0033d0dc1d
- See https://github.com/maxidor/matrix-synapse-rest-auth - Include Google Firebase backend using UID as login and user token as password
90 lines
3.3 KiB
Java
90 lines
3.3 KiB
Java
/*
|
|
* mxisd - Matrix Identity Server Daemon
|
|
* Copyright (C) 2017 Maxime Dor
|
|
*
|
|
* https://max.kamax.io/
|
|
*
|
|
* This program is free software: you can redistribute it and/or modify
|
|
* it under the terms of the GNU Affero General Public License as
|
|
* published by the Free Software Foundation, either version 3 of the
|
|
* License, or (at your option) any later version.
|
|
*
|
|
* This program is distributed in the hope that it will be useful,
|
|
* but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
* MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
* GNU Affero General Public License for more details.
|
|
*
|
|
* You should have received a copy of the GNU Affero General Public License
|
|
* along with this program. If not, see <http://www.gnu.org/licenses/>.
|
|
*/
|
|
|
|
package io.kamax.mxisd.controller.v1;
|
|
|
|
import com.google.gson.Gson;
|
|
import com.google.gson.JsonElement;
|
|
import com.google.gson.JsonObject;
|
|
import com.google.gson.JsonParser;
|
|
import io.kamax.mxisd.auth.AuthManager;
|
|
import io.kamax.mxisd.auth.UserAuthResult;
|
|
import org.apache.commons.io.IOUtils;
|
|
import org.slf4j.Logger;
|
|
import org.slf4j.LoggerFactory;
|
|
import org.springframework.beans.factory.annotation.Autowired;
|
|
import org.springframework.http.MediaType;
|
|
import org.springframework.web.bind.annotation.CrossOrigin;
|
|
import org.springframework.web.bind.annotation.RequestMapping;
|
|
import org.springframework.web.bind.annotation.RequestMethod;
|
|
import org.springframework.web.bind.annotation.RestController;
|
|
|
|
import javax.servlet.http.HttpServletRequest;
|
|
import java.io.IOException;
|
|
import java.nio.charset.StandardCharsets;
|
|
|
|
@RestController
|
|
@CrossOrigin
|
|
@RequestMapping(produces = MediaType.APPLICATION_JSON_UTF8_VALUE)
|
|
public class AuthController {
|
|
|
|
private Logger log = LoggerFactory.getLogger(AuthController.class);
|
|
|
|
private Gson gson = new Gson();
|
|
|
|
@Autowired
|
|
private AuthManager mgr;
|
|
|
|
@RequestMapping(value = "/_matrix-internal/identity/v1/check_credentials", method = RequestMethod.POST)
|
|
public String checkCredentials(HttpServletRequest req) {
|
|
try {
|
|
JsonElement el = new JsonParser().parse(IOUtils.toString(req.getInputStream(), StandardCharsets.UTF_8));
|
|
if (!el.isJsonObject() || !el.getAsJsonObject().has("user")) {
|
|
throw new IllegalArgumentException("Missing user key");
|
|
}
|
|
|
|
JsonObject authData = el.getAsJsonObject().get("user").getAsJsonObject();
|
|
if (!authData.has("id") || !authData.has("password")) {
|
|
throw new IllegalArgumentException("Missing id or password keys");
|
|
}
|
|
|
|
String id = authData.get("id").getAsString();
|
|
log.info("Requested to check credentials for {}", id);
|
|
String password = authData.get("password").getAsString();
|
|
|
|
UserAuthResult result = mgr.authenticate(id, password);
|
|
|
|
JsonObject authObj = new JsonObject();
|
|
authObj.addProperty("success", result.isSuccess());
|
|
if (result.isSuccess()) {
|
|
authObj.addProperty("mxid", result.getMxid());
|
|
authObj.addProperty("display_name", result.getDisplayName());
|
|
}
|
|
JsonObject obj = new JsonObject();
|
|
|
|
obj.add("authentication", authObj);
|
|
return gson.toJson(obj);
|
|
} catch (IOException e) {
|
|
throw new RuntimeException(e);
|
|
}
|
|
}
|
|
|
|
}
|