router-login.js 2.9 KB
edit raw blame history



1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101


"use strict";

const module_name = 'CONTROL_PANEL_' + require('path').basename(__filename);

const querystring = require('querystring');
const express = require('express');
const bodyParser = require('body-parser');
const router = express.Router();

const config = require('komodo-sdk/config');
const logger = require('komodo-sdk/logger');

const requestToCore = require('./request-to-core');

function pageLogin(req, res, next) {
    if (req.session && req.session.username && req.session.terminal) {
        res.redirect('/');
        return;
    }

    res.render(
        req.app.locals.cp_views_dir + '/login.html',
        {
            ref: req.query.referer,
            msg: req.query.msg
        }
    )
}

function pageLoginSubmitted(req, res, next) {
    const method_name = 'pageLoginSubmitted';

    if (!req || !req.body || !req.body.terminal_name || !req.body.password) {
        const qs = {
            msg: 'Nama terminal dan password harus diisi',
            ref: req.query.ref
        };

        res.redirect('/login?' + querystring.stringify(qs));
        return;
    }

    const qs = {
        terminal_name: req.body.terminal_name,
        web_password: req.body.password,
        request_by: config.handler_name || config.username || config.origin
    }

    requestToCore.doRequestAndParse('/services/terminalAuthentication', qs, function(err, coreResponse) {
        if (err) {
            logger.warn('Error requesting authentication check to CORE', {module_name: module_name, method_name: method_name, err: err});
            res.end('SOMETHING WRONG');
            return;
        }

        const redirectQs = {
            terminal_name: req.body.terminal_name,
            ref: req.query.ref
        }

        if (coreResponse.message) {
            redirectQs.msg = coreResponse.message;
        }

        if (coreResponse.error) {
            res.redirect('/login?' + querystring.stringify(redirectQs));
            return;
        }

        if (!coreResponse.terminal) {
            redirectQs.msg = 'Terminal tidak terdefinisi';
            res.redirect('/login?' + querystring.stringify(redirectQs));
            return;
        }

        if (!coreResponse.terminal.super || !coreResponse.terminal.store_is_super) {
            redirectQs.msg = 'Hanya super terminal pada super store yang dapat mengakses sistem.';
            res.redirect('/login?' + querystring.stringify(redirectQs));
            return;
        }

        req.session.username = req.body.terminal_name;
        req.session.terminal = coreResponse.terminal;

        let redirectUrl = req.query.ref || '/';
        res.redirect(redirectUrl);
    });
}

function pageLogout(req, res, next) {
    req.session.username = null;
    req.session.terminal = null;

    res.redirect('/login');
}

router.get('/', pageLogin);
router.post('/', bodyParser.urlencoded({extended: true}), pageLoginSubmitted);
router.get('/out', pageLogout);

module.exports = router;