Infrastructure/logto
0
Fork 0
mirror of https://github.com/logto-io/logto.git synced 2025-01-13 21:30:30 -05:00
Code Issues Activity

refactor: refine sign-in errors

Browse source
This commit is contained in:
Gao Sun 2021-07-25 17:35:01 +08:00
parent 405513c977
commit f422c3ae3f
No known key found for this signature in database
GPG key ID: 0F0EFA2E36639F31
5 changed files with 49 additions and 21 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

11
packages/core/src/errors/RequestError/collection/sign-in-errors.ts Normal file
View file

@ -0,0 +1,11 @@
export enum SignInErrorCode {
InvalidCredentials = 'sign_in.invalid_credentials',
InvalidSignInMethod = 'sign_in.invalid_sign_in_method',
InsufficientInfo = 'sign_in.insufficient_info',
}
export const signInErrorMessage: Record<SignInErrorCode, string> = {
[SignInErrorCode.InvalidCredentials]: 'Invalid credentials. Please check your input.',
[SignInErrorCode.InvalidSignInMethod]: 'Current sign-in method is not available.',
[SignInErrorCode.InsufficientInfo]: 'Insufficent sign-in info.',
};

2
packages/core/src/errors/RequestError/message.ts
View file

@ -3,10 +3,12 @@ import { guardErrorMessage } from './collection/guard-errors';
import { oidcErrorMessage } from './collection/oidc-errors'; import { oidcErrorMessage } from './collection/oidc-errors';
import { registerErrorMessage } from './collection/register-errors'; import { registerErrorMessage } from './collection/register-errors';
import { swaggerErrorMessage } from './collection/swagger-errors'; import { swaggerErrorMessage } from './collection/swagger-errors';
import { signInErrorMessage } from './collection/sign-in-errors';
export const requestErrorMessage: Record<RequestErrorCode, string> = { export const requestErrorMessage: Record<RequestErrorCode, string> = {
...guardErrorMessage, ...guardErrorMessage,
...oidcErrorMessage, ...oidcErrorMessage,
...registerErrorMessage, ...registerErrorMessage,
...swaggerErrorMessage, ...swaggerErrorMessage,
...signInErrorMessage,
}; };

6
packages/core/src/errors/RequestError/types.ts
View file

@ -2,14 +2,16 @@ import { GuardErrorCode } from './collection/guard-errors';
import { OidcErrorCode } from './collection/oidc-errors'; import { OidcErrorCode } from './collection/oidc-errors';
import { RegisterErrorCode } from './collection/register-errors'; import { RegisterErrorCode } from './collection/register-errors';
import { SwaggerErrorCode } from './collection/swagger-errors'; import { SwaggerErrorCode } from './collection/swagger-errors';
import { SignInErrorCode } from './collection/sign-in-errors';
export { GuardErrorCode, OidcErrorCode, SwaggerErrorCode, RegisterErrorCode }; export { GuardErrorCode, OidcErrorCode, SwaggerErrorCode, RegisterErrorCode, SignInErrorCode };
export type RequestErrorCode = export type RequestErrorCode =
| GuardErrorCode | GuardErrorCode
| OidcErrorCode | OidcErrorCode
| RegisterErrorCode | RegisterErrorCode
| SwaggerErrorCode; | SwaggerErrorCode
| SignInErrorCode;
export type RequestErrorMetadata = { export type RequestErrorMetadata = {
code: RequestErrorCode; code: RequestErrorCode;

2
packages/core/src/proxies/ui.ts
View file

@ -3,7 +3,7 @@ import proxy from 'koa-proxies';
// CAUTION: this is for testing only // CAUTION: this is for testing only
export default function uiProxy() { export default function uiProxy() {
return proxy(/^\/(?!api|oidc).*$/, { return proxy(/^\/(?!api|oidc).*$/, {
target: 'http://localhost:3000', target: 'http://localhost:5000',
changeOrigin: true, changeOrigin: true,
logs: true, logs: true,
}); });

49
packages/core/src/routes/sign-in.ts
View file

@ -6,7 +6,7 @@ import { findUserById } from '@/queries/user';
import { Provider } from 'oidc-provider'; import { Provider } from 'oidc-provider';
import { conditional } from '@logto/essentials'; import { conditional } from '@logto/essentials';
import koaGuard from '@/middleware/koa-guard'; import koaGuard from '@/middleware/koa-guard';
import { OidcErrorCode } from '@/errors/RequestError'; import RequestError, { OidcErrorCode, SignInErrorCode } from '@/errors/RequestError';
export default function signInRoutes(provider: Provider) { export default function signInRoutes(provider: Provider) {
const router = new Router(); const router = new Router();
@ -22,25 +22,38 @@ export default function signInRoutes(provider: Provider) {
if (name === 'login') { if (name === 'login') {
const { id, password } = ctx.guard.body; const { id, password } = ctx.guard.body;
assert(id && password, 'Insufficent sign-in info.'); assert(id && password, new RequestError(SignInErrorCode.InsufficientInfo));
const { passwordEncrypted, passwordEncryptionMethod, passwordEncryptionSalt } =
await findUserById(id);
assert(passwordEncrypted && passwordEncryptionMethod && passwordEncryptionSalt); try {
assert( const { passwordEncrypted, passwordEncryptionMethod, passwordEncryptionSalt } =
encryptPassword(id, password, passwordEncryptionSalt, passwordEncryptionMethod) === await findUserById(id);
passwordEncrypted
);
const redirectTo = await provider.interactionResult( assert(
ctx.req, passwordEncrypted && passwordEncryptionMethod && passwordEncryptionSalt,
ctx.res, new RequestError(SignInErrorCode.InvalidSignInMethod)
{ );
login: { accountId: id }, assert(
}, encryptPassword(id, password, passwordEncryptionSalt, passwordEncryptionMethod) ===
{ mergeWithLastSubmission: false } passwordEncrypted,
); new RequestError(SignInErrorCode.InvalidCredentials)
ctx.body = { redirectTo }; );
const redirectTo = await provider.interactionResult(
ctx.req,
ctx.res,
{
login: { accountId: id },
},
{ mergeWithLastSubmission: false }
);
ctx.body = { redirectTo };
} catch (error: unknown) {
if (!(error instanceof RequestError)) {
throw new RequestError(SignInErrorCode.InvalidCredentials);
}
throw error;
}
} else if (name === 'consent') { } else if (name === 'consent') {
ctx.body = { redirectTo: ctx.request.origin + '/sign-in/consent' }; ctx.body = { redirectTo: ctx.request.origin + '/sign-in/consent' };
} else { } else {