2015-01-06 00:38:56 +00:00
|
|
|
var _ = require('lodash'),
|
2015-06-02 00:01:54 +00:00
|
|
|
R = require('ramda'),
|
2015-03-21 04:42:02 +00:00
|
|
|
async = require('async'),
|
|
|
|
crypto = require('crypto'),
|
|
|
|
nodemailer = require('nodemailer'),
|
|
|
|
passport = require('passport'),
|
|
|
|
moment = require('moment'),
|
2015-05-25 23:55:18 +00:00
|
|
|
debug = require('debug')('freecc:cntr:userController'),
|
2013-11-14 07:29:55 +00:00
|
|
|
|
2015-06-02 00:01:54 +00:00
|
|
|
secrets = require('../../config/secrets'),
|
|
|
|
resources = require('./../resources/resources');
|
2015-05-25 23:02:09 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
module.exports = function(app) {
|
2015-06-03 23:31:42 +00:00
|
|
|
var router = app.loopback.Router();
|
2015-06-03 23:19:23 +00:00
|
|
|
var User = app.models.User;
|
2013-11-14 07:29:55 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
router.get('/login', function(req, res) {
|
|
|
|
res.redirect(301, '/signin');
|
|
|
|
});
|
|
|
|
router.get('/logout', function(req, res) {
|
|
|
|
res.redirect(301, '/signout');
|
|
|
|
});
|
|
|
|
router.get('/signin', getSignin);
|
|
|
|
router.post('/signin', postSignin);
|
|
|
|
router.get('/signout', signout);
|
|
|
|
router.get('/forgot', getForgot);
|
|
|
|
router.post('/forgot', postForgot);
|
|
|
|
router.get('/reset/:token', getReset);
|
|
|
|
router.post('/reset/:token', postReset);
|
|
|
|
router.get('/email-signup', getEmailSignup);
|
|
|
|
router.get('/email-signin', getEmailSignin);
|
|
|
|
router.post('/email-signup', postEmailSignup);
|
|
|
|
router.post('/email-signin', postSignin);
|
|
|
|
router.get('/account/api', getAccountAngular);
|
|
|
|
router.get('/api/checkUniqueUsername/:username', checkUniqueUsername);
|
|
|
|
router.get('/api/checkExistingUsername/:username', checkExistingUsername);
|
|
|
|
router.get('/api/checkUniqueEmail/:email', checkUniqueEmail);
|
|
|
|
router.post('/account/profile', postUpdateProfile);
|
|
|
|
router.post('/account/password', postUpdatePassword);
|
|
|
|
router.post('/account/delete', postDeleteAccount);
|
|
|
|
router.get('/account/unlink/:provider', getOauthUnlink);
|
|
|
|
router.get('/account', getAccount);
|
|
|
|
// Ensure this is the last route!
|
|
|
|
router.get('/:username', returnUser);
|
|
|
|
|
2015-06-03 23:31:42 +00:00
|
|
|
app.use(router);
|
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /signin
|
|
|
|
* Siginin page.
|
|
|
|
*/
|
|
|
|
|
|
|
|
function getSignin (req, res) {
|
|
|
|
if (req.user) {
|
|
|
|
return res.redirect('/');
|
|
|
|
}
|
|
|
|
res.render('account/signin', {
|
|
|
|
title: 'Free Code Camp Login'
|
|
|
|
});
|
|
|
|
}
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* POST /signin
|
|
|
|
* Sign in using email and password.
|
|
|
|
*/
|
2014-01-24 03:47:21 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function postSignin (req, res, next) {
|
|
|
|
req.assert('email', 'Email is not valid').isEmail();
|
|
|
|
req.assert('password', 'Password cannot be blank').notEmpty();
|
2014-01-24 03:47:21 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
var errors = req.validationErrors();
|
2015-03-09 09:35:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
if (errors) {
|
|
|
|
req.flash('errors', errors);
|
2015-03-21 04:42:02 +00:00
|
|
|
return res.redirect('/signin');
|
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
|
|
|
|
passport.authenticate('local', function(err, user, info) {
|
2015-03-28 02:34:12 +00:00
|
|
|
if (err) {
|
|
|
|
return next(err);
|
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
if (!user) {
|
|
|
|
req.flash('errors', { msg: info.message });
|
|
|
|
return res.redirect('/signin');
|
2015-05-22 12:59:25 +00:00
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
req.logIn(user, function(err) {
|
|
|
|
if (err) {
|
|
|
|
return next(err);
|
|
|
|
}
|
|
|
|
req.flash('success', { msg: 'Success! You are logged in.' });
|
|
|
|
if (/hotStories/.test(req.session.returnTo)) {
|
|
|
|
return res.redirect('../news');
|
|
|
|
}
|
|
|
|
if (/field-guide/.test(req.session.returnTo)) {
|
|
|
|
return res.redirect('../field-guide');
|
|
|
|
}
|
|
|
|
return res.redirect(req.session.returnTo || '/');
|
|
|
|
});
|
|
|
|
})(req, res, next);
|
2015-03-28 02:34:12 +00:00
|
|
|
}
|
2014-01-28 22:41:13 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /signout
|
|
|
|
* Log out.
|
|
|
|
*/
|
2014-12-08 00:25:43 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function signout (req, res) {
|
|
|
|
req.logout();
|
|
|
|
res.redirect('/');
|
2015-03-28 02:34:12 +00:00
|
|
|
}
|
2014-01-07 22:45:42 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /email-signup
|
|
|
|
* Signup page.
|
|
|
|
*/
|
2015-03-09 09:35:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function getEmailSignin (req, res) {
|
|
|
|
if (req.user) {
|
|
|
|
return res.redirect('/');
|
|
|
|
}
|
|
|
|
res.render('account/email-signin', {
|
|
|
|
title: 'Sign in to your Free Code Camp Account'
|
|
|
|
});
|
2015-05-21 18:07:40 +00:00
|
|
|
}
|
2014-01-07 22:45:42 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /signin
|
|
|
|
* Signup page.
|
|
|
|
*/
|
2014-12-23 16:48:28 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function getEmailSignup (req, res) {
|
|
|
|
if (req.user) {
|
|
|
|
return res.redirect('/');
|
|
|
|
}
|
|
|
|
res.render('account/email-signup', {
|
|
|
|
title: 'Create Your Free Code Camp Account'
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
|
|
|
}
|
2014-12-23 16:48:28 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* POST /email-signup
|
|
|
|
* Create a new local account.
|
|
|
|
*/
|
2015-03-09 09:35:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function postEmailSignup (req, res, next) {
|
|
|
|
req.assert('email', 'valid email required').isEmail();
|
|
|
|
var errors = req.validationErrors();
|
2015-03-09 09:35:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
if (errors) {
|
|
|
|
req.flash('errors', errors);
|
|
|
|
return res.redirect('/email-signup');
|
2015-03-21 04:42:02 +00:00
|
|
|
}
|
2015-03-09 09:35:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
var possibleUserData = req.body;
|
|
|
|
|
|
|
|
if (possibleUserData.password.length < 8) {
|
|
|
|
req.flash('errors', {
|
|
|
|
msg: 'Your password is too short'
|
|
|
|
});
|
|
|
|
return res.redirect('email-signup');
|
2015-03-21 04:42:02 +00:00
|
|
|
}
|
2015-03-09 09:35:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
if (possibleUserData.username.length < 5 || possibleUserData.length > 20) {
|
2015-03-21 04:42:02 +00:00
|
|
|
req.flash('errors', {
|
2015-06-03 23:19:23 +00:00
|
|
|
msg: 'Your username must be between 5 and 20 characters'
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
return res.redirect('email-signup');
|
2015-03-21 04:42:02 +00:00
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
|
|
|
|
|
|
|
|
var user = new User({
|
|
|
|
email: req.body.email.trim(),
|
|
|
|
password: req.body.password,
|
|
|
|
profile: {
|
|
|
|
username: req.body.username.trim(),
|
|
|
|
picture:
|
|
|
|
'https://s3.amazonaws.com/freecodecamp/camper-image-placeholder.png'
|
|
|
|
}
|
|
|
|
});
|
|
|
|
|
|
|
|
User.findOne({ email: req.body.email }, function(err, existingEmail) {
|
2015-03-21 04:42:02 +00:00
|
|
|
if (err) {
|
|
|
|
return next(err);
|
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
|
|
|
|
if (existingEmail) {
|
2015-03-21 04:42:02 +00:00
|
|
|
req.flash('errors', {
|
2015-06-03 23:19:23 +00:00
|
|
|
msg: 'Account with that email address already exists.'
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
|
|
|
return res.redirect('/email-signup');
|
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
User.findOne(
|
|
|
|
{ 'profile.username': req.body.username },
|
|
|
|
function(err, existingUsername) {
|
|
|
|
if (err) {
|
|
|
|
return next(err);
|
|
|
|
}
|
|
|
|
if (existingUsername) {
|
|
|
|
req.flash('errors', {
|
|
|
|
msg: 'Account with that username already exists.'
|
|
|
|
});
|
|
|
|
return res.redirect('/email-signup');
|
|
|
|
}
|
2015-03-09 09:35:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
user.save(function(err) {
|
2015-03-21 04:42:02 +00:00
|
|
|
if (err) { return next(err); }
|
2015-06-03 23:19:23 +00:00
|
|
|
req.logIn(user, function(err) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
res.redirect('/email-signup');
|
|
|
|
});
|
|
|
|
});
|
|
|
|
var transporter = nodemailer.createTransport({
|
|
|
|
service: 'Mandrill',
|
|
|
|
auth: {
|
|
|
|
user: secrets.mandrill.user,
|
|
|
|
pass: secrets.mandrill.password
|
|
|
|
}
|
|
|
|
});
|
|
|
|
var mailOptions = {
|
|
|
|
to: user.email,
|
|
|
|
from: 'Team@freecodecamp.com',
|
|
|
|
subject: 'Welcome to Free Code Camp!',
|
|
|
|
text: [
|
|
|
|
'Greetings from San Francisco!\n\n',
|
|
|
|
'Thank you for joining our community.\n',
|
|
|
|
'Feel free to email us at this address if you have ',
|
|
|
|
'any questions about Free Code Camp.\n',
|
|
|
|
'And if you have a moment, check out our blog: ',
|
|
|
|
'blog.freecodecamp.com.\n',
|
|
|
|
'Good luck with the challenges!\n\n',
|
|
|
|
'- the Free Code Camp Volunteer Team'
|
|
|
|
].join('')
|
|
|
|
};
|
|
|
|
transporter.sendMail(mailOptions, function(err) {
|
|
|
|
if (err) { return err; }
|
2015-03-09 09:35:56 +00:00
|
|
|
});
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
2015-01-31 08:04:35 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
}
|
2015-01-06 05:52:30 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /account
|
|
|
|
* Profile page.
|
|
|
|
*/
|
2015-01-06 05:52:30 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function getAccount (req, res) {
|
|
|
|
res.render('account/account', {
|
|
|
|
title: 'Manage your Free Code Camp Account'
|
|
|
|
});
|
|
|
|
}
|
2015-01-24 09:14:41 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* Angular API Call
|
|
|
|
*/
|
2015-06-01 23:23:53 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function getAccountAngular (req, res) {
|
|
|
|
res.json({
|
|
|
|
user: req.user
|
|
|
|
});
|
|
|
|
}
|
2015-01-24 09:14:41 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* Unique username check API Call
|
|
|
|
*/
|
2015-01-10 01:52:19 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function checkUniqueUsername (req, res, next) {
|
|
|
|
User.count(
|
|
|
|
{ 'profile.username': req.params.username.toLowerCase() },
|
|
|
|
function (err, data) {
|
2015-05-21 18:07:40 +00:00
|
|
|
if (err) { return next(err); }
|
|
|
|
if (data === 1) {
|
|
|
|
return res.send(true);
|
|
|
|
} else {
|
|
|
|
return res.send(false);
|
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
});
|
|
|
|
}
|
2015-01-06 05:52:30 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* Existing username check
|
|
|
|
*/
|
2015-01-06 00:38:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function checkExistingUsername (req, res, next) {
|
|
|
|
User.count(
|
|
|
|
{ 'profile.username': req.params.username.toLowerCase() },
|
|
|
|
function (err, data) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
if (data === 1) {
|
|
|
|
return res.send(true);
|
|
|
|
} else {
|
|
|
|
return res.send(false);
|
|
|
|
}
|
2015-05-05 19:35:55 +00:00
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
);
|
|
|
|
}
|
2015-05-05 19:35:55 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* Unique email check API Call
|
|
|
|
*/
|
2015-05-06 01:13:46 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function checkUniqueEmail (req, res, next) {
|
|
|
|
User.count(
|
|
|
|
{ email: decodeURIComponent(req.params.email).toLowerCase() },
|
|
|
|
function (err, data) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
if (data === 1) {
|
|
|
|
return res.send(true);
|
|
|
|
} else {
|
|
|
|
return res.send(false);
|
2015-03-28 14:42:07 +00:00
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
}
|
|
|
|
);
|
|
|
|
}
|
2015-05-21 18:07:40 +00:00
|
|
|
|
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /campers/:username
|
|
|
|
* Public Profile page.
|
|
|
|
*/
|
2015-03-28 14:42:07 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function returnUser (req, res, next) {
|
|
|
|
User.find(
|
|
|
|
{ 'profile.username': req.params.username.toLowerCase() },
|
|
|
|
function(err, user) {
|
|
|
|
if (err) {
|
|
|
|
debug('Username err: ', err);
|
|
|
|
return next(err);
|
|
|
|
}
|
|
|
|
if (user[0]) {
|
|
|
|
user = user[0];
|
|
|
|
user.progressTimestamps =
|
|
|
|
user.progressTimestamps.sort(function(a, b) {
|
|
|
|
return a - b;
|
|
|
|
});
|
2015-05-21 18:07:40 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
var timeObject = Object.create(null);
|
|
|
|
R.forEach(function(time) {
|
|
|
|
timeObject[moment(time).format('YYYY-MM-DD')] = time;
|
|
|
|
}, user.progressTimestamps);
|
2015-05-21 18:07:40 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
var tmpLongest = 1;
|
|
|
|
var timeKeys = R.keys(timeObject);
|
2015-05-21 18:07:40 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
user.longestStreak = 0;
|
|
|
|
for (var i = 1; i <= timeKeys.length; i++) {
|
|
|
|
if (moment(timeKeys[i - 1]).add(1, 'd').toString()
|
|
|
|
=== moment(timeKeys[i]).toString()) {
|
|
|
|
tmpLongest++;
|
|
|
|
if (tmpLongest > user.longestStreak) {
|
|
|
|
user.longestStreak = tmpLongest;
|
2015-05-21 18:07:40 +00:00
|
|
|
}
|
|
|
|
} else {
|
2015-06-03 23:19:23 +00:00
|
|
|
tmpLongest = 1;
|
2015-05-21 18:07:40 +00:00
|
|
|
}
|
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
|
|
|
|
timeKeys = timeKeys.reverse();
|
|
|
|
tmpLongest = 1;
|
|
|
|
|
2015-05-21 18:07:40 +00:00
|
|
|
user.currentStreak = 1;
|
2015-06-03 23:19:23 +00:00
|
|
|
var today = moment(Date.now()).format('YYYY-MM-DD');
|
2015-03-28 14:42:07 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
if (
|
|
|
|
moment(today).toString() === moment(timeKeys[0]).toString() ||
|
|
|
|
moment(today).subtract(1, 'd').toString() ===
|
|
|
|
moment(timeKeys[0]).toString()
|
|
|
|
) {
|
|
|
|
for (var _i = 1; _i <= timeKeys.length; _i++) {
|
|
|
|
|
|
|
|
if (
|
|
|
|
moment(timeKeys[_i - 1]).subtract(1, 'd').toString() ===
|
|
|
|
moment(timeKeys[_i]).toString()
|
|
|
|
) {
|
|
|
|
|
|
|
|
tmpLongest++;
|
|
|
|
|
|
|
|
if (tmpLongest > user.currentStreak) {
|
|
|
|
user.currentStreak = tmpLongest;
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
break;
|
|
|
|
}
|
|
|
|
}
|
|
|
|
} else {
|
|
|
|
user.currentStreak = 1;
|
2015-05-21 18:07:40 +00:00
|
|
|
}
|
2015-04-24 17:15:15 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
user.save(function(err) {
|
|
|
|
if (err) {
|
|
|
|
return next(err);
|
|
|
|
}
|
2015-03-21 04:42:02 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
var data = {};
|
|
|
|
var progressTimestamps = user.progressTimestamps;
|
|
|
|
progressTimestamps.forEach(function(timeStamp) {
|
|
|
|
data[(timeStamp / 1000)] = 1;
|
|
|
|
});
|
2015-05-21 18:07:40 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
user.currentStreak = user.currentStreak || 1;
|
|
|
|
user.longestStreak = user.longestStreak || 1;
|
|
|
|
var challenges = user.completedChallenges.filter(function ( obj ) {
|
|
|
|
return obj.challengeType === 3 || obj.challengeType === 4;
|
|
|
|
});
|
|
|
|
|
|
|
|
res.render('account/show', {
|
|
|
|
title: 'Camper ' + user.profile.username + '\'s portfolio',
|
|
|
|
username: user.profile.username,
|
|
|
|
name: user.profile.name,
|
|
|
|
location: user.profile.location,
|
|
|
|
githubProfile: user.profile.githubProfile,
|
|
|
|
linkedinProfile: user.profile.linkedinProfile,
|
|
|
|
codepenProfile: user.profile.codepenProfile,
|
|
|
|
facebookProfile: user.profile.facebookProfile,
|
|
|
|
twitterHandle: user.profile.twitterHandle,
|
|
|
|
bio: user.profile.bio,
|
|
|
|
picture: user.profile.picture,
|
|
|
|
progressTimestamps: user.progressTimestamps,
|
|
|
|
website1Link: user.portfolio.website1Link,
|
|
|
|
website1Title: user.portfolio.website1Title,
|
|
|
|
website1Image: user.portfolio.website1Image,
|
|
|
|
website2Link: user.portfolio.website2Link,
|
|
|
|
website2Title: user.portfolio.website2Title,
|
|
|
|
website2Image: user.portfolio.website2Image,
|
|
|
|
website3Link: user.portfolio.website3Link,
|
|
|
|
website3Title: user.portfolio.website3Title,
|
|
|
|
website3Image: user.portfolio.website3Image,
|
|
|
|
challenges: challenges,
|
|
|
|
bonfires: user.completedChallenges.filter(function(challenge) {
|
|
|
|
return challenge.challengeType === 5;
|
|
|
|
}),
|
|
|
|
calender: data,
|
|
|
|
moment: moment,
|
|
|
|
longestStreak: user.longestStreak +
|
|
|
|
(user.longestStreak === 1 ? ' day' : ' days'),
|
|
|
|
currentStreak: user.currentStreak +
|
|
|
|
(user.currentStreak === 1 ? ' day' : ' days')
|
|
|
|
});
|
2015-05-21 18:07:40 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
} else {
|
|
|
|
req.flash('errors', {
|
|
|
|
msg: "404: We couldn't find a page with that url. " +
|
|
|
|
'Please double check the link.'
|
|
|
|
});
|
|
|
|
return res.redirect('/');
|
|
|
|
}
|
2015-05-21 18:07:40 +00:00
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
);
|
|
|
|
}
|
2014-01-28 22:41:13 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* POST /account/profile
|
|
|
|
* Update profile information.
|
|
|
|
*/
|
2014-12-24 02:20:53 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function postUpdateProfile (req, res, next) {
|
2015-03-09 09:35:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
User.findById(req.user.id, function(err) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
var errors = req.validationErrors();
|
|
|
|
if (errors) {
|
|
|
|
req.flash('errors', errors);
|
2015-03-21 04:42:02 +00:00
|
|
|
return res.redirect('/account');
|
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
|
|
|
|
User.findOne({ email: req.body.email }, function(err, existingEmail) {
|
|
|
|
if (err) {
|
|
|
|
return next(err);
|
|
|
|
}
|
|
|
|
var user = req.user;
|
|
|
|
if (existingEmail && existingEmail.email !== user.email) {
|
|
|
|
req.flash('errors', {
|
|
|
|
msg: 'An account with that email address already exists.'
|
|
|
|
});
|
|
|
|
return res.redirect('/account');
|
|
|
|
}
|
|
|
|
User.findOne(
|
|
|
|
{ 'profile.username': req.body.username },
|
|
|
|
function(err, existingUsername) {
|
2015-05-21 18:07:40 +00:00
|
|
|
if (err) {
|
|
|
|
return next(err);
|
2015-03-09 09:35:56 +00:00
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
var user = req.user;
|
|
|
|
if (
|
|
|
|
existingUsername &&
|
|
|
|
existingUsername.profile.username !== user.profile.username
|
|
|
|
) {
|
|
|
|
req.flash('errors', {
|
|
|
|
msg: 'An account with that username already exists.'
|
|
|
|
});
|
|
|
|
return res.redirect('/account');
|
|
|
|
}
|
|
|
|
var body = req.body || {};
|
|
|
|
user.email = body.email.trim() || '';
|
|
|
|
user.profile.name = body.name.trim() || '';
|
|
|
|
user.profile.username = body.username.trim() || '';
|
|
|
|
user.profile.location = body.location.trim() || '';
|
|
|
|
|
|
|
|
user.profile.githubProfile = body.githubProfile.trim() || '';
|
|
|
|
user.profile.facebookProfile = body.facebookProfile.trim() || '';
|
|
|
|
user.profile.linkedinProfile = body.linkedinProfile.trim() || '';
|
|
|
|
|
|
|
|
user.profile.codepenProfile = body.codepenProfile.trim() || '';
|
|
|
|
user.profile.twitterHandle = body.twitterHandle.trim() || '';
|
|
|
|
user.profile.bio = body.bio.trim() || '';
|
|
|
|
|
|
|
|
user.profile.picture = body.picture.trim() ||
|
|
|
|
'https://s3.amazonaws.com/freecodecamp/' +
|
|
|
|
'camper-image-placeholder.png';
|
|
|
|
user.portfolio.website1Title = body.website1Title.trim() || '';
|
|
|
|
user.portfolio.website1Link = body.website1Link.trim() || '';
|
|
|
|
user.portfolio.website1Image = body.website1Image.trim() || '';
|
|
|
|
|
|
|
|
user.portfolio.website2Title = body.website2Title.trim() || '';
|
|
|
|
user.portfolio.website2Link = body.website2Link.trim() || '';
|
|
|
|
user.portfolio.website2Image = body.website2Image.trim() || '';
|
|
|
|
|
|
|
|
user.portfolio.website3Title = body.website3Title.trim() || '';
|
|
|
|
user.portfolio.website3Link = body.website3Link.trim() || '';
|
|
|
|
user.portfolio.website3Image = body.website3Image.trim() || '';
|
|
|
|
|
|
|
|
|
|
|
|
user.save(function (err) {
|
|
|
|
if (err) {
|
|
|
|
return next(err);
|
2015-05-21 18:07:40 +00:00
|
|
|
}
|
2015-06-03 23:19:23 +00:00
|
|
|
resources.updateUserStoryPictures(
|
|
|
|
user._id.toString(),
|
|
|
|
user.profile.picture,
|
|
|
|
user.profile.username,
|
|
|
|
function(err) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
req.flash('success', {
|
|
|
|
msg: 'Profile information updated.'
|
|
|
|
});
|
|
|
|
res.redirect('/account');
|
|
|
|
}
|
|
|
|
);
|
|
|
|
});
|
|
|
|
}
|
|
|
|
);
|
|
|
|
});
|
2013-12-06 04:53:14 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
}
|
2013-12-15 19:11:57 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* POST /account/password
|
|
|
|
* Update current password.
|
|
|
|
*/
|
2013-12-15 19:11:57 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function postUpdatePassword (req, res, next) {
|
|
|
|
req.assert('password', 'Password must be at least 4 characters long')
|
|
|
|
.len(4);
|
2014-02-01 08:39:11 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
req.assert('confirmPassword', 'Passwords do not match')
|
|
|
|
.equals(req.body.password);
|
2013-12-13 02:47:34 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
var errors = req.validationErrors();
|
2014-01-07 23:15:14 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
if (errors) {
|
|
|
|
req.flash('errors', errors);
|
|
|
|
return res.redirect('/account');
|
|
|
|
}
|
2014-01-07 23:15:14 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
User.findById(req.user.id, function(err, user) {
|
2015-03-21 04:42:02 +00:00
|
|
|
if (err) { return next(err); }
|
2014-12-23 16:48:28 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
user.password = req.body.password;
|
2013-12-06 04:53:14 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
user.save(function(err) {
|
|
|
|
if (err) { return next(err); }
|
2014-01-13 09:34:54 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
req.flash('success', { msg: 'Password has been changed.' });
|
|
|
|
res.redirect('/account');
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
});
|
|
|
|
}
|
2013-12-20 06:59:05 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* POST /account/delete
|
|
|
|
* Delete user account.
|
|
|
|
*/
|
|
|
|
|
|
|
|
function postDeleteAccount (req, res, next) {
|
|
|
|
User.destroyById(req.user.id, function(err) {
|
2015-03-21 04:42:02 +00:00
|
|
|
if (err) { return next(err); }
|
2015-06-03 23:19:23 +00:00
|
|
|
req.logout();
|
|
|
|
req.flash('info', { msg: 'Your account has been deleted.' });
|
|
|
|
res.redirect('/');
|
2013-12-13 05:27:51 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
}
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /account/unlink/:provider
|
|
|
|
* Unlink OAuth provider.
|
|
|
|
*/
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function getOauthUnlink (req, res, next) {
|
|
|
|
var provider = req.params.provider;
|
|
|
|
User.findById(req.user.id, function(err, user) {
|
2015-03-21 04:42:02 +00:00
|
|
|
if (err) { return next(err); }
|
2015-06-03 23:19:23 +00:00
|
|
|
|
|
|
|
user[provider] = null;
|
|
|
|
user.tokens =
|
|
|
|
_.reject(user.tokens, function(token) {
|
|
|
|
return token.kind === provider;
|
2014-12-23 16:48:28 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
|
|
|
|
user.save(function(err) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
req.flash('info', { msg: provider + ' account has been unlinked.' });
|
|
|
|
res.redirect('/account');
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
}
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /reset/:token
|
|
|
|
* Reset Password page.
|
|
|
|
*/
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function getReset (req, res, next) {
|
|
|
|
if (req.isAuthenticated()) {
|
|
|
|
return res.redirect('/');
|
|
|
|
}
|
|
|
|
User.findOne(
|
|
|
|
{
|
|
|
|
where: {
|
|
|
|
resetPasswordToken: req.params.token,
|
|
|
|
resetPasswordExpires: Date.now()
|
|
|
|
}
|
|
|
|
},
|
|
|
|
function(err, user) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
if (!user) {
|
|
|
|
req.flash('errors', {
|
|
|
|
msg: 'Password reset token is invalid or has expired.'
|
|
|
|
});
|
|
|
|
return res.redirect('/forgot');
|
|
|
|
}
|
|
|
|
res.render('account/reset', {
|
|
|
|
title: 'Password Reset',
|
|
|
|
token: req.params.token
|
|
|
|
});
|
|
|
|
});
|
2015-03-21 04:42:02 +00:00
|
|
|
}
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* POST /reset/:token
|
|
|
|
* Process the reset password request.
|
|
|
|
*/
|
2015-03-21 04:42:02 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function postReset (req, res, next) {
|
|
|
|
var errors = req.validationErrors();
|
2015-03-21 04:42:02 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
if (errors) {
|
|
|
|
req.flash('errors', errors);
|
|
|
|
return res.redirect('back');
|
|
|
|
}
|
|
|
|
|
|
|
|
async.waterfall([
|
|
|
|
function(done) {
|
|
|
|
User.findOne(
|
|
|
|
{
|
|
|
|
where: {
|
|
|
|
resetPasswordToken: req.params.token,
|
|
|
|
resetPasswordExpires: Date.now()
|
|
|
|
}
|
|
|
|
},
|
|
|
|
function(err, user) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
if (!user) {
|
|
|
|
req.flash('errors', {
|
|
|
|
msg: 'Password reset token is invalid or has expired.'
|
|
|
|
});
|
|
|
|
return res.redirect('back');
|
|
|
|
}
|
|
|
|
|
|
|
|
user.password = req.body.password;
|
|
|
|
user.resetPasswordToken = null;
|
|
|
|
user.resetPasswordExpires = null;
|
|
|
|
|
|
|
|
user.save(function(err) {
|
|
|
|
if (err) { return done(err); }
|
|
|
|
req.logIn(user, function(err) {
|
|
|
|
done(err, user);
|
|
|
|
});
|
2014-03-07 19:08:56 +00:00
|
|
|
});
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
},
|
|
|
|
function(user, done) {
|
|
|
|
var transporter = nodemailer.createTransport({
|
|
|
|
service: 'Mandrill',
|
|
|
|
auth: {
|
|
|
|
user: secrets.mandrill.user,
|
|
|
|
pass: secrets.mandrill.password
|
|
|
|
}
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
var mailOptions = {
|
|
|
|
to: user.email,
|
|
|
|
from: 'Team@freecodecamp.com',
|
|
|
|
subject: 'Your Free Code Camp password has been changed',
|
|
|
|
text: [
|
|
|
|
'Hello,\n\n',
|
|
|
|
'This email is confirming that you requested to',
|
|
|
|
'reset your password for your Free Code Camp account.',
|
|
|
|
'This is your email:',
|
|
|
|
user.email,
|
|
|
|
'\n'
|
|
|
|
].join(' ')
|
|
|
|
};
|
|
|
|
transporter.sendMail(mailOptions, function(err) {
|
|
|
|
if (err) { return done(err); }
|
|
|
|
req.flash('success', {
|
|
|
|
msg: 'Success! Your password has been changed.'
|
|
|
|
});
|
|
|
|
done();
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
}
|
|
|
|
], function(err) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
res.redirect('/');
|
|
|
|
});
|
|
|
|
}
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* GET /forgot
|
|
|
|
* Forgot Password page.
|
|
|
|
*/
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function getForgot (req, res) {
|
|
|
|
if (req.isAuthenticated()) {
|
|
|
|
return res.redirect('/');
|
|
|
|
}
|
|
|
|
res.render('account/forgot', {
|
|
|
|
title: 'Forgot Password'
|
|
|
|
});
|
2015-03-21 04:42:02 +00:00
|
|
|
}
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
/**
|
|
|
|
* POST /forgot
|
|
|
|
* Create a random token, then the send user an email with a reset link.
|
|
|
|
*/
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
function postForgot (req, res, next) {
|
|
|
|
var errors = req.validationErrors();
|
2015-03-21 04:42:02 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
if (errors) {
|
|
|
|
req.flash('errors', errors);
|
|
|
|
return res.redirect('/forgot');
|
|
|
|
}
|
2015-03-21 04:42:02 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
async.waterfall([
|
|
|
|
function(done) {
|
|
|
|
crypto.randomBytes(16, function(err, buf) {
|
|
|
|
if (err) { return done(err); }
|
|
|
|
var token = buf.toString('hex');
|
|
|
|
done(null, token);
|
|
|
|
});
|
|
|
|
},
|
|
|
|
function(token, done) {
|
|
|
|
User.findOne({
|
|
|
|
email: req.body.email.toLowerCase()
|
|
|
|
}, function(err, user) {
|
|
|
|
if (err) { return done(err); }
|
|
|
|
if (!user) {
|
|
|
|
req.flash('errors', {
|
|
|
|
msg: 'No account with that email address exists.'
|
|
|
|
});
|
|
|
|
return res.redirect('/forgot');
|
|
|
|
}
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
user.resetPasswordToken = token;
|
|
|
|
// 3600000 = 1 hour
|
|
|
|
user.resetPasswordExpires = Date.now() + 3600000;
|
2014-03-07 19:08:56 +00:00
|
|
|
|
2015-06-03 23:19:23 +00:00
|
|
|
user.save(function(err) {
|
|
|
|
if (err) { return done(err); }
|
|
|
|
done(null, token, user);
|
|
|
|
});
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
},
|
|
|
|
function(token, user, done) {
|
|
|
|
var transporter = nodemailer.createTransport({
|
|
|
|
service: 'Mandrill',
|
|
|
|
auth: {
|
|
|
|
user: secrets.mandrill.user,
|
|
|
|
pass: secrets.mandrill.password
|
|
|
|
}
|
2015-03-21 04:42:02 +00:00
|
|
|
});
|
2015-06-03 23:19:23 +00:00
|
|
|
var mailOptions = {
|
|
|
|
to: user.email,
|
|
|
|
from: 'Team@freecodecamp.com',
|
|
|
|
subject: 'Reset your Free Code Camp password',
|
|
|
|
text: [
|
|
|
|
'You are receiving this email because you (or someone else)\n',
|
|
|
|
'requested we reset your Free Code Camp account\'s password.\n\n',
|
|
|
|
'Please click on the following link, or paste this into your\n',
|
|
|
|
'browser to complete the process:\n\n',
|
|
|
|
'http://',
|
|
|
|
req.headers.host,
|
|
|
|
'/reset/',
|
|
|
|
token,
|
|
|
|
'\n\n',
|
|
|
|
'If you did not request this, please ignore this email and\n',
|
|
|
|
'your password will remain unchanged.\n'
|
|
|
|
].join('')
|
|
|
|
};
|
|
|
|
transporter.sendMail(mailOptions, function(err) {
|
|
|
|
if (err) { return done(err); }
|
|
|
|
req.flash('info', {
|
|
|
|
msg: 'An e-mail has been sent to ' +
|
|
|
|
user.email +
|
|
|
|
' with further instructions.'
|
|
|
|
});
|
|
|
|
done(null, 'done');
|
|
|
|
});
|
|
|
|
}
|
|
|
|
], function(err) {
|
|
|
|
if (err) { return next(err); }
|
|
|
|
res.redirect('/forgot');
|
|
|
|
});
|
|
|
|
}
|
|
|
|
};
|