retropilot-server/controllers/users.js

import crypto from 'crypto';
import log4js from 'log4js';
import orm from '../models/index.model';

const logger = log4js.getLogger('default');
export async function getAccountFromId(id) {
  return orm.models.accounts.findByPk(id);
}

export async function getAccountFromEmail(email) {
  if (!email) return null;

  const account = orm.models.accounts.findOne({ where: { email } });

  if (account.dataValues) return account.dataValues;
  return null;
}

export async function createBaseAccount() {
  await orm.models.accounts.create({
    id: 0,
    email: 'dummy@retropilot.org',
    password: '123123',
    created: Date.now(),
    last_ping: Date.now(),
    email_verify_token: 'notokenplease',
  });

  return { success: true, status: 200 };
}

export async function _dirtyCreateAccount(email, password, created, admin) {
  logger.log('creating acount: ', email, password, created, admin);
  return orm.models.accounts.create({
    email, password, created, admin,
  });
}

export async function createAccount(email, password) {
  if (!email || !password) {
    return { success: false, status: 400, data: { missingData: true } };
  }
  if (!process.env.ALLOW_REGISTRATION) {
    return { success: false, status: 403, data: { registerEnabled: false } };
  }

  const emailToken = crypto.createHmac('sha256', process.env.APP_SALT).update(email.trim()).digest('hex');
  password = crypto.createHash('sha256').update(password + process.env.APP_SALT).digest('hex');

  const account = await orm.models.accounts.findOne({ where: { email } });
  if (account != null && account.dataValues != null) {
    return { success: true, status: 409, data: { alreadyRegistered: true } };
  }

  await orm.models.accounts.create({
    email,
    password,
    created: Date.now(),
    last_ping: Date.now(),
    email_verify_token: emailToken,
  });

  const didAccountRegister = await orm.models.accounts.findOne({ where: { email } });

  if (didAccountRegister != null && didAccountRegister.dataValues != null) {
    return { success: true, status: 200 };
  }

  // TODO: better error
  return { success: false, status: 500, data: {} };
}

export async function verifyEmailToken(token) {
  if (!token) {
    return { success: false, status: 400, data: { missingToken: true } };
  }

  const account = await orm.models.accounts.findOne(
    { where: { email_verify_token: token } },
  );

  if (account === null) {
    return { success: false, status: 404, data: { badToken: true } };
  }
  if (account.verified === 1) {
    return { success: true, status: 409, data: { alreadyVerified: true } };
  }

  await orm.models.accounts.update(
    { verified: true },
    { where: { id: account.id } },
  );

  return { success: true, status: 200, data: { successfullyVerified: true } };
}

export async function getAllUsers() {
  return orm.models.accounts.findAll({ attributes: ['id', 'last_ping', 'created', 'admin', 'banned'] });
}

export default {
  createAccount,
  createBaseAccount,
  verifyEmailToken,
  getAccountFromId,
  getAllUsers,
  getAccountFromEmail,
  _dirtyCreateAccount,
};
Import convert 2022-01-12 08:02:30 -07:00			`import crypto from 'crypto';`
various 2022-01-21 16:36:48 -07:00			`import log4js from 'log4js';`
Import convert 2022-01-12 08:02:30 -07:00			`import orm from '../models/index.model';`
Added proof of concept for Athena 2021-10-25 15:56:40 -06:00
various 2022-01-21 16:36:48 -07:00			`const logger = log4js.getLogger('default');`
			`export async function getAccountFromId(id) {`
lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`return orm.models.accounts.findByPk(id);`
old changes + base for admin actions 2021-08-14 16:11:32 -06:00			`}`

various 2022-01-21 16:36:48 -07:00			`export async function getAccountFromEmail(email) {`
Removed sql from useradmin.js 2022-01-09 19:49:24 -07:00			`if (!email) return null;`

			`const account = orm.models.accounts.findOne({ where: { email } });`

			`if (account.dataValues) return account.dataValues;`
			`return null;`
			`}`

UAT account 0 creation 2022-03-02 20:37:16 -07:00			`export async function createBaseAccount() {`
			`await orm.models.accounts.create({`
			`id: 0,`
			`email: 'dummy@retropilot.org',`
			`password: '123123',`
			`created: Date.now(),`
			`last_ping: Date.now(),`
			`email_verify_token: 'notokenplease',`
			`});`

			`return { success: true, status: 200 };`
			`}`

Signup fixes 2022-03-02 19:18:07 -07:00			`export async function _dirtyCreateAccount(email, password, created, admin) {`
logger 2022-03-02 19:29:13 -07:00			`logger.log('creating acount: ', email, password, created, admin);`
Removed sql from useradmin.js 2022-01-09 19:49:24 -07:00			`return orm.models.accounts.create({`
Signup fixes 2022-03-02 19:18:07 -07:00			`email, password, created, admin,`
Removed sql from useradmin.js 2022-01-09 19:49:24 -07:00			`});`
			`}`

various 2022-01-21 16:36:48 -07:00			`export async function createAccount(email, password) {`
lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`if (!email \|\| !password) {`
			`return { success: false, status: 400, data: { missingData: true } };`
			`}`
Working app locally using docker, removes config file for .env, fixes worker to only use Sequelize and fixes sequelize model type definitions 2022-02-28 22:04:36 -07:00			`if (!process.env.ALLOW_REGISTRATION) {`
Code cleanup 2022-01-07 18:35:55 -07:00			`return { success: false, status: 403, data: { registerEnabled: false } };`
			`}`
lint: tidy up controllers 2022-01-08 17:35:40 -07:00
Working app locally using docker, removes config file for .env, fixes worker to only use Sequelize and fixes sequelize model type definitions 2022-02-28 22:04:36 -07:00			`const emailToken = crypto.createHmac('sha256', process.env.APP_SALT).update(email.trim()).digest('hex');`
			`password = crypto.createHash('sha256').update(password + process.env.APP_SALT).digest('hex');`
Code cleanup 2022-01-07 18:35:55 -07:00
lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`const account = await orm.models.accounts.findOne({ where: { email } });`
Code cleanup 2022-01-07 18:35:55 -07:00			`if (account != null && account.dataValues != null) {`
			`return { success: true, status: 409, data: { alreadyRegistered: true } };`
			`}`

lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`await orm.models.accounts.create({`
Code cleanup 2022-01-07 18:35:55 -07:00			`email,`
			`password,`
			`created: Date.now(),`
			`last_ping: Date.now(),`
apply eslint fixes 2022-01-08 13:43:57 -07:00			`email_verify_token: emailToken,`
Code cleanup 2022-01-07 18:35:55 -07:00			`});`

lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`const didAccountRegister = await orm.models.accounts.findOne({ where: { email } });`
Code cleanup 2022-01-07 18:35:55 -07:00
			`if (didAccountRegister != null && didAccountRegister.dataValues != null) {`
			`return { success: true, status: 200 };`
			`}`
lint: tidy up controllers 2022-01-08 17:35:40 -07:00
			`// TODO: better error`
			`return { success: false, status: 500, data: {} };`
API to register users Amended table: Accounts * verified - int - default: 0 * email_verify_token - text 2021-05-23 12:36:16 -06:00			`}`

various 2022-01-21 16:36:48 -07:00			`export async function verifyEmailToken(token) {`
lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`if (!token) {`
			`return { success: false, status: 400, data: { missingToken: true } };`
			`}`

			`const account = await orm.models.accounts.findOne(`
apply eslint fixes 2022-01-08 13:43:57 -07:00			`{ where: { email_verify_token: token } },`
Code cleanup 2022-01-07 18:35:55 -07:00			`);`

lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`if (account === null) {`
			`return { success: false, status: 404, data: { badToken: true } };`
			`}`
Code cleanup 2022-01-07 18:35:55 -07:00			`if (account.verified === 1) {`
tidy up more stuff... 2022-01-08 19:22:44 -07:00			`return { success: true, status: 409, data: { alreadyVerified: true } };`
Code cleanup 2022-01-07 18:35:55 -07:00			`}`

lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`await orm.models.accounts.update(`
tidy up more stuff... 2022-01-08 19:22:44 -07:00			`{ verified: true },`
			`{ where: { id: account.id } },`
Code cleanup 2022-01-07 18:35:55 -07:00			`);`
Implemented Sequelize ORM, moved over users.js to new ORM 2021-10-02 16:08:56 -06:00
Code cleanup 2022-01-07 18:35:55 -07:00			`return { success: true, status: 200, data: { successfullyVerified: true } };`
API to register users Amended table: Accounts * verified - int - default: 0 * email_verify_token - text 2021-05-23 12:36:16 -06:00			`}`

various 2022-01-21 16:36:48 -07:00			`export async function getAllUsers() {`
lint: tidy up controllers 2022-01-08 17:35:40 -07:00			`return orm.models.accounts.findAll({ attributes: ['id', 'last_ping', 'created', 'admin', 'banned'] });`
TODO: Fix admin api auth catching any undefined routes Removed pointlessly stateful controllers, admin api fleshed out 2021-10-11 12:37:58 -06:00			`}`

Import convert 2022-01-12 08:02:30 -07:00			`export default {`
Code cleanup 2022-01-07 18:35:55 -07:00			`createAccount,`
UAT account 0 creation 2022-03-02 20:37:16 -07:00			`createBaseAccount,`
Code cleanup 2022-01-07 18:35:55 -07:00			`verifyEmailToken,`
			`getAccountFromId,`
apply eslint fixes 2022-01-08 13:43:57 -07:00			`getAllUsers,`
Removed sql from useradmin.js 2022-01-09 19:49:24 -07:00			`getAccountFromEmail,`
			`_dirtyCreateAccount,`
Code cleanup 2022-01-07 18:35:55 -07:00			`};`