hardlounge/server/plugins/auth/local.ts

import colors from "chalk";
import log from "../../log";
import Helper from "../../helper";
import type {AuthHandler} from "../auth";

const localAuth: AuthHandler = (manager, client, user, password, callback) => {
	// If no user is found, or if the client has not provided a password,
	// fail the authentication straight away
	if (!client || !password) {
		return callback(false);
	}

	// If this user has no password set, fail the authentication
	if (!client.config.password) {
		log.error(
			`User ${colors.bold(
				user
			)} with no local password set tried to sign in. (Probably a LDAP user)`
		);
		return callback(false);
	}

	Helper.password
		.compare(password, client.config.password)
		.then((matching) => {
			if (matching && Helper.password.requiresUpdate(client.config.password)) {
				const hash = Helper.password.hash(password);

				client.setPassword(hash, (success) => {
					if (success) {
						log.info(
							`User ${colors.bold(
								client.name
							)} logged in and their hashed password has been updated to match new security requirements`
						);
					}
				});
			}

			callback(matching);
		})
		.catch((error) => {
			// eslint-disable-next-line @typescript-eslint/restrict-template-expressions
			log.error(`Error while checking users password. Error: ${error}`);
		});
};

export default {
	moduleName: "local",
	auth: localAuth,
	isEnabled: () => true,
};
TypeScript and Vue 3 (#4559) Co-authored-by: Eric Nemchik <eric@nemchik.com> Co-authored-by: Pavel Djundik <xPaw@users.noreply.github.com> 2022-06-19 00:25:21 +00:00			`import colors from "chalk";`
			`import log from "../../log";`
			`import Helper from "../../helper";`
			`import type {AuthHandler} from "../auth";`
Make new LDAP options backward compatible Also draft some kind of plugin system for auth, although it essentially consists in writing a function and there is no mechanism to automatically fallback from one auth to another 2017-08-29 16:05:06 +00:00
TypeScript and Vue 3 (#4559) Co-authored-by: Eric Nemchik <eric@nemchik.com> Co-authored-by: Pavel Djundik <xPaw@users.noreply.github.com> 2022-06-19 00:25:21 +00:00			`const localAuth: AuthHandler = (manager, client, user, password, callback) => {`
Make new LDAP options backward compatible Also draft some kind of plugin system for auth, although it essentially consists in writing a function and there is no mechanism to automatically fallback from one auth to another 2017-08-29 16:05:06 +00:00			`// If no user is found, or if the client has not provided a password,`
			`// fail the authentication straight away`
			`if (!client \|\| !password) {`
			`return callback(false);`
			`}`

			`// If this user has no password set, fail the authentication`
			`if (!client.config.password) {`
Format js/vue with prettier 2019-07-17 09:33:59 +00:00			`log.error(`
			`User ${colors.bold(
			`user`
			)} with no local password set tried to sign in. (Probably a LDAP user)`
			`);`
Make new LDAP options backward compatible Also draft some kind of plugin system for auth, although it essentially consists in writing a function and there is no mechanism to automatically fallback from one auth to another 2017-08-29 16:05:06 +00:00			`return callback(false);`
			`}`

			`Helper.password`
			`.compare(password, client.config.password)`
			`.then((matching) => {`
			`if (matching && Helper.password.requiresUpdate(client.config.password)) {`
			`const hash = Helper.password.hash(password);`

			`client.setPassword(hash, (success) => {`
			`if (success) {`
Format js/vue with prettier 2019-07-17 09:33:59 +00:00			`log.info(`
			`User ${colors.bold(
			`client.name`
			)} logged in and their hashed password has been updated to match new security requirements`
			`);`
Make new LDAP options backward compatible Also draft some kind of plugin system for auth, although it essentially consists in writing a function and there is no mechanism to automatically fallback from one auth to another 2017-08-29 16:05:06 +00:00			`}`
			`});`
			`}`

			`callback(matching);`
Format js/vue with prettier 2019-07-17 09:33:59 +00:00			`})`
			`.catch((error) => {`
TypeScript and Vue 3 (#4559) Co-authored-by: Eric Nemchik <eric@nemchik.com> Co-authored-by: Pavel Djundik <xPaw@users.noreply.github.com> 2022-06-19 00:25:21 +00:00			`// eslint-disable-next-line @typescript-eslint/restrict-template-expressions`
Make new LDAP options backward compatible Also draft some kind of plugin system for auth, although it essentially consists in writing a function and there is no mechanism to automatically fallback from one auth to another 2017-08-29 16:05:06 +00:00			log.error(`Error while checking users password. Error: ${error}`);
			`});`
TypeScript and Vue 3 (#4559) Co-authored-by: Eric Nemchik <eric@nemchik.com> Co-authored-by: Pavel Djundik <xPaw@users.noreply.github.com> 2022-06-19 00:25:21 +00:00			`};`
Make new LDAP options backward compatible Also draft some kind of plugin system for auth, although it essentially consists in writing a function and there is no mechanism to automatically fallback from one auth to another 2017-08-29 16:05:06 +00:00
TypeScript and Vue 3 (#4559) Co-authored-by: Eric Nemchik <eric@nemchik.com> Co-authored-by: Pavel Djundik <xPaw@users.noreply.github.com> 2022-06-19 00:25:21 +00:00			`export default {`
Tidy up the auth plugin API mechanism to hide implementation details The caller doesn't care which plugin is being used, so this commit consolidates implementation details within auth.js The motivation for this work is to prepare for extending the auth API (to allow "advanced" LDAP to query user entry ontological state at start up), by tidying up rather than duplicating the existing mechanism. 2020-04-22 13:33:35 +00:00			`moduleName: "local",`
Reorganize auth plugins 2017-08-29 17:11:06 +00:00			`auth: localAuth,`
Enforce dangling commas with ESLint ¯\_(ツ)_/¯ 2017-11-15 06:35:15 +00:00			`isEnabled: () => true,`
Reorganize auth plugins 2017-08-29 17:11:06 +00:00			`};`