starred/stf-DeviceFarmer
1
0
Fork 0
mirror of https://github.com/DeviceFarmer/stf.git synced 2026-04-18 16:13:24 +02:00
Code Issues Packages Projects Releases Wiki Activity
Files
339b6a86fc26a67727689fef44b60a31327b4e9b
stf-DeviceFarmer/lib/units/auth/oauth2/index.js
Denis Barbaron b037a107c4 update oauth2 to get contact information (#673) 
Signed-off-by: Denis barbaron <denis.barbaron@orange.com>
Co-authored-by: Karol Wrótniak <karol.wrotniak@droidsonroids.pl>
2023-06-13 13:02:59 +02:00

88 lines
2.0 KiB
JavaScript
Raw Blame History

var http = require('http')
var express = require('express')
var passport = require('passport')
var logger = require('../../../util/logger')
var urlutil = require('../../../util/urlutil')
var jwtutil = require('../../../util/jwtutil')
var Strategy = require('./strategy')
const dbapi = require('../../../db/api')
module.exports = function(options) {
var log = logger.createLogger('auth-oauth2')
var app = express()
var server = http.createServer(app)
app.set('strict routing', true)
app.set('case sensitive routing', true)
app.get('/auth/contact', function(req, res) {
dbapi.getRootGroup().then(function(group) {
res.status(200)
.json({
success: true
, contact: group.owner
})
})
.catch(function(err) {
log.error('Unexpected error', err.stack)
res.status(500)
.json({
success: false
, error: 'ServerError'
})
})
})
function verify(accessToken, refreshToken, profile, done) {
done(null, profile)
}
passport.use(new Strategy(options.oauth, verify))
app.use(passport.initialize())
app.use(passport.authenticate('oauth2', {
failureRedirect: '/auth/oauth/'
, session: false
}))
function isEmailAllowed(email) {
if (email) {
if (options.domain) {
return email.endsWith(options.domain)
}
return true
}
return false
}
app.get(
'/auth/oauth/callback'
, function(req, res) {
if (isEmailAllowed(req.user.email)) {
res.redirect(urlutil.addParams(options.appUrl, {
jwt: jwtutil.encode({
payload: {
email: req.user.email
, name: req.user.email.split('@', 1).join('')
}
, secret: options.secret
, header: {
exp: Date.now() + 24 * 3600
}
})
}))
}
else {
log.warn('Missing or disallowed email in profile', req.user)
res.render('rejected-email')
}
}
)
server.listen(options.port)
log.info('Listening on port %d', options.port)
}
Reference in New Issue View Git Blame Copy Permalink