[FEATURE] Initial Cairo Auth Integration

2024-02-04 01:24:36 -07:00 · 2024-02-04 01:24:36 -07:00 · 184f1fa631
commit 184f1fa631
parent edbfc2348a
10 changed files with 234 additions and 14 deletions
--- a/lib/routes/auth-route.js
+++ b/lib/routes/auth-route.js
@ -0,0 +1,16 @@
+import { Router } from "express";
+import cairoAuthMiddleware from "./middlewares/auth-middleware.js";
+const router = Router();
+
+const ok = (_r, res) => res.sendStatus(200);
+
+function cairoRedirect(req, res) {
+  res.redirect(
+    `${process.env.MCL_CAIRO_URL}/cairo/auth?redirectUri=${req.query.redirectUri}`,
+  );
+}
+
+router.get("/verify", cairoAuthMiddleware, ok);
+router.get("/redirect", cairoRedirect);
+
+export default router;
--- a/lib/routes/middlewares/auth-middleware.js
+++ b/lib/routes/middlewares/auth-middleware.js
@ -0,0 +1,32 @@
+// Imports
+import { Router } from "express";
+import bearerTokenMiddleware from "express-bearer-token";
+import { ERR, VERB } from "../../util/logging.js";
+
+// Constants
+const { MCL_CAIRO_URL } = process.env;
+const cairoAuthMiddleware = Router();
+
+const cairoAuthenticate = async (token) => {
+  const config = { headers: { Authorization: `Bearer ${token}` } };
+  return fetch(`${MCL_CAIRO_URL}/api/user/info`, config).then((res) =>
+    res.json(),
+  );
+};
+
+// Middleware
+const cairoAuthHandler = (req, res, next) => {
+  if (!req.token) return res.status(401).send("Cairo auth required!");
+  VERB("AUTH", `${MCL_CAIRO_URL}/api/user/info`);
+  cairoAuthenticate(req.token)
+    .then(() => next())
+    .catch((err) => {
+      ERR("AUTH", err.response ? err.response.data : err.message);
+      if (!err.response) return res.status(500).send(`Auth failure ${err}`);
+      return res.status(err.response.status).send(err.response.data);
+    });
+};
+
+cairoAuthMiddleware.use([bearerTokenMiddleware(), cairoAuthHandler]);
+
+export default cairoAuthMiddleware;
--- a/lib/routes/server-route.js
+++ b/lib/routes/server-route.js
@ -11,6 +11,9 @@ import {
  serverInstances,
  serverList,
 } from "../controllers/status-controller.js";
+
+import cairoAuthMiddleware from "./middlewares/auth-middleware.js";
+
 const router = Router();
 router.use(jsonMiddleware());
 // Routes
@ -19,7 +22,7 @@ router.delete("/delete", deleteServer);
 router.post("/start", startServer);
 router.post("/stop", stopServer);
 router.get("/list", serverList);
-router.get("/instances", serverInstances);
+router.get("/instances", cairoAuthMiddleware, serverInstances);
 router.post("/blueprint", getServer);
 router.post("/modify", modifyServer);
 export default router;
--- a/lib/server/router.js
+++ b/lib/server/router.js
@ -3,6 +3,7 @@ import express from "express";

 // Routes
 import vitals from "../routes/vitals-route.js";
+import authRoute from "../routes/auth-route.js";
 import systemRoute from "../routes/system-route.js";
 import serverRoute from "../routes/server-route.js";
 import filesRoute from "../routes/files-route.js";
@ -22,6 +23,7 @@ export default function buildRoutes(pg, skio) {
  // Middlewares

  // Routes
+  router.use("/api/auth", authRoute);
  router.use("/api/system", systemRoute);
  router.use("/api/server", serverRoute);
  router.use("/api/files", filesRoute);