packages/core/api/user-manager.js

import "../types";
import http from "../utils/http";
import constants from "../utils/constants";
import TokenManager from "./token-manager";
import { EV, EVENTS, setUserPersonalizationBytes } from "../common";

const ENDPOINTS = {
  signup: "/users",
  token: "/connect/token",
  user: "/users",
  deleteUser: "/users/delete",
  patchUser: "/account",
  verifyUser: "/account/verify",
  revoke: "/connect/revocation",
  recoverAccount: "/account/recover",
  activateTrial: "/subscriptions/trial",
};

class UserManager {
  /**
   *
   * @param {import("../database/storage").default} storage
   * @param {import("../api/index").default} db
   */
  constructor(storage, db) {
    this._storage = storage;
    this._db = db;
    this.tokenManager = new TokenManager(storage);

    EV.subscribe(EVENTS.userUnauthorized, async (url) => {
      if (url.includes("/connect/token")) return;
      try {
        await this.tokenManager._refreshToken(true);
      } catch (e) {
        await this.logout(
          false,
          `Your token has been revoked. Error: ${e.message}.`
        );
      }
    });
  }

  async init() {
    const user = await this.getUser();
    if (!user) return;
    setUserPersonalizationBytes(user.salt);
  }

  async signup(email, password) {
    const hashedPassword = await this._storage.hash(password, email);
    await http.post(`${constants.API_HOST}${ENDPOINTS.signup}`, {
      email,
      password: hashedPassword,
      client_id: "notesnook",
    });
    EV.publish(EVENTS.userSignedUp);
    return await this._login({ email, password, hashedPassword });
  }

  async login(email, password) {
    return this._login({ email, password });
  }

  async mfaLogin(email, password, { code, method }) {
    return this._login({ email, password, code, method });
  }

  /**
   * @private
   */
  async _login({ email, password, hashedPassword, code, method }) {
    if (!hashedPassword) {
      hashedPassword = await this._storage.hash(password, email);
    }

    await this.tokenManager.saveToken(
      await http.post(`${constants.AUTH_HOST}${ENDPOINTS.token}`, {
        username: email,
        password: hashedPassword,
        grant_type: "password",
        scope: "notesnook.sync offline_access openid IdentityServerApi",
        client_id: "notesnook",
        "mfa:code": code,
        "mfa:method": method,
      })
    );

    const user = await this.fetchUser();
    setUserPersonalizationBytes(user.salt);
    await this._storage.deriveCryptoKey(`_uk_@${user.email}`, {
      password,
      salt: user.salt,
    });

    EV.publish(EVENTS.userLoggedIn, user);
  }

  async getSessions() {
    const token = await this.tokenManager.getAccessToken();
    if (!token) return;
    await http.get(`${constants.AUTH_HOST}/account/sessions`, token);
  }

  async clearSessions(all = false) {
    const token = await this.tokenManager.getToken();
    if (!token) return;
    const { access_token, refresh_token } = token;
    await http.post(
      `${constants.AUTH_HOST}/account/sessions/clear?all=${all}`,
      { refresh_token },
      access_token
    );
  }

  async activateTrial() {
    const token = await this.tokenManager.getAccessToken();
    if (!token) return false;
    await http.post(
      `${constants.SUBSCRIPTIONS_HOST}${ENDPOINTS.activateTrial}`,
      null,
      token
    );
    return true;
  }

  async logout(revoke = true, reason) {
    try {
      if (revoke) await this.tokenManager.revokeToken();
    } catch (e) {
      console.error(e);
    } finally {
      await this._storage.clear();
      EV.publish(EVENTS.userLoggedOut, reason);
      EV.publish(EVENTS.appRefreshRequested);
    }
  }

  setUser(user) {
    if (!user) return;
    return this._storage.write("user", user);
  }

  /**
   *
   * @returns {Promise<User>}
   */
  getUser() {
    return this._storage.read("user");
  }

  async updateUser(user) {
    if (!user) return;

    let token = await this.tokenManager.getAccessToken();
    await http.patch.json(
      `${constants.API_HOST}${ENDPOINTS.user}`,
      user,
      token
    );

    await this.setUser(user);
  }

  async deleteUser(password) {
    let token = await this.tokenManager.getAccessToken();
    if (!token) return;
    const user = await this.getUser();
    await http.post(
      `${constants.API_HOST}${ENDPOINTS.deleteUser}`,
      { password: await this._storage.hash(password, user.email) },
      token
    );
    await this.logout(false, "Account deleted.");
    return true;
  }

  /**
   *
   * @returns {Promise<User>}
   */
  async fetchUser() {
    try {
      let token = await this.tokenManager.getAccessToken();
      if (!token) return;
      const user = await http.get(
        `${constants.API_HOST}${ENDPOINTS.user}`,
        token
      );
      if (user) {
        await this.setUser(user);
        EV.publish(EVENTS.userFetched, user);
        return user;
      } else {
        return await this.getUser();
      }
    } catch (e) {
      console.error(e);
      return await this.getUser();
    }
  }

  changePassword(oldPassword, newPassword) {
    return this._updatePassword("change_password", {
      old_password: oldPassword,
      new_password: newPassword,
    });
  }

  resetPassword(newPassword) {
    return this._updatePassword("reset_password", {
      new_password: newPassword,
    });
  }

  async getEncryptionKey() {
    const user = await this.getUser();
    if (!user) return;
    const key = await this._storage.getCryptoKey(`_uk_@${user.email}`);
    return { key, salt: user.salt };
  }

  async getAttachmentsKey() {
    try {
      let user = await this.getUser();
      if (!user) return;

      if (!user.attachmentsKey) {
        let token = await this.tokenManager.getAccessToken();
        user = await http.get(`${constants.API_HOST}${ENDPOINTS.user}`, token);
      }

      const userEncryptionKey = await this.getEncryptionKey();
      if (!userEncryptionKey) return;

      if (!user.attachmentsKey) {
        const key = await this._storage.generateRandomKey();
        user.attachmentsKey = await this._storage.encrypt(
          userEncryptionKey,
          JSON.stringify(key)
        );

        await this.updateUser(user);
        return key;
      }

      const plainData = await this._storage.decrypt(
        userEncryptionKey,
        user.attachmentsKey
      );
      return JSON.parse(plainData);
    } catch (e) {
      throw new Error(
        `Could not get attachments encryption key. Please make sure you have Internet access. Error: ${e.message}`
      );
    }
  }

  async sendVerificationEmail() {
    let token = await this.tokenManager.getAccessToken();
    if (!token) return;
    await http.post(
      `${constants.AUTH_HOST}${ENDPOINTS.verifyUser}`,
      null,
      token
    );
  }

  recoverAccount(email) {
    return http.post(`${constants.AUTH_HOST}${ENDPOINTS.recoverAccount}`, {
      email,
      client_id: "notesnook",
    });
  }

  async verifyPassword(password) {
    try {
      const user = await this.getUser();
      if (!user) return false;
      const key = await this.getEncryptionKey();
      const cipher = await this._storage.encrypt(key, "notesnook");
      const plainText = await this._storage.decrypt({ password }, cipher);
      return plainText === "notesnook";
    } catch (e) {
      return false;
    }
  }

  async _updatePassword(type, data) {
    const token = await this.tokenManager.getAccessToken();
    const user = await this.getUser();
    if (!token || !user) throw new Error("You are not logged in.");

    const { email, salt } = user;

    let { new_password, old_password } = data;
    if (old_password && !(await this.verifyPassword(old_password)))
      throw new Error("Incorrect old password.");

    if (!new_password) throw new Error("New password is required.");

    const attachmentsKey = await this.getAttachmentsKey();
    data.encryptionKey = data.encryptionKey || (await this.getEncryptionKey());

    await this._db.outbox.add(type, data, async () => {
      await this._db.sync(true, true);

      await this._storage.deriveCryptoKey(`_uk_@${email}`, {
        password: new_password,
        salt,
      });

      if (attachmentsKey) {
        const userEncryptionKey = await this.getEncryptionKey();
        if (!userEncryptionKey) return;
        user.attachmentsKey = await this._storage.encrypt(
          userEncryptionKey,
          JSON.stringify(attachmentsKey)
        );
        await this.updateUser(user);
      }

      await this._db.sync(false, true);

      if (old_password)
        old_password = await this._storage.hash(old_password, email);
      if (new_password)
        new_password = await this._storage.hash(new_password, email);

      await http.patch(
        `${constants.AUTH_HOST}${ENDPOINTS.patchUser}`,
        {
          type,
          old_password,
          new_password,
        },
        token
      );
    });

    return true;
  }
}

export default UserManager;
feat: add basic user types 2022-03-17 22:58:08 +05:00			`import "../types";`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`import http from "../utils/http";`
			`import constants from "../utils/constants";`
			`import TokenManager from "./token-manager";`
feat: improve sync over websockets 2022-03-30 15:52:48 +05:00			`import { EV, EVENTS, setUserPersonalizationBytes } from "../common";`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00
			`const ENDPOINTS = {`
			`signup: "/users",`
			`token: "/connect/token",`
			`user: "/users",`
			`deleteUser: "/users/delete",`
			`patchUser: "/account",`
feat: impl sendVerificationEmail in usermanager 2020-12-16 14:56:09 +05:00			`verifyUser: "/account/verify",`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`revoke: "/connect/revocation",`
feat: impl recoverAccount endpoint 2020-12-22 09:36:35 +05:00			`recoverAccount: "/account/recover",`
feat: add trial activation endpoint 2022-02-17 21:22:22 +05:00			`activateTrial: "/subscriptions/trial",`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`};`

			`class UserManager {`
			`/**`
			`*`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`* @param {import("../database/storage").default} storage`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`* @param {import("../api/index").default} db`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`*/`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`constructor(storage, db) {`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`this._storage = storage;`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`this._db = db;`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`this.tokenManager = new TokenManager(storage);`
fix: force logout user on 401 unauthorized error 2022-01-03 13:26:57 +05:00
fix: try to refresh token before logging out on 401 unauthorized 2022-01-07 13:58:06 +05:00			`EV.subscribe(EVENTS.userUnauthorized, async (url) => {`
			`if (url.includes("/connect/token")) return;`
			`try {`
			`await this.tokenManager._refreshToken(true);`
			`} catch (e) {`
			`await this.logout(`
			`false,`
			`Your token has been revoked. Error: ${e.message}.`
			`);`
			`}`
fix: force logout user on 401 unauthorized error 2022-01-03 13:26:57 +05:00			`});`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

fix: make user.remember work again 2020-12-22 16:13:01 +05:00			`async init() {`
			`const user = await this.getUser();`
			`if (!user) return;`
feat: use blake2s for random id generation 2021-06-04 09:32:13 +05:00			`setUserPersonalizationBytes(user.salt);`
fix: make user.remember work again 2020-12-22 16:13:01 +05:00			`}`

feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`async signup(email, password) {`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`const hashedPassword = await this._storage.hash(password, email);`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			await http.post(`${constants.API_HOST}${ENDPOINTS.signup}`, {
			`email,`
feat: add hcli migration 2021-01-18 23:29:49 +05:00			`password: hashedPassword,`
fix: send client_id with signup request 2020-12-22 09:55:31 +05:00			`client_id: "notesnook",`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`});`
fix: multiple settings objects created for 1 user due to these multiple objects reset password wasn't working because only the latest one would be encrypted with the new password but all previous objects would require decryption which resulted in a block while syncing 2021-02-26 17:33:46 +05:00			`EV.publish(EVENTS.userSignedUp);`
feat: add basic user types 2022-03-17 22:58:08 +05:00			`return await this._login({ email, password, hashedPassword });`
feat: add hcli migration 2021-01-18 23:29:49 +05:00			`}`

feat: add basic user types 2022-03-17 22:58:08 +05:00			`async login(email, password) {`
			`return this._login({ email, password });`
			`}`

			`async mfaLogin(email, password, { code, method }) {`
			`return this._login({ email, password, code, method });`
			`}`

			`/**`
			`* @private`
			`*/`
			`async _login({ email, password, hashedPassword, code, method }) {`
fix: hash password before login 2021-04-09 12:55:32 +05:00			`if (!hashedPassword) {`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`hashedPassword = await this._storage.hash(password, email);`
fix: hash password before login 2021-04-09 12:55:32 +05:00			`}`

feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`await this.tokenManager.saveToken(`
			await http.post(`${constants.AUTH_HOST}${ENDPOINTS.token}`, {
			`username: email,`
feat: hash all passwords before sending them to server 2021-01-19 09:48:42 +05:00			`password: hashedPassword,`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`grant_type: "password",`
fix: remove notesnook.monograph scope 2021-06-15 10:17:42 +05:00			`scope: "notesnook.sync offline_access openid IdentityServerApi",`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`client_id: "notesnook",`
feat: add basic user types 2022-03-17 22:58:08 +05:00			`"mfa:code": code,`
			`"mfa:method": method,`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`})`
			`);`

fix: properly handle session expiry 2021-05-25 16:19:58 +05:00			`const user = await this.fetchUser();`
feat: use blake2s for random id generation 2021-06-04 09:32:13 +05:00			`setUserPersonalizationBytes(user.salt);`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			await this._storage.deriveCryptoKey(`_uk_@${user.email}`, {
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`password,`
			`salt: user.salt,`
			`});`

refactor: change all event strings to constants 2021-01-23 10:48:21 +05:00			`EV.publish(EVENTS.userLoggedIn, user);`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

			`async getSessions() {`
			`const token = await this.tokenManager.getAccessToken();`
			`if (!token) return;`
			await http.get(`${constants.AUTH_HOST}/account/sessions`, token);
			`}`

feat: add endpoing to clear user sessions 2021-12-31 09:06:12 +05:00			`async clearSessions(all = false) {`
			`const token = await this.tokenManager.getToken();`
			`if (!token) return;`
			`const { access_token, refresh_token } = token;`
			`await http.post(`
			`${constants.AUTH_HOST}/account/sessions/clear?all=${all}`,
			`{ refresh_token },`
			`access_token`
			`);`
			`}`

feat: add trial activation endpoint 2022-02-17 21:22:22 +05:00			`async activateTrial() {`
			`const token = await this.tokenManager.getAccessToken();`
			`if (!token) return false;`
			`await http.post(`
			`${constants.SUBSCRIPTIONS_HOST}${ENDPOINTS.activateTrial}`,
			`null,`
			`token`
			`);`
			`return true;`
			`}`

feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`async logout(revoke = true, reason) {`
fix: make user.remember work again 2020-12-22 16:13:01 +05:00			`try {`
			`if (revoke) await this.tokenManager.revokeToken();`
			`} catch (e) {`
			`console.error(e);`
			`} finally {`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`await this._storage.clear();`
refactor: change all event strings to constants 2021-01-23 10:48:21 +05:00			`EV.publish(EVENTS.userLoggedOut, reason);`
fix: refresh app after logout 2021-07-03 23:07:54 +05:00			`EV.publish(EVENTS.appRefreshRequested);`
fix: make user.remember work again 2020-12-22 16:13:01 +05:00			`}`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

			`setUser(user) {`
			`if (!user) return;`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`return this._storage.write("user", user);`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

feat: add basic user types 2022-03-17 22:58:08 +05:00			`/**`
			`*`
			`* @returns {Promise<User>}`
			`*/`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`getUser() {`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`return this._storage.read("user");`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`

fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`async updateUser(user) {`
			`if (!user) return;`

			`let token = await this.tokenManager.getAccessToken();`
			`await http.patch.json(`
			`${constants.API_HOST}${ENDPOINTS.user}`,
			`user,`
			`token`
			`);`

			`await this.setUser(user);`
			`}`

feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`async deleteUser(password) {`
			`let token = await this.tokenManager.getAccessToken();`
			`if (!token) return;`
feat: hash all passwords before sending them to server 2021-01-19 09:48:42 +05:00			`const user = await this.getUser();`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`await http.post(`
			`${constants.API_HOST}${ENDPOINTS.deleteUser}`,
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`{ password: await this._storage.hash(password, user.email) },`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`token`
			`);`
			`await this.logout(false, "Account deleted.");`
			`return true;`
			`}`

feat: add basic user types 2022-03-17 22:58:08 +05:00			`/**`
			`*`
			`* @returns {Promise<User>}`
			`*/`
fix: properly handle session expiry 2021-05-25 16:19:58 +05:00			`async fetchUser() {`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`try {`
			`let token = await this.tokenManager.getAccessToken();`
			`if (!token) return;`
			`const user = await http.get(`
			`${constants.API_HOST}${ENDPOINTS.user}`,
			`token`
			`);`
			`if (user) {`
fix: properly handle session expiry 2021-05-25 16:19:58 +05:00			`await this.setUser(user);`
refactor: change all event strings to constants 2021-01-23 10:48:21 +05:00			`EV.publish(EVENTS.userFetched, user);`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`return user;`
			`} else {`
feat: return local user if fetchUser request fails 2020-12-16 14:41:28 +05:00			`return await this.getUser();`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`
test: fix all ci tests 2021-01-22 22:08:56 +05:00			`} catch (e) {`
			`console.error(e);`
			`return await this.getUser();`
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`}`
			`}`

feat: add resetPassword 2020-12-22 13:13:18 +05:00			`changePassword(oldPassword, newPassword) {`
			`return this._updatePassword("change_password", {`
			`old_password: oldPassword,`
			`new_password: newPassword,`
			`});`
			`}`

			`resetPassword(newPassword) {`
			`return this._updatePassword("reset_password", {`
			`new_password: newPassword,`
			`});`
			`}`

feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`async getEncryptionKey() {`
			`const user = await this.getUser();`
			`if (!user) return;`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			const key = await this._storage.getCryptoKey(`_uk_@${user.email}`);
feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`return { key, salt: user.salt };`
			`}`

feat: add 3-layer-encryption for attachments 2021-10-25 11:35:00 +05:00			`async getAttachmentsKey() {`
fix: do not request access token eagerly 2021-10-26 09:13:18 +05:00			`try {`
			`let user = await this.getUser();`
			`if (!user) return;`
feat: add 3-layer-encryption for attachments 2021-10-25 11:35:00 +05:00
fix: do not request access token eagerly 2021-10-26 09:13:18 +05:00			`if (!user.attachmentsKey) {`
			`let token = await this.tokenManager.getAccessToken();`
			user = await http.get(`${constants.API_HOST}${ENDPOINTS.user}`, token);
			`}`
feat: add 3-layer-encryption for attachments 2021-10-25 11:35:00 +05:00
fix: do not request access token eagerly 2021-10-26 09:13:18 +05:00			`const userEncryptionKey = await this.getEncryptionKey();`
			`if (!userEncryptionKey) return;`
feat: add 3-layer-encryption for attachments 2021-10-25 11:35:00 +05:00
fix: do not request access token eagerly 2021-10-26 09:13:18 +05:00			`if (!user.attachmentsKey) {`
			`const key = await this._storage.generateRandomKey();`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`user.attachmentsKey = await this._storage.encrypt(`
fix: do not request access token eagerly 2021-10-26 09:13:18 +05:00			`userEncryptionKey,`
			`JSON.stringify(key)`
			`);`
feat: add 3-layer-encryption for attachments 2021-10-25 11:35:00 +05:00
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`await this.updateUser(user);`
fix: do not request access token eagerly 2021-10-26 09:13:18 +05:00			`return key;`
			`}`
feat: add 3-layer-encryption for attachments 2021-10-25 11:35:00 +05:00
fix: do not request access token eagerly 2021-10-26 09:13:18 +05:00			`const plainData = await this._storage.decrypt(`
			`userEncryptionKey,`
			`user.attachmentsKey`
			`);`
			`return JSON.parse(plainData);`
			`} catch (e) {`
feat: throw better error on failure to get attachment enc key 2021-10-28 22:03:06 +05:00			`throw new Error(`
			`Could not get attachments encryption key. Please make sure you have Internet access. Error: ${e.message}`
			`);`
fix: do not request access token eagerly 2021-10-26 09:13:18 +05:00			`}`
feat: add 3-layer-encryption for attachments 2021-10-25 11:35:00 +05:00			`}`

feat: add resetPassword 2020-12-22 13:13:18 +05:00			`async sendVerificationEmail() {`
			`let token = await this.tokenManager.getAccessToken();`
			`if (!token) return;`
			`await http.post(`
			`${constants.AUTH_HOST}${ENDPOINTS.verifyUser}`,
			`null,`
			`token`
			`);`
			`}`

			`recoverAccount(email) {`
			return http.post(`${constants.AUTH_HOST}${ENDPOINTS.recoverAccount}`, {
			`email,`
			`client_id: "notesnook",`
			`});`
			`}`

feat: add verify password for verifying user password 2021-06-01 09:46:50 +05:00			`async verifyPassword(password) {`
			`try {`
			`const user = await this.getUser();`
			`if (!user) return false;`
			`const key = await this.getEncryptionKey();`
feat: refactors and add support for upload/download progress 2021-09-26 11:47:13 +05:00			`const cipher = await this._storage.encrypt(key, "notesnook");`
			`const plainText = await this._storage.decrypt({ password }, cipher);`
feat: add verify password for verifying user password 2021-06-01 09:46:50 +05:00			`return plainText === "notesnook";`
			`} catch (e) {`
			`return false;`
			`}`
			`}`

feat: add resetPassword 2020-12-22 13:13:18 +05:00			`async _updatePassword(type, data) {`
feat: add interruption resistant password changing 2022-01-01 16:11:55 +05:00			`const token = await this.tokenManager.getAccessToken();`
			`const user = await this.getUser();`
			`if (!token \|\| !user) throw new Error("You are not logged in.");`
feat: hash all passwords before sending them to server 2021-01-19 09:48:42 +05:00
feat: add interruption resistant password changing 2022-01-01 16:11:55 +05:00			`const { email, salt } = user;`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00
feat: add interruption resistant password changing 2022-01-01 16:11:55 +05:00			`let { new_password, old_password } = data;`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`if (old_password && !(await this.verifyPassword(old_password)))`
			`throw new Error("Incorrect old password.");`

feat: add interruption resistant password changing 2022-01-01 16:11:55 +05:00			`if (!new_password) throw new Error("New password is required.");`

fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`const attachmentsKey = await this.getAttachmentsKey();`
fix: force logout user on 401 unauthorized error 2022-01-03 13:26:57 +05:00			`data.encryptionKey = data.encryptionKey \|\| (await this.getEncryptionKey());`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00
			`await this._db.outbox.add(type, data, async () => {`
			`await this._db.sync(true, true);`

			await this._storage.deriveCryptoKey(`_uk_@${email}`, {
feat: add interruption resistant password changing 2022-01-01 16:11:55 +05:00			`password: new_password,`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`salt,`
			`});`

			`if (attachmentsKey) {`
			`const userEncryptionKey = await this.getEncryptionKey();`
			`if (!userEncryptionKey) return;`
			`user.attachmentsKey = await this._storage.encrypt(`
			`userEncryptionKey,`
			`JSON.stringify(attachmentsKey)`
			`);`
			`await this.updateUser(user);`
			`}`

			`await this._db.sync(false, true);`

feat: add interruption resistant password changing 2022-01-01 16:11:55 +05:00			`if (old_password)`
			`old_password = await this._storage.hash(old_password, email);`
			`if (new_password)`
			`new_password = await this._storage.hash(new_password, email);`

fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`await http.patch(`
			`${constants.AUTH_HOST}${ENDPOINTS.patchUser}`,
			`{`
			`type,`
feat: add interruption resistant password changing 2022-01-01 16:11:55 +05:00			`old_password,`
			`new_password,`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`},`
			`token`
feat: hash all passwords before sending them to server 2021-01-19 09:48:42 +05:00			`);`
fix: re-enable account password changing 2021-12-31 09:05:45 +05:00			`});`

feat: migrate to use the new backend 2020-12-16 12:06:25 +05:00			`return true;`
			`}`
			`}`

			`export default UserManager;`