[perso/Immae/Projets/Nodejs/Surfer.git] / src / auth.js

'use strict';

var passport = require('passport'),
    LdapStrategy = require('passport-ldapjs').Strategy;

passport.serializeUser(function (user, done) {
    console.log('serializeUser', user);
    done(null, user.uid);
});

passport.deserializeUser(function (id, done) {
    console.log('deserializeUser', id);
    done(null, { uid: id });
});

var LDAP_URL = process.env.LDAP_URL;
var LDAP_USERS_BASE_DN = process.env.LDAP_USERS_BASE_DN;

if (LDAP_URL && LDAP_USERS_BASE_DN) {
    console.log('Enable ldap auth');

    exports.ldap = passport.authenticate('ldap');
} else {
    exports.ldap = function (req, res, next) {
        console.log('Disable ldap auth, use developer credentials!');

        if (req.query.username !== 'test') return res.send(401);
        if (req.query.password !== 'test') return res.send(401);

        next();
    };
}

var opts = {
    server: {
        url: LDAP_URL,
    },
    base: LDAP_USERS_BASE_DN,
    search: {
        filter: '(|(username={{username}})(mail={{username}}))',
        attributes: ['displayname', 'username', 'mail', 'uid'],
        scope: 'sub'
    },
    uidTag: 'cn',
    usernameField: 'username',
    passwordField: 'password',
};

passport.use(new LdapStrategy(opts, function (profile, done) {
    done(null, profile);
}));
Commit	Line	Data
591ad40c JZ	1	'use strict';
	2
	3	var passport = require('passport'),
	4	LdapStrategy = require('passport-ldapjs').Strategy;
	5
a90a633f JZ	6	passport.serializeUser(function (user, done) {
a90a633f JZ	7	console.log('serializeUser', user);
cfe24a27	8	done(null, user.uid);
a90a633f JZ	9	});
	10
	11	passport.deserializeUser(function (id, done) {
	12	console.log('deserializeUser', id);
cfe24a27	13	done(null, { uid: id });
a90a633f JZ	14	});
a90a633f JZ	15
591ad40c JZ	16	var LDAP_URL = process.env.LDAP_URL;
	17	var LDAP_USERS_BASE_DN = process.env.LDAP_USERS_BASE_DN;
	18
	19	if (LDAP_URL && LDAP_USERS_BASE_DN) {
	20	console.log('Enable ldap auth');
	21
a90a633f	22	exports.ldap = passport.authenticate('ldap');
591ad40c JZ	23	} else {
591ad40c JZ	24	exports.ldap = function (req, res, next) {
a90a633f JZ	25	console.log('Disable ldap auth, use developer credentials!');
a90a633f JZ	26
394dca7e JZ	27	if (req.query.username !== 'test') return res.send(401);
394dca7e JZ	28	if (req.query.password !== 'test') return res.send(401);
a90a633f	29
591ad40c JZ	30	next();
	31	};
	32	}
	33
	34	var opts = {
	35	server: {
	36	url: LDAP_URL,
	37	},
	38	base: LDAP_USERS_BASE_DN,
	39	search: {
b99589fc	40	filter: '(\|(username={{username}})(mail={{username}}))',
591ad40c JZ	41	attributes: ['displayname', 'username', 'mail', 'uid'],
	42	scope: 'sub'
	43	},
a90a633f	44	uidTag: 'cn',
591ad40c JZ	45	usernameField: 'username',
	46	passwordField: 'password',
	47	};
	48
	49	passport.use(new LdapStrategy(opts, function (profile, done) {
591ad40c JZ	50	done(null, profile);
591ad40c JZ	51	}));