hyperzlib
/
nodebb
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

test: passport0.6 (#10638)

Browse Source 
* test: passport0.6

* test: make logout async, fix lint

* test: keepSessionInfo flag

* revert: csrf load
isekai-main
Barış Soner Uşaklı 3 years ago committed by GitHub
parent 4b6baabbbf
commit 6b2a6f9006
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
5 changed files with 10 additions and 7 deletions
Show Stats Download Patch File Download Diff File

2
install/package.json
Unescape Escape View File

@ -104,7 +104,7 @@
"nodebb-widget-essentials": "6.0.0", "nodebb-widget-essentials": "6.0.0",
"nodemailer": "6.7.7", "nodemailer": "6.7.7",
"nprogress": "0.2.0", "nprogress": "0.2.0",
"passport": "0.5.2", "passport": "0.6.0",
"passport-http-bearer": "1.0.1", "passport-http-bearer": "1.0.1",
"passport-local": "1.0.0", "passport-local": "1.0.0",
"pg": "8.7.3", "pg": "8.7.3",

5
src/controllers/authentication.js
Unescape Escape View File

@ -351,7 +351,7 @@ authenticationController.doLogin = async function (req, uid) {
} }
} }
await loginAsync({ uid: uid }); await loginAsync({ uid: uid }, { keepSessionInfo: true });
await authenticationController.onSuccessfulLogin(req, uid); await authenticationController.onSuccessfulLogin(req, uid);
}; };
@ -459,6 +459,7 @@ authenticationController.localLogin = async function (req, username, password, n
}; };
const destroyAsync = util.promisify((req, callback) => req.session.destroy(callback)); const destroyAsync = util.promisify((req, callback) => req.session.destroy(callback));
const logoutAsync = util.promisify((req, callback) => req.logout(callback));
authenticationController.logout = async function (req, res, next) { authenticationController.logout = async function (req, res, next) {
if (!req.loggedIn || !req.sessionID) { if (!req.loggedIn || !req.sessionID) {
@ -470,7 +471,7 @@ authenticationController.logout = async function (req, res, next) {
try { try {
await user.auth.revokeSession(sessionID, uid); await user.auth.revokeSession(sessionID, uid);
req.logout(); await logoutAsync();
await destroyAsync(req); await destroyAsync(req);
res.clearCookie(nconf.get('sessionKey'), meta.configs.cookie.get()); res.clearCookie(nconf.get('sessionKey'), meta.configs.cookie.get());

6
src/middleware/header.js
Unescape Escape View File

@ -41,8 +41,10 @@ middleware.buildHeader = helpers.try(async (req, res, next) => {
]); ]);
if (!canLoginIfBanned && req.loggedIn) { if (!canLoginIfBanned && req.loggedIn) {
req.logout(); req.logout(() => {
return res.redirect('/'); res.redirect('/');
});
return;
} }
res.locals.config = config; res.locals.config = config;

2
src/middleware/user.js
Unescape Escape View File

@ -35,7 +35,7 @@ module.exports = function (middleware) {
async function authenticate(req, res) { async function authenticate(req, res) {
async function finishLogin(req, user) { async function finishLogin(req, user) {
const loginAsync = util.promisify(req.login).bind(req); const loginAsync = util.promisify(req.login).bind(req);
await loginAsync(user); await loginAsync(user, { keepSessionInfo: true });
await controllers.authentication.onSuccessfulLogin(req, user.uid); await controllers.authentication.onSuccessfulLogin(req, user.uid);
req.uid = user.uid; req.uid = user.uid;
req.loggedIn = req.uid > 0; req.loggedIn = req.uid > 0;

2
src/routes/authentication.js
Unescape Escape View File

@ -139,7 +139,7 @@ Auth.reloadRoutes = async function (params) {
})(req, res, next); })(req, res, next);
}, Auth.middleware.validateAuth, (req, res, next) => { }, Auth.middleware.validateAuth, (req, res, next) => {
async.waterfall([ async.waterfall([
async.apply(req.login.bind(req), res.locals.user), async.apply(req.login.bind(req), res.locals.user, { keepSessionInfo: true }),
async.apply(controllers.authentication.onSuccessfulLogin, req, req.uid), async.apply(controllers.authentication.onSuccessfulLogin, req, req.uid),
], (err) => { ], (err) => {
if (err) { if (err) {

Write Preview
Loading…
Cancel
Save