mirror of
https://git.joinsharkey.org/Sharkey/Sharkey.git
synced 2024-09-21 23:01:59 +03:00
f0a29721c9
* wip * Update note.ts * Update timeline.ts * Update core.ts * wip * Update generate-visibility-query.ts * wip * wip * wip * wip * wip * Update global-timeline.ts * wip * wip * wip * Update vote.ts * wip * wip * Update create.ts * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * Update files.ts * wip * wip * Update CONTRIBUTING.md * wip * wip * wip * wip * wip * wip * wip * wip * Update read-notification.ts * wip * wip * wip * wip * wip * wip * wip * Update cancel.ts * wip * wip * wip * Update show.ts * wip * wip * Update gen-id.ts * Update create.ts * Update id.ts * wip * wip * wip * wip * wip * wip * wip * Docker: Update files about Docker (#4599) * Docker: Use cache if files used by `yarn install` was not updated This patch reduces the number of times to installing node_modules. For example, `yarn install` step will be skipped when only ".config/default.yml" is updated. * Docker: Migrate MongoDB to Postgresql Misskey uses Postgresql as a database instead of Mongodb since version 11. * Docker: Uncomment about data persistence This patch will save a lot of databases. * wip * wip * wip * Update activitypub.ts * wip * wip * wip * Update logs.ts * wip * Update drive-file.ts * Update register.ts * wip * wip * Update mentions.ts * wip * wip * wip * Update recommendation.ts * wip * Update index.ts * wip * Update recommendation.ts * Doc: Update docker.ja.md and docker.en.md (#1) (#4608) Update how to set up misskey. * wip * ✌️ * wip * Update note.ts * Update postgre.ts * wip * wip * wip * wip * Update add-file.ts * wip * wip * wip * Clean up * Update logs.ts * wip * 🍕 * wip * Ad notes * wip * Update api-visibility.ts * Update note.ts * Update add-file.ts * tests * tests * Update postgre.ts * Update utils.ts * wip * wip * Refactor * wip * Refactor * wip * wip * Update show-users.ts * Update update-instance.ts * wip * Update feed.ts * Update outbox.ts * Update outbox.ts * Update user.ts * wip * Update list.ts * Update update-hashtag.ts * wip * Update update-hashtag.ts * Refactor * Update update.ts * wip * wip * ✌️ * clean up * docs * Update push.ts * wip * Update api.ts * wip * ✌️ * Update make-pagination-query.ts * ✌️ * Delete hashtags.ts * Update instances.ts * Update instances.ts * Update create.ts * Update search.ts * Update reversi-game.ts * Update signup.ts * Update user.ts * id * Update example.yml * 🎨 * objectid * fix * reversi * reversi * Fix bug of chart engine * Add test of chart engine * Improve test * Better testing * Improve chart engine * Refactor * Add test of chart engine * Refactor * Add chart test * Fix bug * コミットし忘れ * Refactoring * ✌️ * Add tests * Add test * Extarct note tests * Refactor * 存在しないユーザーにメンションできなくなっていた問題を修正 * Fix bug * Update update-meta.ts * Fix bug * Update mention.vue * Fix bug * Update meta.ts * Update CONTRIBUTING.md * Fix bug * Fix bug * Fix bug * Clean up * Clean up * Update notification.ts * Clean up * Add mute tests * Add test * Refactor * Add test * Fix test * Refactor * Refactor * Add tests * Update utils.ts * Update utils.ts * Fix test * Update package.json * Update update.ts * Update manifest.ts * Fix bug * Fix bug * Add test * 🎨 * Update endpoint permissions * Updaye permisison * Update person.ts #4299 * データベースと同期しないように * Fix bug * Fix bug * Update reversi-game.ts * Use a feature of Node v11.7.0 to extract a public key (#4644) * wip * wip * ✌️ * Refactoring #1540 * test * test * test * test * test * test * test * Fix bug * Fix test * 🍣 * wip * #4471 * Add test for #4335 * Refactor * Fix test * Add tests * 🕓 * Fix bug * Add test * Add test * rename * Fix bug
88 lines
1.9 KiB
TypeScript
88 lines
1.9 KiB
TypeScript
import * as Koa from 'koa';
|
|
import * as bcrypt from 'bcryptjs';
|
|
import * as speakeasy from 'speakeasy';
|
|
import { publishMainStream } from '../../../services/stream';
|
|
import signin from '../common/signin';
|
|
import config from '../../../config';
|
|
import { Users, Signins } from '../../../models';
|
|
import { ILocalUser } from '../../../models/entities/user';
|
|
import { genId } from '../../../misc/gen-id';
|
|
|
|
export default async (ctx: Koa.BaseContext) => {
|
|
ctx.set('Access-Control-Allow-Origin', config.url);
|
|
ctx.set('Access-Control-Allow-Credentials', 'true');
|
|
|
|
const body = ctx.request.body as any;
|
|
const username = body['username'];
|
|
const password = body['password'];
|
|
const token = body['token'];
|
|
|
|
if (typeof username != 'string') {
|
|
ctx.status = 400;
|
|
return;
|
|
}
|
|
|
|
if (typeof password != 'string') {
|
|
ctx.status = 400;
|
|
return;
|
|
}
|
|
|
|
if (token != null && typeof token != 'string') {
|
|
ctx.status = 400;
|
|
return;
|
|
}
|
|
|
|
// Fetch user
|
|
const user = await Users.findOne({
|
|
usernameLower: username.toLowerCase(),
|
|
host: null
|
|
}) as ILocalUser;
|
|
|
|
if (user == null) {
|
|
ctx.throw(404, {
|
|
error: 'user not found'
|
|
});
|
|
return;
|
|
}
|
|
|
|
// Compare password
|
|
const same = await bcrypt.compare(password, user.password);
|
|
|
|
if (same) {
|
|
if (user.twoFactorEnabled) {
|
|
const verified = (speakeasy as any).totp.verify({
|
|
secret: user.twoFactorSecret,
|
|
encoding: 'base32',
|
|
token: token
|
|
});
|
|
|
|
if (verified) {
|
|
signin(ctx, user);
|
|
} else {
|
|
ctx.throw(403, {
|
|
error: 'invalid token'
|
|
});
|
|
}
|
|
} else {
|
|
signin(ctx, user);
|
|
}
|
|
} else {
|
|
ctx.throw(403, {
|
|
error: 'incorrect password'
|
|
});
|
|
}
|
|
|
|
// Append signin history
|
|
const record = await Signins.save({
|
|
id: genId(),
|
|
createdAt: new Date(),
|
|
userId: user.id,
|
|
ip: ctx.ip,
|
|
headers: ctx.headers,
|
|
success: same
|
|
});
|
|
|
|
// Publish signin event
|
|
publishMainStream(user.id, 'signin', await Signins.pack(record));
|
|
};
|