filecoin-project/slate
1
1
Fork 0
mirror of https://github.com/filecoin-project/slate.git synced 2024-11-11 01:31:31 +03:00
Code Issues Packages Projects Releases Wiki Activity
12b76ebc03
slate/pages/api/sign-in.js
Martina 349fc0f66a redirecting to in-client page automatic
2020-11-16 18:11:24 -08:00

65 lines
2.0 KiB
JavaScript
Raw Blame History

import * as Environment from "~/node_common/environment";
import * as Utilities from "~/node_common/utilities";
import * as Data from "~/node_common/data";
import * as Strings from "~/common/strings";
import JWT from "jsonwebtoken";
export default async (req, res) => {
if (!Strings.isEmpty(Environment.ALLOWED_HOST) && req.headers.host !== Environment.ALLOWED_HOST) {
return res.status(403).send({ decorator: "YOU_ARE_NOT_ALLOWED", error: true });
}
// NOTE(jim): We don't need to validate here.
if (Strings.isEmpty(req.body.data.username)) {
return res.status(500).send({ decorator: "SERVER_SIGN_IN", error: true });
}
if (Strings.isEmpty(req.body.data.password)) {
return res.status(500).send({ decorator: "SERVER_SIGN_IN", error: true });
}
let user;
try {
user = await Data.getUserByUsername({
username: req.body.data.username.toLowerCase(),
});
} catch (e) {
console.log(e);
}
if (!user) {
return res.status(404).send({ decorator: "SERVER_SIGN_IN_USER_NOT_FOUND", error: true });
}
if (user.error) {
return res.status(500).send({ decorator: "SERVER_SIGN_IN_ERROR", error: true });
}
const hash = await Utilities.encryptPassword(req.body.data.password, user.salt);
if (hash !== user.password) {
return res.status(403).send({ decorator: "SERVER_SIGN_IN_AUTH", error: true });
}
const authorization = Utilities.parseAuthHeader(req.headers.authorization);
if (authorization && !Strings.isEmpty(authorization.value)) {
const verfied = JWT.verify(authorization.value, Environment.JWT_SECRET);
if (user.username === verfied.username) {
return res.status(200).send({
message: "You are already authenticated. Welcome back!",
viewer: user,
});
}
}
const token = JWT.sign({ id: user.id, username: user.username }, Environment.JWT_SECRET);
res.status(200).send({ decorator: "SERVER_SIGN_IN", success: true, token });
if (req.body.data.redirectURL) {
console.log(req.body.data.redirectURL);
res.redirect(req.body.data.redirectURL);
}
};
Reference in New Issue View Git Blame Copy Permalink