Mercurial > pumpbridge
diff index.js_to_pump.io-client-app_lib_routes @ 0:b73191efc65b
Initial import of pumpbridge (bloody bloody alpha)
| author | Mathias Gebbe <mgebbe@intevation.de> |
|---|---|
| date | Thu, 05 Jun 2014 10:35:15 +0200 |
| parents | |
| children | f190abf340ef |
line wrap: on
line diff
--- /dev/null Thu Jan 01 00:00:00 1970 +0000 +++ b/index.js_to_pump.io-client-app_lib_routes Thu Jun 05 10:35:15 2014 +0200 @@ -0,0 +1,187 @@ +// index.js +// +// Most of the routes in the application +// +// Copyright 2013, E14N https://e14n.com/ +// +// Licensed under the Apache License, Version 2.0 (the "License"); +// you may not use this file except in compliance with the License. +// You may obtain a copy of the License at +// +// http://www.apache.org/licenses/LICENSE-2.0 +// +// Unless required by applicable law or agreed to in writing, software +// distributed under the License is distributed on an "AS IS" BASIS, +// WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. +// See the License for the specific language governing permissions and +// limitations under the License. + +var wf = require("webfinger"), + async = require("async"), + _ = require("underscore"), + uuid = require("node-uuid"), + User = require("../models/user"), + Host = require("../models/host"), + RequestToken = require("../models/requesttoken"), + RememberMe = require("../models/rememberme"), + site = require("../models/site"); + +exports.hostmeta = function(req, res) { + res.json({ + links: [ + { + rel: "dialback", + href: site.url("/dialback") + } + ] + }); +}; + +exports.index = function(req, res, next) { + var hosts, users, bank = Host.bank(); + + if (req.user) { + res.render('index', { pageTitle: "pumpbridge" , user: req.user}); + } else { + res.render('login', { pageTitle: "pumpbridge" }); + } +}; + +exports.about = function(req, res) { + res.render('about', { pageTitle: "About" }); +}; + +exports.login = function(req, res) { + res.render('login', { pageTitle: "Login" }); +}; + +exports.handleLogin = function(req, res, next) { + + var id = req.body.webfinger, + rememberme = req.body.rememberme, + hostname = User.getHostname(id), + host; + + req.log.debug(req.body, "Handling login"); + + async.waterfall([ + function(callback) { + Host.ensureHost(hostname, callback); + }, + function(results, callback) { + host = results; + host.getRequestToken(callback); + } + ], function(err, rt) { + if (err) { + if (err instanceof Error) { + next(err); + } else if (err.data) { + next(new Error(err.data)); + } + } else { + // Remember if the user asked for a rememberme cookie + req.session.remembermeChecked = (rememberme == "on"); + res.redirect(host.authorizeURL(rt)); + } + }); +}; + +exports.authorized = function(req, res, next) { + + var hostname = req.params.hostname, + token = req.query.oauth_token, + verifier = req.query.oauth_verifier, + rt, + host, + access_token, + token_secret, + id, + object, + user, + newUser = false; + + async.waterfall([ + function(callback) { + async.parallel([ + function(callback) { + RequestToken.get(RequestToken.key(hostname, token), callback); + }, + function(callback) { + Host.get(hostname, callback); + } + ], callback); + }, + function(results, callback) { + rt = results[0]; + host = results[1]; + host.getAccessToken(rt, verifier, callback); + }, + function(token, secret, extra, callback) { + access_token = token; + token_secret = secret; + async.parallel([ + function(callback) { + rt.del(callback); + }, + function(callback) { + host.whoami(access_token, token_secret, callback); + } + ], callback); + }, + function(results, callback) { + object = results[1]; + id = object.id; + if (id.substr(0, 5) == "acct:") { + id = id.substr(5); + } + User.get(id, function(err, user) { + if (err && err.name === "NoSuchThingError") { + newUser = true; + User.fromPerson(object, access_token, token_secret, callback); + } else if (err) { + callback(err, null); + } else { + callback(null, user); + } + }); + }, + function(results, callback) { + user = results; + if (req.session.remembermeChecked) { + req.log.debug("Setting rememberme cookie"); + RememberMe.create({user: user.id}, function(err, rm) { + if (err) { + callback(err); + } else { + req.log.debug({rm: rm}, "Created rememberme record"); + res.cookie("rememberme", rm.uuid, {path: "/", expires: new Date(Date.now() + 180 * 24 * 60 * 60 * 1000), httpOnly: true}); + req.log.debug({rememberme: rm.uuid}, "Set rememberme cookie"); + callback(null); + } + }); + } else { + callback(null); + } + } + ], function(err) { + if (err) { + next(err); + } else { + req.session.userID = user.id; + delete req.session.remembermeChecked; + res.redirect("/"); + } + }); +}; + +exports.handleLogout = function(req, res) { + + delete req.session.userID; + delete req.session.remembermeChecked; + delete req.user; + + res.clearCookie("rememberme"); + + res.redirect("/", 303); +};