122 lines
3.4 KiB
TypeScript
122 lines
3.4 KiB
TypeScript
import {
|
|
Router
|
|
} from "express";
|
|
|
|
import * as configFunctions from "../helpers/functions.config.js";
|
|
|
|
import * as authenticationFunctions from "../helpers/functions.authentication.js";
|
|
|
|
import type * as recordTypes from "../types/recordTypes";
|
|
|
|
export const router = Router();
|
|
|
|
|
|
const getSafeRedirectURL = (possibleRedirectURL = "") => {
|
|
|
|
const urlPrefix = configFunctions.getProperty("reverseProxy.urlPrefix");
|
|
|
|
if (typeof (possibleRedirectURL) === "string") {
|
|
|
|
const urlToCheck = (possibleRedirectURL.startsWith(urlPrefix) ?
|
|
possibleRedirectURL.slice(urlPrefix.length) :
|
|
possibleRedirectURL).toLowerCase();
|
|
|
|
switch (urlToCheck) {
|
|
case "/admin/fees":
|
|
case "/lotOccupancies":
|
|
case "/lots":
|
|
case "/maps":
|
|
case "/workOrders":
|
|
case "/reports":
|
|
|
|
return urlPrefix + urlToCheck;
|
|
}
|
|
}
|
|
|
|
return urlPrefix + "/dashboard";
|
|
};
|
|
|
|
|
|
router.route("/")
|
|
.get((request, response) => {
|
|
|
|
const sessionCookieName = configFunctions.getProperty("session.cookieName");
|
|
|
|
if (request.session.user && request.cookies[sessionCookieName]) {
|
|
|
|
const redirectURL = getSafeRedirectURL((request.query.redirect || "") as string);
|
|
|
|
response.redirect(redirectURL);
|
|
|
|
} else {
|
|
|
|
response.render("login", {
|
|
userName: "",
|
|
message: "",
|
|
redirect: request.query.redirect
|
|
});
|
|
}
|
|
})
|
|
.post(async (request, response) => {
|
|
|
|
const userName = request.body.userName as string;
|
|
const passwordPlain = request.body.password as string;
|
|
|
|
const unsafeRedirectURL = request.body.redirect;
|
|
|
|
const redirectURL = getSafeRedirectURL(typeof (unsafeRedirectURL) === "string" ?
|
|
unsafeRedirectURL :
|
|
"");
|
|
|
|
const isAuthenticated = await authenticationFunctions.authenticate(userName, passwordPlain)
|
|
let userObject: recordTypes.User;
|
|
|
|
if (isAuthenticated) {
|
|
|
|
const userNameLowerCase = userName.toLowerCase();
|
|
|
|
const canLogin = configFunctions.getProperty("users.canLogin")
|
|
.some((currentUserName) => {
|
|
return userNameLowerCase === currentUserName.toLowerCase();
|
|
});
|
|
|
|
if (canLogin) {
|
|
|
|
const canUpdate = configFunctions.getProperty("users.canUpdate")
|
|
.some((currentUserName) => {
|
|
return userNameLowerCase === currentUserName.toLowerCase();
|
|
});
|
|
|
|
const isAdmin = configFunctions.getProperty("users.isAdmin")
|
|
.some((currentUserName) => {
|
|
return userNameLowerCase === currentUserName.toLowerCase();
|
|
});
|
|
|
|
userObject = {
|
|
userName: userNameLowerCase,
|
|
userProperties: {
|
|
canUpdate,
|
|
isAdmin
|
|
}
|
|
};
|
|
}
|
|
}
|
|
|
|
if (isAuthenticated && userObject) {
|
|
|
|
request.session.user = userObject;
|
|
|
|
response.redirect(redirectURL);
|
|
|
|
} else {
|
|
|
|
response.render("login", {
|
|
userName,
|
|
message: "Login Failed",
|
|
redirect: redirectURL
|
|
});
|
|
}
|
|
});
|
|
|
|
|
|
export default router; |