wikijs-fork/server/core/auth.js

const passport = require('passport')
const passportJWT = require('passport-jwt')
const fs = require('fs-extra')
const _ = require('lodash')
const path = require('path')

const securityHelper = require('../helpers/security')

/* global WIKI */

module.exports = {
  strategies: {},
  init() {
    this.passport = passport

    // Serialization user methods

    passport.serializeUser(function (user, done) {
      done(null, user.id)
    })

    passport.deserializeUser(function (id, done) {
      WIKI.models.users.query().findById(id).then((user) => {
        if (user) {
          done(null, user)
        } else {
          done(new Error(WIKI.lang.t('auth:errors:usernotfound')), null)
        }
        return true
      }).catch((err) => {
        done(err, null)
      })
    })

    return this
  },
  async activateStrategies() {
    try {
      // Unload any active strategies
      WIKI.auth.strategies = {}
      const currentStrategies = _.keys(passport._strategies)
      _.pull(currentStrategies, 'session')
      _.forEach(currentStrategies, stg => { passport.unuse(stg) })

      // Load JWT
      passport.use('jwt', new passportJWT.Strategy({
        jwtFromRequest: securityHelper.extractJWT,
        secretOrKey: WIKI.config.sessionSecret,
        audience: 'urn:wiki.js', // TODO: use value from admin
        issuer: 'urn:wiki.js'
      }, (jwtPayload, cb) => {
        cb(null, jwtPayload)
      }))

      // Load enabled strategies
      const enabledStrategies = await WIKI.models.authentication.getStrategies()
      for (let idx in enabledStrategies) {
        const stg = enabledStrategies[idx]
        if (!stg.isEnabled) { continue }

        const strategy = require(`../modules/authentication/${stg.key}/authentication.js`)

        stg.config.callbackURL = `${WIKI.config.host}/login/${stg.key}/callback` // TODO: config.host
        strategy.init(passport, stg.config)

        fs.readFile(path.join(WIKI.ROOTPATH, `assets/svg/auth-icon-${strategy.key}.svg`), 'utf8').then(iconData => {
          strategy.icon = iconData
        }).catch(err => {
          if (err.code === 'ENOENT') {
            strategy.icon = '[missing icon]'
          } else {
            WIKI.logger.warn(err)
          }
        })
        WIKI.auth.strategies[stg.key] = strategy
        WIKI.logger.info(`Authentication Strategy ${stg.key}: [ OK ]`)
      }
    } catch (err) {
      WIKI.logger.error(`Authentication Strategy: [ FAILED ]`)
      WIKI.logger.error(err)
    }
  }
}
feat: self-contained auth modules + login UI + icons 2017-09-11 03:00:03 +00:00			`const passport = require('passport')`
feat: auth jwt, permissions, login ui (wip) 2018-10-08 04:17:31 +00:00			`const passportJWT = require('passport-jwt')`
feat: self-contained auth modules + login UI + icons 2017-09-11 03:00:03 +00:00			`const fs = require('fs-extra')`
refactor: remove config namespaces 2018-05-28 18:46:55 +00:00			`const _ = require('lodash')`
feat: self-contained auth modules + login UI + icons 2017-09-11 03:00:03 +00:00			`const path = require('path')`
feat: authentication improvements 2018-08-04 21:27:55 +00:00
feat: auth jwt, permissions, login ui (wip) 2018-10-08 04:17:31 +00:00			`const securityHelper = require('../helpers/security')`
refactor: remove config namespaces 2018-05-28 18:46:55 +00:00
			`/* global WIKI */`
Merged core back into main project 2017-04-02 23:56:47 +00:00
feat: queue handling 2017-08-03 03:47:11 +00:00			`module.exports = {`
feat: self-contained auth modules + login UI + icons 2017-09-11 03:00:03 +00:00			`strategies: {},`
			`init() {`
			`this.passport = passport`

			`// Serialization user methods`
Merged core back into main project 2017-04-02 23:56:47 +00:00
feat: queue handling 2017-08-03 03:47:11 +00:00			`passport.serializeUser(function (user, done) {`
feat: login + TFA authentication 2018-01-10 01:41:53 +00:00			`done(null, user.id)`
feat: queue handling 2017-08-03 03:47:11 +00:00			`})`
Merged core back into main project 2017-04-02 23:56:47 +00:00
feat: queue handling 2017-08-03 03:47:11 +00:00			`passport.deserializeUser(function (id, done) {`
feat: auth jwt, permissions, login ui (wip) 2018-10-08 04:17:31 +00:00			`WIKI.models.users.query().findById(id).then((user) => {`
			`if (user) {`
			`done(null, user)`
			`} else {`
			`done(new Error(WIKI.lang.t('auth:errors:usernotfound')), null)`
			`}`
			`return true`
			`}).catch((err) => {`
			`done(err, null)`
			`})`
Merged core back into main project 2017-04-02 23:56:47 +00:00			`})`

feat: self-contained auth modules + login UI + icons 2017-09-11 03:00:03 +00:00			`return this`
refactor: remove config namespaces 2018-05-28 18:46:55 +00:00			`},`
			`async activateStrategies() {`
			`try {`
			`// Unload any active strategies`
feat: locale namespacing save + auth fetch fix 2018-05-28 23:36:35 +00:00			`WIKI.auth.strategies = {}`
refactor: remove config namespaces 2018-05-28 18:46:55 +00:00			`const currentStrategies = _.keys(passport._strategies)`
			`_.pull(currentStrategies, 'session')`
			`_.forEach(currentStrategies, stg => { passport.unuse(stg) })`

feat: auth jwt, permissions, login ui (wip) 2018-10-08 04:17:31 +00:00			`// Load JWT`
			`passport.use('jwt', new passportJWT.Strategy({`
			`jwtFromRequest: securityHelper.extractJWT,`
			`secretOrKey: WIKI.config.sessionSecret,`
			`audience: 'urn:wiki.js', // TODO: use value from admin`
			`issuer: 'urn:wiki.js'`
			`}, (jwtPayload, cb) => {`
			`cb(null, jwtPayload)`
			`}))`

feat: auth self-registration config + gql grouping 2018-06-25 06:44:40 +00:00			`// Load enabled strategies`
feat: core improvements + local fs provider + UI fixes 2018-07-30 02:23:33 +00:00			`const enabledStrategies = await WIKI.models.authentication.getStrategies()`
refactor: remove config namespaces 2018-05-28 18:46:55 +00:00			`for (let idx in enabledStrategies) {`
			`const stg = enabledStrategies[idx]`
feat: auth self-registration config + gql grouping 2018-06-25 06:44:40 +00:00			`if (!stg.isEnabled) { continue }`

feat: authentication module refactor + added CAS module 2018-07-08 15:16:45 +00:00			const strategy = require(`../modules/authentication/${stg.key}/authentication.js`)
feat: auth self-registration config + gql grouping 2018-06-25 06:44:40 +00:00
feat: theming resolvers + config fixes 2018-06-11 03:23:09 +00:00			stg.config.callbackURL = `${WIKI.config.host}/login/${stg.key}/callback` // TODO: config.host
refactor: remove config namespaces 2018-05-28 18:46:55 +00:00			`strategy.init(passport, stg.config)`

			fs.readFile(path.join(WIKI.ROOTPATH, `assets/svg/auth-icon-${strategy.key}.svg`), 'utf8').then(iconData => {
			`strategy.icon = iconData`
			`}).catch(err => {`
			`if (err.code === 'ENOENT') {`
			`strategy.icon = '[missing icon]'`
			`} else {`
			`WIKI.logger.warn(err)`
			`}`
			`})`
			`WIKI.auth.strategies[stg.key] = strategy`
feat: auth advanced settings UI + reload auth on save 2018-10-13 03:14:11 +00:00			WIKI.logger.info(`Authentication Strategy ${stg.key}: [ OK ]`)
refactor: remove config namespaces 2018-05-28 18:46:55 +00:00			`}`
			`} catch (err) {`
			WIKI.logger.error(`Authentication Strategy: [ FAILED ]`)
			`WIKI.logger.error(err)`
			`}`
feat: queue handling 2017-08-03 03:47:11 +00:00			`}`
Merged core back into main project 2017-04-02 23:56:47 +00:00			`}`