var fs = require('fs'); var https = require('https'); var Moonboots = require('moonboots-express'); var express = require('express'); var helmet = require('helmet'); var config = require('getconfig'); var templatizer = require('templatizer'); var async = require('async'); var LDAP = require('ldapjs'); config.ldapEnabled = !(!config.ldap || !config.ldap.address || !config.ldap.base); String.prototype.capitalize = function() { return this.charAt(0).toUpperCase() + this.slice(1); }; var app = express(); var bodyParser = require('body-parser'); var compression = require('compression'); var serveStatic = require('serve-static'); app.use(bodyParser.json()); app.use(bodyParser.urlencoded({ extended: false })); app.use(compression()); app.use(serveStatic(__dirname + '/public')); if (!config.isDev) { app.use(helmet.xframe()); } app.use(helmet.iexss()); app.use(helmet.contentTypeOptions()); var webappManifest = fs.readFileSync('./public/x-manifest.webapp'); app.set('views', __dirname + '/views'); app.set('view engine', 'jade'); app.get('/login', function (req, res) { res.render("login", {"config": config.server}); }); app.get('/logout', function (req, res) { res.render('logout'); }); app.get('/config.js', function (req, res) { res.type('application/javascript'); res.send("window.SERVER_CONFIG = " + JSON.stringify(config.server) + ";"); }); app.get('/sounds/*', function (req, res) { res.type('audio/wav'); res.redirect("./public" + req.baseUrl); }); if (config.ldapEnabled) { function connectLDAP(req, cb) { if (!config.ldapEnabled) { cb(true); return; } var ldapDN = 'uid=' + req.body.uid + ',' + config.ldap.base; var ldapPW = req.body.password; var client = LDAP.createClient({ url: 'ldap://' + config.ldap.address }); function closeCb(client) { client.unbind(); console.log("LDAP: Disconnected"); } client.bind(ldapDN, ldapPW, function(err) { if (err) { console.log("LDAP: Can not connect to server with " + ldapDN); closeCb(client); cb(true); return; } console.log("LDAP: Connected on ldap://" + config.ldap.address + " with " + ldapDN); if (req.body.uid == config.server.admin && config.ldap.user && config.ldap.password) { console.log("LDAP: " + ldapDN + " is XMPP admin"); client.bind(config.ldap.user, config.ldap.password, function(err) { if (err) { console.log("LDAP: Can not connect to server with " + config.ldap.user); closeCb(client); cb(true); return; } console.log("LDAP: Connected on ldap://" + config.ldap.address + " with " + config.ldap.user); cb(false, client, closeCb); }); return; } cb(false, client, closeCb); }); } app.post('/ldap/user/:id', function(req, res) { var dn = 'uid=' + req.params.id.toLowerCase() + ',' + config.ldap.base; console.log('LDAP: Save user informations (' + dn + ')'); connectLDAP(req, function (err, client, closeCb) { if (err === false) { var changes = []; if (req.body.cn !== undefined) changes.push(new LDAP.Change({ operation: 'replace', modification: {cn: req.body.cn}})); if (req.body.sn !== undefined) changes.push(new LDAP.Change({ operation: 'replace', modification: {sn: req.body.sn}})); if (req.body.givenName !== undefined) changes.push(new LDAP.Change({ operation: 'replace', modification: {givenName: req.body.givenName}})); if (req.body.displayName !== undefined) changes.push(new LDAP.Change({ operation: 'replace', modification: {displayName: req.body.displayName}})); if (req.body.mail !== undefined) changes.push(new LDAP.Change({ operation: 'replace', modification: {mail: req.body.mail}})); client.modify(dn, changes, function (err) { if (err) { console.log('LDAP: Impossible to change user informations (' + dn + ')'); console.log(err); res.type('application/javascript'); res.send(false); closeCb(client); return; } console.log('LDAP: User informations saved (' + dn + ')'); res.type('application/javascript'); res.send(true); closeCb(client); }); } }); }); app.post('/ldap/user/:id/password', function(req, res) { var dn = 'uid=' + req.params.id.toLowerCase() + ',' + config.ldap.base; console.log('LDAP: Change user password (' + dn + ')'); connectLDAP(req, function (err, client, closeCb) { if (err === false) { var changes = [new LDAP.Change({ operation: 'replace', modification: {userPassword: req.body.newPassword}})]; client.modify(dn, changes, function (err) { if (err) { console.log('LDAP: Impossible to change user password (' + dn + ')'); console.log(err); res.type('application/javascript'); res.send(false); closeCb(client); return; } console.log('LDAP: User password changed (' + dn + ')'); res.type('application/javascript'); res.send(true); closeCb(client); }); } }); }); app.post('/ldap/users', function (req, res) { console.log('LDAP: Get users list'); connectLDAP(req, function (err, client, closeCb) { if (err === false) { var filter = config.ldap.filter; if (req.body.uid != config.server.admin) { var uid = 'uid=' + req.body.uid.toLowerCase(); filter = '(&(' + filter + ')(' + uid + '))'; } var opts = { filter: filter, scope: 'sub', attributes: ['uid', 'cn', 'sn', 'givenName', 'displayName', 'mail', 'objectClass'], attrsOnly: true }; client.search(config.ldap.base, opts, function(err, data) { var users = new Array(); if (!err) { data.on('searchEntry', function(entry) { var user = {}; entry.attributes.forEach(function(attr) { user[attr.type] = attr.vals; if (attr.type !== 'objectClass') { user[attr.type] = user[attr.type][0]; } }); users.push(user); }); data.on('end', function(result) { res.type('application/javascript'); res.send(JSON.stringify(users)); console.log('LDAP: Users list sent'); closeCb(client); }); } else { console.log(err); } }); } }); }); app.post('/ldap/users/add', function (req, res) { console.log('LDAP: Add a new user'); connectLDAP(req, function (err, client, closeCb) { if (err === false || !req.body.newUid) { var dn = 'uid=' + req.body.newUid.toLowerCase() + ',' + config.ldap.base; var entry = { objectClass: [ 'organizationalPerson', 'person', 'inetOrgPerson'], cn: req.body.newUid.capitalize(), sn: req.body.newUid.capitalize(), givenName: req.body.newUid.capitalize(), displayName: req.body.newUid.capitalize(), userPassword: req.body.newUid.toLowerCase() }; client.add(dn, entry, function (err) { if (err) { console.log('LDAP: Impossible to add a new user (' + dn + ')'); console.log(err); res.type('application/javascript'); res.send(false); closeCb(client); return; } if (config.ldap.group) { var changes = [ { operation: 'add', modification: {member: dn } } ]; client.modify(config.ldap.group, changes, function (err) { if (err) console.log(err); console.log('LDAP: New user added (' + dn + ')'); res.type('application/javascript'); res.send(true); closeCb(client); }); } }); } }); }); app.post('/ldap/users/delete', function (req, res) { console.log('LDAP: Remove a user'); connectLDAP(req, function (err, client, closeCb) { if (err === false || !req.body.removeUid) { var dn = 'uid=' + req.body.removeUid.toLowerCase() + ',' + config.ldap.base; client.del(dn, function (err) { if (err) { console.log('LDAP: Impossible to remove this user (' + dn + ')'); console.log(err); res.type('application/javascript'); res.send(false); closeCb(client); return; } if (config.ldap.group) { var changes = [ { operation: 'delete', modification: {member: dn } } ]; client.modify(config.ldap.group, changes, function (err) { if (err) console.log(err); console.log('LDAP: User removed (' + dn + ')'); res.type('application/javascript'); res.send(true); closeCb(client); }); } }); } }); }); } app.get('/oauth/login', function (req, res) { res.redirect('https://apps.andyet.com/oauth/authorize?client_id=' + config.andyetAuth.id + '&response_type=token'); }); app.get('/oauth/callback', function (req, res) { res.render('oauthLogin'); }); app.get('/manifest.webapp', function (req, res, next) { res.set('Content-Type', 'application/x-web-app-manifest+json'); res.send(webappManifest); }); app.use(function handleError(err, req, res, next) { var errorResult = {message: 'Something bad happened :('}; if (config.isDev) { if (err instanceof Error) { if (err.message) { errorResult.message = err.message; } if (err.stack) { errorResult.stack = err.stack; } } } res.status(500); res.render('error', errorResult); }); var clientApp = new Moonboots({ moonboots: { main: __dirname + '/clientapp/app.js', developmentMode: config.isDev, libraries: [ __dirname + '/clientapp/libraries/jquery.js', __dirname + '/clientapp/libraries/ui.js', __dirname + '/clientapp/libraries/resampler.js', __dirname + '/clientapp/libraries/IndexedDBShim.min.js', __dirname + '/clientapp/libraries/sugar-1.2.1-dates.js', __dirname + '/clientapp/libraries/jquery.oembed.js', __dirname + '/clientapp/libraries/jquery-impromptu.js' ], browserify: { debug: false }, stylesheets: [ __dirname + '/public/css/client.css', __dirname + '/public/css/jquery.oembed.css', __dirname + '/public/css/jquery-impromptu.css' ], beforeBuildJS: function () { if (config.isDev) { var clientFolder = __dirname + '/clientapp'; templatizer(clientFolder + '/templates', clientFolder + '/templates.js'); } } }, server: app, cachePeriod: 0, render: function (req, res) { res.render('index'); } }); clientApp.on('ready', function () { console.log('Client app ready'); var pkginfo = JSON.parse(fs.readFileSync(__dirname + '/package.json')); var manifestTemplate = fs.readFileSync(__dirname + '/clientapp/templates/misc/manifest.cache', 'utf-8'); var cacheManifest = manifestTemplate .replace('#{version}', pkginfo.version + config.isDev ? ' ' + Date.now() : '') .replace('#{jsFileName}', clientApp.moonboots.jsFileName()) .replace('#{cssFileName}', clientApp.moonboots.cssFileName()); console.log('Cache manifest generated'); app.get('/manifest.cache', function (req, res, next) { res.set('Content-Type', 'text/cache-manifest'); res.set('Cache-Control', 'no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0'); res.send(cacheManifest); }); // serves app on every other url app.get('*', function (req, res) { res.render(clientApp.moonboots.htmlSource()); }); }); app.listen(config.http.port, config.http.host, function () { console.log('Kaiwa running...'); if (config.http.host) { console.log('Hostname:' + config.http.host); } console.log('Port:' + config.http.port); });