richard
/
wiki
mirror of https://github.com/Requarks/wiki.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
37 Commits
3 Branches
120 Tags
80 MiB
Tree: 1f38cf9406
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '1f38cf9406'
${ noResults }
wiki/controllers/auth.js

71 lines
1.6 KiB
Raw Normal View History

Base server logic
8 years ago
Packages fix
8 years ago
Base server logic
8 years ago
Added express-brute-loki, UI improvements, error page
8 years ago
Base server logic
8 years ago
Added express-brute-loki, UI improvements, error page
8 years ago
Base server logic
8 years ago
Added express-brute-loki, UI improvements, error page
8 years ago
Base server logic
8 years ago
Added express-brute-loki, UI improvements, error page
8 years ago
Base server logic
8 years ago
  1. var express = require('express');
  2. var router = express.Router();
  3. var passport = require('passport');
  4. var ExpressBrute = require('express-brute');
  5. var ExpressBruteLokiStore = require('express-brute-loki');
  6. var moment = require('moment');
  8. /**
  9. * Setup Express-Brute
  10. */
  11. var EBstore = new ExpressBruteLokiStore({
  12. path: './data/brute.db'
  13. });
  14. var bruteforce = new ExpressBrute(EBstore, {
  15. freeRetries: 5,
  16. minWait: 60 * 1000,
  17. maxWait: 5 * 60 * 1000,
  18. refreshTimeoutOnRequest: false,
  19. failCallback(req, res, next, nextValidRequestDate) {
  20. req.flash('alert', {
  21. class: 'error',
  22. title: 'Too many attempts!',
  23. message: "You've made too many failed attempts in a short period of time, please try again " + moment(nextValidRequestDate).fromNow() + '.',
  24. iconClass: 'fa-times'
  25. });
  26. res.redirect('/login');
  27. }
  28. });
  30. /**
  31. * Login form
  32. */
  33. router.get('/login', function(req, res, next) {
  34. res.render('auth/login', {
  35. usr: res.locals.usr
  36. });
  37. });
  39. router.post('/login', bruteforce.prevent, function(req, res, next) {
  40. passport.authenticate('local', function(err, user, info) {
  42. if (err) { return next(err); }
  44. if (!user) {
  45. req.flash('alert', {
  46. class: 'error',
  47. title: 'Invalid login',
  48. message: "The email or password is invalid.",
  49. iconClass: 'fa-times'
  50. });
  51. return res.redirect('/login');
  52. }
  54. req.logIn(user, function(err) {
  55. if (err) { return next(err); }
  56. req.brute.reset(function () {
  57. return res.redirect('/');
  58. });
  59. });
  61. })(req, res, next);
  62. });
  64. /**
  65. * Logout
  66. */
  67. router.get('/logout', function(req, res) {
  68. req.logout();
  69. res.redirect('/');
  70. });
  72. module.exports = router;