Windshaft-cartodb/lib/cartodb/backends/auth.js

/**
 *
 * @param {PgConnection} pgConnection
 * @param metadataBackend
 * @param {MapStore} mapStore
 * @param {TemplateMaps} templateMaps
 * @constructor
 * @type {AuthBackend}
 */
function AuthBackend(pgConnection, metadataBackend, mapStore, templateMaps) {
    this.pgConnection = pgConnection;
    this.metadataBackend = metadataBackend;
    this.mapStore = mapStore;
    this.templateMaps = templateMaps;
}

module.exports = AuthBackend;

// Check if the user is authorized by a signer
//
// @param res express response object
// @param callback function(err, signed_by) signed_by will be
//                 null if the request is not signed by anyone
//                 or will be a string cartodb username otherwise.
//
AuthBackend.prototype.authorizedBySigner = function(req, res, callback) {
    if ( ! res.locals.token || ! res.locals.signer ) {
        return callback(null, false); // no signer requested
    }

    var self = this;

    var layergroup_id = res.locals.token;
    var auth_token = req.query.auth_token;

    this.mapStore.load(layergroup_id, function(err, mapConfig) {
        if (err) {
            return callback(err);
        }

        var authorized = self.templateMaps.isAuthorized(mapConfig.obj().template, auth_token);

        return callback(null, authorized);
    });
};

function isValidApiKey(apikey) {
    return apikey.type &&
        apikey.user &&
        apikey.databasePassword &&
        apikey.databaseRole;
}

// Check if a request is authorized by api_key
//
// @param user
// @param res express response object
// @param callback function(err, authorized)
//        NOTE: authorized is expected to be 0 or 1 (integer)
//
AuthBackend.prototype.authorizedByAPIKey = function(user, res, callback) {
    const apikeyToken = res.locals.api_key;
    const basicAuthUsername = res.locals.basicAuthUsername;

    if ( ! apikeyToken ) {
        return callback(null, false); // no api key, no authorization...
    }

    this.metadataBackend.getApikey(user, apikeyToken, (err, apikey) => {
        if (err) {
            if (isNameNotFoundError(err)) {
                err.http_status = 404;
            }

            return callback(err);
        }

        if ( !isValidApiKey(apikey)) {
            const error = new Error('Unauthorized');
            error.type = 'auth';
            error.subtype = 'api-key-not-found';
            error.http_status = 401;

            return callback(error);
        }

        if (!usernameMatches(basicAuthUsername, res.locals.user)) {
            const error = new Error('Forbidden');
            error.type = 'auth';
            error.subtype = 'api-key-username-mismatch';
            error.http_status = 403;

            return callback(error);
        }

        if (!apikey.grantsMaps) {
            const error = new Error('Forbidden');
            error.type = 'auth';
            error.subtype = 'api-key-does-not-grant-access';
            error.http_status = 403;

            return callback(error);
        }

        return callback(null, true, apikey);
    });
};

function isNameNotFoundError (err) {
    return err.message && -1 !== err.message.indexOf('name not found');
}

function usernameMatches (basicAuthUsername, requestUsername) {
    return !(basicAuthUsername && (basicAuthUsername !== requestUsername));
}

/**
 * Check access authorization
 *
 * @param req - standard req object. Importantly contains table and host information
 * @param res - standard res object. Contains the auth parameters in locals
 * @param callback function(err, allowed) is access allowed not?
 */
AuthBackend.prototype.authorize = function(req, res, callback) {
    var user = res.locals.user;

    this.authorizedByAPIKey(user, res, (err, isAuthorizedByApikey) => {
        if (err) {
            return callback(err);
        }

        if (isAuthorizedByApikey) {
            return this.pgConnection.setDBAuth(user, res.locals, 'regular', function (err) {
                req.profiler.done('setDBAuth');

                if (err) {
                    return callback(err);
                }

                callback(null, true);
            });
        }

        this.authorizedBySigner(req, res, (err, isAuthorizedBySigner) => {
            if (err) {
                return callback(err);
            }

            if (isAuthorizedBySigner) {
                return this.pgConnection.setDBAuth(user, res.locals, 'master', function (err) {
                    req.profiler.done('setDBAuth');

                    if (err) {
                        return callback(err);
                    }

                    callback(null, true);
                });
            }

            // if no signer name was given, use default api key
            if (!res.locals.signer) {
                return this.pgConnection.setDBAuth(user, res.locals, 'default', function (err) {
                    req.profiler.done('setDBAuth');

                    if (err) {
                        return callback(err);
                    }

                    callback(null, true);
                });
            }

            // if signer name was given, return no authorization
            return callback(null, false);
        });
    });
};
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`/**`
			`*`
			`* @param {PgConnection} pgConnection`
			`* @param metadataBackend`
			`* @param {MapStore} mapStore`
			`* @param {TemplateMaps} templateMaps`
			`* @constructor`
Rename AuthAppi by AuthBackend 2018-04-10 00:08:56 +08:00			`* @type {AuthBackend}`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`*/`
Rename AuthAppi by AuthBackend 2018-04-10 00:08:56 +08:00			`function AuthBackend(pgConnection, metadataBackend, mapStore, templateMaps) {`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`this.pgConnection = pgConnection;`
			`this.metadataBackend = metadataBackend;`
			`this.mapStore = mapStore;`
			`this.templateMaps = templateMaps;`
			`}`

Rename AuthAppi by AuthBackend 2018-04-10 00:08:56 +08:00			`module.exports = AuthBackend;`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00
change param name and comments updated 2017-10-04 18:50:27 +08:00			`// Check if the user is authorized by a signer`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`//`
change param name and comments updated 2017-10-04 18:50:27 +08:00			`// @param res express response object`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`// @param callback function(err, signed_by) signed_by will be`
			`// null if the request is not signed by anyone`
			`// or will be a string cartodb username otherwise.`
			`//`
Rename AuthAppi by AuthBackend 2018-04-10 00:08:56 +08:00			`AuthBackend.prototype.authorizedBySigner = function(req, res, callback) {`
using res.locals instead of params in AuthApi 2017-10-05 17:28:41 +08:00			`if ( ! res.locals.token \|\| ! res.locals.signer ) {`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`return callback(null, false); // no signer requested`
			`}`

			`var self = this;`

using res.locals instead of params in AuthApi 2017-10-05 17:28:41 +08:00			`var layergroup_id = res.locals.token;`
Do not use locals middleware in layergroup controller 2018-03-23 21:13:27 +08:00			`var auth_token = req.query.auth_token;`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00
			`this.mapStore.load(layergroup_id, function(err, mapConfig) {`
			`if (err) {`
			`return callback(err);`
			`}`

			`var authorized = self.templateMaps.isAuthorized(mapConfig.obj().template, auth_token);`

			`return callback(null, authorized);`
			`});`
			`};`

remove step and check existance of proper api key 2018-02-08 01:20:56 +08:00			`function isValidApiKey(apikey) {`
add fallback for using metadata fallback 2018-02-15 00:31:05 +08:00			`return apikey.type &&`
			`apikey.user &&`
			`apikey.databasePassword &&`
			`apikey.databaseRole;`
remove step and check existance of proper api key 2018-02-08 01:20:56 +08:00			`}`

Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`// Check if a request is authorized by api_key`
			`//`
			`// @param user`
add middleware for apikeyToken 2018-02-15 19:50:42 +08:00			`// @param res express response object`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`// @param callback function(err, authorized)`
			`// NOTE: authorized is expected to be 0 or 1 (integer)`
			`//`
Rename AuthAppi by AuthBackend 2018-04-10 00:08:56 +08:00			`AuthBackend.prototype.authorizedByAPIKey = function(user, res, callback) {`
use for compatibility res.locals.api_key instead of res.locals.apikeyToken 2018-02-15 22:19:09 +08:00			`const apikeyToken = res.locals.api_key;`
Improve naming 2018-03-01 02:13:49 +08:00			`const basicAuthUsername = res.locals.basicAuthUsername;`
add middleware for apikeyToken 2018-02-15 19:50:42 +08:00
			`if ( ! apikeyToken ) {`
remove step and check existance of proper api key 2018-02-08 01:20:56 +08:00			`return callback(null, false); // no api key, no authorization...`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`}`

add middleware for apikeyToken 2018-02-15 19:50:42 +08:00			`this.metadataBackend.getApikey(user, apikeyToken, (err, apikey) => {`
remove step and check existance of proper api key 2018-02-08 01:20:56 +08:00			`if (err) {`
Reduce cyclomatic complexity 2018-02-20 01:48:02 +08:00			`if (isNameNotFoundError(err)) {`
Catch "name not found" errors from metadata backend and set http code status 404 2018-02-20 01:28:58 +08:00			`err.http_status = 404;`
			`}`

remove step and check existance of proper api key 2018-02-08 01:20:56 +08:00			`return callback(err);`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`}`
add fallback for using metadata fallback 2018-02-15 00:31:05 +08:00
remove step and check existance of proper api key 2018-02-08 01:20:56 +08:00			`if ( !isValidApiKey(apikey)) {`
return unauthorized error when api key not found 2018-02-08 02:12:14 +08:00			`const error = new Error('Unauthorized');`
			`error.type = 'auth';`
			`error.subtype = 'api-key-not-found';`
			`error.http_status = 401;`

control API access grants 2018-02-08 20:07:25 +08:00			`return callback(error);`
			`}`

Improve naming 2018-03-01 02:13:49 +08:00			`if (!usernameMatches(basicAuthUsername, res.locals.user)) {`
get and check api key credentials from api key: username and token 2018-02-16 00:49:47 +08:00			`const error = new Error('Forbidden');`
			`error.type = 'auth';`
			`error.subtype = 'api-key-username-mismatch';`
			`error.http_status = 403;`

Catch "name not found" errors from metadata backend and set http code status 404 2018-02-20 01:28:58 +08:00			`return callback(error);`
get and check api key credentials from api key: username and token 2018-02-16 00:49:47 +08:00			`}`

control API access grants 2018-02-08 20:07:25 +08:00			`if (!apikey.grantsMaps) {`
			`const error = new Error('Forbidden');`
			`error.type = 'auth';`
			`error.subtype = 'api-key-does-not-grant-access';`
			`error.http_status = 403;`

return unauthorized error when api key not found 2018-02-08 02:12:14 +08:00			`return callback(error);`
remove step and check existance of proper api key 2018-02-08 01:20:56 +08:00			`}`

Forbid access to named map admin resources for everyone but master 2018-04-06 21:26:11 +08:00			`return callback(null, true, apikey);`
remove step and check existance of proper api key 2018-02-08 01:20:56 +08:00			`});`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`};`

Reduce cyclomatic complexity 2018-02-20 01:48:02 +08:00			`function isNameNotFoundError (err) {`
			`return err.message && -1 !== err.message.indexOf('name not found');`
			`}`

Improve naming 2018-03-01 02:13:49 +08:00			`function usernameMatches (basicAuthUsername, requestUsername) {`
			`return !(basicAuthUsername && (basicAuthUsername !== requestUsername));`
Reduce cyclomatic complexity 2018-02-20 01:48:02 +08:00			`}`

Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`/**`
			`* Check access authorization`
			`*`
			`* @param req - standard req object. Importantly contains table and host information`
fix forgotten comment 2017-10-05 18:44:03 +08:00			`* @param res - standard res object. Contains the auth parameters in locals`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`* @param callback function(err, allowed) is access allowed not?`
			`*/`
Rename AuthAppi by AuthBackend 2018-04-10 00:08:56 +08:00			`AuthBackend.prototype.authorize = function(req, res, callback) {`
using res.locals instead of params in AuthApi 2017-10-05 17:28:41 +08:00			`var user = res.locals.user;`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00
add middleware for apikeyToken 2018-02-15 19:50:42 +08:00			`this.authorizedByAPIKey(user, res, (err, isAuthorizedByApikey) => {`
remove use of step 2018-02-08 01:48:59 +08:00			`if (err) {`
			`return callback(err);`
			`}`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00
remove use of step 2018-02-08 01:48:59 +08:00			`if (isAuthorizedByApikey) {`
let select apikey type in setDBAuth: regular, default, master 2018-02-08 18:29:17 +08:00			`return this.pgConnection.setDBAuth(user, res.locals, 'regular', function (err) {`
remove use of step 2018-02-08 01:48:59 +08:00			`req.profiler.done('setDBAuth');`

			`if (err) {`
			`return callback(err);`
Catch "name not found" errors from metadata backend and set http code status 404 2018-02-20 01:28:58 +08:00			`}`

remove use of step 2018-02-08 01:48:59 +08:00			`callback(null, true);`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`});`
remove use of step 2018-02-08 01:48:59 +08:00			`}`

Do not use locals middleware in layergroup controller 2018-03-23 21:13:27 +08:00			`this.authorizedBySigner(req, res, (err, isAuthorizedBySigner) => {`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`if (err) {`
			`return callback(err);`
			`}`
Catch "name not found" errors from metadata backend and set http code status 404 2018-02-20 01:28:58 +08:00
remove use of step 2018-02-08 01:48:59 +08:00			`if (isAuthorizedBySigner) {`
let select apikey type in setDBAuth: regular, default, master 2018-02-08 18:29:17 +08:00			`return this.pgConnection.setDBAuth(user, res.locals, 'master', function (err) {`
remove use of step 2018-02-08 01:48:59 +08:00			`req.profiler.done('setDBAuth');`
Catch "name not found" errors from metadata backend and set http code status 404 2018-02-20 01:28:58 +08:00
remove use of step 2018-02-08 01:48:59 +08:00			`if (err) {`
			`return callback(err);`
Catch "name not found" errors from metadata backend and set http code status 404 2018-02-20 01:28:58 +08:00			`}`
remove use of step 2018-02-08 01:48:59 +08:00
			`callback(null, true);`
Catch "name not found" errors from metadata backend and set http code status 404 2018-02-20 01:28:58 +08:00			`});`
remove use of step 2018-02-08 01:48:59 +08:00			`}`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00
let select apikey type in setDBAuth: regular, default, master 2018-02-08 18:29:17 +08:00			`// if no signer name was given, use default api key`
remove use of step 2018-02-08 01:48:59 +08:00			`if (!res.locals.signer) {`
let select apikey type in setDBAuth: regular, default, master 2018-02-08 18:29:17 +08:00			`return this.pgConnection.setDBAuth(user, res.locals, 'default', function (err) {`
			`req.profiler.done('setDBAuth');`

			`if (err) {`
			`return callback(err);`
			`}`

			`callback(null, true);`
Catch "name not found" errors from metadata backend and set http code status 404 2018-02-20 01:28:58 +08:00			`});`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`}`

remove use of step 2018-02-08 01:48:59 +08:00			`// if signer name was given, return no authorization`
			`return callback(null, false);`
			`});`
			`});`
Authentication/Authorization moves to its own entity 2015-07-13 21:05:03 +08:00			`};`