This repository has been archived by the owner on Dec 16, 2023. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 0
/
authentication.coffee
49 lines (42 loc) · 1.64 KB
/
authentication.coffee
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
# Authenticate and authorize using Github account
QS = require("querystring")
Request = require("request")
logger = require("../config/logger")
server = require("../config/server")
# Send browser here to authenticate
server.get "/authenticate", (req, res, next)->
redirect_uri = "http://#{req.headers.host}/oauth/callback"
url = "https://github.com/login/oauth/authorize?" +
QS.stringify(client_id: process.env.GITHUB_CLIENT_ID, redirect_uri: redirect_uri)
res.redirect url
# OAuth callback
server.get "/oauth/callback", (req, res, next)->
params =
url: "https://github.com/login/oauth/access_token"
json:
code: req.query.code
client_id: process.env.GITHUB_CLIENT_ID
client_secret: process.env.GITHUB_CLIENT_SECRET
Request.post params, (error, response, json)->
# If we got OAuth error, just show it. Not user friendly.
if json && json.error
error = new Error(json.error)
return next(error) if error
url = "https://api.github.com/user?access_token=#{json.access_token}"
Request.get url, (error, response, body)->
return next(error) if error
user = JSON.parse(body)
user = # we only use these values
login: user.login
name: user.name
gravatar_id: user.gravatar_id
# Set the user cookie
res.cookies.set "user", JSON.stringify(user), signed: true
# Redirect back to where we came from
return_to = req.cookies.get("return_to") || "/"
res.cookies.set "return_to"
res.redirect return_to
# Logout
server.get "/logout", (req, res, next)->
res.cookies.set "user"
res.redirect "/"