discourse/app/services/user_authenticator.rb

# frozen_string_literal: true

class UserAuthenticator

  def initialize(user, session, authenticator_finder = Users::OmniauthCallbacksController)
    @user = user
    @session = session
    if session[:authentication] && session[:authentication].is_a?(Hash)
      @auth_result = Auth::Result.from_session_data(session[:authentication])
    end
    @authenticator_finder = authenticator_finder
  end

  def start
    if authenticated?
      @user.active = true
    else
      @user.password_required!
    end

    @user.skip_email_validation = true if @auth_result && @auth_result.skip_email_validation
  end

  def has_authenticator?
    !!authenticator
  end

  def finish
    if authenticator
      authenticator.after_create_account(@user, @auth_result)
      confirm_email
    end
    @session[:authentication] = @auth_result = nil if @session[:authentication]
  end

  def email_valid?
    @auth_result&.email_valid
  end

  def authenticated?
    @auth_result && @auth_result.email.downcase == @user.email.downcase && @auth_result.email_valid.to_s == "true"
  end

  private

  def confirm_email
    if authenticated?
      EmailToken.confirm(@user.email_tokens.first.token)
      @user.set_automatic_groups
    end
  end

  def authenticator
    if authenticator_name
      @authenticator ||= @authenticator_finder.find_authenticator(authenticator_name)
    end
  end

  def authenticator_name
    @auth_result&.authenticator_name
  end

end
DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging 2019-05-02 17:17:27 -05:00			`# frozen_string_literal: true`

Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`class UserAuthenticator`
FEATURE: new 'maximum new user accounts per registration IP' site setting 2014-11-17 05:04:29 -06:00
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`def initialize(user, session, authenticator_finder = Users::OmniauthCallbacksController)`
			`@user = user`
FIX: Clear authentication data from session after create account (#8040) 2019-09-12 06:11:12 -05:00			`@session = session`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 05:15:53 -05:00			`if session[:authentication] && session[:authentication].is_a?(Hash)`
			`@auth_result = Auth::Result.from_session_data(session[:authentication])`
			`end`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`@authenticator_finder = authenticator_finder`
			`end`

			`def start`
			`if authenticated?`
			`@user.active = true`
			`else`
			`@user.password_required!`
			`end`
Ability to skip email validation via a plugin 2016-09-07 13:05:46 -05:00
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 05:15:53 -05:00			`@user.skip_email_validation = true if @auth_result && @auth_result.skip_email_validation`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`end`

BUGFIX: twitter auth asking for a password 2014-03-19 22:49:25 -05:00			`def has_authenticator?`
			`!!authenticator`
			`end`

Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`def finish`
FIX: apply automatic group rules when using social login providers 2018-05-22 18:26:07 -05:00			`if authenticator`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 05:15:53 -05:00			`authenticator.after_create_account(@user, @auth_result)`
FIX: apply automatic group rules when using social login providers 2018-05-22 18:26:07 -05:00			`confirm_email`
			`end`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 05:15:53 -05:00			`@session[:authentication] = @auth_result = nil if @session[:authentication]`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`end`

SECURITY: signup without verified email using Google auth 2017-10-16 12:51:35 -05:00			`def email_valid?`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 05:15:53 -05:00			`@auth_result&.email_valid`
SECURITY: signup without verified email using Google auth 2017-10-16 12:51:35 -05:00			`end`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00
			`def authenticated?`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 05:15:53 -05:00			`@auth_result && @auth_result.email.downcase == @user.email.downcase && @auth_result.email_valid.to_s == "true"`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`end`

SECURITY: signup without verified email using Google auth 2017-10-16 12:51:35 -05:00			`private`

FIX: apply automatic group rules when using social login providers 2018-05-22 18:26:07 -05:00			`def confirm_email`
			`if authenticated?`
			`EmailToken.confirm(@user.email_tokens.first.token)`
			`@user.set_automatic_groups`
			`end`
			`end`

Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`def authenticator`
			`if authenticator_name`
			`@authenticator \|\|= @authenticator_finder.find_authenticator(authenticator_name)`
			`end`
			`end`

			`def authenticator_name`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 05:15:53 -05:00			`@auth_result&.authenticator_name`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`end`
FEATURE: new 'maximum new user accounts per registration IP' site setting 2014-11-17 05:04:29 -06:00
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-12 16:37:38 -06:00			`end`