Home Explore Help
Sign In
owen
/
MusareNode
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c98cf0c410
Branches Tags
MusareNode
/
backend
/
logic
/
actions
/
users.js

users.js 4.3 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170 
  1. 'use strict';
    2. 

  2. 

  3. const async = require('async');
    4. 

  4. const config = require('config');
    5. 

  5. const request = require('request');
    6. 

  6. const bcrypt = require('bcrypt');
    7. 

  7. 

  8. const db = require('../db');
    9. 

  9. const cache = require('../cache');
    10. 

  10. const utils = require('../utils');
    11. 

  11. 

  12. module.exports = {
    13. 

  13. 

  14. 	login: (session, identifier, password, cb) => {
    15. 

  15. 

  16. 		async.waterfall([
    17. 

  17. 

  18. 			// check if a user with the requested identifier exists
    19. 

  19. 			(next) => db.models.user.findOne({
    20. 

  20. 				$or: [{ 'username': identifier }, { 'email.address': identifier }]
    21. 

  21. 			}, next),
    22. 

  22. 

  23. 			// if the user doesn't exist, respond with a failure
    24. 

  24. 			// otherwise compare the requested password and the actual users password
    25. 

  25. 			(user, next) => {
    26. 

  26. 				if (!user) return next(true, { status: 'failure', message: 'User not found' });
    27. 

  27. 				bcrypt.compare(password, user.services.password.password, (err, match) => {
    28. 

  28. 

  29. 					if (err) return next(err);
    30. 

  30. 

  31. 					// if the passwords match
    32. 

  32. 					if (match) {
    33. 

  33. 

  34. 						// store the session in the cache
    35. 

  35. 						let sessionId = utils.guid();
    36. 

  36. 						cache.hset('sessions', sessionId, cache.schemas.session());
    37. 

  37. 

  38. 						next(null, { status: 'success', message: 'Login successful', user, sessionId: sessionId });
    39. 

  39. 					}
    40. 

  40. 					else {
    41. 

  41. 						next(null, { status: 'failure', message: 'User not found' });
    42. 

  42. 					}
    43. 

  43. 				});
    44. 

  44. 			}
    45. 

  45. 

  46. 		], (err, payload) => {
    47. 

  47. 

  48. 			// log this error somewhere
    49. 

  49. 			if (err && err !== true) {
    50. 

  50. 				console.error(err);
    51. 

  51. 				return cb({ status: 'error', message: 'An error occurred while logging in' });
    52. 

  52. 			}
    53. 

  53. 

  54. 			cb(payload);
    55. 

  55. 		});
    56. 

  56. 

  57. 	},
    58. 

  58. 

  59. 	register: (session, username, email, password, recaptcha, cb) => {
    60. 

  60. 

  61. 		async.waterfall([
    62. 

  62. 

  63. 			// verify the request with google recaptcha
    64. 

  64. 			(next) => {
    65. 

  65. 				request({
    66. 

  66. 					url: 'https://www.google.com/recaptcha/api/siteverify',
    67. 

  67. 					method: 'POST',
    68. 

  68. 					form: {
    69. 

  69. 						//'secret': config.get("apis.recaptcha.secret"),
    70. 

  70. 						'response': recaptcha
    71. 

  71. 					}
    72. 

  72. 				}, next);
    73. 

  73. 			},
    74. 

  74. 

  75. 			// check if the response from Google recaptcha is successful
    76. 

  76. 			// if it is, we check if a user with the requested username already exists
    77. 

  77. 			(response, body, next) => {
    78. 

  78. 				let json = JSON.parse(body);
    79. 

  79. 				console.log(json);
    80. 

  80. 				//if (json.success !== true) return next('Response from recaptcha was not successful');
    81. 

  81. 				db.models.user.findOne({ username }, next);
    82. 

  82. 			},
    83. 

  83. 

  84. 			// if the user already exists, respond with that
    85. 

  85. 			// otherwise check if a user with the requested email already exists
    86. 

  86. 			(user, next) => {
    87. 

  87. 				if (user) return next(true, { status: 'failure', message: 'A user with that username already exists' });
    88. 

  88. 				db.models.user.findOne({ 'email.address': email }, next);
    89. 

  89. 			},
    90. 

  90. 

  91. 			// if the user already exists, respond with that
    92. 

  92. 			// otherwise, generate a salt to use with hashing the new users password
    93. 

  93. 			(user, next) => {
    94. 

  94. 				if (user) return next(true, { status: 'failure', message: 'A user with that email already exists' });
    95. 

  95. 				bcrypt.genSalt(10, next);
    96. 

  96. 			},
    97. 

  97. 

  98. 			// hash the password
    99. 

  99. 			(salt, next) => {
    100. 

  100. 				bcrypt.hash(password, salt, next)
    101. 

  101. 			},
    102. 

  102. 

  103. 			// save the new user to the database
    104. 

  104. 			(hash, next) => {
    105. 

  105. 				db.models.user.create({
    106. 

  106. 					username,
    107. 

  107. 					email: {
    108. 

  108. 						address: email,
    109. 

  109. 						verificationToken: utils.generateRandomString(64)
    110. 

  110. 					},
    111. 

  111. 					services: {
    112. 

  112. 						password: {
    113. 

  113. 							password: hash
    114. 

  114. 						}
    115. 

  115. 					}
    116. 

  116. 				}, next);
    117. 

  117. 			},
    118. 

  118. 

  119. 			// respond with the new user
    120. 

  120. 			(newUser, next) => {
    121. 

  121. 				next(null, { status: 'success', user: newUser })
    122. 

  122. 			}
    123. 

  123. 

  124. 		], (err, payload) => {
    125. 

  125. 			// log this error somewhere
    126. 

  126. 			if (err && err !== true) {
    127. 

  127. 				console.error(err);
    128. 

  128. 				return cb({ status: 'error', message: 'An error occurred while registering for an account' });
    129. 

  129. 			}
    130. 

  130. 			// respond with the payload that was passed to us earlier
    131. 

  131. 			cb(payload);
    132. 

  132. 		});
    133. 

  133. 

  134. 	},
    135. 

  135. 

  136. 	logout: (session, cb) => {
    137. 

  137. 

  138. 		if (!session) return cb({ status: 'failure', message: `You're not currently logged in` });
    139. 

  139. 

  140. 		//TODO Remove session
    141. 

  141. 		session = null;
    142. 

  142. 

  143. 		cb({ status: 'success', message: `You've been successfully logged out` });
    144. 

  144. 	},
    145. 

  145. 

  146. 	findByUsername: (session, username, cb) => {
    147. 

  147. 		db.models.user.find({ username }, (err, account) => {
    148. 

  148. 			if (err) throw err;
    149. 

  149. 			else if (account.length == 0) {
    150. 

  150. 				return cb({
    151. 

  151. 					status: 'error',
    152. 

  152. 					message: 'Username cannot be found'
    153. 

  153. 				});
    154. 

  154. 			} else {
    155. 

  155. 				account = account[0];
    156. 

  156. 				return cb({
    157. 

  157. 					status: 'success',
    158. 

  158. 					data: {
    159. 

  159. 						username: account.username,
    160. 

  160. 						email: account.email.address,
    161. 

  161. 						password: '',
    162. 

  162. 						createdAt: account.createdAt,
    163. 

  163. 						statistics: account.statistics
    164. 

  164. 					}
    165. 

  165. 				});
    166. 

  166. 			}
    167. 

  167. 		});
    168. 

  168. 	}
    169. 

  169. 

  170. };
    171.