-
-
Notifications
You must be signed in to change notification settings - Fork 354
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
[mirotalksfu] - improve OIDC auth check
- Loading branch information
1 parent
65c71b1
commit 6f4c609
Showing
5 changed files
with
28 additions
and
18 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -58,7 +58,7 @@ dev dependencies: { | |
| * @license For commercial or closed source, contact us at [email protected] or purchase directly via CodeCanyon | ||
| * @license CodeCanyon: https://codecanyon.net/item/mirotalk-sfu-webrtc-realtime-video-conferences/40769970 | ||
| * @author Miroslav Pejic - [email protected] | ||
| * @version 1.7.23 | ||
| * @version 1.7.24 | ||
| * | ||
| */ | ||
|
|
||
|
|
@@ -328,23 +328,33 @@ if (!announcedAddress && IPv4 === '0.0.0.0') { | |
| // Custom middleware function for OIDC authentication | ||
| function OIDCAuth(req, res, next) { | ||
| if (OIDC.enabled) { | ||
|
|
||
| function handleHostProtected(req) { | ||
| if (!hostCfg.protected) return; | ||
|
|
||
| const ip = authHost.getIP(req); | ||
| hostCfg.authenticated = true; | ||
| authHost.setAuthorizedIP(ip, true); | ||
| // Check... | ||
| log.debug('OIDC ------> Host protected', { | ||
| authenticated: hostCfg.authenticated, | ||
| authorizedIPs: authHost.getAuthorizedIPs(), | ||
| }); | ||
| } | ||
|
|
||
| if (req.oidc.isAuthenticated()) { | ||
| log.debug('OIDC ------> User already Authenticated'); | ||
| handleHostProtected(req); | ||
| return next(); | ||
| } | ||
|
|
||
| // Apply requiresAuth() middleware conditionally | ||
| requiresAuth()(req, res, function () { | ||
| log.debug('[OIDC] ------> requiresAuth'); | ||
| log.debug('OIDC ------> requiresAuth'); | ||
| // Check if user is authenticated | ||
| if (req.oidc.isAuthenticated()) { | ||
| log.debug('[OIDC] ------> User isAuthenticated'); | ||
| // User is authenticated | ||
| if (hostCfg.protected) { | ||
| const ip = authHost.getIP(req); | ||
| hostCfg.authenticated = true; | ||
| authHost.setAuthorizedIP(ip, true); | ||
| // Check... | ||
| log.debug('[OIDC] ------> Host protected', { | ||
| authenticated: hostCfg.authenticated, | ||
| authorizedIPs: authHost.getAuthorizedIPs(), | ||
| }); | ||
| } | ||
| handleHostProtected(req); | ||
| next(); | ||
| } else { | ||
| // User is not authenticated | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -11,7 +11,7 @@ if (location.href.substr(0, 5) !== 'https') location.href = 'https' + location.h | |
| * @license For commercial or closed source, contact us at [email protected] or purchase directly via CodeCanyon | ||
| * @license CodeCanyon: https://codecanyon.net/item/mirotalk-sfu-webrtc-realtime-video-conferences/40769970 | ||
| * @author Miroslav Pejic - [email protected] | ||
| * @version 1.7.23 | ||
| * @version 1.7.24 | ||
| * | ||
| */ | ||
|
|
||
|
|
@@ -4905,7 +4905,7 @@ function showAbout() { | |
| position: 'center', | ||
| imageUrl: BRAND.about?.imageUrl && BRAND.about.imageUrl.trim() !== '' ? BRAND.about.imageUrl : image.about, | ||
| customClass: { image: 'img-about' }, | ||
| title: BRAND.about?.title && BRAND.about.title.trim() !== '' ? BRAND.about.title : 'WebRTC SFU v1.7.23', | ||
| title: BRAND.about?.title && BRAND.about.title.trim() !== '' ? BRAND.about.title : 'WebRTC SFU v1.7.24', | ||
| html: ` | ||
| <br /> | ||
| <div id="about"> | ||
|
|
||
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| Original file line number | Diff line number | Diff line change |
|---|---|---|
|
|
@@ -9,7 +9,7 @@ | |
| * @license For commercial or closed source, contact us at [email protected] or purchase directly via CodeCanyon | ||
| * @license CodeCanyon: https://codecanyon.net/item/mirotalk-sfu-webrtc-realtime-video-conferences/40769970 | ||
| * @author Miroslav Pejic - [email protected] | ||
| * @version 1.7.23 | ||
| * @version 1.7.24 | ||
| * | ||
| */ | ||
|
|
||
|
|
||