diff options
Diffstat (limited to 'lib')
| -rw-r--r-- | lib/pleroma/web/auth/authenticator.ex | 63 | ||||
| -rw-r--r-- | lib/pleroma/web/auth/helpers.ex | 33 | ||||
| -rw-r--r-- | lib/pleroma/web/auth/ldap_authenticator.ex | 3 | ||||
| -rw-r--r-- | lib/pleroma/web/auth/pleroma_authenticator.ex | 3 | ||||
| -rw-r--r-- | lib/pleroma/web/auth/wrapper_authenticator.ex | 42 | ||||
| -rw-r--r-- | lib/pleroma/web/o_auth/o_auth_controller.ex | 2 | ||||
| -rw-r--r-- | lib/pleroma/web/templates/o_auth/o_auth/show.html.eex | 2 | ||||
| -rw-r--r-- | lib/pleroma/web/twitter_api/controllers/remote_follow_controller.ex | 4 | 
8 files changed, 84 insertions, 68 deletions
| diff --git a/lib/pleroma/web/auth/authenticator.ex b/lib/pleroma/web/auth/authenticator.ex index 84741ee11..3fe9718c4 100644 --- a/lib/pleroma/web/auth/authenticator.ex +++ b/lib/pleroma/web/auth/authenticator.ex @@ -3,68 +3,11 @@  # SPDX-License-Identifier: AGPL-3.0-only  defmodule Pleroma.Web.Auth.Authenticator do -  alias Pleroma.Registration -  alias Pleroma.User - -  def implementation do -    Pleroma.Config.get( -      Pleroma.Web.Auth.Authenticator, -      Pleroma.Web.Auth.PleromaAuthenticator -    ) -  end - -  @callback get_user(Plug.Conn.t()) :: {:ok, User.t()} | {:error, any()} -  def get_user(plug), do: implementation().get_user(plug) - -  @callback create_from_registration(Plug.Conn.t(), Registration.t()) :: +  @callback get_user(Plug.Conn.t()) :: {:ok, user :: struct()} | {:error, any()} +  @callback create_from_registration(Plug.Conn.t(), registration :: struct()) ::                {:ok, User.t()} | {:error, any()} -  def create_from_registration(plug, registration), -    do: implementation().create_from_registration(plug, registration) - -  @callback get_registration(Plug.Conn.t()) :: {:ok, Registration.t()} | {:error, any()} -  def get_registration(plug), do: implementation().get_registration(plug) - +  @callback get_registration(Plug.Conn.t()) :: {:ok, registration :: struct()} | {:error, any()}    @callback handle_error(Plug.Conn.t(), any()) :: any() -  def handle_error(plug, error), -    do: implementation().handle_error(plug, error) -    @callback auth_template() :: String.t() | nil -  def auth_template do -    # Note: `config :pleroma, :auth_template, "..."` support is deprecated -    implementation().auth_template() || -      Pleroma.Config.get([:auth, :auth_template], Pleroma.Config.get(:auth_template)) || -      "show.html" -  end -    @callback oauth_consumer_template() :: String.t() | nil -  def oauth_consumer_template do -    implementation().oauth_consumer_template() || -      Pleroma.Config.get([:auth, :oauth_consumer_template], "consumer.html") -  end - -  @doc "Gets user by nickname or email for auth." -  @spec fetch_user(String.t()) :: User.t() | nil -  def fetch_user(name) do -    User.get_by_nickname_or_email(name) -  end - -  # Gets name and password from conn -  # -  @spec fetch_credentials(Plug.Conn.t() | map()) :: -          {:ok, {name :: any, password :: any}} | {:error, :invalid_credentials} -  def fetch_credentials(%Plug.Conn{params: params} = _), -    do: fetch_credentials(params) - -  def fetch_credentials(params) do -    case params do -      %{"authorization" => %{"name" => name, "password" => password}} -> -        {:ok, {name, password}} - -      %{"grant_type" => "password", "username" => name, "password" => password} -> -        {:ok, {name, password}} - -      _ -> -        {:error, :invalid_credentials} -    end -  end  end diff --git a/lib/pleroma/web/auth/helpers.ex b/lib/pleroma/web/auth/helpers.ex new file mode 100644 index 000000000..c566de8d4 --- /dev/null +++ b/lib/pleroma/web/auth/helpers.ex @@ -0,0 +1,33 @@ +# Pleroma: A lightweight social networking server +# Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/> +# SPDX-License-Identifier: AGPL-3.0-only + +defmodule Pleroma.Web.Auth.Helpers do +  alias Pleroma.User + +  @doc "Gets user by nickname or email for auth." +  @spec fetch_user(String.t()) :: User.t() | nil +  def fetch_user(name) do +    User.get_by_nickname_or_email(name) +  end + +  # Gets name and password from conn +  # +  @spec fetch_credentials(Plug.Conn.t() | map()) :: +          {:ok, {name :: any, password :: any}} | {:error, :invalid_credentials} +  def fetch_credentials(%Plug.Conn{params: params} = _), +    do: fetch_credentials(params) + +  def fetch_credentials(params) do +    case params do +      %{"authorization" => %{"name" => name, "password" => password}} -> +        {:ok, {name, password}} + +      %{"grant_type" => "password", "username" => name, "password" => password} -> +        {:ok, {name, password}} + +      _ -> +        {:error, :invalid_credentials} +    end +  end +end diff --git a/lib/pleroma/web/auth/ldap_authenticator.ex b/lib/pleroma/web/auth/ldap_authenticator.ex index 17e08a2a6..f77e8d203 100644 --- a/lib/pleroma/web/auth/ldap_authenticator.ex +++ b/lib/pleroma/web/auth/ldap_authenticator.ex @@ -7,8 +7,7 @@ defmodule Pleroma.Web.Auth.LDAPAuthenticator do    require Logger -  import Pleroma.Web.Auth.Authenticator, -    only: [fetch_credentials: 1, fetch_user: 1] +  import Pleroma.Web.Auth.Helpers, only: [fetch_credentials: 1, fetch_user: 1]    @behaviour Pleroma.Web.Auth.Authenticator    @base Pleroma.Web.Auth.PleromaAuthenticator diff --git a/lib/pleroma/web/auth/pleroma_authenticator.ex b/lib/pleroma/web/auth/pleroma_authenticator.ex index 401f23c9f..68472e75f 100644 --- a/lib/pleroma/web/auth/pleroma_authenticator.ex +++ b/lib/pleroma/web/auth/pleroma_authenticator.ex @@ -8,8 +8,7 @@ defmodule Pleroma.Web.Auth.PleromaAuthenticator do    alias Pleroma.User    alias Pleroma.Web.Plugs.AuthenticationPlug -  import Pleroma.Web.Auth.Authenticator, -    only: [fetch_credentials: 1, fetch_user: 1] +  import Pleroma.Web.Auth.Helpers, only: [fetch_credentials: 1, fetch_user: 1]    @behaviour Pleroma.Web.Auth.Authenticator diff --git a/lib/pleroma/web/auth/wrapper_authenticator.ex b/lib/pleroma/web/auth/wrapper_authenticator.ex new file mode 100644 index 000000000..c67082f7b --- /dev/null +++ b/lib/pleroma/web/auth/wrapper_authenticator.ex @@ -0,0 +1,42 @@ +# Pleroma: A lightweight social networking server +# Copyright © 2017-2021 Pleroma Authors <https://pleroma.social/> +# SPDX-License-Identifier: AGPL-3.0-only + +defmodule Pleroma.Web.Auth.WrapperAuthenticator do +  @behaviour Pleroma.Web.Auth.Authenticator + +  defp implementation do +    Pleroma.Config.get( +      Pleroma.Web.Auth.Authenticator, +      Pleroma.Web.Auth.PleromaAuthenticator +    ) +  end + +  @impl true +  def get_user(plug), do: implementation().get_user(plug) + +  @impl true +  def create_from_registration(plug, registration), +    do: implementation().create_from_registration(plug, registration) + +  @impl true +  def get_registration(plug), do: implementation().get_registration(plug) + +  @impl true +  def handle_error(plug, error), +    do: implementation().handle_error(plug, error) + +  @impl true +  def auth_template do +    # Note: `config :pleroma, :auth_template, "..."` support is deprecated +    implementation().auth_template() || +      Pleroma.Config.get([:auth, :auth_template], Pleroma.Config.get(:auth_template)) || +      "show.html" +  end + +  @impl true +  def oauth_consumer_template do +    implementation().oauth_consumer_template() || +      Pleroma.Config.get([:auth, :oauth_consumer_template], "consumer.html") +  end +end diff --git a/lib/pleroma/web/o_auth/o_auth_controller.ex b/lib/pleroma/web/o_auth/o_auth_controller.ex index 42f4d768f..b9aadc6a4 100644 --- a/lib/pleroma/web/o_auth/o_auth_controller.ex +++ b/lib/pleroma/web/o_auth/o_auth_controller.ex @@ -12,7 +12,7 @@ defmodule Pleroma.Web.OAuth.OAuthController do    alias Pleroma.Registration    alias Pleroma.Repo    alias Pleroma.User -  alias Pleroma.Web.Auth.Authenticator +  alias Pleroma.Web.Auth.WrapperAuthenticator, as: Authenticator    alias Pleroma.Web.ControllerHelper    alias Pleroma.Web.OAuth.App    alias Pleroma.Web.OAuth.Authorization diff --git a/lib/pleroma/web/templates/o_auth/o_auth/show.html.eex b/lib/pleroma/web/templates/o_auth/o_auth/show.html.eex index 2846ec7e7..181a9519a 100644 --- a/lib/pleroma/web/templates/o_auth/o_auth/show.html.eex +++ b/lib/pleroma/web/templates/o_auth/o_auth/show.html.eex @@ -61,5 +61,5 @@  <% end %>  <%= if Pleroma.Config.oauth_consumer_enabled?() do %> -  <%= render @view_module, Pleroma.Web.Auth.Authenticator.oauth_consumer_template(), assigns %> +  <%= render @view_module, Pleroma.Web.Auth.WrapperAuthenticator.oauth_consumer_template(), assigns %>  <% end %> diff --git a/lib/pleroma/web/twitter_api/controllers/remote_follow_controller.ex b/lib/pleroma/web/twitter_api/controllers/remote_follow_controller.ex index 9843cc362..42d7601ed 100644 --- a/lib/pleroma/web/twitter_api/controllers/remote_follow_controller.ex +++ b/lib/pleroma/web/twitter_api/controllers/remote_follow_controller.ex @@ -11,8 +11,8 @@ defmodule Pleroma.Web.TwitterAPI.RemoteFollowController do    alias Pleroma.MFA    alias Pleroma.Object.Fetcher    alias Pleroma.User -  alias Pleroma.Web.Auth.Authenticator    alias Pleroma.Web.Auth.TOTPAuthenticator +  alias Pleroma.Web.Auth.WrapperAuthenticator    alias Pleroma.Web.CommonAPI    @status_types ["Article", "Event", "Note", "Video", "Page", "Question"] @@ -88,7 +88,7 @@ defmodule Pleroma.Web.TwitterAPI.RemoteFollowController do    #    def do_follow(conn, %{"authorization" => %{"name" => _, "password" => _, "id" => id}}) do      with {_, %User{} = followee} <- {:fetch_user, User.get_cached_by_id(id)}, -         {_, {:ok, user}, _} <- {:auth, Authenticator.get_user(conn), followee}, +         {_, {:ok, user}, _} <- {:auth, WrapperAuthenticator.get_user(conn), followee},           {_, _, _, false} <- {:mfa_required, followee, user, MFA.require?(user)},           {:ok, _, _, _} <- CommonAPI.follow(user, followee) do        redirect(conn, to: "/users/#{followee.id}") | 
