zero51
diff --git a/‎app.js‎
Lines changed: 1 addition & 0 deletions b/‎app.js‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎components/oauth/authenticate.js‎
Lines changed: 17 additions & 4 deletions b/‎components/oauth/authenticate.js‎
Lines changed: 17 additions & 4 deletions
diff --git a/‎components/oauth/express.js‎
Lines changed: 16 additions & 19 deletions b/‎components/oauth/express.js‎
Lines changed: 16 additions & 19 deletions
diff --git a/‎components/oauth/mongo-models.js‎
Lines changed: 255 additions & 0 deletions b/‎components/oauth/mongo-models.js‎
Lines changed: 255 additions & 0 deletions
diff --git a/‎components/oauth/mongodb/OAuthAccessToken.js‎
Lines changed: 18 additions & 0 deletions b/‎components/oauth/mongodb/OAuthAccessToken.js‎
Lines changed: 18 additions & 0 deletions
diff --git a/‎components/oauth/mongodb/OAuthAuthorizationCode.js‎
Lines changed: 20 additions & 0 deletions b/‎components/oauth/mongodb/OAuthAuthorizationCode.js‎
Lines changed: 20 additions & 0 deletions
@@ -24,6 +24,7 @@ app.use(cookieParser());
 app.use(express.static(path.join(__dirname, 'public')));
 
 if (config.seedDB) { require('./components/oauth/seed'); }
+if (config.seedMongoDB) { require('./components/oauth/seed-mongo'); }
 
 /** Public Area **/
 
 
@@ -6,10 +6,11 @@ var oauthServer = require('oauth2-server');
 var Request = oauthServer.Request;
 var Response = oauthServer.Response;
 var db = require('./sqldb')
-
-var oauth = new oauthServer({
-  model: require('./models.js')
-});
+var config = require('../../config');
+if(config.db === 'mongo'){
+  db = require('./mongodb')
+}
+var oauth = require('./oauth')
 
 module.exports = function(options){
   var options = options || {};
@@ -27,6 +28,18 @@ module.exports = function(options){
         // Request is authorized.
         // Todo: Temporary for req.user or req.session
         var bearer = req.headers.authorization.replace('Bearer','').replace('bearer','').trim()
+        if(config.db==='mongo'){
+          return db.OAuthAccessToken.findOne({ access_token: bearer})
+            .populate('User')
+            .then(function(aT){
+            req.user = aT ? aT.User : {};
+            next()
+          }).catch(function(err){
+            console.log("Error while getting session",err)
+            req.user = null
+            next()
+          })
+        }
         return db.OAuthAccessToken.findOne({
           include: [{
             model:db.User,
 
@@ -5,14 +5,11 @@
 var oauthServer = require('oauth2-server');
 var Request = oauthServer.Request;
 var Response = oauthServer.Response;
+var config = require('../../config')
 
-var oauth = new oauthServer({
-  model: require('./models.js')
-});
+var oauth = require('./oauth')
 
 module.exports = function(app){
-
-
   app.all('/oauth/token', function(req,res,next){
     var request = new Request(req);
     var response = new Response(res);
@@ -23,10 +20,23 @@ module.exports = function(app){
         // Todo: remove unnecessary values in response
         return res.json(token)
       }).catch(function(err){
-        return res.status( 500).json(err)
+        return res.status(500).json(err)
       })
   });
 
+  app.post('/authorise', function(req, res){
+    var request = new Request(req);
+    var response = new Response(res);
+
+    return oauth.authorize(request, response).then(function(success) {
+      //  if (req.body.allow !== 'true') return callback(null, false);
+      //  return callback(null, true, req.user);
+        res.json(success)
+    }).catch(function(err){
+      res.status(err.code || 500).json(err)
+    })
+  });
+
   app.get('/authorise', function(req, res) {
     return db.OAuthClient.findOne({
         where: {
@@ -42,17 +52,4 @@ module.exports = function(app){
         return res.status(err.code || 500).json(err)
       });
   });
-
-  app.post('/authorise', function(req, res){
-    var request = new Request(req);
-    var response = new Response(res);
-
-    return oauth.authorize(request, response).then(function(success) {
-      //  if (req.body.allow !== 'true') return callback(null, false);
-      //  return callback(null, true, req.user);
-        res.json(success)
-    }).catch(function(err){
-      res.status(err.code || 500).json(err)
-    })
-  });
 }
@@ -0,0 +1,255 @@
+/**
+ * Created by Manjesh on 14-05-2016.
+ */
+
+var _ = require('lodash');
+var mongodb = require('./mongodb');
+var User = mongodb.User;
+var OAuthClient = mongodb.OAuthClient;
+var OAuthAccessToken = mongodb.OAuthAccessToken;
+var OAuthAuthorizationCode = mongodb.OAuthAuthorizationCode;
+var OAuthRefreshToken = mongodb.OAuthRefreshToken;
+
+function getAccessToken(bearerToken) {
+  console.log("getAccessToken",bearerToken)
+  return OAuthAccessToken
+  //User,OAuthClient
+    .findOne({access_token: bearerToken})
+    .populate('User')
+    .populate('OAuthClient')
+    .then(function (accessToken) {
+      console.log('at',accessToken)
+      if (!accessToken) return false;
+      var token = accessToken;
+      token.user = token.User;
+      token.client = token.OAuthClient;
+      token.scope = token.scope
+      return token;
+    })
+    .catch(function (err) {
+      console.log("getAccessToken - Err: ")
+    });
+}
+
+function getClient(clientId, clientSecret) {
+  console.log("getClient",clientId, clientSecret)
+  const options = {client_id: clientId};
+  if (clientSecret) options.client_secret = clientSecret;
+
+  return OAuthClient
+    .findOne(options)
+    .then(function (client) {
+      if (!client) return new Error("client not found");
+      var clientWithGrants = client
+      clientWithGrants.grants = ['authorization_code', 'password', 'refresh_token', 'client_credentials']
+      // Todo: need to create another table for redirect URIs
+      clientWithGrants.redirectUris = [clientWithGrants.redirect_uri]
+      delete clientWithGrants.redirect_uri
+      //clientWithGrants.refreshTokenLifetime = integer optional
+      //clientWithGrants.accessTokenLifetime  = integer optional
+      return clientWithGrants
+    }).catch(function (err) {
+      console.log("getClient - Err: ", err)
+    });
+}
+
+
+function getUser(username, password) {
+  return User
+    .findOne({username: username})
+    .then(function (user) {
+      console.log("u",user)
+      return user.password == password ? user : false;
+    })
+    .catch(function (err) {
+      console.log("getUser - Err: ", err)
+    });
+}
+
+function revokeAuthorizationCode(code) {
+  console.log("revokeAuthorizationCode",code)
+  return OAuthAuthorizationCode.findOne({
+    where: {
+      authorization_code: code.code
+    }
+  }).then(function (rCode) {
+    //if(rCode) rCode.destroy();
+    /***
+     * As per the discussion we need set older date
+     * revokeToken will expected return a boolean in future version
+     * https://github.com/oauthjs/node-oauth2-server/pull/274
+     * https://github.com/oauthjs/node-oauth2-server/issues/290
+     */
+    var expiredCode = code
+    expiredCode.expiresAt = new Date('2015-05-28T06:59:53.000Z')
+    return expiredCode
+  }).catch(function (err) {
+    console.log("getUser - Err: ", err)
+  });
+}
+
+function revokeToken(token) {
+  console.log("revokeToken",token)
+  return OAuthRefreshToken.findOne({
+    where: {
+      refresh_token: token.refreshToken
+    }
+  }).then(function (rT) {
+    if (rT) rT.destroy();
+    /***
+     * As per the discussion we need set older date
+     * revokeToken will expected return a boolean in future version
+     * https://github.com/oauthjs/node-oauth2-server/pull/274
+     * https://github.com/oauthjs/node-oauth2-server/issues/290
+     */
+    var expiredToken = token
+    expiredToken.refreshTokenExpiresAt = new Date('2015-05-28T06:59:53.000Z')
+    return expiredToken
+  }).catch(function (err) {
+    console.log("revokeToken - Err: ", err)
+  });
+}
+
+
+function saveToken(token, client, user) {
+  console.log("saveToken",token, client, user)
+  return Promise.all([
+      OAuthAccessToken.create({
+        access_token: token.accessToken,
+        expires: token.accessTokenExpiresAt,
+        OAuthClient: client._id,
+        User: user._id,
+        scope: token.scope
+      }),
+      token.refreshToken ? OAuthRefreshToken.create({ // no refresh token for client_credentials
+        refresh_token: token.refreshToken,
+        expires: token.refreshTokenExpiresAt,
+        OAuthClient: client._id,
+        User: user._id,
+        scope: token.scope
+      }) : [],
+
+    ])
+    .then(function (resultsArray) {
+      return _.assign(  // expected to return client and user, but not returning
+        {
+          client: client,
+          user: user,
+          access_token: token.accessToken, // proxy
+          refresh_token: token.refreshToken, // proxy
+        },
+        token
+      )
+    })
+    .catch(function (err) {
+      console.log("revokeToken - Err: ", err)
+    });
+}
+
+function getAuthorizationCode(code) {
+  console.log("getAuthorizationCode",code)
+  return OAuthAuthorizationCode
+    .findOne({authorization_code: code})
+    .populate('User')
+    .populate('OAuthClient')
+    .then(function (authCodeModel) {
+      if (!authCodeModel) return false;
+      var client = authCodeModel.OAuthClient
+      var user = authCodeModel.User
+      return reCode = {
+        code: code,
+        client: client,
+        expiresAt: authCodeModel.expires,
+        redirectUri: client.redirect_uri,
+        user: user,
+        scope: authCodeModel.scope,
+      };
+    }).catch(function (err) {
+      console.log("getAuthorizationCode - Err: ", err)
+    });
+}
+
+function saveAuthorizationCode(code, client, user) {
+  console.log("saveAuthorizationCode",code, client, user)
+  return OAuthAuthorizationCode
+    .create({
+      expires: code.expiresAt,
+      OAuthClient: client._id,
+      authorization_code: code.authorizationCode,
+      User: user._id,
+      scope: code.scope
+    })
+    .then(function () {
+      code.code = code.authorizationCode
+      return code
+    }).catch(function (err) {
+      console.log("saveAuthorizationCode - Err: ", err)
+    });
+}
+
+function getUserFromClient(client) {
+  console.log("getUserFromClient", client)
+  var options = {client_id: client.client_id};
+  if (client.client_secret) options.client_secret = client.client_secret;
+
+  return OAuthClient
+    .findOne(options)
+    .populate('User')
+    .then(function (client) {
+      console.log(client)
+      if (!client) return false;
+      if (!client.User) return false;
+      return client.User;
+    }).catch(function (err) {
+      console.log("getUserFromClient - Err: ", err)
+    });
+}
+
+function getRefreshToken(refreshToken) {
+  console.log("getRefreshToken", refreshToken)
+  if (!refreshToken || refreshToken === 'undefined') return false
+//[OAuthClient, User]
+  return OAuthRefreshToken
+    .findOne({refresh_token: refreshToken})
+    .populate('User')
+    .populate('OAuthClient')
+    .then(function (savedRT) {
+      console.log("srt",savedRT)
+      var tokenTemp = {
+        user: savedRT ? savedRT.User : {},
+        client: savedRT ? savedRT.OAuthClient : {},
+        refreshTokenExpiresAt: savedRT ? new Date(savedRT.expires) : null,
+        refreshToken: refreshToken,
+        refresh_token: refreshToken,
+        scope: savedRT.scope
+      };
+      return tokenTemp;
+
+    }).catch(function (err) {
+      console.log("getRefreshToken - Err: ", err)
+    });
+}
+
+function validateScope(token, scope) {
+  console.log("validateScope", token, scope)
+  return token.scope === scope
+}
+
+module.exports = {
+  //generateOAuthAccessToken, optional - used for jwt
+  //generateAuthorizationCode, optional
+  //generateOAuthRefreshToken, - optional
+  getAccessToken: getAccessToken,
+  getAuthorizationCode: getAuthorizationCode, //getOAuthAuthorizationCode renamed to,
+  getClient: getClient,
+  getRefreshToken: getRefreshToken,
+  getUser: getUser,
+  getUserFromClient: getUserFromClient,
+  //grantTypeAllowed, Removed in oauth2-server 3.0
+  revokeAuthorizationCode: revokeAuthorizationCode,
+  revokeToken: revokeToken,
+  saveToken: saveToken,//saveOAuthAccessToken, renamed to
+  saveAuthorizationCode: saveAuthorizationCode, //renamed saveOAuthAuthorizationCode,
+  validateScope: validateScope,
+}
+
@@ -0,0 +1,18 @@
+/**
+ * Created by Manjesh on 14-05-2016.
+ */
+
+'use strict';
+
+var mongoose = require('mongoose'),
+  Schema = mongoose.Schema;
+
+var OAuthAccessTokenSchema = new Schema({
+  access_token: String,
+  expires: Date,
+  scope:  String,
+  User:  { type : Schema.Types.ObjectId, ref: 'User' },
+  OAuthClient: { type : Schema.Types.ObjectId, ref: 'OAuthClient' },
+});
+
+module.exports = mongoose.model('OAuthAccessToken', OAuthAccessTokenSchema);
@@ -0,0 +1,20 @@
+/**
+ * Created by Manjesh on 14-05-2016.
+ */
+
+'use strict';
+
+var mongoose = require('mongoose'),
+  Schema = mongoose.Schema;
+
+var OAuthAuthorizationCodeSchema = new Schema({
+  authorization_code: String,
+  expires: Date,
+  redirect_uri:  String,
+  scope:  String,
+  User:  { type : Schema.Types.ObjectId, ref: 'User' },
+  OAuthClient: { type : Schema.Types.ObjectId, ref: 'OAuthClient' },
+});
+
+module.exports = mongoose.model('OAuthAuthorizationCode', OAuthAuthorizationCodeSchema);
+