hopfma
/
om
Watch 4
Star 1
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Browse Source

Session object deletion on logout;

master
Erik Römmelt 4 years ago
parent
85bca37a8c
commit
ae5360386a
3 changed files with 55 additions and 41 deletions
Unified View Show Diff Stats
  1. 13
    12
      public/routes/auth.js
  2. 40
    29
      server/authorization.js
  3. 2
    0
      server/dbs.js

+ 13
- 12
public/routes/auth.js View File

function clearAuthState() { function clearAuthState() {
auth.user = ''; // Login name auth.user = ''; // Login name
auth.name = ''; // Full name auth.name = ''; // Full name
auth.type = ''; // type of login (domain specific)
auth.mail = ''; // Full mail address auth.mail = ''; // Full mail address
auth.type = ''; // type of login (domain specific)
auth.roles = {}; // Role authorizations e.g. {user: true} auth.roles = {}; // Role authorizations e.g. {user: true}
auth.gender = ''; // Gender (e.g. Frau) auth.gender = ''; // Gender (e.g. Frau)
auth.abos = []; // Followed tags auth.abos = []; // Followed tags
$.ajax({ $.ajax({
url: "api/usr", url: "api/usr",
data: { data: {
abos: JSON.stringify(auth.abos),
bookmarks: JSON.stringify(auth.bookmarks),
mail: auth.mail,
name: auth.name,
_id: auth.user, _id: auth.user,
roles: JSON.stringify(auth.roles),
name: auth.name,
mail: auth.mail,
type: auth.type, type: auth.type,
gender: auth.gender,
roles: JSON.stringify(auth.roles),
abos: JSON.stringify(auth.abos),
bookmarks: JSON.stringify(auth.bookmarks),
}, },
method: "POST"
method: "PUT"
}).done(successful_save).fail(failed_save); }).done(successful_save).fail(failed_save);


function successful_save(res) { function successful_save(res) {
</b-input> </b-input>
</b-field> </b-field>
<b-checkbox>Eingeloggt bleiben</b-checkbox> <b-checkbox>Eingeloggt bleiben</b-checkbox>
<div v-if="error" style="color:red;"> Versuche es nochmal.</div>
<div v-if="error" :key="error" style="color:red;"> Versuche es nochmal.</div>
</section> </section>
<footer class="modal-card-foot"> <footer class="modal-card-foot">
<button class="button" type="button" @click.prevent="$parent.close()">Close</button> <button class="button" type="button" @click.prevent="$parent.close()">Close</button>
}, },
// TODO: Check if enough for session cookie re-login; checkbox // TODO: Check if enough for session cookie re-login; checkbox
// Doesn't work // Doesn't work
// mounted: function() {
// this.checkData();
// },
beforeMount: function() {
this.checkData();
},
methods: { methods: {
closeLoginPanel: function() { closeLoginPanel: function() {
this.$emit('close-login-panel'); this.$emit('close-login-panel');


function successful_login(resData) { function successful_login(resData) {
fillAuthState(resData); fillAuthState(resData);
updateUserInDB();
// updateUserInDB();
console.info("Correct credentials"); console.info("Correct credentials");
this.closeLoginPanel; this.closeLoginPanel;



+ 40
- 29
server/authorization.js View File

if (req.session === undefined) if (req.session === undefined)
next (common.genError (500, "Error")); next (common.genError (500, "Error"));
// regenerate a new session-id with clean instance // regenerate a new session-id with clean instance
req.session.regenerate (function (err) {
if (user !== undefined && ! err) {
common.shallowCopy (user, serverVisibleSession, {roles: true}, req.session);
console.info(req.session);
if (user._id) {
req.session.user = user._id;
}
req.session.roles = roles;
} else if (user === undefined && roles === undefined) {
// User logged out
req.session.destroy(function(err) {
if (err) {
console.error(err);
if (user !== undefined && roles !== undefined) {
req.session.regenerate (function (err) {
if (user !== undefined && ! err) {
common.shallowCopy (user, serverVisibleSession, {roles: true}, req.session);
console.info(req.session);
if (user._id) {
req.session.user = user._id;
} }
});
}
return cb (err);
});
req.session.roles = roles;
}
return cb (err);
});
} else {
return cb ();
}
} }


// Save found user into DB, if not already exists // Save found user into DB, if not already exists
function saveFoundToDB(found) {
function saveFoundToDB(found, cb) {
console.info(found); console.info(found);
Users.findById(found.user) Users.findById(found.user)
.exec(function(err, result){ .exec(function(err, result){
name: found.name, name: found.name,
mail: found.mail, mail: found.mail,
type: found.type, type: found.type,
abos: '',
bookmarks: '',
roles: '',
gender: found.gender,
// abos: '',
// bookmarks: '',
roles: 'user',
}, function(err, done) { }, function(err, done) {
if (err) { if (err) {
console.error("User creation: Failed"); console.error("User creation: Failed");
if (done == null) { if (done == null) {
console.error("Can not create user."); console.error("Can not create user.");
} }
return cb(err);
}); });
} else {
return cb(err);
} }
}); });
} }
// check local database, then ldap // check local database, then ldap
Users.findById (req.body.user) .exec (function (err, entry) { Users.findById (req.body.user) .exec (function (err, entry) {
// If there is a local user AND it has a password associated, test against this, and only this // If there is a local user AND it has a password associated, test against this, and only this
// if (entry != null && entry.pwd) {
// if (crypto.checkLocalAuth (entry, req.body.pwd)) {
// return fillSession (req, entry, common.arrayToHash(entry.roles), returnSession);
// }
// return returnError ();
// }
if (entry != null && entry.pwd) {
if (crypto.checkLocalAuth (entry, req.body.pwd)) {
console.info(entry.roles);
return fillSession (req, entry, JSON.stringify(entry.roles), returnSession);
}
return returnError ();
}


// check ldap // check ldap
ldap.authorize (user.toLowerCase(), pwd, function (found) { ldap.authorize (user.toLowerCase(), pwd, function (found) {
entry.orclgender = found.orclgender; entry.orclgender = found.orclgender;
return fillSession (req, entry, entry.roles.length > 0 ? common.arrayToHash(entry.roles) : {user:true}, returnSession); return fillSession (req, entry, entry.roles.length > 0 ? common.arrayToHash(entry.roles) : {user:true}, returnSession);
} }

// Otherwise create standard user entry // Otherwise create standard user entry
saveFoundToDB(found);
return fillSession (req, found, {user:true}, returnSession);
saveFoundToDB(found, function() {
return fillSession (req, found, {user:true}, returnSession);
});
}); });
}); });
}, },
logout: function (req, res, next) { logout: function (req, res, next) {
fillSession (req, undefined, undefined, function (err) { fillSession (req, undefined, undefined, function (err) {
// Session delete, exists further in db
req.session.destroy(function(err) {
if (err) {
console.error(err);
}
});
console.info(req.session);
return res.json ({}); return res.json ({});
}); });
}, },

+ 2
- 0
server/dbs.js View File

name: req.body.name, name: req.body.name,
mail: req.body.mail, mail: req.body.mail,
type: req.body.type, type: req.body.type,
gender: req.body.gender,
abos: req.body.abos, abos: req.body.abos,
bookmarks: req.body.bookmarks, bookmarks: req.body.bookmarks,
roles: req.body.roles, roles: req.body.roles,
_comment: "" }, _comment: "" },
mail: { type: String }, mail: { type: String },
type: { type: String }, type: { type: String },
gender: { type: String },
pwd: { type: String, pwd: { type: String,
_comment: "" }, _comment: "" },
hash: { type: String }, hash: { type: String },

Write Preview
Loading…
Cancel
Save