ridibooks / simple-notifier

  server.ext('onPostAuth', (request, reply) => {

    const isApi = request.path.includes(options.apiPrefix);

    const isExcludedUrl = options.excludeUrlPatterns.some(pattern => pattern.test(request.path));

    const isTemporaryUser = request.auth && request.auth.credentials && request.auth.credentials.isTemporary;

    if (!isApi && !isExcludedUrl && isTemporaryUser) {

      return reply.redirect(`/${URL_CHANGE_PASSWORD}?redirect=${request.path || '/'}`);

    }

    return reply.continue();

  });