All about user login

Not runnable at the moment
2017-07-08 15:48:34 +02:00 · 2017-07-08 15:48:34 +02:00 · d79bbad575
commit d79bbad575
parent fbb8f5799e
49 changed files with 1554 additions and 686 deletions
--- a/routes/rest/account.js
+++ b/routes/rest/account.js
@ -0,0 +1,61 @@
+'use strict';
+
+const passport = require('../../lib/passport');
+const _ = require('../../lib/translate')._;
+const users = require('../../models/users');
+
+const router = require('../../lib/router-async').create();
+
+
+router.getAsync('/account', passport.loggedIn, async (req, res) => {
+    const user = await users.getById(req.user.id);
+    return res.json(user);
+});
+
+router.postAsync('/account', passport.loggedIn, passport.csrfProtection, async (req, res) => {
+    const data = req.body;
+    data.id = req.user.id;
+
+    await users.updateWithConsistencyCheck(req.body, true);
+    return res.json();
+});
+
+router.postAsync('/account-validate', passport.loggedIn, async (req, res) => {
+    const data = req.body;
+    data.id = req.user.id;
+
+    return res.json(await users.serverValidate(data, true));
+});
+
+router.getAsync('/access-token', passport.loggedIn, async (req, res) => {
+    const accessToken = await users.getAccessToken(req.user.id);
+    return res.json(accessToken);
+
+});
+
+router.postAsync('/access-token-reset', passport.loggedIn, passport.csrfProtection, async (req, res) => {
+    const accessToken = await users.resetAccessToken(req.user.id);
+    return res.json(accessToken);
+});
+
+
+router.post('/login', passport.restLogin);
+router.post('/logout', passport.restLogout); // TODO - this endpoint is currently not in use. It will become relevant once we switch to SPA
+
+router.postAsync('/password-reset-send', async (req, res) => {
+    await users.sendPasswordReset(req.body.username);
+    return res.json();
+});
+
+router.getAsync('/password-reset-validate', async (req, res) => {
+    const isValid = await users.isPasswordResetTokenValid(req.body.username, req.body.resetToken);
+    return res.json(isValid);
+})
+
+router.getAsync('/password-reset', async (req, res) => {
+    await users.resetPassword(req.body.username, req.body.resetToken, req.body.password);
+    return res.json();
+})
+
+
+module.exports = router;
--- a/routes/rest/namespaces.js
+++ b/routes/rest/namespaces.js
@ -0,0 +1,74 @@
+'use strict';
+
+const passport = require('../../lib/passport');
+const _ = require('../../lib/translate')._;
+const namespaces = require('../../models/namespaces');
+const interoperableErrors = require('../../shared/interoperable-errors');
+
+const router = require('../../lib/router-async').create();
+
+
+router.getAsync('/namespaces/:nsId', passport.loggedIn, async (req, res) => {
+    const ns = await namespaces.getById(req.params.nsId);
+
+    ns.hash = namespaces.hash(ns);
+
+    return res.json(ns);
+});
+
+router.postAsync('/namespaces', passport.loggedIn, passport.csrfProtection, async (req, res) => {
+    await namespaces.create(req.body);
+    return res.json();
+});
+
+router.putAsync('/namespaces/:nsId', passport.loggedIn, passport.csrfProtection, async (req, res) => {
+    const ns = req.body;
+    ns.id = parseInt(req.params.nsId);
+
+    await namespaces.updateWithConsistencyCheck(ns);
+    return res.json();
+});
+
+router.deleteAsync('/namespaces/:nsId', passport.loggedIn, passport.csrfProtection, async (req, res) => {
+    await namespaces.remove(req.params.nsId);
+    return res.json();
+});
+
+router.getAsync('/namespaces-tree', passport.loggedIn, async (req, res) => {
+    const entries = {};
+    let root; // Only the Root namespace is without a parent
+    const rows = await namespaces.list();
+
+    for (let row of rows) {
+        let entry;
+        if (!entries[row.id]) {
+            entry = {
+                children: []
+            };
+            entries[row.id] = entry;
+        } else {
+            entry = entries[row.id];
+        }
+
+        if (row.parent) {
+            if (!entries[row.parent]) {
+                entries[row.parent] = {
+                    children: []
+                };
+            }
+
+            entries[row.parent].children.push(entry);
+
+        } else {
+            root = entry;
+        }
+
+        entry.title = row.name;
+        entry.key = row.id;
+    }
+
+    return res.json(root);
+});
+
+
+module.exports = router;
--- a/routes/rest/users.js
+++ b/routes/rest/users.js
@ -0,0 +1,44 @@
+'use strict';
+
+const passport = require('../../lib/passport');
+const _ = require('../../lib/translate')._;
+const users = require('../../models/users');
+const interoperableErrors = require('../../shared/interoperable-errors');
+
+const router = require('../../lib/router-async').create();
+
+
+router.getAsync('/users/:userId', passport.loggedIn, async (req, res) => {
+    const user = await users.getById(req.params.userId);
+    user.hash = users.hash(user);
+    return res.json(user);
+});
+
+router.postAsync('/users', passport.loggedIn, passport.csrfProtection, async (req, res) => {
+    await users.create(req.body);
+    return res.json();
+});
+
+router.putAsync('/users/:userId', passport.loggedIn, passport.csrfProtection, async (req, res) => {
+    const user = req.body;
+    user.id = parseInt(req.params.userId);
+
+    await users.updateWithConsistencyCheck(user);
+    return res.json();
+});
+
+router.deleteAsync('/users/:userId', passport.loggedIn, passport.csrfProtection, async (req, res) => {
+    await users.remove(req.params.userId);
+    return res.json();
+});
+
+router.postAsync('/users-validate', passport.loggedIn, async (req, res) => {
+    return res.json(await users.serverValidate(req.body));
+});
+
+router.postAsync('/users-table', passport.loggedIn, async (req, res) => {
+    return res.json(await users.listDTAjax(req.body));
+});
+
+
+module.exports = router;