router-login.js 2.96 KB
edit raw blame history



1

2

3

4

5

6

7

8

9

10

11

12

13

14

15

16

17

18

19

20

21

22

23

24

25

26

27

28

29

30

31

32

33

34

35

36

37

38

39

40

41

42

43

44

45

46

47

48

49

50

51

52

53

54

55

56

57

58

59

60

61

62

63

64

65

66

67

68

69

70

71

72

73

74

75

76

77

78

79

80

81

82

83

84

85

86

87

88

89

90

91

92

93

94

95

96

97

98

99

100

101

102

103

104

105


// eslint-disable-next-line global-require
const MODULE_NAME = `CONTROL_PANEL_${require('path').basename(__filename)}`;

const querystring = require('querystring');
const express = require('express');
const bodyParser = require('body-parser');
const logger = require('tektrans-logger');

const router = express.Router();

const config = require('../../config');

const requestToCore = require('./request-to-core');

function pageLogin(req, res) {
    if (req.session && req.session.username && req.session.terminal) {
        res.redirect('/');
        return;
    }

    res.render(
        `${req.app.locals.cp_views_dir}/login.html`,
        {
            ref: req.query.ref,
            msg: req.query.msg,
        },
    );
}

function pageLoginSubmitted(req, res) {
    const methodName = 'pageLoginSubmitted';

    if (!req || !req.body || !req.body.terminal_name || !req.body.password) {
        const qs = {
            msg: 'Nama terminal dan password harus diisi',
            ref: req.query.ref,
        };

        res.redirect(`/login?${querystring.stringify(qs)}`);
        return;
    }

    const qs = {
        terminal_name: req.body.terminal_name,
        web_password: req.body.password,
        request_by: config.handler_name || config.username || config.origin,
    };

    requestToCore.doRequestAndParse('/services/terminalAuthentication', qs, (err, coreResponse) => {
        if (err) {
            logger.warn('Error requesting authentication check to CORE', {
                module_name: MODULE_NAME,
                method_name: methodName,
                err,
            });
            res.end('SOMETHING WRONG');
            return;
        }

        const redirectQs = {
            terminal_name: req.body.terminal_name,
            ref: req.query.ref,
        };

        if (coreResponse.message) {
            redirectQs.msg = coreResponse.message;
        }

        if (coreResponse.error) {
            res.redirect(`/login?${querystring.stringify(redirectQs)}`);
            return;
        }

        if (!coreResponse.terminal) {
            redirectQs.msg = 'Terminal tidak terdefinisi';
            res.redirect(`/login?${querystring.stringify(redirectQs)}`);
            return;
        }

        if (!coreResponse.terminal.super || !coreResponse.terminal.store_is_super) {
            redirectQs.msg = 'Hanya super terminal pada super store yang dapat mengakses sistem.';
            res.redirect(`/login?${querystring.stringify(redirectQs)}`);
            return;
        }

        req.session.username = req.body.terminal_name;
        req.session.terminal = coreResponse.terminal;

        const redirectUrl = req.query.ref || '/';
        res.redirect(redirectUrl);
    });
}

function pageLogout(req, res) {
    req.session.username = null;
    req.session.terminal = null;

    res.redirect('/login');
}

router.get('/', pageLogin);
router.post('/', bodyParser.urlencoded({ extended: true }), pageLoginSubmitted);
router.get('/out', pageLogout);

module.exports = router;