mirror of
https://github.com/IT4Change/gradido.git
synced 2026-02-06 09:56:05 +00:00
114 lines
4.7 KiB
TypeScript
114 lines
4.7 KiB
TypeScript
import { OpenConnectionArgs } from '../model/OpenConnectionArgs'
|
|
import { Community as DbCommunity } from '@entity/Community'
|
|
import { FederatedCommunity as DbFedCommunity } from '@entity/FederatedCommunity'
|
|
import { federationLogger as logger } from '@/server/logger'
|
|
import { OpenConnectionCallbackArgs } from '../model/OpenConnectionCallbackArgs'
|
|
// eslint-disable-next-line camelcase
|
|
import { randombytes_random } from 'sodium-native'
|
|
import { AuthenticationClientFactory } from '@/client/AuthenticationClientFactory'
|
|
// eslint-disable-next-line camelcase
|
|
import { AuthenticationClient as V1_0_AuthenticationClient } from '@/client/1_0/AuthenticationClient'
|
|
import { AuthenticationArgs } from '../model/AuthenticationArgs'
|
|
import { CommunityLoggingView } from '@logging/CommunityLogging.view'
|
|
import { FederatedCommunityLoggingView } from '@logging/FederatedCommunityLogging.view'
|
|
|
|
export async function startOpenConnectionCallback(
|
|
args: OpenConnectionArgs,
|
|
comA: DbCommunity,
|
|
api: string,
|
|
): Promise<void> {
|
|
logger.debug(`Authentication: startOpenConnectionCallback() with:`, {
|
|
args,
|
|
comA: new CommunityLoggingView(comA),
|
|
})
|
|
try {
|
|
const homeFedCom = await DbFedCommunity.findOneByOrFail({
|
|
foreign: false,
|
|
apiVersion: api,
|
|
})
|
|
const fedComA = await DbFedCommunity.findOneByOrFail({
|
|
foreign: true,
|
|
apiVersion: api,
|
|
publicKey: comA.publicKey,
|
|
})
|
|
const oneTimeCode = randombytes_random()
|
|
// store oneTimeCode in requestedCom.community_uuid as authenticate-request-identifier
|
|
comA.communityUuid = oneTimeCode.toString()
|
|
await DbCommunity.save(comA)
|
|
logger.debug(
|
|
`Authentication: stored oneTimeCode in requestedCom:`,
|
|
new CommunityLoggingView(comA),
|
|
)
|
|
|
|
const client = AuthenticationClientFactory.getInstance(fedComA)
|
|
// eslint-disable-next-line camelcase
|
|
if (client instanceof V1_0_AuthenticationClient) {
|
|
const callbackArgs = new OpenConnectionCallbackArgs()
|
|
callbackArgs.oneTimeCode = oneTimeCode.toString()
|
|
// TODO encrypt callbackArgs.url with requestedCom.publicKey and sign it with homeCom.privateKey
|
|
callbackArgs.url = homeFedCom.endPoint.endsWith('/')
|
|
? homeFedCom.endPoint + homeFedCom.apiVersion
|
|
: homeFedCom.endPoint + '/' + homeFedCom.apiVersion
|
|
logger.debug(`Authentication: start openConnectionCallback with args:`, callbackArgs)
|
|
if (await client.openConnectionCallback(callbackArgs)) {
|
|
logger.debug('Authentication: startOpenConnectionCallback() successful:', callbackArgs)
|
|
} else {
|
|
logger.error('Authentication: startOpenConnectionCallback() failed:', callbackArgs)
|
|
}
|
|
}
|
|
} catch (err) {
|
|
logger.error('Authentication: error in startOpenConnectionCallback:', err)
|
|
}
|
|
}
|
|
|
|
export async function startAuthentication(
|
|
oneTimeCode: string,
|
|
fedComB: DbFedCommunity,
|
|
): Promise<void> {
|
|
logger.debug(`Authentication: startAuthentication()...`, {
|
|
oneTimeCode,
|
|
fedComB: new FederatedCommunityLoggingView(fedComB),
|
|
})
|
|
try {
|
|
const homeCom = await DbCommunity.findOneByOrFail({ foreign: false })
|
|
|
|
// TODO encrypt homeCom.uuid with homeCom.privateKey and sign it with callbackFedCom.publicKey
|
|
const client = AuthenticationClientFactory.getInstance(fedComB)
|
|
// eslint-disable-next-line camelcase
|
|
if (client instanceof V1_0_AuthenticationClient) {
|
|
const authenticationArgs = new AuthenticationArgs()
|
|
authenticationArgs.oneTimeCode = oneTimeCode
|
|
// TODO encrypt callbackArgs.url with requestedCom.publicKey and sign it with homeCom.privateKey
|
|
if (homeCom.communityUuid) {
|
|
authenticationArgs.uuid = homeCom.communityUuid
|
|
}
|
|
logger.debug(`Authentication: invoke authenticate() with:`, authenticationArgs)
|
|
const fedComUuid = await client.authenticate(authenticationArgs)
|
|
logger.debug(`Authentication: response of authenticate():`, fedComUuid)
|
|
if (fedComUuid !== null) {
|
|
logger.debug(
|
|
`Authentication: received communityUUid for callbackFedCom:`,
|
|
fedComUuid,
|
|
fedComB,
|
|
)
|
|
const callbackCom = await DbCommunity.findOneByOrFail({
|
|
foreign: true,
|
|
publicKey: fedComB.publicKey,
|
|
})
|
|
// TODO decrypt fedComUuid with callbackFedCom.publicKey
|
|
callbackCom.communityUuid = fedComUuid
|
|
callbackCom.authenticatedAt = new Date()
|
|
await DbCommunity.save(callbackCom)
|
|
logger.debug(
|
|
'Authentication: Community Authentication successful:',
|
|
new CommunityLoggingView(callbackCom),
|
|
)
|
|
} else {
|
|
logger.error('Authentication: Community Authentication failed:', authenticationArgs)
|
|
}
|
|
}
|
|
} catch (err) {
|
|
logger.error('Authentication: error in startOpenConnectionCallback:', err)
|
|
}
|
|
}
|