Nemcio/NodeBB
1
0
Fork 0
mirror of https://github.com/NodeBB/NodeBB.git synced 2026-03-04 19:41:16 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
cffbb325850e29ffd352d19e29ac6cd083fc3020
NodeBB/src/user/auth.js

146 lines
4.6 KiB
JavaScript
Raw Normal View History

closes #1911
2014-07-29 00:42:33 -04:00
'use strict';
refactor: async/await
2019-10-03 23:31:42 -04:00
const winston = require('winston');
const validator = require('validator');
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
const util = require('util');
const _ = require('lodash');
refactor: async/await
2019-10-03 23:31:42 -04:00
const db = require('../database');
const meta = require('../meta');
const events = require('../events');
const batch = require('../batch');
const utils = require('../utils');
closed #1453
2014-05-11 11:45:20 -04:00
Fix space-before-function-paren linter rule
2016-10-13 11:43:39 +02:00
module.exports = function (User) {
closed #1453
2014-05-11 11:45:20 -04:00
User.auth = {};
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
User.auth.logAttempt = async function (uid, ip) {
fix: logAttempt conditional
2018-12-10 14:40:11 -05:00
if (!(parseInt(uid, 10) > 0)) {
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
return;
on login display invalid-login-credentials
2017-04-24 13:31:38 -04:00
}
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
const exists = await db.exists('lockout:' + uid);
if (exists) {
throw new Error('[[error:account-locked]]');
}
const attempts = await db.increment('loginAttempts:' + uid);
if (attempts <= meta.config.loginAttempts) {
return await db.pexpire('loginAttempts:' + uid, 1000 * 60 * 60);
}
// Lock out the account
await db.set('lockout:' + uid, '');
refactor: async/await
2019-10-03 23:31:42 -04:00
const duration = 1000 * 60 * meta.config.lockoutDuration;
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
await db.delete('loginAttempts:' + uid);
await db.pexpire('lockout:' + uid, duration);
events.log({
type: 'account-locked',
uid: uid,
ip: ip,
});
throw new Error('[[error:account-locked]]');
closed #1453
2014-05-11 11:45:20 -04:00
};
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
User.auth.getFeedToken = async function (uid) {
if (!(parseInt(uid, 10) > 0)) {
return;
}
refactor: async/await
2019-10-03 23:31:42 -04:00
const _token = await db.getObjectField('user:' + uid, 'rss_token');
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
const token = _token || utils.generateUUID();
if (!_token) {
await User.setUserField(uid, 'rss_token', token);
proof of concept for #5740
2017-06-20 16:12:55 -04:00
}
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
return token;
proof of concept for #5740
2017-06-20 16:12:55 -04:00
};
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
User.auth.clearLoginAttempts = async function (uid) {
await db.delete('loginAttempts:' + uid);
closed #1453
2014-05-11 11:45:20 -04:00
};
closes #1971
2014-08-14 08:34:38 -04:00
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
User.auth.resetLockout = async function (uid) {
await db.deleteAll([
'loginAttempts:' + uid,
'lockout:' + uid,
]);
all your semi-colons are belongs to me
2014-10-08 12:18:32 -04:00
};
closes #3989 Squashed commit of the following: commit 23de0708708ed190eafbcd6ea93d43333cb87aa3 Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 10:48:16 2015 -0500 wired up session revocation, #3989 commit 45a3f18321b74a9b6893d404b6c870f1ec4d95cd Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 09:49:27 2015 -0500 session deletion via session uuid commit 2bf87338cf9bfa2df0b299639421d8da7553c69a Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 13:53:35 2015 -0500 WIP #3989 commit 623f45c3fa8b96f8b6eec0613eb7f9463348ab93 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:22:24 2015 -0500 saving more metadata and displaying sessions in UCP #3989 commit d0567ed7cc33a1aea66e921b657f782038f32191 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:21:38 2015 -0500 updated fontawesome to v4.5.0 commit 7131c97fe8ab42838eb2915a04e74f80f3d9a133 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:39:16 2015 -0500 saving user-agent metadata into user session #3989 commit 661b7e6dba774b80b5dc6d04f89a79f809ff791e Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:23:24 2015 -0500 New user auth methods to add/revoke sessions, #3989
2015-12-23 10:48:45 -05:00
refactor: async/await
2019-10-03 23:31:42 -04:00
const getSessionFromStore = util.promisify((sid, callback) => db.sessionStore.get(sid, (err, sessObj) => callback(err, sessObj || null)));
const sessionStoreDestroy = util.promisify((sid, callback) => db.sessionStore.destroy(sid, err => callback(err)));
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
User.auth.getSessions = async function (uid, curSessionId) {
const sids = await db.getSortedSetRevRange('uid:' + uid + ':sessions', 0, 19);
refactor: async/await
2019-10-03 23:31:42 -04:00
let sessions = await Promise.all(sids.map(sid => getSessionFromStore(sid)));
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
sessions.forEach(function (sessionObj, idx) {
if (sessionObj && sessionObj.meta) {
sessionObj.meta.current = curSessionId === sids[idx];
}
});
// Revoke any sessions that have expired, return filtered list
refactor: async/await
2019-10-03 23:31:42 -04:00
const expiredSids = [];
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
sessions = sessions.filter(function (sessionObj, idx) {
refactor: async/await
2019-10-03 23:31:42 -04:00
const expired = !sessionObj || !sessionObj.hasOwnProperty('passport') ||
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
!sessionObj.passport.hasOwnProperty('user') ||
parseInt(sessionObj.passport.user, 10) !== parseInt(uid, 10);
if (expired) {
expiredSids.push(sids[idx]);
}
return !expired;
});
await Promise.all(expiredSids.map(s => User.auth.revokeSession(s, uid)));
sessions = sessions.map(function (sessObj) {
if (sessObj.meta) {
sessObj.meta.datetimeISO = new Date(sessObj.meta.datetime).toISOString();
sessObj.meta.ip = validator.escape(String(sessObj.meta.ip));
}
return sessObj.meta;
}).filter(Boolean);
return sessions;
closes #3989 Squashed commit of the following: commit 23de0708708ed190eafbcd6ea93d43333cb87aa3 Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 10:48:16 2015 -0500 wired up session revocation, #3989 commit 45a3f18321b74a9b6893d404b6c870f1ec4d95cd Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 09:49:27 2015 -0500 session deletion via session uuid commit 2bf87338cf9bfa2df0b299639421d8da7553c69a Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 13:53:35 2015 -0500 WIP #3989 commit 623f45c3fa8b96f8b6eec0613eb7f9463348ab93 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:22:24 2015 -0500 saving more metadata and displaying sessions in UCP #3989 commit d0567ed7cc33a1aea66e921b657f782038f32191 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:21:38 2015 -0500 updated fontawesome to v4.5.0 commit 7131c97fe8ab42838eb2915a04e74f80f3d9a133 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:39:16 2015 -0500 saving user-agent metadata into user session #3989 commit 661b7e6dba774b80b5dc6d04f89a79f809ff791e Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:23:24 2015 -0500 New user auth methods to add/revoke sessions, #3989
2015-12-23 10:48:45 -05:00
};
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
User.auth.addSession = async function (uid, sessionId) {
fix: dont save data for non-positive uids
2018-12-14 00:09:15 -05:00
if (!(parseInt(uid, 10) > 0)) {
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
return;
fix: dont save data for non-positive uids
2018-12-14 00:09:15 -05:00
}
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
await db.sortedSetAdd('uid:' + uid + ':sessions', Date.now(), sessionId);
closes #3989 Squashed commit of the following: commit 23de0708708ed190eafbcd6ea93d43333cb87aa3 Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 10:48:16 2015 -0500 wired up session revocation, #3989 commit 45a3f18321b74a9b6893d404b6c870f1ec4d95cd Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 09:49:27 2015 -0500 session deletion via session uuid commit 2bf87338cf9bfa2df0b299639421d8da7553c69a Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 13:53:35 2015 -0500 WIP #3989 commit 623f45c3fa8b96f8b6eec0613eb7f9463348ab93 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:22:24 2015 -0500 saving more metadata and displaying sessions in UCP #3989 commit d0567ed7cc33a1aea66e921b657f782038f32191 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:21:38 2015 -0500 updated fontawesome to v4.5.0 commit 7131c97fe8ab42838eb2915a04e74f80f3d9a133 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:39:16 2015 -0500 saving user-agent metadata into user session #3989 commit 661b7e6dba774b80b5dc6d04f89a79f809ff791e Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:23:24 2015 -0500 New user auth methods to add/revoke sessions, #3989
2015-12-23 10:48:45 -05:00
};
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
User.auth.revokeSession = async function (sessionId, uid) {
winston.verbose('[user.auth] Revoking session ' + sessionId + ' for user ' + uid);
const sessionObj = await getSessionFromStore(sessionId);
if (sessionObj && sessionObj.meta && sessionObj.meta.uuid) {
await db.deleteObjectField('uid:' + uid + ':sessionUUID:sessionId', sessionObj.meta.uuid);
}
refactor: async/await
2019-10-03 23:31:42 -04:00
await Promise.all([
db.sortedSetRemove('uid:' + uid + ':sessions', sessionId),
sessionStoreDestroy(sessionId),
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
]);
closes #3989 Squashed commit of the following: commit 23de0708708ed190eafbcd6ea93d43333cb87aa3 Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 10:48:16 2015 -0500 wired up session revocation, #3989 commit 45a3f18321b74a9b6893d404b6c870f1ec4d95cd Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 09:49:27 2015 -0500 session deletion via session uuid commit 2bf87338cf9bfa2df0b299639421d8da7553c69a Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 13:53:35 2015 -0500 WIP #3989 commit 623f45c3fa8b96f8b6eec0613eb7f9463348ab93 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:22:24 2015 -0500 saving more metadata and displaying sessions in UCP #3989 commit d0567ed7cc33a1aea66e921b657f782038f32191 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:21:38 2015 -0500 updated fontawesome to v4.5.0 commit 7131c97fe8ab42838eb2915a04e74f80f3d9a133 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:39:16 2015 -0500 saving user-agent metadata into user session #3989 commit 661b7e6dba774b80b5dc6d04f89a79f809ff791e Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:23:24 2015 -0500 New user auth methods to add/revoke sessions, #3989
2015-12-23 10:48:45 -05:00
};
refactor: async/await socket.io/admin
2019-09-07 18:22:03 -04:00
User.auth.revokeAllSessions = async function (uids) {
uids = Array.isArray(uids) ? uids : [uids];
const sids = await db.getSortedSetsMembers(uids.map(uid => 'uid:' + uid + ':sessions'));
const promises = [];
uids.forEach((uid, index) => {
promises.push(sids[index].map(s => User.auth.revokeSession(s, uid)));
});
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
await Promise.all(promises);
closes #3989 Squashed commit of the following: commit 23de0708708ed190eafbcd6ea93d43333cb87aa3 Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 10:48:16 2015 -0500 wired up session revocation, #3989 commit 45a3f18321b74a9b6893d404b6c870f1ec4d95cd Author: Julian Lam <julian@designcreateplay.com> Date: Wed Dec 23 09:49:27 2015 -0500 session deletion via session uuid commit 2bf87338cf9bfa2df0b299639421d8da7553c69a Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 13:53:35 2015 -0500 WIP #3989 commit 623f45c3fa8b96f8b6eec0613eb7f9463348ab93 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:22:24 2015 -0500 saving more metadata and displaying sessions in UCP #3989 commit d0567ed7cc33a1aea66e921b657f782038f32191 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 10:21:38 2015 -0500 updated fontawesome to v4.5.0 commit 7131c97fe8ab42838eb2915a04e74f80f3d9a133 Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:39:16 2015 -0500 saving user-agent metadata into user session #3989 commit 661b7e6dba774b80b5dc6d04f89a79f809ff791e Author: Julian Lam <julian@designcreateplay.com> Date: Tue Dec 22 09:23:24 2015 -0500 New user auth methods to add/revoke sessions, #3989
2015-12-23 10:48:45 -05:00
};
closes #4544
2016-12-15 14:47:42 +03:00
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
User.auth.deleteAllSessions = async function () {
await batch.processSortedSet('users:joindate', async function (uids) {
const sessionKeys = uids.map(uid => 'uid:' + uid + ':sessions');
const sessionUUIDKeys = uids.map(uid => 'uid:' + uid + ':sessionUUID:sessionId');
const sids = _.flatten(await db.getSortedSetRange(sessionKeys, 0, -1));
refactor: async/await
2019-10-03 23:31:42 -04:00
const promises = [
db.deleteAll(sessionKeys.concat(sessionUUIDKeys)),
...sids.map(sid => sessionStoreDestroy(sid)),
];
console.log('epic', promises);
await Promise.all(promises);
feat: #7743, user/approval, user/auth
2019-07-11 23:43:00 -04:00
}, { batch: 1000 });
closes #4544
2016-12-15 14:47:42 +03:00
};
ESlint eol-last
2017-02-18 02:30:48 -07:00
};
Reference in New Issue Copy Permalink