Adonis JS 5 - Active Directory Login - Manually set auth data

[iqlasuddin]

I am trying to integrate Active Directory/LDAP authentication in Adonis JS (Version 5, preview). I'm using npm package activedirectory.

If the domain controller approves of username and password, the session has to be authenticated.
Below is my code in AuthController.ts

store() method is routed through post on /login and other two methods attemptLdapLogin() which verifies the credentials and then, fetchLdapUser() fetches user details from Active Directory. I am aware the auth.login() expects parameter of type App\Models\User.

1. So can anyone hint me at how I shall manually authenticate session and have the auth helper available all over the app.

2. When username and password fails, i.e., when attemptLdapLogin() fails, I expect it to return response.redirect('back') to /login but even when wrong username and password is entered, it still processes the next part i.e., fetchLdapUser(). Can someone point out what is wrong here.

    // other default/Env/Validator/Logger/Model imports
    import ActiveDirectory from 'activedirectory'

    export default class AuthController {
      protected ad_config = {
        url: Env.get('AD_URL'),
        baseDN: Env.get('AD_BASEDN')
      }

      async store({ auth, request, response, session }: HttpContextContract) {
        await request.validate(LoginValidator)
        const { email, password } = request.all()
        const username = `${email}@${Env.get('AD_DOMAIN')}`
    
        await this.attemptLdapLogin(username, password).catch(() => {
          session.flash('error', 'Unable to login. Incorrect username/password')
          return response.redirect('back')
        })
    
        await this.fetchLdapUser(username, password)
          .then(res => {
            //auth.login(res)
          })
          .catch(err => {
            Logger.warn(JSON.stringify(err))
            session.flash('error', 'Internal Error, please contact admin')
            return response.redirect('/login')
          })
      }
    
      async attemptLdapLogin(username, password) {
        const config = { ...this.ad_config, username, password }
        const ad = new ActiveDirectory(config)
    
        return new Promise((resolve, reject) => {
          ad.authenticate(username, password, err => {
            if (err) {
              reject(err)
              return
            }
            resolve(true)
            return
          })
        })
      }
    
      async fetchLdapUser(username, password) {
        const config = { ...this.ad_config, username, password }
        const ad = new ActiveDirectory(config)
    
        return new Promise((resolve, reject) => {
          ad.findUser(username, (err, user) => {
            if (err) {
              reject(err)
              return
            }
            resolve({
              name: user.displayName,
              email: user.userPrincipalName
            })
            return
          })
        })
      }
    }

[thetutlage]

You can login the user by calling auth.login() method and pass it the instance of the user model.

await auth.login(user)