mirror of
https://github.com/hedgedoc/hedgedoc.git
synced 2024-11-23 02:06:29 -05:00
9f9c4089be
With OpenID every OpenID capable provider can provide authentication for users of a CodiMD instance. This means we have federated authentication. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
57 lines
1.8 KiB
JavaScript
57 lines
1.8 KiB
JavaScript
'use strict'
|
|
|
|
const Router = require('express').Router
|
|
const passport = require('passport')
|
|
|
|
const config = require('../../config')
|
|
const logger = require('../../logger')
|
|
const models = require('../../models')
|
|
|
|
const authRouter = module.exports = Router()
|
|
|
|
// serialize and deserialize
|
|
passport.serializeUser(function (user, done) {
|
|
logger.info('serializeUser: ' + user.id)
|
|
return done(null, user.id)
|
|
})
|
|
|
|
passport.deserializeUser(function (id, done) {
|
|
models.User.findOne({
|
|
where: {
|
|
id: id
|
|
}
|
|
}).then(function (user) {
|
|
// Don't die on non-existent user
|
|
if (user == null) {
|
|
return done(null, false, { message: 'Invalid UserID' })
|
|
}
|
|
|
|
logger.info('deserializeUser: ' + user.id)
|
|
return done(null, user)
|
|
}).catch(function (err) {
|
|
logger.error(err)
|
|
return done(err, null)
|
|
})
|
|
})
|
|
|
|
if (config.isFacebookEnable) authRouter.use(require('./facebook'))
|
|
if (config.isTwitterEnable) authRouter.use(require('./twitter'))
|
|
if (config.isGitHubEnable) authRouter.use(require('./github'))
|
|
if (config.isGitLabEnable) authRouter.use(require('./gitlab'))
|
|
if (config.isMattermostEnable) authRouter.use(require('./mattermost'))
|
|
if (config.isDropboxEnable) authRouter.use(require('./dropbox'))
|
|
if (config.isGoogleEnable) authRouter.use(require('./google'))
|
|
if (config.isLDAPEnable) authRouter.use(require('./ldap'))
|
|
if (config.isSAMLEnable) authRouter.use(require('./saml'))
|
|
if (config.isOAuth2Enable) authRouter.use(require('./oauth2'))
|
|
if (config.isEmailEnable) authRouter.use(require('./email'))
|
|
if (config.isOpenIDEnable) authRouter.use(require('./openid'))
|
|
|
|
// logout
|
|
authRouter.get('/logout', function (req, res) {
|
|
if (config.debug && req.isAuthenticated()) {
|
|
logger.debug('user logout: ' + req.user.id)
|
|
}
|
|
req.logout()
|
|
res.redirect(config.serverURL + '/')
|
|
})
|