Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2025-11-01 11:35:55 +01:00
Code Issues Packages Projects Releases Wiki Activity

Moved onSuccessfulLogin call from plugins to core, + auth verification hook (#7416)

Browse Source 
* fix: #7412, calling controllers.onSuccessfulLogin in core

* feat: added plugin hook for auth validation
This commit is contained in:
Julian Lam
2019-03-13 12:38:30 -04:00
committed by GitHub
parent d8486e887a
commit d2cfe6b946
3 changed files with 43 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files

11
src/controllers/authentication.js
View File

@@ -331,6 +331,15 @@ authenticationController.doLogin = function (req, uid, callback) {
}; };
authenticationController.onSuccessfulLogin = function (req, uid, callback) { authenticationController.onSuccessfulLogin = function (req, uid, callback) {
// If already called once, return prematurely
if (req.res.locals.user) {
if (typeof callback === 'function') {
return setImmediate(callback);
}
return true;
}
var uuid = utils.generateUUID(); var uuid = utils.generateUUID();
req.uid = uid; req.uid = uid;
@@ -392,7 +401,7 @@ authenticationController.onSuccessfulLogin = function (req, uid, callback) {
if (typeof callback === 'function') { if (typeof callback === 'function') {
callback(err); callback(err);
} else { } else {
return false; return !!err;
} }
}); });
}; };

17
src/middleware/index.js
View File

@@ -217,3 +217,20 @@ middleware.trimUploadTimestamps = function trimUploadTimestamps(req, res, next)
next(); next();
}; };
middleware.validateAuth = function validateAuth(req, res, next) {
plugins.fireHook('static:auth.validate', {
user: res.locals.user,
strategy: res.locals.strategy,
}, function (err) {
if (err) {
return req.session.regenerate(function () {
req.uid = 0;
req.loggedIn = false;
next(err);
});
}
next();
});
};

23
src/routes/authentication.js
View File

@@ -100,14 +100,23 @@ Auth.reloadRoutes = function (router, callback) {
return helpers.redirect(res, strategy.failureUrl !== undefined ? strategy.failureUrl : '/login'); return helpers.redirect(res, strategy.failureUrl !== undefined ? strategy.failureUrl : '/login');
} }
req.login(user, function (err) { res.locals.user = user;
if (err) { res.locals.strategy = strategy;
return next(err); next();
}
helpers.redirect(res, strategy.successUrl !== undefined ? strategy.successUrl : '/');
});
})(req, res, next); })(req, res, next);
},
Auth.middleware.validateAuth,
(req, res, next) => {
async.waterfall([
async.apply(req.login.bind(req), res.locals.user),
async.apply(controllers.authentication.onSuccessfulLogin, req, req.uid),
], function (err) {
if (err) {
return next(err);
}
helpers.redirect(res, strategy.successUrl !== undefined ? strategy.successUrl : '/');
});
}); });
}); });