@tomei/sso 0.55.0 → 0.56.1

package/migrations/20250108091133-add-passcode-to-user-table.js

@@ -10,7 +10,7 @@ module.exports = {
       });
 
       await queryInterface.addColumn('sso_User', 'PasscodeUpdatedAt', {
-        type: Sequelize.STRING(255),
+        type: Sequelize.DATE,
       });
 
       await transaction.commit();

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@tomei/sso",
-  "version": "0.55.0",
+  "version": "0.56.1",
   "description": "Tomei SSO Package",
   "main": "dist/index.js",
   "scripts": {

package/src/components/login-user/user.ts

@@ -2868,4 +2868,44 @@ export class User extends UserBase {
       throw error;
     }
   }
+
+  async verifyPasscode(passcode: string) {
+    try {
+      // Return error if this._Userid is empty "User is not created yet."
+      if (!this.UserId) {
+        throw new ClassError(
+          'User',
+          'UserErrMsg0X',
+          'User is not created yet.',
+        );
+      }
+      // Return error if this._PasscodeHash is empty. "Passcode has not been set yet."
+      if (!this.PasscodeHash) {
+        throw new ClassError(
+          'User',
+          'UserErrMsg0X',
+          'Passcode has not been set yet.',
+          'verifyPasscode',
+        );
+      }
+      // Using the same password hash service during create passcode. Validate this._PasscodeHash with params.passcode. Return error if not matched. "Invalid passcode."
+      const passwordHashService = new PasswordHashService();
+      const isMatch = await passwordHashService.verify(
+        passcode,
+        this.PasscodeHash,
+      );
+
+      if (!isMatch) {
+        throw new ClassError(
+          'User',
+          'UserErrMsg0X',
+          'Invalid passcode.',
+          'verifyPasscode',
+          400,
+        );
+      }
+    } catch (error) {
+      throw error;
+    }
+  }
 }