@steedos/auth 3.0.13-beta.5 → 3.0.13-beta.50
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/endpoints/jwt.js +53 -12
- package/lib/endpoints/jwt.js.map +1 -1
- package/package.json +5 -5
package/lib/endpoints/jwt.js
CHANGED
|
@@ -41,38 +41,70 @@ var utils_1 = require("../utils");
|
|
|
41
41
|
var objectql_1 = require("@steedos/objectql");
|
|
42
42
|
function getTokenInfo(req) {
|
|
43
43
|
return __awaiter(this, void 0, void 0, function () {
|
|
44
|
-
var payload, data, userObj, user, userId, authToken, hashedToken, filters, stampedToken, hashedTokenObj;
|
|
45
|
-
|
|
46
|
-
|
|
44
|
+
var payload, data, userObj, user, userId, authToken, hashedToken, filters, stampedToken, hashedTokenObj, sessionsObj, existingSessions, sessionObj;
|
|
45
|
+
var _a;
|
|
46
|
+
return __generator(this, function (_b) {
|
|
47
|
+
switch (_b.label) {
|
|
47
48
|
case 0:
|
|
48
49
|
payload = req.user;
|
|
49
50
|
data = { userId: '', authToken: '' };
|
|
50
51
|
userObj = (0, objectql_1.getSteedosSchema)().getObject('users');
|
|
51
52
|
return [4, userObj.find({ filters: "username eq '".concat(payload.username, "'"), fields: ['_id'] })];
|
|
52
53
|
case 1:
|
|
53
|
-
user = (
|
|
54
|
-
if (!user) return [3,
|
|
54
|
+
user = (_b.sent())[0];
|
|
55
|
+
if (!user) return [3, 11];
|
|
55
56
|
userId = user._id;
|
|
56
57
|
authToken = payload.sessionId ? "".concat(payload.iss, "-").concat(payload.username, "-").concat(payload.sessionId) : "".concat(payload.iss, "-").concat(payload.username);
|
|
57
58
|
hashedToken = (0, utils_1.hashLoginToken)(authToken).replace(/\//g, '%2F');
|
|
58
59
|
filters = "(services/resume/loginTokens/hashedToken eq '".concat(hashedToken, "')");
|
|
59
60
|
return [4, userObj.count({ filters: filters })];
|
|
60
61
|
case 2:
|
|
61
|
-
if (
|
|
62
|
-
data = { userId: userId, authToken: authToken };
|
|
63
|
-
return [3, 5];
|
|
64
|
-
case 3:
|
|
62
|
+
if (!!(_b.sent())) return [3, 4];
|
|
65
63
|
stampedToken = {
|
|
66
64
|
token: authToken,
|
|
67
65
|
when: new Date
|
|
68
66
|
};
|
|
69
67
|
hashedTokenObj = (0, utils_1.hashStampedToken)(stampedToken);
|
|
70
68
|
return [4, (0, utils_1.insertHashedLoginToken)(userId, hashedTokenObj)];
|
|
69
|
+
case 3:
|
|
70
|
+
_b.sent();
|
|
71
|
+
_b.label = 4;
|
|
71
72
|
case 4:
|
|
72
|
-
|
|
73
|
+
sessionsObj = (0, objectql_1.getSteedosSchema)().getObject("sessions");
|
|
74
|
+
return [4, sessionsObj.find({ filters: "(userId eq '".concat(userId, "') and (token eq '").concat(authToken, "')") })];
|
|
75
|
+
case 5:
|
|
76
|
+
existingSessions = _b.sent();
|
|
77
|
+
if (!(existingSessions && existingSessions.length > 0)) return [3, 7];
|
|
78
|
+
return [4, sessionsObj.directUpdate(existingSessions[0]._id, { valid: true, modified: new Date() })];
|
|
79
|
+
case 6:
|
|
80
|
+
_b.sent();
|
|
81
|
+
return [3, 10];
|
|
82
|
+
case 7:
|
|
83
|
+
_a = {};
|
|
84
|
+
return [4, (0, objectql_1.getSteedosSchema)().getObject("users")._makeNewID()];
|
|
85
|
+
case 8:
|
|
86
|
+
sessionObj = (_a._id = _b.sent(),
|
|
87
|
+
_a.userId = user._id,
|
|
88
|
+
_a.token = authToken,
|
|
89
|
+
_a.ip = null,
|
|
90
|
+
_a.userAgent = null,
|
|
91
|
+
_a.is_phone = false,
|
|
92
|
+
_a.is_tablet = false,
|
|
93
|
+
_a.login_expiration_in_days = null,
|
|
94
|
+
_a.user_provider = null,
|
|
95
|
+
_a.extraData = null,
|
|
96
|
+
_a.valid = true,
|
|
97
|
+
_a.created = new Date(),
|
|
98
|
+
_a.modified = new Date(),
|
|
99
|
+
_a);
|
|
100
|
+
return [4, sessionsObj.directInsert(sessionObj)];
|
|
101
|
+
case 9:
|
|
102
|
+
_b.sent();
|
|
103
|
+
_b.label = 10;
|
|
104
|
+
case 10:
|
|
73
105
|
data = { userId: userId, authToken: authToken };
|
|
74
|
-
|
|
75
|
-
case
|
|
106
|
+
_b.label = 11;
|
|
107
|
+
case 11: return [2, data];
|
|
76
108
|
}
|
|
77
109
|
});
|
|
78
110
|
});
|
|
@@ -113,6 +145,15 @@ var jwtSSO = function (req, res) { return __awaiter(void 0, void 0, void 0, func
|
|
|
113
145
|
data = _a.sent();
|
|
114
146
|
(0, utils_1.setAuthCookies)(req, res, data.userId, data.authToken, spaceId);
|
|
115
147
|
redirectUrl = verifiedPayload.redirect_url;
|
|
148
|
+
if (redirectUrl && (redirectUrl.startsWith('https://') || redirectUrl.startsWith('http%3A%2F%2F'))) {
|
|
149
|
+
redirectUrl = decodeURIComponent(redirectUrl);
|
|
150
|
+
}
|
|
151
|
+
if (redirectUrl) {
|
|
152
|
+
redirectUrl = "/home/".concat(spaceId, "?redirect_uri=").concat(redirectUrl);
|
|
153
|
+
}
|
|
154
|
+
else {
|
|
155
|
+
redirectUrl = "/home/".concat(spaceId);
|
|
156
|
+
}
|
|
116
157
|
res.redirect(302, redirectUrl);
|
|
117
158
|
return [3, 4];
|
|
118
159
|
case 3:
|
package/lib/endpoints/jwt.js.map
CHANGED
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"jwt.js","sourceRoot":"","sources":["../../src/endpoints/jwt.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAOA,kCAAoG;AACpG,8CAAoD;AAcpD,SAAe,YAAY,CAAC,GAAG
|
|
1
|
+
{"version":3,"file":"jwt.js","sourceRoot":"","sources":["../../src/endpoints/jwt.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;;AAOA,kCAAoG;AACpG,8CAAoD;AAcpD,SAAe,YAAY,CAAC,GAAG;;;;;;;oBACzB,OAAO,GAAG,GAAG,CAAC,IAAI,CAAA;oBAClB,IAAI,GAAG,EAAE,MAAM,EAAE,EAAE,EAAE,SAAS,EAAE,EAAE,EAAE,CAAA;oBACpC,OAAO,GAAG,IAAA,2BAAgB,GAAE,CAAC,SAAS,CAAC,OAAO,CAAC,CAAA;oBACvC,WAAM,OAAO,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,uBAAgB,OAAO,CAAC,QAAQ,MAAG,EAAE,MAAM,EAAE,CAAC,KAAK,CAAC,EAAE,CAAC,EAAA;;oBAA7F,IAAI,GAAG,CAAC,SAAqF,CAAC,CAAC,CAAC,CAAC;yBACjG,IAAI,EAAJ,eAAI;oBACF,MAAM,GAAG,IAAI,CAAC,GAAG,CAAA;oBACjB,SAAS,GAAG,OAAO,CAAC,SAAS,CAAC,CAAC,CAAC,UAAG,OAAO,CAAC,GAAG,cAAI,OAAO,CAAC,QAAQ,cAAI,OAAO,CAAC,SAAS,CAAE,CAAC,CAAC,CAAC,UAAG,OAAO,CAAC,GAAG,cAAI,OAAO,CAAC,QAAQ,CAAE,CAAA;oBAChI,WAAW,GAAG,IAAA,sBAAc,EAAC,SAAS,CAAC,CAAC,OAAO,CAAC,KAAK,EAAE,KAAK,CAAC,CAAC;oBAC9D,OAAO,GAAG,uDAAgD,WAAW,OAAI,CAAC;oBACxE,WAAM,OAAO,CAAC,KAAK,CAAC,EAAE,OAAO,EAAE,OAAO,EAAE,CAAC,EAAA;;yBAA3C,CAAC,CAAC,SAAyC,CAAC,EAA5C,cAA4C;oBAC1C,YAAY,GAAG;wBACjB,KAAK,EAAE,SAAS;wBAChB,IAAI,EAAE,IAAI,IAAI;qBACf,CAAA;oBACG,cAAc,GAAG,IAAA,wBAAgB,EAAC,YAAY,CAAC,CAAA;oBACnD,WAAM,IAAA,8BAAsB,EAAC,MAAM,EAAE,cAAc,CAAC,EAAA;;oBAApD,SAAoD,CAAA;;;oBAElD,WAAW,GAAG,IAAA,2BAAgB,GAAE,CAAC,SAAS,CAAC,UAAU,CAAC,CAAC;oBACpC,WAAM,WAAW,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,sBAAe,MAAM,+BAAqB,SAAS,OAAI,EAAE,CAAC,EAAA;;oBAA/G,gBAAgB,GAAG,SAA4F;yBAC/G,CAAA,gBAAgB,IAAI,gBAAgB,CAAC,MAAM,GAAG,CAAC,CAAA,EAA/C,cAA+C;oBACjD,WAAM,WAAW,CAAC,YAAY,CAAC,gBAAgB,CAAC,CAAC,CAAC,CAAC,GAAG,EAAE,EAAE,KAAK,EAAE,IAAI,EAAE,QAAQ,EAAE,IAAI,IAAI,EAAE,EAAE,CAAC,EAAA;;oBAA9F,SAA8F,CAAC;;;;oBAGtF,WAAM,IAAA,2BAAgB,GAAE,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,UAAU,EAAE,EAAA;;oBAD7D,UAAU,IACV,MAAG,GAAE,SAAwD;wBAC7D,SAAM,GAAE,IAAI,CAAC,GAAG;wBAChB,QAAK,GAAE,SAAS;wBAChB,KAAE,GAAE,IAAI;wBACR,YAAS,GAAE,IAAI;wBACf,WAAQ,GAAE,KAAK;wBACf,YAAS,GAAE,KAAK;wBAChB,2BAAwB,GAAE,IAAI;wBAC9B,gBAAa,GAAE,IAAI;wBACnB,YAAS,GAAE,IAAI;wBACf,QAAK,GAAE,IAAI;wBACX,UAAO,GAAE,IAAI,IAAI,EAAE;wBACnB,WAAQ,GAAE,IAAI,IAAI,EAAE;2BACvB;oBACD,WAAM,WAAW,CAAC,YAAY,CAAC,UAAU,CAAC,EAAA;;oBAA1C,SAA0C,CAAC;;;oBAE7C,IAAI,GAAG,EAAE,MAAM,EAAE,MAAM,EAAE,SAAS,EAAE,SAAS,EAAE,CAAA;;yBAGjD,WAAO,IAAI,EAAC;;;;CACb;AAEM,IAAM,MAAM,GAAG,UAAO,GAAG,EAAE,GAAG;;;;;;gBAE7B,GAAG,GAAG,OAAO,CAAC,cAAc,CAAC,CAAC;gBAC9B,KAAK,GAAG,GAAG,CAAC,KAAK,CAAC,SAAS,CAAC;gBAChC,IAAI,CAAC,KAAK,EAAE,CAAC;oBACX,MAAM,IAAI,KAAK,CAAC,sBAAsB,CAAC,CAAA;gBACzC,CAAC;gBACG,OAAO,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;gBAChD,OAAO,GAAG,OAAO,CAAC,OAAO,CAAC;gBAC1B,MAAM,GAAG,OAAO,CAAC,GAAG,CAAC;gBACzB,IAAI,CAAC,MAAM,EAAE,CAAC;oBACZ,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAA;gBACtC,CAAC;gBACG,UAAU,GAAG,IAAA,2BAAgB,GAAE,CAAC,SAAS,CAAC,eAAe,CAAC,CAAA;gBAChD,WAAM,UAAU,CAAC,IAAI,CAAC,EAAE,OAAO,EAAE,uBAAgB,MAAM,MAAG,EAAE,CAAC,EAAA;;gBAAvE,OAAO,GAAG,SAA6D;gBACvE,UAAU,GAAG,OAAO,CAAC,CAAC,CAAC,CAAA;gBACvB,MAAM,GAAG,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,YAAY,CAAC,CAAC,CAAC,EAAE,CAAA;gBAClD,OAAO,GAAG,UAAU,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,CAAC,EAAE,CAAA;gBAChD,IAAI,CAAC,MAAM,EAAE,CAAC;oBACZ,MAAM,IAAI,KAAK,CAAC,mBAAmB,CAAC,CAAA;gBACtC,CAAC;gBACD,IAAI,CAAC,OAAO,EAAE,CAAC;oBACb,MAAM,IAAI,KAAK,CAAC,oBAAoB,CAAC,CAAA;gBACvC,CAAC;gBACG,eAAe,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,CAAC;gBACrC,WAAM,YAAY,CAAC,EAAE,IAAI,EAAE,eAAe,EAAE,CAAC,EAAA;;gBAApD,IAAI,GAAG,SAA6C;gBACxD,IAAA,sBAAc,EAAC,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,EAAE,OAAO,CAAC,CAAA;gBAC1D,WAAW,GAAG,eAAe,CAAC,YAAY,CAAC;gBAC/C,IAAG,WAAW,IAAI,CAAC,WAAW,CAAC,UAAU,CAAC,UAAU,CAAC,IAAI,WAAW,CAAC,UAAU,CAAC,eAAe,CAAC,CAAC,EAAC,CAAC;oBACjG,WAAW,GAAG,kBAAkB,CAAC,WAAW,CAAC,CAAC;gBAChD,CAAC;gBACD,IAAG,WAAW,EAAC,CAAC;oBACd,WAAW,GAAG,gBAAS,OAAO,2BAAiB,WAAW,CAAE,CAAA;gBAC9D,CAAC;qBAAI,CAAC;oBACJ,WAAW,GAAG,gBAAS,OAAO,CAAE,CAAA;gBAClC,CAAC;gBACD,GAAG,CAAC,QAAQ,CAAC,GAAG,EAAE,WAAW,CAAC,CAAC;;;;gBAE/B,OAAO,CAAC,KAAK,CAAC,OAAK,CAAC,CAAC;gBACrB,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,OAAK,CAAC,OAAO,CAAC,CAAA;;;;;KAGtC,CAAA;AA1CY,QAAA,MAAM,UA0ClB"}
|
package/package.json
CHANGED
|
@@ -1,6 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@steedos/auth",
|
|
3
|
-
"version": "3.0.13-beta.
|
|
3
|
+
"version": "3.0.13-beta.50",
|
|
4
4
|
"main": "lib/index.js",
|
|
5
5
|
"scripts": {
|
|
6
6
|
"watch": "tsc --watch",
|
|
@@ -12,9 +12,9 @@
|
|
|
12
12
|
"access": "public"
|
|
13
13
|
},
|
|
14
14
|
"dependencies": {
|
|
15
|
-
"@steedos/cachers": "3.0.13-beta.
|
|
16
|
-
"@steedos/objectql": "3.0.13-beta.
|
|
17
|
-
"@steedos/utils": "3.0.13-beta.
|
|
15
|
+
"@steedos/cachers": "3.0.13-beta.50",
|
|
16
|
+
"@steedos/objectql": "3.0.13-beta.50",
|
|
17
|
+
"@steedos/utils": "3.0.13-beta.50",
|
|
18
18
|
"bcryptjs": "^2.4.3",
|
|
19
19
|
"cookies": "^0.8.0",
|
|
20
20
|
"express": "^5.1.0",
|
|
@@ -26,5 +26,5 @@
|
|
|
26
26
|
"devDependencies": {
|
|
27
27
|
"typescript": "5.7.3"
|
|
28
28
|
},
|
|
29
|
-
"gitHead": "
|
|
29
|
+
"gitHead": "732dec4ff1ad0fa939301524b7ca7c0025ccfe35"
|
|
30
30
|
}
|