bigbluebutton-Github/bigbluebutton-html5/imports/api/users/server/handlers/validateAuthToken.js

126 lines
3.6 KiB
JavaScript
Raw Normal View History

import { check } from 'meteor/check';
import Logger from '/imports/startup/server/logger';
import Users from '/imports/api/users';
import userJoin from './userJoin';
import pendingAuthenticationsStore from '../store/pendingAuthentications';
import createDummyUser from '../modifiers/createDummyUser';
import setConnectionIdAndAuthToken from '../modifiers/setConnectionIdAndAuthToken';
2017-10-12 09:02:23 +08:00
const clearOtherSessions = (sessionUserId, current = false) => {
const serverSessions = Meteor.server.sessions;
Object.keys(serverSessions)
.filter(i => serverSessions[i].userId === sessionUserId)
.filter(i => i !== current)
.forEach(i => serverSessions[i].close());
};
2017-10-12 09:02:23 +08:00
export default function handleValidateAuthToken({ body }, meetingId) {
const {
userId,
valid,
authToken,
waitForApproval,
} = body;
check(userId, String);
check(authToken, String);
2017-10-12 09:02:23 +08:00
check(valid, Boolean);
check(waitForApproval, Boolean);
const pendingAuths = pendingAuthenticationsStore.take(meetingId, userId, authToken);
if (!valid) {
pendingAuths.forEach(
(pendingAuth) => {
try {
const { methodInvocationObject } = pendingAuth;
const connectionId = methodInvocationObject.connection.id;
// Schedule socket disconnection for this user, giving some time for client receiving the reason of disconnection
Meteor.setTimeout(() => {
methodInvocationObject.connection.close();
}, 2000);
Logger.info(`Closed connection ${connectionId} due to invalid auth token.`);
} catch (e) {
Logger.error(`Error closing socket for meetingId '${meetingId}', userId '${userId}', authToken ${authToken}`);
}
},
);
return;
}
if (valid) {
// Define user ID on connections
pendingAuths.forEach(
(pendingAuth) => {
const { methodInvocationObject } = pendingAuth;
/* Logic migrated from validateAuthToken method ( postponed to only run in case of success response ) - Begin */
const sessionId = `${meetingId}--${userId}`;
2020-09-30 05:02:03 +08:00
if (!methodInvocationObject.userId) methodInvocationObject.setUserId(sessionId);
const User = Users.findOne({
meetingId,
userId,
});
if (!User) {
createDummyUser(meetingId, userId, authToken);
}
setConnectionIdAndAuthToken(meetingId, userId, methodInvocationObject.connection.id, authToken);
/* End of logic migrated from validateAuthToken */
},
);
}
const selector = {
meetingId,
userId,
clientType: 'HTML5',
};
const User = Users.findOne(selector);
2017-03-11 02:33:46 +08:00
// If we dont find the user on our collection is a flash user and we can skip
if (!User) return;
2017-10-12 09:02:23 +08:00
// Publish user join message
if (valid && !waitForApproval) {
2019-02-14 03:44:21 +08:00
Logger.info('User=', User);
2017-10-12 09:02:23 +08:00
userJoin(meetingId, userId, User.authToken);
}
const modifier = {
$set: {
2017-10-12 09:02:23 +08:00
validated: valid,
approved: !waitForApproval,
2019-01-14 21:23:35 +08:00
loginTime: Date.now(),
2019-02-27 01:40:01 +08:00
inactivityCheck: false,
},
};
const cb = (err, numChanged) => {
if (err) {
return Logger.error(`Validating auth token: ${err}`);
}
if (numChanged) {
2017-10-12 09:02:23 +08:00
if (valid) {
const sessionUserId = `${meetingId}-${userId}`;
const currentConnectionId = User.connectionId ? User.connectionId : false;
clearOtherSessions(sessionUserId, currentConnectionId);
}
return Logger.info(`Validated auth token as ${valid} user=${userId} meeting=${meetingId}`);
}
2017-10-12 09:02:23 +08:00
return Logger.info('No auth to validate');
};
2017-10-12 09:02:23 +08:00
Users.update(selector, modifier, cb);
}