add possibility to not use auth

Author: CodeShellDev

src/auth.js

@@ -41,9 +41,7 @@ async function fetchUserInfo(accessToken) {
 	}
 }
 
-function Init() {
-	redirectURL = new URL(ENV.redirectURL)
-
+function registerOauth() {
 	passport.use(
 		new OAuth2Strategy(
 			{
@@ -83,65 +81,9 @@ function Init() {
 	passport.serializeUser((user, done) => done(null, user))
 	passport.deserializeUser((user, done) => done(null, user))
 
-	router.use(
-		session({
-			store: new RedisStore({ client: redisClient }),
-			secret: ENV.sessionKey,
-			resave: false,
-			saveUninitialized: false,
-			cookie: {
-				domain: redirectURL.hostname,
-				secure: true,
-				sameSite: "lax",
-				maxAge: 1000 * 60 * 60,
-			},
-		})
-	)
-
 	router.use(passport.initialize())
 	router.use(passport.session())
 
-	router.get("/", async (req, res) => {
-		if (req.query.session_id) {
-			res.cookie("session_id", req.query.session_id, {
-				domain: redirectURL.hostname,
-				httpOnly: true,
-				secure: true,
-				sameSite: "lax",
-				maxAge: 1000 * 60 * 60,
-			})
-		}
-
-		if (req.hostname !== redirectURL.hostname) {
-			const originalHost = req.headers["x-forwarded-host"] || req.get("host")
-			const originalProto = req.headers["x-forwarded-proto"] || req.protocol
-			const originalUri = req.headers["x-forwarded-uri"] || req.originalUrl
-
-			const originalUrl = `${originalProto}://${originalHost}${originalUri}`
-
-			const sessionID = uuidv4()
-
-			await WriteToCache(`service=${sessionID}`, originalUrl)
-
-			return res.redirect(`${redirectURL.origin}/?session_id=${sessionID}`)
-		}
-
-		if (!req.isAuthenticated()) {
-			return res.redirect("/auth")
-		}
-
-		const serviceUrl = await GetFromCache(`service=${req.query.session_id}`)
-
-		res.render("home", {
-			user: {
-				name: req.user.username,
-				locale: req.user.locale,
-				email: req.user.email,
-			},
-			serviceUrl: serviceUrl,
-		})
-	})
-
 	router.get("/auth", passport.authenticate("oauth2"))
 
 	router.get("/auth/callback", passport.authenticate("oauth2"), (req, res) =>
@@ -157,8 +99,52 @@ function Init() {
 	})
 }
 
+function registerFakeAuth() {
+	router.get("/auth", (req, res) => {
+		if (!req.session.user) {
+			req.session.user = {
+				username: "user",
+				email: "",
+				locale: "",
+				accessToken: null,
+			}
+		}
+
+		req.user = req.session.user
+
+		req.isAuthenticated = () => true
+	})
+
+	router.get("/logout", (req, res) => {
+		if (!req.isAuthenticated()) return
+
+		req.session.destroy()
+	})
+}
+
 export function Router() {
-	Init()
+	redirectURL = new URL(ENV.redirectURL)
+
+	router.use(
+		session({
+			store: new RedisStore({ client: redisClient }),
+			secret: ENV.sessionKey,
+			resave: false,
+			saveUninitialized: false,
+			cookie: {
+				domain: redirectURL.hostname,
+				secure: true,
+				sameSite: "lax",
+				maxAge: 1000 * 60 * 60,
+			},
+		})
+	)
+
+	if (ENV.useOauth) {
+		registerOauth()
+	} else {
+		registerFakeAuth()
+	}
 
 	return router
 }

src/env.js

@@ -6,7 +6,9 @@ export const ENV = {
 	configPath: "/app/config/mapping.json",
 	port: "6789",
 	logLevel: "info",
+
 	exposeLogs: true,
+	useOauth: true,
 
 	redisHost: "redis",
 	redisPort: "6379",
@@ -51,7 +53,11 @@ export function Load() {
 
 	ENV.woldQueryPattern = process.env.WOLD_QUERY_PATTERN || ""
 
-	ENV.exposeLogs = process.env.EXPOSE_LOGS || ENV.exposeLogs
+	const exposeLogs = process.env.EXPOSE_LOGS
+
+	if (exposeLogs) {
+		ENV.exposeLogs = exposeLogs.trim().toLowerCase() == "true"
+	}
 
 	ENV.wolURL = process.env.WOL_URL || ""
 
@@ -68,37 +74,45 @@ export function Load() {
 		logger.fatal("No session key provided")
 	}
 
-	ENV.authorizationURL = process.env.AUTHORIZATION_URL || ""
-	ENV.resourceURL = process.env.RESOURCE_URL || ""
-	ENV.logoutURL = process.env.LOGOUT_URL || ""
-	ENV.tokenURL = process.env.TOKEN_URL || ""
-	ENV.redirectURL = process.env.REDIRECT_URL || ""
+	const useOauth = process.env.USE_OAUTH
 
-	if (!ENV.authorizationURL) {
-		logger.fatal("No authorization URL set")
-	}
-	if (!ENV.resourceURL) {
-		logger.fatal("No resource URL set")
-	}
-	if (!ENV.logoutURL) {
-		logger.fatal("No logout URL set")
-	}
-	if (!ENV.tokenURL) {
-		logger.fatal("No token URL set")
-	}
-	if (!ENV.redirectURL) {
-		logger.fatal("No redirect URL set")
+	if (useOauth) {
+		ENV.useOauth = useOauth.trim().toLowerCase() == "true"
 	}
 
-	ENV.clientID = process.env.CLIENT_ID || ""
-	ENV.clientSecret = process.env.CLIENT_SECRET || ""
-	ENV.scope = process.env.SCOPE || ENV.scope
-
-	if (!ENV.clientID) {
-		logger.fatal("No client id provided")
-	}
-	if (!ENV.clientSecret) {
-		logger.fatal("No client secret provided")
+	if (ENV.useOauth) {
+		ENV.authorizationURL = process.env.AUTHORIZATION_URL || ""
+		ENV.resourceURL = process.env.RESOURCE_URL || ""
+		ENV.logoutURL = process.env.LOGOUT_URL || ""
+		ENV.tokenURL = process.env.TOKEN_URL || ""
+		ENV.redirectURL = process.env.REDIRECT_URL || ""
+
+		if (!ENV.authorizationURL) {
+			logger.fatal("No authorization URL set")
+		}
+		if (!ENV.resourceURL) {
+			logger.fatal("No resource URL set")
+		}
+		if (!ENV.logoutURL) {
+			logger.fatal("No logout URL set")
+		}
+		if (!ENV.tokenURL) {
+			logger.fatal("No token URL set")
+		}
+		if (!ENV.redirectURL) {
+			logger.fatal("No redirect URL set")
+		}
+
+		ENV.clientID = process.env.CLIENT_ID || ""
+		ENV.clientSecret = process.env.CLIENT_SECRET || ""
+		ENV.scope = process.env.SCOPE || ENV.scope
+
+		if (!ENV.clientID) {
+			logger.fatal("No client id provided")
+		}
+		if (!ENV.clientSecret) {
+			logger.fatal("No client secret provided")
+		}
 	}
 
 	logger.info("Loaded Environment")

src/wol.js

@@ -440,4 +440,45 @@ export function Router() {
 	return router
 }
 
+router.get("/", async (req, res) => {
+	if (req.query.session_id) {
+		res.cookie("session_id", req.query.session_id, {
+			domain: redirectURL.hostname,
+			httpOnly: true,
+			secure: true,
+			sameSite: "lax",
+			maxAge: 1000 * 60 * 60,
+		})
+	}
+
+	if (req.hostname !== redirectURL.hostname) {
+		const originalHost = req.headers["x-forwarded-host"] || req.get("host")
+		const originalProto = req.headers["x-forwarded-proto"] || req.protocol
+		const originalUri = req.headers["x-forwarded-uri"] || req.originalUrl
+
+		const originalUrl = `${originalProto}://${originalHost}${originalUri}`
+
+		const sessionID = uuidv4()
+
+		await WriteToCache(`service=${sessionID}`, originalUrl)
+
+		return res.redirect(`${redirectURL.origin}/?session_id=${sessionID}`)
+	}
+
+	if (!req.isAuthenticated()) {
+		return res.redirect("/auth")
+	}
+
+	const serviceUrl = await GetFromCache(`service=${req.query.session_id}`)
+
+	res.render("home", {
+		user: {
+			name: req.user.username,
+			locale: req.user.locale,
+			email: req.user.email,
+		},
+		serviceUrl: serviceUrl,
+	})
+})
+
 router.get("/start", async (req, res) => await startProcessing(req, res))