trilium/services/auth.js

"use strict";

const migration = require('./migration');

async function checkAuth(req, res, next) {
    if (!req.session.loggedIn) {
        res.redirect("login");
    }
    else if (await migration.isDbUpToDate()) {
        next();
    }
    else {
        res.redirect("migration");
    }
}

async function checkAuthWithoutMigration(req, res, next) {
    if (!req.session.loggedIn) {
        res.redirect("login");
    }
    else {
        next();
    }
}

async function checkApiAuth(req, res, next) {
    if (!req.session.loggedIn) {
        res.status(401).send("Not authorized");
    }
    else if (await migration.isDbUpToDate()) {
        next();
    }
    else {
        res.status(409).send("Mismatched app versions"); // need better response than that
    }
}

async function checkApiAuthWithoutMigration(req, res, next) {
    if (!req.session.loggedIn) {
        res.status(401).send("Not authorized");
    }
    else {
        next();
    }
}

module.exports = {
    checkAuth,
    checkAuthWithoutMigration,
    checkApiAuth,
    checkApiAuthWithoutMigration
};
use strict in all JS files 2017-10-22 09:10:33 +08:00			`"use strict";`

sync WIP 2017-10-26 10:39:21 +08:00			`const migration = require('./migration');`

			`async function checkAuth(req, res, next) {`
node authentication 2017-10-16 04:32:49 +08:00			`if (!req.session.loggedIn) {`
			`res.redirect("login");`
sync WIP 2017-10-26 10:39:21 +08:00			`}`
fixes for sync 2017-10-30 02:55:48 +08:00			`else if (await migration.isDbUpToDate()) {`
node authentication 2017-10-16 04:32:49 +08:00			`next();`
			`}`
sync WIP 2017-10-26 10:39:21 +08:00			`else {`
			`res.redirect("migration");`
			`}`
node authentication 2017-10-16 04:32:49 +08:00			`}`

separate sync for pull (implemented) and push (not yet) 2017-10-27 08:31:31 +08:00			`async function checkAuthWithoutMigration(req, res, next) {`
			`if (!req.session.loggedIn) {`
			`res.redirect("login");`
			`}`
			`else {`
			`next();`
			`}`
			`}`

sync WIP 2017-10-26 10:39:21 +08:00			`async function checkApiAuth(req, res, next) {`
API auth (untested) 2017-10-29 10:17:00 +08:00			`if (!req.session.loggedIn) {`
sync fixes 2017-11-01 08:09:07 +08:00			`res.status(401).send("Not authorized");`
sync WIP 2017-10-26 10:39:21 +08:00			`}`
fixes for sync 2017-10-30 02:55:48 +08:00			`else if (await migration.isDbUpToDate()) {`
node authentication 2017-10-16 04:32:49 +08:00			`next();`
			`}`
sync WIP 2017-10-26 10:39:21 +08:00			`else {`
sync fixes 2017-11-01 08:09:07 +08:00			`res.status(409).send("Mismatched app versions"); // need better response than that`
sync WIP 2017-10-26 10:39:21 +08:00			`}`
node authentication 2017-10-16 04:32:49 +08:00			`}`

separate sync for pull (implemented) and push (not yet) 2017-10-27 08:31:31 +08:00			`async function checkApiAuthWithoutMigration(req, res, next) {`
API auth (untested) 2017-10-29 10:17:00 +08:00			`if (!req.session.loggedIn) {`
sync fixes 2017-11-01 08:09:07 +08:00			`res.status(401).send("Not authorized");`
separate sync for pull (implemented) and push (not yet) 2017-10-27 08:31:31 +08:00			`}`
			`else {`
			`next();`
			`}`
			`}`

node authentication 2017-10-16 04:32:49 +08:00			`module.exports = {`
			`checkAuth,`
separate sync for pull (implemented) and push (not yet) 2017-10-27 08:31:31 +08:00			`checkAuthWithoutMigration,`
			`checkApiAuth,`
			`checkApiAuthWithoutMigration`
node authentication 2017-10-16 04:32:49 +08:00			`};`