greenlight/app/controllers/sessions_controller.rb

# frozen_string_literal: true

# BigBlueButton open source conferencing system - http://www.bigbluebutton.org/.
#
# Copyright (c) 2018 BigBlueButton Inc. and by respective authors (see below).
#
# This program is free software; you can redistribute it and/or modify it under the
# terms of the GNU Lesser General Public License as published by the Free Software
# Foundation; either version 3.0 of the License, or (at your option) any later
# version.
#
# BigBlueButton is distributed in the hope that it will be useful, but WITHOUT ANY
# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
# PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
#
# You should have received a copy of the GNU Lesser General Public License along
# with BigBlueButton; if not, see <http://www.gnu.org/licenses/>.

class SessionsController < ApplicationController
  skip_before_action :verify_authenticity_token, only: [:omniauth, :fail]

  # GET /users/logout
  def destroy
    logout
    redirect_to root_path
  end

  # POST /users/login
  def create
    user = User.find_by(email: session_params[:email], provider: @user_domain)
    redirect_to(root_path, alert: I18n.t("invalid_user")) && return unless user
    redirect_to(root_path, alert: I18n.t("invalid_login_method")) && return unless user.greenlight_account?
    redirect_to(root_path, alert: I18n.t("invalid_credentials")) && return unless user.try(:authenticate,
      session_params[:password])
    redirect_to(account_activation_path(email: user.email)) && return unless user.activated?
    login(user)
  end

  # GET/POST /auth/:provider/callback
  def omniauth
    user = User.from_omniauth(request.env['omniauth.auth'])
    login(user)
  rescue => e
    logger.error "Error authenticating via omniauth: #{e}"
    omniauth_fail
  end

  # POST /auth/failure
  def omniauth_fail
    redirect_to root_path, alert: I18n.t(params[:message], default: I18n.t("omniauth_error"))
  end

  private

  def session_params
    params.require(:session).permit(:email, :password)
  end
end
adhere to rubocop guidelines 2018-06-26 10:29:46 -04:00			`# frozen_string_literal: true`
initial commit 2018-05-07 16:06:01 -04:00
add LGPL 3.0 headers 2018-08-01 09:45:12 -04:00			`# BigBlueButton open source conferencing system - http://www.bigbluebutton.org/.`
			`#`
			`# Copyright (c) 2018 BigBlueButton Inc. and by respective authors (see below).`
			`#`
			`# This program is free software; you can redistribute it and/or modify it under the`
			`# terms of the GNU Lesser General Public License as published by the Free Software`
			`# Foundation; either version 3.0 of the License, or (at your option) any later`
			`# version.`
			`#`
			`# BigBlueButton is distributed in the hope that it will be useful, but WITHOUT ANY`
			`# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A`
			`# PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU Lesser General Public License along`
			`# with BigBlueButton; if not, see <http://www.gnu.org/licenses/>.`

adhere to rubocop guidelines 2018-06-26 10:29:46 -04:00			`class SessionsController < ApplicationController`
add ldap authentication 2018-07-20 14:20:14 -04:00			`skip_before_action :verify_authenticity_token, only: [:omniauth, :fail]`

fix logout route to not conflict with BBB 2018-06-15 16:21:00 -04:00			`# GET /users/logout`
initial commit 2018-05-07 16:06:01 -04:00			`def destroy`
add lb option 2018-05-11 15:57:31 -04:00			`logout`
			`redirect_to root_path`
initial commit 2018-05-07 16:06:01 -04:00			`end`

fix logout route to not conflict with BBB 2018-06-15 16:21:00 -04:00			`# POST /users/login`
initial commit 2018-05-07 16:06:01 -04:00			`def create`
GRN-80: Allow local accounts on multitenant (#428) * Changed the way the omniauth providers are declared * Allow local authentication for multitenant mode based on customer settings * Cleanead up code mandated by rubocop * Completed implementation for signin and added the one for signup * Fixed issue with rubocop * Renamed customer_name to lb_user * Renamed lb_user -> user_domain, fixed issue with signup controller, email verification WAS NOT implemented * Completed implementation of email_verification * Fixed rubocop issue * Final update * Fix for test with loadbalancer * Make sure loadbalancer mockup is only used when env defined * Fix for test on rooms_controller * Fixed most of the test failing on multitenant env * Fixed issue detected by rubocop * Fixed issue with activation tockens not working on resend * Fixed new issue found by rubocop * Updated travis script * Harcoded credentials for mockup * Updated expectation on start_session * Fixed issue with duplication of home room * Updated script for rubocop * Restored Gemfile 2019-04-05 14:54:36 -04:00			`user = User.find_by(email: session_params[:email], provider: @user_domain)`
			`redirect_to(root_path, alert: I18n.t("invalid_user")) && return unless user`
			`redirect_to(root_path, alert: I18n.t("invalid_login_method")) && return unless user.greenlight_account?`
			`redirect_to(root_path, alert: I18n.t("invalid_credentials")) && return unless user.try(:authenticate,`
			`session_params[:password])`
			`redirect_to(account_activation_path(email: user.email)) && return unless user.activated?`
			`login(user)`
start writing tests 2018-05-09 16:31:52 -04:00			`end`

			`# GET/POST /auth/:provider/callback`
work on tests 2018-05-10 15:03:59 -04:00			`def omniauth`
initial commit 2018-05-07 16:06:01 -04:00			`user = User.from_omniauth(request.env['omniauth.auth'])`
			`login(user)`
test sessions controller and fix style 2018-06-27 17:00:37 -04:00			`rescue => e`
			`logger.error "Error authenticating via omniauth: #{e}"`
explicitly call #omniauth_fail 2018-07-23 12:07:26 -04:00			`omniauth_fail`
initial commit 2018-05-07 16:06:01 -04:00			`end`

			`# POST /auth/failure`
explicitly call #omniauth_fail 2018-07-23 12:07:26 -04:00			`def omniauth_fail`
GRN-11: Ability to configure room specific settings (#348) * Added the ability to set room settings on create or update * Added room settings alerts and made fixes to other alerts * Small bug fixes related to rubocop and the create room modal * Update test case and fixed issue with small edge case * Update room.js 2019-02-06 11:08:19 -05:00			`redirect_to root_path, alert: I18n.t(params[:message], default: I18n.t("omniauth_error"))`
start writing tests 2018-05-09 16:31:52 -04:00			`end`

			`private`
initial commit 2018-05-07 16:06:01 -04:00
start writing tests 2018-05-09 16:31:52 -04:00			`def session_params`
			`params.require(:session).permit(:email, :password)`
initial commit 2018-05-07 16:06:01 -04:00			`end`
			`end`