Mirrors/notesnook
1
0
Fork 0
mirror of https://github.com/streetwriters/notesnook.git synced 2025-12-20 21:49:32 +01:00
Code Issues Packages Projects Releases Wiki Activity
Files
db87d05b3ee0cecee4280f1d83c88acd6a46336a
notesnook/packages/core/api/user-manager.js
thecodrr e29d49768c fix: refresh app after logout
2021-07-03 23:07:54 +05:00

237 lines
5.9 KiB
JavaScript
Raw Blame History

import http from "../utils/http";
import constants from "../utils/constants";
import TokenManager from "./token-manager";
import {
EV,
EVENTS,
setUserPersonalizationBytes,
USER_PERSONALIZATION_HASH,
} from "../common";
const ENDPOINTS = {
signup: "/users",
token: "/connect/token",
user: "/users",
deleteUser: "/users/delete",
patchUser: "/account",
verifyUser: "/account/verify",
revoke: "/connect/revocation",
recoverAccount: "/account/recover",
};
class UserManager {
/**
*
* @param {import("./index").default} db
*/
constructor(db) {
this._db = db;
this.tokenManager = new TokenManager(db);
}
async init() {
const user = await this.getUser();
if (!user) return;
setUserPersonalizationBytes(user.salt);
}
async signup(email, password) {
const hashedPassword = await this._db.context.hash(password, email);
await http.post(`${constants.API_HOST}${ENDPOINTS.signup}`, {
email,
password: hashedPassword,
client_id: "notesnook",
});
EV.publish(EVENTS.userSignedUp);
return await this.login(email, password, hashedPassword);
}
async login(email, password, hashedPassword) {
if (!hashedPassword) {
hashedPassword = await this._db.context.hash(password, email);
}
await this.tokenManager.saveToken(
await http.post(`${constants.AUTH_HOST}${ENDPOINTS.token}`, {
username: email,
password: hashedPassword,
grant_type: "password",
scope: "notesnook.sync offline_access openid IdentityServerApi",
client_id: "notesnook",
})
);
const user = await this.fetchUser();
setUserPersonalizationBytes(user.salt);
await this._db.context.deriveCryptoKey(`_uk_@${user.email}`, {
password,
salt: user.salt,
});
EV.publish(EVENTS.userLoggedIn, user);
}
async getSessions() {
const token = await this.tokenManager.getAccessToken();
if (!token) return;
await http.get(`${constants.AUTH_HOST}/account/sessions`, token);
}
async logout(revoke = true, reason) {
try {
if (revoke) await this.tokenManager.revokeToken();
} catch (e) {
console.error(e);
} finally {
await this._db.context.clear();
EV.publish(EVENTS.userLoggedOut, reason);
EV.publish(EVENTS.appRefreshRequested);
}
}
setUser(user) {
if (!user) return;
return this._db.context.write("user", user);
}
getUser() {
return this._db.context.read("user");
}
async deleteUser(password) {
let token = await this.tokenManager.getAccessToken();
if (!token) return;
const user = await this.getUser();
await http.post(
`${constants.API_HOST}${ENDPOINTS.deleteUser}`,
{ password: await this._db.context.hash(password, user.email) },
token
);
await this.logout(false, "Account deleted.");
return true;
}
async fetchUser() {
try {
let token = await this.tokenManager.getAccessToken();
if (!token) return;
const user = await http.get(
`${constants.API_HOST}${ENDPOINTS.user}`,
token
);
if (user) {
const oldUser = await this.getUser();
if (!!oldUser && !oldUser.isEmailConfirmed && user.isEmailConfirmed) {
// generate new token
const token = await this.tokenManager.getToken(false);
await this.tokenManager._refreshToken(token);
}
await this.setUser(user);
EV.publish(EVENTS.userFetched, user);
return user;
} else {
return await this.getUser();
}
} catch (e) {
console.error(e);
return await this.getUser();
}
}
changePassword(oldPassword, newPassword) {
return this._updatePassword("change_password", {
old_password: oldPassword,
new_password: newPassword,
});
}
resetPassword(newPassword) {
return this._updatePassword("reset_password", {
new_password: newPassword,
});
}
async getEncryptionKey() {
const user = await this.getUser();
if (!user) return;
const key = await this._db.context.getCryptoKey(`_uk_@${user.email}`);
return { key, salt: user.salt };
}
async sendVerificationEmail() {
let token = await this.tokenManager.getAccessToken();
if (!token) return;
await http.post(
`${constants.AUTH_HOST}${ENDPOINTS.verifyUser}`,
null,
token
);
}
recoverAccount(email) {
return http.post(`${constants.AUTH_HOST}${ENDPOINTS.recoverAccount}`, {
email,
client_id: "notesnook",
});
}
async verifyPassword(password) {
try {
const user = await this.getUser();
if (!user) return false;
const key = await this.getEncryptionKey();
const cipher = await this._db.context.encrypt(key, "notesnook");
const plainText = await this._db.context.decrypt({ password }, cipher);
return plainText === "notesnook";
} catch (e) {
return false;
}
}
async _updatePassword(type, data) {
let token = await this.tokenManager.getAccessToken();
if (!token) return;
// we hash the passwords beforehand
const { email, salt } = await this.getUser();
var hashedData = {};
if (data.old_password)
hashedData.old_password = await this._db.context.hash(
data.old_password,
email
);
if (data.new_password)
hashedData.new_password = await this._db.context.hash(
data.new_password,
email
);
await http.patch(
`${constants.AUTH_HOST}${ENDPOINTS.patchUser}`,
{
type,
...hashedData,
},
token
);
await this._db.outbox.add(
type,
{ newPassword: data.new_password },
async () => {
await this._db.sync(true);
await this._db.context.deriveCryptoKey(`_uk_@${email}`, {
password: data.new_password,
salt,
});
await this._db.sync(false, true);
}
);
return true;
}
}
export default UserManager;
Reference in New Issue View Git Blame Copy Permalink