nodebb/src/routes/authentication.js

(function (Auth) {
	"use strict";

	var passport = require('passport'),
		passportLocal = require('passport-local').Strategy,
		nconf = require('nconf'),
		winston = require('winston'),
		express = require('express'),

		controllers = require('../controllers'),
		plugins = require('../plugins'),
		hotswap = require('../hotswap'),

		loginStrategies = [];

	Auth.initialize = function (app, middleware) {
		app.use(passport.initialize());
		app.use(passport.session());

		app.use(function (req, res, next) {
			req.uid = req.user ? parseInt(req.user.uid, 10) : 0;
			next();
		});

		Auth.app = app;
		Auth.middleware = middleware;
	};

	Auth.getLoginStrategies = function () {
		return loginStrategies;
	};

	Auth.reloadRoutes = function (callback) {
		var router = express.Router();
		router.hotswapId = 'auth';

		loginStrategies.length = 0;

		if (plugins.hasListeners('action:auth.overrideLogin')) {
			winston.warn('[authentication] Login override detected, skipping local login strategy.');
			plugins.fireHook('action:auth.overrideLogin');
		} else {
			passport.use(new passportLocal({passReqToCallback: true}, controllers.authentication.localLogin));
		}

		plugins.fireHook('filter:auth.init', loginStrategies, function (err) {
			if (err) {
				winston.error('filter:auth.init - plugin failure');
				return callback(err);
			}

			loginStrategies.forEach(function (strategy) {
				if (strategy.url) {
					router.get(strategy.url, passport.authenticate(strategy.name, {
						scope: strategy.scope,
						prompt: strategy.prompt || undefined
					}));
				}

				router.get(strategy.callbackURL, passport.authenticate(strategy.name, {
					successReturnToOrRedirect: nconf.get('relative_path') + (strategy.successUrl !== undefined ? strategy.successUrl : '/'),
					failureRedirect: nconf.get('relative_path') + (strategy.failureUrl !== undefined ? strategy.failureUrl : '/login')
				}));
			});

			router.post('/register', Auth.middleware.applyCSRF, Auth.middleware.applyBlacklist, controllers.authentication.register);
			router.post('/register/complete', Auth.middleware.applyCSRF, Auth.middleware.applyBlacklist, controllers.authentication.registerComplete);
			router.get('/register/abort', controllers.authentication.registerAbort);
			router.post('/login', Auth.middleware.applyCSRF, Auth.middleware.applyBlacklist, controllers.authentication.login);
			router.post('/logout', Auth.middleware.applyCSRF, controllers.authentication.logout);

			hotswap.replace('auth', router);
			if (typeof callback === 'function') {
				callback();
			}
		});
	};

	passport.serializeUser(function (user, done) {
		done(null, user.uid);
	});

	passport.deserializeUser(function (uid, done) {
		done(null, {
			uid: uid
		});
	});

}(exports));
Fix space-before-function-paren linter rule 9 years ago			`(function (Auth) {`
line endings? #3343 10 years ago			`"use strict";`

			`var passport = require('passport'),`
			`passportLocal = require('passport-local').Strategy,`
			`nconf = require('nconf'),`
			`winston = require('winston'),`
			`express = require('express'),`

			`controllers = require('../controllers'),`
			`plugins = require('../plugins'),`
			`hotswap = require('../hotswap'),`

			`loginStrategies = [];`

Fix space-before-function-paren linter rule 9 years ago			`Auth.initialize = function (app, middleware) {`
line endings? #3343 10 years ago			`app.use(passport.initialize());`
			`app.use(passport.session());`

Fix space-before-function-paren linter rule 9 years ago			`app.use(function (req, res, next) {`
line endings? #3343 10 years ago			`req.uid = req.user ? parseInt(req.user.uid, 10) : 0;`
			`next();`
			`});`

			`Auth.app = app;`
			`Auth.middleware = middleware;`
			`};`

Fix space-before-function-paren linter rule 9 years ago			`Auth.getLoginStrategies = function () {`
line endings? #3343 10 years ago			`return loginStrategies;`
			`};`

Fix space-before-function-paren linter rule 9 years ago			`Auth.reloadRoutes = function (callback) {`
line endings? #3343 10 years ago			`var router = express.Router();`
			`router.hotswapId = 'auth';`

			`loginStrategies.length = 0;`

			`if (plugins.hasListeners('action:auth.overrideLogin')) {`
			`winston.warn('[authentication] Login override detected, skipping local login strategy.');`
			`plugins.fireHook('action:auth.overrideLogin');`
			`} else {`
			`passport.use(new passportLocal({passReqToCallback: true}, controllers.authentication.localLogin));`
			`}`

Fix space-before-function-paren linter rule 9 years ago			`plugins.fireHook('filter:auth.init', loginStrategies, function (err) {`
line endings? #3343 10 years ago			`if (err) {`
			`winston.error('filter:auth.init - plugin failure');`
			`return callback(err);`
			`}`

Fix space-before-function-paren linter rule 9 years ago			`loginStrategies.forEach(function (strategy) {`
line endings? #3343 10 years ago			`if (strategy.url) {`
			`router.get(strategy.url, passport.authenticate(strategy.name, {`
added prompt to passport input for Google SSO 9 years ago			`scope: strategy.scope,`
			`prompt: strategy.prompt \|\| undefined`
line endings? #3343 10 years ago			`}));`
			`}`

			`router.get(strategy.callbackURL, passport.authenticate(strategy.name, {`
			`successReturnToOrRedirect: nconf.get('relative_path') + (strategy.successUrl !== undefined ? strategy.successUrl : '/'),`
			`failureRedirect: nconf.get('relative_path') + (strategy.failureUrl !== undefined ? strategy.failureUrl : '/login')`
			`}));`
			`});`

IP blacklist functionality -- re: #4367 Squashed commit of the following: commit 5c42fd732d091fa66cf5b45a2af5e1697cc1efcd Author: Julian Lam <[email protected]> Date: Mon Mar 14 17:29:45 2016 -0400 allowing blacklist.test to be called synchronously commit 979faf2dba5e6f6e2ae1bd07341e63678438daf1 Author: Julian Lam <[email protected]> Date: Mon Mar 14 17:01:14 2016 -0400 added plain ipv6 support and finished middleware logic commit d4b72fc1aadff34df3ed7dec52ca8d3c3728a078 Author: Julian Lam <[email protected]> Date: Fri Mar 11 16:05:31 2016 -0500 WIP IP Banning logic middleware commit f08b2553890c5522b6a1eaf521fe4e94df40574a Author: Julian Lam <[email protected]> Date: Fri Mar 11 15:26:27 2016 -0500 tweaks to ACP, rule validator commit 868abacaa494e6b8a88bd4ea429b1b066a9ecb2e Author: Julian Lam <[email protected]> Date: Fri Mar 11 13:50:05 2016 -0500 IP Banning ACP page, styling, save&load functionality 9 years ago			`router.post('/register', Auth.middleware.applyCSRF, Auth.middleware.applyBlacklist, controllers.authentication.register);`
WIP registration interstitial 9 years ago			`router.post('/register/complete', Auth.middleware.applyCSRF, Auth.middleware.applyBlacklist, controllers.authentication.registerComplete);`
updated termsOfUse to use registration interstitial instead of being integrated into register template 9 years ago			`router.get('/register/abort', controllers.authentication.registerAbort);`
IP blacklist functionality -- re: #4367 Squashed commit of the following: commit 5c42fd732d091fa66cf5b45a2af5e1697cc1efcd Author: Julian Lam <[email protected]> Date: Mon Mar 14 17:29:45 2016 -0400 allowing blacklist.test to be called synchronously commit 979faf2dba5e6f6e2ae1bd07341e63678438daf1 Author: Julian Lam <[email protected]> Date: Mon Mar 14 17:01:14 2016 -0400 added plain ipv6 support and finished middleware logic commit d4b72fc1aadff34df3ed7dec52ca8d3c3728a078 Author: Julian Lam <[email protected]> Date: Fri Mar 11 16:05:31 2016 -0500 WIP IP Banning logic middleware commit f08b2553890c5522b6a1eaf521fe4e94df40574a Author: Julian Lam <[email protected]> Date: Fri Mar 11 15:26:27 2016 -0500 tweaks to ACP, rule validator commit 868abacaa494e6b8a88bd4ea429b1b066a9ecb2e Author: Julian Lam <[email protected]> Date: Fri Mar 11 13:50:05 2016 -0500 IP Banning ACP page, styling, save&load functionality 9 years ago			`router.post('/login', Auth.middleware.applyCSRF, Auth.middleware.applyBlacklist, controllers.authentication.login);`
line endings? #3343 10 years ago			`router.post('/logout', Auth.middleware.applyCSRF, controllers.authentication.logout);`

			`hotswap.replace('auth', router);`
			`if (typeof callback === 'function') {`
			`callback();`
			`}`
			`});`
			`};`

Fix space-before-function-paren linter rule 9 years ago			`passport.serializeUser(function (user, done) {`
line endings? #3343 10 years ago			`done(null, user.uid);`
			`});`

Fix space-before-function-paren linter rule 9 years ago			`passport.deserializeUser(function (uid, done) {`
line endings? #3343 10 years ago			`done(null, {`
			`uid: uid`
			`});`
			`});`

			`}(exports));`