mirror of
https://github.com/Jermolene/TiddlyWiki5
synced 2025-01-09 17:00:27 +00:00
6a7612ddf8
* mws authentication * add more tests and permission checkers * add logic to ensure that only authenticated users' requests are handled * add custom login page * Implement user authentication as well as session handling * work on user operations authorization * add middleware to route handlers for bags & tiddlers routes * add feature that only returns the tiddlers and bags which the user has permission to access on index page * refactor auth routes & added user management page * fix Ci Test failure issue * fix users list page, add manage roles page * add commands and scripts to create new user & assign roles and permissions * resolved ci-test failure * add ACL permissions to bags & tiddlers on creation * fix comments and access control list bug * fix indentation issues * working on user profile edit * remove list users command & added support for database in server options * implement user profile update and password change feature * update plugin readme * implement command which triggers protected mode on the server * revert server-wide auth flag. Implement selective authorization * ACL management feature * Complete Access control list implementation * Added support to manage users' assigned role by admin * fix comments * fix comment
43 lines
1.0 KiB
JavaScript
43 lines
1.0 KiB
JavaScript
/*\
|
|
title: $:/plugins/tiddlywiki/multiwikiserver/auth/authentication.js
|
|
type: application/javascript
|
|
module-type: library
|
|
|
|
Handles authentication related operations
|
|
|
|
\*/
|
|
|
|
(function() {
|
|
|
|
/*jslint node: true, browser: true */
|
|
/*global $tw: false */
|
|
"use strict";
|
|
|
|
var crypto = require("crypto");
|
|
|
|
function Authenticator(database) {
|
|
if(!(this instanceof Authenticator)) {
|
|
return new Authenticator(database);
|
|
}
|
|
this.sqlTiddlerDatabase = database;
|
|
}
|
|
|
|
Authenticator.prototype.verifyPassword = function(inputPassword, storedHash) {
|
|
var hashedInput = this.hashPassword(inputPassword);
|
|
return hashedInput === storedHash;
|
|
};
|
|
|
|
Authenticator.prototype.hashPassword = function(password) {
|
|
return crypto.createHash("sha256").update(password).digest("hex");
|
|
};
|
|
|
|
Authenticator.prototype.createSession = function(userId) {
|
|
var sessionId = crypto.randomBytes(16).toString("hex");
|
|
// Store the session in your database or in-memory store
|
|
this.sqlTiddlerDatabase.createOrUpdateUserSession(userId, sessionId);
|
|
return sessionId;
|
|
};
|
|
|
|
exports.Authenticator = Authenticator;
|
|
|
|
})(); |