pigallery2/backend/middlewares/user/AuthenticationMWs.ts

///<reference path="../customtypings/ExtendedRequest.d.ts"/>
///<reference path="../../../typings/index.d.ts"/>

import {NextFunction, Request, Response} from "express";
import {Error, ErrorCodes} from "../../../common/entities/Error";
import {UserRoles, User} from "../../../common/entities/User";
import {ObjectManagerRepository} from "../../model/ObjectManagerRepository";
import {Config} from "../../config/Config";

export class AuthenticationMWs {

    public static authenticate(req:Request, res:Response, next:NextFunction) {
        if (Config.Client.authenticationRequired === false) {
            req.session.user = new User("", "", UserRoles.Admin);
            return next();
        }
        if (typeof req.session.user === 'undefined') {
            return next(new Error(ErrorCodes.NOT_AUTHENTICATED));
        } 
        return next();
    }

    public static authorise(role:UserRoles) {
        return (req:Request, res:Response, next:NextFunction) => {
            if (req.session.user.role < role) {
                return next(new Error(ErrorCodes.NOT_AUTHORISED));
            }
            return next();
        };
    }

    public static inverseAuthenticate(req:Request, res:Response, next:NextFunction) {
        if (typeof req.session.user !== 'undefined') {
            return next(new Error(ErrorCodes.ALREADY_AUTHENTICATED));
        }
        return next();
    }

    public static login(req:Request, res:Response, next:NextFunction) {
        //not enough parameter
        if ((typeof req.body === 'undefined') || (typeof req.body.loginCredential === 'undefined') || (typeof req.body.loginCredential.username === 'undefined') ||
            (typeof req.body.loginCredential.password === 'undefined')) {
            return next();
        }

        //lets find the user
        ObjectManagerRepository.getInstance().getUserManager().findOne({
            name: req.body.loginCredential.username,
            password: req.body.loginCredential.password
        }, (err, result) => {
            if ((err) || (!result)) {
                return next(new Error(ErrorCodes.CREDENTIAL_NOT_FOUND));
            }


            req.session.user = result;

            return next();
        });
    }

    public static logout(req:Request, res:Response, next:NextFunction) {
        delete req.session.user;
        return next();
    }

}
creating some backend tests with mocha 2016-05-26 02:17:42 +08:00			`///<reference path="../customtypings/ExtendedRequest.d.ts"/>`
updating dependencies 2016-05-26 15:44:13 +08:00			`///<reference path="../../../typings/index.d.ts"/>`
refactoring middleware rendering methods 2016-03-26 18:19:10 +08:00
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`import {NextFunction, Request, Response} from "express";`
creating some backend tests with mocha 2016-05-26 02:17:42 +08:00			`import {Error, ErrorCodes} from "../../../common/entities/Error";`
implementing switchable userManagement 2016-07-07 18:26:36 +08:00			`import {UserRoles, User} from "../../../common/entities/User";`
creating some backend tests with mocha 2016-05-26 02:17:42 +08:00			`import {ObjectManagerRepository} from "../../model/ObjectManagerRepository";`
implementing switchable userManagement 2016-07-07 18:26:36 +08:00			`import {Config} from "../../config/Config";`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00
refactoring middleware rendering methods 2016-03-26 18:19:10 +08:00			`export class AuthenticationMWs {`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00
source style cleanup 2016-05-09 23:04:56 +08:00			`public static authenticate(req:Request, res:Response, next:NextFunction) {`
implementing switchable userManagement 2016-07-07 18:26:36 +08:00			`if (Config.Client.authenticationRequired === false) {`
			`req.session.user = new User("", "", UserRoles.Admin);`
			`return next();`
			`}`
implementing logout 2016-05-17 05:15:03 +08:00			`if (typeof req.session.user === 'undefined') {`
			`return next(new Error(ErrorCodes.NOT_AUTHENTICATED));`
creating some backend tests with mocha 2016-05-26 02:17:42 +08:00			`}`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`return next();`
			`}`
source style cleanup 2016-05-09 23:04:56 +08:00
			`public static authorise(role:UserRoles) {`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`return (req:Request, res:Response, next:NextFunction) => {`
			`if (req.session.user.role < role) {`
refactoring middleware rendering methods 2016-03-26 18:19:10 +08:00			`return next(new Error(ErrorCodes.NOT_AUTHORISED));`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`}`
			`return next();`
			`};`
			`}`
source style cleanup 2016-05-09 23:04:56 +08:00
			`public static inverseAuthenticate(req:Request, res:Response, next:NextFunction) {`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`if (typeof req.session.user !== 'undefined') {`
refactoring middleware rendering methods 2016-03-26 18:19:10 +08:00			`return next(new Error(ErrorCodes.ALREADY_AUTHENTICATED));`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`}`
			`return next();`
			`}`
source style cleanup 2016-05-09 23:04:56 +08:00
			`public static login(req:Request, res:Response, next:NextFunction) {`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`//not enough parameter`
source style cleanup 2016-05-09 23:04:56 +08:00			`if ((typeof req.body === 'undefined') \|\| (typeof req.body.loginCredential === 'undefined') \|\| (typeof req.body.loginCredential.username === 'undefined') \|\|`
implementing gallery photo rendering 2016-03-20 23:54:30 +08:00			`(typeof req.body.loginCredential.password === 'undefined')) {`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`return next();`
			`}`
implementing logout 2016-05-17 05:15:03 +08:00
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`//lets find the user`
implementing mongoose managers 2016-04-22 19:23:44 +08:00			`ObjectManagerRepository.getInstance().getUserManager().findOne({`
source style cleanup 2016-05-09 23:04:56 +08:00			`name: req.body.loginCredential.username,`
			`password: req.body.loginCredential.password`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`}, (err, result) => {`
			`if ((err) \|\| (!result)) {`
refactoring middleware rendering methods 2016-03-26 18:19:10 +08:00			`return next(new Error(ErrorCodes.CREDENTIAL_NOT_FOUND));`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00			`}`


			`req.session.user = result;`

			`return next();`
			`});`
			`}`

implementing logout 2016-05-17 05:15:03 +08:00			`public static logout(req:Request, res:Response, next:NextFunction) {`
			`delete req.session.user;`
			`return next();`
			`}`
implementing routers and user middlewares 2016-03-20 00:31:42 +08:00
			`}`