strapi/packages/core/admin/middlewares/auth/index.js

'use strict';

module.exports = strapi => ({
  initialize() {
    const passportMiddleware = strapi.admin.services.passport.init();

    strapi.app.use(passportMiddleware);

    strapi.app.use(async (ctx, next) => {
      if (
        ctx.request.header.authorization &&
        ctx.request.header.authorization.split(' ')[0] === 'Bearer'
      ) {
        const token = ctx.request.header.authorization.split(' ')[1];

        const { payload, isValid } = strapi.admin.services.token.decodeJwtToken(token);

        if (isValid) {
          // request is made by an admin
          const admin = await strapi
            .query('strapi::user')
            .findOne({ where: { id: payload.id }, populate: ['roles'] });

          if (!admin || !(admin.isActive === true)) {
            return ctx.forbidden('Invalid credentials');
          }

          ctx.state.admin = admin;
          ctx.state.user = admin;
          ctx.state.userAbility = await strapi.admin.services.permission.engine.generateUserAbility(
            admin
          );
          ctx.state.isAuthenticatedAdmin = true;
          return next();
        }
      }

      return next();
    });
  },
});
Add passportjs and refactor login Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-11 17:09:48 +02:00			`'use strict';`

			`module.exports = strapi => ({`
			`initialize() {`
Provider's connection implementation Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-12-21 17:11:48 +01:00			`const passportMiddleware = strapi.admin.services.passport.init();`
Add passportjs and refactor login Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-11 17:09:48 +02:00
Provider's connection implementation Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-12-21 17:11:48 +01:00			`strapi.app.use(passportMiddleware);`
Use passport standard error handling Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 14:57:24 +02:00
			`strapi.app.use(async (ctx, next) => {`
			`if (`
			`ctx.request.header.authorization &&`
			`ctx.request.header.authorization.split(' ')[0] === 'Bearer'`
			`) {`
			`const token = ctx.request.header.authorization.split(' ')[1];`

Uniformize code with rbac/login Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-05-14 11:06:16 +02:00			`const { payload, isValid } = strapi.admin.services.token.decodeJwtToken(token);`
Use passport standard error handling Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 14:57:24 +02:00
			`if (isValid) {`
			`// request is made by an admin`
Server can start 2021-06-22 17:13:11 +02:00			`const admin = await strapi`
			`.query('strapi::user')`
			`.findOne({ where: { id: payload.id }, populate: ['roles'] });`
Use passport standard error handling Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 14:57:24 +02:00
Add tests Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 20:46:48 +02:00			`if (!admin \|\| !(admin.isActive === true)) {`
Use passport standard error handling Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 14:57:24 +02:00			`return ctx.forbidden('Invalid credentials');`
			`}`

			`ctx.state.admin = admin;`
			`ctx.state.user = admin;`
Add check many permissions route/controller / Add userAbility to the context's state / Add isAuthenticatedAdmin.js Signed-off-by: Convly <jean-sebastien.herbaux@epitech.eu> 2020-06-10 18:04:47 +02:00			`ctx.state.userAbility = await strapi.admin.services.permission.engine.generateUserAbility(`
			`admin`
			`);`
Add /users/me routes Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-18 19:54:43 +02:00			`ctx.state.isAuthenticatedAdmin = true;`
Use passport standard error handling Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-12 14:57:24 +02:00			`return next();`
			`}`
			`}`

			`return next();`
			`});`
Add passportjs and refactor login Signed-off-by: Alexandre Bodin <bodin.alex@gmail.com> 2020-05-11 17:09:48 +02:00			`},`
			`});`