mirror of
https://github.com/ajnart/homarr.git
synced 2026-03-01 01:40:55 +01:00
dc75ffb9e6
* wip: sso * feat: add ldap client and provider * feat: implement login form * feat: finish sso * fix: lint and format issue * chore: address pull request feedback * fix: build not working * fix: oidc is redirected to internal docker container hostname * fix: build not working * refactor: migrate to ldapts * fix: format and frozen lock file * fix: deepsource issues * fix: unit tests for ldap authorization not working * refactor: remove unnecessary args from dockerfile * chore: address pull request feedback * fix: use console instead of logger in auth env.mjs * fix: default value for auth provider of wrong type * fix: broken lock file * fix: format issue
37 lines
990 B
TypeScript
37 lines
990 B
TypeScript
import bcrypt from "bcrypt";
|
|
|
|
import type { Database } from "@homarr/db";
|
|
import { eq } from "@homarr/db";
|
|
import { users } from "@homarr/db/schema/sqlite";
|
|
import { logger } from "@homarr/log";
|
|
import type { validation, z } from "@homarr/validation";
|
|
|
|
export const authorizeWithBasicCredentialsAsync = async (
|
|
db: Database,
|
|
credentials: z.infer<typeof validation.user.signIn>,
|
|
) => {
|
|
const user = await db.query.users.findFirst({
|
|
where: eq(users.name, credentials.name),
|
|
});
|
|
|
|
if (!user?.password) {
|
|
logger.info(`user ${credentials.name} was not found`);
|
|
return null;
|
|
}
|
|
|
|
logger.info(`user ${user.name} is trying to log in. checking password...`);
|
|
const isValidPassword = await bcrypt.compare(credentials.password, user.password);
|
|
|
|
if (!isValidPassword) {
|
|
logger.warn(`password for user ${user.name} was incorrect`);
|
|
return null;
|
|
}
|
|
|
|
logger.info(`user ${user.name} successfully authorized`);
|
|
|
|
return {
|
|
id: user.id,
|
|
name: user.name,
|
|
};
|
|
};
|