mirror of
https://github.com/hcengineering/platform.git
synced 2024-11-30 02:37:46 +03:00
parent
7d8460626a
commit
7a275dc5b6
@ -163,11 +163,15 @@ function verifyPassword (password: string, hash: Buffer, salt: Buffer): boolean
|
|||||||
return Buffer.compare(hash, hashWithSalt(password, salt)) === 0
|
return Buffer.compare(hash, hashWithSalt(password, salt)) === 0
|
||||||
}
|
}
|
||||||
|
|
||||||
|
function cleanEmail (email: string): string {
|
||||||
|
return email.toLowerCase().trim()
|
||||||
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
* @public
|
* @public
|
||||||
*/
|
*/
|
||||||
export async function getAccount (db: Db, email: string): Promise<Account | null> {
|
export async function getAccount (db: Db, email: string): Promise<Account | null> {
|
||||||
return await db.collection(ACCOUNT_COLLECTION).findOne<Account>({ email })
|
return await db.collection(ACCOUNT_COLLECTION).findOne<Account>({ email: cleanEmail(email) })
|
||||||
}
|
}
|
||||||
|
|
||||||
/**
|
/**
|
||||||
@ -238,7 +242,8 @@ async function getAccountInfoByToken (db: Db, productId: string, token: string):
|
|||||||
* @param workspace -
|
* @param workspace -
|
||||||
* @returns
|
* @returns
|
||||||
*/
|
*/
|
||||||
export async function login (db: Db, productId: string, email: string, password: string): Promise<LoginInfo> {
|
export async function login (db: Db, productId: string, _email: string, password: string): Promise<LoginInfo> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
console.log(`login attempt:${email}`)
|
console.log(`login attempt:${email}`)
|
||||||
const info = await getAccountInfo(db, email, password)
|
const info = await getAccountInfo(db, email, password)
|
||||||
const result = {
|
const result = {
|
||||||
@ -272,7 +277,8 @@ export async function selectWorkspace (
|
|||||||
workspace: string,
|
workspace: string,
|
||||||
allowAdmin: boolean = true
|
allowAdmin: boolean = true
|
||||||
): Promise<WorkspaceLoginInfo> {
|
): Promise<WorkspaceLoginInfo> {
|
||||||
const { email } = decodeToken(token)
|
let { email } = decodeToken(token)
|
||||||
|
email = cleanEmail(email)
|
||||||
const accountInfo = await getAccount(db, email)
|
const accountInfo = await getAccount(db, email)
|
||||||
if (accountInfo === null) {
|
if (accountInfo === null) {
|
||||||
throw new PlatformError(new Status(Severity.ERROR, platform.status.AccountNotFound, { account: email }))
|
throw new PlatformError(new Status(Severity.ERROR, platform.status.AccountNotFound, { account: email }))
|
||||||
@ -350,10 +356,11 @@ export async function useInvite (db: Db, inviteId: ObjectId): Promise<void> {
|
|||||||
export async function join (
|
export async function join (
|
||||||
db: Db,
|
db: Db,
|
||||||
productId: string,
|
productId: string,
|
||||||
email: string,
|
_email: string,
|
||||||
password: string,
|
password: string,
|
||||||
inviteId: ObjectId
|
inviteId: ObjectId
|
||||||
): Promise<WorkspaceLoginInfo> {
|
): Promise<WorkspaceLoginInfo> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const invite = await getInvite(db, inviteId)
|
const invite = await getInvite(db, inviteId)
|
||||||
const workspace = await checkInvite(invite, email)
|
const workspace = await checkInvite(invite, email)
|
||||||
console.log(`join attempt:${email}, ${workspace.name}`)
|
console.log(`join attempt:${email}, ${workspace.name}`)
|
||||||
@ -368,7 +375,8 @@ export async function join (
|
|||||||
/**
|
/**
|
||||||
* @public
|
* @public
|
||||||
*/
|
*/
|
||||||
export async function confirmEmail (db: Db, email: string): Promise<Account> {
|
export async function confirmEmail (db: Db, _email: string): Promise<Account> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const account = await getAccount(db, email)
|
const account = await getAccount(db, email)
|
||||||
console.log(`confirm email:${email}`)
|
console.log(`confirm email:${email}`)
|
||||||
|
|
||||||
@ -389,10 +397,11 @@ export async function confirmEmail (db: Db, email: string): Promise<Account> {
|
|||||||
*/
|
*/
|
||||||
export async function confirm (db: Db, productId: string, token: string): Promise<LoginInfo> {
|
export async function confirm (db: Db, productId: string, token: string): Promise<LoginInfo> {
|
||||||
const decode = decodeToken(token)
|
const decode = decodeToken(token)
|
||||||
const email = decode.extra?.confirm
|
const _email = decode.extra?.confirm
|
||||||
if (email === undefined) {
|
if (_email === undefined) {
|
||||||
throw new PlatformError(new Status(Severity.ERROR, platform.status.AccountNotFound, { account: accountId }))
|
throw new PlatformError(new Status(Severity.ERROR, platform.status.AccountNotFound, { account: accountId }))
|
||||||
}
|
}
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const account = await confirmEmail(db, email)
|
const account = await confirmEmail(db, email)
|
||||||
|
|
||||||
const result = {
|
const result = {
|
||||||
@ -465,12 +474,13 @@ async function sendConfirmation (productId: string, account: Account): Promise<v
|
|||||||
export async function signUpJoin (
|
export async function signUpJoin (
|
||||||
db: Db,
|
db: Db,
|
||||||
productId: string,
|
productId: string,
|
||||||
email: string,
|
_email: string,
|
||||||
password: string,
|
password: string,
|
||||||
first: string,
|
first: string,
|
||||||
last: string,
|
last: string,
|
||||||
inviteId: ObjectId
|
inviteId: ObjectId
|
||||||
): Promise<WorkspaceLoginInfo> {
|
): Promise<WorkspaceLoginInfo> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
console.log(`signup join:${email} ${first} ${last}`)
|
console.log(`signup join:${email} ${first} ${last}`)
|
||||||
const invite = await getInvite(db, inviteId)
|
const invite = await getInvite(db, inviteId)
|
||||||
const workspace = await checkInvite(invite, email)
|
const workspace = await checkInvite(invite, email)
|
||||||
@ -498,12 +508,13 @@ export async function signUpJoin (
|
|||||||
export async function createAcc (
|
export async function createAcc (
|
||||||
db: Db,
|
db: Db,
|
||||||
productId: string,
|
productId: string,
|
||||||
email: string,
|
_email: string,
|
||||||
password: string,
|
password: string,
|
||||||
first: string,
|
first: string,
|
||||||
last: string,
|
last: string,
|
||||||
confirmed: boolean = false
|
confirmed: boolean = false
|
||||||
): Promise<Account> {
|
): Promise<Account> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const salt = randomBytes(32)
|
const salt = randomBytes(32)
|
||||||
const hash = hashWithSalt(password, salt)
|
const hash = hashWithSalt(password, salt)
|
||||||
|
|
||||||
@ -543,11 +554,12 @@ export async function createAcc (
|
|||||||
export async function createAccount (
|
export async function createAccount (
|
||||||
db: Db,
|
db: Db,
|
||||||
productId: string,
|
productId: string,
|
||||||
email: string,
|
_email: string,
|
||||||
password: string,
|
password: string,
|
||||||
first: string,
|
first: string,
|
||||||
last: string
|
last: string
|
||||||
): Promise<LoginInfo> {
|
): Promise<LoginInfo> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const sesURL = getMetadata(accountPlugin.metadata.SES_URL)
|
const sesURL = getMetadata(accountPlugin.metadata.SES_URL)
|
||||||
const account = await createAcc(db, productId, email, password, first, last, sesURL === undefined || sesURL === '')
|
const account = await createAcc(db, productId, email, password, first, last, sesURL === undefined || sesURL === '')
|
||||||
|
|
||||||
@ -779,9 +791,10 @@ export async function getUserWorkspaces (db: Db, productId: string, token: strin
|
|||||||
async function getWorkspaceAndAccount (
|
async function getWorkspaceAndAccount (
|
||||||
db: Db,
|
db: Db,
|
||||||
productId: string,
|
productId: string,
|
||||||
email: string,
|
_email: string,
|
||||||
workspace: string
|
workspace: string
|
||||||
): Promise<{ accountId: ObjectId, workspaceId: ObjectId }> {
|
): Promise<{ accountId: ObjectId, workspaceId: ObjectId }> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const wsPromise = await getWorkspace(db, productId, workspace)
|
const wsPromise = await getWorkspace(db, productId, workspace)
|
||||||
if (wsPromise === null) {
|
if (wsPromise === null) {
|
||||||
throw new PlatformError(new Status(Severity.ERROR, platform.status.WorkspaceNotFound, { workspace }))
|
throw new PlatformError(new Status(Severity.ERROR, platform.status.WorkspaceNotFound, { workspace }))
|
||||||
@ -798,7 +811,8 @@ async function getWorkspaceAndAccount (
|
|||||||
/**
|
/**
|
||||||
* @public
|
* @public
|
||||||
*/
|
*/
|
||||||
export async function setRole (email: string, workspace: string, productId: string, role: AccountRole): Promise<void> {
|
export async function setRole (_email: string, workspace: string, productId: string, role: AccountRole): Promise<void> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const connection = await connect(getTransactor(), getWorkspaceId(workspace, productId), email)
|
const connection = await connect(getTransactor(), getWorkspaceId(workspace, productId), email)
|
||||||
try {
|
try {
|
||||||
const ops = new TxOperations(connection, core.account.System)
|
const ops = new TxOperations(connection, core.account.System)
|
||||||
@ -819,7 +833,8 @@ export async function setRole (email: string, workspace: string, productId: stri
|
|||||||
/**
|
/**
|
||||||
* @public
|
* @public
|
||||||
*/
|
*/
|
||||||
export async function assignWorkspace (db: Db, productId: string, email: string, workspace: string): Promise<void> {
|
export async function assignWorkspace (db: Db, productId: string, _email: string, workspace: string): Promise<void> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const initWS = getMetadata(toolPlugin.metadata.InitWorkspace)
|
const initWS = getMetadata(toolPlugin.metadata.InitWorkspace)
|
||||||
if (initWS !== undefined && initWS === workspace) {
|
if (initWS !== undefined && initWS === workspace) {
|
||||||
throw new PlatformError(new Status(Severity.ERROR, platform.status.Forbidden, {}))
|
throw new PlatformError(new Status(Severity.ERROR, platform.status.Forbidden, {}))
|
||||||
@ -836,7 +851,8 @@ export async function assignWorkspace (db: Db, productId: string, email: string,
|
|||||||
await db.collection(ACCOUNT_COLLECTION).updateOne({ _id: accountId }, { $addToSet: { workspaces: workspaceId } })
|
await db.collection(ACCOUNT_COLLECTION).updateOne({ _id: accountId }, { $addToSet: { workspaces: workspaceId } })
|
||||||
}
|
}
|
||||||
|
|
||||||
async function createEmployee (ops: TxOperations, name: string, email: string): Promise<Ref<Person>> {
|
async function createEmployee (ops: TxOperations, name: string, _email: string): Promise<Ref<Person>> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const gravatarId = buildGravatarId(email)
|
const gravatarId = buildGravatarId(email)
|
||||||
const hasGravatar = await checkHasGravatar(gravatarId)
|
const hasGravatar = await checkHasGravatar(gravatarId)
|
||||||
|
|
||||||
@ -934,7 +950,8 @@ export async function replacePassword (db: Db, productId: string, email: string,
|
|||||||
/**
|
/**
|
||||||
* @public
|
* @public
|
||||||
*/
|
*/
|
||||||
export async function requestPassword (db: Db, productId: string, email: string): Promise<void> {
|
export async function requestPassword (db: Db, productId: string, _email: string): Promise<void> {
|
||||||
|
const email = cleanEmail(_email)
|
||||||
const account = await getAccount(db, email)
|
const account = await getAccount(db, email)
|
||||||
|
|
||||||
if (account === null) {
|
if (account === null) {
|
||||||
|
Loading…
Reference in New Issue
Block a user