Version 0.1.2 - Ajout du systême d'authentification

2023-11-02 11:09:47 +01:00
parent ea03e49887
commit 132dae4809
16 changed files with 620 additions and 21 deletions
--- a/bin/auth.js
+++ b/bin/auth.js
@@ -0,0 +1,91 @@
+const { LogType } = require("loguix")
+const fs = require("fs")
+const path = require("path")
+const { __glob } = require("./global-variables")
+const alog = new LogType("Authentification")
+const keygen = require("./keygen")
+const users = require("./users")
+
+/**
+ * Vérifie si le token est présent et appartient à un utilisateur
+ * @param {string} token 
+ */
+
+module.exports.check = function(token) {
+    var isApproved = false;
+    var username = null
+    users.getUsers().forEach((fetchUser) => {
+        if(fetchUser.tokens.includes(token)) {
+            isApproved = true
+            username = fetchUser.username
+        }
+
+    })
+
+    if(isApproved) {
+        alog.log("Connexion par Token de l'utilisateur : " + username)
+        return true
+    } else {
+        if(token) {
+
+            alog.warn("Erreur d'authentification - Token n'existe pas : " + token)
+        }
+        return false
+    }
+} 
+
+/**
+ * Permet de se connecter à Neutral
+ * @param {object} data 
+ * @returns Token or AUTH_FAILED
+ */
+module.exports.login = function(data) {
+    var username = data.username
+    var password = data.password
+
+    if(users.getUsers().has(username)) {
+        const user = users.getUsers().get(username)
+        if(password == user.getPassword()) {
+            const token = user.generateToken()
+            alog.log("Connexion approuvé de l'utilisateur : " + username)
+            return token
+        } else {
+            alog.warn("Echec de connexion de l'utilisateur : " + username + " - Mot de passe incorrect")
+            return "AUTH_FAILED"
+        }
+
+    } else {
+        alog.warn("Echec de connexion de l'utilisateur : " + username + " - Utilisateur non-inscrit dans la base de donnée")
+        return "AUTH_FAILED"
+    }
+}   
+
+/**
+ * Remove the token
+ * @param {string} token 
+ * @returns 
+ */
+module.exports.signout = function(token) {
+    var isDone = false;
+    var username = null
+    users.getUsers().forEach((fetchUser) => {
+        if(fetchUser.tokens.includes(token)) {
+            isDone = true
+            username = fetchUser.username
+            fetchUser.removeToken(token)
+        }
+
+    })
+
+    if(isDone) {
+        alog.log("Suppression du Token '"  + token + "' de l'utilisateur : " + username)
+        return true
+    } else {
+        if(token) {
+
+            alog.warn("Erreur d'opération lors de la déconnexion - Token n'existe pas : " + token)
+        }
+        return false
+    }
+
+}
--- a/bin/config.js
+++ b/bin/config.js
@@ -0,0 +1,37 @@
+const { LogType } = require("loguix")
+const fs = require("fs")
+const path = require("path")
+const { __glob } = require("./global-variables")
+const clog = new LogType("Configuration")
+
+setup()
+
+function setup() {
+    if(!fs.existsSync(__glob.CONFIG)) {
+        clog.log("Création du fichier de configuration dans : " + __glob.CONFIG)
+        fs.writeFileSync(__glob.CONFIG, JSON.stringify({
+            ENCRYPTION_KEY: "1",
+        }, null, 2))
+    }
+}
+
+/**
+ * 
+ * @returns Config File
+ */
+module.exports.getFile = function () {
+    const file = JSON.parse(fs.readFileSync(__glob.CONFIG))
+    return file
+}
+
+/**
+ * Update le fichier configuration avec un object
+ * @param {Array} file 
+ */
+module.exports.updateFile = function (file) {
+    if(fs.existsSync(__glob.CONFIG)) {
+        clog.log("Mise à jour du fichier configuration dans : " + __glob.CONFIG)
+        fs.writeFileSync(__glob.CONFIG, JSON.stringify(file, null, 2))
+    }
+}
+
--- a/bin/global-variables.js
+++ b/bin/global-variables.js
@@ -4,7 +4,10 @@ const root = path.resolve(__dirname, '../')
 const __glob = {
    ROUTES: root + path.sep + "routes" + path.sep,
    ROOT: root,
-    LOGS: root + path.sep + "logs"
+    LOGS: root + path.sep + "logs",
+    DATA: root + path.sep + "data",
+    USERS: root + path.sep + "data" + path.sep + "users.json",
+    CONFIG: root + path.sep + "data" + path.sep + "config.json"
 };


--- a/bin/keygen.js
+++ b/bin/keygen.js
@@ -0,0 +1,29 @@
+const { LogType } = require("loguix")
+const fs = require("fs")
+const path = require("path")
+var CryptoJS = require("crypto-js")
+const { __glob } = require("./global-variables")
+const clog = new LogType("KeyGen")
+const config = require("./config")
+
+const keypass = config.getFile().ENCRYPTION_KEY
+
+setup()
+
+function setup() {
+    if(keypass) {  
+        clog.log("Clé de chiffrement trouvé et importé")
+    } else {   
+        clog.error("Clé de chiffrement inconnu : Passage en mode par défaut")
+    }
+}
+
+module.exports.encrypt = function (text) {
+    let encryptedText = CryptoJS.AES.encrypt(text, keypass).toString();
+    return encryptedText;
+  }
+
+module.exports.decrypt = function(text) {
+    let decryptedText = CryptoJS.AES.decrypt(text, keypass).toString(CryptoJS.enc.Utf8);
+    return decryptedText;
+  }
--- a/bin/users.js
+++ b/bin/users.js
@@ -0,0 +1,291 @@
+const { LogType } = require("loguix")
+const fs = require("fs")
+const path = require("path")
+const { __glob } = require("./global-variables")
+const ulog = new LogType("Users")
+const keygen = require("./keygen")
+const uuid = require("uuid")
+
+var usersList = new Map()
+
+setup()
+
+function setup() {
+
+    if(!fs.existsSync(__glob.USERS)) {
+        ulog.log("Création du fichier utilisateur dans : " + __glob.USERS)
+        fs.writeFileSync(__glob.USERS, JSON.stringify([], null, 2))
+    }
+}
+
+/**
+ * 
+ * @returns Liste des utilisateurs
+ */
+module.exports.getUsers = function () {
+
+    return usersList
+}
+
+
+
+/**
+ * Get all users from Users Data Base
+ */
+module.exports.fetchUsers = function () {
+
+    ulog.step.init("fetch_user", "Récupération de tous les utilisateurs inscrit dans la base de donnée")
+    const userFile = getFile()
+    usersList = new Map()
+    for(var userFetched of userFile) {
+        const user = new this.User({
+            username: userFetched.username,
+            password: userFetched.password,
+            display_name: userFetched.display_name,
+            permission: userFetched.permission,
+            tokens: userFetched.tokens,
+            lastLogin: userFetched.lastLogin,
+
+        })
+
+        usersList.set(user.username, user)    
+    }
+    ulog.step.end("fetch_user")
+}
+
+/**
+ * User Class is used to access to default user's properties and methods
+ * @param {object} properties User properties with : username, password, display_name, permission... 
+ */
+module.exports.User =  class {
+    username = null
+    password = null;
+    display_name = null
+    permission = []
+    tokens = [] 
+    lastLogin = new Date()
+    
+    
+    constructor(properties) {
+
+        if(properties) {
+
+            this.username = properties.username
+            this.password = keygen.encrypt(properties.password)
+            this.display_name = properties.display_name
+            this.permission = properties.permission
+            this.tokens = properties.tokens
+            this.lastLogin = properties.lastLogin
+
+            const userFile = getFile()
+        
+            for(var userFetched of userFile) {
+                if(properties.username == userFetched.username) { 
+                    ulog.log("Récupération dans la base de donnée, de l'utilisateur : " + userFetched.username)
+                    this.username = userFetched.username
+                    this.password = userFetched.password
+                    this.display_name = userFetched.display_name
+                    this.permission = userFetched.permission
+                    this.tokens = userFetched.tokens
+                    this.lastLogin = userFetched.lastLogin
+                }
+            }
+            
+           
+
+           
+      
+        }
+
+     
+        if(this.username == null) {
+            ulog.error("One of user is without username ! [IMPORANT_FIELD_IS_MISSING]")
+            this.username = Math.random()
+        }
+        if(this.password == null) {
+            ulog.error("'" + this.username + "' is without password ! Password reset to 'default' [IMPORANT_FIELD_IS_MISSING]")
+            this.password = keygen.encrypt("default")
+        }
+        if(this.display_name == null) {
+            ulog.warn("'" + this.username + "' is without display name !")
+            this.display_name = this.username
+        }
+        if(this.permission == null) {
+            ulog.warn("'" + this.username + "' has no longer permission !")
+        
+        }
+        if(this.tokens == null) {
+            this.tokens = [] 
+        }
+        if(this.permission == null) {
+            this.permission = [] 
+        }
+        if(this.lastLogin == null) {
+            this.lastLogin = new Date()
+        }
+      
+       
+     
+    }
+    
+    register() {
+         
+        var alreadyExist = false
+        const userFile = getFile()
+        
+        for(var userFetched of userFile) {
+            if(userFetched.username == this.username) { 
+                userFile.splice(userFile.indexOf(userFetched), 1)
+                ulog.log("Mise à jour dans la base de donnée, de l'utilisateur : " + this.username)
+                alreadyExist = true
+            }
+        }
+        if(!alreadyExist) {
+            ulog.log("Création dans la base de donnée de l'utilisateur : " + this.username)
+        }
+        userFile.push(this)
+        updateFile(userFile)
+        usersList.set(this.username, this)
+    }
+
+    unregister() {
+ 
+        var alreadyExist = false
+        const userFile = getFile()
+        
+        for(var userFetched of userFile) {
+            if(userFetched.username == this.username) { 
+                userFile.splice(userFile.indexOf(userFetched), 1)
+                ulog.log("Mise à jour dans la base de donnée, de l'utilisateur : " + this.username)
+                alreadyExist = true
+            }
+        }
+        if(!alreadyExist) {
+            ulog.log("L'utilisateur n'est pas enregistré dans la base de donnée : " + this.username)
+        }
+
+        updateFile(userFile)
+        usersList.delete(this.username)
+    }
+
+    checkPermission(name) {
+        this.#sync()
+        if(this.permission.includes(name)) {
+            return true
+
+        } else {
+
+            return false
+        }
+
+    }
+
+    addPermission(name) {
+        this.#sync()
+        for(var perms of this.permission) {
+            if(name == perms) {
+                ulog.warn("'" + this.username + "' a déjà la permission : " + name)
+                return false
+            }
+        }
+        this.permission.push(name)
+        this.register()
+    }
+
+    removePermission(name) {
+        this.#sync()
+        var havePermission = false
+        for(var perms of this.permission) {
+            if(name == perms) {
+                havePermission = true
+            }
+        }
+        if(havePermission) {
+            this.permission.splice(this.permission.indexOf(name), 1)
+            this.register()
+        } else {
+
+            ulog.warn("'" + this.username + "' n'a pas la permission : " + name)
+            return false
+        }
+        
+    }
+
+    setPassword(newPassword) {
+        this.#sync()
+        this.password = keygen.encrypt(newPassword)
+        this.register()
+        ulog.log("Le mot de passe de l'utilisateur a été modifié : " + this.username) 
+
+    }
+    getPassword() {
+        this.#sync()
+        return keygen.decrypt(this.password)
+    }   
+
+    generateToken() {
+        this.#sync()
+        const gToken = uuid.v4().toString()
+        this.tokens.push(gToken)
+        this.register()
+        return gToken
+
+    }
+
+    removeToken(token) {
+        this.#sync()
+        var haveToken = false
+        for(var aToken of this.tokens) {
+            if(token == aToken) {
+                haveToken = true
+            }
+        }
+        if(haveToken) {
+            this.tokens.splice(this.tokens.indexOf(token), 1)
+            this.register()
+        } else {
+
+            ulog.warn("'" + this.username + "' n'a pas le token : " + token)
+            return false
+        }
+
+    }
+
+    #sync() {
+
+        for(var userGet of usersList.keys()) {
+            const userFetched = usersList.get(userGet)
+            if(this.username == userFetched.username) { 
+                this.username = userFetched.username
+                this.password = userFetched.password
+                this.display_name = userFetched.display_name
+                this.permission = userFetched.permission
+                this.tokens = userFetched.tokens
+                this.lastLogin = userFetched.lastLogin
+            }
+        }
+            
+    }
+}
+
+
+/**
+ * 
+ * @returns User File
+ */
+function getFile() {
+    const file = JSON.parse(fs.readFileSync(__glob.USERS))
+    return file
+}
+
+/**
+ * Update le fichier utilisateur avec un object
+ * @param {Array} file 
+ */
+function updateFile(file) {
+    if(fs.existsSync(__glob.USERS)) {
+        ulog.log("Mise à jour du fichier utilisateur dans : " + __glob.USERS)
+        fs.writeFileSync(__glob.USERS, JSON.stringify(file, null, 2))
+    }
+}
+
--- a/bin/www
+++ b/bin/www
@@ -7,13 +7,15 @@ var log = require("loguix")
 var {LogType} = require("loguix")
 var { __glob } = require("./global-variables")
 log.setup(__glob.LOGS)
+
 const wlog = new LogType("Web")
+
 wlog.step.init("start_server",  "Démarrage du serveur Express JS")

 var app = require('../main');
 var debug = require('debug')('neutral:server');
 var http = require('http');
-
+var config = require("./config")


 /**
@@ -91,9 +93,10 @@ function onError(error) {
 */

 function onListening() {
+  wlog.log("Serveur entrain d'écouter sur le port : " + server.address().port)
  var addr = server.address();
  var bind = typeof addr === 'string'
    ? 'pipe ' + addr
    : 'port ' + addr.port;
    wlog.step.end("start_server")
-}
+}