Hi guys,
here's a login flow I've been working on which so far is perfectly fine for my needs.
Multiple usernames can be used for logging in, but since there is no real multi-user session for Node Red, in this flow we can neither have 2 users being logged in at the same time.
(Find the discussions about multiple-user-sessions here: Multiple session problem)
That being said, let's dive into the flow:
Firstly, what you need for this flow are ofc node-red-dashboard and a package called 'node-red-contrib-queue-gate'.
As currently configured, there are 2 users stored directly into the "Check UN" (UN = username) node, namely "Username1" and "Username2". The Regex
^Username1$|^Username2$
ensures that usernames must be exactly written like that and that the input does not allow something similar like Username123 or LUsername1. As for the "Check PW" (PW = password) node, a regex expression is not needed. You can make a simple equals ("==") check here.
What I also added - but I'm not 100% sure if this is properly working - is to sanitize the inputs before I write them into flow variables. If anyone can give feedback about this, it would be highly appreciated!
UPDATE: Looks like this doesn't work in the set nodes right after the input nodes (password / username).
sanitizer.value(req.name, 'string')
From: https://stackoverflow.com/questions/46718772/how-i-can-sanitize-my-input-values-in-node-js
Not really sure if we need it, but if I were to open my dashboard to the public, I'd really love to have sanitizers in place in order to block nasty SQL injections or other malicious code..
Maybe a nice addition is to fetch username(s) & password(s) from a database or a file, but I leave this exercise to you.
Without further ado, here's my flow. Hope this helps someone. And if anyone finds errors, please let me know!
My Login-Flow (single-user-session)
[{"id":"76fd797.485aa88","type":"tab","label":"Login","disabled":false,"info":""},{"id":"cca9f730.5b8708","type":"ui_text_input","z":"76fd797.485aa88","name":"Enter PW","label":"password","tooltip":"","group":"d8e69abb.fdd8d8","order":2,"width":2,"height":1,"passthru":true,"mode":"password","delay":"200","topic":"credentials","x":560,"y":400,"wires":[["e13af06e.0e8c4"]]},{"id":"fc54cae8.bd9de8","type":"switch","z":"76fd797.485aa88","name":"Check PW","property":"payload","propertyType":"msg","rules":[{"t":"eq","v":"hello123","vt":"str"},{"t":"eq","v":"","vt":"str"},{"t":"else"}],"checkall":"true","repair":false,"outputs":3,"x":690,"y":780,"wires":[["4f38850a.c1f62c"],,["4cdd0cf6.ac8ed4"]]},{"id":"5630fdfd.7e5014","type":"template","z":"76fd797.485aa88","name":"Successful login","field":"payload","fieldType":"msg","format":"handlebars","syntax":"mustache","template":"<font color="green">{{flow.un}} logged in.","x":1380,"y":880,"wires":[["b5f9e672.ed92c8"]]},{"id":"781db5f1.34d9ac","type":"template","z":"76fd797.485aa88","name":"Error in Login","field":"payload","fieldType":"msg","format":"handlebars","syntax":"mustache","template":"<font color="red">Wrong Login/PW!","x":1380,"y":800,"wires":[["b5f9e672.ed92c8","51c2491.ce40cb8"]]},{"id":"b5f9e672.ed92c8","type":"ui_text","z":"76fd797.485aa88","group":"50a85feb.4bbc8","order":1,"width":4,"height":1,"name":"Login Response","label":"","format":"{{msg.payload}}","layout":"row-left","x":1560,"y":840,"wires":},{"id":"d70f5e66.59e81","type":"change","z":"76fd797.485aa88","name":"Disable PW-Field","rules":[{"t":"set","p":"enabled","pt":"msg","to":"false","tot":"bool"},{"t":"set","p":"payload","pt":"msg","to":"","tot":"str"}],"action":"","property":"","from":"","to":"","reg":false,"x":350,"y":460,"wires":[["cca9f730.5b8708"]]},{"id":"36234ec0.40b632","type":"ui_button","z":"76fd797.485aa88","name":"","group":"50a85feb.4bbc8","order":2,"width":2,"height":1,"passthru":false,"label":"Logout","tooltip":"Logout","color":"","bgcolor":"","icon":"logout","payload":"","payloadType":"str","topic":"credentials","x":1610,"y":440,"wires":[["1301def4.d9e611","871a97b0.6595f8","28b485ed.566cea","47e76942.938d28","494f9d3.f510564","6341fa01.5d4c34"]]},{"id":"9441491d.d69aa8","type":"change","z":"76fd797.485aa88","name":"Enable Logout-Btn","rules":[{"t":"set","p":"enabled","pt":"msg","to":"true","tot":"bool"}],"action":"","property":"","from":"","to":"","reg":false,"x":1390,"y":680,"wires":[["36234ec0.40b632"]]},{"id":"eabdea67.ac66a8","type":"inject","z":"76fd797.485aa88","name":"Inject","props":[{"p":"payload"},{"p":"topic","vt":"str"}],"repeat":"","crontab":"","once":false,"onceDelay":0.1,"topic":"credentials","payload":"","payloadType":"str","x":110,"y":220,"wires":[["1301def4.d9e611","47e76942.938d28","871a97b0.6595f8","28b485ed.566cea","494f9d3.f510564","6341fa01.5d4c34"]]},{"id":"1301def4.d9e611","type":"change","z":"76fd797.485aa88","name":"Disable Logout-Btn","rules":[{"t":"set","p":"enabled","pt":"msg","to":"false","tot":"bool"}],"action":"","property":"","from":"","to":"","reg":false,"x":1390,"y":220,"wires":[["36234ec0.40b632"]]},{"id":"871a97b0.6595f8","type":"change","z":"76fd797.485aa88","name":"Enable PW-Field","rules":[{"t":"set","p":"enabled","pt":"msg","to":"true","tot":"bool"}],"action":"","property":"","from":"","to":"","reg":false,"x":350,"y":400,"wires":[["cca9f730.5b8708"]]},{"id":"b881c739.7cf5a8","type":"ui_text_input","z":"76fd797.485aa88","name":"Enter UN","label":"username","tooltip":"","group":"d8e69abb.fdd8d8","order":1,"width":2,"height":1,"passthru":true,"mode":"text","delay":"50","topic":"credentials","x":560,"y":520,"wires":[["10694353.70671d"]]},{"id":"660abd33.bf4784","type":"change","z":"76fd797.485aa88","name":"Disable UN-Field","rules":[{"t":"set","p":"enabled","pt":"msg","to":"false","tot":"bool"},{"t":"set","p":"payload","pt":"msg","to":"","tot":"str"}],"action":"","property":"","from":"","to":"","reg":false,"x":350,"y":560,"wires":[["b881c739.7cf5a8"]]},{"id":"28b485ed.566cea","type":"change","z":"76fd797.485aa88","name":"Enable UN-Field","rules":[{"t":"set","p":"enabled","pt":"msg","to":"true","tot":"bool"}],"action":"","property":"","from":"","to":"","reg":false,"x":340,"y":520,"wires":[["b881c739.7cf5a8"]]},{"id":"bfb6b5b1.ec55b8","type":"switch","z":"76fd797.485aa88","name":"Check UN","property":"payload","propertyType":"msg","rules":[{"t":"regex","v":"^Username1$|^Username2$","vt":"str","case":false},{"t":"else"}],"checkall":"true","repair":false,"outputs":2,"x":680,"y":840,"wires":[["38bf3358.516ecc"],["d049171e.5d7188"]]},{"id":"a43d815a.53e4","type":"debug","z":"76fd797.485aa88","name":"","active":true,"tosidebar":true,"console":false,"tostatus":false,"complete":"true","targetType":"full","statusVal":"","statusType":"auto","x":1350,"y":840,"wires":},{"id":"47e76942.938d28","type":"change","z":"76fd797.485aa88","name":"Empty Payload","rules":[{"t":"set","p":"payload","pt":"msg","to":"","tot":"str"}],"action":"","property":"","from":"","to":"","reg":false,"x":380,"y":220,"wires":[["b881c739.7cf5a8","cca9f730.5b8708","b5f9e672.ed92c8"]]},{"id":"38bf3358.516ecc","type":"q-gate","z":"76fd797.485aa88","name":"q-gate","controlTopic":"control","defaultState":"queueing","openCmd":"open","closeCmd":"close","toggleCmd":"toggle","queueCmd":"queue","defaultCmd":"default","triggerCmd":"trigger","flushCmd":"flush","resetCmd":"reset","peekCmd":"","dropCmd":"","statusCmd":"","maxQueueLength":"1","keepNewest":false,"qToggle":false,"persist":false,"x":1170,"y":840,"wires":[["9441491d.d69aa8","5630fdfd.7e5014","a43d815a.53e4","5ae1f054.737d5","d70f5e66.59e81","660abd33.bf4784","5ac92e48.0f74"]]},{"id":"d049171e.5d7188","type":"change","z":"76fd797.485aa88","name":"reset","rules":[{"t":"set","p":"topic","pt":"msg","to":"control","tot":"str"},{"t":"set","p":"payload","pt":"msg","to":"reset","tot":"str"}],"action":"","property":"","from":"","to":"","reg":false,"x":870,"y":900,"wires":[["38bf3358.516ecc"]]},{"id":"4f38850a.c1f62c","type":"change","z":"76fd797.485aa88","name":"flush","rules":[{"t":"set","p":"topic","pt":"msg","to":"control","tot":"str"},{"t":"set","p":"payload","pt":"msg","to":"flush","tot":"str"}],"action":"","property":"","from":"","to":"","reg":false,"x":990,"y":760,"wires":[["38bf3358.516ecc"]]},{"id":"31967aae.edf866","type":"ui_ui_control","z":"76fd797.485aa88","name":"Show Logout","events":"change","x":1570,"y":960,"wires":[]},{"id":"4cdd0cf6.ac8ed4","type":"change","z":"76fd797.485aa88","name":"reset","rules":[{"t":"set","p":"topic","pt":"msg","to":"control","tot":"str"},{"t":"set","p":"payload","pt":"msg","to":"reset","tot":"str"}],"action":"","property":"","from":"","to":"","reg":false,"x":870,"y":800,"wires":[["fc6b6502.43ccb8"]]},{"id":"fc6b6502.43ccb8","type":"delay","z":"76fd797.485aa88","name":"Delay","pauseType":"delay","timeout":"4","timeoutUnits":"seconds","rate":"1","nbRateUnits":"1","rateUnits":"second","randomFirst":"1","randomLast":"5","randomUnits":"seconds","drop":false,"x":990,"y":800,"wires":[["781db5f1.34d9ac","38bf3358.516ecc"]]},{"id":"e13af06e.0e8c4","type":"change","z":"76fd797.485aa88","name":"set flow.pw","rules":[{"t":"set","p":"pw","pt":"flow","to":"payload","tot":"msg"}],"action":"","property":"","from":"","to":"","reg":false,"x":730,"y":400,"wires":[["4a6bf8c0.0f9668"]]},{"id":"94070e44.5133b","type":"ui_button","z":"76fd797.485aa88","name":"","group":"d8e69abb.fdd8d8","order":3,"width":2,"height":1,"passthru":false,"label":"Login","tooltip":"","color":"","bgcolor":"","icon":"login","payload":"","payloadType":"num","topic":"credentials","x":330,"y":820,"wires":[["884f9558.4c4f98","a6bf1760.047938"]]},{"id":"884f9558.4c4f98","type":"change","z":"76fd797.485aa88","name":"read flow.pw","rules":[{"t":"set","p":"payload","pt":"msg","to":"pw","tot":"flow"}],"action":"","property":"","from":"","to":"","reg":false,"x":510,"y":800,"wires":[["fc54cae8.bd9de8","191bfc34.f18484"]]},{"id":"a6bf1760.047938","type":"change","z":"76fd797.485aa88","name":"read flow.un","rules":[{"t":"set","p":"payload","pt":"msg","to":"un","tot":"flow"}],"action":"","property":"","from":"","to":"","reg":false,"x":510,"y":840,"wires":[["bfb6b5b1.ec55b8","c109ccc5.bd717"]]},{"id":"10694353.70671d","type":"change","z":"76fd797.485aa88","name":"set flow.un","rules":[{"t":"set","p":"un","pt":"flow","to":"payload","tot":"msg"}],"action":"","property":"","from":"","to":"","reg":false,"x":730,"y":520,"wires":[["37c293b3.609e0c"]]},{"id":"51c2491.ce40cb8","type":"debug","z":"76fd797.485aa88","name":"","active":false,"tosidebar":true,"console":false,"tostatus":false,"complete":"true","targetType":"full","statusVal":"","statusType":"auto","x":1550,"y":800,"wires":},{"id":"5ae1f054.737d5","type":"change","z":"76fd797.485aa88","name":"Disable Logout-Btn","rules":[{"t":"set","p":"enabled","pt":"msg","to":"false","tot":"bool"}],"action":"","property":"","from":"","to":"","reg":false,"x":150,"y":840,"wires":[["94070e44.5133b"]]},{"id":"494f9d3.f510564","type":"change","z":"76fd797.485aa88","name":"Enable Logout-Btn","rules":[{"t":"set","p":"enabled","pt":"msg","to":"true","tot":"bool"}],"action":"","property":"","from":"","to":"","reg":false,"x":150,"y":800,"wires":[["94070e44.5133b"]]},{"id":"5ac92e48.0f74","type":"change","z":"76fd797.485aa88","name":"set msg.payload","rules":[{"t":"set","p":"payload","pt":"msg","to":"{"group":{"hide":["Management_Login"],"show":["Management_Logout"],"focus":true}}","tot":"json"}],"action":"","property":"","from":"","to":"","reg":false,"x":1390,"y":960,"wires":[["31967aae.edf866"]]},{"id":"3b6f3942.729716","type":"ui_ui_control","z":"76fd797.485aa88","name":"Show Login","events":"change","x":2070,"y":440,"wires":[]},{"id":"6341fa01.5d4c34","type":"change","z":"76fd797.485aa88","name":"set msg.payload","rules":[{"t":"set","p":"payload","pt":"msg","to":"{"group":{"hide":["Management_Logout"],"show":["Management_Login"],"focus":true}}","tot":"json"}],"action":"","property":"","from":"","to":"","reg":false,"x":1900,"y":440,"wires":[["3b6f3942.729716"]]},{"id":"4a6bf8c0.0f9668","type":"debug","z":"76fd797.485aa88","name":"","active":true,"tosidebar":true,"console":false,"tostatus":false,"complete":"true","targetType":"full","statusVal":"","statusType":"auto","x":890,"y":400,"wires":},{"id":"37c293b3.609e0c","type":"debug","z":"76fd797.485aa88","name":"","active":true,"tosidebar":true,"console":false,"tostatus":false,"complete":"true","targetType":"full","statusVal":"","statusType":"auto","x":890,"y":520,"wires":},{"id":"c109ccc5.bd717","type":"debug","z":"76fd797.485aa88","name":"","active":true,"tosidebar":true,"console":false,"tostatus":false,"complete":"true","targetType":"full","statusVal":"","statusType":"auto","x":670,"y":900,"wires":},{"id":"191bfc34.f18484","type":"debug","z":"76fd797.485aa88","name":"","active":true,"tosidebar":true,"console":false,"tostatus":false,"complete":"true","targetType":"full","statusVal":"","statusType":"auto","x":670,"y":720,"wires":},{"id":"d8e69abb.fdd8d8","type":"ui_group","name":"Login","tab":"1eea47fd.237178","order":1,"disp":true,"width":"6","collapse":false},{"id":"50a85feb.4bbc8","type":"ui_group","name":"Logout","tab":"1eea47fd.237178","order":2,"disp":true,"width":"6","collapse":false},{"id":"1eea47fd.237178","type":"ui_tab","name":"Management","icon":"dashboard","order":1,"disabled":false,"hidden":false}]
