sql.append("where tusertoken.nonce = ?nonce ");
sql.append("and tusertoken.outdate is null and tusertoken.outtime is null ");
sql.append("and tusertoken.userid = tuserinfo.userid ");
sql.set("nonce", nonce);
this.logger.info(sql);
return [4 /*yield*/, sql.executeQuery(db)];
case 1:
rs = _a.sent();
this.logger.debug("LoginHandler.processLoginByNonce", "effected " + rs.rows.length + " rows.");
if (rs.rows && rs.rows.length > 0) {
return [2 /*return*/, Promise.resolve(this.composeResponseInfo(rs.rows[0]))];
}
else {
return [2 /*return*/, Promise.reject(new VerifyError_1.VerifyError("Not found", will_api_1.HTTP.UNAUTHORIZED, -16074))];
}
return [2 /*return*/];
}
});
});
};
LoginHandler.prototype.doLogoutCallback = function (context, model) {
return __awaiter(this, void 0, void 0, function () {
var ptoken, response, db;
return __generator(this, function (_a) {
ptoken = context.params.token;
this.logger.debug("LoginHandler.doLogoutCallback : token=" + ptoken);
response = { authToken: ptoken ? ptoken : "" };
this.logger.debug(response);
if (ptoken != undefined) {
db = this.getPrivateConnector(model);
try {
this.processLogout(db, "" + ptoken);
}
finally {
if (db)
db.close();
}
}
return [2 /*return*/, Promise.resolve(response)];
});
});
};
LoginHandler.prototype.processLogout = function (db, token) {
return __awaiter(this, void 0, void 0, function () {
var now, sql, rs;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
now = new Date();
sql = new will_sql_1.KnSQL("update tusertoken set outdate = ?outdate, outtime = ?outtime ");
sql.append("where authtoken = ?authtoken ");
sql.set("outdate", now, "DATE");
sql.set("outtime", now, "TIME");
sql.set("authtoken", token);
this.logger.info(sql);
return [4 /*yield*/, sql.executeQuery(db)];
case 1:
rs = _a.sent();
this.logger.debug("LoginHandler.processLogout", "affected " + rs.rows.affectedRows + " rows.");
return [2 /*return*/, Promise.resolve(rs)];
}
});
});
};
LoginHandler.prototype.doAnonymousLogin = function (context, model) {
var useruuid = (0, uuid_1.v4)();
var authtoken = will_lib_1.AuthenToken.createAuthenToken(useruuid);
var response = {
userUuid: useruuid,
authToken: authtoken
};
return Promise.resolve(response);
};
return LoginHandler;
}(SchemeHandler_1.SchemeHandler));
exports.LoginHandler = LoginHandler;