npm - @sync-in/server - Versions diffs - 1.5.2 → 1.6.1 - Mend

@sync-in/server 1.5.2 → 1.6.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (355) hide show

package/server/applications/users/dto/delete-user.dto.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../../backend/src/applications/users/dto/delete-user.dto.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport { IsBoolean, ~~IsNotEmpty, IsOptional, IsString~~ } from 'class-validator'\n\nexport class DeleteUserDto {\n @IsBoolean()\n deleteSpace: boolean\n\n @~~IsOptional()\n @~~IsBoolean()\n isGuest~~? = false\n}\n\nexport class AdminDeleteUserDto extends DeleteUserDto {\n @IsNotEmpty()\n @IsString()\n adminPassword~~: ~~string~~\n}\n"],"names":["~~AdminDeleteUserDto","~~DeleteUserDto"~~,"isGuest"~~],"mappings":"AAAA;;;;CAIC~~;;;;;;;;;;;QAaYA;~~eAAAA~~;;QATAC;eAAAA~~;;;~~gCAF+C~~;;;;;;;;;;~~AAErD~~,IAAA,AAAMA,gBAAN,MAAMA~~;;aAMXC,UAAW;;AACb;;;;;;;;;AAEO,IAAA,AAAMF,qBAAN,MAAMA,2BAA2BC~~;~~AAIxC~~"}
1	+ {"version":3,"sources":["../../../../../backend/src/applications/users/dto/delete-user.dto.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport { IsBoolean } from 'class-validator'\n\nexport class DeleteUserDto {\n @IsBoolean()\n deleteSpace: boolean\n\n @IsBoolean()\n isGuest: boolean\n}\n"],"names":["DeleteUserDto"],"mappings":"AAAA;;;;CAIC;;;;+BAIYA;;;eAAAA;;;gCAFa;;;;;;;;;;AAEnB,IAAA,AAAMA,gBAAN,MAAMA;AAMb"}

package/server/applications/users/dto/user-properties.dto.js CHANGED Viewed

@@ -13,6 +13,9 @@ function _export(target, all) {
     });
 }
 _export(exports, {
+    get UserAppPasswordDto () {
+        return UserAppPasswordDto;
+    },
     get UserLanguageDto () {
         return UserLanguageDto;
     },
@@ -21,9 +24,15 @@ _export(exports, {
     },
     get UserPasswordDto () {
         return UserPasswordDto;
+    },
+    get UserUpdatePasswordDto () {
+        return UserUpdatePasswordDto;
     }
 });
+const _classtransformer = require("class-transformer");
 const _classvalidator = require("class-validator");
+const _scope = require("../../../authentication/constants/scope");
+const _shared = require("../../../common/shared");
 const _user = require("../constants/user");
 function _ts_decorate(decorators, target, key, desc) {
     var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
@@ -47,18 +56,44 @@ _ts_decorate([
     (0, _classvalidator.IsInt)(),
     _ts_metadata("design:type", Number)
 ], UserNotificationDto.prototype, "notification", void 0);
-let UserPasswordDto = class UserPasswordDto {
+let UserUpdatePasswordDto = class UserUpdatePasswordDto {
 };
 _ts_decorate([
     (0, _classvalidator.IsNotEmpty)(),
     (0, _classvalidator.IsString)(),
     _ts_metadata("design:type", String)
-], UserPasswordDto.prototype, "oldPassword", void 0);
+], UserUpdatePasswordDto.prototype, "oldPassword", void 0);
 _ts_decorate([
     (0, _classvalidator.IsNotEmpty)(),
     (0, _classvalidator.IsString)(),
     (0, _classvalidator.MinLength)(_user.USER_PASSWORD_MIN_LENGTH),
     _ts_metadata("design:type", String)
-], UserPasswordDto.prototype, "newPassword", void 0);
+], UserUpdatePasswordDto.prototype, "newPassword", void 0);
+let UserPasswordDto = class UserPasswordDto {
+};
+_ts_decorate([
+    (0, _classvalidator.IsNotEmpty)(),
+    (0, _classvalidator.IsString)(),
+    (0, _classvalidator.MinLength)(_user.USER_PASSWORD_MIN_LENGTH),
+    _ts_metadata("design:type", String)
+], UserPasswordDto.prototype, "password", void 0);
+let UserAppPasswordDto = class UserAppPasswordDto {
+};
+_ts_decorate([
+    (0, _classvalidator.IsNotEmpty)(),
+    (0, _classvalidator.IsString)(),
+    _ts_metadata("design:type", String)
+], UserAppPasswordDto.prototype, "name", void 0);
+_ts_decorate([
+    (0, _classtransformer.Transform)(({ value })=>value.toLowerCase()),
+    (0, _classvalidator.IsEnum)(_scope.AUTH_SCOPE),
+    _ts_metadata("design:type", typeof _scope.AUTH_SCOPE === "undefined" ? Object : _scope.AUTH_SCOPE)
+], UserAppPasswordDto.prototype, "app", void 0);
+_ts_decorate([
+    (0, _classvalidator.IsOptional)(),
+    (0, _classtransformer.Transform)(({ value })=>value ? (0, _shared.currentDate)(value) : null),
+    (0, _classvalidator.IsDate)(),
+    _ts_metadata("design:type", typeof Date === "undefined" ? Object : Date)
+], UserAppPasswordDto.prototype, "expiration", void 0);
 //# sourceMappingURL=user-properties.dto.js.map

package/server/applications/users/dto/user-properties.dto.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../../backend/src/applications/users/dto/user-properties.dto.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport { IsInt, IsNotEmpty, IsString, MinLength, ValidateIf } from 'class-validator'\nimport { USER_PASSWORD_MIN_LENGTH } from '../constants/user'\n\nexport class UserLanguageDto {\n @ValidateIf((_, language) => language === null \|\| typeof language === 'string')\n language: string \| null\n}\n\nexport class UserNotificationDto {\n @IsNotEmpty()\n @IsInt()\n notification: number\n}\n\nexport class ~~UserPasswordDto~~ {\n @IsNotEmpty()\n @IsString()\n oldPassword: string\n\n @IsNotEmpty()\n @IsString()\n @MinLength(USER_PASSWORD_MIN_LENGTH)\n newPassword: string\n}\n"],"names":["UserLanguageDto","UserNotificationDto","UserPasswordDto","_","language"],"mappings":"AAAA;;;;CAIC;;;;;;;;;;;~~QAKYA~~;eAAAA;;QAKAC;eAAAA;;~~QAMAC~~;eAAAA;;;~~gCAdsD~~;~~sBAC1B~~;;;;;;;;;;AAElC,IAAA,~~AAAMF~~,kBAAN,MAAMA;AAGb;;~~qCAFeG~~,GAAGC,WAAaA,aAAa,QAAQ,OAAOA,aAAa;;;AAIjE,IAAA,~~AAAMH~~,sBAAN,MAAMA;AAIb;;;;;;AAEO,IAAA,~~AAAMC~~,kBAAN,MAAMA;~~AASb~~"}
1	+ {"version":3,"sources":["../../../../../backend/src/applications/users/dto/user-properties.dto.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport { Transform } from 'class-transformer'\nimport { IsDate, IsEnum, IsInt, IsNotEmpty, IsOptional, IsString, MinLength, ValidateIf } from 'class-validator'\nimport { AUTH_SCOPE } from '../../../authentication/constants/scope'\nimport { currentDate } from '../../../common/shared'\nimport { USER_PASSWORD_MIN_LENGTH } from '../constants/user'\n\nexport class UserLanguageDto {\n @ValidateIf((_, language) => language === null \|\| typeof language === 'string')\n language: string \| null\n}\n\nexport class UserNotificationDto {\n @IsNotEmpty()\n @IsInt()\n notification: number\n}\n\nexport class UserUpdatePasswordDto {\n @IsNotEmpty()\n @IsString()\n oldPassword: string\n\n @IsNotEmpty()\n @IsString()\n @MinLength(USER_PASSWORD_MIN_LENGTH)\n newPassword: string\n}\n\nexport class UserPasswordDto {\n @IsNotEmpty()\n @IsString()\n @MinLength(USER_PASSWORD_MIN_LENGTH)\n password: string\n}\n\nexport class UserAppPasswordDto {\n @IsNotEmpty()\n @IsString()\n name: string\n\n @Transform(({ value }) => value.toLowerCase())\n @IsEnum(AUTH_SCOPE)\n app: AUTH_SCOPE\n\n @IsOptional()\n @Transform(({ value }) => (value ? currentDate(value) : null))\n @IsDate()\n expiration?: Date\n}\n"],"names":["UserAppPasswordDto","UserLanguageDto","UserNotificationDto","UserPasswordDto","UserUpdatePasswordDto","_","language","value","toLowerCase","currentDate"],"mappings":"AAAA;;;;CAIC;;;;;;;;;;;QAqCYA;eAAAA;;QA7BAC;eAAAA;;QAKAC;eAAAA;;QAiBAC;eAAAA;;QAXAC;eAAAA;;;kCAjBa;gCACqE;uBACpE;wBACC;sBACa;;;;;;;;;;AAElC,IAAA,AAAMH,kBAAN,MAAMA;AAGb;;qCAFeI,GAAGC,WAAaA,aAAa,QAAQ,OAAOA,aAAa;;;AAIjE,IAAA,AAAMJ,sBAAN,MAAMA;AAIb;;;;;;AAEO,IAAA,AAAME,wBAAN,MAAMA;AASb;;;;;;;;;;;;AAEO,IAAA,AAAMD,kBAAN,MAAMA;AAKb;;;;;;;AAEO,IAAA,AAAMH,qBAAN,MAAMA;AAab;;;;;;;sCARc,EAAEO,KAAK,EAAE,GAAKA,MAAMC,WAAW;;;;;;sCAK/B,EAAED,KAAK,EAAE,GAAMA,QAAQE,IAAAA,mBAAW,EAACF,SAAS"}

package/server/applications/users/interfaces/admin-user.interface.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../../backend/src/applications/users/interfaces/admin-user.interface.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport type { User } from '../schemas/user.interface'\nimport type { Member } from './member.interface'\n\nexport type AdminUser = Partial<User> & { fullName: string; groups?: Member[] }\n"],"names":[],"mappings":"AAAA;;;;CAIC"}
1	+ {"version":3,"sources":["../../../../../backend/src/applications/users/interfaces/admin-user.interface.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport type { User } from '../schemas/user.interface'\nimport type { Member } from './member.interface'\n\nexport type AdminUser = Partial<User> & { fullName: string; groups?: Member[]; twoFaEnabled?: boolean }\n"],"names":[],"mappings":"AAAA;;;;CAIC"}

package/server/applications/users/interfaces/user-secrets.interface.js ADDED Viewed

@@ -0,0 +1,10 @@
+/*
+ * Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>
+ * This file is part of Sync-in | The open source file sync and share solution
+ * See the LICENSE file for licensing details
+ */ "use strict";
+Object.defineProperty(exports, "__esModule", {
+    value: true
+});
+//# sourceMappingURL=user-secrets.interface.js.map

package/server/applications/users/interfaces/user-secrets.interface.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"sources":["../../../../../backend/src/applications/users/interfaces/user-secrets.interface.ts"],"sourcesContent":["/*\n * Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in | The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport { AUTH_SCOPE } from '../../../authentication/constants/scope'\nimport { USER_SECRET } from '../constants/user'\n\nexport interface UserAppPassword {\n name: string\n app: AUTH_SCOPE\n password: string\n expiration: Date\n currentIp: string\n lastIp: string\n currentAccess: Date\n lastAccess: Date\n createdAt: Date\n}\n\nexport interface UserSecrets {\n [USER_SECRET.TWO_FA_SECRET]?: string\n [USER_SECRET.RECOVERY_CODES]?: string[]\n [USER_SECRET.APP_PASSWORDS]?: UserAppPassword[]\n}\n"],"names":[],"mappings":"AAAA;;;;CAIC"}

package/server/applications/users/models/user.model.js CHANGED Viewed

@@ -15,6 +15,7 @@ Object.defineProperty(exports, "UserModel", {
 const _classtransformer = require("class-transformer");
 const _promises = /*#__PURE__*/ _interop_require_default(require("node:fs/promises"));
 const _nodepath = /*#__PURE__*/ _interop_require_default(require("node:path"));
+const _shared = require("../../../common/shared");
 const _configenvironment = require("../../../configuration/config.environment");
 const _spaces = require("../../spaces/constants/spaces");
 const _user = require("../constants/user");
@@ -33,16 +34,23 @@ function _ts_metadata(k, v) {
     if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
 }
 let UserModel = class UserModel {
-    toString() {
-        return `*User <${this.login}> (${this.id})*`;
+    get homePath() {
+        if (this.isLink || this.isGuest) {
+            return this._homePath ||= _nodepath.default.join(_configenvironment.configuration.applications.files.tmpPath, this.isGuest ? 'guests' : 'links', this.login);
+        }
+        return this._homePath ||= _nodepath.default.join(_configenvironment.configuration.applications.files.usersPath, this.login);
     }
-    removePassword() {
-        delete this.password;
+    get filesPath() {
+        return this._filesPath ||= _nodepath.default.join(this.homePath, _spaces.SPACE_REPOSITORY.FILES);
     }
-    setFullName() {
-        if (!this.fullName) {
-            this.fullName = `${this.firstName || ''} ${this.lastName || ''}`.trim();
-        }
+    get trashPath() {
+        return this._trashPath ||= _nodepath.default.join(this.homePath, _spaces.SPACE_REPOSITORY.TRASH);
+    }
+    get tmpPath() {
+        return this._tmpPath ||= _nodepath.default.join(this.homePath, _user.USER_PATH.TMP);
+    }
+    get tasksPath() {
+        return this._tasksPath ||= _nodepath.default.join(this.tmpPath, _user.USER_PATH.TASKS);
     }
     get isAdmin() {
         return this.role === _user.USER_ROLE.ADMINISTRATOR;
@@ -59,23 +67,41 @@ let UserModel = class UserModel {
     get quotaIsExceeded() {
         return this.storageQuota !== null && this.storageUsage >= this.storageQuota;
     }
-    get homePath() {
-        if (this.isLink || this.isGuest) {
-            return this._homePath ||= _nodepath.default.join(_configenvironment.configuration.applications.files.tmpPath, this.isGuest ? 'guests' : 'links', this.login);
+    get twoFaEnabled() {
+        return !!this.secrets?.twoFaSecret;
+    }
+    get appPasswords() {
+        return this.secrets?.appPasswords?.length || 0;
+    }
+    static getHomePath(userLogin, isGuest = false, isLink = false) {
+        if (isGuest || isLink) {
+            return _nodepath.default.join(_configenvironment.configuration.applications.files.tmpPath, isGuest ? 'guests' : 'links', userLogin);
         }
-        return this._homePath ||= _nodepath.default.join(_configenvironment.configuration.applications.files.usersPath, this.login);
+        return _nodepath.default.join(_configenvironment.configuration.applications.files.usersPath, userLogin);
     }
-    get filesPath() {
-        return this._filesPath ||= _nodepath.default.join(this.homePath, _spaces.SPACE_REPOSITORY.FILES);
+    static getFilesPath(userLogin) {
+        return _nodepath.default.join(UserModel.getHomePath(userLogin), _spaces.SPACE_REPOSITORY.FILES);
     }
-    get trashPath() {
-        return this._trashPath ||= _nodepath.default.join(this.homePath, _spaces.SPACE_REPOSITORY.TRASH);
+    static getTrashPath(userLogin) {
+        return _nodepath.default.join(UserModel.getHomePath(userLogin), _spaces.SPACE_REPOSITORY.TRASH);
     }
-    get tmpPath() {
-        return this._tmpPath ||= _nodepath.default.join(this.homePath, _user.USER_PATH.TMP);
+    static getTasksPath(userLogin, isGuest = false, isLink = false) {
+        return _nodepath.default.join(UserModel.getHomePath(userLogin, isGuest, isLink), _user.USER_PATH.TMP, _user.USER_PATH.TASKS);
     }
-    get tasksPath() {
-        return this._tasksPath ||= _nodepath.default.join(this.tmpPath, _user.USER_PATH.TASKS);
+    static getRepositoryPath(userLogin, inTrash = false) {
+        if (inTrash) return UserModel.getTrashPath(userLogin);
+        return UserModel.getFilesPath(userLogin);
+    }
+    toString() {
+        return `*User <${this.login}> (${this.id})*`;
+    }
+    removePassword() {
+        delete this.password;
+    }
+    setFullName(force = false) {
+        if (!this.fullName || force) {
+            this.fullName = `${this.firstName || ''} ${this.lastName || ''}`.trim();
+        }
     }
     async makePaths() {
         if (this.isGuest || this.isLink) {
@@ -123,21 +149,6 @@ let UserModel = class UserModel {
         }
         return `${initials.f.toUpperCase()}${initials.l.toLowerCase()}`;
     }
-    setProfile() {
-        if (this.isLink) {
-            this.login = `Link (${this.id})`;
-            this.email = 'guest-link@sync-in';
-        }
-    }
-    setApplications() {
-        if (this.isGuest) {
-            // dynamically set the permissions
-            this.applications = Object.values(_user.GUEST_PERMISSION);
-        } else if (this.permissions) {
-            this.applications = this.permissions.split(_user.USER_PERMS_SEP);
-        }
-        delete this.permissions;
-    }
     havePermission(permission) {
         if (this.isAdmin) {
             return true;
@@ -150,28 +161,37 @@ let UserModel = class UserModel {
     haveRole(role) {
         return this.role <= role;
     }
-    static getHomePath(userLogin, isGuest = false, isLink = false) {
-        if (isGuest || isLink) {
-            return _nodepath.default.join(_configenvironment.configuration.applications.files.tmpPath, isGuest ? 'guests' : 'links', userLogin);
+    initSecrets(props) {
+        // Remove the `twoFaEnabled` property to avoid conflicts with the current getter when using `plainToClass` with `class-validator`
+        // The `props` variable may be empty when the class is instantiated using `plainToClass`
+        if (props && 'twoFaEnabled' in props) {
+            // Only used when the User model is instantiated from a token payload
+            // Set a `twoFaSecret` property (boolean) on the `secrets` property so that the `twoFaEnabled` getter returns `true`
+            this.secrets = {
+                twoFaSecret: (0, _shared.popFromObject)('twoFaEnabled', props)
+            };
         }
-        return _nodepath.default.join(_configenvironment.configuration.applications.files.usersPath, userLogin);
-    }
-    static getFilesPath(userLogin) {
-        return _nodepath.default.join(UserModel.getHomePath(userLogin), _spaces.SPACE_REPOSITORY.FILES);
-    }
-    static getTrashPath(userLogin) {
-        return _nodepath.default.join(UserModel.getHomePath(userLogin), _spaces.SPACE_REPOSITORY.TRASH);
     }
-    static getTasksPath(userLogin, isGuest = false, isLink = false) {
-        return _nodepath.default.join(UserModel.getHomePath(userLogin, isGuest, isLink), _user.USER_PATH.TMP, _user.USER_PATH.TASKS);
+    setProfile() {
+        if (this.isLink) {
+            this.login = `Link (${this.id})`;
+            this.email = 'guest-link@sync-in';
+        }
     }
-    static getRepositoryPath(userLogin, inTrash = false) {
-        if (inTrash) return UserModel.getTrashPath(userLogin);
-        return UserModel.getFilesPath(userLogin);
+    setApplications() {
+        if (this.isGuest) {
+            // dynamically set the permissions
+            this.applications = Object.values(_user.GUEST_PERMISSION);
+        } else if (this.permissions) {
+            this.applications = this.permissions.split(_user.USER_PERMS_SEP);
+        }
+        delete this.permissions;
     }
     constructor(props, removePassword = true){
         // permissions as a list
         this.applications = [];
+        // User model can be instantiated with data from the database or from a token payload
+        this.initSecrets(props);
         Object.assign(this, props);
         if (removePassword) {
             // always remove the password field from model for obvious security reasons
@@ -187,6 +207,10 @@ _ts_decorate([
     (0, _classtransformer.Exclude)(),
     _ts_metadata("design:type", String)
 ], UserModel.prototype, "password", void 0);
+_ts_decorate([
+    (0, _classtransformer.Exclude)(),
+    _ts_metadata("design:type", typeof UserSecrets === "undefined" ? Object : UserSecrets)
+], UserModel.prototype, "secrets", void 0);
 _ts_decorate([
     (0, _classtransformer.Exclude)(),
     _ts_metadata("design:type", Number)
@@ -222,5 +246,15 @@ _ts_decorate([
     _ts_metadata("design:type", Boolean),
     _ts_metadata("design:paramtypes", [])
 ], UserModel.prototype, "quotaIsExceeded", null);
+_ts_decorate([
+    (0, _classtransformer.Expose)(),
+    _ts_metadata("design:type", Boolean),
+    _ts_metadata("design:paramtypes", [])
+], UserModel.prototype, "twoFaEnabled", null);
+_ts_decorate([
+    (0, _classtransformer.Expose)(),
+    _ts_metadata("design:type", Number),
+    _ts_metadata("design:paramtypes", [])
+], UserModel.prototype, "appPasswords", null);
 //# sourceMappingURL=user.model.js.map

package/server/applications/users/models/user.model.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../../backend/src/applications/users/models/user.model.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n /\n\nimport { Exclude, Expose } from 'class-transformer'\nimport fs from 'node:fs/promises'\nimport path from 'node:path'\nimport { configuration } from '../../../configuration/config.environment'\nimport { SPACE_REPOSITORY } from '../../spaces/constants/spaces'\nimport { GUEST_PERMISSION, USER_PATH, USER_PERMISSION, USER_PERMS_SEP, USER_ROLE } from '../constants/user'\nimport type { Owner } from '../interfaces/owner.interface'\nimport type { User } from '../schemas/user.interface'\n\nexport class UserModel implements User {\n id: number\n login: string\n email: string\n firstName: string\n lastName: string\n role: number\n language: string\n notification: number\n onlineStatus: number\n permissions: string\n storageUsage: number\n storageQuota: number\n isActive: boolean\n passwordAttempts: number\n currentIp: string\n lastIp: string\n currentAccess: Date\n lastAccess: Date\n createdAt: Date\n // exclusions\n @Exclude()\n password: string\n @Exclude()\n // only used on backend\n impersonatedFromId?: number\n impersonatedClientId?: string\n // used for desktop\|cmd app\n clientId?: string\n\n // outside db schema\n fullName: string\n impersonated?: boolean\n avatarBase64?: string\n // permissions as a list\n applications: string[] = []\n private _homePath: string\n private _filesPath: string\n private _trashPath: string\n private _tmpPath: string\n private _tasksPath: string\n\n @Exclude({ toPlainOnly: true })\n exp?: number // refresh token expiration needed to refresh\n\n constructor(props: Partial<User> & { exp?: number }, removePassword = true) {\n Object.assign(this, props)\n if (removePassword) {\n // always remove the password field from model for obvious security reasons\n // do not remove it from `props` to not mutate the object\n this.removePassword()\n }\n this.setFullName()\n this.setApplications()\n this.setProfile()\n }\n\n toString(): string {\n return `User <${this.login}> (${this.id})*`\n }\n\n removePassword() {\n delete this.password\n }\n\n setFullName() {\n if (!this.fullName) {\n this.fullName = `${this.firstName \|\| ''} ${this.lastName \|\| ''}`.trim()\n }\n }\n\n @Expose()\n get isAdmin(): boolean {\n return this.role === USER_ROLE.ADMINISTRATOR\n }\n\n @Expose()\n get isUser(): boolean {\n return this.role === USER_ROLE.USER \|\| this.role === USER_ROLE.ADMINISTRATOR\n }\n\n @Expose()\n get isGuest(): boolean {\n return this.role === USER_ROLE.GUEST\n }\n\n @Expose()\n get isLink(): boolean {\n return this.role === USER_ROLE.LINK\n }\n\n @Expose()\n get quotaIsExceeded(): boolean {\n return this.storageQuota !== null && this.storageUsage >= this.storageQuota\n }\n\n get homePath(): string {\n if (this.isLink \|\| this.isGuest) {\n return (this._homePath \|\|= path.join(configuration.applications.files.tmpPath, this.isGuest ? 'guests' : 'links', this.login))\n }\n return (this._homePath \|\|= path.join(configuration.applications.files.usersPath, this.login))\n }\n\n get filesPath(): string {\n return (this._filesPath \|\|= path.join(this.homePath, SPACE_REPOSITORY.FILES))\n }\n\n get trashPath(): string {\n return (this._trashPath \|\|= path.join(this.homePath, SPACE_REPOSITORY.TRASH))\n }\n\n get tmpPath(): string {\n return (this._tmpPath \|\|= path.join(this.homePath, USER_PATH.TMP))\n }\n\n get tasksPath(): string {\n return (this._tasksPath \|\|= path.join(this.tmpPath, USER_PATH.TASKS))\n }\n\n async makePaths(): Promise<void> {\n if (this.isGuest \|\| this.isLink) {\n await fs.mkdir(this.tasksPath, { recursive: true })\n } else {\n for (const p of [this.filesPath, this.trashPath, this.tasksPath]) {\n await fs.mkdir(p, { recursive: true })\n }\n }\n }\n\n asOwner(): Owner {\n return { id: this.id, login: this.login, email: this.email, fullName: this.fullName }\n }\n\n getInitials(): string {\n let initials: { f: string; l: string }\n if (this.firstName) {\n if (this.lastName) {\n initials = { f: this.firstName.charAt(0), l: this.lastName.charAt(0) }\n }\n initials = { f: this.firstName.charAt(0), l: this.firstName.charAt(1) }\n } else {\n initials = { f: this.login.charAt(0), l: this.login.charAt(1) }\n }\n return `${initials.f.toUpperCase()}${initials.l.toLowerCase()}`\n }\n\n private setProfile() {\n if (this.isLink) {\n this.login = `Link (${this.id})`\n this.email = 'guest-link@sync-in'\n }\n }\n\n private setApplications() {\n if (this.isGuest) {\n // dynamically set the permissions\n this.applications = Object.values(GUEST_PERMISSION)\n } else if (this.permissions) {\n this.applications = this.permissions.split(USER_PERMS_SEP)\n }\n delete this.permissions\n }\n\n havePermission(permission: string): boolean {\n if (this.isAdmin) {\n return true\n }\n if (permission === USER_PERMISSION.PERSONAL_SPACE && this.isGuest) {\n return false\n }\n return this.applications.indexOf(permission) !== -1\n }\n\n haveRole(role: number): boolean {\n return this.role <= role\n }\n\n static getHomePath(userLogin: string, isGuest = false, isLink = false): string {\n if (isGuest \|\| isLink) {\n return path.join(configuration.applications.files.tmpPath, isGuest ? 'guests' : 'links', userLogin)\n }\n return path.join(configuration.applications.files.usersPath, userLogin)\n }\n\n static getFilesPath(userLogin: string): string {\n return path.join(UserModel.getHomePath(userLogin), SPACE_REPOSITORY.FILES)\n }\n\n static getTrashPath(userLogin: string): string {\n return path.join(UserModel.getHomePath(userLogin), SPACE_REPOSITORY.TRASH)\n }\n\n static getTasksPath(userLogin: string, isGuest = false, isLink = false): string {\n return path.join(UserModel.getHomePath(userLogin, isGuest, isLink), USER_PATH.TMP, USER_PATH.TASKS)\n }\n\n static getRepositoryPath(userLogin: string, inTrash = false): string {\n if (inTrash) return UserModel.getTrashPath(userLogin)\n return UserModel.getFilesPath(userLogin)\n }\n}\n"],"names":["UserModel","toString","login","id","removePassword","password","setFullName","fullName","firstName","lastName","trim","isAdmin","role","USER_ROLE","ADMINISTRATOR","isUser","USER","isGuest","GUEST","isLink","LINK","quotaIsExceeded","storageQuota","storageUsage","homePath","_homePath","path","join","configuration","applications","files","tmpPath","usersPath","filesPath","_filesPath","SPACE_REPOSITORY","FILES","trashPath","_trashPath","TRASH","_tmpPath","USER_PATH","TMP","tasksPath","_tasksPath","TASKS","makePaths","fs","mkdir","recursive","p","asOwner","email","getInitials","initials","f","charAt","l","toUpperCase","toLowerCase","setProfile","setApplications","Object","values","GUEST_PERMISSION","permissions","split","USER_PERMS_SEP","havePermission","permission","USER_PERMISSION","PERSONAL_SPACE","indexOf","haveRole","getHomePath","userLogin","getFilesPath","getTrashPath","getTasksPath","getRepositoryPath","inTrash","props","assign","toPlainOnly"],"mappings":"AAAA;;;;CAIC;;;;+BAWYA;;;eAAAA;;;kCATmB;iEACjB;iEACE;mCACa;wBACG;sBACuD;;;;;;;;;;;;;;;AAIjF,IAAA,AAAMA,YAAN,MAAMA;IAyDXC,WAAmB;QACjB,OAAO,CAAC,OAAO,EAAE,IAAI,CAACC,KAAK,CAAC,GAAG,EAAE,IAAI,CAACC,EAAE,CAAC,EAAE,CAAC;IAC9C;IAEAC,iBAAiB;QACf,OAAO,IAAI,CAACC,QAAQ;IACtB;IAEAC,cAAc;QACZ,IAAI,CAAC,IAAI,CAACC,QAAQ,EAAE;YAClB,IAAI,CAACA,QAAQ,GAAG,GAAG,IAAI,CAACC,SAAS,IAAI,GAAG,CAAC,EAAE,IAAI,CAACC,QAAQ,IAAI,IAAI,CAACC,IAAI;QACvE;IACF;IAEA,IACIC,UAAmB;QACrB,OAAO,IAAI,CAACC,IAAI,KAAKC,eAAS,CAACC,aAAa;IAC9C;IAEA,IACIC,SAAkB;QACpB,OAAO,IAAI,CAACH,IAAI,KAAKC,eAAS,CAACG,IAAI,IAAI,IAAI,CAACJ,IAAI,KAAKC,eAAS,CAACC,aAAa;IAC9E;IAEA,IACIG,UAAmB;QACrB,OAAO,IAAI,CAACL,IAAI,KAAKC,eAAS,CAACK,KAAK;IACtC;IAEA,IACIC,SAAkB;QACpB,OAAO,IAAI,CAACP,IAAI,KAAKC,eAAS,CAACO,IAAI;IACrC;IAEA,IACIC,kBAA2B;QAC7B,OAAO,IAAI,CAACC,YAAY,KAAK,QAAQ,IAAI,CAACC,YAAY,IAAI,IAAI,CAACD,YAAY;IAC7E;IAEA,IAAIE,WAAmB;QACrB,IAAI,IAAI,CAACL,MAAM,IAAI,IAAI,CAACF,OAAO,EAAE;YAC/B,OAAQ,IAAI,CAACQ,SAAS,KAAKC,iBAAI,CAACC,IAAI,CAACC,gCAAa,CAACC,YAAY,CAACC,KAAK,CAACC,OAAO,EAAE,IAAI,CAACd,OAAO,GAAG,WAAW,SAAS,IAAI,CAACf,KAAK;QAC9H;QACA,OAAQ,IAAI,CAACuB,SAAS,KAAKC,iBAAI,CAACC,IAAI,CAACC,gCAAa,CAACC,YAAY,CAACC,KAAK,CAACE,SAAS,EAAE,IAAI,CAAC9B,KAAK;IAC7F;IAEA,IAAI+B,YAAoB;QACtB,OAAQ,IAAI,CAACC,UAAU,KAAKR,iBAAI,CAACC,IAAI,CAAC,IAAI,CAACH,QAAQ,EAAEW,wBAAgB,CAACC,KAAK;IAC7E;IAEA,IAAIC,YAAoB;QACtB,OAAQ,IAAI,CAACC,UAAU,KAAKZ,iBAAI,CAACC,IAAI,CAAC,IAAI,CAACH,QAAQ,EAAEW,wBAAgB,CAACI,KAAK;IAC7E;IAEA,IAAIR,UAAkB;QACpB,OAAQ,IAAI,CAACS,QAAQ,KAAKd,iBAAI,CAACC,IAAI,CAAC,IAAI,CAACH,QAAQ,EAAEiB,eAAS,CAACC,GAAG;IAClE;IAEA,IAAIC,YAAoB;QACtB,OAAQ,IAAI,CAACC,UAAU,KAAKlB,iBAAI,CAACC,IAAI,CAAC,IAAI,CAACI,OAAO,EAAEU,eAAS,CAACI,KAAK;IACrE;IAEA,MAAMC,YAA2B;QAC/B,IAAI,IAAI,CAAC7B,OAAO,IAAI,IAAI,CAACE,MAAM,EAAE;YAC/B,MAAM4B,iBAAE,CAACC,KAAK,CAAC,IAAI,CAACL,SAAS,EAAE;gBAAEM,WAAW;YAAK;QACnD,OAAO;YACL,KAAK,MAAMC,KAAK;gBAAC,IAAI,CAACjB,SAAS;gBAAE,IAAI,CAACI,SAAS;gBAAE,IAAI,CAACM,SAAS;aAAC,CAAE;gBAChE,MAAMI,iBAAE,CAACC,KAAK,CAACE,GAAG;oBAAED,WAAW;gBAAK;YACtC;QACF;IACF;IAEAE,UAAiB;QACf,OAAO;YAAEhD,IAAI,IAAI,CAACA,EAAE;YAAED,OAAO,IAAI,CAACA,KAAK;YAAEkD,OAAO,IAAI,CAACA,KAAK;YAAE7C,UAAU,IAAI,CAACA,QAAQ;QAAC;IACtF;IAEA8C,cAAsB;QACpB,IAAIC;QACJ,IAAI,IAAI,CAAC9C,SAAS,EAAE;YAClB,IAAI,IAAI,CAACC,QAAQ,EAAE;gBACjB6C,WAAW;oBAAEC,GAAG,IAAI,CAAC/C,SAAS,CAACgD,MAAM,CAAC;oBAAIC,GAAG,IAAI,CAAChD,QAAQ,CAAC+C,MAAM,CAAC;gBAAG;YACvE;YACAF,WAAW;gBAAEC,GAAG,IAAI,CAAC/C,SAAS,CAACgD,MAAM,CAAC;gBAAIC,GAAG,IAAI,CAACjD,SAAS,CAACgD,MAAM,CAAC;YAAG;QACxE,OAAO;YACLF,WAAW;gBAAEC,GAAG,IAAI,CAACrD,KAAK,CAACsD,MAAM,CAAC;gBAAIC,GAAG,IAAI,CAACvD,KAAK,CAACsD,MAAM,CAAC;YAAG;QAChE;QACA,OAAO,GAAGF,SAASC,CAAC,CAACG,WAAW,KAAKJ,SAASG,CAAC,CAACE,WAAW,IAAI;IACjE;IAEQC,aAAa;QACnB,IAAI,IAAI,CAACzC,MAAM,EAAE;YACf,IAAI,CAACjB,KAAK,GAAG,CAAC,MAAM,EAAE,IAAI,CAACC,EAAE,CAAC,CAAC,CAAC;YAChC,IAAI,CAACiD,KAAK,GAAG;QACf;IACF;IAEQS,kBAAkB;QACxB,IAAI,IAAI,CAAC5C,OAAO,EAAE;YAChB,kCAAkC;YAClC,IAAI,CAACY,YAAY,GAAGiC,OAAOC,MAAM,CAACC,sBAAgB;QACpD,OAAO,IAAI,IAAI,CAACC,WAAW,EAAE;YAC3B,IAAI,CAACpC,YAAY,GAAG,IAAI,CAACoC,WAAW,CAACC,KAAK,CAACC,oBAAc;QAC3D;QACA,OAAO,IAAI,CAACF,WAAW;IACzB;IAEAG,eAAeC,UAAkB,EAAW;QAC1C,IAAI,IAAI,CAAC1D,OAAO,EAAE;YAChB,OAAO;QACT;QACA,IAAI0D,eAAeC,qBAAe,CAACC,cAAc,IAAI,IAAI,CAACtD,OAAO,EAAE;YACjE,OAAO;QACT;QACA,OAAO,IAAI,CAACY,YAAY,CAAC2C,OAAO,CAACH,gBAAgB,CAAC;IACpD;IAEAI,SAAS7D,IAAY,EAAW;QAC9B,OAAO,IAAI,CAACA,IAAI,IAAIA;IACtB;IAEA,OAAO8D,YAAYC,SAAiB,EAAE1D,UAAU,KAAK,EAAEE,SAAS,KAAK,EAAU;QAC7E,IAAIF,WAAWE,QAAQ;YACrB,OAAOO,iBAAI,CAACC,IAAI,CAACC,gCAAa,CAACC,YAAY,CAACC,KAAK,CAACC,OAAO,EAAEd,UAAU,WAAW,SAAS0D;QAC3F;QACA,OAAOjD,iBAAI,CAACC,IAAI,CAACC,gCAAa,CAACC,YAAY,CAACC,KAAK,CAACE,SAAS,EAAE2C;IAC/D;IAEA,OAAOC,aAAaD,SAAiB,EAAU;QAC7C,OAAOjD,iBAAI,CAACC,IAAI,CAAC3B,UAAU0E,WAAW,CAACC,YAAYxC,wBAAgB,CAACC,KAAK;IAC3E;IAEA,OAAOyC,aAAaF,SAAiB,EAAU;QAC7C,OAAOjD,iBAAI,CAACC,IAAI,CAAC3B,UAAU0E,WAAW,CAACC,YAAYxC,wBAAgB,CAACI,KAAK;IAC3E;IAEA,OAAOuC,aAAaH,SAAiB,EAAE1D,UAAU,KAAK,EAAEE,SAAS,KAAK,EAAU;QAC9E,OAAOO,iBAAI,CAACC,IAAI,CAAC3B,UAAU0E,WAAW,CAACC,WAAW1D,SAASE,SAASsB,eAAS,CAACC,GAAG,EAAED,eAAS,CAACI,KAAK;IACpG;IAEA,OAAOkC,kBAAkBJ,SAAiB,EAAEK,UAAU,KAAK,EAAU;QACnE,IAAIA,SAAS,OAAOhF,UAAU6E,YAAY,CAACF;QAC3C,OAAO3E,UAAU4E,YAAY,CAACD;IAChC;IA1JA,YAAYM,KAAuC,EAAE7E,iBAAiB,IAAI,CAAE;QAX5E,wBAAwB;aACxByB,eAAyB,EAAE;QAWzBiC,OAAOoB,MAAM,CAAC,IAAI,EAAED;QACpB,IAAI7E,gBAAgB;YAClB,2EAA2E;YAC3E,yDAAyD;YACzD,IAAI,CAACA,cAAc;QACrB;QACA,IAAI,CAACE,WAAW;QAChB,IAAI,CAACuD,eAAe;QACpB,IAAI,CAACD,UAAU;IACjB;AAiJF;;;;;;;;;;;QA9JauB,aAAa"}
1	+ {"version":3,"sources":["../../../../../backend/src/applications/users/models/user.model.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n /\n\nimport { Exclude, Expose } from 'class-transformer'\nimport fs from 'node:fs/promises'\nimport path from 'node:path'\nimport { popFromObject } from '../../../common/shared'\nimport { configuration } from '../../../configuration/config.environment'\nimport { SPACE_REPOSITORY } from '../../spaces/constants/spaces'\nimport { GUEST_PERMISSION, USER_PATH, USER_PERMISSION, USER_PERMS_SEP, USER_ROLE } from '../constants/user'\nimport type { Owner } from '../interfaces/owner.interface'\nimport type { UserSecrets } from '../interfaces/user-secrets.interface'\nimport type { User } from '../schemas/user.interface'\n\nexport class UserModel implements User {\n id: number\n login: string\n email: string\n firstName: string\n lastName: string\n role: number\n language: string\n isActive: boolean\n notification: number\n onlineStatus: number\n permissions: string\n storageUsage: number\n storageQuota: number\n passwordAttempts: number\n currentIp: string\n lastIp: string\n currentAccess: Date\n lastAccess: Date\n createdAt: Date\n // exclusions\n @Exclude()\n password: string\n @Exclude()\n secrets: UserSecrets\n @Exclude()\n // only used on backend\n impersonatedFromId?: number\n impersonatedClientId?: string\n // used for desktop\|cmd app\n clientId?: string\n\n // outside db schema\n fullName: string\n impersonated?: boolean\n avatarBase64?: string\n // permissions as a list\n applications: string[] = []\n @Exclude({ toPlainOnly: true })\n exp?: number // refresh token expiration needed to refresh\n\n constructor(props: Partial<User> & { exp?: number; twoFaEnabled?: boolean }, removePassword = true) {\n // User model can be instantiated with data from the database or from a token payload\n this.initSecrets(props)\n Object.assign(this, props)\n if (removePassword) {\n // always remove the password field from model for obvious security reasons\n // do not remove it from `props` to not mutate the object\n this.removePassword()\n }\n this.setFullName()\n this.setApplications()\n this.setProfile()\n }\n\n private _homePath: string\n\n get homePath(): string {\n if (this.isLink \|\| this.isGuest) {\n return (this._homePath \|\|= path.join(configuration.applications.files.tmpPath, this.isGuest ? 'guests' : 'links', this.login))\n }\n return (this._homePath \|\|= path.join(configuration.applications.files.usersPath, this.login))\n }\n\n private _filesPath: string\n\n get filesPath(): string {\n return (this._filesPath \|\|= path.join(this.homePath, SPACE_REPOSITORY.FILES))\n }\n\n private _trashPath: string\n\n get trashPath(): string {\n return (this._trashPath \|\|= path.join(this.homePath, SPACE_REPOSITORY.TRASH))\n }\n\n private _tmpPath: string\n\n get tmpPath(): string {\n return (this._tmpPath \|\|= path.join(this.homePath, USER_PATH.TMP))\n }\n\n private _tasksPath: string\n\n get tasksPath(): string {\n return (this._tasksPath \|\|= path.join(this.tmpPath, USER_PATH.TASKS))\n }\n\n @Expose()\n get isAdmin(): boolean {\n return this.role === USER_ROLE.ADMINISTRATOR\n }\n\n @Expose()\n get isUser(): boolean {\n return this.role === USER_ROLE.USER \|\| this.role === USER_ROLE.ADMINISTRATOR\n }\n\n @Expose()\n get isGuest(): boolean {\n return this.role === USER_ROLE.GUEST\n }\n\n @Expose()\n get isLink(): boolean {\n return this.role === USER_ROLE.LINK\n }\n\n @Expose()\n get quotaIsExceeded(): boolean {\n return this.storageQuota !== null && this.storageUsage >= this.storageQuota\n }\n\n @Expose()\n get twoFaEnabled(): boolean {\n return !!this.secrets?.twoFaSecret\n }\n\n @Expose()\n get appPasswords(): number {\n return this.secrets?.appPasswords?.length \|\| 0\n }\n\n static getHomePath(userLogin: string, isGuest = false, isLink = false): string {\n if (isGuest \|\| isLink) {\n return path.join(configuration.applications.files.tmpPath, isGuest ? 'guests' : 'links', userLogin)\n }\n return path.join(configuration.applications.files.usersPath, userLogin)\n }\n\n static getFilesPath(userLogin: string): string {\n return path.join(UserModel.getHomePath(userLogin), SPACE_REPOSITORY.FILES)\n }\n\n static getTrashPath(userLogin: string): string {\n return path.join(UserModel.getHomePath(userLogin), SPACE_REPOSITORY.TRASH)\n }\n\n static getTasksPath(userLogin: string, isGuest = false, isLink = false): string {\n return path.join(UserModel.getHomePath(userLogin, isGuest, isLink), USER_PATH.TMP, USER_PATH.TASKS)\n }\n\n static getRepositoryPath(userLogin: string, inTrash = false): string {\n if (inTrash) return UserModel.getTrashPath(userLogin)\n return UserModel.getFilesPath(userLogin)\n }\n\n toString(): string {\n return `User <${this.login}> (${this.id})*`\n }\n\n removePassword() {\n delete this.password\n }\n\n setFullName(force = false) {\n if (!this.fullName \|\| force) {\n this.fullName = `${this.firstName \|\| ''} ${this.lastName \|\| ''}`.trim()\n }\n }\n\n async makePaths(): Promise<void> {\n if (this.isGuest \|\| this.isLink) {\n await fs.mkdir(this.tasksPath, { recursive: true })\n } else {\n for (const p of [this.filesPath, this.trashPath, this.tasksPath]) {\n await fs.mkdir(p, { recursive: true })\n }\n }\n }\n\n asOwner(): Owner {\n return { id: this.id, login: this.login, email: this.email, fullName: this.fullName }\n }\n\n getInitials(): string {\n let initials: { f: string; l: string }\n if (this.firstName) {\n if (this.lastName) {\n initials = { f: this.firstName.charAt(0), l: this.lastName.charAt(0) }\n }\n initials = { f: this.firstName.charAt(0), l: this.firstName.charAt(1) }\n } else {\n initials = { f: this.login.charAt(0), l: this.login.charAt(1) }\n }\n return `${initials.f.toUpperCase()}${initials.l.toLowerCase()}`\n }\n\n havePermission(permission: string): boolean {\n if (this.isAdmin) {\n return true\n }\n if (permission === USER_PERMISSION.PERSONAL_SPACE && this.isGuest) {\n return false\n }\n return this.applications.indexOf(permission) !== -1\n }\n\n haveRole(role: number): boolean {\n return this.role <= role\n }\n\n private initSecrets(props: Partial<UserModel>) {\n // Remove the `twoFaEnabled` property to avoid conflicts with the current getter when using `plainToClass` with `class-validator`\n // The `props` variable may be empty when the class is instantiated using `plainToClass`\n if (props && 'twoFaEnabled' in props) {\n // Only used when the User model is instantiated from a token payload\n // Set a `twoFaSecret` property (boolean) on the `secrets` property so that the `twoFaEnabled` getter returns `true`\n this.secrets = { twoFaSecret: popFromObject('twoFaEnabled', props) }\n }\n }\n\n private setProfile() {\n if (this.isLink) {\n this.login = `Link (${this.id})`\n this.email = 'guest-link@sync-in'\n }\n }\n\n private setApplications() {\n if (this.isGuest) {\n // dynamically set the permissions\n this.applications = Object.values(GUEST_PERMISSION)\n } else if (this.permissions) {\n this.applications = this.permissions.split(USER_PERMS_SEP)\n }\n delete this.permissions\n }\n}\n"],"names":["UserModel","homePath","isLink","isGuest","_homePath","path","join","configuration","applications","files","tmpPath","login","usersPath","filesPath","_filesPath","SPACE_REPOSITORY","FILES","trashPath","_trashPath","TRASH","_tmpPath","USER_PATH","TMP","tasksPath","_tasksPath","TASKS","isAdmin","role","USER_ROLE","ADMINISTRATOR","isUser","USER","GUEST","LINK","quotaIsExceeded","storageQuota","storageUsage","twoFaEnabled","secrets","twoFaSecret","appPasswords","length","getHomePath","userLogin","getFilesPath","getTrashPath","getTasksPath","getRepositoryPath","inTrash","toString","id","removePassword","password","setFullName","force","fullName","firstName","lastName","trim","makePaths","fs","mkdir","recursive","p","asOwner","email","getInitials","initials","f","charAt","l","toUpperCase","toLowerCase","havePermission","permission","USER_PERMISSION","PERSONAL_SPACE","indexOf","haveRole","initSecrets","props","popFromObject","setProfile","setApplications","Object","values","GUEST_PERMISSION","permissions","split","USER_PERMS_SEP","assign","toPlainOnly"],"mappings":"AAAA;;;;CAIC;;;;+BAaYA;;;eAAAA;;;kCAXmB;iEACjB;iEACE;wBACa;mCACA;wBACG;sBACuD;;;;;;;;;;;;;;;AAKjF,IAAA,AAAMA,YAAN,MAAMA;IAyDX,IAAIC,WAAmB;QACrB,IAAI,IAAI,CAACC,MAAM,IAAI,IAAI,CAACC,OAAO,EAAE;YAC/B,OAAQ,IAAI,CAACC,SAAS,KAAKC,iBAAI,CAACC,IAAI,CAACC,gCAAa,CAACC,YAAY,CAACC,KAAK,CAACC,OAAO,EAAE,IAAI,CAACP,OAAO,GAAG,WAAW,SAAS,IAAI,CAACQ,KAAK;QAC9H;QACA,OAAQ,IAAI,CAACP,SAAS,KAAKC,iBAAI,CAACC,IAAI,CAACC,gCAAa,CAACC,YAAY,CAACC,KAAK,CAACG,SAAS,EAAE,IAAI,CAACD,KAAK;IAC7F;IAIA,IAAIE,YAAoB;QACtB,OAAQ,IAAI,CAACC,UAAU,KAAKT,iBAAI,CAACC,IAAI,CAAC,IAAI,CAACL,QAAQ,EAAEc,wBAAgB,CAACC,KAAK;IAC7E;IAIA,IAAIC,YAAoB;QACtB,OAAQ,IAAI,CAACC,UAAU,KAAKb,iBAAI,CAACC,IAAI,CAAC,IAAI,CAACL,QAAQ,EAAEc,wBAAgB,CAACI,KAAK;IAC7E;IAIA,IAAIT,UAAkB;QACpB,OAAQ,IAAI,CAACU,QAAQ,KAAKf,iBAAI,CAACC,IAAI,CAAC,IAAI,CAACL,QAAQ,EAAEoB,eAAS,CAACC,GAAG;IAClE;IAIA,IAAIC,YAAoB;QACtB,OAAQ,IAAI,CAACC,UAAU,KAAKnB,iBAAI,CAACC,IAAI,CAAC,IAAI,CAACI,OAAO,EAAEW,eAAS,CAACI,KAAK;IACrE;IAEA,IACIC,UAAmB;QACrB,OAAO,IAAI,CAACC,IAAI,KAAKC,eAAS,CAACC,aAAa;IAC9C;IAEA,IACIC,SAAkB;QACpB,OAAO,IAAI,CAACH,IAAI,KAAKC,eAAS,CAACG,IAAI,IAAI,IAAI,CAACJ,IAAI,KAAKC,eAAS,CAACC,aAAa;IAC9E;IAEA,IACI1B,UAAmB;QACrB,OAAO,IAAI,CAACwB,IAAI,KAAKC,eAAS,CAACI,KAAK;IACtC;IAEA,IACI9B,SAAkB;QACpB,OAAO,IAAI,CAACyB,IAAI,KAAKC,eAAS,CAACK,IAAI;IACrC;IAEA,IACIC,kBAA2B;QAC7B,OAAO,IAAI,CAACC,YAAY,KAAK,QAAQ,IAAI,CAACC,YAAY,IAAI,IAAI,CAACD,YAAY;IAC7E;IAEA,IACIE,eAAwB;QAC1B,OAAO,CAAC,CAAC,IAAI,CAACC,OAAO,EAAEC;IACzB;IAEA,IACIC,eAAuB;QACzB,OAAO,IAAI,CAACF,OAAO,EAAEE,cAAcC,UAAU;IAC/C;IAEA,OAAOC,YAAYC,SAAiB,EAAExC,UAAU,KAAK,EAAED,SAAS,KAAK,EAAU;QAC7E,IAAIC,WAAWD,QAAQ;YACrB,OAAOG,iBAAI,CAACC,IAAI,CAACC,gCAAa,CAACC,YAAY,CAACC,KAAK,CAACC,OAAO,EAAEP,UAAU,WAAW,SAASwC;QAC3F;QACA,OAAOtC,iBAAI,CAACC,IAAI,CAACC,gCAAa,CAACC,YAAY,CAACC,KAAK,CAACG,SAAS,EAAE+B;IAC/D;IAEA,OAAOC,aAAaD,SAAiB,EAAU;QAC7C,OAAOtC,iBAAI,CAACC,IAAI,CAACN,UAAU0C,WAAW,CAACC,YAAY5B,wBAAgB,CAACC,KAAK;IAC3E;IAEA,OAAO6B,aAAaF,SAAiB,EAAU;QAC7C,OAAOtC,iBAAI,CAACC,IAAI,CAACN,UAAU0C,WAAW,CAACC,YAAY5B,wBAAgB,CAACI,KAAK;IAC3E;IAEA,OAAO2B,aAAaH,SAAiB,EAAExC,UAAU,KAAK,EAAED,SAAS,KAAK,EAAU;QAC9E,OAAOG,iBAAI,CAACC,IAAI,CAACN,UAAU0C,WAAW,CAACC,WAAWxC,SAASD,SAASmB,eAAS,CAACC,GAAG,EAAED,eAAS,CAACI,KAAK;IACpG;IAEA,OAAOsB,kBAAkBJ,SAAiB,EAAEK,UAAU,KAAK,EAAU;QACnE,IAAIA,SAAS,OAAOhD,UAAU6C,YAAY,CAACF;QAC3C,OAAO3C,UAAU4C,YAAY,CAACD;IAChC;IAEAM,WAAmB;QACjB,OAAO,CAAC,OAAO,EAAE,IAAI,CAACtC,KAAK,CAAC,GAAG,EAAE,IAAI,CAACuC,EAAE,CAAC,EAAE,CAAC;IAC9C;IAEAC,iBAAiB;QACf,OAAO,IAAI,CAACC,QAAQ;IACtB;IAEAC,YAAYC,QAAQ,KAAK,EAAE;QACzB,IAAI,CAAC,IAAI,CAACC,QAAQ,IAAID,OAAO;YAC3B,IAAI,CAACC,QAAQ,GAAG,GAAG,IAAI,CAACC,SAAS,IAAI,GAAG,CAAC,EAAE,IAAI,CAACC,QAAQ,IAAI,IAAI,CAACC,IAAI;QACvE;IACF;IAEA,MAAMC,YAA2B;QAC/B,IAAI,IAAI,CAACxD,OAAO,IAAI,IAAI,CAACD,MAAM,EAAE;YAC/B,MAAM0D,iBAAE,CAACC,KAAK,CAAC,IAAI,CAACtC,SAAS,EAAE;gBAAEuC,WAAW;YAAK;QACnD,OAAO;YACL,KAAK,MAAMC,KAAK;gBAAC,IAAI,CAAClD,SAAS;gBAAE,IAAI,CAACI,SAAS;gBAAE,IAAI,CAACM,SAAS;aAAC,CAAE;gBAChE,MAAMqC,iBAAE,CAACC,KAAK,CAACE,GAAG;oBAAED,WAAW;gBAAK;YACtC;QACF;IACF;IAEAE,UAAiB;QACf,OAAO;YAAEd,IAAI,IAAI,CAACA,EAAE;YAAEvC,OAAO,IAAI,CAACA,KAAK;YAAEsD,OAAO,IAAI,CAACA,KAAK;YAAEV,UAAU,IAAI,CAACA,QAAQ;QAAC;IACtF;IAEAW,cAAsB;QACpB,IAAIC;QACJ,IAAI,IAAI,CAACX,SAAS,EAAE;YAClB,IAAI,IAAI,CAACC,QAAQ,EAAE;gBACjBU,WAAW;oBAAEC,GAAG,IAAI,CAACZ,SAAS,CAACa,MAAM,CAAC;oBAAIC,GAAG,IAAI,CAACb,QAAQ,CAACY,MAAM,CAAC;gBAAG;YACvE;YACAF,WAAW;gBAAEC,GAAG,IAAI,CAACZ,SAAS,CAACa,MAAM,CAAC;gBAAIC,GAAG,IAAI,CAACd,SAAS,CAACa,MAAM,CAAC;YAAG;QACxE,OAAO;YACLF,WAAW;gBAAEC,GAAG,IAAI,CAACzD,KAAK,CAAC0D,MAAM,CAAC;gBAAIC,GAAG,IAAI,CAAC3D,KAAK,CAAC0D,MAAM,CAAC;YAAG;QAChE;QACA,OAAO,GAAGF,SAASC,CAAC,CAACG,WAAW,KAAKJ,SAASG,CAAC,CAACE,WAAW,IAAI;IACjE;IAEAC,eAAeC,UAAkB,EAAW;QAC1C,IAAI,IAAI,CAAChD,OAAO,EAAE;YAChB,OAAO;QACT;QACA,IAAIgD,eAAeC,qBAAe,CAACC,cAAc,IAAI,IAAI,CAACzE,OAAO,EAAE;YACjE,OAAO;QACT;QACA,OAAO,IAAI,CAACK,YAAY,CAACqE,OAAO,CAACH,gBAAgB,CAAC;IACpD;IAEAI,SAASnD,IAAY,EAAW;QAC9B,OAAO,IAAI,CAACA,IAAI,IAAIA;IACtB;IAEQoD,YAAYC,KAAyB,EAAE;QAC7C,iIAAiI;QACjI,wFAAwF;QACxF,IAAIA,SAAS,kBAAkBA,OAAO;YACpC,qEAAqE;YACrE,oHAAoH;YACpH,IAAI,CAAC1C,OAAO,GAAG;gBAAEC,aAAa0C,IAAAA,qBAAa,EAAC,gBAAgBD;YAAO;QACrE;IACF;IAEQE,aAAa;QACnB,IAAI,IAAI,CAAChF,MAAM,EAAE;YACf,IAAI,CAACS,KAAK,GAAG,CAAC,MAAM,EAAE,IAAI,CAACuC,EAAE,CAAC,CAAC,CAAC;YAChC,IAAI,CAACe,KAAK,GAAG;QACf;IACF;IAEQkB,kBAAkB;QACxB,IAAI,IAAI,CAAChF,OAAO,EAAE;YAChB,kCAAkC;YAClC,IAAI,CAACK,YAAY,GAAG4E,OAAOC,MAAM,CAACC,sBAAgB;QACpD,OAAO,IAAI,IAAI,CAACC,WAAW,EAAE;YAC3B,IAAI,CAAC/E,YAAY,GAAG,IAAI,CAAC+E,WAAW,CAACC,KAAK,CAACC,oBAAc;QAC3D;QACA,OAAO,IAAI,CAACF,WAAW;IACzB;IA1LA,YAAYP,KAA+D,EAAE7B,iBAAiB,IAAI,CAAE;QALpG,wBAAwB;aACxB3C,eAAyB,EAAE;QAKzB,qFAAqF;QACrF,IAAI,CAACuE,WAAW,CAACC;QACjBI,OAAOM,MAAM,CAAC,IAAI,EAAEV;QACpB,IAAI7B,gBAAgB;YAClB,2EAA2E;YAC3E,yDAAyD;YACzD,IAAI,CAACA,cAAc;QACrB;QACA,IAAI,CAACE,WAAW;QAChB,IAAI,CAAC8B,eAAe;QACpB,IAAI,CAACD,UAAU;IACjB;AA+KF;;;;;;;;;;;;;;;QA9LaS,aAAa"}

package/server/applications/users/schemas/user.interface.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../../backend/src/applications/users/schemas/user.interface.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport type { users } from './users.schema'\n\ntype UserSchema = typeof users.$inferSelect\n\nexport class User implements UserSchema {\n id: number\n email: string\n login: string\n firstName: string\n lastName: string\n password: string\n role: number\n isActive: boolean\n language: string\n permissions: string\n storageUsage: number\n storageQuota: number\n notification: number\n onlineStatus: number\n passwordAttempts: number\n currentIp: string\n lastIp: string\n currentAccess: Date\n lastAccess: Date\n createdAt: Date\n}\n"],"names":["User"],"mappings":"AAAA;;;;CAIC;;;;+~~BAMYA~~;;;eAAAA;;;AAAN,IAAA,AAAMA,OAAN,MAAMA;~~AAqBb~~"}
1	+ {"version":3,"sources":["../../../../../backend/src/applications/users/schemas/user.interface.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n */\n\nimport type { UserSecrets } from '../interfaces/user-secrets.interface'\nimport type { users } from './users.schema'\n\ntype UserSchema = typeof users.$inferSelect\n\nexport class User implements UserSchema {\n id: number\n email: string\n login: string\n firstName: string\n lastName: string\n password: string\n role: number\n isActive: boolean\n secrets: UserSecrets\n language: string\n permissions: string\n storageUsage: number\n storageQuota: number\n notification: number\n onlineStatus: number\n passwordAttempts: number\n currentIp: string\n lastIp: string\n currentAccess: Date\n lastAccess: Date\n createdAt: Date\n}\n"],"names":["User"],"mappings":"AAAA;;;;CAIC;;;;+BAOYA;;;eAAAA;;;AAAN,IAAA,AAAMA,OAAN,MAAMA;AAsBb"}

package/server/applications/users/schemas/users.schema.js CHANGED Viewed

@@ -22,6 +22,7 @@ _export(exports, {
 });
 const _drizzleorm = require("drizzle-orm");
 const _mysqlcore = require("drizzle-orm/mysql-core");
+const _columns = require("../../../infrastructure/database/columns");
 const users = (0, _mysqlcore.mysqlTable)('users', {
     id: (0, _mysqlcore.bigint)('id', {
         mode: 'number',
@@ -49,6 +50,7 @@ const users = (0, _mysqlcore.mysqlTable)('users', {
         unsigned: true
     }).default(1).notNull(),
     isActive: (0, _mysqlcore.boolean)('isActive').default(true).notNull(),
+    secrets: (0, _columns.jsonColumn)()('secrets'),
     language: (0, _mysqlcore.char)('language', {
         length: 2
     }),

package/server/applications/users/schemas/users.schema.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"sources":["../../../../../backend/src/applications/users/schemas/users.schema.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n /\n\nimport { SQL, sql } from 'drizzle-orm'\nimport { bigint, boolean, char, datetime, index, mysqlTable, tinyint, uniqueIndex, varchar } from 'drizzle-orm/mysql-core'\n\n/\n role:\n 0: administrator\n 1: user\n 2: guest\n 3: link\n notification:\n 0: application\n 1: application + mail\n onlineStatus:\n 0: available\n 1: busy\n 2: absent\n 3: offline\n storageQuota:\n 0 : no storage\n null : unlimited\n other: limited to value\n*/\n\nexport const users = mysqlTable(\n 'users',\n {\n id: bigint('id', { mode: 'number', unsigned: true }).autoincrement().primaryKey(),\n email: varchar('email', { length: 255 }).notNull(),\n login: varchar('login', { length: 255 }).notNull(),\n firstName: varchar('firstName', { length: 255 }),\n lastName: varchar('lastName', { length: 255 }),\n password: varchar('password', { length: 255 }).notNull(),\n passwordAttempts: tinyint('passwordAttempts', { unsigned: true }).default(0).notNull(),\n role: tinyint('role', { unsigned: true }).default(1).notNull(),\n isActive: boolean('isActive').default(true).notNull(),\n language: char('language', { length: 2 }),\n permissions: varchar('permissions', { length: 255 }).default('').notNull(),\n storageUsage: bigint('storageUsage', { mode: 'number', unsigned: true }).default(0),\n storageQuota: bigint('storageQuota', { mode: 'number', unsigned: true }),\n notification: tinyint('notification', { unsigned: true }).default(1).notNull(),\n onlineStatus: tinyint('onlineStatus', { unsigned: true }).default(0).notNull(),\n currentIp: varchar('currentIp', { length: 45 }),\n lastIp: varchar('lastIp', { length: 45 }),\n currentAccess: datetime('currentAccess', { mode: 'date' }),\n lastAccess: datetime('lastAccess', { mode: 'date' }),\n createdAt: datetime('createdAt', { mode: 'date' })\n .default(sql`CURRENT_TIMESTAMP`)\n .notNull()\n },\n (table) => [uniqueIndex('email_idx').on(table.email), uniqueIndex('login_idx').on(table.login), index('role_idx').on(table.role)]\n)\n\nexport const userFullNameSQL = (user: any): SQL<string> => sql`TRIM(CONCAT(${user.firstName}, ' ', ${user.lastName}))`\n"],"names":["userFullNameSQL","users","mysqlTable","id","bigint","mode","unsigned","autoincrement","primaryKey","email","varchar","length","notNull","login","firstName","lastName","password","passwordAttempts","tinyint","default","role","isActive","boolean","language","char","permissions","storageUsage","storageQuota","notification","onlineStatus","currentIp","lastIp","currentAccess","datetime","lastAccess","createdAt","sql","table","uniqueIndex","on","index","user"],"mappings":"AAAA;;;;CAIC;;;;;;;;;;;~~QAsDYA~~;eAAAA;;~~QA7BAC~~;eAAAA;;;~~4BAvBY~~;2BACyE;~~AAsB3F~~,MAAMA,QAAQC,IAAAA,qBAAU,EAC7B,SACA;IACEC,IAAIC,IAAAA,iBAAM,EAAC,MAAM;QAAEC,MAAM;QAAUC,UAAU;IAAK,GAAGC,aAAa,GAAGC,UAAU;IAC/EC,OAAOC,IAAAA,kBAAO,EAAC,SAAS;QAAEC,QAAQ;IAAI,GAAGC,OAAO;IAChDC,OAAOH,IAAAA,kBAAO,EAAC,SAAS;QAAEC,QAAQ;IAAI,GAAGC,OAAO;IAChDE,WAAWJ,IAAAA,kBAAO,EAAC,aAAa;QAAEC,QAAQ;IAAI;IAC9CI,UAAUL,IAAAA,kBAAO,EAAC,YAAY;QAAEC,QAAQ;IAAI;IAC5CK,UAAUN,IAAAA,kBAAO,EAAC,YAAY;QAAEC,QAAQ;IAAI,GAAGC,OAAO;IACtDK,kBAAkBC,IAAAA,kBAAO,EAAC,oBAAoB;QAAEZ,UAAU;IAAK,GAAGa,OAAO,CAAC,GAAGP,OAAO;IACpFQ,MAAMF,IAAAA,kBAAO,EAAC,QAAQ;QAAEZ,UAAU;IAAK,GAAGa,OAAO,CAAC,GAAGP,OAAO;IAC5DS,UAAUC,IAAAA,kBAAO,EAAC,YAAYH,OAAO,CAAC,MAAMP,OAAO;IACnDW,UAAUC,IAAAA,eAAI,EAAC,YAAY;~~QAAEb~~,QAAQ;IAAE;~~IACvCc~~,~~aAAaf~~,IAAAA,kBAAO,EAAC,eAAe;QAAEC,QAAQ;IAAI,GAAGQ,OAAO,CAAC,IAAIP,OAAO;~~IACxEc~~,~~cAActB~~,IAAAA,iBAAM,EAAC,gBAAgB;QAAEC,MAAM;QAAUC,UAAU;IAAK,GAAGa,OAAO,CAAC;~~IACjFQ~~,~~cAAcvB~~,IAAAA,iBAAM,EAAC,gBAAgB;QAAEC,MAAM;QAAUC,UAAU;IAAK;~~IACtEsB~~,~~cAAcV~~,IAAAA,kBAAO,EAAC,gBAAgB;QAAEZ,UAAU;IAAK,GAAGa,OAAO,CAAC,GAAGP,OAAO;~~IAC5EiB~~,~~cAAcX~~,IAAAA,kBAAO,EAAC,gBAAgB;QAAEZ,UAAU;IAAK,GAAGa,OAAO,CAAC,GAAGP,OAAO;~~IAC5EkB~~,~~WAAWpB~~,IAAAA,kBAAO,EAAC,aAAa;QAAEC,QAAQ;IAAG;~~IAC7CoB~~,~~QAAQrB~~,IAAAA,kBAAO,EAAC,UAAU;QAAEC,QAAQ;IAAG;~~IACvCqB~~,eAAeC,IAAAA,mBAAQ,EAAC,iBAAiB;~~QAAE5B~~,MAAM;IAAO;~~IACxD6B~~,YAAYD,IAAAA,mBAAQ,EAAC,cAAc;~~QAAE5B~~,MAAM;IAAO;~~IAClD8B~~,WAAWF,IAAAA,mBAAQ,EAAC,aAAa;~~QAAE5B~~,MAAM;IAAO,GAC7Cc,OAAO,~~CAACiB~~,IAAAA,eAAG,CAAA,CAAC,iBAAiB,CAAC,~~EAC9BxB~~,OAAO;AACZ,GACA,~~CAACyB~~,QAAU;QAACC,IAAAA,sBAAW,EAAC,aAAaC,EAAE,CAACF,~~MAAM5B~~,KAAK;~~QAAG6B~~,IAAAA,sBAAW,EAAC,aAAaC,EAAE,CAACF,~~MAAMxB~~,KAAK;~~QAAG2B~~,IAAAA,gBAAK,EAAC,YAAYD,EAAE,CAACF,~~MAAMjB~~,IAAI;KAAE;AAG5H,MAAMpB,kBAAkB,~~CAACyC~~,OAA2BL,IAAAA,eAAG,CAAA,CAAC,YAAY,EAAEK,~~KAAK3B~~,SAAS,CAAC,OAAO,~~EAAE2B~~,~~KAAK1B~~,QAAQ,CAAC,EAAE,CAAC"}
1	+ {"version":3,"sources":["../../../../../backend/src/applications/users/schemas/users.schema.ts"],"sourcesContent":["/\n Copyright (C) 2012-2025 Johan Legrand <johan.legrand@sync-in.com>\n * This file is part of Sync-in \| The open source file sync and share solution\n * See the LICENSE file for licensing details\n /\n\nimport { SQL, sql } from 'drizzle-orm'\nimport { bigint, boolean, char, datetime, index, mysqlTable, tinyint, uniqueIndex, varchar } from 'drizzle-orm/mysql-core'\nimport { jsonColumn } from '../../../infrastructure/database/columns'\nimport { UserSecrets } from '../interfaces/user-secrets.interface'\n\n/\n role:\n 0: administrator\n 1: user\n 2: guest\n 3: link\n notification:\n 0: application\n 1: application + mail\n onlineStatus:\n 0: available\n 1: busy\n 2: absent\n 3: offline\n storageQuota:\n 0 : no storage\n null : unlimited\n other: limited to value\n*/\n\nexport const users = mysqlTable(\n 'users',\n {\n id: bigint('id', { mode: 'number', unsigned: true }).autoincrement().primaryKey(),\n email: varchar('email', { length: 255 }).notNull(),\n login: varchar('login', { length: 255 }).notNull(),\n firstName: varchar('firstName', { length: 255 }),\n lastName: varchar('lastName', { length: 255 }),\n password: varchar('password', { length: 255 }).notNull(),\n passwordAttempts: tinyint('passwordAttempts', { unsigned: true }).default(0).notNull(),\n role: tinyint('role', { unsigned: true }).default(1).notNull(),\n isActive: boolean('isActive').default(true).notNull(),\n secrets: jsonColumn<UserSecrets>()('secrets'),\n language: char('language', { length: 2 }),\n permissions: varchar('permissions', { length: 255 }).default('').notNull(),\n storageUsage: bigint('storageUsage', { mode: 'number', unsigned: true }).default(0),\n storageQuota: bigint('storageQuota', { mode: 'number', unsigned: true }),\n notification: tinyint('notification', { unsigned: true }).default(1).notNull(),\n onlineStatus: tinyint('onlineStatus', { unsigned: true }).default(0).notNull(),\n currentIp: varchar('currentIp', { length: 45 }),\n lastIp: varchar('lastIp', { length: 45 }),\n currentAccess: datetime('currentAccess', { mode: 'date' }),\n lastAccess: datetime('lastAccess', { mode: 'date' }),\n createdAt: datetime('createdAt', { mode: 'date' })\n .default(sql`CURRENT_TIMESTAMP`)\n .notNull()\n },\n (table) => [uniqueIndex('email_idx').on(table.email), uniqueIndex('login_idx').on(table.login), index('role_idx').on(table.role)]\n)\n\nexport const userFullNameSQL = (user: any): SQL<string> => sql`TRIM(CONCAT(${user.firstName}, ' ', ${user.lastName}))`\n"],"names":["userFullNameSQL","users","mysqlTable","id","bigint","mode","unsigned","autoincrement","primaryKey","email","varchar","length","notNull","login","firstName","lastName","password","passwordAttempts","tinyint","default","role","isActive","boolean","secrets","jsonColumn","language","char","permissions","storageUsage","storageQuota","notification","onlineStatus","currentIp","lastIp","currentAccess","datetime","lastAccess","createdAt","sql","table","uniqueIndex","on","index","user"],"mappings":"AAAA;;;;CAIC;;;;;;;;;;;QAyDYA;eAAAA;;QA9BAC;eAAAA;;;4BAzBY;2BACyE;yBACvE;AAuBpB,MAAMA,QAAQC,IAAAA,qBAAU,EAC7B,SACA;IACEC,IAAIC,IAAAA,iBAAM,EAAC,MAAM;QAAEC,MAAM;QAAUC,UAAU;IAAK,GAAGC,aAAa,GAAGC,UAAU;IAC/EC,OAAOC,IAAAA,kBAAO,EAAC,SAAS;QAAEC,QAAQ;IAAI,GAAGC,OAAO;IAChDC,OAAOH,IAAAA,kBAAO,EAAC,SAAS;QAAEC,QAAQ;IAAI,GAAGC,OAAO;IAChDE,WAAWJ,IAAAA,kBAAO,EAAC,aAAa;QAAEC,QAAQ;IAAI;IAC9CI,UAAUL,IAAAA,kBAAO,EAAC,YAAY;QAAEC,QAAQ;IAAI;IAC5CK,UAAUN,IAAAA,kBAAO,EAAC,YAAY;QAAEC,QAAQ;IAAI,GAAGC,OAAO;IACtDK,kBAAkBC,IAAAA,kBAAO,EAAC,oBAAoB;QAAEZ,UAAU;IAAK,GAAGa,OAAO,CAAC,GAAGP,OAAO;IACpFQ,MAAMF,IAAAA,kBAAO,EAAC,QAAQ;QAAEZ,UAAU;IAAK,GAAGa,OAAO,CAAC,GAAGP,OAAO;IAC5DS,UAAUC,IAAAA,kBAAO,EAAC,YAAYH,OAAO,CAAC,MAAMP,OAAO;IACnDW,SAASC,IAAAA,mBAAU,IAAgB;IACnCC,UAAUC,IAAAA,eAAI,EAAC,YAAY;QAAEf,QAAQ;IAAE;IACvCgB,aAAajB,IAAAA,kBAAO,EAAC,eAAe;QAAEC,QAAQ;IAAI,GAAGQ,OAAO,CAAC,IAAIP,OAAO;IACxEgB,cAAcxB,IAAAA,iBAAM,EAAC,gBAAgB;QAAEC,MAAM;QAAUC,UAAU;IAAK,GAAGa,OAAO,CAAC;IACjFU,cAAczB,IAAAA,iBAAM,EAAC,gBAAgB;QAAEC,MAAM;QAAUC,UAAU;IAAK;IACtEwB,cAAcZ,IAAAA,kBAAO,EAAC,gBAAgB;QAAEZ,UAAU;IAAK,GAAGa,OAAO,CAAC,GAAGP,OAAO;IAC5EmB,cAAcb,IAAAA,kBAAO,EAAC,gBAAgB;QAAEZ,UAAU;IAAK,GAAGa,OAAO,CAAC,GAAGP,OAAO;IAC5EoB,WAAWtB,IAAAA,kBAAO,EAAC,aAAa;QAAEC,QAAQ;IAAG;IAC7CsB,QAAQvB,IAAAA,kBAAO,EAAC,UAAU;QAAEC,QAAQ;IAAG;IACvCuB,eAAeC,IAAAA,mBAAQ,EAAC,iBAAiB;QAAE9B,MAAM;IAAO;IACxD+B,YAAYD,IAAAA,mBAAQ,EAAC,cAAc;QAAE9B,MAAM;IAAO;IAClDgC,WAAWF,IAAAA,mBAAQ,EAAC,aAAa;QAAE9B,MAAM;IAAO,GAC7Cc,OAAO,CAACmB,IAAAA,eAAG,CAAA,CAAC,iBAAiB,CAAC,EAC9B1B,OAAO;AACZ,GACA,CAAC2B,QAAU;QAACC,IAAAA,sBAAW,EAAC,aAAaC,EAAE,CAACF,MAAM9B,KAAK;QAAG+B,IAAAA,sBAAW,EAAC,aAAaC,EAAE,CAACF,MAAM1B,KAAK;QAAG6B,IAAAA,gBAAK,EAAC,YAAYD,EAAE,CAACF,MAAMnB,IAAI;KAAE;AAG5H,MAAMpB,kBAAkB,CAAC2C,OAA2BL,IAAAA,eAAG,CAAA,CAAC,YAAY,EAAEK,KAAK7B,SAAS,CAAC,OAAO,EAAE6B,KAAK5B,QAAQ,CAAC,EAAE,CAAC"}

package/server/applications/users/services/admin-users-manager.service.js CHANGED Viewed

@@ -168,14 +168,14 @@ let AdminUsersManager = class AdminUsersManager {
             throw new _common.HttpException('Unable to delete user', _common.HttpStatus.INTERNAL_SERVER_ERROR);
         }
     }
-    async deleteUserFromAdmin(admin, userId, adminDeleteUserDto) {
-        // check admin password
-        if (!await this.adminQueries.usersQueries.compareUserPassword(admin.id, adminDeleteUserDto.adminPassword)) {
-            throw new _common.HttpException('Bad password', _common.HttpStatus.BAD_REQUEST);
-        }
+    async deleteUserOrGuestFromAdmin(userId, deleteUserDto) {
         const userToDelete = this.checkUser(await this.adminQueries.usersQueries.from(userId));
+        if (userToDelete.isGuest !== deleteUserDto.isGuest) {
+            throw new _common.HttpException('User mismatch', _common.HttpStatus.BAD_REQUEST);
+        }
         await this.deleteUserOrGuest(userToDelete.id, userToDelete.login, {
-            deleteSpace: adminDeleteUserDto.deleteSpace
+            deleteSpace: deleteUserDto.isGuest ? true : deleteUserDto.deleteSpace,
+            isGuest: deleteUserDto.isGuest
         });
     }
     listGuests() {
@@ -196,14 +196,6 @@ let AdminUsersManager = class AdminUsersManager {
         }
         return this.updateUserOrGuest(guestId, updateGuestDto, _user.USER_ROLE.GUEST);
     }
-    async deleteGuest(guestId) {
-        // guest has no space but a temporary directory
-        const guest = await this.getGuest(guestId);
-        return this.deleteUserOrGuest(guest.id, guest.login, {
-            deleteSpace: true,
-            isGuest: true
-        });
-    }
     async browseGroups(name, type = _group.GROUP_TYPE.USER) {
         if (name) {
             const group = await this.adminQueries.groupFromName(name);
@@ -287,14 +279,10 @@ let AdminUsersManager = class AdminUsersManager {
     searchMembers(searchMembersDto) {
         return this.adminQueries.usersQueries.searchUsersOrGroups(searchMembersDto);
     }
-    async impersonateUser(admin, userId, adminPassword, res) {
-        // check admin password
+    async impersonateUser(admin, userId, res) {
         if (admin.id === userId) {
             throw new _common.HttpException('You are already logged in', _common.HttpStatus.BAD_REQUEST);
         }
-        if (!await this.adminQueries.usersQueries.compareUserPassword(admin.id, adminPassword.password)) {
-            throw new _common.HttpException('Bad password', _common.HttpStatus.BAD_REQUEST);
-        }
         const user = this.checkUser(await this.adminQueries.usersQueries.from(userId));
         user.impersonatedFromId = admin.id;
         user.impersonatedClientId = admin.clientId;