Mirrors/audiobookshelf
Mirrors/audiobookshelf
1
0
Fork 0
mirror of https://github.com/advplyr/audiobookshelf.git synced 2025-01-08 00:08:14 +01:00
Code Issues Packages Projects Releases Wiki Activity

Allow rest mode login (?isRest=true)

Browse Source
This commit is contained in:
lukeIam 2023-09-17 18:42:42 +01:00
parent 942aa93f57
commit 0a6cd89090
1 changed files with 63 additions and 45 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

108
server/Auth.js
View File

@ -104,6 +104,63 @@ class Auth {
}).bind(this)) }).bind(this))
} }
/**
* Stores the client's choise how the login callback should happen in temp cookies.
* @param {*} req Request object.
* @param {*} res Response object.
*/
paramsToCookies(req, res) {
if (req.query.isRest && (req.query.isRest.toLowerCase() == "true" || req.query.isRest.toLowerCase() == "false")) {
res.cookie('is_rest', req.query.isRest.toLowerCase(), {
maxAge: 120000 * 120, // Hack - this semms to be in UTC??
httpOnly: true
})
}
else {
res.cookie('is_rest', "false", {
maxAge: 120000 * 120, // Hack - this semms to be in UTC??
httpOnly: true
})
if (!req.query.callback || req.query.callback === "") {
res.status(400).send({
message: 'No callback parameter'
})
return
}
res.cookie('auth_cb', req.query.callback, {
maxAge: 120000 * 120, // Hack - this semms to be in UTC??
httpOnly: true
})
}
}
/**
* Informs the client in the right mode about a successfull login and the token
* (clients choise is restored from cookies).
* @param {*} req Request object.
* @param {*} res Response object.
*/
async handleLoginSuccessBasedOnCookie(req, res) {
const data_json = await this.getUserLoginResponsePayload(req.user)
if (req.cookies.is_rest && req.cookies.is_rest === "true") {
// REST request - send data
res.json(data_json)
}
else {
// UI request -> check if we have a callback url
// TODO: do we want to somehow limit the values for auth_cb?
if (req.cookies.auth_cb && req.cookies.auth_cb.startsWith("http")) {
// UI request -> redirect
res.redirect(302, `${req.cookies.auth_cb}?setToken=${data_json.user.token}`)
}
else {
res.status(400).send("No callback or already expired")
}
}
}
/** /**
* Creates all (express) routes required for authentication. * Creates all (express) routes required for authentication.
* @param {express.Router} router * @param {express.Router} router
@ -120,66 +177,27 @@ class Auth {
// google-oauth20 strategy login route (this redirects to the google login) // google-oauth20 strategy login route (this redirects to the google login)
router.get('/auth/google', (req, res, next) => { router.get('/auth/google', (req, res, next) => {
const auth_func = passport.authenticate('google', { scope: ['email'] }) const auth_func = passport.authenticate('google', { scope: ['email'] })
if (!req.query.callback || req.query.callback === "") { this.paramsToCookies(req, res)
res.status(400).send({ auth_func(req, res, next)
message: 'No callback parameter'
})
return
}
res.cookie('auth_cb', req.query.callback, {
maxAge: 120000 * 120, // Hack - this semms to be in UTC??
httpOnly: true
})
auth_func(req, res, next);
}) })
// google-oauth20 strategy callback route (this receives the token from google) // google-oauth20 strategy callback route (this receives the token from google)
router.get('/auth/google/callback', router.get('/auth/google/callback',
passport.authenticate('google'), passport.authenticate('google'),
(async function (req, res) { this.handleLoginSuccessBasedOnCookie.bind(this)
// return the user login response json if the login was successfull
var data_json = await this.getUserLoginResponsePayload(req.user)
// res.json(data_json)
// TODO: do we want to somehow limit the values for auth_cb?
if (req.cookies.auth_cb) {
res.redirect(302, `${req.cookies.auth_cb}?setToken=${data_json.user.token}`)
}
else {
res.status(400).send("No callback or already expired")
}
}).bind(this)
) )
// openid strategy login route (this redirects to the configured openid login provider) // openid strategy login route (this redirects to the configured openid login provider)
router.get('/auth/openid', (req, res, next) => { router.get('/auth/openid', (req, res, next) => {
const auth_func = passport.authenticate('openidconnect') const auth_func = passport.authenticate('openidconnect')
if (!req.query.callback || req.query.callback === "") { this.paramsToCookies(req, res)
res.status(400).send({ auth_func(req, res, next)
message: 'No callback parameter'
})
return
}
res.cookie('auth_cb', req.query.callback, {
maxAge: 120000 * 120, // Hack - this semms to be in UTC??
httpOnly: true
})
auth_func(req, res, next);
}) })
// openid strategy callback route (this receives the token from the configured openid login provider) // openid strategy callback route (this receives the token from the configured openid login provider)
router.get('/auth/openid/callback', router.get('/auth/openid/callback',
passport.authenticate('openidconnect'), passport.authenticate('openidconnect'),
(async function (req, res) { this.handleLoginSuccessBasedOnCookie.bind(this)
// return the user login response json if the login was successfull
var data_json = await this.getUserLoginResponsePayload(req.user)
// res.json(data_json)
if (req.cookies.auth_cb) {
res.redirect(302, `${req.cookies.auth_cb}?setToken=${data_json.user.token}`)
}
else {
res.status(400).send("No callback or already expired")
}
}).bind(this)
) )
// Logout route // Logout route