datasquirel/users/social/google-auth.js

226 lines
7.1 KiB
JavaScript
Raw Normal View History

2023-09-21 14:00:04 +00:00
// @ts-check
const http = require("http");
const fs = require("fs");
const path = require("path");
2024-12-06 10:31:24 +00:00
const encrypt = require("../../package-shared/functions/dsql/encrypt");
2024-11-13 13:13:10 +00:00
const grabHostNames = require("../../package-shared/utils/grab-host-names");
2024-12-06 10:31:24 +00:00
const apiGoogleLogin = require("../../package-shared/functions/api/users/social/api-google-login");
2024-12-08 08:58:57 +00:00
const getAuthCookieNames = require("../../package-shared/functions/backend/cookies/get-auth-cookie-names");
const {
writeAuthFile,
} = require("../../package-shared/functions/backend/auth/write-auth-files");
2023-09-21 14:00:04 +00:00
/**
* @typedef {object | null} FunctionReturn
* @property {boolean} success - Did the function run successfully?
* @property {import("../../types/user.td").DATASQUIREL_LoggedInUser | null} user - Returned User
* @property {number} [dsqlUserId] - Dsql User Id
* @property {string} [msg] - Response message
*/
/**
* SERVER FUNCTION: Login with google Function
* ==============================================================================
*
* @async
*
* @param {object} params - main params object
2024-12-08 08:58:57 +00:00
* @param {string} [params.key] - API full access key
2023-09-21 14:00:04 +00:00
* @param {string} params.token - Google access token gotten from the client side
2024-12-10 18:44:11 +00:00
* @param {string} [params.database] - Target database name
2024-12-08 08:58:57 +00:00
* @param {http.ServerResponse} [params.response] - HTTPS response object
* @param {string} [params.encryptionKey] - Encryption key
* @param {string} [params.encryptionSalt] - Encryption salt
* @param {string[]} [params.additionalFields] - Additional Fields to be added to the user object
2024-12-10 18:44:11 +00:00
* @param {string | number} [params.apiUserID] - API user ID
2024-12-06 10:31:24 +00:00
* @param {boolean} [params.useLocal] - Whether to use a remote database instead of API
2023-09-21 14:00:04 +00:00
*
* @returns { Promise<FunctionReturn> }
*/
2023-09-21 16:51:08 +00:00
async function googleAuth({
key,
token,
database,
response,
encryptionKey,
encryptionSalt,
additionalFields,
2024-12-06 10:31:24 +00:00
apiUserID,
useLocal,
2023-09-21 16:51:08 +00:00
}) {
const grabedHostNames = grabHostNames();
const { host, port, scheme } = grabedHostNames;
2023-09-21 16:51:08 +00:00
2024-12-08 08:58:57 +00:00
const finalEncryptionKey =
encryptionKey || process.env.DSQL_ENCRYPTION_PASSWORD;
const finalEncryptionSalt =
encryptionSalt || process.env.DSQL_ENCRYPTION_SALT;
2023-09-21 14:00:04 +00:00
2024-12-08 08:58:57 +00:00
if (!finalEncryptionKey?.match(/.{8,}/)) {
console.log("Encryption key is invalid");
2023-09-21 14:00:04 +00:00
return {
success: false,
2024-12-08 08:58:57 +00:00
payload: null,
msg: "Encryption key is invalid",
2023-09-21 14:00:04 +00:00
};
}
2024-12-08 08:58:57 +00:00
if (!finalEncryptionSalt?.match(/.{8,}/)) {
console.log("Encryption salt is invalid");
2023-09-21 14:00:04 +00:00
return {
success: false,
2024-12-08 08:58:57 +00:00
payload: null,
msg: "Encryption salt is invalid",
2023-09-21 14:00:04 +00:00
};
}
2024-12-08 08:58:57 +00:00
/**
* Check inputs
*
* @description Check inputs
*/
2023-09-21 14:00:04 +00:00
2024-12-08 08:58:57 +00:00
if (!token || token?.match(/ /)) {
2023-09-21 14:00:04 +00:00
return {
success: false,
user: null,
2024-12-08 08:58:57 +00:00
msg: "Please enter Google Access Token",
2023-09-21 14:00:04 +00:00
};
}
2024-12-08 08:58:57 +00:00
if (!database || database?.match(/ /)) {
2023-09-21 14:00:04 +00:00
return {
success: false,
user: null,
2024-12-08 08:58:57 +00:00
msg: "Please provide database slug name you want to access",
2023-09-21 14:00:04 +00:00
};
}
/**
* Initialize HTTP response variable
*/
2024-12-08 08:58:57 +00:00
/** @type {import("../../package-shared/types").APILoginFunctionReturn} */
let httpResponse = {
success: false,
};
2023-09-21 14:00:04 +00:00
/**
* Check for local DB settings
*
* @description Look for local db settings in `.env` file and by pass the http request if available
*/
2024-12-09 11:45:39 +00:00
const { DSQL_DB_HOST, DSQL_DB_USERNAME, DSQL_DB_PASSWORD, DSQL_DB_NAME } =
process.env;
2023-09-21 16:51:08 +00:00
if (
2024-12-09 11:45:39 +00:00
DSQL_DB_HOST?.match(/./) &&
DSQL_DB_USERNAME?.match(/./) &&
DSQL_DB_PASSWORD?.match(/./) &&
2024-12-06 10:31:24 +00:00
DSQL_DB_NAME?.match(/./) &&
useLocal
2023-09-21 16:51:08 +00:00
) {
2024-12-10 18:44:11 +00:00
httpResponse = await apiGoogleLogin({
token,
additionalFields,
database: DSQL_DB_NAME,
});
2023-09-21 14:00:04 +00:00
} else {
/**
* Make https request
*
* @description make a request to datasquirel.com
2024-10-19 16:45:42 +00:00
* @type {{ success: boolean, user: import("../../package-shared/types").DATASQUIREL_LoggedInUser | null, msg?: string, dsqlUserId?: number } | null } - Https response object
2023-09-21 14:00:04 +00:00
*/
httpResponse = await new Promise((resolve, reject) => {
const reqPayload = JSON.stringify({
token,
database,
additionalFields,
});
2024-11-13 13:13:10 +00:00
const httpsRequest = scheme.request(
2023-09-21 14:00:04 +00:00
{
method: "POST",
headers: {
"Content-Type": "application/json",
"Content-Length": Buffer.from(reqPayload).length,
2024-11-15 14:37:53 +00:00
Authorization:
key ||
process.env.DSQL_FULL_ACCESS_API_KEY ||
process.env.DSQL_API_KEY,
2023-09-21 14:00:04 +00:00
},
2024-11-13 13:13:10 +00:00
port,
hostname: host,
path: `/api/user/${
2024-12-10 18:44:11 +00:00
apiUserID || grabedHostNames.user_id
}/google-login`,
2023-09-21 14:00:04 +00:00
},
/**
* Callback Function
*
* @description https request callback
*/
(response) => {
var str = "";
response.on("data", function (chunk) {
str += chunk;
});
response.on("end", function () {
resolve(JSON.parse(str));
});
response.on("error", (err) => {
reject(err);
});
}
);
httpsRequest.write(reqPayload);
httpsRequest.end();
});
}
/**
* Make https request
*
* @description make a request to datasquirel.com
*/
2024-12-08 08:58:57 +00:00
if (httpResponse?.success && httpResponse?.payload) {
2023-09-21 14:00:04 +00:00
let encryptedPayload = encrypt({
2024-12-08 08:58:57 +00:00
data: JSON.stringify(httpResponse.payload),
encryptionKey: finalEncryptionKey,
encryptionSalt: finalEncryptionSalt,
});
const cookieNames = getAuthCookieNames({
database,
userId: apiUserID || process.env.DSQL_API_USER_ID,
2023-09-21 14:00:04 +00:00
});
2024-12-08 08:58:57 +00:00
if (httpResponse.csrf) {
writeAuthFile(
httpResponse.csrf,
JSON.stringify(httpResponse.payload)
);
}
httpResponse["cookieNames"] = cookieNames;
httpResponse["key"] = String(encryptedPayload);
2023-09-21 14:00:04 +00:00
2024-12-08 08:58:57 +00:00
const authKeyName = cookieNames.keyCookieName;
const csrfName = cookieNames.csrfCookieName;
response?.setHeader("Set-Cookie", [
2023-09-21 16:51:08 +00:00
`${authKeyName}=${encryptedPayload};samesite=strict;path=/;HttpOnly=true;Secure=true`,
2024-12-08 08:58:57 +00:00
`${csrfName}=${httpResponse.payload?.csrf_k};samesite=strict;path=/;HttpOnly=true`,
2023-09-21 16:51:08 +00:00
]);
2023-09-21 14:00:04 +00:00
}
return httpResponse;
}
module.exports = googleAuth;