mirror of
https://github.com/0rangebananaspy/authelia.git
synced 2024-09-14 22:47:21 +07:00
0a33b2d5ee
Before this fix, the application was simply crashing during execution when connection to redis was failing. Now, it is correctly handled with failing promises and logs have been enabled to clearly see the problem
92 lines
3.2 KiB
TypeScript
92 lines
3.2 KiB
TypeScript
|
|
import express = require("express");
|
|
import BluebirdPromise = require("bluebird");
|
|
import objectPath = require("object-path");
|
|
|
|
import { Identity } from "../../../../../../types/Identity";
|
|
import { IdentityValidable } from "../../../../IdentityCheckMiddleware";
|
|
import { PRE_VALIDATION_TEMPLATE } from "../../../../IdentityCheckPreValidationTemplate";
|
|
import Constants = require("../constants");
|
|
import Endpoints = require("../../../../../endpoints");
|
|
import ErrorReplies = require("../../../../ErrorReplies");
|
|
import { ServerVariablesHandler } from "../../../../ServerVariablesHandler";
|
|
import AuthenticationSession = require("../../../../AuthenticationSession");
|
|
|
|
import FirstFactorValidator = require("../../../../FirstFactorValidator");
|
|
|
|
|
|
export default class RegistrationHandler implements IdentityValidable {
|
|
challenge(): string {
|
|
return Constants.CHALLENGE;
|
|
}
|
|
|
|
private retrieveIdentity(req: express.Request): BluebirdPromise<Identity> {
|
|
return AuthenticationSession.get(req)
|
|
.then(function (authSession: AuthenticationSession.AuthenticationSession) {
|
|
const userid = authSession.userid;
|
|
const email = authSession.email;
|
|
|
|
if (!(userid && email)) {
|
|
return BluebirdPromise.reject(new Error("User ID or email is missing"));
|
|
}
|
|
|
|
const identity = {
|
|
email: email,
|
|
userid: userid
|
|
};
|
|
return BluebirdPromise.resolve(identity);
|
|
});
|
|
}
|
|
|
|
preValidationInit(req: express.Request): BluebirdPromise<Identity> {
|
|
const that = this;
|
|
return FirstFactorValidator.validate(req)
|
|
.then(function () {
|
|
return that.retrieveIdentity(req);
|
|
});
|
|
}
|
|
|
|
preValidationResponse(req: express.Request, res: express.Response) {
|
|
res.render(PRE_VALIDATION_TEMPLATE);
|
|
}
|
|
|
|
postValidationInit(req: express.Request) {
|
|
return FirstFactorValidator.validate(req);
|
|
}
|
|
|
|
postValidationResponse(req: express.Request, res: express.Response): BluebirdPromise<void> {
|
|
const logger = ServerVariablesHandler.getLogger(req.app);
|
|
return AuthenticationSession.get(req)
|
|
.then(function (authSession: AuthenticationSession.AuthenticationSession) {
|
|
const userid = authSession.identity_check.userid;
|
|
const challenge = authSession.identity_check.challenge;
|
|
|
|
if (challenge != Constants.CHALLENGE || !userid) {
|
|
res.status(403);
|
|
res.send();
|
|
return BluebirdPromise.reject(new Error("Bad challenge."));
|
|
}
|
|
|
|
const userDataStore = ServerVariablesHandler.getUserDataStore(req.app);
|
|
const totpGenerator = ServerVariablesHandler.getTOTPGenerator(req.app);
|
|
const secret = totpGenerator.generate();
|
|
|
|
logger.debug("POST new-totp-secret: save the TOTP secret in DB");
|
|
return userDataStore.saveTOTPSecret(userid, secret)
|
|
.then(function () {
|
|
objectPath.set(req, "session", undefined);
|
|
|
|
res.render(Constants.TEMPLATE_NAME, {
|
|
base32_secret: secret.base32,
|
|
otpauth_url: secret.otpauth_url,
|
|
login_endpoint: Endpoints.FIRST_FACTOR_GET
|
|
});
|
|
});
|
|
})
|
|
.catch(ErrorReplies.replyWithError500(res, logger));
|
|
}
|
|
|
|
mailSubject(): string {
|
|
return "Register your TOTP secret key";
|
|
}
|
|
} |