You cannot select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
102 lines
3.4 KiB
JavaScript
102 lines
3.4 KiB
JavaScript
var ini = require('ini');
|
|
var fs = require('fs');
|
|
var common = require('../common');
|
|
const jwt = require("jsonwebtoken");
|
|
var upperCase = require('upper-case');
|
|
var atob = require('atob');
|
|
var logger = require('./logger');
|
|
|
|
exports.authenticateUserWithCookie = (req, res, next) => {
|
|
if(+common.rtl_sso) {
|
|
res.cookie('access-key', req.query['access-key'], { httpOnly: true, sameSite: true, secure: true });
|
|
res.set(
|
|
{
|
|
'Cache-Control': 'private, no-cache'
|
|
}
|
|
);
|
|
res.redirect(301, '/rtl/');
|
|
}
|
|
else
|
|
{
|
|
res.status(404).json({
|
|
message: "Login Failure!",
|
|
error: "SSO not available"
|
|
});
|
|
}
|
|
};
|
|
|
|
exports.authenticateUser = (req, res, next) => {
|
|
if(+common.rtl_sso) {
|
|
const access_key = req.cookies['access-key'];
|
|
res.clearCookie("access-key");
|
|
// Replace access_key value from req.cookies['access-key'] to req.body.password to test SSO on http
|
|
// const access_key = atob(req.body.password);
|
|
if (common.cookie === access_key) {
|
|
const token = jwt.sign(
|
|
{ user: 'Custom_User', lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },
|
|
common.secret_key
|
|
);
|
|
res.status(200).json({ token: token });
|
|
} else {
|
|
res.status(401).json({
|
|
message: "Login Failure!",
|
|
error: "SSO Authentication Failed!"
|
|
});
|
|
}
|
|
} else {
|
|
password = atob(req.body.password);
|
|
selNode = req.body.node;
|
|
if(selNode === '') {
|
|
if(upperCase(common.node_auth_type) === 'CUSTOM') {
|
|
if (common.rtl_pass === password) {
|
|
var rpcUser = 'Custom_User';
|
|
const token = jwt.sign(
|
|
{ user: rpcUser, lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },
|
|
common.secret_key
|
|
);
|
|
res.status(200).json({ token: token });
|
|
} else {
|
|
res.status(401).json({
|
|
message: "Authentication Failed!",
|
|
error: "Password Validation Failed!"
|
|
});
|
|
}
|
|
} else {
|
|
fs.readFile(common.lnd_config_path, 'utf8', function (err, data) {
|
|
if (err) {
|
|
logger.error('\r\nAuthenticate: 45: ' + JSON.stringify(Date.now()) + ': ERROR: LND Config Reading Failed!');
|
|
res.status(500).json({
|
|
message: "LND Config Reading Failed!",
|
|
error: err
|
|
});
|
|
} else {
|
|
const jsonLNDConfig = ini.parse(data);
|
|
if (undefined !== jsonLNDConfig.Bitcoind && undefined !== jsonLNDConfig.Bitcoind['bitcoind.rpcpass']) {
|
|
if (jsonLNDConfig.Bitcoind['bitcoind.rpcpass'] === password) {
|
|
var rpcUser = (undefined !== jsonLNDConfig.Bitcoind['bitcoind.rpcuser']) ? jsonLNDConfig.Bitcoind['bitcoind.rpcuser'] : '';
|
|
const token = jwt.sign(
|
|
{ user: rpcUser, lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },
|
|
common.secret_key
|
|
);
|
|
res.status(200).json({ token: token });
|
|
} else {
|
|
res.status(401).json({
|
|
message: "Authentication Failed!",
|
|
error: "Password Validation Failed!"
|
|
});
|
|
}
|
|
} else {
|
|
res.status(401).json({
|
|
message: "Authentication Failed!",
|
|
error: "Password Not Found In LND Config!"
|
|
});
|
|
}
|
|
}
|
|
});
|
|
}
|
|
} else {
|
|
|
|
}
|
|
}
|
|
};
|