aboutsummaryrefslogtreecommitdiffhomepage
path: root/server/controllers/api/v1/users.js
blob: 1125b9faa90bbdc7b67f528d3ed6bd1b5aefc4a9 (plain) (blame)
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
'use strict'

const config = require('config')
const express = require('express')
const oAuth2 = require('../../../middlewares/oauth2')

const middleware = require('../../../middlewares')
const cacheMiddleware = middleware.cache
const Users = require('../../../models/users')

const router = express.Router()

router.get('/client', cacheMiddleware.cache(false), getAngularClient)
router.post('/token', cacheMiddleware.cache(false), oAuth2.token, success)

// ---------------------------------------------------------------------------

module.exports = router

// ---------------------------------------------------------------------------

function getAngularClient (req, res, next) {
  const server_host = config.get('webserver.host')
  const server_port = config.get('webserver.port')
  let header_host_should_be = server_host
  if (server_port !== 80 && server_port !== 443) {
    header_host_should_be += ':' + server_port
  }

  if (req.get('host') !== header_host_should_be) return res.type('json').status(403).end()

  Users.getFirstClient(function (err, client) {
    if (err) return next(err)
    if (!client) return next(new Error('No client available.'))

    res.json({
      client_id: client._id,
      client_secret: client.clientSecret
    })
  })
}

function success (req, res, next) {
  res.end()
}