freeCodeCamp/api-server/common/models/User-Identity.js

import { Observable } from 'rx';
// import debug from 'debug';
import dedent from 'dedent';
import { isEmail } from 'validator';

import { observeMethod, observeQuery } from '../../server/utils/rx';
import { wrapHandledError } from '../../server/utils/create-handled-error.js';

// const log = debug('fcc:models:userIdent');

export default function(UserIdent) {

  UserIdent.on('dataSourceAttached', () => {
    UserIdent.findOne$ = observeMethod(UserIdent, 'findOne');
  });

  UserIdent.login = function(
    _provider,
    authScheme,
    profile,
    credentials,
    options,
    cb
  ) {
    const User = UserIdent.app.models.User;
    const AccessToken = UserIdent.app.models.AccessToken;
    options = options || {};
    if (typeof options === 'function' && !cb) {
      cb = options;
      options = {};
    }

    // get the social provider data and the external id from auth0
    profile.id = profile.id || profile.openid;
    const auth0IdString = '' + profile.id;
    const [ provider, socialExtId ] = auth0IdString.split('|');
    const query = {
      where: {
        provider: provider,
        externalId: socialExtId
      },
      include: 'user'
    };
    // get the email from the auth0 (its expected from social providers)
    const email = (profile && profile.emails && profile.emails[0]) ?
                    profile.emails[0].value : '';
    if (!isEmail('' + email)) {
      throw wrapHandledError(
        new Error('invalid or empty email recieved from auth0'),
        {
          message: dedent`
    Oops... something is not right. We did not find a valid email from your
    ${provider} account. Please try again with a different provider that has an
    email available with it.
          `,
          type: 'info',
          redirectTo: '/'
        }
      );
    }

    if (provider === 'email') {

      return User.findOne$({ where: { email } })
        .flatMap(user => {
          return user ?
            Observable.of(user) :
            User.create$({ email }).toPromise();
        })
        .flatMap(user => {
          if (!user) {
            throw wrapHandledError(
              new Error('could not find or create a user'),
              {
                message: dedent`
    Oops... something is not right. We could not find or create a
    user with that email.
                `,
                type: 'info',
                redirectTo: '/'
              }
            );
          }
          const createToken = observeQuery(
            AccessToken,
            'create',
            {
              userId: user.id,
              created: new Date(),
              ttl: user.constructor.settings.ttl
            }
          );
          const updateUser = user.update$({
            emailVerified: true,
            emailAuthLinkTTL: null,
            emailVerifyTTL: null
          });
          return Observable.combineLatest(
            Observable.of(user),
            createToken,
            updateUser,
            (user, token) => ({user, token})
          );
        })
        .subscribe(
          ({ user, token }) => cb(null, user, null, token),
          cb
        );

    } else {

      return UserIdent.findOne$(query)
        .flatMap(identity => {
          return identity ?
            Observable.of(identity.user()) :
            User.findOne$({ where: { email } })
              .flatMap(user => {
                return user ?
                  Observable.of(user) :
                  User.create$({ email }).toPromise();
              });
        })
        .flatMap(user => {

          const createToken = observeQuery(
            AccessToken,
            'create',
            {
              userId: user.id,
              created: new Date(),
              ttl: user.constructor.settings.ttl
            }
          );
          const updateUser = user.update$({
            email: email,
            emailVerified: true,
            emailAuthLinkTTL: null,
            emailVerifyTTL: null
          });
          return Observable.combineLatest(
            Observable.of(user),
            createToken,
            updateUser,
            (user, token) => ({ user, token })
          );
        })
        .subscribe(
          ({ user, token }) => cb(null, user, null, token),
          cb
        );

    }
  };
}
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`import { Observable } from 'rx';`
			`// import debug from 'debug';`
			`import dedent from 'dedent';`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`import { isEmail } from 'validator';`
add pull in user image on signup when available 2015-06-11 18:38:08 +00:00
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`import { observeMethod, observeQuery } from '../../server/utils/rx';`
			`import { wrapHandledError } from '../../server/utils/create-handled-error.js';`
Move auth functions to central location 2015-08-12 19:15:19 +00:00
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`// const log = debug('fcc:models:userIdent');`
add pull in user image on signup when available 2015-06-11 18:38:08 +00:00
add github check on login with github. 2015-08-04 21:52:06 +00:00			`export default function(UserIdent) {`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`UserIdent.on('dataSourceAttached', () => {`
			`UserIdent.findOne$ = observeMethod(UserIdent, 'findOne');`
			`});`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00
fix override user identity login to reformat provider 2015-08-13 02:08:05 +00:00			`UserIdent.login = function(`
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`_provider,`
fix override user identity login to reformat provider 2015-08-13 02:08:05 +00:00			`authScheme,`
			`profile,`
			`credentials,`
			`options,`
			`cb`
			`) {`
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`const User = UserIdent.app.models.User;`
			`const AccessToken = UserIdent.app.models.AccessToken;`
fix override user identity login to reformat provider 2015-08-13 02:08:05 +00:00			`options = options \|\| {};`
			`if (typeof options === 'function' && !cb) {`
			`cb = options;`
			`options = {};`
			`}`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00
			`// get the social provider data and the external id from auth0`
fix override user identity login to reformat provider 2015-08-13 02:08:05 +00:00			`profile.id = profile.id \|\| profile.openid;`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`const auth0IdString = '' + profile.id;`
refactor: Coding style changes 2018-06-29 20:01:56 +00:00			`const [ provider, socialExtId ] = auth0IdString.split('\|');`
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`const query = {`
fix override user identity login to reformat provider 2015-08-13 02:08:05 +00:00			`where: {`
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`provider: provider,`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`externalId: socialExtId`
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`},`
			`include: 'user'`
Remove o-auth account creation Accounts can only be created with Github or email 2016-04-22 03:35:19 +00:00			`};`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`// get the email from the auth0 (its expected from social providers)`
			`const email = (profile && profile.emails && profile.emails[0]) ?`
			`profile.emails[0].value : '';`
			`if (!isEmail('' + email)) {`
			`throw wrapHandledError(`
			`new Error('invalid or empty email recieved from auth0'),`
			`{`
			message: dedent`
			`Oops... something is not right. We did not find a valid email from your`
			`${provider} account. Please try again with a different provider that has an`
			`email available with it.`
			`,
			`type: 'info',`
			`redirectTo: '/'`
			`}`
			`);`
			`}`
feat: update user identity login 2018-05-19 15:51:49 +00:00
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`if (provider === 'email') {`
feat: update user identity login 2018-05-19 15:51:49 +00:00
			`return User.findOne$({ where: { email } })`
			`.flatMap(user => {`
fix(auth): Set domain cookies, and chain user 2018-05-22 12:40:00 +00:00			`return user ?`
			`Observable.of(user) :`
			`User.create$({ email }).toPromise();`
			`})`
			`.flatMap(user => {`
			`if (!user) {`
			`throw wrapHandledError(`
fix: typo in the error message 2018-05-22 16:26:12 +00:00			`new Error('could not find or create a user'),`
fix(auth): Set domain cookies, and chain user 2018-05-22 12:40:00 +00:00			`{`
			message: dedent`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`Oops... something is not right. We could not find or create a`
			`user with that email.`
fix(auth): Set domain cookies, and chain user 2018-05-22 12:40:00 +00:00			`,
			`type: 'info',`
			`redirectTo: '/'`
			`}`
			`);`
			`}`
fix: making login flow async again for cookies 2018-05-21 19:07:01 +00:00			`const createToken = observeQuery(`
			`AccessToken,`
			`'create',`
			`{`
			`userId: user.id,`
			`created: new Date(),`
			`ttl: user.constructor.settings.ttl`
			`}`
			`);`
fix(auth): Set domain cookies, and chain user 2018-05-22 12:40:00 +00:00			`const updateUser = user.update$({`
			`emailVerified: true,`
			`emailAuthLinkTTL: null,`
			`emailVerifyTTL: null`
			`});`
fix: making login flow async again for cookies 2018-05-21 19:07:01 +00:00			`return Observable.combineLatest(`
			`Observable.of(user),`
			`createToken,`
fix(auth): Set domain cookies, and chain user 2018-05-22 12:40:00 +00:00			`updateUser,`
			`(user, token) => ({user, token})`
fix: making login flow async again for cookies 2018-05-21 19:07:01 +00:00			`);`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`})`
			`.subscribe(`
fix: making login flow async again for cookies 2018-05-21 19:07:01 +00:00			`({ user, token }) => cb(null, user, null, token),`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`cb`
			`);`

			`} else {`
fix: add user object to Observables 2018-05-20 08:10:15 +00:00
feat: update user identity login 2018-05-19 15:51:49 +00:00			`return UserIdent.findOne$(query)`
			`.flatMap(identity => {`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`return identity ?`
			`Observable.of(identity.user()) :`
			`User.findOne$({ where: { email } })`
			`.flatMap(user => {`
			`return user ?`
			`Observable.of(user) :`
			`User.create$({ email }).toPromise();`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`});`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`})`
			`.flatMap(user => {`
feat: update user identity login 2018-05-19 15:51:49 +00:00
			`const createToken = observeQuery(`
			`AccessToken,`
			`'create',`
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`{`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`userId: user.id,`
			`created: new Date(),`
			`ttl: user.constructor.settings.ttl`
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`}`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`);`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`const updateUser = user.update$({`
			`email: email,`
			`emailVerified: true,`
			`emailAuthLinkTTL: null,`
			`emailVerifyTTL: null`
			`});`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`return Observable.combineLatest(`
fix: add user object to Observables 2018-05-20 08:10:15 +00:00			`Observable.of(user),`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`createToken,`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`updateUser,`
			`(user, token) => ({ user, token })`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`);`
			`})`
			`.subscribe(`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00			`({ user, token }) => cb(null, user, null, token),`
feat: update user identity login 2018-05-19 15:51:49 +00:00			`cb`
fix(signup): signup auth (#15628) * fix(models.user): Colocate all user methods Moved user methods/extensions into one file. Tracked down `next method called more than once` error and setting headers after their sent. Let regular error handler handle api errors as well. * feat(server.auth): Disable github account creation We are no longer allowing account creation through github * refactor(Auth): Move user identity link into models dir * feat(Disable link account login): This removes the ability to use a linked account t * feat(errorhandlers): Add opbeat, filter out handled error 2017-07-13 18:39:07 +00:00			`);`
fix(auth0): Unify authentication via auth0 as provider 2018-06-28 14:57:15 +00:00
feat: update user identity login 2018-05-19 15:51:49 +00:00			`}`
fix override user identity login to reformat provider 2015-08-13 02:08:05 +00:00			`};`
add github check on login with github. 2015-08-04 21:52:06 +00:00			`}`