2018-01-14 20:44:41 -05:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
|
|
|
# omniauth loves spending lots cycles in its magic middleware stack
|
|
|
|
# this middleware bypasses omniauth middleware and only hits it when needed
|
|
|
|
class Middleware::OmniauthBypassMiddleware
|
|
|
|
|
|
|
|
def initialize(app, options = {})
|
|
|
|
@app = app
|
|
|
|
|
2018-11-30 11:58:18 -05:00
|
|
|
Discourse.plugins.each(&:notify_before_auth)
|
|
|
|
|
2018-01-14 20:44:41 -05:00
|
|
|
# if you need to test this and are having ssl issues see:
|
|
|
|
# http://stackoverflow.com/questions/6756460/openssl-error-using-omniauth-specified-ssl-path-but-didnt-work
|
|
|
|
# OpenSSL::SSL::VERIFY_PEER = OpenSSL::SSL::VERIFY_NONE if Rails.env.development?
|
|
|
|
@omniauth = OmniAuth::Builder.new(app) do
|
|
|
|
Discourse.authenticators.each do |authenticator|
|
|
|
|
authenticator.register_middleware(self)
|
|
|
|
end
|
|
|
|
end
|
2018-12-11 08:19:00 -05:00
|
|
|
|
|
|
|
@omniauth.before_request_phase do |env|
|
|
|
|
# If the user is trying to reconnect to an existing account, store in session
|
|
|
|
request = ActionDispatch::Request.new(env)
|
|
|
|
request.session[:auth_reconnect] = !!request.params["reconnect"]
|
|
|
|
end
|
2018-01-14 20:44:41 -05:00
|
|
|
end
|
|
|
|
|
|
|
|
def call(env)
|
|
|
|
if env["PATH_INFO"].start_with?("/auth")
|
|
|
|
@omniauth.call(env)
|
|
|
|
else
|
|
|
|
@app.call(env)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
end
|