2021-04-20 09:58:23 +02:00
|
|
|
'use strict';
|
|
|
|
|
|
2021-04-22 16:05:59 +02:00
|
|
|
import { Request, Response } from 'express';
|
2021-04-20 09:58:23 +02:00
|
|
|
import { IAuthRequest } from '../unleash-types';
|
|
|
|
|
import Controller from '../controller';
|
|
|
|
|
import { AccessService } from '../../services/access-service';
|
2021-04-22 10:07:10 +02:00
|
|
|
import { IUnleashConfig } from '../../types/option';
|
2021-04-22 16:05:59 +02:00
|
|
|
import { IUnleashServices } from '../../types/services';
|
|
|
|
|
import UserService from '../../services/user-service';
|
2021-04-22 23:40:52 +02:00
|
|
|
import User from '../../types/user';
|
2021-04-22 16:05:59 +02:00
|
|
|
import { Logger } from '../../logger';
|
|
|
|
|
import { handleErrors } from './util';
|
2021-04-27 09:16:44 +02:00
|
|
|
import SessionService from '../../services/session-service';
|
2021-06-07 11:11:42 +02:00
|
|
|
import UserFeedbackService from '../../services/user-feedback-service';
|
2021-04-20 09:58:23 +02:00
|
|
|
|
2021-04-22 16:05:59 +02:00
|
|
|
interface IChangeUserRequest {
|
|
|
|
|
password: string;
|
|
|
|
|
confirmPassword: string;
|
|
|
|
|
}
|
|
|
|
|
|
2021-06-07 11:11:42 +02:00
|
|
|
export interface IUserRequest<PARAM, QUERY, BODY, RESPONSE>
|
2021-04-22 16:05:59 +02:00
|
|
|
extends Request<PARAM, QUERY, BODY, RESPONSE> {
|
|
|
|
|
user: User;
|
2021-04-20 09:58:23 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
class UserController extends Controller {
|
|
|
|
|
private accessService: AccessService;
|
|
|
|
|
|
2021-04-22 16:05:59 +02:00
|
|
|
private userService: UserService;
|
|
|
|
|
|
2021-06-07 11:11:42 +02:00
|
|
|
private userFeedbackService: UserFeedbackService;
|
|
|
|
|
|
2021-04-27 09:16:44 +02:00
|
|
|
private sessionService: SessionService;
|
|
|
|
|
|
2021-04-22 16:05:59 +02:00
|
|
|
private logger: Logger;
|
|
|
|
|
|
|
|
|
|
constructor(
|
|
|
|
|
config: IUnleashConfig,
|
|
|
|
|
{
|
|
|
|
|
accessService,
|
|
|
|
|
userService,
|
2021-04-27 09:16:44 +02:00
|
|
|
sessionService,
|
2021-06-07 11:11:42 +02:00
|
|
|
userFeedbackService,
|
2021-04-27 09:16:44 +02:00
|
|
|
}: Pick<
|
2021-06-07 11:11:42 +02:00
|
|
|
IUnleashServices,
|
|
|
|
|
| 'accessService'
|
|
|
|
|
| 'userService'
|
|
|
|
|
| 'sessionService'
|
|
|
|
|
| 'userFeedbackService'
|
2021-04-27 09:16:44 +02:00
|
|
|
>,
|
2021-04-22 16:05:59 +02:00
|
|
|
) {
|
2021-04-20 09:58:23 +02:00
|
|
|
super(config);
|
|
|
|
|
this.accessService = accessService;
|
2021-04-22 16:05:59 +02:00
|
|
|
this.userService = userService;
|
2021-04-27 09:16:44 +02:00
|
|
|
this.sessionService = sessionService;
|
2021-06-07 11:11:42 +02:00
|
|
|
this.userFeedbackService = userFeedbackService;
|
2021-04-22 16:05:59 +02:00
|
|
|
this.logger = config.getLogger('lib/routes/admin-api/user.ts');
|
2021-04-20 09:58:23 +02:00
|
|
|
|
|
|
|
|
this.get('/', this.getUser);
|
2021-04-22 16:05:59 +02:00
|
|
|
this.post('/change-password', this.updateUserPass);
|
2021-04-27 09:16:44 +02:00
|
|
|
this.get('/my-sessions', this.mySessions);
|
2021-04-20 09:58:23 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async getUser(req: IAuthRequest, res: Response): Promise<void> {
|
2021-05-04 21:33:32 +02:00
|
|
|
res.setHeader('cache-control', 'no-store');
|
2021-04-20 09:58:23 +02:00
|
|
|
const { user } = req;
|
|
|
|
|
if (user) {
|
|
|
|
|
const permissions = await this.accessService.getPermissionsForUser(
|
|
|
|
|
user,
|
|
|
|
|
);
|
2021-06-07 11:11:42 +02:00
|
|
|
const feedback = await this.userFeedbackService.getAllUserFeedback(
|
|
|
|
|
user.id,
|
|
|
|
|
);
|
|
|
|
|
|
2021-04-20 09:58:23 +02:00
|
|
|
delete user.permissions; // TODO: remove
|
|
|
|
|
return res
|
|
|
|
|
.status(200)
|
2021-06-07 11:11:42 +02:00
|
|
|
.json({ user, permissions, feedback })
|
2021-04-20 09:58:23 +02:00
|
|
|
.end();
|
|
|
|
|
}
|
|
|
|
|
return res.status(404).end();
|
|
|
|
|
}
|
|
|
|
|
|
2021-04-22 16:05:59 +02:00
|
|
|
async updateUserPass(
|
2021-06-07 11:11:42 +02:00
|
|
|
req: IUserRequest<any, any, IChangeUserRequest, any>,
|
2021-04-22 16:05:59 +02:00
|
|
|
res: Response,
|
|
|
|
|
): Promise<void> {
|
|
|
|
|
const { user } = req;
|
|
|
|
|
if (user) {
|
|
|
|
|
const { password, confirmPassword } = req.body;
|
|
|
|
|
try {
|
|
|
|
|
if (password === confirmPassword) {
|
|
|
|
|
this.userService.validatePassword(password);
|
|
|
|
|
await this.userService.changePassword(user.id, password);
|
|
|
|
|
res.status(200).end();
|
|
|
|
|
} else {
|
|
|
|
|
res.status(400).end();
|
|
|
|
|
}
|
|
|
|
|
} catch (e) {
|
|
|
|
|
handleErrors(res, this.logger, e);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
res.status(401).end();
|
2021-04-20 09:58:23 +02:00
|
|
|
}
|
|
|
|
|
}
|
2021-04-27 09:16:44 +02:00
|
|
|
|
|
|
|
|
async mySessions(
|
2021-06-07 11:11:42 +02:00
|
|
|
req: IUserRequest<any, any, any, any>,
|
2021-04-27 09:16:44 +02:00
|
|
|
res: Response,
|
|
|
|
|
): Promise<void> {
|
|
|
|
|
const { user } = req;
|
|
|
|
|
if (user) {
|
|
|
|
|
try {
|
|
|
|
|
const sessions = await this.sessionService.getSessionsForUser(
|
|
|
|
|
user.id,
|
|
|
|
|
);
|
|
|
|
|
res.json(sessions);
|
|
|
|
|
} catch (e) {
|
|
|
|
|
handleErrors(res, this.logger, e);
|
|
|
|
|
}
|
|
|
|
|
} else {
|
|
|
|
|
res.status(401).end();
|
|
|
|
|
}
|
|
|
|
|
}
|
2021-04-20 09:58:23 +02:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
module.exports = UserController;
|
|
|
|
|
export default UserController;
|
