greenlight/app/helpers/sessions_helper.rb

# frozen_string_literal: true

# BigBlueButton open source conferencing system - http://www.bigbluebutton.org/.
#
# Copyright (c) 2018 BigBlueButton Inc. and by respective authors (see below).
#
# This program is free software; you can redistribute it and/or modify it under the
# terms of the GNU Lesser General Public License as published by the Free Software
# Foundation; either version 3.0 of the License, or (at your option) any later
# version.
#
# BigBlueButton is distributed in the hope that it will be useful, but WITHOUT ANY
# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A
# PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.
#
# You should have received a copy of the GNU Lesser General Public License along
# with BigBlueButton; if not, see <http://www.gnu.org/licenses/>.

module SessionsHelper
  # Logs a user into GreenLight.
  def login(user)
    session[:user_id] = user.id

    # If there are not terms, or the user has accepted them, check for email verification
    if !Rails.configuration.terms || user.accepted_terms
      check_email_verified(user)
    else
      redirect_to terms_path
    end
  end

  # If email verification is disabled, or the user has verified, go to their room
  def check_email_verified(user)
    # Admin users should be redirected to the admin page
    if user.has_role? :super_admin
      redirect_to admins_path
    elsif user.activated?
      # Dont redirect to any of these urls
      dont_redirect_to = [root_url, signup_url, unauthorized_url, internal_error_url, not_found_url]
      url = if cookies[:return_to] && !dont_redirect_to.include?(cookies[:return_to])
        cookies[:return_to]
      else
        user.main_room
      end

      # Delete the cookie if it exists
      cookies.delete :return_to if cookies[:return_to]

      redirect_to url
    else
      redirect_to resend_path
    end
  end

  # Logs current user out of GreenLight.
  def logout
    session.delete(:user_id) if current_user
  end

  # Retrieves the current user.
  def current_user
    @current_user ||= User.find_by(id: session[:user_id])
  end

  def generate_checksum(user_domain, redirect_url, secret)
    string = user_domain + redirect_url + secret
    OpenSSL::Digest.digest('sha1', string).unpack1("H*")
  end

  def parse_user_domain(hostname)
    return hostname.split('.').first if Rails.configuration.url_host.empty?
    Rails.configuration.url_host.split(',').each do |url_host|
      return hostname.chomp(url_host).chomp('.') if hostname.include?(url_host)
    end
    ''
  end

  def omniauth_options(env)
    gl_redirect_url = (Rails.env.production? ? "https" : env["rack.url_scheme"]) + "://" + env["SERVER_NAME"] + ":" +
                      env["SERVER_PORT"]
    user_domain = parse_user_domain(env["SERVER_NAME"])
    env['omniauth.strategy'].options[:customer] = user_domain
    env['omniauth.strategy'].options[:gl_redirect_url] = gl_redirect_url
    env['omniauth.strategy'].options[:default_callback_url] = Rails.configuration.gl_callback_url
    env['omniauth.strategy'].options[:checksum] = generate_checksum(user_domain, gl_redirect_url,
      Rails.configuration.launcher_secret)
  end

  def google_omniauth_hd(env, hd)
    hd_opts = hd.split(',')
    env['omniauth.strategy'].options[:hd] =
      if hd_opts.empty?
        nil
      elsif hd_opts.length == 1
        hd_opts[0]
      else
        hd_opts
      end
  end
end
adhere to rubocop guidelines 2018-06-26 10:29:46 -04:00			`# frozen_string_literal: true`

add LGPL 3.0 headers 2018-08-01 09:45:12 -04:00			`# BigBlueButton open source conferencing system - http://www.bigbluebutton.org/.`
			`#`
			`# Copyright (c) 2018 BigBlueButton Inc. and by respective authors (see below).`
			`#`
			`# This program is free software; you can redistribute it and/or modify it under the`
			`# terms of the GNU Lesser General Public License as published by the Free Software`
			`# Foundation; either version 3.0 of the License, or (at your option) any later`
			`# version.`
			`#`
			`# BigBlueButton is distributed in the hope that it will be useful, but WITHOUT ANY`
			`# WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A`
			`# PARTICULAR PURPOSE. See the GNU Lesser General Public License for more details.`
			`#`
			`# You should have received a copy of the GNU Lesser General Public License along`
			`# with BigBlueButton; if not, see <http://www.gnu.org/licenses/>.`

initial commit 2018-05-07 16:06:01 -04:00			`module SessionsHelper`
			`# Logs a user into GreenLight.`
			`def login(user)`
			`session[:user_id] = user.id`
add ability to configure terms and conditions 2018-06-21 16:17:18 -04:00
Fixed #267 Email verification feature (#268) * <Implemented basic welcome email upon signup> * <Added config option to enable> * <Added verification link routing> * <Added views for verify/resend and reconfigured routes> * <Finished Verification System minus Rspec changes> * <Fixed code style> * <Modified dome rspec tests> * <Switched sample env back to default> * <Added test cases to increase code coverage> * <Added test_helper> * <Minor code changes> * <Added requested changes> * <Added requested changes> * <see if this fixes migration> * <see if this fixes migration> * <fixed migrations> * Delete .rake_tasks~ * Update _confirm_button.html.erb * Update _resend_button.html.erb * Update verify_email.html.erb * Update verify_email.text.erb * <Fixed bugs> * <Added validation of verification link and fixed some code style> * <Disabled updating email for omniauth> 2018-10-09 14:22:02 -04:00			`# If there are not terms, or the user has accepted them, check for email verification`
adhere to rubocop guidelines 2018-06-26 10:29:46 -04:00			`if !Rails.configuration.terms \|\| user.accepted_terms`
Fixed #267 Email verification feature (#268) * <Implemented basic welcome email upon signup> * <Added config option to enable> * <Added verification link routing> * <Added views for verify/resend and reconfigured routes> * <Finished Verification System minus Rspec changes> * <Fixed code style> * <Modified dome rspec tests> * <Switched sample env back to default> * <Added test cases to increase code coverage> * <Added test_helper> * <Minor code changes> * <Added requested changes> * <Added requested changes> * <see if this fixes migration> * <see if this fixes migration> * <fixed migrations> * Delete .rake_tasks~ * Update _confirm_button.html.erb * Update _resend_button.html.erb * Update verify_email.html.erb * Update verify_email.text.erb * <Fixed bugs> * <Added validation of verification link and fixed some code style> * <Disabled updating email for omniauth> 2018-10-09 14:22:02 -04:00			`check_email_verified(user)`
add ability to configure terms and conditions 2018-06-21 16:17:18 -04:00			`else`
			`redirect_to terms_path`
			`end`
initial commit 2018-05-07 16:06:01 -04:00			`end`

Fixed #267 Email verification feature (#268) * <Implemented basic welcome email upon signup> * <Added config option to enable> * <Added verification link routing> * <Added views for verify/resend and reconfigured routes> * <Finished Verification System minus Rspec changes> * <Fixed code style> * <Modified dome rspec tests> * <Switched sample env back to default> * <Added test cases to increase code coverage> * <Added test_helper> * <Minor code changes> * <Added requested changes> * <Added requested changes> * <see if this fixes migration> * <see if this fixes migration> * <fixed migrations> * Delete .rake_tasks~ * Update _confirm_button.html.erb * Update _resend_button.html.erb * Update verify_email.html.erb * Update verify_email.text.erb * <Fixed bugs> * <Added validation of verification link and fixed some code style> * <Disabled updating email for omniauth> 2018-10-09 14:22:02 -04:00			`# If email verification is disabled, or the user has verified, go to their room`
			`def check_email_verified(user)`
Admin panel (#496) * Added the administrator role and functionality that comes with it (#403) * GRN-20: Added roles to the user model * GRN-75: Added a view for admins to see their users * GRN-77: Added Edit/Delete/Promote ability for admins * GRN-71: Added admin account by default * Changed the way locales are shown * Updated the rest of the locales * Changed the way available_locales are defined * Updated locales in Russian * Updated locaales for German * Update user.rb * Update admins.js * GRN-15: Added the ability to change color and image from admin interface (#425) * GRN-20: Added roles to the user model * GRN-75: Added a view for admins to see their users * GRN-77: Added Edit/Delete/Promote ability for admins * GRN-71: Added admin account by default * Changed the way locales are shown * Updated the rest of the locales * Changed the way available_locales are defined * Updated locales in Russian * Updated locaales for German * GRN-15: Added the ability for admins to customize color and image * Update user.rb * Update user.rb * Update routes.rb * Update admins_controller.rb * GRN-87:Added a super admin role and made changes to how to the design works (#430) * GRN-20: Added roles to the user model * GRN-75: Added a view for admins to see their users * GRN-77: Added Edit/Delete/Promote ability for admins * GRN-71: Added admin account by default * Changed the way locales are shown * Updated the rest of the locales * Changed the way available_locales are defined * Updated locales in Russian * Updated locaales for German * GRN-15: Added the ability for admins to customize color and image * Added the super admin and completed the design tab * Update user.rb * Update themes_controller_spec.rb * Update routes.rb * Update admins_controller.rb * Removed duplicated code that broke the build after last merge * GRN-78: Restructured some of the views to make the UI more consistent and responsive (#435) * GRN-20: Added roles to the user model * GRN-75: Added a view for admins to see their users * GRN-77: Added Edit/Delete/Promote ability for admins * GRN-71: Added admin account by default * GRN-15: Added the ability for admins to customize color and image * Added the super admin and completed the design tab * GRN-78: Cleaned up buttons and moved signin to its own page * GRN-78: Moved the Rooms and Recordings link to nav bar * Merge fix * Views restructure fix (#458) * Added cache to gitlab-ci.yml * Restructured seed * GRN2-99 -> GRN2-106: UI cleanup and refactoring (#478) * GRN2-98: Change Fullname to Full name * GRN2-105: Changed View Users to Manage Users * GRN2-101/103: Updated email to match branding * GRN2-100: Updated Email Sent flash to be more descriptive * GRN2-104: Redirect user to sign in page w/ flash after clicking activation link * GRN2-102: Changed the wording in the verification email * GRN2-99: Added email form validation * GRN2-106: Cleaned up Users list front end * Fixes to rake and admin password validator for passing rubocop * GRN2-113: Fixed issues with admin panel (#479) * GRN2-116: Code clean up after restructure of views (#482) * Removed unused references * Rubocop * Added pagination to admin view (#483) * GRN2-114: Added the ability for admins to ban/unban users (#487) * Added the ability for admins to ban and unban users * Update sessions_helper.rb * Merge branch 'master' into admin-panel (#492) * Updated rubocop gem * Updated rubocop and fixed issues (#490) * Rubocop fixes * GRN2-122: Updated sign in flow for admins and switch design tab to site settings (#489) * Switched design tab to site settings * Update _header with spaces instead of tabs * Added more test cases to increase coverage (#494) 2019-05-03 13:05:12 -04:00			`# Admin users should be redirected to the admin page`
			`if user.has_role? :super_admin`
			`redirect_to admins_path`
			`elsif user.activated?`
			`# Dont redirect to any of these urls`
			`dont_redirect_to = [root_url, signup_url, unauthorized_url, internal_error_url, not_found_url]`
			`url = if cookies[:return_to] && !dont_redirect_to.include?(cookies[:return_to])`
Users are redirected to the url they clicked login/signup from (#446) 2019-04-11 12:45:43 -04:00			`cookies[:return_to]`
			`else`
			`user.main_room`
			`end`

			`# Delete the cookie if it exists`
			`cookies.delete :return_to if cookies[:return_to]`

			`redirect_to url`
Fixed #267 Email verification feature (#268) * <Implemented basic welcome email upon signup> * <Added config option to enable> * <Added verification link routing> * <Added views for verify/resend and reconfigured routes> * <Finished Verification System minus Rspec changes> * <Fixed code style> * <Modified dome rspec tests> * <Switched sample env back to default> * <Added test cases to increase code coverage> * <Added test_helper> * <Minor code changes> * <Added requested changes> * <Added requested changes> * <see if this fixes migration> * <see if this fixes migration> * <fixed migrations> * Delete .rake_tasks~ * Update _confirm_button.html.erb * Update _resend_button.html.erb * Update verify_email.html.erb * Update verify_email.text.erb * <Fixed bugs> * <Added validation of verification link and fixed some code style> * <Disabled updating email for omniauth> 2018-10-09 14:22:02 -04:00			`else`
			`redirect_to resend_path`
			`end`
			`end`

initial commit 2018-05-07 16:06:01 -04:00			`# Logs current user out of GreenLight.`
			`def logout`
			`session.delete(:user_id) if current_user`
			`end`

			`# Retrieves the current user.`
			`def current_user`
			`@current_user \|\|= User.find_by(id: session[:user_id])`
			`end`
passing params to the launcher gem 2018-07-09 13:17:23 -04:00
GRN-80: Allow local accounts on multitenant (#428) * Changed the way the omniauth providers are declared * Allow local authentication for multitenant mode based on customer settings * Cleanead up code mandated by rubocop * Completed implementation for signin and added the one for signup * Fixed issue with rubocop * Renamed customer_name to lb_user * Renamed lb_user -> user_domain, fixed issue with signup controller, email verification WAS NOT implemented * Completed implementation of email_verification * Fixed rubocop issue * Final update * Fix for test with loadbalancer * Make sure loadbalancer mockup is only used when env defined * Fix for test on rooms_controller * Fixed most of the test failing on multitenant env * Fixed issue detected by rubocop * Fixed issue with activation tockens not working on resend * Fixed new issue found by rubocop * Updated travis script * Harcoded credentials for mockup * Updated expectation on start_session * Fixed issue with duplication of home room * Updated script for rubocop * Restored Gemfile 2019-04-05 14:54:36 -04:00			`def generate_checksum(user_domain, redirect_url, secret)`
			`string = user_domain + redirect_url + secret`
Updated rubocop and fixed issues (#490) 2019-05-02 15:44:00 -04:00			`OpenSSL::Digest.digest('sha1', string).unpack1("H*")`
adding checksum. using customer name as the provider 2018-07-10 12:11:00 -04:00			`end`

GRN-80: Allow local accounts on multitenant (#428) * Changed the way the omniauth providers are declared * Allow local authentication for multitenant mode based on customer settings * Cleanead up code mandated by rubocop * Completed implementation for signin and added the one for signup * Fixed issue with rubocop * Renamed customer_name to lb_user * Renamed lb_user -> user_domain, fixed issue with signup controller, email verification WAS NOT implemented * Completed implementation of email_verification * Fixed rubocop issue * Final update * Fix for test with loadbalancer * Make sure loadbalancer mockup is only used when env defined * Fix for test on rooms_controller * Fixed most of the test failing on multitenant env * Fixed issue detected by rubocop * Fixed issue with activation tockens not working on resend * Fixed new issue found by rubocop * Updated travis script * Harcoded credentials for mockup * Updated expectation on start_session * Fixed issue with duplication of home room * Updated script for rubocop * Restored Gemfile 2019-04-05 14:54:36 -04:00			`def parse_user_domain(hostname)`
HOT-FIX: Issue with changes with the language file name (#466) * HOT-FIX: Issue with changes with the language file name * Rubocop! 2019-04-16 17:08:17 -04:00			`return hostname.split('.').first if Rails.configuration.url_host.empty?`
Allow multiple as host_url (#465) 2019-04-16 09:28:30 -04:00			`Rails.configuration.url_host.split(',').each do \|url_host\|`
Updated rubocop and fixed issues (#490) 2019-05-02 15:44:00 -04:00			`return hostname.chomp(url_host).chomp('.') if hostname.include?(url_host)`
Allow multiple as host_url (#465) 2019-04-16 09:28:30 -04:00			`end`
			`''`
passing params to the launcher gem 2018-07-09 13:17:23 -04:00			`end`

fixing rubocop errors 2018-07-10 15:05:50 -04:00			`def omniauth_options(env)`
gix rubocop offense 2018-07-23 16:37:17 -04:00			`gl_redirect_url = (Rails.env.production? ? "https" : env["rack.url_scheme"]) + "://" + env["SERVER_NAME"] + ":" +`
Updated rubocop and fixed issues (#490) 2019-05-02 15:44:00 -04:00			`env["SERVER_PORT"]`
GRN-80: Allow local accounts on multitenant (#428) * Changed the way the omniauth providers are declared * Allow local authentication for multitenant mode based on customer settings * Cleanead up code mandated by rubocop * Completed implementation for signin and added the one for signup * Fixed issue with rubocop * Renamed customer_name to lb_user * Renamed lb_user -> user_domain, fixed issue with signup controller, email verification WAS NOT implemented * Completed implementation of email_verification * Fixed rubocop issue * Final update * Fix for test with loadbalancer * Make sure loadbalancer mockup is only used when env defined * Fix for test on rooms_controller * Fixed most of the test failing on multitenant env * Fixed issue detected by rubocop * Fixed issue with activation tockens not working on resend * Fixed new issue found by rubocop * Updated travis script * Harcoded credentials for mockup * Updated expectation on start_session * Fixed issue with duplication of home room * Updated script for rubocop * Restored Gemfile 2019-04-05 14:54:36 -04:00			`user_domain = parse_user_domain(env["SERVER_NAME"])`
			`env['omniauth.strategy'].options[:customer] = user_domain`
adding checksum. using customer name as the provider 2018-07-10 12:11:00 -04:00			`env['omniauth.strategy'].options[:gl_redirect_url] = gl_redirect_url`
passing params to the launcher gem 2018-07-09 13:17:23 -04:00			`env['omniauth.strategy'].options[:default_callback_url] = Rails.configuration.gl_callback_url`
GRN-80: Allow local accounts on multitenant (#428) * Changed the way the omniauth providers are declared * Allow local authentication for multitenant mode based on customer settings * Cleanead up code mandated by rubocop * Completed implementation for signin and added the one for signup * Fixed issue with rubocop * Renamed customer_name to lb_user * Renamed lb_user -> user_domain, fixed issue with signup controller, email verification WAS NOT implemented * Completed implementation of email_verification * Fixed rubocop issue * Final update * Fix for test with loadbalancer * Make sure loadbalancer mockup is only used when env defined * Fix for test on rooms_controller * Fixed most of the test failing on multitenant env * Fixed issue detected by rubocop * Fixed issue with activation tockens not working on resend * Fixed new issue found by rubocop * Updated travis script * Harcoded credentials for mockup * Updated expectation on start_session * Fixed issue with duplication of home room * Updated script for rubocop * Restored Gemfile 2019-04-05 14:54:36 -04:00			`env['omniauth.strategy'].options[:checksum] = generate_checksum(user_domain, gl_redirect_url,`
			`Rails.configuration.launcher_secret)`
passing params to the launcher gem 2018-07-09 13:17:23 -04:00			`end`
Fixed #318 Allow multiple domains when using Google as OAuth provider (GRN-38) (#319) * <Added muli_domain restriction with google_oauth> * <Fixed code style> * <Added some rspec tests> 2018-11-15 15:01:53 -05:00
			`def google_omniauth_hd(env, hd)`
			`hd_opts = hd.split(',')`
			`env['omniauth.strategy'].options[:hd] =`
			`if hd_opts.empty?`
			`nil`
			`elsif hd_opts.length == 1`
			`hd_opts[0]`
			`else`
			`hd_opts`
			`end`
			`end`
initial commit 2018-05-07 16:06:01 -04:00			`end`