mirror of
https://github.com/moparisthebest/kaiwa
synced 2024-11-13 13:05:00 -05:00
405 lines
14 KiB
JavaScript
405 lines
14 KiB
JavaScript
var fs = require('fs');
|
|
var https = require('https');
|
|
var express = require('express');
|
|
var helmet = require('helmet');
|
|
var Moonboots = require('moonboots-express');
|
|
var config = require('getconfig');
|
|
var templatizer = require('templatizer');
|
|
var async = require('async');
|
|
var LDAP = require('LDAP');
|
|
|
|
String.prototype.capitalize = function() {
|
|
return this.charAt(0).toUpperCase() + this.slice(1);
|
|
}
|
|
|
|
var app = express();
|
|
var bodyParser = require('body-parser')
|
|
var compression = require('compression');
|
|
var serveStatic = require('serve-static');
|
|
|
|
app.use(bodyParser.json());
|
|
app.use(bodyParser.urlencoded({ extended: false }));
|
|
app.use(compression());
|
|
app.use(serveStatic(__dirname + '/public'));
|
|
if (!config.isDev) {
|
|
app.use(helmet.xframe());
|
|
}
|
|
app.use(helmet.iexss());
|
|
app.use(helmet.contentTypeOptions());
|
|
|
|
var webappManifest = fs.readFileSync('./public/x-manifest.webapp');
|
|
|
|
app.set('views', __dirname + '/views');
|
|
app.set('view engine', 'jade');
|
|
|
|
app.get('/login', function (req, res) {
|
|
res.render("login", {"config": config.server});
|
|
});
|
|
|
|
app.get('/logout', function (req, res) {
|
|
res.render('logout');
|
|
});
|
|
|
|
app.get('/config.js', function (req, res) {
|
|
res.type('application/javascript');
|
|
res.send("var SERVER_CONFIG = " + JSON.stringify(config.server) + ";");
|
|
});
|
|
|
|
app.get('/sounds/*', function (req, res) {
|
|
console.log(req.baseUrl);
|
|
res.type('audio/wav');
|
|
res.redirect("./public" + req.baseUrl);
|
|
});
|
|
|
|
function connectLDAP(req, cb) {
|
|
|
|
if (!config.ldap || !config.ldap.address || !config.ldap.base) {
|
|
cb(true);
|
|
return;
|
|
}
|
|
|
|
var ldapDN = 'uid=' + req.body.uid + ',' + config.ldap.base;
|
|
var ldapPW = req.body.password;
|
|
|
|
var ldap = new LDAP({ uri: 'ldap://' + config.ldap.address, reconnect: false });
|
|
|
|
ldap.open(function(err) {
|
|
if (err) {
|
|
console.log("LDAP: Can not connect to server on ldap://" + config.ldap.address);
|
|
cb(true);
|
|
return;
|
|
}
|
|
|
|
function closeCb(ldap) {
|
|
ldap.close();
|
|
console.log("LDAP: Disconnected");
|
|
}
|
|
|
|
ldap.simplebind({ binddn: ldapDN, password: ldapPW }, function(err) {
|
|
if (err) {
|
|
console.log("LDAP: Can not connect to server with " + ldapDN);
|
|
closeCb(ldap);
|
|
cb(true);
|
|
return;
|
|
}
|
|
|
|
console.log("LDAP: Connected on ldap://" + config.ldap.address + " with " + ldapDN);
|
|
|
|
if (req.body.uid == config.server.admin && config.ldap.user && config.ldap.password) {
|
|
console.log("LDAP: " + ldapDN + " is XMPP admin");
|
|
|
|
ldap.simplebind({ binddn: config.ldap.user, password: config.ldap.password }, function(err) {
|
|
if (err) {
|
|
console.log("LDAP: Can not connect to server with " + config.ldap.user);
|
|
closeCb(ldap);
|
|
cb(true);
|
|
return;
|
|
}
|
|
|
|
console.log("LDAP: Connected on ldap://" + config.ldap.address + " with " + config.ldap.user);
|
|
cb(false, ldap, closeCb);
|
|
});
|
|
return;
|
|
}
|
|
cb(false, ldap, closeCb);
|
|
|
|
});
|
|
});
|
|
}
|
|
|
|
app.post('/ldap/user/:id', function(req, res) {
|
|
var dn = 'uid=' + req.params.id.toLowerCase() + ',' + config.ldap.base;
|
|
console.log('LDAP: Save user informations (' + dn + ')');
|
|
|
|
connectLDAP(req, function (err, ldap, closeCb) {
|
|
if (err === false) {
|
|
|
|
var changes = [];
|
|
if (req.body.cn != undefined) changes.push({ op: 'replace', attr: 'cn', vals: [ req.body.cn ] });
|
|
if (req.body.sn != undefined) changes.push({ op: 'replace', attr: 'sn', vals: [ req.body.sn ] });
|
|
if (req.body.givenName != undefined) changes.push({ op: 'replace', attr: 'givenName', vals: [ req.body.givenName ] });
|
|
if (req.body.displayName != undefined) changes.push({ op: 'replace', attr: 'displayName', vals: [ req.body.displayName ] });
|
|
if (req.body.mail != undefined) changes.push({ op: 'replace', attr: 'mail', vals: [ req.body.mail ] });
|
|
|
|
ldap.modify(dn, changes, function (err) {
|
|
if (err) {
|
|
console.log('LDAP: Impossible to change user informations (' + dn + ')');
|
|
console.log(err);
|
|
res.type('application/javascript');
|
|
res.send(false);
|
|
|
|
closeCb(ldap);
|
|
return;
|
|
}
|
|
|
|
console.log('LDAP: User informations saved (' + dn + ')');
|
|
res.type('application/javascript');
|
|
res.send(true);
|
|
|
|
closeCb(ldap);
|
|
});
|
|
}
|
|
});
|
|
|
|
});
|
|
|
|
app.post('/ldap/user/:id/password', function(req, res) {
|
|
var dn = 'uid=' + req.params.id.toLowerCase() + ',' + config.ldap.base;
|
|
console.log('LDAP: Change user password (' + dn + ')');
|
|
|
|
connectLDAP(req, function (err, ldap, closeCb) {
|
|
if (err === false) {
|
|
|
|
var changes = [{ op: 'replace', attr: 'userPassword', vals: [ req.body.newPassword ] }];
|
|
|
|
ldap.modify(dn, changes, function (err) {
|
|
if (err) {
|
|
console.log('LDAP: Impossible to change user password (' + dn + ')');
|
|
console.log(err);
|
|
res.type('application/javascript');
|
|
res.send(false);
|
|
|
|
closeCb(ldap);
|
|
return;
|
|
}
|
|
|
|
console.log('LDAP: User password changed (' + dn + ')');
|
|
res.type('application/javascript');
|
|
res.send(true);
|
|
|
|
closeCb(ldap);
|
|
});
|
|
}
|
|
});
|
|
});
|
|
|
|
app.post('/ldap/users', function (req, res) {
|
|
console.log('LDAP: Get users list');
|
|
|
|
connectLDAP(req, function (err, ldap, closeCb) {
|
|
if (err === false) {
|
|
var filter = config.ldap.filter;
|
|
if (req.body.uid != config.server.admin) {
|
|
var uid = 'uid=' + req.body.uid.toLowerCase();
|
|
filter = '(&(' + filter + ')(' + uid + '))';
|
|
}
|
|
ldap.search({ base: config.ldap.base, filter: filter }, function(err, data) {
|
|
var users = new Array();
|
|
if (!err) {
|
|
data.forEach(function(el) {
|
|
var user = {
|
|
id: el.uid[0],
|
|
cn: el.cn ? el.cn[0] : '',
|
|
sn: el.sn ? el.sn[0] : '',
|
|
givenName: el.givenName ? el.givenName[0] : '',
|
|
displayName: el.displayName ? el.displayName[0] : '',
|
|
mail: el.mail ? el.mail[0] : '',
|
|
objectClass: el.objectClass
|
|
};
|
|
users.push(user);
|
|
});
|
|
}
|
|
else {
|
|
console.log(err);
|
|
}
|
|
res.type('application/javascript');
|
|
res.send(JSON.stringify(users));
|
|
|
|
console.log('LDAP: Users list sent');
|
|
closeCb(ldap);
|
|
});
|
|
}
|
|
});
|
|
|
|
});
|
|
|
|
app.post('/ldap/users/add', function (req, res) {
|
|
console.log('LDAP: Add a new user');
|
|
|
|
connectLDAP(req, function (err, ldap, closeCb) {
|
|
if (err === false || !req.body.newUid) {
|
|
var dn = 'uid=' + req.body.newUid.toLowerCase() + ',' + config.ldap.base;
|
|
var attrs = [
|
|
{ attr: 'objectClass', vals: [ 'organizationalPerson', 'person', 'inetOrgPerson'] },
|
|
{ attr: 'cn', vals: [ req.body.newUid.capitalize() ] },
|
|
{ attr: 'sn', vals: [ req.body.newUid.capitalize() ] },
|
|
{ attr: 'givenName', vals: [ req.body.newUid.capitalize() ] },
|
|
{ attr: 'displayName', vals: [ req.body.newUid.capitalize() ] },
|
|
{ attr: 'userPassword', vals: [ req.body.newUid.toLowerCase() ] }
|
|
];
|
|
ldap.add(dn, attrs, function (err) {
|
|
if (err) {
|
|
console.log('LDAP: Impossible to add a new user (' + dn + ')');
|
|
console.log(err);
|
|
res.type('application/javascript');
|
|
res.send(false);
|
|
|
|
closeCb(ldap);
|
|
return;
|
|
}
|
|
|
|
if (config.ldap.group) {
|
|
var changes = [
|
|
{ op: 'add',
|
|
attr: 'member',
|
|
vals: [ dn ]
|
|
}
|
|
];
|
|
ldap.modify(config.ldap.group, changes, function (err) {
|
|
if (err) console.log(err);
|
|
|
|
console.log('LDAP: New user added (' + dn + ')');
|
|
res.type('application/javascript');
|
|
res.send(true);
|
|
|
|
closeCb(ldap);
|
|
});
|
|
}
|
|
|
|
});
|
|
}
|
|
});
|
|
|
|
});
|
|
|
|
app.post('/ldap/users/delete', function (req, res) {
|
|
console.log('LDAP: Remove a user');
|
|
|
|
connectLDAP(req, function (err, ldap, closeCb) {
|
|
if (err === false || !req.body.removeUid) {
|
|
var dn = 'uid=' + req.body.removeUid.toLowerCase() + ',' + config.ldap.base;
|
|
ldap.remove(dn, function (err) {
|
|
if (err) {
|
|
console.log('LDAP: Impossible to remove this user (' + dn + ')');
|
|
console.log(err);
|
|
res.type('application/javascript');
|
|
res.send(false);
|
|
|
|
closeCb(ldap);
|
|
return;
|
|
}
|
|
|
|
if (config.ldap.group) {
|
|
var changes = [
|
|
{ op: 'delete',
|
|
attr: 'member',
|
|
vals: [ dn ]
|
|
}
|
|
];
|
|
ldap.modify(config.ldap.group, changes, function (err) {
|
|
if (err) console.log(err);
|
|
|
|
console.log('LDAP: User removed (' + dn + ')');
|
|
res.type('application/javascript');
|
|
res.send(true);
|
|
|
|
closeCb(ldap);
|
|
});
|
|
}
|
|
|
|
});
|
|
}
|
|
});
|
|
|
|
});
|
|
|
|
app.get('/oauth/login', function (req, res) {
|
|
res.redirect('https://apps.andyet.com/oauth/authorize?client_id=' + config.andyetAuth.id + '&response_type=token');
|
|
});
|
|
|
|
app.get('/oauth/callback', function (req, res) {
|
|
res.render('oauthLogin');
|
|
});
|
|
|
|
app.get('/manifest.webapp', function (req, res, next) {
|
|
res.set('Content-Type', 'application/x-web-app-manifest+json');
|
|
res.send(webappManifest);
|
|
});
|
|
|
|
app.use(function handleError(err, req, res, next) {
|
|
var errorResult = {message: 'Something bad happened :('};
|
|
|
|
if (config.isDev) {
|
|
if (err instanceof Error) {
|
|
if (err.message) {
|
|
errorResult.message = err.message;
|
|
}
|
|
|
|
if (err.stack) {
|
|
errorResult.stack = err.stack;
|
|
}
|
|
}
|
|
}
|
|
|
|
res.status(500);
|
|
res.render('error', errorResult);
|
|
});
|
|
|
|
var clientApp = new Moonboots({
|
|
moonboots: {
|
|
main: __dirname + '/clientapp/app.js',
|
|
developmentMode: config.isDev,
|
|
libraries: [
|
|
__dirname + '/clientapp/libraries/jquery.js',
|
|
__dirname + '/clientapp/libraries/ui.js',
|
|
__dirname + '/clientapp/libraries/resampler.js',
|
|
__dirname + '/clientapp/libraries/IndexedDBShim.min.js',
|
|
__dirname + '/clientapp/libraries/sugar-1.2.1-dates.js',
|
|
__dirname + '/clientapp/libraries/jquery.oembed.js',
|
|
__dirname + '/clientapp/libraries/jquery-impromptu.js'
|
|
],
|
|
browserify: {
|
|
debug: false
|
|
},
|
|
stylesheets: [
|
|
__dirname + '/public/css/otalk.css',
|
|
__dirname + '/public/css/jquery.oembed.css',
|
|
__dirname + '/public/css/jquery-impromptu.css'
|
|
],
|
|
beforeBuildJS: function () {
|
|
if (config.isDev) {
|
|
var clientFolder = __dirname + '/clientapp';
|
|
templatizer(clientFolder + '/templates', clientFolder + '/templates.js');
|
|
}
|
|
}
|
|
},
|
|
server: app,
|
|
cachePeriod: 0,
|
|
render: function (req, res) {
|
|
res.render('index');
|
|
}
|
|
});
|
|
|
|
clientApp.on('ready', function () {
|
|
console.log('Client app ready');
|
|
var pkginfo = JSON.parse(fs.readFileSync(__dirname + '/package.json'));
|
|
|
|
var manifestTemplate = fs.readFileSync(__dirname + '/clientapp/templates/misc/manifest.cache', 'utf-8');
|
|
var cacheManifest = manifestTemplate
|
|
.replace('#{version}', pkginfo.version + config.isDev ? ' ' + Date.now() : '')
|
|
.replace('#{jsFileName}', clientApp.moonboots.jsFileName())
|
|
.replace('#{cssFileName}', clientApp.moonboots.cssFileName());
|
|
console.log('Cache manifest generated');
|
|
|
|
|
|
app.get('/manifest.cache', function (req, res, next) {
|
|
res.set('Content-Type', 'text/cache-manifest');
|
|
res.set('Cache-Control', 'no-cache, private, no-store, must-revalidate, max-stale=0, post-check=0, pre-check=0');
|
|
res.send(cacheManifest);
|
|
});
|
|
|
|
// serves app on every other url
|
|
app.get('*', function (req, res) {
|
|
res.render(clientApp.moonboots.htmlSource());
|
|
});
|
|
});
|
|
|
|
//https.createServer({
|
|
// key: fs.readFileSync(config.http.key),
|
|
// cert: fs.readFileSync(config.http.cert)
|
|
//}, app).listen(config.http.port);
|
|
|
|
app.listen(config.http.port, function () {
|
|
console.log('Otalk running at: ' + config.http.baseUrl);
|
|
});
|