|
|
|
|
import { Request, Response, NextFunction, Router } from "express"
|
V1.1.0 (#24)
## Update Info
🍆 **DICK** v1.1.0 🍆
Our number is getting bigger! Though, I hear size is not what matters
but how you use it. So, I am happy to introduce you to a bunch of new
stuff within the front end!
🔀 **UPDATING**
Updating your instance should be easy, unless you already edited the
code base, at that point your on your own.
If you have a direct clone of the master of the current 1.0.2(old
master) branch, then all you need to do is
1. Browse to your DICK folder
2. Run `git pull` to pull new changes
3. Run `npm i` to install new dependancies
4. Delete the `dist` folder
5. Start DICK using `npm start`
6. Enjoy
> **Note**
> If you load your instance and styling seems wrong, please clear your
browsers cache, and reload the page.
> **Note**
> The first user to log into your DICK WebUI will be marked as the
instance admin. You can change which users are admin by editing the user
database file located at `/src/database/users.json`. This file will only
appear once you've started your instance for the first time.
✏️ **CHANGELOG**
```diff
ADDITIONS
+ Admin Dashboard
> This page will be where system administrators can view their syatem settings and stats!
+ Database
> Added DICK database, inside JSON files with management utils.
+ Added new app settings page to Admin Dashboard
> This will allow administrators to customize their instance on the fly without having to edit the codebase. White labeling!
+ Added user list to Admin Dashboard
> This allows administrators to view which users are registered in their ASS currently, and their roles set. You can also create new users from this page. (There are a lot of hidden divs in this page so imstance admins can add extra code to dick to enable stuff like deletion of users)
+ Registrations
> Administrators can toggle registrations into their ASS from their DICK UI via the /register page!
+ Captcha
> By default, when a user gets login information wrong they will be forwarded to a Rick Roll. Now you can add a hCaptcha site key to DICK to enable hCaptcha for your login and register public pages!
+ Added a "default profile picture"
> Every users default profile picture. This is planned to be able to be set per user in the future, so users can pick their own seperate from the default.
REMOVALS
- Removeed STAFF_IDs from codebase.
> This means you can remove this CONSTANT from your instance CONSTANTS file, please see the repo's constants example file to see if yours matches it.
```
```fix
CHANGES
= Large codebase cleanup
= Seperated js for components into their own files based on job
= Redid some naming for tailwind colour theme classes to provide proper theming from the tailwind config file
= Cleaned up a lot of the utils
= Added embed gen page as a hidden extra for devs to add themselves in their own time if they wish (please PR if you achieve this 🤘)
= Fixed the flash message warning colours to actually be red or green depending on error/success
```
## Issues Resolved / Fixes In This Release
Resolves #17 , Resolves #14 , Resolves #10 , Resolves #7
2 years ago
|
|
|
import { authCheck, checkCaptcha } from "../utils/middleware"
|
|
|
|
|
import { checkIfUserExistInASS, checkIfUserExistInDICK, createUserInASS, createUserInDICK } from "../utils/database"
|
|
|
|
|
|
|
|
|
|
const { passport } = require("../utils/passport")
|
|
|
|
|
|
|
|
|
|
export const authRoutes = (app: Router) => {
|
|
|
|
|
// If user is already logged in, send the profile response,
|
|
|
|
|
// Otherwise, send a 401 response that the user is not authenticated
|
|
|
|
|
// AuthCheck before navigating to home page
|
|
|
|
|
app.get("/auth/check", authCheck, (req: Request, res: Response) => {
|
|
|
|
|
res.status(200).json({
|
|
|
|
|
authenticated: true,
|
|
|
|
|
message: "user successfully authenticated",
|
|
|
|
|
user: req.user,
|
|
|
|
|
cookies: req.cookies,
|
|
|
|
|
})
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
// When login is successful, retrieve user info
|
|
|
|
|
app.get("/auth/login/success", (req: Request, res: Response) => {
|
|
|
|
|
if (req.user) {
|
|
|
|
|
res.json({
|
|
|
|
|
success: true,
|
|
|
|
|
message: "user has successfully authenticated",
|
|
|
|
|
user: req.user,
|
|
|
|
|
cookies: req.cookies,
|
|
|
|
|
})
|
|
|
|
|
}
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
// When login failed, send failed msg
|
|
|
|
|
app.get("/auth/login/failed", (req: Request, res: Response) => {
|
|
|
|
|
res.status(401).json({
|
|
|
|
|
success: false,
|
|
|
|
|
message: "Username or password is incorrect.",
|
|
|
|
|
})
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
app.get("/auth/logout", (req: Request, res: Response) => {
|
|
|
|
|
req.logout({ keepSessionInfo: false }, null)
|
|
|
|
|
req.flash('success_alert_message', 'You have been succesfully logged out')
|
|
|
|
|
return res.redirect("/login")
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
// Auth with local passport, send them to ricky boy to prevent brute forcing 'cause Im too lazy to add proper captcha rn
|
|
|
|
|
app.post(
|
|
|
|
|
"/auth/login",
|
V1.1.0 (#24)
## Update Info
🍆 **DICK** v1.1.0 🍆
Our number is getting bigger! Though, I hear size is not what matters
but how you use it. So, I am happy to introduce you to a bunch of new
stuff within the front end!
🔀 **UPDATING**
Updating your instance should be easy, unless you already edited the
code base, at that point your on your own.
If you have a direct clone of the master of the current 1.0.2(old
master) branch, then all you need to do is
1. Browse to your DICK folder
2. Run `git pull` to pull new changes
3. Run `npm i` to install new dependancies
4. Delete the `dist` folder
5. Start DICK using `npm start`
6. Enjoy
> **Note**
> If you load your instance and styling seems wrong, please clear your
browsers cache, and reload the page.
> **Note**
> The first user to log into your DICK WebUI will be marked as the
instance admin. You can change which users are admin by editing the user
database file located at `/src/database/users.json`. This file will only
appear once you've started your instance for the first time.
✏️ **CHANGELOG**
```diff
ADDITIONS
+ Admin Dashboard
> This page will be where system administrators can view their syatem settings and stats!
+ Database
> Added DICK database, inside JSON files with management utils.
+ Added new app settings page to Admin Dashboard
> This will allow administrators to customize their instance on the fly without having to edit the codebase. White labeling!
+ Added user list to Admin Dashboard
> This allows administrators to view which users are registered in their ASS currently, and their roles set. You can also create new users from this page. (There are a lot of hidden divs in this page so imstance admins can add extra code to dick to enable stuff like deletion of users)
+ Registrations
> Administrators can toggle registrations into their ASS from their DICK UI via the /register page!
+ Captcha
> By default, when a user gets login information wrong they will be forwarded to a Rick Roll. Now you can add a hCaptcha site key to DICK to enable hCaptcha for your login and register public pages!
+ Added a "default profile picture"
> Every users default profile picture. This is planned to be able to be set per user in the future, so users can pick their own seperate from the default.
REMOVALS
- Removeed STAFF_IDs from codebase.
> This means you can remove this CONSTANT from your instance CONSTANTS file, please see the repo's constants example file to see if yours matches it.
```
```fix
CHANGES
= Large codebase cleanup
= Seperated js for components into their own files based on job
= Redid some naming for tailwind colour theme classes to provide proper theming from the tailwind config file
= Cleaned up a lot of the utils
= Added embed gen page as a hidden extra for devs to add themselves in their own time if they wish (please PR if you achieve this 🤘)
= Fixed the flash message warning colours to actually be red or green depending on error/success
```
## Issues Resolved / Fixes In This Release
Resolves #17 , Resolves #14 , Resolves #10 , Resolves #7
2 years ago
|
|
|
checkCaptcha,
|
|
|
|
|
passport.authenticate("local", {
|
|
|
|
|
successRedirect: "/",
|
|
|
|
|
failureRedirect: "https://www.youtube.com/watch?v=dQw4w9WgXcQ",
|
|
|
|
|
failureFlash: true
|
|
|
|
|
}),
|
V1.1.0 (#24)
## Update Info
🍆 **DICK** v1.1.0 🍆
Our number is getting bigger! Though, I hear size is not what matters
but how you use it. So, I am happy to introduce you to a bunch of new
stuff within the front end!
🔀 **UPDATING**
Updating your instance should be easy, unless you already edited the
code base, at that point your on your own.
If you have a direct clone of the master of the current 1.0.2(old
master) branch, then all you need to do is
1. Browse to your DICK folder
2. Run `git pull` to pull new changes
3. Run `npm i` to install new dependancies
4. Delete the `dist` folder
5. Start DICK using `npm start`
6. Enjoy
> **Note**
> If you load your instance and styling seems wrong, please clear your
browsers cache, and reload the page.
> **Note**
> The first user to log into your DICK WebUI will be marked as the
instance admin. You can change which users are admin by editing the user
database file located at `/src/database/users.json`. This file will only
appear once you've started your instance for the first time.
✏️ **CHANGELOG**
```diff
ADDITIONS
+ Admin Dashboard
> This page will be where system administrators can view their syatem settings and stats!
+ Database
> Added DICK database, inside JSON files with management utils.
+ Added new app settings page to Admin Dashboard
> This will allow administrators to customize their instance on the fly without having to edit the codebase. White labeling!
+ Added user list to Admin Dashboard
> This allows administrators to view which users are registered in their ASS currently, and their roles set. You can also create new users from this page. (There are a lot of hidden divs in this page so imstance admins can add extra code to dick to enable stuff like deletion of users)
+ Registrations
> Administrators can toggle registrations into their ASS from their DICK UI via the /register page!
+ Captcha
> By default, when a user gets login information wrong they will be forwarded to a Rick Roll. Now you can add a hCaptcha site key to DICK to enable hCaptcha for your login and register public pages!
+ Added a "default profile picture"
> Every users default profile picture. This is planned to be able to be set per user in the future, so users can pick their own seperate from the default.
REMOVALS
- Removeed STAFF_IDs from codebase.
> This means you can remove this CONSTANT from your instance CONSTANTS file, please see the repo's constants example file to see if yours matches it.
```
```fix
CHANGES
= Large codebase cleanup
= Seperated js for components into their own files based on job
= Redid some naming for tailwind colour theme classes to provide proper theming from the tailwind config file
= Cleaned up a lot of the utils
= Added embed gen page as a hidden extra for devs to add themselves in their own time if they wish (please PR if you achieve this 🤘)
= Fixed the flash message warning colours to actually be red or green depending on error/success
```
## Issues Resolved / Fixes In This Release
Resolves #17 , Resolves #14 , Resolves #10 , Resolves #7
2 years ago
|
|
|
(next: NextFunction) => {
|
|
|
|
|
next()
|
|
|
|
|
}
|
|
|
|
|
)
|
|
|
|
|
|
|
|
|
|
// Redirect to home page after successfully login
|
|
|
|
|
app.get(
|
|
|
|
|
"/auth/callback",
|
|
|
|
|
passport.authenticate("local"),
|
|
|
|
|
(req: Request, res: Response) => {
|
|
|
|
|
if (req.user) {
|
|
|
|
|
return res.redirect("/")
|
|
|
|
|
}
|
|
|
|
|
return res.redirect("/login")
|
|
|
|
|
}
|
|
|
|
|
)
|
V1.1.0 (#24)
## Update Info
🍆 **DICK** v1.1.0 🍆
Our number is getting bigger! Though, I hear size is not what matters
but how you use it. So, I am happy to introduce you to a bunch of new
stuff within the front end!
🔀 **UPDATING**
Updating your instance should be easy, unless you already edited the
code base, at that point your on your own.
If you have a direct clone of the master of the current 1.0.2(old
master) branch, then all you need to do is
1. Browse to your DICK folder
2. Run `git pull` to pull new changes
3. Run `npm i` to install new dependancies
4. Delete the `dist` folder
5. Start DICK using `npm start`
6. Enjoy
> **Note**
> If you load your instance and styling seems wrong, please clear your
browsers cache, and reload the page.
> **Note**
> The first user to log into your DICK WebUI will be marked as the
instance admin. You can change which users are admin by editing the user
database file located at `/src/database/users.json`. This file will only
appear once you've started your instance for the first time.
✏️ **CHANGELOG**
```diff
ADDITIONS
+ Admin Dashboard
> This page will be where system administrators can view their syatem settings and stats!
+ Database
> Added DICK database, inside JSON files with management utils.
+ Added new app settings page to Admin Dashboard
> This will allow administrators to customize their instance on the fly without having to edit the codebase. White labeling!
+ Added user list to Admin Dashboard
> This allows administrators to view which users are registered in their ASS currently, and their roles set. You can also create new users from this page. (There are a lot of hidden divs in this page so imstance admins can add extra code to dick to enable stuff like deletion of users)
+ Registrations
> Administrators can toggle registrations into their ASS from their DICK UI via the /register page!
+ Captcha
> By default, when a user gets login information wrong they will be forwarded to a Rick Roll. Now you can add a hCaptcha site key to DICK to enable hCaptcha for your login and register public pages!
+ Added a "default profile picture"
> Every users default profile picture. This is planned to be able to be set per user in the future, so users can pick their own seperate from the default.
REMOVALS
- Removeed STAFF_IDs from codebase.
> This means you can remove this CONSTANT from your instance CONSTANTS file, please see the repo's constants example file to see if yours matches it.
```
```fix
CHANGES
= Large codebase cleanup
= Seperated js for components into their own files based on job
= Redid some naming for tailwind colour theme classes to provide proper theming from the tailwind config file
= Cleaned up a lot of the utils
= Added embed gen page as a hidden extra for devs to add themselves in their own time if they wish (please PR if you achieve this 🤘)
= Fixed the flash message warning colours to actually be red or green depending on error/success
```
## Issues Resolved / Fixes In This Release
Resolves #17 , Resolves #14 , Resolves #10 , Resolves #7
2 years ago
|
|
|
|
|
|
|
|
// Register page post request on button submit
|
|
|
|
|
app.post('/auth/register', checkCaptcha, async (req, res) => {
|
|
|
|
|
// Check if the form is filled our properly
|
|
|
|
|
if (!req.body.username) {
|
|
|
|
|
req.flash('error_message', 'You did not include a username!')
|
|
|
|
|
return res.redirect("/register")
|
|
|
|
|
}
|
|
|
|
|
if (!req.body.password) {
|
|
|
|
|
req.flash('error_message', 'You did not include a password!')
|
|
|
|
|
return res.redirect("/register")
|
|
|
|
|
}
|
|
|
|
|
if (req.body.username > 20) {
|
|
|
|
|
req.flash('error_messge', 'Username can not be more than 20 characters!')
|
|
|
|
|
return res.redirect("/register")
|
|
|
|
|
}
|
|
|
|
|
if (req.body.password < 5) {
|
|
|
|
|
req.flash('error_messge', 'Secret key can not be less than 5 characters!')
|
|
|
|
|
return res.redirect("/register")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Check if user exists in ass or dick, if it does then we throw error
|
|
|
|
|
if (await checkIfUserExistInASS(req.body.username, req.body.password) || await checkIfUserExistInDICK(req.body.username)) {
|
|
|
|
|
req.flash('error_message', 'User already exists!')
|
|
|
|
|
return res.redirect("/register")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// Create the user
|
|
|
|
|
await createUserInASS(req.body.username, req.body.password)
|
|
|
|
|
await createUserInDICK(req.body.username)
|
|
|
|
|
|
|
|
|
|
// Redirect them to the login screen
|
|
|
|
|
req.flash('success_alert_message', `You have sucesfully created a user with the name ${req.body.username}. You can now log in.`)
|
|
|
|
|
return res.redirect("/login")
|
|
|
|
|
})
|
|
|
|
|
|
|
|
|
|
}
|
