tracman-server/config/passport.js

'use strict';

const
	LocalStrategy = require('passport-local').Strategy,
	GoogleStrategy = require('passport-google-oauth20').Strategy,
	FacebookStrategy = require('passport-facebook').Strategy,
	TwitterStrategy = require('passport-twitter').Strategy,
	GoogleTokenStrategy = require('passport-google-id-token'),
	FacebookTokenStrategy = require('passport-facebook-token'),
	TwitterTokenStrategy = require('passport-twitter-token'),
	debug = require('debug')('tracman-passport'),
	env = require('./env/env.js'),
	mw = require('./middleware.js'),
	User = require('./models.js').user;
	
module.exports = (passport)=>{
	
	// Serialize/deserialize users
	passport.serializeUser((user,done)=>{
		done(null, user.id);
	});
	passport.deserializeUser((id,done)=>{
		User.findById(id, (err,user)=>{
			if(!err){ done(null, user); }
			else { done(err, null); }
		});
	});
	
	// Local
	passport.use('local', new LocalStrategy({
		usernameField: 'email',
		passwordField: 'password',
		passReqToCallback: true
	}, (req,email,password,done)=>{
		debug(`Perfoming local login for ${email}`);
		User.findOne({'email':email})
		.then( (user)=>{
			
			// No user with that email
			if (!user) {
				req.session.next = undefined;
				return done( null, false, req.flash('warning','Incorrect email or password.') );
			}
			
			// User exists
			else {
				
				// Check password
				user.validPassword( password, (err,res)=>{
					if (err){ return done(err); }
					
					// Password incorrect
					if (!res) {
						req.session.next = undefined;
						return done( null, false, req.flash('warning','Incorrect email or password.') );
					}
					
					// Successful login
					else { 
						user.lastLogin = Date.now();
						user.save();
						return done(null,user);
					}
					
				} );
			}
			
		})
		.catch( (err)=>{
			return done(err);
		});
	}
	));
	
	// Social login
	function socialLogin(req, service, profileId, done) {
		debug(`socialLogin() called for ${service} account ${profileId}`);
		let query = {};
		query['auth.'+service] = profileId;
		
		// Intent to log in
		if (!req.user) {
			debug(`Searching for user with query ${query}...`);
			User.findOne(query)
			.then( (user)=>{
				
				// Can't find user
				if (!user){
					
					// Lazy update from old googleId field
					if (service==='google') {
						User.findOne({ 'googleID': parseInt(profileId,10) })
						.then( (user)=>{
							
							// User exists with old schema
							if (user) {
								debug(`User ${user.id} exists with old schema.  Lazily updating...`);
								user.auth.google = profileId;
								user.googleId = undefined;
								user.save()
								.then( ()=>{
									debug(`Lazily updated ${user.id}...`);
									req.session.flashType = 'success';
									req.session.flashMessage = "You have been logged in. ";
									return done(null, user);
								})
								.catch( (err)=>{
									debug(`Failed to save user that exists with old googleId schema!`);
									mw.throwErr(err,req);
									return done(err);
								});
							} 
							
							// No such user
							else {
								debug(`User with ${service} account of ${profileId} not found.`);
								req.flash('warning', `There's no user for that ${service} account. `);
								return done();
							}
							
						})
						.catch ( (err)=>{
							debug(`Failed to search for user with old googleID of ${profileId}. `);
							mw.throwErr(err,req);
							return done(err);
						});
					}
					
					// No googleId either
					else {
						debug(`Couldn't find ${service} user with profileID ${profileId}.`);
						req.flash('warning', `There's no user for that ${service} account. `);
						return done();
					}
				}
				
				// Successfull social login
				else {
					debug(`Found user: ${user.id}; logging in...`);
					req.session.flashType = 'success';
					req.session.flashMessage = "You have been logged in.";
					return done(null, user);
				}
				
			})
			.catch( (err)=>{
				debug(`Failed to find user with query: ${query}`);
				mw.throwErr(err,req);
				return done(err);
			});
		}
		
		// Intent to connect account
		else {
			debug(`Attempting to connect ${service} account to ${req.user.id}...`);
			
			// Check for unique profileId
			debug(`Checking for unique account with query ${query}...`);
			User.findOne(query)
			.then( (existingUser)=>{
				
				// Social account already in use
				if (existingUser) {
					debug(`${service} account already in use with user ${existingUser.id}`);
					req.session.flashType = 'warning';
					req.session.flashMessage = `Another user is already connected to that ${service} account. `;
					return done();
				}
				
				// Connect to account
				else {
					debug(`${service} account (${profileId}) is unique; Connecting to ${req.user.id}...`);
					req.user.auth[service] = profileId;
					req.user.save()
					.then( ()=>{
						debug(`Successfully connected ${service} account to ${req.user.id}`);
						req.session.flashType = 'success';
						req.session.flashMessage = `${mw.capitalize(service)} account connected. `;
						return done(null,req.user);
					} )
					.catch( (err)=>{
						debug(`Failed to connect ${service} account to ${req.user.id}!`);
						return done(err);
					} );
				}
				
			})
			.catch( (err)=>{
				debug(`Failed to check for unique ${service} profileId of ${profileId}!`);
				mw.throwErr(err,req);
				return done(err);
			});
			
		}
		
	}

	// Google
	passport.use('google', new GoogleStrategy({
			clientID: env.googleClientId,
			clientSecret: env.googleClientSecret,
			callbackURL: env.url+'/login/google/cb',
			passReqToCallback: true
		}, (req, accessToken, refreshToken, profile, done)=>{
			socialLogin(req, 'google', profile.id, done);
		}
	)).use('google-token', new GoogleTokenStrategy({
			clientID: env.googleClientId,
			passReqToCallback: true
		}, (req, parsedToken, googleId, done)=>{
			socialLogin(req,'google', googleId, done);
		}
	));
	
	// Facebook
	passport.use('facebook', new FacebookStrategy({
			clientID: env.facebookAppId,
			clientSecret: env.facebookAppSecret,
			callbackURL: env.url+'/login/facebook/cb',
			passReqToCallback: true
		}, (req, accessToken, refreshToken, profile, done)=>{
			socialLogin(req, 'facebook', profile.id, done);
		}
	)).use('facebook-token', new FacebookTokenStrategy({
			clientID: env.facebookAppId,
			clientSecret: env.facebookAppSecret,
			passReqToCallback: true
		}, (req, accessToken, refreshToken, profile, done)=>{
			socialLogin(req,'facebook', profile.id, done);
		}
	));
	
	// Twitter
	passport.use(new TwitterStrategy({
			consumerKey: env.twitterConsumerKey,
			consumerSecret: env.twitterConsumerSecret,
			callbackURL: env.url+'/login/twitter/cb',
			passReqToCallback: true
		}, (req, token, tokenSecret, profile, done)=>{
			socialLogin(req, 'twitter', profile.id, done);
		}
	)).use('twitter-token', new TwitterTokenStrategy({
			consumerKey: env.twitterConsumerKey,
			consumerSecret: env.twitterConsumerSecret,
			passReqToCallback: true
		}, (req, token, tokenSecret, profile, done)=>{
			socialLogin(req,'twitter', profile.id, done);
		}
	));

	return passport;
};
Added login screen 2017-04-01 11:03:31 -06:00			`'use strict';`

Fixed settings form styles 2017-04-09 21:40:08 -06:00			`const`
Added login screen 2017-04-01 11:03:31 -06:00			`LocalStrategy = require('passport-local').Strategy,`
			`GoogleStrategy = require('passport-google-oauth20').Strategy,`
			`FacebookStrategy = require('passport-facebook').Strategy,`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`TwitterStrategy = require('passport-twitter').Strategy,`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`GoogleTokenStrategy = require('passport-google-id-token'),`
			`FacebookTokenStrategy = require('passport-facebook-token'),`
			`TwitterTokenStrategy = require('passport-twitter-token'),`
#85 Switched back to debug 2017-05-08 11:47:53 -06:00			`debug = require('debug')('tracman-passport'),`
Moved environment files to own folder 2017-04-26 21:13:14 -06:00			`env = require('./env/env.js'),`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`mw = require('./middleware.js'),`
			`User = require('./models.js').user;`
Added login screen 2017-04-01 11:03:31 -06:00
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`module.exports = (passport)=>{`
Added login screen 2017-04-01 11:03:31 -06:00
			`// Serialize/deserialize users`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`passport.serializeUser((user,done)=>{`
Added login screen 2017-04-01 11:03:31 -06:00			`done(null, user.id);`
			`});`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`passport.deserializeUser((id,done)=>{`
			`User.findById(id, (err,user)=>{`
Added login screen 2017-04-01 11:03:31 -06:00			`if(!err){ done(null, user); }`
			`else { done(err, null); }`
			`});`
			`});`

			`// Local`
			`passport.use('local', new LocalStrategy({`
			`usernameField: 'email',`
			`passwordField: 'password',`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`passReqToCallback: true`
			`}, (req,email,password,done)=>{`
#85 Switched back to debug 2017-05-08 11:47:53 -06:00			debug(`Perfoming local login for ${email}`);
#50 Added many promises 2017-04-20 21:07:35 -06:00			`User.findOne({'email':email})`
			`.then( (user)=>{`
Added login screen 2017-04-01 11:03:31 -06:00
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`// No user with that email`
Added login screen 2017-04-01 11:03:31 -06:00			`if (!user) {`
Fixed login flash and redirects 2017-04-16 19:00:39 -06:00			`req.session.next = undefined;`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`return done( null, false, req.flash('warning','Incorrect email or password.') );`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`}`

			`// User exists`
			`else {`

Added login screen 2017-04-01 11:03:31 -06:00			`// Check password`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`user.validPassword( password, (err,res)=>{`
			`if (err){ return done(err); }`

			`// Password incorrect`
			`if (!res) {`
Fixed login flash and redirects 2017-04-16 19:00:39 -06:00			`req.session.next = undefined;`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`return done( null, false, req.flash('warning','Incorrect email or password.') );`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`}`

			`// Successful login`
			`else {`
Added login screen 2017-04-01 11:03:31 -06:00			`user.lastLogin = Date.now();`
			`user.save();`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`return done(null,user);`
Added login screen 2017-04-01 11:03:31 -06:00			`}`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00
			`} );`
Added login screen 2017-04-01 11:03:31 -06:00			`}`
#50 Added many promises 2017-04-20 21:07:35 -06:00
			`})`
			`.catch( (err)=>{`
			`return done(err);`
			`});`
Added login screen 2017-04-01 11:03:31 -06:00			`}`
			`));`

			`// Social login`
			`function socialLogin(req, service, profileId, done) {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`socialLogin() called for ${service} account ${profileId}`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`let query = {};`
			`query['auth.'+service] = profileId;`
Fixed settings form styles 2017-04-09 21:40:08 -06:00
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`// Intent to log in`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`if (!req.user) {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Searching for user with query ${query}...`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`User.findOne(query)`
			`.then( (user)=>{`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00
			`// Can't find user`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`if (!user){`
Fixed settings form styles 2017-04-09 21:40:08 -06:00
			`// Lazy update from old googleId field`
			`if (service==='google') {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			`User.findOne({ 'googleID': parseInt(profileId,10) })`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`.then( (user)=>{`

			`// User exists with old schema`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`if (user) {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`User ${user.id} exists with old schema. Lazily updating...`);
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`user.auth.google = profileId;`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`user.googleId = undefined;`
			`user.save()`
			`.then( ()=>{`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Lazily updated ${user.id}...`);
#52 Fixed login flash messages 2017-04-19 20:03:45 -06:00			`req.session.flashType = 'success';`
			`req.session.flashMessage = "You have been logged in. ";`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`return done(null, user);`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`})`
			`.catch( (err)=>{`
Added some more debugging 2017-05-19 01:16:52 -06:00			debug(`Failed to save user that exists with old googleId schema!`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`mw.throwErr(err,req);`
			`return done(err);`
			`});`
			`}`

			`// No such user`
			`else {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`User with ${service} account of ${profileId} not found.`);
#86 Fixed flash on failed logins 2017-05-07 00:11:35 -06:00			req.flash('warning', `There's no user for that ${service} account. `);
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`return done();`
			`}`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00
			`})`
			`.catch ( (err)=>{`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Failed to search for user with old googleID of ${profileId}. `);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`mw.throwErr(err,req);`
			`return done(err);`
			`});`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`}`

			`// No googleId either`
			`else {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Couldn't find ${service} user with profileID ${profileId}.`);
#86 Fixed flash on failed logins 2017-05-07 00:11:35 -06:00			req.flash('warning', `There's no user for that ${service} account. `);
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`return done();`
			`}`
			`}`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00
			`// Successfull social login`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`else {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Found user: ${user.id}; logging in...`);
#52 Fixed login flash messages 2017-04-19 20:03:45 -06:00			`req.session.flashType = 'success';`
			`req.session.flashMessage = "You have been logged in.";`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`return done(null, user);`
			`}`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00
			`})`
			`.catch( (err)=>{`
Added some more debugging 2017-05-19 01:16:52 -06:00			debug(`Failed to find user with query: ${query}`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`mw.throwErr(err,req);`
			`return done(err);`
Added login screen 2017-04-01 11:03:31 -06:00			`});`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`}`

#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`// Intent to connect account`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`else {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Attempting to connect ${service} account to ${req.user.id}...`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00
			`// Check for unique profileId`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Checking for unique account with query ${query}...`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`User.findOne(query)`
			`.then( (existingUser)=>{`

			`// Social account already in use`
			`if (existingUser) {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`${service} account already in use with user ${existingUser.id}`);
#52 Fixed login flash messages 2017-04-19 20:03:45 -06:00			`req.session.flashType = 'warning';`
			req.session.flashMessage = `Another user is already connected to that ${service} account. `;
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`return done();`
			`}`

			`// Connect to account`
			`else {`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`${service} account (${profileId}) is unique; Connecting to ${req.user.id}...`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`req.user.auth[service] = profileId;`
			`req.user.save()`
			`.then( ()=>{`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Successfully connected ${service} account to ${req.user.id}`);
#52 Fixed login flash messages 2017-04-19 20:03:45 -06:00			`req.session.flashType = 'success';`
			req.session.flashMessage = `${mw.capitalize(service)} account connected. `;
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`return done(null,req.user);`
			`} )`
			`.catch( (err)=>{`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Failed to connect ${service} account to ${req.user.id}!`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`return done(err);`
			`} );`
			`}`

			`})`
			`.catch( (err)=>{`
Improved debugging for passport 2017-07-14 16:12:06 -06:00			debug(`Failed to check for unique ${service} profileId of ${profileId}!`);
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`mw.throwErr(err,req);`
			`return done(err);`
#52 Fixed login flash messages 2017-04-19 20:03:45 -06:00			`});`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00
Added login screen 2017-04-01 11:03:31 -06:00			`}`
Fixed settings form styles 2017-04-09 21:40:08 -06:00
Added login screen 2017-04-01 11:03:31 -06:00			`}`

			`// Google`
			`passport.use('google', new GoogleStrategy({`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`clientID: env.googleClientId,`
			`clientSecret: env.googleClientSecret,`
			`callbackURL: env.url+'/login/google/cb',`
Added login screen 2017-04-01 11:03:31 -06:00			`passReqToCallback: true`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`}, (req, accessToken, refreshToken, profile, done)=>{`
Added login screen 2017-04-01 11:03:31 -06:00			`socialLogin(req, 'google', profile.id, done);`
			`}`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`)).use('google-token', new GoogleTokenStrategy({`
			`clientID: env.googleClientId,`
			`passReqToCallback: true`
			`}, (req, parsedToken, googleId, done)=>{`
			`socialLogin(req,'google', googleId, done);`
			`}`
Added login screen 2017-04-01 11:03:31 -06:00			`));`

			`// Facebook`
			`passport.use('facebook', new FacebookStrategy({`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`clientID: env.facebookAppId,`
			`clientSecret: env.facebookAppSecret,`
			`callbackURL: env.url+'/login/facebook/cb',`
Added login screen 2017-04-01 11:03:31 -06:00			`passReqToCallback: true`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`}, (req, accessToken, refreshToken, profile, done)=>{`
Added login screen 2017-04-01 11:03:31 -06:00			`socialLogin(req, 'facebook', profile.id, done);`
			`}`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`)).use('facebook-token', new FacebookTokenStrategy({`
			`clientID: env.facebookAppId,`
			`clientSecret: env.facebookAppSecret,`
			`passReqToCallback: true`
			`}, (req, accessToken, refreshToken, profile, done)=>{`
			`socialLogin(req,'facebook', profile.id, done);`
			`}`
Added login screen 2017-04-01 11:03:31 -06:00			`));`

			`// Twitter`
			`passport.use(new TwitterStrategy({`
Fixed settings form styles 2017-04-09 21:40:08 -06:00			`consumerKey: env.twitterConsumerKey,`
			`consumerSecret: env.twitterConsumerSecret,`
			`callbackURL: env.url+'/login/twitter/cb',`
Added login screen 2017-04-01 11:03:31 -06:00			`passReqToCallback: true`
Added account creation, switched to arrow functions 2017-04-13 16:53:18 -06:00			`}, (req, token, tokenSecret, profile, done)=>{`
Added login screen 2017-04-01 11:03:31 -06:00			`socialLogin(req, 'twitter', profile.id, done);`
			`}`
#32 Fixed social logins 2017-04-19 19:37:00 -06:00			`)).use('twitter-token', new TwitterTokenStrategy({`
			`consumerKey: env.twitterConsumerKey,`
			`consumerSecret: env.twitterConsumerSecret,`
			`passReqToCallback: true`
			`}, (req, token, tokenSecret, profile, done)=>{`
			`socialLogin(req,'twitter', profile.id, done);`
			`}`
Added login screen 2017-04-01 11:03:31 -06:00			`));`

			`return passport;`
			`};`