Mercurial > pumpbridge
view index.js_to_pump.io-client-app_lib_routes @ 7:2123f355ab68
go back interval or 15 min, delete credentials, layout
author | Mathias Gebbe <mgebbe@intevation.de> |
---|---|
date | Wed, 11 Jun 2014 02:32:53 +0200 |
parents | b73191efc65b |
children | f190abf340ef |
line wrap: on
line source
// index.js // // Most of the routes in the application // // Copyright 2013, E14N https://e14n.com/ // // Licensed under the Apache License, Version 2.0 (the "License"); // you may not use this file except in compliance with the License. // You may obtain a copy of the License at // // http://www.apache.org/licenses/LICENSE-2.0 // // Unless required by applicable law or agreed to in writing, software // distributed under the License is distributed on an "AS IS" BASIS, // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied. // See the License for the specific language governing permissions and // limitations under the License. var wf = require("webfinger"), async = require("async"), _ = require("underscore"), uuid = require("node-uuid"), User = require("../models/user"), Host = require("../models/host"), RequestToken = require("../models/requesttoken"), RememberMe = require("../models/rememberme"), site = require("../models/site"); exports.hostmeta = function(req, res) { res.json({ links: [ { rel: "dialback", href: site.url("/dialback") } ] }); }; exports.index = function(req, res, next) { var hosts, users, bank = Host.bank(); if (req.user) { res.render('index', { pageTitle: "pumpbridge" , user: req.user}); } else { res.render('login', { pageTitle: "pumpbridge" }); } }; exports.about = function(req, res) { res.render('about', { pageTitle: "About" }); }; exports.login = function(req, res) { res.render('login', { pageTitle: "Login" }); }; exports.handleLogin = function(req, res, next) { var id = req.body.webfinger, rememberme = req.body.rememberme, hostname = User.getHostname(id), host; req.log.debug(req.body, "Handling login"); async.waterfall([ function(callback) { Host.ensureHost(hostname, callback); }, function(results, callback) { host = results; host.getRequestToken(callback); } ], function(err, rt) { if (err) { if (err instanceof Error) { next(err); } else if (err.data) { next(new Error(err.data)); } } else { // Remember if the user asked for a rememberme cookie req.session.remembermeChecked = (rememberme == "on"); res.redirect(host.authorizeURL(rt)); } }); }; exports.authorized = function(req, res, next) { var hostname = req.params.hostname, token = req.query.oauth_token, verifier = req.query.oauth_verifier, rt, host, access_token, token_secret, id, object, user, newUser = false; async.waterfall([ function(callback) { async.parallel([ function(callback) { RequestToken.get(RequestToken.key(hostname, token), callback); }, function(callback) { Host.get(hostname, callback); } ], callback); }, function(results, callback) { rt = results[0]; host = results[1]; host.getAccessToken(rt, verifier, callback); }, function(token, secret, extra, callback) { access_token = token; token_secret = secret; async.parallel([ function(callback) { rt.del(callback); }, function(callback) { host.whoami(access_token, token_secret, callback); } ], callback); }, function(results, callback) { object = results[1]; id = object.id; if (id.substr(0, 5) == "acct:") { id = id.substr(5); } User.get(id, function(err, user) { if (err && err.name === "NoSuchThingError") { newUser = true; User.fromPerson(object, access_token, token_secret, callback); } else if (err) { callback(err, null); } else { callback(null, user); } }); }, function(results, callback) { user = results; if (req.session.remembermeChecked) { req.log.debug("Setting rememberme cookie"); RememberMe.create({user: user.id}, function(err, rm) { if (err) { callback(err); } else { req.log.debug({rm: rm}, "Created rememberme record"); res.cookie("rememberme", rm.uuid, {path: "/", expires: new Date(Date.now() + 180 * 24 * 60 * 60 * 1000), httpOnly: true}); req.log.debug({rememberme: rm.uuid}, "Set rememberme cookie"); callback(null); } }); } else { callback(null); } } ], function(err) { if (err) { next(err); } else { req.session.userID = user.id; delete req.session.remembermeChecked; res.redirect("/"); } }); }; exports.handleLogout = function(req, res) { delete req.session.userID; delete req.session.remembermeChecked; delete req.user; res.clearCookie("rememberme"); res.redirect("/", 303); };