forked from PhlexPlexico/G5API
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathauth.js
149 lines (143 loc) · 5.47 KB
/
auth.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
/* Passport stuff
This is not required to be modified.
All this does is check if the user exists in the database and
if they don't will add them with basic user access.
*/
const config = require("config");
const SteamStrategy = require("passport-steam").Strategy;
const passport = require("passport");
const MockStrategy = require("./mockstrategy").Strategy;
const db = require("../db");
const randString = require("randomstring");
const Utils = require("./utils");
passport.serializeUser((user, done) => {
done(null, user);
});
passport.deserializeUser((obj, done) => {
done(null, obj);
});
function strategyForEnvironment() {
let strategy;
switch (process.env.NODE_ENV) {
case "test":
strategy = new MockStrategy("steam", returnStrategy);
break;
default:
strategy = new SteamStrategy(
{
returnURL:
config.get("server.apiURL") +
"/auth/steam/return",
realm:
config.get("server.apiURL"),
apiKey: config.get("server.steamAPIKey"),
},
returnStrategy
);
}
return strategy;
}
async function returnStrategy(identifier, profile, done) {
process.nextTick(async () => {
profile.identifier = identifier;
try {
let singleConn = await db.getConnection();
let defaultMaps = [];
let isAdmin = 0;
let isSuperAdmin = 0;
let superAdminList = config.get("super_admins.steam_ids").split(",");
let adminList = config.get("admins.steam_ids").split(",");
let sql = "SELECT * FROM user WHERE steam_id = ?";
// If we are an admin, check!
if (superAdminList.indexOf(profile.id.toString()) >= 0) {
isSuperAdmin = 1;
} else if (adminList.indexOf(profile.id.toString()) >= 0) {
isAdmin = 1;
}
let curUser = await singleConn.query(sql, [profile.id]);
if (curUser[0].length < 1) {
//Generate API key in user session to allow posting/getting/etc with
//an account that's not in a session.
let apiKey = randString.generate({
length: 64,
capitalization: "uppercase",
});
sql = "INSERT INTO user SET ?";
let newUser = {
steam_id: profile.id,
name: profile.displayName,
admin: isAdmin,
super_admin: isSuperAdmin,
created_at: new Date().toISOString().slice(0, 19).replace("T", " "),
small_image: profile.photos[0].value,
medium_image: profile.photos[1].value,
large_image: profile.photos[2].value,
api_key: await Utils.encrypt(apiKey),
};
await db.withNewTransaction(singleConn, async () => {
curUser = await singleConn.query(sql, [newUser]);
});
sql = "SELECT * FROM user WHERE steam_id = ?";
curUser = await singleConn.query(sql, [profile.id]);
defaultMaps.push(['de_inferno', 'Inferno', curUser[0][0].id]);
defaultMaps.push(['de_ancient', 'Ancient', curUser[0][0].id]);
defaultMaps.push(['de_mirage', 'Mirage', curUser[0][0].id]);
defaultMaps.push(['de_nuke', 'Nuke', curUser[0][0].id]);
defaultMaps.push(['de_overpass', 'Overpass', curUser[0][0].id]);
defaultMaps.push(['de_dust2', 'Dust II', curUser[0][0].id]);
defaultMaps.push(['de_vertigo', 'Vertigo', curUser[0][0].id]);
sql = "INSERT INTO map_list (map_name, map_display_name, user_id) VALUES ?";
await db.withNewTransaction(singleConn, async () => {
await singleConn.query(sql, [defaultMaps]);
});
} else {
let updateUser = {
small_image: profile.photos[0].value,
medium_image: profile.photos[1].value,
large_image: profile.photos[2].value,
};
sql = "UPDATE user SET ? WHERE steam_id=?";
await db.withNewTransaction(singleConn, async () => {
await singleConn.query(sql, [updateUser, profile.id]);
});
// Insert default maps.
sql = "SELECT * FROM map_list WHERE user_id = ?";
let checkMaps = await singleConn.query(sql, [curUser[0][0].id]);
if (checkMaps[0].length < 1) {
let defaultMaps = [];
defaultMaps.push(['de_inferno', 'Inferno', curUser[0][0].id]);
defaultMaps.push(['de_ancient', 'Ancient', curUser[0][0].id]);
defaultMaps.push(['de_mirage', 'Mirage', curUser[0][0].id]);
defaultMaps.push(['de_nuke', 'Nuke', curUser[0][0].id]);
defaultMaps.push(['de_overpass', 'Overpass', curUser[0][0].id]);
defaultMaps.push(['de_dust2', 'Dust II', curUser[0][0].id]);
defaultMaps.push(['de_vertigo', 'Vertigo', curUser[0][0].id]);
sql = "INSERT INTO map_list (map_name, map_display_name, user_id) VALUES ?";
await db.withNewTransaction(singleConn, async () => {
await singleConn.query(sql, [defaultMaps]);
});
}
}
return done(null, {
steam_id: profile.id,
name: profile.displayName,
super_admin: isSuperAdmin,
admin: isAdmin,
id: curUser[0][0].id,
small_image: profile.photos[0].value,
medium_image: profile.photos[1].value,
large_image: profile.photos[2].value,
api_key: await Utils.decrypt(curUser[0][0].api_key),
});
} catch (err) {
console.log(
"ERRORERRORERRORERRORERRORERRORERRORERROR " +
err +
"ERRORERRORERRORERRORERRORERRORERRORERROR"
);
return done(null, null);
}
});
}
passport.use(strategyForEnvironment());
module.exports = passport;