Add support for session traps; make mfa challenge session trap; remove DMZ middleware

2020-05-22 09:29:13 -05:00
parent 8701df1acc
commit 64356d42d0
11 changed files with 49 additions and 51 deletions
--- a/app/routing/middleware/auth/DMZOnly.middleware.js
+++ b/app/routing/middleware/auth/DMZOnly.middleware.js
@@ -1,17 +0,0 @@
-const Middleware = require('libflitter/middleware/Middleware')
-class DMZOnly extends Middleware {
-
-    async test(req, res, next, args = {}){
-
-        if ( req.is_auth ) return next()
-        else {
-            // If not signed in, save the target url so we can redirect back here after auth
-            req.session.auth.flow = req.originalUrl
-            return res.redirect('/auth/login')
-        }
-
-    }
-
-}
-
-module.exports = DMZOnly
--- a/app/routing/middleware/auth/UserOnly.middleware.js
+++ b/app/routing/middleware/auth/UserOnly.middleware.js
@@ -12,11 +12,7 @@ class UserOnly extends Middleware {
    }

    async test(req, res, next, args = {}){
-        if ( req.is_auth && !req.session.auth.in_dmz ) return next()
-        else if ( req.is_auth ) { // Need an MFA challenge
-            if ( !req.session.auth.flow ) req.session.auth.flow = req.originalUrl
-            return res.redirect('/auth/mfa/challenge')
-        }
+        if ( req.is_auth ) return next()
        else {
            // If not signed in, save the target url so we can redirect back here after auth
            req.session.auth.flow = req.originalUrl