forked from jslatts/nodechat
-
Notifications
You must be signed in to change notification settings - Fork 0
Expand file tree
/
Copy pathauth.html
More file actions
125 lines (100 loc) · 22.6 KB
/
Copy pathauth.html
File metadata and controls
125 lines (100 loc) · 22.6 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
<!DOCTYPE html> <html> <head> <title>auth.js</title> <meta http-equiv="content-type" content="text/html; charset=UTF-8"> <link rel="stylesheet" media="all" href="docco.css" /> </head> <body> <div id="container"> <div id="background"></div> <table cellpadding="0" cellspacing="0"> <thead> <tr> <th class="docs"> <h1> auth.js </h1> </th> <th class="code"> </th> </tr> </thead> <tbody> <tr id="section-1"> <td class="docs"> <div class="pilwrap"> <a class="pilcrow" href="#section-1">¶</a> </div> <p>auth.js
Handles new user accounts and authentication</p>
<p>Copyright(c) 2011 Justin Slattery <a href="mailto:justin.slattery@fzysqr.com">justin.slattery@fzysqr.com</a>
MIT Licensed</p> </td> <td class="code"> <div class="highlight"><pre></pre></div> </td> </tr> <tr id="section-2"> <td class="docs"> <div class="pilwrap"> <a class="pilcrow" href="#section-2">¶</a> </div> <p>This will be a <a href="http://www.commonjs.org/">CommonJS module</a> so we need to start off with some setup. </p>
<p>Here we are checking to see if this code is included as a module. If it is, we go ahead and include our dependencies (in this case, our models lib, redis, and hash + friends). If we are not a module, we may as well explode because the rest of the code won't run without redis and hash.</p> </td> <td class="code"> <div class="highlight"><pre><span class="p">(</span><span class="kd">function</span> <span class="p">()</span> <span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="k">typeof</span> <span class="nx">exports</span> <span class="o">!==</span> <span class="s1">'undefined'</span><span class="p">)</span> <span class="p">{</span>
<span class="nx">redis</span> <span class="o">=</span> <span class="nx">require</span><span class="p">(</span><span class="s1">'redis'</span><span class="p">);</span>
<span class="nx">rc</span> <span class="o">=</span> <span class="nx">redis</span><span class="p">.</span><span class="nx">createClient</span><span class="p">();</span>
<span class="nx">models</span> <span class="o">=</span> <span class="nx">require</span><span class="p">(</span><span class="s1">'../models/models'</span><span class="p">);</span></pre></div> </td> </tr> <tr id="section-3"> <td class="docs"> <div class="pilwrap"> <a class="pilcrow" href="#section-3">¶</a> </div> <p>joose is required to support the hash lib we are using</p> </td> <td class="code"> <div class="highlight"><pre> <span class="nx">require</span><span class="p">(</span><span class="s1">'joose'</span><span class="p">);</span>
<span class="nx">require</span><span class="p">(</span><span class="s1">'joosex-namespace-depended'</span><span class="p">);</span>
<span class="nx">require</span><span class="p">(</span><span class="s1">'hash'</span><span class="p">);</span>
<span class="p">}</span>
<span class="k">else</span> <span class="p">{</span>
<span class="k">throw</span> <span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'auth.js must be loaded as a module.'</span><span class="p">);</span>
<span class="p">}</span></pre></div> </td> </tr> <tr id="section-4"> <td class="docs"> <div class="pilwrap"> <a class="pilcrow" href="#section-4">¶</a> </div> <p>Checks to see if the user exists in redis. If it does, it calls verifyUserAccount(). Otherwise callback with an error.</p>
<ul>
<li>@param: {string} name</li>
<li>@param: {string} pass</li>
<li>@param: {function} fn</li>
<li>@api: public</li>
</ul> </td> <td class="code"> <div class="highlight"><pre> <span class="nx">exports</span><span class="p">.</span><span class="nx">authenticateUser</span> <span class="o">=</span> <span class="kd">function</span><span class="p">(</span><span class="nx">name</span><span class="p">,</span> <span class="nx">pass</span><span class="p">,</span> <span class="nx">fn</span><span class="p">)</span> <span class="p">{</span>
<span class="nx">console</span><span class="p">.</span><span class="nx">log</span><span class="p">(</span><span class="s1">'[authenticate] Starting auth for '</span> <span class="o">+</span> <span class="nx">name</span> <span class="o">+</span> <span class="s1">' with password '</span> <span class="o">+</span> <span class="nx">pass</span><span class="p">);</span>
<span class="kd">var</span> <span class="nx">rKey</span> <span class="o">=</span> <span class="s1">'user:'</span> <span class="o">+</span> <span class="nx">name</span><span class="p">;</span>
<span class="nx">rc</span><span class="p">.</span><span class="nx">get</span><span class="p">(</span><span class="nx">rKey</span><span class="p">,</span> <span class="kd">function</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">data</span><span class="p">){</span>
<span class="k">if</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[authenticateUser] SET failed for key: '</span> <span class="o">+</span> <span class="nx">rKey</span> <span class="o">+</span> <span class="s1">' for value: '</span> <span class="o">+</span> <span class="nx">name</span><span class="p">));</span>
<span class="k">if</span> <span class="p">(</span><span class="o">!</span><span class="nx">data</span><span class="p">)</span> <span class="p">{</span>
<span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[authenticateUser] invalid password'</span><span class="p">));</span>
<span class="p">}</span>
<span class="k">else</span> <span class="p">{</span>
<span class="nx">console</span><span class="p">.</span><span class="nx">log</span><span class="p">(</span><span class="s1">'[authenticateUser] user: '</span> <span class="o">+</span> <span class="nx">name</span> <span class="o">+</span> <span class="s1">' found in store. Verifying password.'</span><span class="p">);</span>
<span class="nx">verifyUserAccount</span><span class="p">(</span><span class="nx">data</span><span class="p">,</span> <span class="nx">pass</span><span class="p">,</span> <span class="nx">fn</span><span class="p">)</span>
<span class="p">}</span>
<span class="p">});</span>
<span class="p">};</span></pre></div> </td> </tr> <tr id="section-5"> <td class="docs"> <div class="pilwrap"> <a class="pilcrow" href="#section-5">¶</a> </div> <p>Steps through the process of retreiving the salt, calculating the hash of the passed in password, then comparing it to the stored hash in redis.</p>
<p>If successful, create a new user model and pass it to the callback. Otherwise, any failure along the way means we callback with an error.</p>
<p>Assumes the passed in user exists in redis. </p>
<ul>
<li>@param: {string} foundUserName</li>
<li>@param: {string} pass</li>
<li>@param: {function} fn</li>
<li>@api: private</li>
</ul> </td> <td class="code"> <div class="highlight"><pre> <span class="kd">var</span> <span class="nx">verifyUserAccount</span> <span class="o">=</span> <span class="kd">function</span><span class="p">(</span><span class="nx">foundUserName</span><span class="p">,</span> <span class="nx">pass</span><span class="p">,</span> <span class="nx">fn</span><span class="p">)</span> <span class="p">{</span>
<span class="kd">var</span> <span class="nx">rKey</span> <span class="o">=</span> <span class="s1">'user:'</span> <span class="o">+</span> <span class="nx">foundUserName</span><span class="p">;</span>
<span class="nx">rc</span><span class="p">.</span><span class="nx">get</span><span class="p">(</span><span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.salt'</span><span class="p">,</span> <span class="kd">function</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">data</span><span class="p">){</span>
<span class="k">if</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[verifyUserAccount] GET failed for key: '</span> <span class="o">+</span> <span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.salt'</span><span class="p">));</span>
<span class="k">if</span><span class="p">(</span><span class="nx">data</span><span class="p">)</span> <span class="p">{</span>
<span class="kd">var</span> <span class="nx">calculatedHash</span> <span class="o">=</span> <span class="nx">Hash</span><span class="p">.</span><span class="nx">sha512</span><span class="p">(</span><span class="nx">data</span> <span class="o">+</span> <span class="s1">'_'</span> <span class="o">+</span> <span class="nx">pass</span><span class="p">);</span>
<span class="nx">rc</span><span class="p">.</span><span class="nx">get</span><span class="p">(</span><span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.hashPass'</span><span class="p">,</span> <span class="kd">function</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">data</span><span class="p">)</span> <span class="p">{</span>
<span class="k">if</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[verifyUserAccount] GET failed for key: '</span> <span class="o">+</span> <span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.hashPass'</span><span class="p">));</span>
<span class="k">if</span> <span class="p">(</span><span class="nx">calculatedHash</span> <span class="o">===</span> <span class="nx">data</span><span class="p">)</span> <span class="p">{</span>
<span class="nx">console</span><span class="p">.</span><span class="nx">log</span><span class="p">(</span><span class="s1">'[verifyUserAccount] Auth succeeded for '</span> <span class="o">+</span> <span class="nx">foundUserName</span> <span class="o">+</span> <span class="s1">' with password '</span> <span class="o">+</span> <span class="nx">pass</span><span class="p">);</span>
<span class="nx">rc</span><span class="p">.</span><span class="nx">get</span><span class="p">(</span><span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.profile'</span><span class="p">,</span> <span class="kd">function</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">data</span><span class="p">)</span> <span class="p">{</span>
<span class="k">if</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[verifyUserAccount] GET failed for key: '</span> <span class="o">+</span> <span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.profile'</span> <span class="o">+</span> <span class="s1">' for user profile'</span><span class="p">));</span>
<span class="kd">var</span> <span class="nx">foundUser</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">models</span><span class="p">.</span><span class="nx">User</span><span class="p">();</span>
<span class="nx">foundUser</span><span class="p">.</span><span class="nx">mport</span><span class="p">(</span><span class="nx">data</span><span class="p">);</span>
<span class="nx">foundUser</span><span class="p">.</span><span class="nx">set</span><span class="p">({</span><span class="s1">'hashPass'</span><span class="o">:</span> <span class="nx">calculatedHash</span><span class="p">});</span>
<span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="kc">null</span><span class="p">,</span> <span class="nx">foundUser</span><span class="p">);</span>
<span class="p">});</span>
<span class="p">}</span>
<span class="k">else</span> <span class="p">{</span>
<span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[verifyUserAccount] invalid password'</span><span class="p">));</span>
<span class="p">}</span>
<span class="p">});</span>
<span class="p">}</span>
<span class="k">else</span> <span class="p">{</span>
<span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[verifyUserAccount] salt not found'</span><span class="p">));</span>
<span class="p">}</span>
<span class="p">});</span>
<span class="p">}</span></pre></div> </td> </tr> <tr id="section-6"> <td class="docs"> <div class="pilwrap"> <a class="pilcrow" href="#section-6">¶</a> </div> <p>Verifies that the two passwords match, then use the current timestamp to salt a hash of the password. Store it all in a user model which we will save as a poor man's profile if everything succeeds.</p>
<p>Any failure along the way means we callback with an error.</p>
<ul>
<li>@param: {string} name</li>
<li>@param: {string} pass1</li>
<li>@param: {string} pass2</li>
<li>@param: {string} email</li>
<li>@param: {function} fn</li>
<li>@api: public</li>
</ul> </td> <td class="code"> <div class="highlight"><pre> <span class="nx">exports</span><span class="p">.</span><span class="nx">createNewUserAccount</span> <span class="o">=</span> <span class="kd">function</span><span class="p">(</span><span class="nx">name</span><span class="p">,</span> <span class="nx">pass1</span><span class="p">,</span> <span class="nx">pass2</span><span class="p">,</span> <span class="nx">email</span><span class="p">,</span> <span class="nx">fn</span><span class="p">)</span> <span class="p">{</span>
<span class="k">if</span> <span class="p">(</span><span class="nx">pass1</span> <span class="o">!==</span> <span class="nx">pass2</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[createNewUserAccount] Passwords do not match'</span><span class="p">));</span>
<span class="kd">var</span> <span class="nx">newUser</span> <span class="o">=</span> <span class="k">new</span> <span class="nx">models</span><span class="p">.</span><span class="nx">User</span><span class="p">({</span><span class="nx">name</span><span class="o">:</span> <span class="nx">name</span><span class="p">,</span> <span class="nx">email</span><span class="o">:</span> <span class="nx">email</span> <span class="p">});</span>
<span class="kd">var</span> <span class="nx">rKey</span> <span class="o">=</span> <span class="s1">'user:'</span> <span class="o">+</span> <span class="nx">name</span><span class="p">;</span>
<span class="nx">rc</span><span class="p">.</span><span class="nx">set</span><span class="p">(</span><span class="nx">rKey</span><span class="p">,</span> <span class="nx">name</span><span class="p">,</span> <span class="kd">function</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">data</span><span class="p">){</span>
<span class="k">if</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[createNewUserAccount] SET failed for key: '</span> <span class="o">+</span> <span class="nx">rKey</span> <span class="o">+</span> <span class="s1">' for value: '</span> <span class="o">+</span> <span class="nx">name</span><span class="p">));</span>
<span class="kd">var</span> <span class="nx">salt</span> <span class="o">=</span> <span class="k">new</span> <span class="nb">Date</span><span class="p">().</span><span class="nx">getTime</span><span class="p">();</span>
<span class="nx">rc</span><span class="p">.</span><span class="nx">set</span><span class="p">(</span><span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.salt'</span><span class="p">,</span> <span class="nx">salt</span><span class="p">,</span> <span class="kd">function</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">data</span><span class="p">)</span> <span class="p">{</span>
<span class="k">if</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[createNewUserAccount] SET failed for key: '</span> <span class="o">+</span> <span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.salt'</span> <span class="o">+</span> <span class="s1">' for value: '</span> <span class="o">+</span> <span class="nx">salt</span><span class="p">));</span>
<span class="kd">var</span> <span class="nx">hashPass</span> <span class="o">=</span> <span class="nx">Hash</span><span class="p">.</span><span class="nx">sha512</span><span class="p">(</span><span class="nx">salt</span> <span class="o">+</span> <span class="s1">'_'</span> <span class="o">+</span> <span class="nx">pass1</span><span class="p">);</span>
<span class="nx">rc</span><span class="p">.</span><span class="nx">set</span><span class="p">(</span><span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.hashPass'</span><span class="p">,</span> <span class="nx">hashPass</span><span class="p">,</span> <span class="kd">function</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">data</span><span class="p">)</span> <span class="p">{</span>
<span class="k">if</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[createNewUserAccount] SET failed for key: '</span> <span class="o">+</span> <span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.hashPass'</span> <span class="o">+</span> <span class="s1">' for value: '</span> <span class="o">+</span> <span class="nx">hashPass</span><span class="p">));</span>
<span class="nx">rc</span><span class="p">.</span><span class="nx">set</span><span class="p">(</span><span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.profile'</span><span class="p">,</span> <span class="nx">newUser</span><span class="p">.</span><span class="nx">xport</span><span class="p">(),</span> <span class="kd">function</span><span class="p">(</span><span class="nx">err</span><span class="p">,</span> <span class="nx">data</span><span class="p">)</span> <span class="p">{</span>
<span class="k">if</span><span class="p">(</span><span class="nx">err</span><span class="p">)</span> <span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="k">new</span> <span class="nb">Error</span><span class="p">(</span><span class="s1">'[createNewUserAccount] SET failed for key: '</span> <span class="o">+</span> <span class="nx">rKey</span> <span class="o">+</span> <span class="s1">'.profile'</span> <span class="o">+</span> <span class="s1">' for user profile'</span><span class="p">));</span>
<span class="nx">newUser</span><span class="p">.</span><span class="nx">set</span><span class="p">({</span><span class="s1">'hashPass'</span><span class="o">:</span> <span class="nx">hashPass</span><span class="p">});</span>
<span class="k">return</span> <span class="nx">fn</span><span class="p">(</span><span class="kc">null</span><span class="p">,</span> <span class="nx">newUser</span><span class="p">);</span>
<span class="p">});</span>
<span class="p">});</span>
<span class="p">});</span>
<span class="p">});</span>
<span class="p">}</span>
<span class="p">})()</span>
</pre></div> </td> </tr> </tbody> </table> </div> </body> </html>