- Rid roles and get auth working

2018-03-05 21:30:39 -05:00
parent 0519e4feff
commit b2e91f491e
8 changed files with 63 additions and 485 deletions
--- a/routes/auth.js
+++ b/routes/auth.js
@@ -54,6 +54,35 @@ Router.route('/login')
 		UserModel.authenticateUser(AuthEvents, data, headers);
 	});
 	
+Router.route('/secure/:auth/:expires?')
+	.post((req, res) => {
+    if (req.params.auth === 'gutenberg') {
+      let TokenEvents = new EventEmitter();
+      let expires = req.params.expires || '15m';
+      let token = { authorized: true, can: ['add','edit','delete','manage','super','update','view'] };
+    
+      TokenEvents.once('token:create', (err, token) => {
+        if (err) {
+          res.status(500).json({
+            authorized: false,
+            err: err
+          });
+        }
+      
+        if (token) {
+          res.status(200).json({
+            authorized: true,
+            token: token
+          });
+        }
+      });
+      
+      Token.create(TokenEvents, login.user, expires);
+    } else {
+      res.status(403).json({ authorized: false, message: 'operation not authorized' });
+    }	
+	});
+	
 Router.route('/reset/:id?/:token?')
  .get((req, res) => {
    var id = req.params.id ? decodeURIComponent(req.params.id) : false;