2020-05-04 01:16:54 +00:00
|
|
|
const { Middleware } = require('libflitter')
|
|
|
|
const moment = require('moment')
|
2020-08-13 06:56:33 +00:00
|
|
|
const uuid = require('uuid').v4
|
2020-05-04 01:16:54 +00:00
|
|
|
|
|
|
|
class TrustManager {
|
2020-05-20 14:56:03 +00:00
|
|
|
assume_trust = false
|
|
|
|
|
2020-05-04 01:16:54 +00:00
|
|
|
constructor(request, response) {
|
|
|
|
this.request = request
|
|
|
|
this.response = response
|
|
|
|
this.init_store()
|
|
|
|
}
|
|
|
|
|
|
|
|
init_store() {
|
|
|
|
if ( !Array.isArray(this.request.session.trust_tokens) ) {
|
|
|
|
this.request.session.trust_tokens = []
|
|
|
|
}
|
|
|
|
|
|
|
|
const now = moment()
|
|
|
|
this.request.session.trust_tokens = this.request.session.trust_tokens.filter(x => {
|
|
|
|
return moment(new Date(x.expires)) > now
|
|
|
|
})
|
2020-05-20 14:56:03 +00:00
|
|
|
|
|
|
|
this.assume_trust = !!this.request.session.trust_assume_trust
|
|
|
|
}
|
|
|
|
|
|
|
|
assume() {
|
|
|
|
this.request.session.trust_assume_trust = true
|
|
|
|
this.assume_trust = true
|
|
|
|
}
|
|
|
|
|
|
|
|
unassume() {
|
|
|
|
this.request.session.trust_assume_trust = false
|
|
|
|
this.assume_trust = false
|
|
|
|
this.purge()
|
2020-05-04 01:16:54 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
init_flow(scope, next) {
|
|
|
|
this.request.session.trust_flow = { scope, next, in_progress: false, requested: `${new Date}` }
|
|
|
|
}
|
|
|
|
|
|
|
|
has_flow() {
|
|
|
|
const flow = this.request.session?.trust_flow
|
|
|
|
return flow && flow.scope && flow.next && moment(new Date(flow.requested)) < moment(new Date(flow.requested)).add('20', 'minutes')
|
|
|
|
}
|
|
|
|
|
|
|
|
flow_scope() {
|
|
|
|
if ( this.has_flow() ) {
|
|
|
|
return this.request.session.trust_flow.scope
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
flow() {
|
|
|
|
if ( this.has_flow() ) {
|
|
|
|
return this.request.session.trust_flow.next
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
start() {
|
|
|
|
delete this.request.session.user_id
|
|
|
|
const grant_token = uuid()
|
|
|
|
this.request.session.trust_flow.grant_token = grant_token
|
|
|
|
this.request.session.trust_flow.in_progress = true
|
|
|
|
this.request.session.trust_flow.started = `${new Date}`
|
|
|
|
return grant_token
|
|
|
|
}
|
|
|
|
|
|
|
|
check_grant(grant_token) {
|
|
|
|
return grant_token === this.request.session?.trust_flow?.grant_token
|
|
|
|
}
|
|
|
|
|
|
|
|
end() {
|
2020-05-25 20:45:26 +00:00
|
|
|
const next = this.request.session?.trust_flow?.next
|
2020-05-04 01:16:54 +00:00
|
|
|
delete this.request.session.trust_flow
|
|
|
|
return next
|
|
|
|
}
|
|
|
|
|
|
|
|
in_progress() {
|
|
|
|
const flow = this.request.session.trust_flow
|
|
|
|
return flow && flow.in_progress && flow.started && moment(new Date(flow.started)) < moment(new Date(flow.started)).add('10', 'minutes')
|
|
|
|
}
|
|
|
|
|
|
|
|
has(scope) {
|
2020-05-20 14:56:03 +00:00
|
|
|
return this.assume_trust || this.request.session.trust_tokens.some(x => x.scope === scope)
|
2020-05-04 01:16:54 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
grant(scope) {
|
|
|
|
this.request.session.trust_tokens.push({
|
|
|
|
scope,
|
|
|
|
expires: moment().add('1', 'hour').toDate().toString(),
|
|
|
|
})
|
|
|
|
}
|
|
|
|
|
|
|
|
deplete(scope) {
|
|
|
|
this.request.session.trust_tokens = this.request.session.trust_tokens.filter(x => x.scope !== scope)
|
|
|
|
}
|
|
|
|
|
|
|
|
purge() {
|
|
|
|
this.end()
|
|
|
|
this.request.session.trust_tokens = []
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
class TrustTokenUtilityMiddleware extends Middleware {
|
|
|
|
async test(req, res, next, args = {}) {
|
|
|
|
if ( req.session ) {
|
|
|
|
req.trust = new TrustManager(req, res)
|
|
|
|
}
|
|
|
|
|
|
|
|
return next()
|
|
|
|
}
|
|
|
|
}
|
|
|
|
|
|
|
|
module.exports = exports = TrustTokenUtilityMiddleware
|