2015-12-23 10:48:45 -05:00
|
|
|
'use strict';
|
|
|
|
|
|
2016-01-19 18:41:38 +02:00
|
|
|
var async = require('async');
|
2015-12-23 10:48:45 -05:00
|
|
|
|
2016-01-19 18:41:38 +02:00
|
|
|
var db = require('../../database');
|
|
|
|
|
var user = require('../../user');
|
2018-08-31 15:34:29 -04:00
|
|
|
var helpers = require('../helpers');
|
|
|
|
|
var accountHelpers = require('./helpers');
|
2015-12-23 10:48:45 -05:00
|
|
|
|
|
|
|
|
var sessionController = {};
|
|
|
|
|
|
2018-08-31 15:34:29 -04:00
|
|
|
sessionController.get = function (req, res, callback) {
|
|
|
|
|
var userData;
|
|
|
|
|
|
|
|
|
|
async.waterfall([
|
|
|
|
|
function (next) {
|
|
|
|
|
accountHelpers.getUserDataByUserSlug(req.params.userslug, req.uid, next);
|
|
|
|
|
},
|
|
|
|
|
function (_userData, next) {
|
|
|
|
|
userData = _userData;
|
|
|
|
|
if (!userData) {
|
|
|
|
|
return callback();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async.parallel({
|
|
|
|
|
sessions: async.apply(user.auth.getSessions, userData.uid, req.sessionID),
|
|
|
|
|
}, next);
|
|
|
|
|
},
|
|
|
|
|
function (data) {
|
|
|
|
|
userData.sessions = data.sessions;
|
|
|
|
|
|
|
|
|
|
userData.title = '[[pages:account/sessions]]';
|
|
|
|
|
userData.breadcrumbs = helpers.buildBreadcrumbs([{ text: userData.username, url: '/user/' + userData.userslug }, { text: '[[pages:account/sessions]]' }]);
|
|
|
|
|
|
|
|
|
|
res.render('account/sessions', userData);
|
|
|
|
|
},
|
|
|
|
|
], callback);
|
|
|
|
|
};
|
|
|
|
|
|
2016-10-13 11:43:39 +02:00
|
|
|
sessionController.revoke = function (req, res, next) {
|
2015-12-23 10:48:45 -05:00
|
|
|
if (!req.params.hasOwnProperty('uuid')) {
|
|
|
|
|
return next();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var _id;
|
2016-12-02 10:50:42 -05:00
|
|
|
var uid = res.locals.uid;
|
2015-12-23 10:48:45 -05:00
|
|
|
async.waterfall([
|
2016-01-19 18:41:38 +02:00
|
|
|
function (next) {
|
2016-09-14 14:33:39 +03:00
|
|
|
if (!uid) {
|
|
|
|
|
return next(new Error('[[error:no-session-found]]'));
|
|
|
|
|
}
|
|
|
|
|
db.getSortedSetRange('uid:' + uid + ':sessions', 0, -1, next);
|
2016-01-19 18:41:38 +02:00
|
|
|
},
|
|
|
|
|
function (sids, done) {
|
2016-10-13 11:43:39 +02:00
|
|
|
async.eachSeries(sids, function (sid, next) {
|
|
|
|
|
db.sessionStore.get(sid, function (err, sessionObj) {
|
2016-01-19 18:41:38 +02:00
|
|
|
if (err) {
|
|
|
|
|
return next(err);
|
|
|
|
|
}
|
|
|
|
|
if (sessionObj && sessionObj.meta && sessionObj.meta.uuid === req.params.uuid) {
|
|
|
|
|
_id = sid;
|
|
|
|
|
done();
|
|
|
|
|
} else {
|
|
|
|
|
next();
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
}, next);
|
|
|
|
|
},
|
|
|
|
|
function (next) {
|
|
|
|
|
if (!_id) {
|
2015-12-23 10:48:45 -05:00
|
|
|
return next(new Error('[[error:no-session-found]]'));
|
|
|
|
|
}
|
|
|
|
|
|
2016-09-14 14:33:39 +03:00
|
|
|
user.auth.revokeSession(_id, uid, next);
|
2017-02-17 19:31:21 -07:00
|
|
|
},
|
2016-10-13 11:43:39 +02:00
|
|
|
], function (err) {
|
2015-12-23 10:48:45 -05:00
|
|
|
if (err) {
|
|
|
|
|
return res.status(500).send(err.message);
|
|
|
|
|
}
|
2017-02-18 14:27:26 -07:00
|
|
|
return res.sendStatus(200);
|
2015-12-23 10:48:45 -05:00
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
2017-02-18 02:30:48 -07:00
|
|
|
module.exports = sessionController;
|
