2017-08-23 15:15:01 -06:00
|
|
|
/*
|
2018-02-03 18:22:01 -08:00
|
|
|
// Matrix Construct
|
|
|
|
//
|
|
|
|
// Copyright (C) Matrix Construct Developers, Authors & Contributors
|
|
|
|
// Copyright (C) 2016-2018 Jason Volk <jason@zemos.net>
|
|
|
|
//
|
|
|
|
// Permission to use, copy, modify, and/or distribute this software for any
|
|
|
|
// purpose with or without fee is hereby granted, provided that the above
|
|
|
|
// copyright notice and this permission notice is present in all copies. The
|
|
|
|
// full license for this software is available in the LICENSE file.
|
|
|
|
*/
|
2017-08-23 15:15:01 -06:00
|
|
|
|
|
|
|
'use strict';
|
|
|
|
|
|
|
|
/**************************************
|
|
|
|
*
|
|
|
|
* Authentication flow
|
|
|
|
*
|
|
|
|
*/
|
2017-11-15 17:34:42 -08:00
|
|
|
mc.auth = async function(flows = {}, opts = {})
|
2017-08-23 15:15:01 -06:00
|
|
|
{
|
|
|
|
let request = mc.m.login.get();
|
|
|
|
let login = await request.response;
|
|
|
|
Object.update(flows, login.flows);
|
|
|
|
for(let i in flows)
|
|
|
|
{
|
|
|
|
let flow = flows[i];
|
|
|
|
let type = flow.type;
|
|
|
|
let handler = mc.auth[type];
|
|
|
|
if(handler === undefined)
|
|
|
|
{
|
2017-11-15 17:34:42 -08:00
|
|
|
flow.result = new mc.error("authentication flow type unsupported");
|
2017-08-23 15:15:01 -06:00
|
|
|
}
|
|
|
|
else try
|
|
|
|
{
|
|
|
|
flow.result = await handler();
|
|
|
|
}
|
|
|
|
catch(error)
|
|
|
|
{
|
|
|
|
flow.result = error;
|
|
|
|
}
|
|
|
|
finally
|
|
|
|
{
|
|
|
|
// True result indicates authentication; the flow can be cut.
|
|
|
|
if(flow.result === true)
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
return false;
|
|
|
|
}
|
|
|
|
|
|
|
|
/** Implements m.login.password auth type
|
|
|
|
*/
|
|
|
|
mc.auth["m.login.password"] = async function(opts = {})
|
|
|
|
{
|
|
|
|
let user_id = mc.local.user_id;
|
|
|
|
if(!user_id)
|
|
|
|
throw new mc.error("no user_id specified");
|
|
|
|
|
|
|
|
let password = mc.local.wasspord;
|
|
|
|
if(!password)
|
|
|
|
throw new mc.error("no password specified");
|
|
|
|
|
|
|
|
let request = mc.m.login.password(user_id, password, opts); try
|
|
|
|
{
|
|
|
|
let data = await request.response;
|
|
|
|
mc.session.guest = false;
|
|
|
|
mc.instance.authentic = true;
|
|
|
|
Object.update(mc.session, data);
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
catch(error)
|
|
|
|
{
|
2017-11-15 17:34:42 -08:00
|
|
|
console.warn("The user's password failed; deleting.");
|
2017-08-23 15:15:01 -06:00
|
|
|
delete mc.local.wasspord;
|
|
|
|
throw error;
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
/** Implements m.login.token auth type
|
|
|
|
*
|
|
|
|
* (non-functional)
|
|
|
|
*/
|
|
|
|
mc.auth["m.login.token"] = async function(opts = {})
|
|
|
|
{
|
|
|
|
let user_id = mc.local.user_id;
|
|
|
|
let token = mc.local.token;
|
|
|
|
let request = mc.m.login.token(user_id, access_token, opts); try
|
|
|
|
{
|
|
|
|
let data = await request.response;
|
|
|
|
mc.instance.authentic = true;
|
|
|
|
Object.update(mc.session, data);
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
catch(error)
|
|
|
|
{
|
|
|
|
throw error;
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
mc.auth["m.register.guest"] = async function(opts = {})
|
|
|
|
{
|
|
|
|
let request = mc.m.register.post(opts); try
|
|
|
|
{
|
|
|
|
let data = await request.response;
|
|
|
|
mc.session.guest = true;
|
|
|
|
mc.instance.authentic = true;
|
|
|
|
Object.update(mc.session, data);
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
catch(error)
|
|
|
|
{
|
2017-12-12 13:29:28 -07:00
|
|
|
error.element = $("#charybdis_login_form");
|
2017-08-23 15:15:01 -06:00
|
|
|
switch(error.status)
|
|
|
|
{
|
|
|
|
case 403:
|
|
|
|
mc.auth["m.register.guest"].disabled = true;
|
|
|
|
|
|
|
|
default:
|
2017-12-12 13:29:28 -07:00
|
|
|
throw new mc.error(error);
|
2017-08-23 15:15:01 -06:00
|
|
|
}
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
mc.auth["m.register.user"] = async function(opts = {})
|
|
|
|
{
|
|
|
|
Object.update(opts,
|
|
|
|
{
|
|
|
|
query:
|
|
|
|
{
|
|
|
|
kind: "user"
|
|
|
|
},
|
|
|
|
|
|
|
|
content:
|
|
|
|
{
|
|
|
|
username: mc.local.user_id,
|
|
|
|
password: mc.local.wasspord,
|
|
|
|
}
|
|
|
|
});
|
|
|
|
|
|
|
|
let request = mc.m.register.post(opts); try
|
|
|
|
{
|
|
|
|
let data = await request.response;
|
|
|
|
mc.session.guest = false;
|
|
|
|
mc.instance.authentic = true;
|
|
|
|
Object.update(mc.session, data);
|
|
|
|
return true;
|
|
|
|
}
|
|
|
|
catch(error)
|
|
|
|
{
|
2017-12-12 13:29:28 -07:00
|
|
|
error.element = $("#charybdis_login_form");
|
|
|
|
delete mc.local.wasspord;
|
2017-08-23 15:15:01 -06:00
|
|
|
switch(error.status)
|
|
|
|
{
|
|
|
|
case 403:
|
|
|
|
mc.auth["m.register.user"].disabled = true;
|
|
|
|
//[[fallthrough]]
|
|
|
|
|
|
|
|
default:
|
|
|
|
throw new mc.error(error);
|
|
|
|
}
|
|
|
|
}
|
|
|
|
};
|
|
|
|
|
|
|
|
mc.auth.logout = async function(opts = {})
|
|
|
|
{
|
2017-08-23 15:28:25 -06:00
|
|
|
if(!mc.instance.authentic)
|
|
|
|
return false;
|
|
|
|
|
2017-08-23 15:15:01 -06:00
|
|
|
let request = mc.m.logout.post(opts);
|
|
|
|
let data = await request.response;
|
|
|
|
delete mc.session.access_token;
|
|
|
|
mc.instance.authentic = false;
|
|
|
|
return true;
|
|
|
|
};
|