Adrien Béraud | 824a713 | 2021-04-17 17:25:27 -0400 | [diff] [blame] | 1 | require('dotenv').config() |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 2 | |
| 3 | const express = require('express') |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 4 | const http = require('http') |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 5 | const session = require('express-session') |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 6 | //const cookieParser = require('cookie-parser') |
| 7 | //const io = require('socket.io')(server) |
| 8 | const path = require('path') |
| 9 | const passport = require('passport') |
| 10 | , LocalStrategy = require('passport-local').Strategy |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 11 | |
Adrien Béraud | 947e879 | 2021-04-15 18:32:44 -0400 | [diff] [blame] | 12 | //const redis = require('redis-url').connect() |
| 13 | //const RedisStore = require('connect-redis')(session) |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 14 | /*const passportSocketIo = require('passport.socketio')*/ |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 15 | |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 16 | const indexRouter = require('./routes/index') |
| 17 | |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 18 | //const cors = require('cors') |
| 19 | |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 20 | const JamiRestApi = require('./routes/jami') |
| 21 | const JamiDaemon = require('./JamiDaemon') |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 22 | |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 23 | //const sessionStore = new RedisStore({ client: redis }) |
| 24 | const sessionStore = new session.MemoryStore() |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 25 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 26 | const loadConfig = async (filePath) => { |
| 27 | try { |
| 28 | return JSON.parse(await fs.readFile(filePath)) |
| 29 | } catch { |
| 30 | return {} |
| 31 | } |
Adrien Béraud | 824a713 | 2021-04-17 17:25:27 -0400 | [diff] [blame] | 32 | } |
| 33 | |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 34 | /* |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 35 | Share sessions between Passport.js and Socket.io |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 36 | */ |
| 37 | |
| 38 | function logSuccess() { |
| 39 | console.log("passportSocketIo authorized user with Success 😁"); |
| 40 | } |
| 41 | |
| 42 | function logFail() { |
| 43 | console.log("passportSocketIo failed to authorized user 👺"); |
| 44 | } |
| 45 | |
| 46 | /* |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 47 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 48 | tempAccounts holds users accounts while tempting to authenticate them on Jams. |
| 49 | connectedUsers holds users accounts after they got authenticated by Jams. |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 50 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 51 | Users should be removed from connectedUsers when receiving a disconnect |
| 52 | web socket call |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 53 | |
| 54 | */ |
| 55 | const tempAccounts = {}; |
| 56 | const connectedUsers = {}; |
| 57 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 58 | const createServer = async (appConfig) => { |
| 59 | const app = express() |
| 60 | console.log(`Loading server for ${app.get('env')} with config:`) |
| 61 | console.log(appConfig) |
| 62 | const development = app.get('env') === 'development' |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 63 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 64 | if (development) { |
| 65 | const webpack = require('webpack') |
| 66 | const webpackConfig = require('./client/webpack.config.js') |
| 67 | const compiler = webpack(webpackConfig) |
| 68 | app.use(require('webpack-dev-middleware')(compiler, { |
| 69 | publicPath: webpackConfig.output.publicPath |
| 70 | })); |
| 71 | app.use(require('webpack-hot-middleware')(compiler)); |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 72 | } |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 73 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 74 | /* |
| 75 | Configuation for Passeport Js |
| 76 | */ |
| 77 | app.disable('x-powered-by'); |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 78 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 79 | app.use(session({ |
| 80 | store: sessionStore, |
| 81 | resave: false, |
| 82 | saveUninitialized: true, |
| 83 | cookie: { |
| 84 | secure: false,//!development, |
| 85 | maxAge: 2419200000 |
| 86 | }, |
| 87 | secret: process.env.SECRET_KEY_BASE |
| 88 | })); |
| 89 | app.use(passport.initialize()); |
| 90 | app.use(passport.session()); |
| 91 | // app.use(app.router); |
| 92 | //app.use(cors()) |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 93 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 94 | const jami = new JamiDaemon(); |
| 95 | const apiRouter = new JamiRestApi(jami).getRouter() |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 96 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 97 | /* |
| 98 | io.use(passportSocketIo.authorize({ |
| 99 | key: 'connect.sid', |
| 100 | secret: process.env.SECRET_KEY_BASE, |
| 101 | store: sessionStore, |
| 102 | passport: passport, |
| 103 | cookieParser: cookieParser, |
| 104 | //success: logSuccess(), |
| 105 | // fail: logFail(), |
| 106 | })); |
| 107 | */ |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 108 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 109 | passport.serializeUser((user, done) => { |
| 110 | console.log(user) |
| 111 | connectedUsers[user.accountId] = user; |
| 112 | console.log("=============================SerializeUser called " + user.accountId) |
| 113 | done(null, user.accountId); |
| 114 | }); |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 115 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 116 | const deserializeUser = (id, done) => { |
| 117 | console.log("=============================DeserializeUser called on: " + id + " " + connectedUsers[id]) |
| 118 | done(null, connectedUsers[id]); |
| 119 | }; |
| 120 | passport.deserializeUser(deserializeUser); |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 121 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 122 | //var tempAccountId = ''; |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 123 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 124 | const jamsStrategy = new LocalStrategy( |
| 125 | (username, password, done) => { |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 126 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 127 | const newUser = {}; |
| 128 | newUser.username = username; |
| 129 | //newUser.socketid = |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 130 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 131 | const accountId = jami.addAccount({ |
| 132 | 'managerUri': 'https://jams.savoirfairelinux.com', |
| 133 | 'managerUsername': username, |
| 134 | 'archivePassword': password |
| 135 | }); |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 136 | |
Adrien Béraud | 3b5d9a6 | 2021-04-17 18:40:27 -0400 | [diff] [blame^] | 137 | const newProps = jami.getAccount(accountId).details; |
| 138 | console.log(newProps); |
| 139 | //Object.entries(newProps).forEach(v => console.log(v[0], v[1])) |
| 140 | //tempAccountId = accountId; |
| 141 | newUser.accountId = accountId; |
| 142 | console.log("AccountId: " + accountId); |
| 143 | connectedUsers[accountId] = newUser; |
| 144 | tempAccounts[accountId] = { done, newUser }; |
| 145 | |
| 146 | //return done(null, newUser); |
| 147 | |
| 148 | /*User.findOne({ username: username }, function (err, user) { |
| 149 | if (err) { return done(err); } |
| 150 | if (!user) { |
| 151 | return done(null, false, { message: 'Incorrect username.' }); |
| 152 | } |
| 153 | if (!user.validPassword(password)) { |
| 154 | return done(null, false, { message: 'Incorrect password.' }); |
| 155 | } |
| 156 | return done(null, user); |
| 157 | });*/ |
| 158 | } |
| 159 | ); |
| 160 | jamsStrategy.name = "jams"; |
| 161 | |
| 162 | const localStrategy = new LocalStrategy( |
| 163 | (username, password, done) => { |
| 164 | console.log("localStrategy: " + username + " " + password); |
| 165 | |
| 166 | const newUser = {}; |
| 167 | newUser.accountId = jami.getAccountList()[0].getId(); |
| 168 | console.log("Local AccountId: " + newUser.accountId); |
| 169 | connectedUsers[newUser.accountId] = newUser; |
| 170 | done(null, newUser); |
| 171 | } |
| 172 | ); |
| 173 | |
| 174 | passport.use(jamsStrategy); |
| 175 | passport.use(localStrategy); |
| 176 | |
| 177 | const secured = (req, res, next) => { |
| 178 | console.log(`isSecured ${req.user}`); |
| 179 | if (req.user && req.user.accountId) { |
| 180 | return next(); |
| 181 | } |
| 182 | res.status(401).end() |
| 183 | }; |
| 184 | const securedRedirect = (req, res, next) => { |
| 185 | if (req.user && req.user.accountId) { |
| 186 | return next(); |
| 187 | } |
| 188 | req.session.returnTo = req.originalUrl; |
| 189 | res.redirect('/login'); |
| 190 | }; |
| 191 | |
| 192 | app.post('/auth', passport.authenticate('jams'), (req, res) => { |
| 193 | res.json({ loggedin: true }) |
| 194 | }); |
| 195 | app.post('auth/localLogin', passport.authenticate('local'), (req, res) => { |
| 196 | res.json({ loggedin: true }) |
| 197 | }); |
| 198 | |
| 199 | app.use('/api', secured, apiRouter); |
| 200 | |
| 201 | app.use('/', indexRouter); |
| 202 | |
| 203 | /* GET React App */ |
| 204 | |
| 205 | app.use(express.static(path.join(__dirname, 'client', 'dist'))) |
| 206 | |
| 207 | app.use((req, res, next) => { |
| 208 | res.sendFile(path.join(__dirname, 'client', 'dist', 'index.html')); |
| 209 | }); |
| 210 | |
| 211 | return http.Server(app); |
| 212 | } |
| 213 | |
| 214 | loadConfig() |
| 215 | .then(createServer) |
| 216 | .then(server => { |
| 217 | server.listen(3000); |
| 218 | }) |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 219 | |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 220 | /* |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 221 | io.on('connection', (socket) => { |
| 222 | console.log("Client just connected !") |
| 223 | socket.on('SendMessage', (data) => { |
| 224 | console.log("Message " + data.text + " sent to " + data.destinationId + " by " + socket.session.user.accountId); |
| 225 | const msgMap = new jami.dring.StringMap(); |
| 226 | msgMap.set('text/plain', data.text); |
| 227 | jami.dring.sendAccountTextMessage(socket.session.user.accountId, data.destinationId, msgMap); |
| 228 | }); |
| 229 | }); |
| 230 | |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 231 | io.use((socket, next) => { |
| 232 | cookieParser(socket.handshake, {}, (err) => { |
| 233 | if (err) { |
| 234 | console.log("error in parsing cookie"); |
| 235 | return next(err); |
| 236 | } |
| 237 | if (!socket.handshake.signedCookies) { |
| 238 | console.log("no secureCookies|signedCookies found"); |
| 239 | return next(new Error("no secureCookies found")); |
| 240 | } |
| 241 | sessionStore.get(socket.handshake.signedCookies["connect.sid"], (err, session) => { |
| 242 | socket.session = session; |
| 243 | if (!err && !session) err = new Error('session not found'); |
| 244 | if (err) { |
| 245 | console.log('failed connection to socket.io:', err); |
| 246 | } else { |
| 247 | console.log(session); |
| 248 | console.log('successful connection to socket.io ' + session.passport.user); |
| 249 | const userKey = session.passport.user; |
| 250 | deserializeUser(userKey, (err, user) => { |
| 251 | console.log("deserializeUser: " + user) |
| 252 | if (err) |
| 253 | return next(err, true); |
| 254 | if (!user) |
| 255 | return next("User not found", false); |
| 256 | |
| 257 | console.log("User associated socket id: " + socket.id) |
| 258 | user.socketId = socket.id; |
| 259 | socket.session.user = user; |
| 260 | console.log("User added to session --------> " + user.accountId); |
Larbi Gharib | e9af973 | 2021-03-31 15:08:01 +0100 | [diff] [blame] | 261 | //auth.success(data, accept); |
| 262 | next(err, true); |
| 263 | }); |
| 264 | } |
| 265 | }); |
| 266 | }); |
| 267 | }); |
Adrien Béraud | 6ecaa40 | 2021-04-06 17:37:25 -0400 | [diff] [blame] | 268 | */ |