budibase/packages/worker/src/api/routes/global/auth.js

const Router = require("@koa/router")
const authController = require("../../controllers/global/auth")
const joiValidator = require("../../../middleware/joi-validator")
const Joi = require("joi")
const { updateTenantId } = require("@budibase/auth/tenancy")

const router = Router()

function buildAuthValidation() {
  // prettier-ignore
  return joiValidator.body(Joi.object({
    username: Joi.string().required(),
    password: Joi.string().required(),
  }).required().unknown(false))
}

function buildResetValidation() {
  // prettier-ignore
  return joiValidator.body(Joi.object({
    email: Joi.string().required(),
  }).required().unknown(false))
}

function buildResetUpdateValidation() {
  // prettier-ignore
  return joiValidator.body(Joi.object({
    resetCode: Joi.string().required(),
    password: Joi.string().required(),
  }).required().unknown(false))
}

function updateTenant(ctx, next) {
  if (ctx.params) {
    updateTenantId(ctx.params.tenantId)
  }
  return next()
}

router
  .post(
    "/api/global/auth/:tenantId/login",
    buildAuthValidation(),
    updateTenant,
    authController.authenticate
  )
  .post(
    "/api/global/auth/:tenantId/reset",
    buildResetValidation(),
    updateTenant,
    authController.reset
  )
  .post(
    "/api/global/auth/:tenantId/reset/update",
    buildResetUpdateValidation(),
    updateTenant,
    authController.resetUpdate
  )
  .post("/api/global/auth/logout", authController.logout)
  .post("/api/global/auth/init", authController.setInitInfo)
  .get("/api/global/auth/init", authController.getInitInfo)
  .get(
    "/api/global/auth/:tenantId/google",
    updateTenant,
    authController.googlePreAuth
  )
  .get(
    "/api/global/auth/:tenantId/google2",
    updateTenant,
    authController.googlePreAuth2
  )
  // single tenancy endpoint
  .get("/api/global/auth/google/callback", authController.googleAuth)
  // TODO: Remove
  .get("/api/global/auth/google2/callback", authController.googleAuth2)
  // multi-tenancy endpoint
  .get(
    "/api/global/auth/:tenantId/google/callback",
    updateTenant,
    authController.googleAuth
  )
  .get(
    "/api/global/auth/:tenantId/oidc/configs/:configId",
    updateTenant,
    authController.oidcPreAuth
  )
  // single tenancy endpoint
  .get("/api/global/auth/oidc/callback", authController.oidcAuth)
  // multi-tenancy endpoint
  .get(
    "/api/global/auth/:tenantId/oidc/callback",
    updateTenant,
    authController.oidcAuth
  )
  // deprecated - used by the default system before tenancy
  .get("/api/admin/auth/google/callback", authController.googleAuth)
  .get("/api/admin/auth/oidc/callback", authController.oidcAuth)

module.exports = router