unleash.unleash/src/lib/routes/admin-api/user.ts

'use strict';

import { Request, Response } from 'express';
import { IAuthRequest } from '../unleash-types';
import Controller from '../controller';
import { AccessService } from '../../services/access-service';
import { IUnleashConfig } from '../../types/option';
import { IUnleashServices } from '../../types/services';
import UserService from '../../services/user-service';
import User from '../../user';
import { Logger } from '../../logger';
import { handleErrors } from './util';

interface IChangeUserRequest {
    password: string;
    confirmPassword: string;
}

interface UserRequest<PARAM, QUERY, BODY, RESPONSE>
    extends Request<PARAM, QUERY, BODY, RESPONSE> {
    user: User;
}

class UserController extends Controller {
    private accessService: AccessService;

    private userService: UserService;

    private logger: Logger;

    constructor(
        config: IUnleashConfig,
        {
            accessService,
            userService,
        }: Pick<IUnleashServices, 'accessService' | 'userService'>,
    ) {
        super(config);
        this.accessService = accessService;
        this.userService = userService;
        this.logger = config.getLogger('lib/routes/admin-api/user.ts');

        this.get('/', this.getUser);
        this.post('/change-password', this.updateUserPass);
    }

    async getUser(req: IAuthRequest, res: Response): Promise<void> {
        const { user } = req;
        if (user) {
            const permissions = await this.accessService.getPermissionsForUser(
                user,
            );
            delete user.permissions; // TODO: remove
            return res
                .status(200)
                .json({ user, permissions })
                .end();
        }
        return res.status(404).end();
    }

    async updateUserPass(
        req: UserRequest<any, any, IChangeUserRequest, any>,
        res: Response,
    ): Promise<void> {
        const { user } = req;
        if (user) {
            const { password, confirmPassword } = req.body;
            try {
                if (password === confirmPassword) {
                    this.userService.validatePassword(password);
                    await this.userService.changePassword(user.id, password);
                    res.status(200).end();
                } else {
                    res.status(400).end();
                }
            } catch (e) {
                handleErrors(res, this.logger, e);
            }
        } else {
            res.status(401).end();
        }
    }
}

module.exports = UserController;
export default UserController;
feat: expose user permissions (#791) 2021-04-20 09:58:23 +02:00			`'use strict';`

feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`import { Request, Response } from 'express';`
feat: expose user permissions (#791) 2021-04-20 09:58:23 +02:00			`import { IAuthRequest } from '../unleash-types';`
			`import Controller from '../controller';`
			`import { AccessService } from '../../services/access-service';`
Feat/options need types (#794) feat: options are now typed - This makes it easier to know what to send to unleash.start / unleash.create - Using a Partial to instantiate the config, then melding it with defaults to get a config object with all fields set either to their defaults or to whatever is passed in. Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> Co-authored-by: Ivar Conradi Østhus <ivarconr@gmail.com> 2021-04-22 10:07:10 +02:00			`import { IUnleashConfig } from '../../types/option';`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`import { IUnleashServices } from '../../types/services';`
			`import UserService from '../../services/user-service';`
			`import User from '../../user';`
			`import { Logger } from '../../logger';`
			`import { handleErrors } from './util';`
feat: expose user permissions (#791) 2021-04-20 09:58:23 +02:00
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`interface IChangeUserRequest {`
			`password: string;`
			`confirmPassword: string;`
			`}`

			`interface UserRequest<PARAM, QUERY, BODY, RESPONSE>`
			`extends Request<PARAM, QUERY, BODY, RESPONSE> {`
			`user: User;`
feat: expose user permissions (#791) 2021-04-20 09:58:23 +02:00			`}`

			`class UserController extends Controller {`
			`private accessService: AccessService;`

feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`private userService: UserService;`

			`private logger: Logger;`

			`constructor(`
			`config: IUnleashConfig,`
			`{`
			`accessService,`
			`userService,`
			`}: Pick<IUnleashServices, 'accessService' \| 'userService'>,`
			`) {`
feat: expose user permissions (#791) 2021-04-20 09:58:23 +02:00			`super(config);`
			`this.accessService = accessService;`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`this.userService = userService;`
			`this.logger = config.getLogger('lib/routes/admin-api/user.ts');`
feat: expose user permissions (#791) 2021-04-20 09:58:23 +02:00
			`this.get('/', this.getUser);`
feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`this.post('/change-password', this.updateUserPass);`
feat: expose user permissions (#791) 2021-04-20 09:58:23 +02:00			`}`

			`async getUser(req: IAuthRequest, res: Response): Promise<void> {`
			`const { user } = req;`
			`if (user) {`
			`const permissions = await this.accessService.getPermissionsForUser(`
			`user,`
			`);`
			`delete user.permissions; // TODO: remove`
			`return res`
			`.status(200)`
			`.json({ user, permissions })`
			`.end();`
			`}`
			`return res.status(404).end();`
			`}`

feat: Add change-password endpoint to user-controller (#800) fixes: #801 Co-authored-by: Fredrik Oseberg <fredrik.no@gmail.com> 2021-04-22 16:05:59 +02:00			`async updateUserPass(`
			`req: UserRequest<any, any, IChangeUserRequest, any>,`
			`res: Response,`
			`): Promise<void> {`
			`const { user } = req;`
			`if (user) {`
			`const { password, confirmPassword } = req.body;`
			`try {`
			`if (password === confirmPassword) {`
			`this.userService.validatePassword(password);`
			`await this.userService.changePassword(user.id, password);`
			`res.status(200).end();`
			`} else {`
			`res.status(400).end();`
			`}`
			`} catch (e) {`
			`handleErrors(res, this.logger, e);`
			`}`
			`} else {`
			`res.status(401).end();`
feat: expose user permissions (#791) 2021-04-20 09:58:23 +02:00			`}`
			`}`
			`}`

			`module.exports = UserController;`
			`export default UserController;`