npm - @things-factory/auth-base - Versions diffs - 4.3.591 → 4.3.671 - Mend

@things-factory/auth-base 4.3.591 → 4.3.671

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (229) hide show

package/dist-server/middlewares/authenticate-401-middleware.js DELETED Viewed

@@ -1,84 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.authenticate401Middleware = void 0;
-const error_code_1 = require("../constants/error-code");
-const auth_error_1 = require("../errors/auth-error");
-const accepts_1 = require("../utils/accepts");
-const debug = require('debug')('things-factory:auth-base:authenticate-401-middleware');
-async function authenticate401Middleware(context, next) {
-    try {
-        await next();
-    }
-    catch (err) {
-        var message;
-        if (err instanceof auth_error_1.AuthError) {
-            message = context.t(`error.${err.errorCode}`, err.detail || {});
-            debug(`auth error(${err.errorCode})`, message);
-        }
-        else {
-            if ((err === null || err === void 0 ? void 0 : err.status) !== 401) {
-                throw err;
-            }
-            message = err.message;
-        }
-        debug('401 error', message);
-        context.status = 401;
-        context.body = message;
-        /*
-         * 클라이언트 라우팅을 위한 ApiHistoryFallback의 상황과,
-         * 서버라우팅의 상황에서 발생하는 던져지는 401 에러인 경우에는
-         * error code에 맞춰서 적절하게 rewriting 되도록 한다.
-         */
-        const { method, header, path, originalUrl } = context;
-        if (method == 'POST' && path.startsWith('/graphql')) {
-            debug('Not rewriting', method, path, 'because the graphql request.');
-            if (err.errorCode == error_code_1.SUBDOMAIN_NOTFOUND) {
-                context.status = 403;
-            }
-            return;
-        }
-        if (!(0, accepts_1.accepts)(header.accept, ['text/html', '*/*'])) {
-            debug('Not rewriting', method, path, 'because the client does not accept HTML.');
-            return;
-        }
-        const { redirect_to } = context.query;
-        const { redirectTo = redirect_to || originalUrl } = context.request.body || {};
-        debug('rewriting to signin', method, path, message, redirectTo);
-        switch (err.errorCode) {
-            case error_code_1.SUBDOMAIN_NOTFOUND:
-                context.redirect(`/auth/checkin?redirect_to=${encodeURIComponent(redirectTo)}`);
-                break;
-            case error_code_1.USER_LOCKED:
-                return await context.render('auth-page', {
-                    pageElement: 'auth-activate',
-                    elementScript: '/auth/activate.js',
-                    data: {
-                        email: err.detail.email,
-                        message,
-                        redirectTo
-                    }
-                });
-            case error_code_1.USER_NOT_ACTIVATED:
-                return await context.render('auth-page', {
-                    pageElement: 'auth-activate',
-                    elementScript: '/auth/activate.js',
-                    data: {
-                        email: err.detail.email,
-                        message,
-                        redirectTo
-                    }
-                });
-            default:
-                return await context.render('auth-page', {
-                    pageElement: 'auth-signin',
-                    elementScript: '/auth/signin.js',
-                    data: {
-                        message: err instanceof auth_error_1.AuthError ? message : '',
-                        redirectTo
-                    }
-                });
-        }
-    }
-}
-exports.authenticate401Middleware = authenticate401Middleware;
-//# sourceMappingURL=authenticate-401-middleware.js.map

package/dist-server/middlewares/authenticate-401-middleware.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"authenticate-401-middleware.js","sourceRoot":"","sources":["../../server/middlewares/authenticate-401-middleware.ts"],"names":[],"mappings":";;;AAAA,wDAA6F;AAC7F,qDAAgD;AAChD,8CAA0C;AAE1C,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,sDAAsD,CAAC,CAAA;AAE/E,KAAK,UAAU,yBAAyB,CAAC,OAAO,EAAE,IAAI;IAC3D,IAAI;QACF,MAAM,IAAI,EAAE,CAAA;KACb;IAAC,OAAO,GAAG,EAAE;QACZ,IAAI,OAAO,CAAA;QAEX,IAAI,GAAG,YAAY,sBAAS,EAAE;YAC5B,OAAO,GAAG,OAAO,CAAC,CAAC,CAAC,SAAS,GAAG,CAAC,SAAS,EAAE,EAAE,GAAG,CAAC,MAAM,IAAI,EAAE,CAAC,CAAA;YAC/D,KAAK,CAAC,cAAc,GAAG,CAAC,SAAS,GAAG,EAAE,OAAO,CAAC,CAAA;SAC/C;aAAM;YACL,IAAI,CAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,MAAM,MAAK,GAAG,EAAE;gBACvB,MAAM,GAAG,CAAA;aACV;YAED,OAAO,GAAG,GAAG,CAAC,OAAO,CAAA;SACtB;QAED,KAAK,CAAC,WAAW,EAAE,OAAO,CAAC,CAAA;QAE3B,OAAO,CAAC,MAAM,GAAG,GAAG,CAAA;QACpB,OAAO,CAAC,IAAI,GAAG,OAAO,CAAA;QAEtB;;;;WAIG;QAEH,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,WAAW,EAAE,GAAG,OAAO,CAAA;QAErD,IAAI,MAAM,IAAI,MAAM,IAAI,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE;YACnD,KAAK,CAAC,eAAe,EAAE,MAAM,EAAE,IAAI,EAAE,8BAA8B,CAAC,CAAA;YACpE,IAAI,GAAG,CAAC,SAAS,IAAI,+BAAkB,EAAE;gBACvC,OAAO,CAAC,MAAM,GAAG,GAAG,CAAA;aACrB;YACD,OAAM;SACP;QAED,IAAI,CAAC,IAAA,iBAAO,EAAC,MAAM,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,EAAE;YACjD,KAAK,CAAC,eAAe,EAAE,MAAM,EAAE,IAAI,EAAE,0CAA0C,CAAC,CAAA;YAChF,OAAM;SACP;QAED,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;QACrC,MAAM,EAAE,UAAU,GAAG,WAAW,IAAI,WAAW,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,IAAI,EAAE,CAAA;QAC9E,KAAK,CAAC,qBAAqB,EAAE,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,UAAU,CAAC,CAAA;QAE/D,QAAQ,GAAG,CAAC,SAAS,EAAE;YACrB,KAAK,+BAAkB;gBACrB,OAAO,CAAC,QAAQ,CAAC,6BAA6B,kBAAkB,CAAC,UAAU,CAAC,EAAE,CAAC,CAAA;gBAC/E,MAAK;YAEP,KAAK,wBAAW;gBACd,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,eAAe;oBAC5B,aAAa,EAAE,mBAAmB;oBAClC,IAAI,EAAE;wBACJ,KAAK,EAAE,GAAG,CAAC,MAAM,CAAC,KAAK;wBACvB,OAAO;wBACP,UAAU;qBACX;iBACF,CAAC,CAAA;YAEJ,KAAK,+BAAkB;gBACrB,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,eAAe;oBAC5B,aAAa,EAAE,mBAAmB;oBAClC,IAAI,EAAE;wBACJ,KAAK,EAAE,GAAG,CAAC,MAAM,CAAC,KAAK;wBACvB,OAAO;wBACP,UAAU;qBACX;iBACF,CAAC,CAAA;YAEJ;gBACE,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,aAAa;oBAC1B,aAAa,EAAE,iBAAiB;oBAChC,IAAI,EAAE;wBACJ,OAAO,EAAE,GAAG,YAAY,sBAAS,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE;wBAChD,UAAU;qBACX;iBACF,CAAC,CAAA;SACL;KACF;AACH,CAAC;AArFD,8DAqFC"}

package/dist-server/middlewares/domain-authenticate-middleware.js DELETED Viewed

@@ -1,58 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.domainAuthenticateMiddleware = void 0;
-const env_1 = require("@things-factory/env");
-const typeorm_1 = require("typeorm");
-const user_1 = require("../service/user/user");
-const auth_error_1 = require("../errors/auth-error");
-const get_user_domains_1 = require("../utils/get-user-domains");
-const useVirtualHostBasedDomain = !!env_1.config.get('useVirtualHostBasedDomain');
-const fixed = env_1.config.get('subdomain');
-const subdomainOffset = env_1.config.getNumber('subdomainOffset', 2);
-const debug = require('debug')('things-factory:auth-base:domain-authenticate-middleware');
-process.domainOwnerGranted = async (domain, user) => {
-    return domain && domain.owner === user.id;
-};
-process.superUserGranted = async (domain, user) => {
-    if (!user.domains.length)
-        user = await (0, typeorm_1.getRepository)(user_1.User).findOne(user.id, {
-            relations: ['domains']
-        });
-    const systemDomain = user.domains.find((domain) => domain.subdomain === 'system');
-    if (!systemDomain)
-        return false;
-    return systemDomain.owner === user.id;
-};
-/*
- * 현재 subdomain 과 user의 domain list와의 비교를 통해서,
- * 인증 성공 또는 인증 에러를 발생시킬 것인지를 결정한다.
- * 1. 현재 subdomain 이 결정되지 않은 경우.
- * - checkin로 이동한다.
- * 2. superUser 판단
- * 3. 현재 subdomain 이 결정된 경우.
- * - user의 domains 리스트에 해당 subdomain이 없다면, 인증 오류를 발생한다.
- */
-async function domainAuthenticateMiddleware(context, next) {
-    const { t } = context;
-    const { domain, user } = context.state;
-    const subdomain = domain === null || domain === void 0 ? void 0 : domain.subdomain;
-    debug('context - user, subdomain', user === null || user === void 0 ? void 0 : user.email, subdomain);
-    // 1. 현재 subdomain 이 결정되지 않은 경우.
-    // - checkin로 이동한다.
-    if (!subdomain) {
-        debug('subdomain not found, move to checkin');
-        throw new auth_error_1.AuthError({
-            errorCode: auth_error_1.AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND
-        });
-    }
-    // 2. 현재 subdomain 이 결정된 경우.
-    const userDomains = await (0, get_user_domains_1.getUserDomains)(user);
-    if (userDomains.find(domain => domain.subdomain == subdomain)) {
-        return await next();
-    }
-    throw new auth_error_1.AuthError({
-        errorCode: auth_error_1.AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND
-    });
-}
-exports.domainAuthenticateMiddleware = domainAuthenticateMiddleware;
-//# sourceMappingURL=domain-authenticate-middleware.js.map

package/dist-server/middlewares/domain-authenticate-middleware.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"domain-authenticate-middleware.js","sourceRoot":"","sources":["../../server/middlewares/domain-authenticate-middleware.ts"],"names":[],"mappings":";;;AAAA,6CAA4C;AAE5C,qCAAuC;AACvC,+CAA2C;AAC3C,qDAAgD;AAChD,gEAA0D;AAE1D,MAAM,yBAAyB,GAAG,CAAC,CAAC,YAAM,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAA;AAC3E,MAAM,KAAK,GAAG,YAAM,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;AACrC,MAAM,eAAe,GAAG,YAAM,CAAC,SAAS,CAAC,iBAAiB,EAAE,CAAC,CAAC,CAAA;AAW9D,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,yDAAyD,CAAC,CAAA;AAEzF,OAAO,CAAC,kBAAkB,GAAG,KAAK,EAAE,MAAc,EAAE,IAAU,EAAoB,EAAE;IAClF,OAAO,MAAM,IAAI,MAAM,CAAC,KAAK,KAAK,IAAI,CAAC,EAAE,CAAA;AAC3C,CAAC,CAAA;AAED,OAAO,CAAC,gBAAgB,GAAG,KAAK,EAAE,MAAc,EAAE,IAAU,EAAoB,EAAE;IAChF,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM;QACtB,IAAI,GAAG,MAAM,IAAA,uBAAa,EAAC,WAAI,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,EAAE,EAAE;YAChD,SAAS,EAAE,CAAC,SAAS,CAAC;SACvB,CAAC,CAAA;IACJ,MAAM,YAAY,GAAW,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAc,EAAE,EAAE,CAAC,MAAM,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAA;IACjG,IAAI,CAAC,YAAY;QAAE,OAAO,KAAK,CAAA;IAE/B,OAAO,YAAY,CAAC,KAAK,KAAK,IAAI,CAAC,EAAE,CAAA;AACvC,CAAC,CAAA;AAED;;;;;;;;GAQG;AAEI,KAAK,UAAU,4BAA4B,CAAC,OAAY,EAAE,IAAS;IACxE,MAAM,EAAE,CAAC,EAAE,GAAG,OAAO,CAAA;IACrB,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;IAEtC,MAAM,SAAS,GAAW,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,SAAS,CAAA;IAE3C,KAAK,CAAC,2BAA2B,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK,EAAE,SAAS,CAAC,CAAA;IAE1D,gCAAgC;IAChC,mBAAmB;IACnB,IAAI,CAAC,SAAS,EAAE;QACd,KAAK,CAAC,sCAAsC,CAAC,CAAA;QAE7C,MAAM,IAAI,sBAAS,CAAC;YAClB,SAAS,EAAE,sBAAS,CAAC,WAAW,CAAC,kBAAkB;SACpD,CAAC,CAAA;KACH;IAED,4BAA4B;IAC5B,MAAM,WAAW,GAAa,MAAM,IAAA,iCAAc,EAAC,IAAI,CAAC,CAAA;IACxD,IAAI,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,SAAS,IAAI,SAAS,CAAC,EAAE;QAC7D,OAAO,MAAM,IAAI,EAAE,CAAA;KACpB;IAED,MAAM,IAAI,sBAAS,CAAC;QAClB,SAAS,EAAE,sBAAS,CAAC,WAAW,CAAC,kBAAkB;KACpD,CAAC,CAAA;AACJ,CAAC;AA3BD,oEA2BC"}

package/dist-server/middlewares/graphql-authenticate-middleware.js DELETED Viewed

@@ -1,17 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.graphqlAuthenticateMiddleware = void 0;
-const jwt_authenticate_middleware_1 = require("./jwt-authenticate-middleware");
-const domain_authenticate_middleware_1 = require("./domain-authenticate-middleware");
-const debug = require('debug')('things-factory:auth-base:graphql-authenticate-middleware');
-async function graphqlAuthenticateMiddleware(context, next) {
-    const { method, path } = context;
-    if (method == 'POST' && path.startsWith('/graphql')) {
-        debug(method, path);
-        await (0, jwt_authenticate_middleware_1.jwtAuthenticateMiddleware)(context, () => { });
-        await (0, domain_authenticate_middleware_1.domainAuthenticateMiddleware)(context, () => { });
-    }
-    await next();
-}
-exports.graphqlAuthenticateMiddleware = graphqlAuthenticateMiddleware;
-//# sourceMappingURL=graphql-authenticate-middleware.js.map

package/dist-server/middlewares/graphql-authenticate-middleware.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"graphql-authenticate-middleware.js","sourceRoot":"","sources":["../../server/middlewares/graphql-authenticate-middleware.ts"],"names":[],"mappings":";;;AAAA,+EAAyE;AACzE,qFAA+E;AAE/E,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,0DAA0D,CAAC,CAAA;AAEnF,KAAK,UAAU,6BAA6B,CAAC,OAAO,EAAE,IAAI;IAC/D,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAA;IAEhC,IAAI,MAAM,IAAI,MAAM,IAAI,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE;QACnD,KAAK,CAAC,MAAM,EAAE,IAAI,CAAC,CAAA;QAEnB,MAAM,IAAA,uDAAyB,EAAC,OAAO,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;QAClD,MAAM,IAAA,6DAA4B,EAAC,OAAO,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;KACtD;IAED,MAAM,IAAI,EAAE,CAAA;AACd,CAAC;AAXD,sEAWC"}

package/dist-server/middlewares/index.js DELETED Viewed

@@ -1,57 +0,0 @@
-"use strict";
-var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    var desc = Object.getOwnPropertyDescriptor(m, k);
-    if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
-      desc = { enumerable: true, get: function() { return m[k]; } };
-    }
-    Object.defineProperty(o, k2, desc);
-}) : (function(o, m, k, k2) {
-    if (k2 === undefined) k2 = k;
-    o[k2] = m[k];
-}));
-var __exportStar = (this && this.__exportStar) || function(m, exports) {
-    for (var p in m) if (p !== "default" && !Object.prototype.hasOwnProperty.call(exports, p)) __createBinding(exports, m, p);
-};
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.initMiddlewares = void 0;
-const koa_passport_1 = __importDefault(require("koa-passport"));
-const authenticate_401_middleware_1 = require("./authenticate-401-middleware");
-const domain_authenticate_middleware_1 = require("./domain-authenticate-middleware");
-const graphql_authenticate_middleware_1 = require("./graphql-authenticate-middleware");
-const jwt_authenticate_middleware_1 = require("./jwt-authenticate-middleware");
-const debug = require('debug')('things-factory:auth-base:middleware');
-function initMiddlewares(app) {
-    /* passport initialize */
-    app.use(koa_passport_1.default.initialize());
-    /* authentication error handling */
-    app.use(authenticate_401_middleware_1.authenticate401Middleware);
-    /*
-     * post:graphql 에 대해서는 authenticationMiddleware를 적용한다.
-     * graphql app을 router에 적용하지 못하기 때문임.
-     */
-    app.use(graphql_authenticate_middleware_1.graphqlAuthenticateMiddleware);
-}
-exports.initMiddlewares = initMiddlewares;
-process.on('bootstrap-module-subscription', (app, subscriptionMiddleware) => {
-    debug('bootstrap-module-subscription');
-    subscriptionMiddleware.push(jwt_authenticate_middleware_1.jwtAuthenticateMiddleware, domain_authenticate_middleware_1.domainAuthenticateMiddleware);
-    // subscriptionMiddleware.push(jwtAuthenticateMiddleware, async (context, next) => {
-    //   const { domain, user } = context.state
-    //   if (domain && !user.domains.find(d => d.subdomain === domain.subdomain)) {
-    //     let message = `subdomain '${domain.subdomain}' is not allowed for the user`
-    //     debug('subscription', message)
-    //     context.throw(401, message)
-    //   }
-    //   debug('subscription', user.email, domain?.subdomain)
-    //   await next()
-    // })
-});
-__exportStar(require("./jwt-authenticate-middleware"), exports);
-__exportStar(require("./domain-authenticate-middleware"), exports);
-__exportStar(require("./signin-middleware"), exports);
-__exportStar(require("./authenticate-401-middleware"), exports);
-//# sourceMappingURL=index.js.map

package/dist-server/middlewares/index.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../server/middlewares/index.ts"],"names":[],"mappings":";;;;;;;;;;;;;;;;;;;;AAAA,gEAAmC;AAEnC,+EAAyE;AACzE,qFAA+E;AAC/E,uFAAiF;AACjF,+EAAyE;AAEzE,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,qCAAqC,CAAC,CAAA;AAErE,SAAgB,eAAe,CAAC,GAAQ;IACtC,yBAAyB;IACzB,GAAG,CAAC,GAAG,CAAC,sBAAQ,CAAC,UAAU,EAAE,CAAC,CAAA;IAE9B,mCAAmC;IACnC,GAAG,CAAC,GAAG,CAAC,uDAAyB,CAAC,CAAA;IAElC;;;OAGG;IACH,GAAG,CAAC,GAAG,CAAC,+DAA6B,CAAC,CAAA;AACxC,CAAC;AAZD,0CAYC;AAED,OAAO,CAAC,EAAE,CAAC,+BAAsC,EAAE,CAAC,GAAG,EAAE,sBAAsB,EAAE,EAAE;IACjF,KAAK,CAAC,+BAA+B,CAAC,CAAA;IAEtC,sBAAsB,CAAC,IAAI,CAAC,uDAAyB,EAAE,6DAA4B,CAAC,CAAA;IAEpF,oFAAoF;IACpF,2CAA2C;IAE3C,+EAA+E;IAC/E,kFAAkF;IAClF,qCAAqC;IACrC,kCAAkC;IAClC,MAAM;IAEN,yDAAyD;IAEzD,iBAAiB;IACjB,KAAK;AACP,CAAC,CAAC,CAAA;AAEF,gEAA6C;AAC7C,mEAAgD;AAChD,sDAAmC;AACnC,gEAA6C"}

package/dist-server/middlewares/jwt-authenticate-middleware.js DELETED Viewed

@@ -1,77 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.jwtAuthenticateMiddleware = void 0;
-const passport_1 = __importDefault(require("passport"));
-const passport_jwt_1 = require("passport-jwt");
-const user_1 = require("../service/user/user");
-const verification_token_1 = require("../service/verification-token/verification-token");
-const get_secret_1 = require("../utils/get-secret");
-const access_token_cookie_1 = require("../utils/access-token-cookie");
-const make_verification_token_1 = require("../controllers/utils/make-verification-token");
-const save_verification_token_1 = require("../controllers/utils/save-verification-token");
-const debug = require('debug')('things-factory:auth-base:jwt-authenticate-middleware');
-passport_1.default.use(new passport_jwt_1.Strategy({
-    secretOrKey: get_secret_1.SECRET,
-    passReqToCallback: true,
-    jwtFromRequest: passport_jwt_1.ExtractJwt.fromExtractors([
-        passport_jwt_1.ExtractJwt.fromAuthHeaderAsBearerToken(),
-        passport_jwt_1.ExtractJwt.fromHeader('authorization'),
-        passport_jwt_1.ExtractJwt.fromHeader('x-access-token'),
-        passport_jwt_1.ExtractJwt.fromUrlQueryParameter('access_token'),
-        passport_jwt_1.ExtractJwt.fromBodyField('access_token'),
-        req => {
-            var token = null;
-            token = (0, access_token_cookie_1.getAccessTokenCookie)(req === null || req === void 0 ? void 0 : req.ctx);
-            return token;
-        }
-    ])
-}, async (request, decoded, done) => {
-    try {
-        return done(null, decoded);
-    }
-    catch (error) {
-        return done(error);
-    }
-}));
-async function jwtAuthenticateMiddleware(context, next) {
-    const { path } = context;
-    const { user } = context.state;
-    if (user) {
-        debug('reuse user', path, user === null || user === void 0 ? void 0 : user.email);
-        return await next();
-    }
-    return await passport_1.default.authenticate('jwt', { session: false }, async (err, decoded, info) => {
-        debug('passport.authenticate - jwt', path);
-        if (err || !decoded) {
-            const e = (context.state.error = err || info);
-            debug('error - jwt', path, err === null || err === void 0 ? void 0 : err.message, info === null || info === void 0 ? void 0 : info.message);
-            // TODO cookie 가 authenticate에 적용된 상황에서 오류가 발생한 경우만, 쿠키를 클리어한다.
-            (0, access_token_cookie_1.clearAccessTokenCookie)(context);
-            context.throw(401, e.message);
-        }
-        else {
-            const userEntity = await user_1.User.checkAuth(decoded);
-            if (userEntity.status === user_1.UserStatus.PWD_RESET_REQUIRED) {
-                try {
-                    const token = (0, make_verification_token_1.makeVerificationToken)();
-                    await (0, save_verification_token_1.saveVerificationToken)(userEntity.id, token, verification_token_1.VerificationTokenType.PASSWORD_RESET);
-                    (0, access_token_cookie_1.clearAccessTokenCookie)(context);
-                    context.redirect(`/auth/reset-password?token=${token}`);
-                }
-                catch (e) {
-                    throw err;
-                }
-            }
-            else {
-                context.state.user = userEntity;
-                context.state.decodedToken = decoded;
-                await next();
-            }
-        }
-    })(context, next);
-}
-exports.jwtAuthenticateMiddleware = jwtAuthenticateMiddleware;
-//# sourceMappingURL=jwt-authenticate-middleware.js.map

package/dist-server/middlewares/jwt-authenticate-middleware.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"jwt-authenticate-middleware.js","sourceRoot":"","sources":["../../server/middlewares/jwt-authenticate-middleware.ts"],"names":[],"mappings":";;;;;;AAAA,wDAA+B;AAC/B,+CAAkE;AAClE,+CAAuD;AACvD,yFAAwF;AACxF,oDAA4C;AAC5C,sEAA2F;AAC3F,0FAAoF;AACpF,0FAAoF;AAEpF,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,sDAAsD,CAAC,CAAA;AAEtF,kBAAQ,CAAC,GAAG,CACV,IAAI,uBAAW,CACb;IACE,WAAW,EAAE,mBAAM;IACnB,iBAAiB,EAAE,IAAI;IACvB,cAAc,EAAE,yBAAU,CAAC,cAAc,CAAC;QACxC,yBAAU,CAAC,2BAA2B,EAAE;QACxC,yBAAU,CAAC,UAAU,CAAC,eAAe,CAAC;QACtC,yBAAU,CAAC,UAAU,CAAC,gBAAgB,CAAC;QACvC,yBAAU,CAAC,qBAAqB,CAAC,cAAc,CAAC;QAChD,yBAAU,CAAC,aAAa,CAAC,cAAc,CAAC;QACxC,GAAG,CAAC,EAAE;YACJ,IAAI,KAAK,GAAG,IAAI,CAAA;YAChB,KAAK,GAAG,IAAA,0CAAoB,EAAC,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,GAAG,CAAC,CAAA;YACtC,OAAO,KAAK,CAAA;QACd,CAAC;KACF,CAAC;CACH,EACD,KAAK,EAAE,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE;IAC/B,IAAI;QACF,OAAO,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;KAC3B;IAAC,OAAO,KAAK,EAAE;QACd,OAAO,IAAI,CAAC,KAAK,CAAC,CAAA;KACnB;AACH,CAAC,CACF,CACF,CAAA;AAEM,KAAK,UAAU,yBAAyB,CAAC,OAAO,EAAE,IAAI;IAC3D,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAA;IACxB,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;IAC9B,IAAI,IAAI,EAAE;QACR,KAAK,CAAC,YAAY,EAAE,IAAI,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,KAAK,CAAC,CAAA;QACtC,OAAO,MAAM,IAAI,EAAE,CAAA;KACpB;IAED,OAAO,MAAM,kBAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE;QACzF,KAAK,CAAC,6BAA6B,EAAE,IAAI,CAAC,CAAA;QAE1C,IAAI,GAAG,IAAI,CAAC,OAAO,EAAE;YACnB,MAAM,CAAC,GAAG,CAAC,OAAO,CAAC,KAAK,CAAC,KAAK,GAAG,GAAG,IAAI,IAAI,CAAC,CAAA;YAC7C,KAAK,CAAC,aAAa,EAAE,IAAI,EAAE,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,OAAO,EAAE,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,OAAO,CAAC,CAAA;YAEvD,+DAA+D;YAC/D,IAAA,4CAAsB,EAAC,OAAO,CAAC,CAAA;YAE/B,OAAO,CAAC,KAAK,CAAC,GAAG,EAAE,CAAC,CAAC,OAAO,CAAC,CAAA;SAC9B;aAAM;YACL,MAAM,UAAU,GAAG,MAAM,WAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAA;YAEhD,IAAI,UAAU,CAAC,MAAM,KAAK,iBAAU,CAAC,kBAAkB,EAAE;gBACvD,IAAI;oBACF,MAAM,KAAK,GAAG,IAAA,+CAAqB,GAAE,CAAA;oBACrC,MAAM,IAAA,+CAAqB,EAAC,UAAU,CAAC,EAAE,EAAE,KAAK,EAAE,0CAAqB,CAAC,cAAc,CAAC,CAAA;oBACvF,IAAA,4CAAsB,EAAC,OAAO,CAAC,CAAA;oBAC/B,OAAO,CAAC,QAAQ,CAAC,8BAA8B,KAAK,EAAE,CAAC,CAAA;iBACxD;gBAAC,OAAO,CAAC,EAAE;oBACV,MAAM,GAAG,CAAA;iBACV;aACF;iBAAM;gBACL,OAAO,CAAC,KAAK,CAAC,IAAI,GAAG,UAAU,CAAA;gBAC/B,OAAO,CAAC,KAAK,CAAC,YAAY,GAAG,OAAO,CAAA;gBACpC,MAAM,IAAI,EAAE,CAAA;aACb;SACF;IACH,CAAC,CAAC,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;AACnB,CAAC;AAtCD,8DAsCC"}

package/dist-server/middlewares/signin-middleware.js DELETED Viewed

@@ -1,47 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.signinMiddleware = void 0;
-const passport_1 = __importDefault(require("passport"));
-const passport_local_1 = require("passport-local");
-const signin_1 = require("../controllers/signin");
-const debug = require('debug')('things-factory:auth-base:signin-middleware');
-passport_1.default.use('signin', new passport_local_1.Strategy({
-    usernameField: 'email',
-    passwordField: 'password'
-}, async (email, password, done) => {
-    try {
-        const { user: userInfo, token, domains } = await (0, signin_1.signin)({
-            email,
-            password
-        });
-        return done(null, {
-            user: userInfo,
-            token,
-            domains
-        }, {
-            message: 'Logged in Successfully'
-        });
-    }
-    catch (error) {
-        return done(error);
-    }
-}));
-async function signinMiddleware(context, next) {
-    return passport_1.default.authenticate('signin', { session: false }, async (err, user, info) => {
-        if (err || !user) {
-            debug('signin fail', err);
-            throw err;
-        }
-        else {
-            const { user: userInfo, token } = user;
-            context.state.user = userInfo;
-            context.state.token = token;
-            await next();
-        }
-    })(context, next);
-}
-exports.signinMiddleware = signinMiddleware;
-//# sourceMappingURL=signin-middleware.js.map

package/dist-server/middlewares/signin-middleware.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"signin-middleware.js","sourceRoot":"","sources":["../../server/middlewares/signin-middleware.ts"],"names":[],"mappings":";;;;;;AAAA,wDAA+B;AAC/B,mDAA0D;AAC1D,kDAA8C;AAE9C,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,4CAA4C,CAAC,CAAA;AAE5E,kBAAQ,CAAC,GAAG,CACV,QAAQ,EACR,IAAI,yBAAa,CACf;IACE,aAAa,EAAE,OAAO;IACtB,aAAa,EAAE,UAAU;CAC1B,EACD,KAAK,EAAE,KAAK,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE;IAC9B,IAAI;QACF,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,OAAO,EAAE,GAAG,MAAM,IAAA,eAAM,EAAC;YACtD,KAAK;YACL,QAAQ;SACT,CAAC,CAAA;QAEF,OAAO,IAAI,CACT,IAAI,EACJ;YACE,IAAI,EAAE,QAAQ;YACd,KAAK;YACL,OAAO;SACR,EACD;YACE,OAAO,EAAE,wBAAwB;SAClC,CACF,CAAA;KACF;IAAC,OAAO,KAAK,EAAE;QACd,OAAO,IAAI,CAAC,KAAK,CAAC,CAAA;KACnB;AACH,CAAC,CACF,CACF,CAAA;AAEM,KAAK,UAAU,gBAAgB,CAAC,OAAO,EAAE,IAAI;IAClD,OAAO,kBAAQ,CAAC,YAAY,CAAC,QAAQ,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,GAAG,EAAE,IAAI,EAAE,IAAI,EAAE,EAAE;QACnF,IAAI,GAAG,IAAI,CAAC,IAAI,EAAE;YAChB,KAAK,CAAC,aAAa,EAAE,GAAG,CAAC,CAAA;YAEzB,MAAM,GAAG,CAAA;SACV;aAAM;YACL,MAAM,EAAE,IAAI,EAAE,QAAQ,EAAE,KAAK,EAAE,GAAG,IAAI,CAAA;YAEtC,OAAO,CAAC,KAAK,CAAC,IAAI,GAAG,QAAQ,CAAA;YAC7B,OAAO,CAAC,KAAK,CAAC,KAAK,GAAG,KAAK,CAAA;YAE3B,MAAM,IAAI,EAAE,CAAA;SACb;IACH,CAAC,CAAC,CAAC,OAAO,EAAE,IAAI,CAAC,CAAA;AACnB,CAAC;AAfD,4CAeC"}

package/dist-server/migrations/1548206416130-SeedUser.js DELETED Viewed

@@ -1,46 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.SeedUsers1548206416130 = void 0;
-const shell_1 = require("@things-factory/shell");
-const env_1 = require("@things-factory/env");
-const typeorm_1 = require("typeorm");
-const user_1 = require("../service/user/user");
-const ADMIN_ACCOUNT = env_1.config.get('adminAccount', {
-    name: 'Admin',
-    email: 'admin@hatiolab.com',
-    password: 'admin'
-});
-const SEED_USERS = [
-    Object.assign(Object.assign({}, ADMIN_ACCOUNT), { userType: 'user', status: user_1.UserStatus.ACTIVATED })
-];
-class SeedUsers1548206416130 {
-    async up(queryRunner) {
-        const userRepository = (0, typeorm_1.getRepository)(user_1.User);
-        const domainRepository = (0, typeorm_1.getRepository)(shell_1.Domain);
-        const domain = await domainRepository.findOne({ where: { name: 'SYSTEM' } });
-        try {
-            for (let i = 0; i < SEED_USERS.length; i++) {
-                const user = SEED_USERS[i];
-                const salt = user_1.User.generateSalt();
-                const password = user_1.User.encode(user.password, salt);
-                await userRepository.save(Object.assign(Object.assign({}, user), { salt,
-                    password, domains: [domain] }));
-            }
-        }
-        catch (e) {
-            console.error(e);
-        }
-        const admin = await userRepository.findOne({ where: { email: 'admin@hatiolab.com' } });
-        domain.owner = admin.id;
-        await domainRepository.save(domain);
-    }
-    async down(queryRunner) {
-        const repository = (0, typeorm_1.getRepository)(user_1.User);
-        SEED_USERS.reverse().forEach(async (user) => {
-            let record = await repository.findOne({ email: user.email });
-            await repository.remove(record);
-        });
-    }
-}
-exports.SeedUsers1548206416130 = SeedUsers1548206416130;
-//# sourceMappingURL=1548206416130-SeedUser.js.map

package/dist-server/migrations/1548206416130-SeedUser.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"1548206416130-SeedUser.js","sourceRoot":"","sources":["../../server/migrations/1548206416130-SeedUser.ts"],"names":[],"mappings":";;;AAAA,iDAA8C;AAC9C,6CAA4C;AAC5C,qCAAwE;AACxE,+CAAuD;AAEvD,MAAM,aAAa,GAAG,YAAM,CAAC,GAAG,CAAC,cAAc,EAAE;IAC/C,IAAI,EAAE,OAAO;IACb,KAAK,EAAE,oBAAoB;IAC3B,QAAQ,EAAE,OAAO;CAClB,CAAC,CAAA;AAEF,MAAM,UAAU,GAAG;oCAEZ,aAAa,KAChB,QAAQ,EAAE,MAAM,EAChB,MAAM,EAAE,iBAAU,CAAC,SAAS;CAE/B,CAAA;AACD,MAAa,sBAAsB;IAC1B,KAAK,CAAC,EAAE,CAAC,WAAwB;QACtC,MAAM,cAAc,GAAG,IAAA,uBAAa,EAAC,WAAI,CAAC,CAAA;QAC1C,MAAM,gBAAgB,GAAG,IAAA,uBAAa,EAAC,cAAM,CAAC,CAAA;QAE9C,MAAM,MAAM,GAAW,MAAM,gBAAgB,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,IAAI,EAAE,QAAQ,EAAE,EAAE,CAAC,CAAA;QAEpF,IAAI;YACF,KAAK,IAAI,CAAC,GAAG,CAAC,EAAE,CAAC,GAAG,UAAU,CAAC,MAAM,EAAE,CAAC,EAAE,EAAE;gBAC1C,MAAM,IAAI,GAAG,UAAU,CAAC,CAAC,CAAC,CAAA;gBAC1B,MAAM,IAAI,GAAG,WAAI,CAAC,YAAY,EAAE,CAAA;gBAChC,MAAM,QAAQ,GAAG,WAAI,CAAC,MAAM,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,CAAA;gBAEjD,MAAM,cAAc,CAAC,IAAI,iCACpB,IAAI,KACP,IAAI;oBACJ,QAAQ,EACR,OAAO,EAAE,CAAC,MAAM,CAAC,IACjB,CAAA;aACH;SACF;QAAC,OAAO,CAAC,EAAE;YACV,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;SACjB;QAED,MAAM,KAAK,GAAG,MAAM,cAAc,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,EAAE,KAAK,EAAE,oBAAoB,EAAE,EAAE,CAAC,CAAA;QACtF,MAAM,CAAC,KAAK,GAAG,KAAK,CAAC,EAAE,CAAA;QAEvB,MAAM,gBAAgB,CAAC,IAAI,CAAC,MAAM,CAAC,CAAA;IACrC,CAAC;IAEM,KAAK,CAAC,IAAI,CAAC,WAAwB;QACxC,MAAM,UAAU,GAAG,IAAA,uBAAa,EAAC,WAAI,CAAC,CAAA;QAEtC,UAAU,CAAC,OAAO,EAAE,CAAC,OAAO,CAAC,KAAK,EAAC,IAAI,EAAC,EAAE;YACxC,IAAI,MAAM,GAAG,MAAM,UAAU,CAAC,OAAO,CAAC,EAAE,KAAK,EAAE,IAAI,CAAC,KAAK,EAAE,CAAC,CAAA;YAC5D,MAAM,UAAU,CAAC,MAAM,CAAC,MAAM,CAAC,CAAA;QACjC,CAAC,CAAC,CAAA;IACJ,CAAC;CACF;AAtCD,wDAsCC"}

package/dist-server/migrations/1566805283882-SeedPrivilege.js DELETED Viewed

@@ -1,26 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.SeedPrivilege1566805283882 = void 0;
-const typeorm_1 = require("typeorm");
-const privilege_1 = require("../service/privilege/privilege");
-class SeedPrivilege1566805283882 {
-    async up(queryRunner) {
-        const privilegeRepository = (0, typeorm_1.getRepository)(privilege_1.Privilege);
-        const { schema } = require('@things-factory/shell/dist-server/schema');
-        await schema();
-        const privileges = process['PRIVILEGES'];
-        try {
-            for (const [category, name] of Object.values(privileges)) {
-                if (0 == (await privilegeRepository.count({ where: { category, name } }))) {
-                    await privilegeRepository.save({ category, name });
-                }
-            }
-        }
-        catch (e) {
-            console.error(e);
-        }
-    }
-    async down(queryRunner) { }
-}
-exports.SeedPrivilege1566805283882 = SeedPrivilege1566805283882;
-//# sourceMappingURL=1566805283882-SeedPrivilege.js.map

package/dist-server/migrations/1566805283882-SeedPrivilege.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"1566805283882-SeedPrivilege.js","sourceRoot":"","sources":["../../server/migrations/1566805283882-SeedPrivilege.ts"],"names":[],"mappings":";;;AAAA,qCAAwE;AACxE,8DAA0D;AAE1D,MAAa,0BAA0B;IAC9B,KAAK,CAAC,EAAE,CAAC,WAAwB;QACtC,MAAM,mBAAmB,GAAG,IAAA,uBAAa,EAAC,qBAAS,CAAC,CAAA;QAEpD,MAAM,EAAE,MAAM,EAAE,GAAG,OAAO,CAAC,0CAA0C,CAAC,CAAA;QACtE,MAAM,MAAM,EAAE,CAAA;QACd,MAAM,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC,CAAA;QAExC,IAAI;YACF,KAAK,MAAM,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,UAA8B,CAAC,EAAE;gBAC5E,IAAI,CAAC,IAAI,CAAC,MAAM,mBAAmB,CAAC,KAAK,CAAC,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC,EAAE;oBACzE,MAAM,mBAAmB,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAA;iBACnD;aACF;SACF;QAAC,OAAO,CAAC,EAAE;YACV,OAAO,CAAC,KAAK,CAAC,CAAC,CAAC,CAAA;SACjB;IACH,CAAC;IAEM,KAAK,CAAC,IAAI,CAAC,WAAwB,IAAiB,CAAC;CAC7D;AApBD,gEAoBC"}

package/dist-server/migrations/index.js DELETED Viewed

@@ -1,12 +0,0 @@
-"use strict";
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.migrations = void 0;
-const glob = require('glob');
-const path = require('path');
-exports.migrations = [];
-glob.sync(path.resolve(__dirname, '.', '**', '*.js')).forEach(function (file) {
-    if (file.indexOf('index.js') !== -1)
-        return;
-    exports.migrations = exports.migrations.concat(Object.values(require(path.resolve(file))) || []);
-});
-//# sourceMappingURL=index.js.map

package/dist-server/migrations/index.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../server/migrations/index.ts"],"names":[],"mappings":";;;AAAA,MAAM,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,CAAA;AAC5B,MAAM,IAAI,GAAG,OAAO,CAAC,MAAM,CAAC,CAAA;AAEjB,QAAA,UAAU,GAAG,EAAE,CAAA;AAE1B,IAAI,CAAC,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,SAAS,EAAE,GAAG,EAAE,IAAI,EAAE,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,UAAS,IAAI;IACzE,IAAI,IAAI,CAAC,OAAO,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC;QAAE,OAAM;IAC3C,kBAAU,GAAG,kBAAU,CAAC,MAAM,CAAC,MAAM,CAAC,MAAM,CAAC,OAAO,CAAC,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,IAAI,EAAE,CAAC,CAAA;AAClF,CAAC,CAAC,CAAA"}

package/dist-server/router/auth-checkin-router.js DELETED Viewed

@@ -1,96 +0,0 @@
-"use strict";
-var __importDefault = (this && this.__importDefault) || function (mod) {
-    return (mod && mod.__esModule) ? mod : { "default": mod };
-};
-Object.defineProperty(exports, "__esModule", { value: true });
-exports.authCheckinRouter = void 0;
-const env_1 = require("@things-factory/env");
-const accepts_1 = require("../utils/accepts");
-const shell_1 = require("@things-factory/shell");
-const koa_router_1 = __importDefault(require("koa-router"));
-const login_history_1 = require("../service/login-history/login-history");
-const access_token_cookie_1 = require("../utils/access-token-cookie");
-const get_user_domains_1 = require("../utils/get-user-domains");
-const debug = require('debug')('things-factory:auth-base:checkin-router');
-const domainType = env_1.config.get('domainType');
-exports.authCheckinRouter = new koa_router_1.default();
-exports.authCheckinRouter.get('/auth/checkin/:subdomain?', async (context, next) => {
-    const { request, t } = context;
-    const header = request.header;
-    const { user } = context.state;
-    let { subdomain } = context.params;
-    let domains = await (0, get_user_domains_1.getUserDomains)(user);
-    if (domainType)
-        domains = domains.filter(d => d.extType == domainType);
-    if (!(0, accepts_1.accepts)(header.accept, ['text/html', '*/*'])) {
-        // When request expects non html response
-        try {
-            debug('get:/auth/checkin/:subdomain?', subdomain);
-            if (!subdomain)
-                throw new Error(t('error.domain not specified', { subdomain })); // When params doesn't have subdomain
-            const checkInDomain = domains.find((d) => d.subdomain === subdomain); // When no matched domain with subdomain
-            if (!checkInDomain)
-                throw new Error(t('error.domain not specified', { subdomain }));
-            await checkIn(checkInDomain, null, context);
-            context.body = true;
-        }
-        catch (e) {
-            (0, access_token_cookie_1.clearAccessTokenCookie)(context);
-            throw e;
-        }
-    }
-    else {
-        // When request expects html response
-        const { redirect_to: redirectTo = '/' } = context.query;
-        try {
-            let message;
-            debug('get:/auth/checkin/:subdomain?', subdomain, redirectTo);
-            if (!subdomain) {
-                /* try to find domain from redirectTo path */
-                subdomain = (0, shell_1.findSubdomainFromPath)(context, redirectTo);
-            }
-            let checkInDomain;
-            if (subdomain) {
-                checkInDomain = domains.find(d => d.subdomain == subdomain);
-                if (!checkInDomain)
-                    message = t('error.domain not allowed', { subdomain });
-            }
-            else if (domains.length === 1) {
-                checkInDomain = domains[0];
-            }
-            if (checkInDomain)
-                return await checkIn(checkInDomain, redirectTo, context);
-            await context.render('auth-page', {
-                pageElement: 'auth-checkin',
-                elementScript: '/auth/checkin.js',
-                data: {
-                    user,
-                    domains,
-                    domainType,
-                    redirectTo,
-                    message
-                }
-            });
-        }
-        catch (e) {
-            (0, access_token_cookie_1.clearAccessTokenCookie)(context);
-            context.redirect(`/auth/signin?email=${encodeURIComponent(user.email)}&redirect_to=${encodeURIComponent(redirectTo)}`);
-        }
-    }
-});
-exports.authCheckinRouter.get('/auth/domains', async (context) => {
-    const { user } = context.state;
-    var domains = await (0, get_user_domains_1.getUserDomains)(user);
-    if (domainType) {
-        domains = domains.filter(d => d.extType == domainType);
-    }
-    context.body = domains;
-});
-async function checkIn(checkInDomain, redirectTo, context) {
-    const user = context.state.user;
-    await login_history_1.LoginHistory.stamp(checkInDomain, user, context.req.connection.remoteAddress);
-    if (redirectTo) {
-        return context.redirect((0, shell_1.getRedirectSubdomainPath)(context, checkInDomain.subdomain, redirectTo));
-    }
-}
-//# sourceMappingURL=auth-checkin-router.js.map

package/dist-server/router/auth-checkin-router.js.map DELETED Viewed

@@ -1 +0,0 @@

- {"version":3,"file":"auth-checkin-router.js","sourceRoot":"","sources":["../../server/router/auth-checkin-router.ts"],"names":[],"mappings":";;;;;;AAAA,6CAA4C;AAC5C,8CAA0C;AAC1C,iDAA+F;AAC/F,4DAA+B;AAC/B,0EAAqE;AAErE,sEAAqE;AACrE,gEAA0D;AAE1D,MAAM,KAAK,GAAG,OAAO,CAAC,OAAO,CAAC,CAAC,yCAAyC,CAAC,CAAA;AACzE,MAAM,UAAU,GAAG,YAAM,CAAC,GAAG,CAAC,YAAY,CAAC,CAAA;AAE9B,QAAA,iBAAiB,GAAG,IAAI,oBAAM,EAAE,CAAA;AAE7C,yBAAiB,CAAC,GAAG,CAAC,2BAA2B,EAAE,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE;IACzE,MAAM,EAAE,OAAO,EAAE,CAAC,EAAE,GAAG,OAAO,CAAA;IAC9B,MAAM,MAAM,GAAG,OAAO,CAAC,MAAM,CAAA;IAC7B,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;IAC9B,IAAI,EAAE,SAAS,EAAE,GAAG,OAAO,CAAC,MAAM,CAAA;IAElC,IAAI,OAAO,GAAa,MAAM,IAAA,iCAAc,EAAC,IAAI,CAAC,CAAA;IAClD,IAAI,UAAU;QAAE,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,IAAI,UAAU,CAAC,CAAA;IAEtE,IAAI,CAAC,IAAA,iBAAO,EAAC,MAAM,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,EAAE;QACjD,yCAAyC;QACzC,IAAI;YACF,KAAK,CAAC,+BAA+B,EAAE,SAAS,CAAC,CAAA;YACjD,IAAI,CAAC,SAAS;gBAAE,MAAM,IAAI,KAAK,CAAC,CAAC,CAAC,4BAA4B,EAAE,EAAE,SAAS,EAAE,CAAC,CAAC,CAAA,CAAC,qCAAqC;YACrH,MAAM,aAAa,GAAuB,OAAO,CAAC,IAAI,CAAC,CAAC,CAAS,EAAE,EAAE,CAAC,CAAC,CAAC,SAAS,KAAK,SAAS,CAAC,CAAA,CAAC,wCAAwC;YACzI,IAAI,CAAC,aAAa;gBAAE,MAAM,IAAI,KAAK,CAAC,CAAC,CAAC,4BAA4B,EAAE,EAAE,SAAS,EAAE,CAAC,CAAC,CAAA;YAEnF,MAAM,OAAO,CAAC,aAAa,EAAE,IAAI,EAAE,OAAO,CAAC,CAAA;YAC3C,OAAO,CAAC,IAAI,GAAG,IAAI,CAAA;SACpB;QAAC,OAAO,CAAC,EAAE;YACV,IAAA,4CAAsB,EAAC,OAAO,CAAC,CAAA;YAC/B,MAAM,CAAC,CAAA;SACR;KACF;SAAM;QACL,qCAAqC;QACrC,MAAM,EAAE,WAAW,EAAE,UAAU,GAAG,GAAG,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;QAEvD,IAAI;YACF,IAAI,OAAe,CAAA;YAEnB,KAAK,CAAC,+BAA+B,EAAE,SAAS,EAAE,UAAU,CAAC,CAAA;YAE7D,IAAI,CAAC,SAAS,EAAE;gBACd,6CAA6C;gBAC7C,SAAS,GAAG,IAAA,6BAAqB,EAAC,OAAO,EAAE,UAAU,CAAC,CAAA;aACvD;YAED,IAAI,aAAqB,CAAA;YACzB,IAAI,SAAS,EAAE;gBACb,aAAa,GAAG,OAAO,CAAC,IAAI,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS,IAAI,SAAS,CAAC,CAAA;gBAC3D,IAAI,CAAC,aAAa;oBAAE,OAAO,GAAG,CAAC,CAAC,0BAA0B,EAAE,EAAE,SAAS,EAAE,CAAC,CAAA;aAC3E;iBAAM,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE;gBAC/B,aAAa,GAAG,OAAO,CAAC,CAAC,CAAC,CAAA;aAC3B;YAED,IAAI,aAAa;gBAAE,OAAO,MAAM,OAAO,CAAC,aAAa,EAAE,UAAU,EAAE,OAAO,CAAC,CAAA;YAE3E,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;gBAChC,WAAW,EAAE,cAAc;gBAC3B,aAAa,EAAE,kBAAkB;gBACjC,IAAI,EAAE;oBACJ,IAAI;oBACJ,OAAO;oBACP,UAAU;oBACV,UAAU;oBACV,OAAO;iBACR;aACF,CAAC,CAAA;SACH;QAAC,OAAO,CAAC,EAAE;YACV,IAAA,4CAAsB,EAAC,OAAO,CAAC,CAAA;YAC/B,OAAO,CAAC,QAAQ,CACd,sBAAsB,kBAAkB,CAAC,IAAI,CAAC,KAAK,CAAC,gBAAgB,kBAAkB,CAAC,UAAU,CAAC,EAAE,CACrG,CAAA;SACF;KACF;AACH,CAAC,CAAC,CAAA;AAEF,yBAAiB,CAAC,GAAG,CAAC,eAAe,EAAE,KAAK,EAAC,OAAO,EAAC,EAAE;IACrD,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;IAC9B,IAAI,OAAO,GAAG,MAAM,IAAA,iCAAc,EAAC,IAAI,CAAC,CAAA;IACxC,IAAI,UAAU,EAAE;QACd,OAAO,GAAG,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,OAAO,IAAI,UAAU,CAAC,CAAA;KACvD;IAED,OAAO,CAAC,IAAI,GAAG,OAAO,CAAA;AACxB,CAAC,CAAC,CAAA;AAEF,KAAK,UAAU,OAAO,CAAC,aAAqB,EAAE,UAAyB,EAAE,OAAY;IACnF,MAAM,IAAI,GAAS,OAAO,CAAC,KAAK,CAAC,IAAI,CAAA;IACrC,MAAM,4BAAY,CAAC,KAAK,CAAC,aAAa,EAAE,IAAI,EAAE,OAAO,CAAC,GAAG,CAAC,UAAU,CAAC,aAAa,CAAC,CAAA;IAEnF,IAAI,UAAU,EAAE;QACd,OAAO,OAAO,CAAC,QAAQ,CAAC,IAAA,gCAAwB,EAAC,OAAO,EAAE,aAAa,CAAC,SAAS,EAAE,UAAU,CAAC,CAAC,CAAA;KAChG;AACH,CAAC"}