wikijs-fork/server/middlewares/auth.js

'use strict'

/* global appdata, rights */

const moment = require('moment-timezone')

/**
 * Authentication middleware
 *
 * @param      {Express Request}   req     Express Request object
 * @param      {Express Response}  res     Express Response object
 * @param      {Function}          next    Next callback function
 * @return     {any}               void
 */
module.exports = (req, res, next) => {
  // Is user authenticated ?

  if (!req.isAuthenticated()) {
    if (!appdata.capabilities.guest || req.app.locals.appconfig.public !== true) {
      return res.redirect('/login')
    } else {
      req.user = rights.guest
      res.locals.isGuest = true
    }
  } else if (appdata.capabilities.guest) {
    res.locals.isGuest = false
  }

  // Check permissions

  if (appdata.capabilities.rights) {
    res.locals.rights = rights.check(req)

    if (!res.locals.rights.read) {
      return res.render('error-forbidden')
    }
  }

  // Set i18n locale

  req.i18n.changeLanguage(req.user.lang)
  res.locals.userMoment = moment
  res.locals.userMoment.locale(req.user.lang)

  // Expose user data

  res.locals.user = req.user

  return next()
}
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`'use strict'`
Base Project Files 2016-08-17 00:56:55 +00:00
Merged core back into main project 2017-04-02 23:56:47 +00:00			`/* global appdata, rights */`

Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`const moment = require('moment-timezone')`
Base Project Files 2016-08-17 00:56:55 +00:00
			`/**`
			`* Authentication middleware`
			`*`
			`* @param {Express Request} req Express Request object`
			`* @param {Express Response} res Express Response object`
			`* @param {Function} next Next callback function`
			`* @return {any} void`
			`*/`
			`module.exports = (req, res, next) => {`
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`// Is user authenticated ?`
Base Project Files 2016-08-17 00:56:55 +00:00
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`if (!req.isAuthenticated()) {`
Merged core back into main project 2017-04-02 23:56:47 +00:00			`if (!appdata.capabilities.guest \|\| req.app.locals.appconfig.public !== true) {`
			`return res.redirect('/login')`
			`} else {`
			`req.user = rights.guest`
			`res.locals.isGuest = true`
			`}`
			`} else if (appdata.capabilities.guest) {`
			`res.locals.isGuest = false`
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`}`
Base Project Files 2016-08-17 00:56:55 +00:00
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`// Check permissions`
Base Project Files 2016-08-17 00:56:55 +00:00
Merged core back into main project 2017-04-02 23:56:47 +00:00			`if (appdata.capabilities.rights) {`
			`res.locals.rights = rights.check(req)`

			`if (!res.locals.rights.read) {`
			`return res.render('error-forbidden')`
			`}`
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`}`
Added access rights feature + read access check 2016-11-01 02:44:00 +00:00
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`// Set i18n locale`
Added access rights feature + read access check 2016-11-01 02:44:00 +00:00
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`req.i18n.changeLanguage(req.user.lang)`
			`res.locals.userMoment = moment`
			`res.locals.userMoment.locale(req.user.lang)`
Base Project Files 2016-08-17 00:56:55 +00:00
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`// Expose user data`
Base Project Files 2016-08-17 00:56:55 +00:00
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`res.locals.user = req.user`
Base Project Files 2016-08-17 00:56:55 +00:00
Standard JS code conversion + fixes 2017-02-09 01:52:37 +00:00			`return next()`
			`}`