Aaltronav/dougal-software
1
0
Fork 0
mirror of https://gitlab.com/wgp/dougal/software.git synced 2025-12-06 11:57:08 +00:00
Code Issues Packages Projects Releases Activity
Files
2aca34e488576146b7d946a4c5c8749bd9ee0222
dougal-software/lib/www/server/api/middleware/user/login.js
D. Berge 2aca34e488 Read user login info from discrete file. 
`$DOUGAL_ROOT/etc/users.yaml` to be exact.
2020-10-11 18:21:19 +02:00

29 lines
794 B
JavaScript
Raw Blame History

const crypto = require('crypto');
const cfg = require('../../../lib/config');
const jwt = require('../../../lib/jwt');
async function login (req, res, next) {
if (req.body) {
const {user, password} = req.body;
if (user && password) {
const hash = crypto
.pbkdf2Sync(password, 'Dougal'+user, 10712, 48, 'sha512')
.toString('base64');
for (const credentials of cfg._("global.users.login.user") || []) {
if (credentials.name == user && credentials.hash == hash) {
const payload = Object.assign({}, credentials);
delete payload.hash;
jwt.issue(payload, req, res);
res.status(204).send();
next();
return;
}
}
next({status: 401, message: "Unauthorised"});
}
}
next({status: 400, message: "Bad request"});
}
module.exports = login;
Reference in New Issue View Git Blame Copy Permalink