akkoma/lib/pleroma/web/auth/pleroma_authenticator.ex

# Pleroma: A lightweight social networking server
# Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
# SPDX-License-Identifier: AGPL-3.0-only

defmodule Pleroma.Web.Auth.PleromaAuthenticator do
  alias Comeonin.Pbkdf2
  alias Pleroma.User
  alias Pleroma.Registration
  alias Pleroma.Repo

  @behaviour Pleroma.Web.Auth.Authenticator

  def get_user(%Plug.Conn{} = _conn, params) do
    {name, password} =
      case params do
        %{"authorization" => %{"name" => name, "password" => password}} ->
          {name, password}

        %{"grant_type" => "password", "username" => name, "password" => password} ->
          {name, password}
      end

    with {_, %User{} = user} <- {:user, User.get_by_nickname_or_email(name)},
         {_, true} <- {:checkpw, Pbkdf2.checkpw(password, user.password_hash)} do
      {:ok, user}
    else
      error ->
        {:error, error}
    end
  end

  def get_by_external_registration(
        %Plug.Conn{assigns: %{ueberauth_auth: %{provider: provider, uid: uid} = auth}},
        _params
      ) do
    registration = Registration.get_by_provider_uid(provider, uid)

    if registration do
      user = Repo.preload(registration, :user).user
      {:ok, user}
    else
      info = auth.info
      email = info.email
      nickname = info.nickname

      # Note: nullifying email in case this email is already taken
      email =
        if email && User.get_by_email(email) do
          nil
        else
          email
        end

      # Note: generating a random numeric suffix to nickname in case this nickname is already taken
      nickname =
        if nickname && User.get_by_nickname(nickname) do
          "#{nickname}_#{:os.system_time()}"
        else
          nickname
        end

      with {:ok, new_user} <-
             User.external_registration_changeset(
               %User{},
               %{
                 name: info.name,
                 bio: info.description,
                 email: email,
                 nickname: nickname
               }
             )
             |> Repo.insert(),
           {:ok, _} <-
             Registration.changeset(%Registration{}, %{
               user_id: new_user.id,
               provider: to_string(provider),
               uid: to_string(uid),
               info: %{nickname: info.nickname, email: info.email}
             })
             |> Repo.insert() do
        {:ok, new_user}
      end
    end
  end

  def get_by_external_registration(%Plug.Conn{} = _conn, _params),
    do: {:error, :missing_credentials}

  def handle_error(%Plug.Conn{} = _conn, error) do
    error
  end

  def auth_template, do: nil
end
Added missing copyright headers. 2019-02-26 13:26:54 +00:00			`# Pleroma: A lightweight social networking server`
			`# Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>`
			`# SPDX-License-Identifier: AGPL-3.0-only`

Renamed DatabaseAuthenticator to Authenticator. 2019-02-28 11:12:41 +00:00			`defmodule Pleroma.Web.Auth.PleromaAuthenticator do`
Auth customization support. OAuthController#create_authorization user retrieval / creation, errors handling, template & layout selection. 2019-02-21 15:55:19 +00:00			`alias Comeonin.Pbkdf2`
[Credo] fix Credo.Check.Readability.AliasOrder 2019-03-05 02:52:23 +00:00			`alias Pleroma.User`
[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`alias Pleroma.Registration`
			`alias Pleroma.Repo`
Auth customization support. OAuthController#create_authorization user retrieval / creation, errors handling, template & layout selection. 2019-02-21 15:55:19 +00:00
Renamed DatabaseAuthenticator to Authenticator. 2019-02-28 11:12:41 +00:00			`@behaviour Pleroma.Web.Auth.Authenticator`
Auth customization support. OAuthController#create_authorization user retrieval / creation, errors handling, template & layout selection. 2019-02-21 15:55:19 +00:00
[#923] Merge remote-tracking branch 'remotes/upstream/develop' into twitter_oauth # Conflicts: # config/config.exs # lib/pleroma/web/auth/pleroma_authenticator.ex 2019-03-18 07:26:41 +00:00			`def get_user(%Plug.Conn{} = _conn, params) do`
Move LDAP code to LDAPAuthenticator. Use Authenticator for token_exchange with grant_type as well 2019-03-03 19:20:36 +00:00			`{name, password} =`
[#923] Merge remote-tracking branch 'remotes/upstream/develop' into twitter_oauth # Conflicts: # config/config.exs # lib/pleroma/web/auth/pleroma_authenticator.ex 2019-03-18 07:26:41 +00:00			`case params do`
Move LDAP code to LDAPAuthenticator. Use Authenticator for token_exchange with grant_type as well 2019-03-03 19:20:36 +00:00			`%{"authorization" => %{"name" => name, "password" => password}} ->`
			`{name, password}`

			`%{"grant_type" => "password", "username" => name, "password" => password} ->`
			`{name, password}`
			`end`
Auth customization support. OAuthController#create_authorization user retrieval / creation, errors handling, template & layout selection. 2019-02-21 15:55:19 +00:00
			`with {_, %User{} = user} <- {:user, User.get_by_nickname_or_email(name)},`
			`{_, true} <- {:checkpw, Pbkdf2.checkpw(password, user.password_hash)} do`
			`{:ok, user}`
			`else`
			`error ->`
			`{:error, error}`
			`end`
			`end`

[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`def get_by_external_registration(`
[#923] OAuth: prototype of sign in / sign up with Twitter. 2019-03-15 14:08:03 +00:00			`%Plug.Conn{assigns: %{ueberauth_auth: %{provider: provider, uid: uid} = auth}},`
			`_params`
			`) do`
[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`registration = Registration.get_by_provider_uid(provider, uid)`
[#923] OAuth: prototype of sign in / sign up with Twitter. 2019-03-15 14:08:03 +00:00
[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`if registration do`
			`user = Repo.preload(registration, :user).user`
[#923] OAuth: prototype of sign in / sign up with Twitter. 2019-03-15 14:08:03 +00:00			`{:ok, user}`
			`else`
			`info = auth.info`
			`email = info.email`
			`nickname = info.nickname`

[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`# Note: nullifying email in case this email is already taken`
[#923] OAuth: prototype of sign in / sign up with Twitter. 2019-03-15 14:08:03 +00:00			`email =`
			`if email && User.get_by_email(email) do`
			`nil`
			`else`
			`email`
			`end`

[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`# Note: generating a random numeric suffix to nickname in case this nickname is already taken`
[#923] OAuth: prototype of sign in / sign up with Twitter. 2019-03-15 14:08:03 +00:00			`nickname =`
			`if nickname && User.get_by_nickname(nickname) do`
[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`"#{nickname}_#{:os.system_time()}"`
[#923] OAuth: prototype of sign in / sign up with Twitter. 2019-03-15 14:08:03 +00:00			`else`
			`nickname`
			`end`

[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`with {:ok, new_user} <-`
			`User.external_registration_changeset(`
			`%User{},`
			`%{`
			`name: info.name,`
			`bio: info.description,`
			`email: email,`
			`nickname: nickname`
			`}`
			`)`
			`\|> Repo.insert(),`
			`{:ok, _} <-`
			`Registration.changeset(%Registration{}, %{`
			`user_id: new_user.id,`
			`provider: to_string(provider),`
			`uid: to_string(uid),`
			`info: %{nickname: info.nickname, email: info.email}`
			`})`
			`\|> Repo.insert() do`
			`{:ok, new_user}`
			`end`
[#923] OAuth: prototype of sign in / sign up with Twitter. 2019-03-15 14:08:03 +00:00			`end`
			`end`

[#923] Support for multiple (external) registrations per user via Registration. 2019-03-18 14:23:38 +00:00			`def get_by_external_registration(%Plug.Conn{} = _conn, _params),`
[#923] OAuth: prototype of sign in / sign up with Twitter. 2019-03-15 14:08:03 +00:00			`do: {:error, :missing_credentials}`

Auth customization support. OAuthController#create_authorization user retrieval / creation, errors handling, template & layout selection. 2019-02-21 15:55:19 +00:00			`def handle_error(%Plug.Conn{} = _conn, error) do`
			`error`
			`end`
Added `auth_template/0` to DatabaseAuthenticator. 2019-02-28 10:58:58 +00:00
			`def auth_template, do: nil`
Auth customization support. OAuthController#create_authorization user retrieval / creation, errors handling, template & layout selection. 2019-02-21 15:55:19 +00:00			`end`