1 # Pleroma: A lightweight social networking server
2 # Copyright © 2017-2019 Pleroma Authors <https://pleroma.social/>
3 # SPDX-License-Identifier: AGPL-3.0-only
5 defmodule Pleroma.Web.Auth.PleromaAuthenticator do
9 @behaviour Pleroma.Web.Auth.Authenticator
11 def get_user(%Plug.Conn{} = _conn, params) do
14 %{"authorization" => %{"name" => name, "password" => password}} ->
17 %{"grant_type" => "password", "username" => name, "password" => password} ->
21 with {_, %User{} = user} <- {:user, User.get_by_nickname_or_email(name)},
22 {_, true} <- {:checkpw, Pbkdf2.checkpw(password, user.password_hash)} do
30 def get_or_create_user_by_oauth(
31 %Plug.Conn{assigns: %{ueberauth_auth: %{provider: provider, uid: uid} = auth}},
34 user = User.get_by_auth_provider_uid(provider, uid)
41 nickname = info.nickname
43 # TODO: FIXME: connect to existing (non-oauth) account (need a UI flow for that) / generate a random nickname?
45 if email && User.get_by_email(email) do
52 if nickname && User.get_by_nickname(nickname) do
59 User.oauth_register_changeset(
62 auth_provider: to_string(provider),
63 auth_provider_uid: to_string(uid),
65 bio: info.description,
71 Pleroma.Repo.insert(new_user)
75 def get_or_create_user_by_oauth(%Plug.Conn{} = _conn, _params),
76 do: {:error, :missing_credentials}
78 def handle_error(%Plug.Conn{} = _conn, error) do
82 def auth_template, do: nil