Merge pull request #26 from VaalaCat/gitlab

AlinaNova21 · web-flow · commit 01d07d7f5f2e · 2021-12-06T08:34:06.000-06:00
add gitlab oauth support
diff --git a/.DS_Store b/.DS_Store
diff --git a/lib/backend.js b/lib/backend.js
@@ -106,6 +106,7 @@ function setupRouter (config) {
   require('./register')(config)
   require('./steam')(config)
   require('./github')(config)
+  require('./gitlab')(config)
   require('./menu.js')(config)
 }
 
diff --git a/lib/gitlab/index.js b/lib/gitlab/index.js
@@ -0,0 +1,97 @@
+const path = require('path')
+const express = require('express')
+const bodyParser = require('body-parser')
+const cookieParser = require('cookie-parser')
+
+const passport = require('passport')
+const GitLabStrategy = require('passport-gitlab2').Strategy
+
+const authlib = require(path.join(path.dirname(require.main.filename), '../lib/authlib'))
+const auth = require(path.join(path.dirname(require.main.filename), '../lib/game/api/auth'))
+
+const app = new express.Router()
+
+module.exports = function (config) {
+  const clientId = process.env.GITLAB_APP_ID || (config.auth.screepsrc.gitlab && config.auth.screepsrc.gitlab.appId) || null
+  const clientSecret = process.env.GITLAB_APP_SECRET || (config.auth.screepsrc.gitlab && config.auth.screepsrc.gitlab.appSecret) || null
+  const enabled = !!(clientId && clientSecret)
+  const gitlabURL = process.env.GITLAB_URL || "https://gitlab.com"
+
+  config.auth.info.gitlab = enabled
+  let registered = false
+
+  app.use(cookieParser())
+
+  app.get('/', (req, res, next) => {
+    let { token } = req.query
+    if (token) res.cookie('auth_token', token)
+    if (!registered) {
+      registered = true
+      let proto = req.get('X-Forwarded-Proto') || req.protocol || 'http'
+      let baseUrl = `${proto}://${req.get('host')}`
+      passport.use('gitlab', new GitLabStrategy({
+        callbackURL: baseUrl + '/api/auth/gitlab/return',
+        baseURL: gitlabURL,
+        clientID: clientId,
+        clientSecret: clientSecret
+      }, (accessToken, refreshTokem, profile, done) => done(null, profile.id)))
+    }
+    setTimeout(next, 100)
+  }, passport.authenticate('gitlab'))
+
+  app.get('/return', passport.authenticate('gitlab', { failureRedirect: '/' }), (req, res) => {
+    let user = null
+    let token = req.cookies.auth_token
+    res.clearCookie('auth_token')
+    if (token) user = authlib.checkToken(token)
+    gitlabFindOrCreateUser(user, req.user)
+      .then(user => authlib.genToken(user._id))
+      .then(token => {
+        let json = JSON.stringify({ username: req.user.username, token })
+        res.end(`<html><body><script type="text/javascript">opener.postMessage(JSON.stringify(${json}), '*');window.close();</script></body>`)
+      })
+      .catch(err => res.end('Failed to auth'))
+  })
+  // })
+  config.auth.router.use('/api/auth/gitlab', app)
+  config.auth.router.post('/api/user/unlink-gitlab', auth.tokenAuth, (req, res) => {
+    if (!req.user) return
+    config.common.storage.db.users.update({ _id: req.user._id }, { $unset: { gitlab: true } })
+    res.json({ ok: 1 })
+  })
+
+  function gitlabFindOrCreateUser(user, id) {
+    let { db, env } = config.common.storage
+    if (user) {
+      return user.then((user) => {
+        return db.users.update({ _id: user._id }, { $set: { gitlab: { id } } })
+          .then(() => user)
+      })
+    }
+    return db.users.findOne({ 'gitlab.id': id })
+      .then((user) => {
+        if (user) return user
+        user = {
+          gitlab: { id },
+          cpu: 100,
+          cpuAvailable: 0,
+          registeredDate: new Date(),
+          money: 0,
+          gcl: 0
+        };
+        return db.users.insert(user)
+          .then(result => {
+            user = result;
+            return db['users.code'].insert({
+              user: user._id,
+              modules: { main: '' },
+              branch: 'default',
+              activeWorld: true,
+              activeSim: true
+            })
+          })
+          .then(() => env.set('scrUserMemory:' + user._id, JSON.stringify({})))
+          .then(() => user)
+      })
+  }
+}
diff --git a/lib/menu.js b/lib/menu.js
@@ -3,7 +3,8 @@ module.exports = config => {
   const authTypes = ['password']
   if (config.auth.info.steam) authTypes.push('steam')
   if (config.auth.info.github) authTypes.push('github')
-  
+  if (config.auth.info.gitlab) authTypes.push('gitlab')
+
   config.backend.features.push(...[
     {
       name: 'auth',
diff --git a/package.json b/package.json
@@ -25,6 +25,7 @@
     "ini": "^1.3.4",
     "passport": "^0.3.2",
     "passport-github": "^1.1.0",
+    "passport-gitlab2": "^5.0.0",
     "passport-http": "^0.3.0",
     "passport-local": "^1.0.0",
     "passport-steam": "^1.0.9"
diff --git a/yarn.lock b/yarn.lock
@@ -38,11 +38,6 @@ ajv@^6.5.5:
     json-schema-traverse "^0.4.1"
     uri-js "^4.2.2"
 
-ansi-regex@*:
-  version "4.1.0"
-  resolved "https://registry.yarnpkg.com/ansi-regex/-/ansi-regex-4.1.0.tgz#8b9f8f08cf1acb843756a839ca8c7e3168c51997"
-  integrity sha512-1apePfXM1UOSqw0o9IiFAovVz9M5S1Dg+4TrDwfMewQ6p/rmMueb7tWZjQ1rx4Loy1ArBggoqGpfqqdI4rondg==
-
 ansi-regex@^2.0.0:
   version "2.1.1"
   resolved "https://registry.yarnpkg.com/ansi-regex/-/ansi-regex-2.1.1.tgz#c3b33ab5ee360d86e0e628f0468ae7ef27d654df"
@@ -889,7 +884,7 @@ iferr@^0.1.5:
   resolved "https://registry.yarnpkg.com/iferr/-/iferr-0.1.5.tgz#c60eed69e6d8fdb6b3104a1fcbca1c192dc5b501"
   integrity sha1-xg7taebY/bazEEofy8ocGS3FtQE=
 
-imurmurhash@*, imurmurhash@^0.1.4:
+imurmurhash@^0.1.4:
   version "0.1.4"
   resolved "https://registry.yarnpkg.com/imurmurhash/-/imurmurhash-0.1.4.tgz#9218b9b2b928a238b13dc4fb6b6d576f231453ea"
   integrity sha1-khi5srkoojixPcT7a21XbyMUU+o=
@@ -1460,6 +1455,13 @@ passport-github@^1.1.0:
   dependencies:
     passport-oauth2 "1.x.x"
 
+passport-gitlab2@^5.0.0:
+  version "5.0.0"
+  resolved "https://registry.yarnpkg.com/passport-gitlab2/-/passport-gitlab2-5.0.0.tgz#ea37e5285321c026a02671e87469cac28cce9b69"
+  integrity sha512-cXQMgM6JQx9wHVh7JLH30D8fplfwjsDwRz+zS0pqC8JS+4bNmc1J04NGp5g2M4yfwylH9kQRrMN98GxMw7q7cg==
+  dependencies:
+    passport-oauth2 "^1.4.0"
+
 passport-http@^0.3.0:
   version "0.3.0"
   resolved "https://registry.yarnpkg.com/passport-http/-/passport-http-0.3.0.tgz#8ee53d4380be9c60df2151925029826f77115603"
@@ -1485,6 +1487,17 @@ passport-oauth2@1.x.x:
     uid2 "0.0.x"
     utils-merge "1.x.x"
 
+passport-oauth2@^1.4.0:
+  version "1.6.1"
+  resolved "https://registry.yarnpkg.com/passport-oauth2/-/passport-oauth2-1.6.1.tgz#c5aee8f849ce8bd436c7f81d904a3cd1666f181b"
+  integrity sha512-ZbV43Hq9d/SBSYQ22GOiglFsjsD1YY/qdiptA+8ej+9C1dL1TVB+mBE5kDH/D4AJo50+2i8f4bx0vg4/yDDZCQ==
+  dependencies:
+    base64url "3.x.x"
+    oauth "0.9.x"
+    passport-strategy "1.x.x"
+    uid2 "0.0.x"
+    utils-merge "1.x.x"
+
 passport-openid@^0.4.0:
   version "0.4.0"
   resolved "https://registry.yarnpkg.com/passport-openid/-/passport-openid-0.4.0.tgz#c2b58f5ff4a28f285700250712d8ea5677405cd6"

Original file line number	Diff line number	Diff line change
`@@ -106,6 +106,7 @@ function setupRouter (config) {`
`106`	`106`	`require('./register')(config)`
`107`	`107`	`require('./steam')(config)`
`108`	`108`	`require('./github')(config)`
	`109`	`+ require('./gitlab')(config)`
`109`	`110`	`require('./menu.js')(config)`
`110`	`111`	`}`
`111`	`112`