Ride-The-Lightning-RTL/controllers/authenticate.js

var common = require('../common');
var connect = require('../connect');
const jwt = require("jsonwebtoken");
var crypto = require('crypto');
var logger = require('./logger');
const otplib = require("otplib");

exports.authenticateUser = (req, res, next) => {
  if(+common.rtl_sso) {
    if(req.body.authenticateWith === 'TOKEN' && jwt.verify(req.body.authenticationValue, common.secret_key)) {
      res.status(200).json({ token: token });
    } else if (req.body.authenticateWith === 'PASSWORD' && crypto.createHash('sha256').update(common.cookie).digest('hex') === req.body.authenticationValue) {
      connect.refreshCookie(common.rtl_cookie_path);
      const token = jwt.sign(
        { user: 'SSO_USER', configPath: common.nodes[0].config_path, macaroonPath: common.nodes[0].macaroon_path },
        common.secret_key
      );
      res.status(200).json({ token: token });
    } else {
      logger.error({fileName: 'Authenticate', lineNum: 21, msg: 'Password Validation Failed!'});
      res.status(401).json({
        message: "Login Failure!",
        error: "SSO Authentication Failed!"
      });
    }
  } else {
    const password = req.body.authenticationValue;
    if (common.rtl_pass === password) {
      var rpcUser = 'NODE_USER';
      const token = jwt.sign(
        { user: rpcUser, configPath: common.nodes[0].config_path, macaroonPath: common.nodes[0].macaroon_path },
        common.secret_key
      );
      res.status(200).json({ token: token });
    } else {
      logger.error({fileName: 'Authenticate', lineNum: 38, msg: 'Password Validation Failed!'});
      res.status(401).json({
        message: "Authentication Failed!",
        error: "Password Validation Failed!"
      });
    }
  }
};

exports.resetPassword = (req, res, next) => {
  if(+common.rtl_sso) {
    logger.error({fileName: 'Authenticate', lineNum: 46, msg: 'Password Reset Failed!'});
    res.status(402).json({
      message: "Password Reset Failure!",
      error: "Password cannot be reset for SSO authentication!"
    });
  } else {
    const currPassword = req.body.currPassword;
    if (common.rtl_pass === currPassword) {
      common.rtl_pass = connect.replacePasswordWithHash(req.body.newPassword);
      var rpcUser = 'NODE_USER';
      const token = jwt.sign(
        { user: rpcUser, configPath: common.nodes[0].config_path, macaroonPath: common.nodes[0].macaroon_path },
        common.secret_key
      );
      res.status(200).json({ token: token });
    } else {
      logger.error({fileName: 'Authenticate', lineNum: 62, msg: 'Password Reset Failed!'});
      res.status(402).json({
        message: "Password Reset Failed!",
        error: "Old password is not correct!"
      });
    }
  }
};

exports.verifyToken = (req, res, next) => {
  const token2fa = req.body.authentication2FA;
  if (!common.rtl_secret2fa || otplib.authenticator.check(token2fa, common.rtl_secret2fa)) {
    res.status(200).json({ isValidToken: true });
  } else {
    logger.error({fileName: 'Authenticate', lineNum: 77, msg: 'Token Verification Failed!'});
    res.status(401).json({
      message: "Authentication Failed!",
      error: "Token Verification Failed!"
    });
  }
};
Updates for docker enablement 2019-02-09 15:37:36 -05:00			`var common = require('../common');`
incomplete 2 incomplete 2 2019-04-05 22:52:00 -04:00			`var connect = require('../connect');`
Authentication and Bug fixes 2019-01-01 11:26:51 -05:00			`const jwt = require("jsonwebtoken");`
Issue #143 Default auth bug fix Issue #143 Default auth bug fix 2019-05-12 14:09:07 -04:00			`var crypto = require('crypto');`
Backend Logging 2019-01-13 17:55:25 -05:00			`var logger = require('./logger');`
Google authenticator integration PR-266 Google authenticator integration PR-266 2020-03-18 21:48:53 -04:00			`const otplib = require("otplib");`
Authentication and Bug fixes 2019-01-01 11:26:51 -05:00
			`exports.authenticateUser = (req, res, next) => {`
Updates for docker enablement 2 2019-02-12 08:36:04 -05:00			`if(+common.rtl_sso) {`
Issue 181 refresh page Issue 181 refresh page 2019-09-18 22:47:18 -04:00			`if(req.body.authenticateWith === 'TOKEN' && jwt.verify(req.body.authenticationValue, common.secret_key)) {`
			`res.status(200).json({ token: token });`
			`} else if (req.body.authenticateWith === 'PASSWORD' && crypto.createHash('sha256').update(common.cookie).digest('hex') === req.body.authenticationValue) {`
incomplete 2 incomplete 2 2019-04-05 22:52:00 -04:00			`connect.refreshCookie(common.rtl_cookie_path);`
Side Navigation Fix Side Navigation Fix 2019-09-22 14:39:11 -04:00			`const token = jwt.sign(`
Password reset page Password reset page 2020-01-21 19:18:34 -05:00			`{ user: 'SSO_USER', configPath: common.nodes[0].config_path, macaroonPath: common.nodes[0].macaroon_path },`
Updated the secret key logic 2019-02-24 12:00:39 -05:00			`common.secret_key`
Updates for docker enablement 2 2019-02-12 08:36:04 -05:00			`);`
Revert "Issue #58 Redirect to root after authentication" This reverts commit f229f047a7b9aa521a566883f2cf76ae37c79caa. 2019-02-23 22:58:51 -05:00			`res.status(200).json({ token: token });`
Authentication and Bug fixes 2019-01-01 11:26:51 -05:00			`} else {`
Angular 8 Update Angular 8 Update 2019-07-27 14:20:17 -04:00			`logger.error({fileName: 'Authenticate', lineNum: 21, msg: 'Password Validation Failed!'});`
Updates for docker enablement 2 2019-02-12 08:36:04 -05:00			`res.status(401).json({`
Imporved logging for environment variables 2019-02-13 21:31:26 -05:00			`message: "Login Failure!",`
			`error: "SSO Authentication Failed!"`
Updates for docker enablement 2 2019-02-12 08:36:04 -05:00			`});`
			`}`
			`} else {`
Issue 181 refresh page Issue 181 refresh page 2019-09-18 22:47:18 -04:00			`const password = req.body.authenticationValue;`
Documentation Updated Documentation Updated 2020-01-20 11:15:04 -05:00			`if (common.rtl_pass === password) {`
Password reset page Password reset page 2020-01-21 19:18:34 -05:00			`var rpcUser = 'NODE_USER';`
Documentation Updated Documentation Updated 2020-01-20 11:15:04 -05:00			`const token = jwt.sign(`
			`{ user: rpcUser, configPath: common.nodes[0].config_path, macaroonPath: common.nodes[0].macaroon_path },`
			`common.secret_key`
			`);`
			`res.status(200).json({ token: token });`
SingleNode complete SingleNode complete 2019-04-06 18:42:09 -04:00			`} else {`
Documentation Updated Documentation Updated 2020-01-20 11:15:04 -05:00			`logger.error({fileName: 'Authenticate', lineNum: 38, msg: 'Password Validation Failed!'});`
			`res.status(401).json({`
			`message: "Authentication Failed!",`
			`error: "Password Validation Failed!"`
			`});`
RTL conf standardization 2019-02-16 17:43:12 -05:00			`}`
Updates for docker enablement 2 2019-02-12 08:36:04 -05:00			`}`
Update authenticate.js 2019-02-24 09:28:02 -05:00			`};`
Password reset page Password reset page 2020-01-21 19:18:34 -05:00
			`exports.resetPassword = (req, res, next) => {`
			`if(+common.rtl_sso) {`
			`logger.error({fileName: 'Authenticate', lineNum: 46, msg: 'Password Reset Failed!'});`
			`res.status(402).json({`
			`message: "Password Reset Failure!",`
			`error: "Password cannot be reset for SSO authentication!"`
			`});`
			`} else {`
Google authenticator integration PR-266 Google authenticator integration PR-266 2020-03-18 21:48:53 -04:00			`const currPassword = req.body.currPassword;`
			`if (common.rtl_pass === currPassword) {`
Password reset page Password reset page 2020-01-21 19:18:34 -05:00			`common.rtl_pass = connect.replacePasswordWithHash(req.body.newPassword);`
			`var rpcUser = 'NODE_USER';`
			`const token = jwt.sign(`
			`{ user: rpcUser, configPath: common.nodes[0].config_path, macaroonPath: common.nodes[0].macaroon_path },`
			`common.secret_key`
			`);`
			`res.status(200).json({ token: token });`
			`} else {`
			`logger.error({fileName: 'Authenticate', lineNum: 62, msg: 'Password Reset Failed!'});`
			`res.status(402).json({`
			`message: "Password Reset Failed!",`
			`error: "Old password is not correct!"`
			`});`
			`}`
			`}`
Google authenticator integration PR-266 Google authenticator integration PR-266 2020-03-18 21:48:53 -04:00			`};`

			`exports.verifyToken = (req, res, next) => {`
			`const token2fa = req.body.authentication2FA;`
			`if (!common.rtl_secret2fa \|\| otplib.authenticator.check(token2fa, common.rtl_secret2fa)) {`
			`res.status(200).json({ isValidToken: true });`
			`} else {`
			`logger.error({fileName: 'Authenticate', lineNum: 77, msg: 'Token Verification Failed!'});`
			`res.status(401).json({`
			`message: "Authentication Failed!",`
			`error: "Token Verification Failed!"`
			`});`
			`}`
Password reset page Password reset page 2020-01-21 19:18:34 -05:00			`};`