mirror of
https://github.com/hedgedoc/hedgedoc.git
synced 2025-05-19 17:55:17 -04:00
3fe1bb0edf
To make the create method more consistent with the guidelines, this commit removes the default value from the `syncSource` parameter. An Identity will be created as sync source, when the associated account is created using an external provider. Signed-off-by: David Mehren <git@herrmehren.de>
94 lines
3.4 KiB
TypeScript
94 lines
3.4 KiB
TypeScript
/*
|
|
* SPDX-FileCopyrightText: 2021 The HedgeDoc developers (see AUTHORS file)
|
|
*
|
|
* SPDX-License-Identifier: AGPL-3.0-only
|
|
*/
|
|
import { Inject, Injectable } from '@nestjs/common';
|
|
import { InjectRepository } from '@nestjs/typeorm';
|
|
import { Repository } from 'typeorm';
|
|
|
|
import authConfiguration, { AuthConfig } from '../config/auth.config';
|
|
import { NotInDBError } from '../errors/errors';
|
|
import { ConsoleLoggerService } from '../logger/console-logger.service';
|
|
import { User } from '../users/user.entity';
|
|
import { checkPassword, hashPassword } from '../utils/password';
|
|
import { Identity } from './identity.entity';
|
|
import { ProviderType } from './provider-type.enum';
|
|
import { getFirstIdentityFromUser } from './utils';
|
|
|
|
@Injectable()
|
|
export class IdentityService {
|
|
constructor(
|
|
private readonly logger: ConsoleLoggerService,
|
|
@InjectRepository(Identity)
|
|
private identityRepository: Repository<Identity>,
|
|
@Inject(authConfiguration.KEY)
|
|
private authConfig: AuthConfig,
|
|
) {
|
|
this.logger.setContext(IdentityService.name);
|
|
}
|
|
|
|
/**
|
|
* @async
|
|
* Create a new identity for internal auth
|
|
* @param {User} user - the user the identity should be added to
|
|
* @param {string} password - the password the identity should have
|
|
* @return {Identity} the new local identity
|
|
*/
|
|
async createLocalIdentity(user: User, password: string): Promise<Identity> {
|
|
const identity = Identity.create(user, ProviderType.LOCAL, false);
|
|
identity.passwordHash = await hashPassword(password);
|
|
return await this.identityRepository.save(identity);
|
|
}
|
|
|
|
/**
|
|
* @async
|
|
* Update the internal password of the specified the user
|
|
* @param {User} user - the user, which identity should be updated
|
|
* @param {string} newPassword - the new password
|
|
* @throws {NotInDBError} the specified user has no internal identity
|
|
* @return {Identity} the changed identity
|
|
*/
|
|
async updateLocalPassword(
|
|
user: User,
|
|
newPassword: string,
|
|
): Promise<Identity> {
|
|
const internalIdentity: Identity | undefined =
|
|
await getFirstIdentityFromUser(user, ProviderType.LOCAL);
|
|
if (internalIdentity === undefined) {
|
|
this.logger.debug(
|
|
`The user with the username ${user.username} does not have a internal identity.`,
|
|
'updateLocalPassword',
|
|
);
|
|
throw new NotInDBError('This user has no internal identity.');
|
|
}
|
|
internalIdentity.passwordHash = await hashPassword(newPassword);
|
|
return await this.identityRepository.save(internalIdentity);
|
|
}
|
|
|
|
/**
|
|
* @async
|
|
* Login the user with their username and password
|
|
* @param {User} user - the user to use
|
|
* @param {string} password - the password to use
|
|
* @throws {NotInDBError} the specified user can't be logged in
|
|
*/
|
|
async loginWithLocalIdentity(user: User, password: string): Promise<void> {
|
|
const internalIdentity: Identity | undefined =
|
|
await getFirstIdentityFromUser(user, ProviderType.LOCAL);
|
|
if (internalIdentity === undefined) {
|
|
this.logger.debug(
|
|
`The user with the username ${user.username} does not have a internal identity.`,
|
|
'loginWithLocalIdentity',
|
|
);
|
|
throw new NotInDBError();
|
|
}
|
|
if (!(await checkPassword(password, internalIdentity.passwordHash ?? ''))) {
|
|
this.logger.debug(
|
|
`Password check for ${user.username} did not succeed.`,
|
|
'loginWithLocalIdentity',
|
|
);
|
|
throw new NotInDBError();
|
|
}
|
|
}
|
|
}
|