RTL/controllers/authenticate.js

var ini = require('ini');
var fs = require('fs');
var common = require('../common');
const jwt = require("jsonwebtoken");
var upperCase = require('upper-case');
var atob = require('atob');
var logger = require('./logger');

exports.authenticateUserWithCookie = (req, res, next) => {
  if(+common.rtl_sso) {
    res.cookie('access-key', req.query['access-key'], { httpOnly: true, sameSite: true, secure: true });
    res.set(
      {
        'Cache-Control': 'private, no-cache'
      }
    );
    res.redirect(301, '/rtl/');
  }
  else
  {
    res.status(404).json({
      message: "Login Failure!",
      error: "SSO not available"
    });
  }
};

exports.authenticateUser = (req, res, next) => {
  if(+common.rtl_sso) {
    const access_key = req.cookies['access-key'];
    res.clearCookie("access-key");
    if (common.cookie === access_key) {
      const token = jwt.sign(
        { user: 'Custom_User', lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },
        common.secret_key
      );
      res.status(200).json({ token: token });
    } else {
      res.status(401).json({
        message: "Login Failure!",
        error: "SSO Authentication Failed!"
      });
    }
  } else {
    password = atob(req.body.password);
    if(upperCase(common.node_auth_type) === 'CUSTOM') {
      if (common.rtl_pass === password) {
        var rpcUser = 'Custom_User';
        const token = jwt.sign(
          { user: rpcUser, lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },
          common.secret_key
        );
        res.status(200).json({ token: token });
      } else {
        res.status(401).json({
          message: "Authentication Failed!",
          error: "Password Validation Failed!"
        });
      }
    } else {
      fs.readFile(common.lnd_config_path, 'utf8', function (err, data) {
        if (err) {
          logger.error('\r\nAuthenticate: 45: ' + JSON.stringify(Date.now()) + ': ERROR: RTL Config Reading Failed!');
          res.status(500).json({
            message: "LND Config Reading Failed!",
            error: err
          });
        } else {
          const jsonLNDConfig = ini.parse(data);
          if (undefined !== jsonLNDConfig.Bitcoind && undefined !== jsonLNDConfig.Bitcoind['bitcoind.rpcpass']) {
            if (jsonLNDConfig.Bitcoind['bitcoind.rpcpass'] === password) {
              var rpcUser = (undefined !== jsonLNDConfig.Bitcoind['bitcoind.rpcuser']) ? jsonLNDConfig.Bitcoind['bitcoind.rpcuser'] : '';
              const token = jwt.sign(
                { user: rpcUser, lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },
                common.secret_key
              );
              res.status(200).json({ token: token });
            } else {
              res.status(401).json({
                message: "Authentication Failed!",
                error: "Password Validation Failed!"
              });
            }
          } else {
            res.status(401).json({
              message: "Authentication Failed!",
              error: "Password Not Found In LND Config!"
            });
          }
        }
      });
    }
  }
};
Authentication and Bug fixes 2019-01-01 16:26:51 +00:00			`var ini = require('ini');`
			`var fs = require('fs');`
Updates for docker enablement 2019-02-09 20:37:36 +00:00			`var common = require('../common');`
Authentication and Bug fixes 2019-01-01 16:26:51 +00:00			`const jwt = require("jsonwebtoken");`
			`var upperCase = require('upper-case');`
			`var atob = require('atob');`
Backend Logging 2019-01-13 22:55:25 +00:00			`var logger = require('./logger');`
Authentication and Bug fixes 2019-01-01 16:26:51 +00:00
Make sure the browser does not show the access-key in the logs (#61) 2019-02-24 13:16:41 +00:00			`exports.authenticateUserWithCookie = (req, res, next) => {`
			`if(+common.rtl_sso) {`
Remove cookie signature (#62) 2019-02-24 15:03:03 +00:00			`res.cookie('access-key', req.query['access-key'], { httpOnly: true, sameSite: true, secure: true });`
Make sure the browser does not show the access-key in the logs (#61) 2019-02-24 13:16:41 +00:00			`res.set(`
			`{`
			`'Cache-Control': 'private, no-cache'`
			`}`
			`);`
			`res.redirect(301, '/rtl/');`
			`}`
			`else`
			`{`
			`res.status(404).json({`
			`message: "Login Failure!",`
			`error: "SSO not available"`
			`});`
			`}`
			`};`

Authentication and Bug fixes 2019-01-01 16:26:51 +00:00			`exports.authenticateUser = (req, res, next) => {`
Updates for docker enablement 2 2019-02-12 13:36:04 +00:00			`if(+common.rtl_sso) {`
Update authenticate.js 2019-02-24 14:28:02 +00:00			`const access_key = req.cookies['access-key'];`
			`res.clearCookie("access-key");`
			`if (common.cookie === access_key) {`
Updates for docker enablement 2 2019-02-12 13:36:04 +00:00			`const token = jwt.sign(`
			`{ user: 'Custom_User', lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },`
Updated the secret key logic 2019-02-24 17:00:39 +00:00			`common.secret_key`
Updates for docker enablement 2 2019-02-12 13:36:04 +00:00			`);`
Revert "Issue #58 Redirect to root after authentication" This reverts commit f229f047a7b9aa521a566883f2cf76ae37c79caa. 2019-02-24 03:58:51 +00:00			`res.status(200).json({ token: token });`
Authentication and Bug fixes 2019-01-01 16:26:51 +00:00			`} else {`
Updates for docker enablement 2 2019-02-12 13:36:04 +00:00			`res.status(401).json({`
Imporved logging for environment variables 2019-02-14 02:31:26 +00:00			`message: "Login Failure!",`
			`error: "SSO Authentication Failed!"`
Updates for docker enablement 2 2019-02-12 13:36:04 +00:00			`});`
			`}`
			`} else {`
Update authenticate.js 2019-02-24 14:28:02 +00:00			`password = atob(req.body.password);`
RTL conf standardization 2019-02-16 22:43:12 +00:00			`if(upperCase(common.node_auth_type) === 'CUSTOM') {`
			`if (common.rtl_pass === password) {`
			`var rpcUser = 'Custom_User';`
			`const token = jwt.sign(`
			`{ user: rpcUser, lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },`
Updated the secret key logic 2019-02-24 17:00:39 +00:00			`common.secret_key`
RTL conf standardization 2019-02-16 22:43:12 +00:00			`);`
			`res.status(200).json({ token: token });`
Authentication and Bug fixes 2019-01-01 16:26:51 +00:00			`} else {`
RTL conf standardization 2019-02-16 22:43:12 +00:00			`res.status(401).json({`
			`message: "Authentication Failed!",`
			`error: "Password Validation Failed!"`
			`});`
			`}`
			`} else {`
			`fs.readFile(common.lnd_config_path, 'utf8', function (err, data) {`
			`if (err) {`
			`logger.error('\r\nAuthenticate: 45: ' + JSON.stringify(Date.now()) + ': ERROR: RTL Config Reading Failed!');`
			`res.status(500).json({`
			`message: "LND Config Reading Failed!",`
			`error: err`
			`});`
			`} else {`
			`const jsonLNDConfig = ini.parse(data);`
			`if (undefined !== jsonLNDConfig.Bitcoind && undefined !== jsonLNDConfig.Bitcoind['bitcoind.rpcpass']) {`
			`if (jsonLNDConfig.Bitcoind['bitcoind.rpcpass'] === password) {`
			`var rpcUser = (undefined !== jsonLNDConfig.Bitcoind['bitcoind.rpcuser']) ? jsonLNDConfig.Bitcoind['bitcoind.rpcuser'] : '';`
			`const token = jwt.sign(`
			`{ user: rpcUser, lndConfigPath: common.lnd_config_path, macaroonPath: common.macaroon_path },`
Updated the secret key logic 2019-02-24 17:00:39 +00:00			`common.secret_key`
RTL conf standardization 2019-02-16 22:43:12 +00:00			`);`
			`res.status(200).json({ token: token });`
			`} else {`
			`res.status(401).json({`
			`message: "Authentication Failed!",`
			`error: "Password Validation Failed!"`
			`});`
			`}`
Authentication and Bug fixes 2019-01-01 16:26:51 +00:00			`} else {`
Updates for docker enablement 2 2019-02-12 13:36:04 +00:00			`res.status(401).json({`
			`message: "Authentication Failed!",`
RTL conf standardization 2019-02-16 22:43:12 +00:00			`error: "Password Not Found In LND Config!"`
Updates for docker enablement 2 2019-02-12 13:36:04 +00:00			`});`
			`}`
			`}`
RTL conf standardization 2019-02-16 22:43:12 +00:00			`});`
			`}`
Updates for docker enablement 2 2019-02-12 13:36:04 +00:00			`}`
Update authenticate.js 2019-02-24 14:28:02 +00:00			`};`