UNPKG

@codetanzania/emis-stakeholder

Version:

A representation of an entity (e.g municipal, individual, agency, organization etc) consisting of contact information (e.g. name, e-mail addresses, phone numbers) and other descriptive information of interest in emergency(or disaster) management.

github.com/codetanzania/emis-stakeholder

codetanzania/emis-stakeholder

104 lines (91 loc) 2.64 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
import { waterfall } from 'async'; import _ from 'lodash'; import { idOf, normalizeError } from '@lykmapipo/common'; import { getString } from '@lykmapipo/env'; import { encode } from '@lykmapipo/jwt-common'; import { Router } from '@lykmapipo/express-common'; import { parsePhoneNumber } from '@lykmapipo/phone'; import Party from './party.model'; /* constants */ const API_VERSION = getString('API_VERSION', '1.0.0'); const router = new Router({ version: API_VERSION, }); /** * @description A route to handle authentication/signin to the application * @version 0.2.0 * @since 1.5.0 */ router.post('/signin', (request, response, next) => { /* prevent invalid sign in credentials */ if ( _.isEmpty(request.body) || _.isEmpty(request.body.username) || _.isEmpty(request.body.password) ) { next(new Error('Invalid signin details')); } // continue with signin else { // normalize credentials const { username } = _.merge({}, request.body); const email = username.toLowerCase(); const parsedPhoneNumber = parsePhoneNumber(username); let phone; // check if phone number was parsed if (parsedPhoneNumber) { phone = parsedPhoneNumber.e164NoPlus; } const credentials = { $or: [{ email }, { mobile: phone || username }], deletedAt: { $eq: null, }, password: request.body.password, }; waterfall( [ function authenticateParty(then) { // authenticate active party only Party.authenticate(credentials, then); }, // ensure roles & permissions function populate(party, then) { party.populate('role', then); }, function encodePartyToJWT(party, then) { encode({ id: idOf(party) }, function afterEncode(error, jwtToken) { if (error) { then(error); } else { then(null, { party: _.merge(party.toJSON()), token: jwtToken, }); } }); }, ], function done(error, result) { // fail to authenticate party // return error message if (error) { // Set forbidden status code normalizeError({ status: 403 }); next(error); } // party authenticated successfully // token generated successfully else { response.ok({ success: true, party: result.party, token: result.token, }); } } ); } }); /* expose authentication router */ export default router;