@flink-app/generic-auth-plugin 1.0.0 → 2.0.0-alpha.100
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/.flink/generatedAgents.ts +5 -0
- package/.flink/generatedHandlers.ts +22 -22
- package/.flink/generatedJobs.ts +1 -1
- package/.flink/generatedRepos.ts +1 -1
- package/.flink/generatedServices.ts +5 -0
- package/.flink/generatedTools.ts +5 -0
- package/.flink/start.ts +4 -1
- package/CHANGELOG.md +586 -0
- package/dist/.flink/generatedAgents.d.ts +1 -0
- package/dist/.flink/generatedAgents.js +14 -0
- package/dist/.flink/generatedAgents.js.map +1 -0
- package/dist/.flink/generatedHandlers.js +13 -6
- package/dist/.flink/generatedHandlers.js.map +1 -0
- package/dist/.flink/generatedJobs.js +13 -6
- package/dist/.flink/generatedJobs.js.map +1 -0
- package/dist/.flink/generatedRepos.js +13 -6
- package/dist/.flink/generatedRepos.js.map +1 -0
- package/dist/.flink/generatedServices.js +14 -0
- package/dist/.flink/generatedServices.js.map +1 -0
- package/dist/.flink/generatedTools.d.ts +1 -0
- package/dist/.flink/generatedTools.js +14 -0
- package/dist/.flink/generatedTools.js.map +1 -0
- package/dist/.flink/schema-manifest.json +588 -0
- package/dist/.flink/schemas/schemas.js +1 -1
- package/dist/.flink/start.d.ts +2 -0
- package/dist/.flink/start.js +15 -3
- package/dist/.flink/start.js.map +1 -0
- package/dist/.tsbuildinfo +1 -0
- package/dist/src/coreFunctions.js +356 -412
- package/dist/src/coreFunctions.js.map +1 -0
- package/dist/src/genericAuthContext.js +3 -1
- package/dist/src/genericAuthContext.js.map +1 -0
- package/dist/src/genericAuthPluginOptions.js +3 -1
- package/dist/src/genericAuthPluginOptions.js.map +1 -0
- package/dist/src/handlers/Management/DeleteUserByUserid.d.ts +1 -1
- package/dist/src/handlers/Management/DeleteUserByUserid.js +21 -60
- package/dist/src/handlers/Management/DeleteUserByUserid.js.map +1 -0
- package/dist/src/handlers/Management/GetSchema.d.ts +1 -1
- package/dist/src/handlers/Management/GetSchema.js +16 -50
- package/dist/src/handlers/Management/GetSchema.js.map +1 -0
- package/dist/src/handlers/Management/GetUser.d.ts +1 -1
- package/dist/src/handlers/Management/GetUser.js +25 -59
- package/dist/src/handlers/Management/GetUser.js.map +1 -0
- package/dist/src/handlers/Management/GetUserByUserid.d.ts +1 -1
- package/dist/src/handlers/Management/GetUserByUserid.js +60 -71
- package/dist/src/handlers/Management/GetUserByUserid.js.map +1 -0
- package/dist/src/handlers/Management/GetUserViewByUserid.d.ts +1 -1
- package/dist/src/handlers/Management/GetUserViewByUserid.js +35 -74
- package/dist/src/handlers/Management/GetUserViewByUserid.js.map +1 -0
- package/dist/src/handlers/Management/PutUserPasswordByUserid.d.ts +1 -1
- package/dist/src/handlers/Management/PutUserPasswordByUserid.js +37 -85
- package/dist/src/handlers/Management/PutUserPasswordByUserid.js.map +1 -0
- package/dist/src/handlers/Management/PutUserProfileByUserid.d.ts +1 -1
- package/dist/src/handlers/Management/PutUserProfileByUserid.js +27 -70
- package/dist/src/handlers/Management/PutUserProfileByUserid.js.map +1 -0
- package/dist/src/handlers/Management/PutUserProfileByUseridAppend.d.ts +1 -1
- package/dist/src/handlers/Management/PutUserProfileByUseridAppend.js +53 -76
- package/dist/src/handlers/Management/PutUserProfileByUseridAppend.js.map +1 -0
- package/dist/src/handlers/Management/PutUserRolesByUserid.d.ts +1 -1
- package/dist/src/handlers/Management/PutUserRolesByUserid.js +24 -63
- package/dist/src/handlers/Management/PutUserRolesByUserid.js.map +1 -0
- package/dist/src/handlers/Management/PutUserUsernameByUserid.d.ts +1 -1
- package/dist/src/handlers/Management/PutUserUsernameByUserid.js +31 -72
- package/dist/src/handlers/Management/PutUserUsernameByUserid.js.map +1 -0
- package/dist/src/handlers/UserCreate.d.ts +1 -1
- package/dist/src/handlers/UserCreate.js +44 -84
- package/dist/src/handlers/UserCreate.js.map +1 -0
- package/dist/src/handlers/UserLogin.d.ts +1 -1
- package/dist/src/handlers/UserLogin.js +45 -88
- package/dist/src/handlers/UserLogin.js.map +1 -0
- package/dist/src/handlers/UserLoginByToken.d.ts +1 -1
- package/dist/src/handlers/UserLoginByToken.js +24 -63
- package/dist/src/handlers/UserLoginByToken.js.map +1 -0
- package/dist/src/handlers/UserPasswordPut.d.ts +1 -1
- package/dist/src/handlers/UserPasswordPut.js +24 -60
- package/dist/src/handlers/UserPasswordPut.js.map +1 -0
- package/dist/src/handlers/UserPasswordResetComplete.d.ts +1 -1
- package/dist/src/handlers/UserPasswordResetComplete.js +30 -66
- package/dist/src/handlers/UserPasswordResetComplete.js.map +1 -0
- package/dist/src/handlers/UserPasswordResetForm.d.ts +1 -1
- package/dist/src/handlers/UserPasswordResetForm.js +155 -110
- package/dist/src/handlers/UserPasswordResetForm.js.map +1 -0
- package/dist/src/handlers/UserPasswordResetStart.d.ts +1 -1
- package/dist/src/handlers/UserPasswordResetStart.js +66 -95
- package/dist/src/handlers/UserPasswordResetStart.js.map +1 -0
- package/dist/src/handlers/UserProfileGet.d.ts +1 -1
- package/dist/src/handlers/UserProfileGet.js +21 -60
- package/dist/src/handlers/UserProfileGet.js.map +1 -0
- package/dist/src/handlers/UserProfilePut.d.ts +1 -1
- package/dist/src/handlers/UserProfilePut.js +55 -81
- package/dist/src/handlers/UserProfilePut.js.map +1 -0
- package/dist/src/handlers/UserPushRegisterToken.d.ts +1 -1
- package/dist/src/handlers/UserPushRegisterToken.js +119 -118
- package/dist/src/handlers/UserPushRegisterToken.js.map +1 -0
- package/dist/src/handlers/UserPushRemoveToken.d.ts +1 -1
- package/dist/src/handlers/UserPushRemoveToken.js +26 -63
- package/dist/src/handlers/UserPushRemoveToken.js.map +1 -0
- package/dist/src/handlers/UserToken.d.ts +1 -1
- package/dist/src/handlers/UserToken.js +29 -63
- package/dist/src/handlers/UserToken.js.map +1 -0
- package/dist/src/index.js +133 -50
- package/dist/src/index.js.map +1 -0
- package/dist/src/init.js +160 -101
- package/dist/src/init.js.map +1 -0
- package/dist/src/management.js +109 -86
- package/dist/src/management.js.map +1 -0
- package/dist/src/schemas/Management/DeleteUserByUseridReq.js +3 -1
- package/dist/src/schemas/Management/DeleteUserByUseridReq.js.map +1 -0
- package/dist/src/schemas/Management/DeleteUserByUseridRes.js +3 -1
- package/dist/src/schemas/Management/DeleteUserByUseridRes.js.map +1 -0
- package/dist/src/schemas/Management/GetUserByUseridReq.js +3 -1
- package/dist/src/schemas/Management/GetUserByUseridReq.js.map +1 -0
- package/dist/src/schemas/Management/GetUserByUseridRes.js +3 -1
- package/dist/src/schemas/Management/GetUserByUseridRes.js.map +1 -0
- package/dist/src/schemas/Management/GetUserReq.js +3 -1
- package/dist/src/schemas/Management/GetUserReq.js.map +1 -0
- package/dist/src/schemas/Management/GetUserRes.js +3 -1
- package/dist/src/schemas/Management/GetUserRes.js.map +1 -0
- package/dist/src/schemas/Management/GetUserViewByUseridReq.js +3 -1
- package/dist/src/schemas/Management/GetUserViewByUseridReq.js.map +1 -0
- package/dist/src/schemas/Management/GetUserViewByUseridRes.js +3 -1
- package/dist/src/schemas/Management/GetUserViewByUseridRes.js.map +1 -0
- package/dist/src/schemas/Management/PutUserPasswordByUseridReq.js +3 -1
- package/dist/src/schemas/Management/PutUserPasswordByUseridReq.js.map +1 -0
- package/dist/src/schemas/Management/PutUserPasswordByUseridRes.js +3 -1
- package/dist/src/schemas/Management/PutUserPasswordByUseridRes.js.map +1 -0
- package/dist/src/schemas/Management/PutUserProfileByUseridReq.js +3 -1
- package/dist/src/schemas/Management/PutUserProfileByUseridReq.js.map +1 -0
- package/dist/src/schemas/Management/PutUserProfileByUseridRes.js +3 -1
- package/dist/src/schemas/Management/PutUserProfileByUseridRes.js.map +1 -0
- package/dist/src/schemas/Management/PutUserRolesByUseridReq.js +3 -1
- package/dist/src/schemas/Management/PutUserRolesByUseridReq.js.map +1 -0
- package/dist/src/schemas/Management/PutUserRolesByUseridRes.js +3 -1
- package/dist/src/schemas/Management/PutUserRolesByUseridRes.js.map +1 -0
- package/dist/src/schemas/Management/PutUserUsernameByUseridReq.js +3 -1
- package/dist/src/schemas/Management/PutUserUsernameByUseridReq.js.map +1 -0
- package/dist/src/schemas/Management/PutUserUsernameByUseridRes.js +3 -1
- package/dist/src/schemas/Management/PutUserUsernameByUseridRes.js.map +1 -0
- package/dist/src/schemas/PushNotificationToken.js +3 -1
- package/dist/src/schemas/PushNotificationToken.js.map +1 -0
- package/dist/src/schemas/PushNotificationTokenRes.js +3 -1
- package/dist/src/schemas/PushNotificationTokenRes.js.map +1 -0
- package/dist/src/schemas/User.js +3 -1
- package/dist/src/schemas/User.js.map +1 -0
- package/dist/src/schemas/UserCreateReq.js +3 -1
- package/dist/src/schemas/UserCreateReq.js.map +1 -0
- package/dist/src/schemas/UserCreateRes.js +3 -1
- package/dist/src/schemas/UserCreateRes.js.map +1 -0
- package/dist/src/schemas/UserLoginByTokenReq.js +3 -1
- package/dist/src/schemas/UserLoginByTokenReq.js.map +1 -0
- package/dist/src/schemas/UserLoginReq.js +3 -1
- package/dist/src/schemas/UserLoginReq.js.map +1 -0
- package/dist/src/schemas/UserLoginRes.js +3 -1
- package/dist/src/schemas/UserLoginRes.js.map +1 -0
- package/dist/src/schemas/UserPasswordChangeReq.js +3 -1
- package/dist/src/schemas/UserPasswordChangeReq.js.map +1 -0
- package/dist/src/schemas/UserPasswordChangeRes.js +3 -1
- package/dist/src/schemas/UserPasswordChangeRes.js.map +1 -0
- package/dist/src/schemas/UserPasswordResetCompleteReq.js +3 -1
- package/dist/src/schemas/UserPasswordResetCompleteReq.js.map +1 -0
- package/dist/src/schemas/UserPasswordResetCompleteRes.js +3 -1
- package/dist/src/schemas/UserPasswordResetCompleteRes.js.map +1 -0
- package/dist/src/schemas/UserPasswordResetSettings.js +3 -1
- package/dist/src/schemas/UserPasswordResetSettings.js.map +1 -0
- package/dist/src/schemas/UserPasswordResetStartReq.js +3 -1
- package/dist/src/schemas/UserPasswordResetStartReq.js.map +1 -0
- package/dist/src/schemas/UserPasswordResetStartRes.js +3 -1
- package/dist/src/schemas/UserPasswordResetStartRes.js.map +1 -0
- package/dist/src/schemas/UserPasswordResetStartResPublic.js +3 -1
- package/dist/src/schemas/UserPasswordResetStartResPublic.js.map +1 -0
- package/dist/src/schemas/UserProfile.js +3 -1
- package/dist/src/schemas/UserProfile.js.map +1 -0
- package/dist/src/schemas/UserTokenRes.js +3 -1
- package/dist/src/schemas/UserTokenRes.js.map +1 -0
- package/package.json +9 -6
- package/src/coreFunctions.ts +3 -3
- package/src/handlers/Management/DeleteUserByUserid.ts +10 -14
- package/src/handlers/Management/GetSchema.ts +6 -12
- package/src/handlers/Management/GetUser.ts +11 -15
- package/src/handlers/Management/GetUserByUserid.ts +13 -23
- package/src/handlers/Management/PutUserPasswordByUserid.ts +39 -45
- package/src/handlers/Management/PutUserProfileByUserid.ts +21 -27
- package/src/handlers/Management/PutUserProfileByUseridAppend.ts +22 -28
- package/src/handlers/Management/PutUserRolesByUserid.ts +17 -23
- package/src/handlers/Management/PutUserUsernameByUserid.ts +24 -31
- package/src/handlers/UserLoginByToken.ts +20 -27
- package/src/handlers/UserPasswordPut.ts +17 -24
- package/src/handlers/UserPasswordResetComplete.ts +31 -40
- package/src/handlers/UserPasswordResetForm.ts +25 -29
- package/src/handlers/UserPasswordResetStart.ts +13 -5
- package/src/handlers/UserProfileGet.ts +11 -14
- package/src/handlers/UserProfilePut.ts +1 -1
- package/src/handlers/UserPushRegisterToken.ts +2 -2
- package/src/handlers/UserPushRemoveToken.ts +12 -18
- package/src/handlers/UserToken.ts +13 -24
- package/src/init.ts +23 -1
- package/tsconfig.json +1 -1
- package/.flink/schemas/schemas.ts +0 -1
|
@@ -1,54 +1,44 @@
|
|
|
1
1
|
"use strict";
|
|
2
|
-
|
|
3
|
-
|
|
4
|
-
|
|
5
|
-
|
|
6
|
-
|
|
7
|
-
|
|
8
|
-
|
|
2
|
+
Object.defineProperty(exports, "__esModule", {
|
|
3
|
+
value: true
|
|
4
|
+
});
|
|
5
|
+
function _export(target, all) {
|
|
6
|
+
for(var name in all)Object.defineProperty(target, name, {
|
|
7
|
+
enumerable: true,
|
|
8
|
+
get: Object.getOwnPropertyDescriptor(all, name).get
|
|
9
9
|
});
|
|
10
|
-
}
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
|
|
32
|
-
|
|
33
|
-
|
|
34
|
-
|
|
35
|
-
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
};
|
|
41
|
-
|
|
42
|
-
exports.getJtwTokenPlugin = getJtwTokenPlugin;
|
|
43
|
-
exports.createUser = createUser;
|
|
44
|
-
exports.loginByToken = loginByToken;
|
|
45
|
-
exports.loginUser = loginUser;
|
|
46
|
-
exports.changePassword = changePassword;
|
|
47
|
-
exports.passwordResetStart = passwordResetStart;
|
|
48
|
-
exports.passwordResetComplete = passwordResetComplete;
|
|
49
|
-
var flink_1 = require("@flink-app/flink");
|
|
50
|
-
var jwt_auth_plugin_1 = require("@flink-app/jwt-auth-plugin");
|
|
51
|
-
var jsonwebtoken_1 = __importDefault(require("jsonwebtoken"));
|
|
10
|
+
}
|
|
11
|
+
_export(exports, {
|
|
12
|
+
get changePassword () {
|
|
13
|
+
return changePassword;
|
|
14
|
+
},
|
|
15
|
+
get createUser () {
|
|
16
|
+
return createUser;
|
|
17
|
+
},
|
|
18
|
+
get getJtwTokenPlugin () {
|
|
19
|
+
return getJtwTokenPlugin;
|
|
20
|
+
},
|
|
21
|
+
get loginByToken () {
|
|
22
|
+
return loginByToken;
|
|
23
|
+
},
|
|
24
|
+
get loginUser () {
|
|
25
|
+
return loginUser;
|
|
26
|
+
},
|
|
27
|
+
get passwordResetComplete () {
|
|
28
|
+
return passwordResetComplete;
|
|
29
|
+
},
|
|
30
|
+
get passwordResetStart () {
|
|
31
|
+
return passwordResetStart;
|
|
32
|
+
}
|
|
33
|
+
});
|
|
34
|
+
const _flink = require("@flink-app/flink");
|
|
35
|
+
const _jwtauthplugin = require("@flink-app/jwt-auth-plugin");
|
|
36
|
+
const _jsonwebtoken = /*#__PURE__*/ _interop_require_default(require("jsonwebtoken"));
|
|
37
|
+
function _interop_require_default(obj) {
|
|
38
|
+
return obj && obj.__esModule ? obj : {
|
|
39
|
+
default: obj
|
|
40
|
+
};
|
|
41
|
+
}
|
|
52
42
|
function getJtwTokenPlugin(secret, rolePermissions, passwordPolicy, tokenTTL) {
|
|
53
43
|
if (passwordPolicy == undefined) {
|
|
54
44
|
passwordPolicy = /.{1,}$/;
|
|
@@ -59,383 +49,337 @@ function getJtwTokenPlugin(secret, rolePermissions, passwordPolicy, tokenTTL) {
|
|
|
59
49
|
if (rolePermissions["user"] == null) {
|
|
60
50
|
rolePermissions["user"] = [];
|
|
61
51
|
}
|
|
62
|
-
if (!rolePermissions["user"].includes("authenticated"))
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
|
|
66
|
-
|
|
67
|
-
return new Promise(function (res) {
|
|
52
|
+
if (!rolePermissions["user"].includes("authenticated")) rolePermissions["user"].push("authenticated");
|
|
53
|
+
return (0, _jwtauthplugin.jwtAuthPlugin)({
|
|
54
|
+
secret,
|
|
55
|
+
getUser: (tokenData)=>{
|
|
56
|
+
return new Promise((res)=>{
|
|
68
57
|
res({
|
|
69
58
|
username: tokenData.username,
|
|
70
|
-
_id: tokenData._id
|
|
59
|
+
_id: tokenData._id
|
|
71
60
|
});
|
|
72
61
|
});
|
|
73
62
|
},
|
|
74
|
-
passwordPolicy
|
|
75
|
-
rolePermissions
|
|
76
|
-
tokenTTL
|
|
63
|
+
passwordPolicy,
|
|
64
|
+
rolePermissions,
|
|
65
|
+
tokenTTL
|
|
77
66
|
});
|
|
78
67
|
}
|
|
79
|
-
function createUser(repo, auth, username, password, authentificationMethod, roles, profile, createPasswordHashAndSaltMethod, onUserCreated, personalNumber) {
|
|
80
|
-
|
|
81
|
-
|
|
82
|
-
|
|
83
|
-
switch (_a.label) {
|
|
84
|
-
case 0:
|
|
85
|
-
if (!roles.includes("user"))
|
|
86
|
-
roles.push("user");
|
|
87
|
-
return [4 /*yield*/, repo.getOne({ username: username.toLowerCase() })];
|
|
88
|
-
case 1:
|
|
89
|
-
existingUser = _a.sent();
|
|
90
|
-
if (existingUser != null) {
|
|
91
|
-
return [2 /*return*/, {
|
|
92
|
-
status: "userExists",
|
|
93
|
-
}];
|
|
94
|
-
}
|
|
95
|
-
userData = {
|
|
96
|
-
username: username.toLowerCase(),
|
|
97
|
-
roles: roles,
|
|
98
|
-
profile: profile,
|
|
99
|
-
authentificationMethod: authentificationMethod,
|
|
100
|
-
pushNotificationTokens: [],
|
|
101
|
-
};
|
|
102
|
-
if (personalNumber) {
|
|
103
|
-
userData.personalNumber = personalNumber;
|
|
104
|
-
}
|
|
105
|
-
if (authentificationMethod == "bankid") {
|
|
106
|
-
if (!personalNumber) {
|
|
107
|
-
flink_1.log.warn("BankID login requested but no personal number found for user");
|
|
108
|
-
return [2 /*return*/, { status: "error" }];
|
|
109
|
-
}
|
|
110
|
-
}
|
|
111
|
-
if (!(authentificationMethod == "password")) return [3 /*break*/, 6];
|
|
112
|
-
passwordAndSalt = null;
|
|
113
|
-
if (!(createPasswordHashAndSaltMethod != null)) return [3 /*break*/, 3];
|
|
114
|
-
return [4 /*yield*/, createPasswordHashAndSaltMethod(password)];
|
|
115
|
-
case 2:
|
|
116
|
-
passwordAndSalt = _a.sent();
|
|
117
|
-
return [3 /*break*/, 5];
|
|
118
|
-
case 3: return [4 /*yield*/, auth.createPasswordHashAndSalt(password)];
|
|
119
|
-
case 4:
|
|
120
|
-
passwordAndSalt = _a.sent();
|
|
121
|
-
_a.label = 5;
|
|
122
|
-
case 5:
|
|
123
|
-
if (passwordAndSalt == null) {
|
|
124
|
-
return [2 /*return*/, {
|
|
125
|
-
status: "passwordError",
|
|
126
|
-
}];
|
|
127
|
-
}
|
|
128
|
-
userData.password = passwordAndSalt.hash;
|
|
129
|
-
userData.salt = passwordAndSalt.salt;
|
|
130
|
-
_a.label = 6;
|
|
131
|
-
case 6: return [4 /*yield*/, repo.create(userData)];
|
|
132
|
-
case 7:
|
|
133
|
-
user = _a.sent();
|
|
134
|
-
if (!onUserCreated) return [3 /*break*/, 9];
|
|
135
|
-
return [4 /*yield*/, onUserCreated(user)];
|
|
136
|
-
case 8:
|
|
137
|
-
_a.sent();
|
|
138
|
-
_a.label = 9;
|
|
139
|
-
case 9: return [4 /*yield*/, auth.createToken({ username: username.toLowerCase(), _id: user._id }, roles)];
|
|
140
|
-
case 10:
|
|
141
|
-
token = _a.sent();
|
|
142
|
-
if (user.authentificationMethod == "sms") {
|
|
143
|
-
return [2 /*return*/, {
|
|
144
|
-
status: "success",
|
|
145
|
-
}];
|
|
146
|
-
}
|
|
147
|
-
return [2 /*return*/, {
|
|
148
|
-
status: "success",
|
|
149
|
-
user: {
|
|
150
|
-
_id: user._id,
|
|
151
|
-
token: token,
|
|
152
|
-
username: username.toLowerCase(),
|
|
153
|
-
},
|
|
154
|
-
}];
|
|
155
|
-
}
|
|
156
|
-
});
|
|
68
|
+
async function createUser(repo, auth, username, password, authentificationMethod, roles, profile, createPasswordHashAndSaltMethod, onUserCreated, personalNumber) {
|
|
69
|
+
if (!roles.includes("user")) roles.push("user");
|
|
70
|
+
const existingUser = await repo.getOne({
|
|
71
|
+
username: username.toLowerCase()
|
|
157
72
|
});
|
|
73
|
+
if (existingUser != null) {
|
|
74
|
+
return {
|
|
75
|
+
status: "userExists"
|
|
76
|
+
};
|
|
77
|
+
}
|
|
78
|
+
let userData = {
|
|
79
|
+
username: username.toLowerCase(),
|
|
80
|
+
roles,
|
|
81
|
+
profile,
|
|
82
|
+
authentificationMethod,
|
|
83
|
+
pushNotificationTokens: []
|
|
84
|
+
};
|
|
85
|
+
if (personalNumber) {
|
|
86
|
+
userData.personalNumber = personalNumber;
|
|
87
|
+
}
|
|
88
|
+
if (authentificationMethod == "bankid") {
|
|
89
|
+
if (!personalNumber) {
|
|
90
|
+
_flink.log.warn("BankID login requested but no personal number found for user");
|
|
91
|
+
return {
|
|
92
|
+
status: "error"
|
|
93
|
+
};
|
|
94
|
+
}
|
|
95
|
+
}
|
|
96
|
+
if (authentificationMethod == "password") {
|
|
97
|
+
let passwordAndSalt = null;
|
|
98
|
+
if (createPasswordHashAndSaltMethod != null) {
|
|
99
|
+
passwordAndSalt = await createPasswordHashAndSaltMethod(password);
|
|
100
|
+
} else {
|
|
101
|
+
passwordAndSalt = await auth.createPasswordHashAndSalt(password);
|
|
102
|
+
}
|
|
103
|
+
if (passwordAndSalt == null) {
|
|
104
|
+
return {
|
|
105
|
+
status: "passwordError"
|
|
106
|
+
};
|
|
107
|
+
}
|
|
108
|
+
userData.password = passwordAndSalt.hash;
|
|
109
|
+
userData.salt = passwordAndSalt.salt;
|
|
110
|
+
}
|
|
111
|
+
const user = await repo.create(userData);
|
|
112
|
+
if (onUserCreated) {
|
|
113
|
+
await onUserCreated(user);
|
|
114
|
+
}
|
|
115
|
+
const token = await auth.createToken({
|
|
116
|
+
username: username.toLowerCase(),
|
|
117
|
+
_id: user._id
|
|
118
|
+
}, roles);
|
|
119
|
+
if (user.authentificationMethod == "sms") {
|
|
120
|
+
return {
|
|
121
|
+
status: "success"
|
|
122
|
+
};
|
|
123
|
+
}
|
|
124
|
+
return {
|
|
125
|
+
status: "success",
|
|
126
|
+
user: {
|
|
127
|
+
_id: user._id,
|
|
128
|
+
token: token,
|
|
129
|
+
username: username.toLowerCase()
|
|
130
|
+
}
|
|
131
|
+
};
|
|
158
132
|
}
|
|
159
|
-
function loginByToken(repo, auth, token, code, jwtSecret) {
|
|
160
|
-
|
|
161
|
-
|
|
162
|
-
|
|
163
|
-
|
|
164
|
-
|
|
165
|
-
|
|
166
|
-
|
|
167
|
-
|
|
168
|
-
|
|
169
|
-
|
|
170
|
-
|
|
171
|
-
|
|
172
|
-
|
|
173
|
-
|
|
174
|
-
|
|
175
|
-
|
|
176
|
-
|
|
177
|
-
|
|
178
|
-
|
|
179
|
-
|
|
180
|
-
|
|
181
|
-
|
|
182
|
-
|
|
183
|
-
|
|
184
|
-
|
|
185
|
-
|
|
186
|
-
|
|
187
|
-
|
|
188
|
-
|
|
189
|
-
|
|
190
|
-
|
|
191
|
-
|
|
192
|
-
}
|
|
193
|
-
});
|
|
194
|
-
});
|
|
133
|
+
async function loginByToken(repo, auth, token, code, jwtSecret) {
|
|
134
|
+
let payload;
|
|
135
|
+
try {
|
|
136
|
+
payload = _jsonwebtoken.default.verify(token, jwtSecret + ":" + code);
|
|
137
|
+
} catch (ex) {
|
|
138
|
+
return {
|
|
139
|
+
status: "failed"
|
|
140
|
+
};
|
|
141
|
+
}
|
|
142
|
+
if (payload.type != "smsLogin") {
|
|
143
|
+
return {
|
|
144
|
+
status: "failed"
|
|
145
|
+
};
|
|
146
|
+
}
|
|
147
|
+
const user = await repo.getById(payload.userId);
|
|
148
|
+
if (user == null) {
|
|
149
|
+
return {
|
|
150
|
+
status: "failed"
|
|
151
|
+
};
|
|
152
|
+
}
|
|
153
|
+
const authToken = await auth.createToken({
|
|
154
|
+
username: user.username.toLowerCase(),
|
|
155
|
+
_id: user._id
|
|
156
|
+
}, user.roles);
|
|
157
|
+
return {
|
|
158
|
+
status: "success",
|
|
159
|
+
user: {
|
|
160
|
+
_id: user._id,
|
|
161
|
+
username: user.username,
|
|
162
|
+
token: authToken,
|
|
163
|
+
profile: user.profile
|
|
164
|
+
}
|
|
165
|
+
};
|
|
195
166
|
}
|
|
196
|
-
function loginUser(repo, auth, username, password, validatePasswordMethod, smsOptions, onSuccessfulLogin, req) {
|
|
197
|
-
|
|
198
|
-
|
|
199
|
-
return __generator(this, function (_a) {
|
|
200
|
-
switch (_a.label) {
|
|
201
|
-
case 0: return [4 /*yield*/, repo.getOne({ username: username.toLowerCase() })];
|
|
202
|
-
case 1:
|
|
203
|
-
user = _a.sent();
|
|
204
|
-
if (user == null) {
|
|
205
|
-
return [2 /*return*/, { status: "failed" }];
|
|
206
|
-
}
|
|
207
|
-
valid = false;
|
|
208
|
-
if (!(user.authentificationMethod == "password")) return [3 /*break*/, 9];
|
|
209
|
-
if (password == null)
|
|
210
|
-
password = "";
|
|
211
|
-
if (!validatePasswordMethod) return [3 /*break*/, 7];
|
|
212
|
-
return [4 /*yield*/, validatePasswordMethod(password, user.password, user.salt)];
|
|
213
|
-
case 2:
|
|
214
|
-
valid = _a.sent();
|
|
215
|
-
if (!!valid) return [3 /*break*/, 6];
|
|
216
|
-
_a.label = 3;
|
|
217
|
-
case 3:
|
|
218
|
-
_a.trys.push([3, 5, , 6]);
|
|
219
|
-
return [4 /*yield*/, auth.validatePassword(password, user.password, user.salt)];
|
|
220
|
-
case 4:
|
|
221
|
-
valid = _a.sent();
|
|
222
|
-
return [3 /*break*/, 6];
|
|
223
|
-
case 5:
|
|
224
|
-
ex_1 = _a.sent();
|
|
225
|
-
return [3 /*break*/, 6];
|
|
226
|
-
case 6: return [3 /*break*/, 9];
|
|
227
|
-
case 7: return [4 /*yield*/, auth.validatePassword(password, user.password, user.salt)];
|
|
228
|
-
case 8:
|
|
229
|
-
valid = _a.sent();
|
|
230
|
-
_a.label = 9;
|
|
231
|
-
case 9:
|
|
232
|
-
if (user.authentificationMethod == "sms") {
|
|
233
|
-
if (!smsOptions)
|
|
234
|
-
throw "SMS options must be specified to use SMS login";
|
|
235
|
-
code = smsOptions.codeType == "numeric" ? generate(smsOptions.codeLength) : generateString(smsOptions.codeLength);
|
|
236
|
-
smsOptions.smsClient.send({
|
|
237
|
-
to: [user.username],
|
|
238
|
-
from: smsOptions.smsFrom,
|
|
239
|
-
message: smsOptions.smsMessage.replace("{{code}}", code),
|
|
240
|
-
});
|
|
241
|
-
payload = {
|
|
242
|
-
type: "smsLogin",
|
|
243
|
-
userId: user._id,
|
|
244
|
-
};
|
|
245
|
-
secret = smsOptions.jwtToken + ":" + code;
|
|
246
|
-
options = {
|
|
247
|
-
expiresIn: "1h",
|
|
248
|
-
};
|
|
249
|
-
token = jsonwebtoken_1.default.sign(payload, secret, options);
|
|
250
|
-
return [2 /*return*/, {
|
|
251
|
-
status: "success",
|
|
252
|
-
validationToken: token,
|
|
253
|
-
}];
|
|
254
|
-
}
|
|
255
|
-
if (user.authentificationMethod == "bankid") {
|
|
256
|
-
if (!user.personalNumber) {
|
|
257
|
-
flink_1.log.warn("BankID login requested but no personal number found for user");
|
|
258
|
-
return [2 /*return*/, { status: "failed" }];
|
|
259
|
-
}
|
|
260
|
-
flink_1.log.warn("BankID login required to be handled in other way, i.e. using flink bankid plugin");
|
|
261
|
-
return [2 /*return*/, { status: "failed" }];
|
|
262
|
-
}
|
|
263
|
-
if (!valid) return [3 /*break*/, 13];
|
|
264
|
-
return [4 /*yield*/, auth.createToken({ username: username.toLowerCase(), _id: user._id }, user.roles)];
|
|
265
|
-
case 10:
|
|
266
|
-
token = _a.sent();
|
|
267
|
-
if (!onSuccessfulLogin) return [3 /*break*/, 12];
|
|
268
|
-
return [4 /*yield*/, onSuccessfulLogin(user, req)];
|
|
269
|
-
case 11:
|
|
270
|
-
_a.sent();
|
|
271
|
-
_a.label = 12;
|
|
272
|
-
case 12: return [2 /*return*/, {
|
|
273
|
-
status: "success",
|
|
274
|
-
user: {
|
|
275
|
-
_id: user._id,
|
|
276
|
-
username: user.username,
|
|
277
|
-
token: token,
|
|
278
|
-
profile: user.profile,
|
|
279
|
-
},
|
|
280
|
-
}];
|
|
281
|
-
case 13: return [2 /*return*/, { status: "failed" }];
|
|
282
|
-
}
|
|
283
|
-
});
|
|
167
|
+
async function loginUser(repo, auth, username, password, validatePasswordMethod, smsOptions, onSuccessfulLogin, req) {
|
|
168
|
+
const user = await repo.getOne({
|
|
169
|
+
username: username.toLowerCase()
|
|
284
170
|
});
|
|
285
|
-
|
|
286
|
-
|
|
287
|
-
|
|
288
|
-
|
|
289
|
-
|
|
290
|
-
|
|
291
|
-
|
|
292
|
-
|
|
293
|
-
|
|
294
|
-
|
|
295
|
-
|
|
296
|
-
|
|
297
|
-
|
|
298
|
-
|
|
299
|
-
|
|
300
|
-
passwordAndSalt = null;
|
|
301
|
-
if (!(createPasswordHashAndSaltMethod == null)) return [3 /*break*/, 3];
|
|
302
|
-
return [4 /*yield*/, auth.createPasswordHashAndSalt(newPassword)];
|
|
303
|
-
case 2:
|
|
304
|
-
passwordAndSalt = _a.sent();
|
|
305
|
-
return [3 /*break*/, 5];
|
|
306
|
-
case 3: return [4 /*yield*/, createPasswordHashAndSaltMethod(newPassword)];
|
|
307
|
-
case 4:
|
|
308
|
-
passwordAndSalt = _a.sent();
|
|
309
|
-
_a.label = 5;
|
|
310
|
-
case 5:
|
|
311
|
-
if (passwordAndSalt == null) {
|
|
312
|
-
return [2 /*return*/, {
|
|
313
|
-
status: "passwordError",
|
|
314
|
-
}];
|
|
315
|
-
}
|
|
316
|
-
return [4 /*yield*/, repo.updateOne(userId, {
|
|
317
|
-
password: passwordAndSalt.hash,
|
|
318
|
-
salt: passwordAndSalt.salt,
|
|
319
|
-
})];
|
|
320
|
-
case 6:
|
|
321
|
-
_a.sent();
|
|
322
|
-
return [2 /*return*/, { status: "success" }];
|
|
171
|
+
if (user == null) {
|
|
172
|
+
return {
|
|
173
|
+
status: "failed"
|
|
174
|
+
};
|
|
175
|
+
}
|
|
176
|
+
let valid = false;
|
|
177
|
+
if (user.authentificationMethod == "password") {
|
|
178
|
+
if (password == null) password = "";
|
|
179
|
+
if (validatePasswordMethod) {
|
|
180
|
+
valid = await validatePasswordMethod(password, user.password, user.salt);
|
|
181
|
+
//If not valid, try to use default auth
|
|
182
|
+
if (!valid) {
|
|
183
|
+
try {
|
|
184
|
+
valid = await auth.validatePassword(password, user.password, user.salt);
|
|
185
|
+
} catch (ex) {}
|
|
323
186
|
}
|
|
187
|
+
} else {
|
|
188
|
+
valid = await auth.validatePassword(password, user.password, user.salt);
|
|
189
|
+
}
|
|
190
|
+
}
|
|
191
|
+
if (user.authentificationMethod == "sms") {
|
|
192
|
+
if (!smsOptions) throw "SMS options must be specified to use SMS login";
|
|
193
|
+
let code = smsOptions.codeType == "numeric" ? generate(smsOptions.codeLength) : generateString(smsOptions.codeLength);
|
|
194
|
+
smsOptions.smsClient.send({
|
|
195
|
+
to: [
|
|
196
|
+
user.username
|
|
197
|
+
],
|
|
198
|
+
from: smsOptions.smsFrom,
|
|
199
|
+
message: smsOptions.smsMessage.replace("{{code}}", code)
|
|
324
200
|
});
|
|
325
|
-
|
|
326
|
-
|
|
327
|
-
|
|
328
|
-
|
|
329
|
-
|
|
330
|
-
|
|
331
|
-
|
|
332
|
-
|
|
333
|
-
|
|
334
|
-
|
|
335
|
-
|
|
336
|
-
|
|
337
|
-
|
|
338
|
-
|
|
339
|
-
|
|
340
|
-
|
|
341
|
-
|
|
342
|
-
|
|
343
|
-
|
|
344
|
-
|
|
345
|
-
|
|
346
|
-
|
|
347
|
-
|
|
348
|
-
|
|
349
|
-
|
|
350
|
-
|
|
351
|
-
|
|
352
|
-
|
|
353
|
-
|
|
354
|
-
|
|
355
|
-
|
|
356
|
-
|
|
357
|
-
|
|
358
|
-
|
|
359
|
-
|
|
360
|
-
|
|
361
|
-
|
|
362
|
-
|
|
363
|
-
|
|
364
|
-
|
|
365
|
-
|
|
366
|
-
case 4:
|
|
367
|
-
options = {
|
|
368
|
-
expiresIn: lifeTime,
|
|
369
|
-
};
|
|
370
|
-
token = jsonwebtoken_1.default.sign(payload, secret, options);
|
|
371
|
-
return [2 /*return*/, {
|
|
372
|
-
status: "success",
|
|
373
|
-
passwordResetToken: token,
|
|
374
|
-
code: code,
|
|
375
|
-
profile: user.profile,
|
|
376
|
-
}];
|
|
201
|
+
const payload = {
|
|
202
|
+
type: "smsLogin",
|
|
203
|
+
userId: user._id
|
|
204
|
+
};
|
|
205
|
+
const secret = smsOptions.jwtToken + ":" + code;
|
|
206
|
+
const options = {
|
|
207
|
+
expiresIn: "1h"
|
|
208
|
+
};
|
|
209
|
+
const token = _jsonwebtoken.default.sign(payload, secret, options);
|
|
210
|
+
return {
|
|
211
|
+
status: "success",
|
|
212
|
+
validationToken: token
|
|
213
|
+
};
|
|
214
|
+
}
|
|
215
|
+
if (user.authentificationMethod == "bankid") {
|
|
216
|
+
if (!user.personalNumber) {
|
|
217
|
+
_flink.log.warn("BankID login requested but no personal number found for user");
|
|
218
|
+
return {
|
|
219
|
+
status: "failed"
|
|
220
|
+
};
|
|
221
|
+
}
|
|
222
|
+
_flink.log.warn("BankID login required to be handled in other way, i.e. using flink bankid plugin");
|
|
223
|
+
return {
|
|
224
|
+
status: "failed"
|
|
225
|
+
};
|
|
226
|
+
}
|
|
227
|
+
if (valid) {
|
|
228
|
+
const token = await auth.createToken({
|
|
229
|
+
username: username.toLowerCase(),
|
|
230
|
+
_id: user._id
|
|
231
|
+
}, user.roles);
|
|
232
|
+
if (onSuccessfulLogin) {
|
|
233
|
+
await onSuccessfulLogin(user, req);
|
|
234
|
+
}
|
|
235
|
+
return {
|
|
236
|
+
status: "success",
|
|
237
|
+
user: {
|
|
238
|
+
_id: user._id,
|
|
239
|
+
username: user.username,
|
|
240
|
+
token,
|
|
241
|
+
profile: user.profile
|
|
377
242
|
}
|
|
378
|
-
}
|
|
243
|
+
};
|
|
244
|
+
} else {
|
|
245
|
+
return {
|
|
246
|
+
status: "failed"
|
|
247
|
+
};
|
|
248
|
+
}
|
|
249
|
+
}
|
|
250
|
+
async function changePassword(repo, auth, userId, newPassword, createPasswordHashAndSaltMethod) {
|
|
251
|
+
const user = await repo.getById(userId);
|
|
252
|
+
if (user == null) {
|
|
253
|
+
return {
|
|
254
|
+
status: "failed"
|
|
255
|
+
};
|
|
256
|
+
}
|
|
257
|
+
if (user.authentificationMethod != "password") {
|
|
258
|
+
return {
|
|
259
|
+
status: "failed"
|
|
260
|
+
};
|
|
261
|
+
}
|
|
262
|
+
let passwordAndSalt = null;
|
|
263
|
+
if (createPasswordHashAndSaltMethod == null) {
|
|
264
|
+
passwordAndSalt = await auth.createPasswordHashAndSalt(newPassword);
|
|
265
|
+
} else {
|
|
266
|
+
passwordAndSalt = await createPasswordHashAndSaltMethod(newPassword);
|
|
267
|
+
}
|
|
268
|
+
if (passwordAndSalt == null) {
|
|
269
|
+
return {
|
|
270
|
+
status: "passwordError"
|
|
271
|
+
};
|
|
272
|
+
}
|
|
273
|
+
await repo.updateById(userId, {
|
|
274
|
+
password: passwordAndSalt.hash,
|
|
275
|
+
salt: passwordAndSalt.salt
|
|
379
276
|
});
|
|
277
|
+
return {
|
|
278
|
+
status: "success"
|
|
279
|
+
};
|
|
380
280
|
}
|
|
381
|
-
function
|
|
382
|
-
|
|
383
|
-
|
|
384
|
-
|
|
385
|
-
|
|
386
|
-
|
|
387
|
-
|
|
388
|
-
|
|
389
|
-
|
|
390
|
-
|
|
391
|
-
|
|
392
|
-
|
|
393
|
-
|
|
394
|
-
|
|
395
|
-
|
|
396
|
-
|
|
397
|
-
|
|
398
|
-
|
|
399
|
-
|
|
400
|
-
|
|
401
|
-
|
|
402
|
-
|
|
403
|
-
|
|
404
|
-
|
|
405
|
-
|
|
406
|
-
|
|
407
|
-
|
|
408
|
-
|
|
409
|
-
|
|
410
|
-
|
|
411
|
-
|
|
412
|
-
|
|
413
|
-
|
|
414
|
-
|
|
415
|
-
|
|
416
|
-
|
|
417
|
-
|
|
418
|
-
|
|
419
|
-
case 4:
|
|
420
|
-
passwordAndSalt = _a.sent();
|
|
421
|
-
_a.label = 5;
|
|
422
|
-
case 5:
|
|
423
|
-
if (passwordAndSalt == null) {
|
|
424
|
-
return [2 /*return*/, {
|
|
425
|
-
status: "passwordError",
|
|
426
|
-
}];
|
|
427
|
-
}
|
|
428
|
-
return [4 /*yield*/, repo.updateOne(user._id, {
|
|
429
|
-
password: passwordAndSalt.hash,
|
|
430
|
-
salt: passwordAndSalt.salt,
|
|
431
|
-
pwdResetStartedAt: null,
|
|
432
|
-
})];
|
|
433
|
-
case 6:
|
|
434
|
-
_a.sent();
|
|
435
|
-
return [2 /*return*/, { status: "success", user: user }];
|
|
436
|
-
}
|
|
281
|
+
async function passwordResetStart(repo, auth, jwtSecret, username, numberOfDigits, lifeTime, passwordResetReusableTokens = true) {
|
|
282
|
+
const user = await repo.getOne({
|
|
283
|
+
username: username.toLowerCase()
|
|
284
|
+
});
|
|
285
|
+
const fakepayload = {
|
|
286
|
+
type: "passwordReset",
|
|
287
|
+
username: username.toLocaleLowerCase()
|
|
288
|
+
};
|
|
289
|
+
const fakeToken = _jsonwebtoken.default.sign(fakepayload, "fake_payload", {
|
|
290
|
+
expiresIn: lifeTime
|
|
291
|
+
});
|
|
292
|
+
if (user == null) {
|
|
293
|
+
return {
|
|
294
|
+
status: "userNotFound",
|
|
295
|
+
passwordResetToken: fakeToken
|
|
296
|
+
};
|
|
297
|
+
}
|
|
298
|
+
if (user.authentificationMethod != "password") {
|
|
299
|
+
return {
|
|
300
|
+
status: "userNotFound",
|
|
301
|
+
passwordResetToken: fakeToken
|
|
302
|
+
};
|
|
303
|
+
}
|
|
304
|
+
if (numberOfDigits == null) numberOfDigits = 6;
|
|
305
|
+
if (lifeTime == null) lifeTime = "1h";
|
|
306
|
+
const payload = {
|
|
307
|
+
type: "passwordReset",
|
|
308
|
+
username: username.toLocaleLowerCase()
|
|
309
|
+
};
|
|
310
|
+
const code = generate(numberOfDigits);
|
|
311
|
+
const pwdResetStartedAt = new Date().toISOString();
|
|
312
|
+
let secret;
|
|
313
|
+
if (passwordResetReusableTokens) {
|
|
314
|
+
secret = jwtSecret + ":" + code;
|
|
315
|
+
} else {
|
|
316
|
+
secret = jwtSecret + ":" + code + ":" + pwdResetStartedAt;
|
|
317
|
+
await repo.updateById(user._id, {
|
|
318
|
+
pwdResetStartedAt
|
|
437
319
|
});
|
|
320
|
+
}
|
|
321
|
+
const options = {
|
|
322
|
+
expiresIn: lifeTime
|
|
323
|
+
};
|
|
324
|
+
const token = _jsonwebtoken.default.sign(payload, secret, options);
|
|
325
|
+
return {
|
|
326
|
+
status: "success",
|
|
327
|
+
passwordResetToken: token,
|
|
328
|
+
code,
|
|
329
|
+
profile: user.profile
|
|
330
|
+
};
|
|
331
|
+
}
|
|
332
|
+
async function passwordResetComplete(repo, auth, jwtSecret, passwordResetToken, code, newPassword, createPasswordHashAndSaltMethod, passwordResetReusableTokens = true) {
|
|
333
|
+
const payload = _jsonwebtoken.default.decode(passwordResetToken);
|
|
334
|
+
if (!payload || !payload.username) return {
|
|
335
|
+
status: "invalidCode"
|
|
336
|
+
};
|
|
337
|
+
const user = await repo.getOne({
|
|
338
|
+
username: payload.username
|
|
339
|
+
});
|
|
340
|
+
if (!user || user == null || user.authentificationMethod != "password") {
|
|
341
|
+
return {
|
|
342
|
+
status: "userNotFound"
|
|
343
|
+
};
|
|
344
|
+
}
|
|
345
|
+
let secret;
|
|
346
|
+
if (passwordResetReusableTokens === true) {
|
|
347
|
+
secret = jwtSecret + ":" + code;
|
|
348
|
+
} else {
|
|
349
|
+
if (!user.pwdResetStartedAt || user.pwdResetStartedAt === null) {
|
|
350
|
+
return {
|
|
351
|
+
status: "userNotFound"
|
|
352
|
+
};
|
|
353
|
+
}
|
|
354
|
+
secret = jwtSecret + ":" + code + ":" + user.pwdResetStartedAt;
|
|
355
|
+
}
|
|
356
|
+
try {
|
|
357
|
+
_jsonwebtoken.default.verify(passwordResetToken, secret);
|
|
358
|
+
} catch (ex) {
|
|
359
|
+
return {
|
|
360
|
+
status: "invalidCode"
|
|
361
|
+
};
|
|
362
|
+
}
|
|
363
|
+
let passwordAndSalt = null;
|
|
364
|
+
if (createPasswordHashAndSaltMethod == null) {
|
|
365
|
+
passwordAndSalt = await auth.createPasswordHashAndSalt(newPassword);
|
|
366
|
+
} else {
|
|
367
|
+
passwordAndSalt = await createPasswordHashAndSaltMethod(newPassword);
|
|
368
|
+
}
|
|
369
|
+
if (passwordAndSalt == null) {
|
|
370
|
+
return {
|
|
371
|
+
status: "passwordError"
|
|
372
|
+
};
|
|
373
|
+
}
|
|
374
|
+
await repo.updateById(user._id, {
|
|
375
|
+
password: passwordAndSalt.hash,
|
|
376
|
+
salt: passwordAndSalt.salt,
|
|
377
|
+
pwdResetStartedAt: null
|
|
438
378
|
});
|
|
379
|
+
return {
|
|
380
|
+
status: "success",
|
|
381
|
+
user
|
|
382
|
+
};
|
|
439
383
|
}
|
|
440
384
|
function generate(n) {
|
|
441
385
|
var add = 1, max = 12 - add;
|
|
@@ -448,10 +392,10 @@ function generate(n) {
|
|
|
448
392
|
return ("" + number).substring(add);
|
|
449
393
|
}
|
|
450
394
|
function generateString(length) {
|
|
451
|
-
|
|
452
|
-
|
|
453
|
-
|
|
454
|
-
for
|
|
395
|
+
const characters = "ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789";
|
|
396
|
+
let result = " ";
|
|
397
|
+
const charactersLength = characters.length;
|
|
398
|
+
for(let i = 0; i < length; i++){
|
|
455
399
|
result += characters.charAt(Math.floor(Math.random() * charactersLength));
|
|
456
400
|
}
|
|
457
401
|
return result;
|