mirror of
https://github.com/overleaf/overleaf.git
synced 2024-11-30 13:45:17 -05:00
82 lines
3.2 KiB
CoffeeScript
82 lines
3.2 KiB
CoffeeScript
UserLocator = require("./UserLocator")
|
|
UserGetter = require("./UserGetter")
|
|
UserSessionsManager = require("./UserSessionsManager")
|
|
ErrorController = require("../Errors/ErrorController")
|
|
logger = require("logger-sharelatex")
|
|
Settings = require("settings-sharelatex")
|
|
fs = require('fs')
|
|
AuthenticationController = require('../Authentication/AuthenticationController')
|
|
|
|
module.exports =
|
|
|
|
registerPage : (req, res)->
|
|
sharedProjectData =
|
|
project_name:req.query.project_name
|
|
user_first_name:req.query.user_first_name
|
|
|
|
newTemplateData = {}
|
|
if req.session.templateData?
|
|
newTemplateData.templateName = req.session.templateData.templateName
|
|
|
|
res.render 'user/register',
|
|
title: 'register'
|
|
sharedProjectData: sharedProjectData
|
|
newTemplateData: newTemplateData
|
|
new_email:req.query.new_email || ""
|
|
|
|
activateAccountPage: (req, res) ->
|
|
# An 'activation' is actually just a password reset on an account that
|
|
# was set with a random password originally.
|
|
logger.log query:req.query, "activiate account page called"
|
|
if !req.query?.user_id? or !req.query?.token?
|
|
return ErrorController.notFound(req, res)
|
|
|
|
UserGetter.getUser req.query.user_id, {email: 1, loginCount: 1}, (error, user) ->
|
|
return next(error) if error?
|
|
if !user
|
|
return ErrorController.notFound(req, res)
|
|
if user.loginCount > 0
|
|
logger.log user:user, "user has already logged in so is active, sending them to /login"
|
|
# Already seen this user, so account must be activate
|
|
# This lets users keep clicking the 'activate' link in their email
|
|
# as a way to log in which, if I know our users, they will.
|
|
res.redirect "/login?email=#{encodeURIComponent(user.email)}"
|
|
else
|
|
res.render 'user/activate',
|
|
title: 'activate_account'
|
|
email: user.email,
|
|
token: req.query.token
|
|
|
|
loginPage : (req, res)->
|
|
# if user is being sent to /login with explicit redirect (redir=/foo),
|
|
# such as being sent from the editor to /login, then set the redirect explicitly
|
|
if req.query.redir? and !AuthenticationController._getRedirectFromSession(req)?
|
|
logger.log {redir: req.query.redir}, "setting explicit redirect from login page"
|
|
AuthenticationController._setRedirectInSession(req, req.query.redir)
|
|
res.render 'user/login',
|
|
title: 'login',
|
|
email: req.query.email
|
|
|
|
settingsPage : (req, res, next)->
|
|
user_id = AuthenticationController.getLoggedInUserId(req)
|
|
logger.log user: user_id, "loading settings page"
|
|
shouldAllowEditingDetails = !(Settings?.ldap?.updateUserDetailsOnLogin) and !(Settings?.saml?.updateUserDetailsOnLogin)
|
|
UserLocator.findById user_id, (err, user)->
|
|
return next(err) if err?
|
|
res.render 'user/settings',
|
|
title:'account_settings'
|
|
user: user,
|
|
shouldAllowEditingDetails: shouldAllowEditingDetails
|
|
languages: Settings.languages,
|
|
accountSettingsTabActive: true
|
|
|
|
sessionsPage: (req, res, next) ->
|
|
user = AuthenticationController.getSessionUser(req)
|
|
logger.log user_id: user._id, "loading sessions page"
|
|
UserSessionsManager.getAllUserSessions user, [req.sessionID], (err, sessions) ->
|
|
if err?
|
|
logger.err {user_id: user._id}, "error getting all user sessions"
|
|
return next(err)
|
|
res.render 'user/sessions',
|
|
title: "sessions"
|
|
sessions: sessions
|