2018-01-12 15:20:13 +01:00
|
|
|
|
'use strict';
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
* Module dependencies.
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
|
|
|
|
|
// Public node modules.
|
|
|
|
|
|
const _ = require('lodash');
|
2018-01-23 09:30:25 +01:00
|
|
|
|
const request = require('request');
|
2018-01-12 15:20:13 +01:00
|
|
|
|
|
|
|
|
|
|
// Purest strategies.
|
|
|
|
|
|
const Purest = require('purest');
|
|
|
|
|
|
|
|
|
|
|
|
const facebook = new Purest({
|
|
|
|
|
|
provider: 'facebook'
|
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
|
|
const github = new Purest({
|
|
|
|
|
|
provider: 'github',
|
|
|
|
|
|
defaults: {
|
|
|
|
|
|
headers: {
|
|
|
|
|
|
'user-agent': 'strapi'
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
|
|
const google = new Purest({
|
|
|
|
|
|
provider: 'google'
|
|
|
|
|
|
});
|
|
|
|
|
|
|
2018-01-23 09:30:25 +01:00
|
|
|
|
const twitter = new Purest({
|
|
|
|
|
|
provider: 'twitter'
|
2018-01-12 15:20:13 +01:00
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
* Connect thanks to a third-party provider.
|
|
|
|
|
|
*
|
|
|
|
|
|
*
|
|
|
|
|
|
* @param {String} provider
|
|
|
|
|
|
* @param {String} access_token
|
|
|
|
|
|
*
|
|
|
|
|
|
* @return {*}
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
2018-01-23 09:30:25 +01:00
|
|
|
|
exports.connect = (provider, query) => {
|
|
|
|
|
|
const access_token = query.access_token || query.code || query.oauth_token;
|
|
|
|
|
|
|
2018-01-12 15:20:13 +01:00
|
|
|
|
return new Promise((resolve, reject) => {
|
|
|
|
|
|
if (!access_token) {
|
2018-01-15 17:58:11 +01:00
|
|
|
|
reject(null, {
|
2018-01-12 15:20:13 +01:00
|
|
|
|
message: 'No access_token.'
|
|
|
|
|
|
});
|
|
|
|
|
|
} else {
|
|
|
|
|
|
// Get the profile.
|
2018-01-25 08:54:17 +01:00
|
|
|
|
getProfile(provider, query, async (err, profile) => {
|
2018-01-12 15:20:13 +01:00
|
|
|
|
if (err) {
|
|
|
|
|
|
reject(err);
|
|
|
|
|
|
} else {
|
|
|
|
|
|
// We need at least the mail.
|
|
|
|
|
|
if (!profile.email) {
|
2018-01-25 08:54:17 +01:00
|
|
|
|
reject([{
|
2018-01-12 15:20:13 +01:00
|
|
|
|
message: 'Email was not available.'
|
2018-01-25 08:54:17 +01:00
|
|
|
|
}, null]);
|
2018-01-12 15:20:13 +01:00
|
|
|
|
} else {
|
2018-01-25 08:54:17 +01:00
|
|
|
|
try {
|
|
|
|
|
|
const user = await strapi.query('user', 'users-permissions').findOne({email: profile.email});
|
|
|
|
|
|
|
2018-01-15 15:19:59 +01:00
|
|
|
|
if (!strapi.plugins['users-permissions'].config.advanced.allow_register) {
|
2018-01-15 17:58:11 +01:00
|
|
|
|
return resolve([null, [{ messages: [{ id: 'Auth.advanced.allow_register' }] }], 'Register action is actualy not available.']);
|
2018-01-15 15:19:59 +01:00
|
|
|
|
}
|
|
|
|
|
|
|
2018-01-15 17:58:11 +01:00
|
|
|
|
if (user && user.provider === provider) {
|
|
|
|
|
|
return resolve([null, [{ messages: [{ id: 'Auth.form.error.email.taken' }] }], 'Email is already taken.']);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (user && user.provider !== provider && strapi.plugins['users-permissions'].config.advanced.unique_email) {
|
|
|
|
|
|
return resolve([null, [{ messages: [{ id: 'Auth.form.error.email.taken' }] }], 'Email is already taken.']);
|
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
if (!user || _.get(user, 'provider') !== provider) {
|
2018-01-12 15:20:13 +01:00
|
|
|
|
// Create the new user.
|
|
|
|
|
|
const params = _.assign(profile, {
|
|
|
|
|
|
provider: provider
|
|
|
|
|
|
});
|
|
|
|
|
|
|
2018-01-25 08:54:17 +01:00
|
|
|
|
const createdUser = await strapi.query('user', 'users-permissions').create(params);
|
|
|
|
|
|
|
|
|
|
|
|
resolve([createdUser, null]);
|
2018-01-12 15:20:13 +01:00
|
|
|
|
} else {
|
2018-01-15 17:58:11 +01:00
|
|
|
|
resolve([user, null]);
|
2018-01-12 15:20:13 +01:00
|
|
|
|
}
|
2018-01-25 08:54:17 +01:00
|
|
|
|
} catch (err) {
|
2018-01-15 17:58:11 +01:00
|
|
|
|
reject([null, err]);
|
2018-01-25 08:54:17 +01:00
|
|
|
|
}
|
2018-01-12 15:20:13 +01:00
|
|
|
|
}
|
|
|
|
|
|
}
|
|
|
|
|
|
});
|
|
|
|
|
|
}
|
|
|
|
|
|
});
|
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
|
|
/**
|
|
|
|
|
|
* Helper to get profiles
|
|
|
|
|
|
*
|
|
|
|
|
|
* @param {String} provider
|
|
|
|
|
|
* @param {Function} callback
|
|
|
|
|
|
*/
|
|
|
|
|
|
|
2018-01-23 09:30:25 +01:00
|
|
|
|
const getProfile = (provider, query, callback) => {
|
|
|
|
|
|
const access_token = query.access_token || query.code || query.oauth_token;
|
|
|
|
|
|
|
2018-01-12 15:20:13 +01:00
|
|
|
|
switch (provider) {
|
|
|
|
|
|
case 'facebook':
|
|
|
|
|
|
facebook.query().get('me?fields=name,email').auth(access_token).request((err, res, body) => {
|
|
|
|
|
|
if (err) {
|
|
|
|
|
|
callback(err);
|
|
|
|
|
|
} else {
|
|
|
|
|
|
callback(null, {
|
|
|
|
|
|
username: body.name,
|
|
|
|
|
|
email: body.email
|
|
|
|
|
|
});
|
|
|
|
|
|
}
|
|
|
|
|
|
});
|
|
|
|
|
|
break;
|
|
|
|
|
|
case 'google':
|
|
|
|
|
|
google.query('plus').get('people/me').auth(access_token).request((err, res, body) => {
|
|
|
|
|
|
if (err) {
|
|
|
|
|
|
callback(err);
|
|
|
|
|
|
} else {
|
|
|
|
|
|
callback(null, {
|
|
|
|
|
|
username: body.displayName,
|
|
|
|
|
|
email: body.emails[0].value
|
|
|
|
|
|
});
|
|
|
|
|
|
}
|
|
|
|
|
|
});
|
|
|
|
|
|
break;
|
|
|
|
|
|
case 'github':
|
2018-01-23 09:30:25 +01:00
|
|
|
|
request.post({
|
|
|
|
|
|
url: 'https://github.com/login/oauth/access_token',
|
|
|
|
|
|
form: {
|
|
|
|
|
|
client_id: strapi.plugins['users-permissions'].config.grant.github.key,
|
|
|
|
|
|
client_secret: strapi.plugins['users-permissions'].config.grant.github.secret,
|
|
|
|
|
|
code: access_token
|
2018-01-12 15:20:13 +01:00
|
|
|
|
}
|
2018-01-23 09:30:25 +01:00
|
|
|
|
}, (err, res, body) => {
|
|
|
|
|
|
github.query().get('user').auth(body.split('&')[0].split('=')[1]).request((err, res, body) => {
|
|
|
|
|
|
if (err) {
|
|
|
|
|
|
callback(err);
|
|
|
|
|
|
} else {
|
|
|
|
|
|
callback(null, {
|
|
|
|
|
|
username: body.login,
|
|
|
|
|
|
email: body.email
|
|
|
|
|
|
});
|
|
|
|
|
|
}
|
|
|
|
|
|
});
|
2018-01-12 15:20:13 +01:00
|
|
|
|
});
|
|
|
|
|
|
break;
|
2018-01-23 09:30:25 +01:00
|
|
|
|
case 'twitter':
|
|
|
|
|
|
twitter.query().get('account/verify_credentials').auth(access_token, query.access_secret).qs({screen_name: query['raw[screen_name]']}).qs({include_email: 'true'}).request((err, res, body) => {
|
2018-01-12 15:20:13 +01:00
|
|
|
|
if (err) {
|
|
|
|
|
|
callback(err);
|
|
|
|
|
|
} else {
|
|
|
|
|
|
callback(null, {
|
2018-01-23 09:30:25 +01:00
|
|
|
|
username: body.screen_name,
|
|
|
|
|
|
email: body.email
|
2018-01-12 15:20:13 +01:00
|
|
|
|
});
|
|
|
|
|
|
}
|
|
|
|
|
|
});
|
|
|
|
|
|
break;
|
|
|
|
|
|
default:
|
|
|
|
|
|
callback({
|
|
|
|
|
|
message: 'Unknown provider.'
|
|
|
|
|
|
});
|
|
|
|
|
|
break;
|
|
|
|
|
|
}
|
|
|
|
|
|
}
|
