discourse/app/services/user_authenticator.rb

# frozen_string_literal: true

class UserAuthenticator
  def initialize(
    user,
    session,
    authenticator_finder: Users::OmniauthCallbacksController,
    require_password: true
  )
    @user = user
    @session = session
    if session&.dig(:authentication) && session[:authentication].is_a?(Hash)
      @auth_result = Auth::Result.from_session_data(session[:authentication], user: user)
    end
    @authenticator_finder = authenticator_finder
    @require_password = require_password
  end

  def start
    if authenticated?
      @user.active = true
      @auth_result.apply_user_attributes!
    elsif @require_password
      @user.password_required!
    end

    @user.skip_email_validation = true if @auth_result && @auth_result.skip_email_validation
  end

  def has_authenticator?
    !!authenticator
  end

  def finish
    if authenticator
      authenticator.after_create_account(@user, @auth_result)
      confirm_email
    end
    if @session&.dig(:authentication)
      @session[:authentication] = @auth_result = nil
      @session[:authenticated_with_oauth] = true
    end
  end

  def email_valid?
    @auth_result&.email_valid
  end

  def authenticated?
    return false if !@auth_result
    return false if @auth_result&.email&.downcase != @user.email.downcase
    return false if !@auth_result.email_valid
    true
  end

  private

  def confirm_email
    @user.activate if authenticated?
  end

  def authenticator
    if authenticator_name
      @authenticator ||= @authenticator_finder.find_authenticator(authenticator_name)
    end
  end

  def authenticator_name
    @auth_result&.authenticator_name
  end
end
DEV: enable frozen string literal on all files This reduces chances of errors where consumers of strings mutate inputs and reduces memory usage of the app. Test suite passes now, but there may be some stuff left, so we will run a few sites on a branch prior to merging 2019-05-03 06:17:27 +08:00			`# frozen_string_literal: true`

Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`class UserAuthenticator`
FEATURE: Allow invites redemption with Omniauth providers. 2021-03-02 15:13:04 +08:00			`def initialize(`
			`user,`
			`session,`
			`authenticator_finder: Users::OmniauthCallbacksController,`
			`require_password: true`
			`)`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`@user = user`
FIX: Clear authentication data from session after create account (#8040) 2019-09-12 19:11:12 +08:00			`@session = session`
FEATURE: Allow invites redemption with Omniauth providers. 2021-03-02 15:13:04 +08:00			`if session&.dig(:authentication) && session[:authentication].is_a?(Hash)`
FEATURE: sso_overrides_(email\|username\|name) for all auth methods These settings previously applied only to discourse-sso. Now they work for all external authentication methods. 2020-06-18 18:01:02 +08:00			`@auth_result = Auth::Result.from_session_data(session[:authentication], user: user)`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 18:15:53 +08:00			`end`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`@authenticator_finder = authenticator_finder`
FEATURE: Allow invites redemption with Omniauth providers. 2021-03-02 15:13:04 +08:00			`@require_password = require_password`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`end`

			`def start`
			`if authenticated?`
			`@user.active = true`
FEATURE: sso_overrides_(email\|username\|name) for all auth methods These settings previously applied only to discourse-sso. Now they work for all external authentication methods. 2020-06-18 18:01:02 +08:00			`@auth_result.apply_user_attributes!`
FEATURE: Allow invites redemption with Omniauth providers. 2021-03-02 15:13:04 +08:00			`elsif @require_password`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`@user.password_required!`
			`end`
Ability to skip email validation via a plugin 2016-09-08 02:05:46 +08:00
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 18:15:53 +08:00			`@user.skip_email_validation = true if @auth_result && @auth_result.skip_email_validation`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`end`

BUGFIX: twitter auth asking for a password 2014-03-20 11:49:25 +08:00			`def has_authenticator?`
			`!!authenticator`
			`end`

Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`def finish`
FIX: apply automatic group rules when using social login providers 2018-05-23 07:26:07 +08:00			`if authenticator`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 18:15:53 +08:00			`authenticator.after_create_account(@user, @auth_result)`
FIX: apply automatic group rules when using social login providers 2018-05-23 07:26:07 +08:00			`confirm_email`
			`end`
FIX: do not enforce 2fa when an account is created with OAuth (#28625) In this PR we introduced a new setting `enforce_second_factor_on_external_auth` which disables enforce 2FA when the user is authenticated with an external provider. https://github.com/discourse/discourse/pull/27506 However, with the first registration with an external provider, we authenticate the user right after activation. In that case, we need to also keep information that the user was authenticated with an external OAuth provider. 2024-08-29 09:19:04 +08:00			`if @session&.dig(:authentication)`
			`@session[:authentication] = @auth_result = nil`
			`@session[:authenticated_with_oauth] = true`
			`end`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`end`

SECURITY: signup without verified email using Google auth 2017-10-17 01:51:35 +08:00			`def email_valid?`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 18:15:53 +08:00			`@auth_result&.email_valid`
SECURITY: signup without verified email using Google auth 2017-10-17 01:51:35 +08:00			`end`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00
			`def authenticated?`
FEATURE: sso_overrides_(email\|username\|name) for all auth methods These settings previously applied only to discourse-sso. Now they work for all external authentication methods. 2020-06-18 18:01:02 +08:00			`return false if !@auth_result`
FIX: Allow signup when auth provider supplies no email 2020-07-11 00:56:33 +08:00			`return false if @auth_result&.email&.downcase != @user.email.downcase`
FIX: Make email_valid handling consistent (#11556) Previously we were checking truthiness in some places, and `== true` in others. That can lead to some inconsistent UX where the interface says the email is valid, but account creation fails. This commit ensures values are boolean when set, and raises an error for other value types. If this safety check is triggered, it means the specific auth provider needs to be updated to pass booleans. 2021-02-22 20:05:36 +08:00			`return false if !@auth_result.email_valid`
FEATURE: sso_overrides_(email\|username\|name) for all auth methods These settings previously applied only to discourse-sso. Now they work for all external authentication methods. 2020-06-18 18:01:02 +08:00			`true`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`end`

SECURITY: signup without verified email using Google auth 2017-10-17 01:51:35 +08:00			`private`

FIX: apply automatic group rules when using social login providers 2018-05-23 07:26:07 +08:00			`def confirm_email`
DEV: Hash tokens stored from email_tokens (#14493) This commit adds token_hash and scopes columns to email_tokens table. token_hash is a replacement for the token column to avoid storing email tokens in plaintext as it can pose a security risk. The new scope column ensures that email tokens cannot be used to perform a different action than the one intended. To sum up, this commit: * Adds token_hash and scope to email_tokens * Reuses code that schedules critical_user_email * Refactors EmailToken.confirm and EmailToken.atomic_confirm methods * Periodically cleans old, unconfirmed or expired email tokens 2021-11-25 15:34:39 +08:00			`@user.activate if authenticated?`
FIX: apply automatic group rules when using social login providers 2018-05-23 07:26:07 +08:00			`end`

Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`def authenticator`
			`if authenticator_name`
			`@authenticator \|\|= @authenticator_finder.find_authenticator(authenticator_name)`
			`end`
			`end`

			`def authenticator_name`
DEV: Refactor Auth::Result for readability, recreate during signup flow 2020-06-17 18:15:53 +08:00			`@auth_result&.authenticator_name`
Refactor UsersController#create * Simplify controller action * Extract service classes 2013-11-13 06:37:38 +08:00			`end`
			`end`