router-login.js
2.96 KB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
// eslint-disable-next-line global-require
const MODULE_NAME = `CONTROL_PANEL_${require('path').basename(__filename)}`;
const querystring = require('querystring');
const express = require('express');
const bodyParser = require('body-parser');
const logger = require('tektrans-logger');
const router = express.Router();
const config = require('../../config');
const requestToCore = require('./request-to-core');
function pageLogin(req, res) {
if (req.session && req.session.username && req.session.terminal) {
res.redirect('/');
return;
}
res.render(
`${req.app.locals.cp_views_dir}/login.html`,
{
ref: req.query.ref,
msg: req.query.msg,
},
);
}
function pageLoginSubmitted(req, res) {
const methodName = 'pageLoginSubmitted';
if (!req || !req.body || !req.body.terminal_name || !req.body.password) {
const qs = {
msg: 'Nama terminal dan password harus diisi',
ref: req.query.ref,
};
res.redirect(`/login?${querystring.stringify(qs)}`);
return;
}
const qs = {
terminal_name: req.body.terminal_name,
web_password: req.body.password,
request_by: config.handler_name || config.username || config.origin,
};
requestToCore.doRequestAndParse('/services/terminalAuthentication', qs, (err, coreResponse) => {
if (err) {
logger.warn('Error requesting authentication check to CORE', {
module_name: MODULE_NAME,
method_name: methodName,
err,
});
res.end('SOMETHING WRONG');
return;
}
const redirectQs = {
terminal_name: req.body.terminal_name,
ref: req.query.ref,
};
if (coreResponse.message) {
redirectQs.msg = coreResponse.message;
}
if (coreResponse.error) {
res.redirect(`/login?${querystring.stringify(redirectQs)}`);
return;
}
if (!coreResponse.terminal) {
redirectQs.msg = 'Terminal tidak terdefinisi';
res.redirect(`/login?${querystring.stringify(redirectQs)}`);
return;
}
if (!coreResponse.terminal.super || !coreResponse.terminal.store_is_super) {
redirectQs.msg = 'Hanya super terminal pada super store yang dapat mengakses sistem.';
res.redirect(`/login?${querystring.stringify(redirectQs)}`);
return;
}
req.session.username = req.body.terminal_name;
req.session.terminal = coreResponse.terminal;
const redirectUrl = req.query.ref || '/';
res.redirect(redirectUrl);
});
}
function pageLogout(req, res) {
req.session.username = null;
req.session.terminal = null;
res.redirect('/login');
}
router.get('/', pageLogin);
router.post('/', bodyParser.urlencoded({ extended: true }), pageLoginSubmitted);
router.get('/out', pageLogout);
module.exports = router;