mirror of
https://github.com/thelounge/thelounge.git
synced 2024-05-17 21:56:36 +02:00
cfa6db10c7
Also draft some kind of plugin system for auth, although it essentially consists in writing a function and there is no mechanism to automatically fallback from one auth to another
39 lines
1.1 KiB
JavaScript
39 lines
1.1 KiB
JavaScript
"use strict";
|
|
|
|
const Helper = require("../../helper");
|
|
const colors = require("colors/safe");
|
|
|
|
function localAuth(manager, client, user, password, callback) {
|
|
// If no user is found, or if the client has not provided a password,
|
|
// fail the authentication straight away
|
|
if (!client || !password) {
|
|
return callback(false);
|
|
}
|
|
|
|
// If this user has no password set, fail the authentication
|
|
if (!client.config.password) {
|
|
log.error(`User ${colors.bold(user)} with no local password set tried to sign in. (Probably a LDAP user)`);
|
|
return callback(false);
|
|
}
|
|
|
|
Helper.password
|
|
.compare(password, client.config.password)
|
|
.then((matching) => {
|
|
if (matching && Helper.password.requiresUpdate(client.config.password)) {
|
|
const hash = Helper.password.hash(password);
|
|
|
|
client.setPassword(hash, (success) => {
|
|
if (success) {
|
|
log.info(`User ${colors.bold(client.name)} logged in and their hashed password has been updated to match new security requirements`);
|
|
}
|
|
});
|
|
}
|
|
|
|
callback(matching);
|
|
}).catch((error) => {
|
|
log.error(`Error while checking users password. Error: ${error}`);
|
|
});
|
|
}
|
|
|
|
module.exports = localAuth;
|