Reorganize project. Add folder for shared code between backend/dashboard. Switch from jest to ava for tests.

2025-05-10 04:25:01 +00:00 · 2019-11-02 22:11:26 +02:00 · 2019-11-02 22:11:26 +02:00 · 16111bbe84
commit 16111bbe84
parent 80a82fe348
162 changed files with 11056 additions and 9900 deletions
--- a/backend/src/data/ApiLogins.ts
+++ b/backend/src/data/ApiLogins.ts
@ -0,0 +1,90 @@
+import { getRepository, Repository } from "typeorm";
+import { ApiLogin } from "./entities/ApiLogin";
+import { BaseRepository } from "./BaseRepository";
+import crypto from "crypto";
+import moment from "moment-timezone";
+
+// tslint:disable-next-line:no-submodule-imports
+import uuidv4 from "uuid/v4";
+import { DBDateFormat } from "../utils";
+import { log } from "util";
+
+export class ApiLogins extends BaseRepository {
+  private apiLogins: Repository<ApiLogin>;
+
+  constructor() {
+    super();
+    this.apiLogins = getRepository(ApiLogin);
+  }
+
+  async getUserIdByApiKey(apiKey: string): Promise<string | null> {
+    const [loginId, token] = apiKey.split(".");
+    if (!loginId || !token) {
+      return null;
+    }
+
+    const login = await this.apiLogins
+      .createQueryBuilder()
+      .where("id = :id", { id: loginId })
+      .andWhere("expires_at > NOW()")
+      .getOne();
+
+    if (!login) {
+      return null;
+    }
+
+    const hash = crypto.createHash("sha256");
+    hash.update(loginId + token); // Remember to use loginId as the salt
+    const hashedToken = hash.digest("hex");
+    if (hashedToken !== login.token) {
+      return null;
+    }
+
+    return login.user_id;
+  }
+
+  async addLogin(userId: string): Promise<string> {
+    // Generate random login id
+    let loginId;
+    while (true) {
+      loginId = uuidv4();
+      const existing = await this.apiLogins.findOne({
+        where: {
+          id: loginId,
+        },
+      });
+      if (!existing) break;
+    }
+
+    // Generate token
+    const token = uuidv4();
+    const hash = crypto.createHash("sha256");
+    hash.update(loginId + token); // Use loginId as a salt
+    const hashedToken = hash.digest("hex");
+
+    // Save this to the DB
+    await this.apiLogins.insert({
+      id: loginId,
+      token: hashedToken,
+      user_id: userId,
+      logged_in_at: moment().format(DBDateFormat),
+      expires_at: moment()
+        .add(1, "day")
+        .format(DBDateFormat),
+    });
+
+    return `${loginId}.${token}`;
+  }
+
+  expireApiKey(apiKey) {
+    const [loginId, token] = apiKey.split(".");
+    if (!loginId || !token) return;
+
+    return this.apiLogins.update(
+      { id: loginId },
+      {
+        expires_at: moment().format(DBDateFormat),
+      },
+    );
+  }
+}