UNPKG

@frangoteam/fuxa

Version:

Web-based Process Visualization (SCADA/HMI/Dashboard) software

github.com/frangoteam/FUXA

frangoteam/FUXA

263 lines (244 loc) • 8.12 kB

JavaScript

/** * Module to manage the users in a database * Table: 'users' */ 'use strict'; const fs = require('fs'); const path = require('path'); var sqlite3 = require('sqlite3').verbose(); const bcrypt = require('bcryptjs'); const { forEach } = require('async'); var settings // Application settings var logger; // Application logger var db_usr; // Database of users /** * Init and bind the database resource * @param {*} _settings * @param {*} _log */ function init(_settings, _log) { settings = _settings; logger = _log; return _bind(); } /** * Bind the database resource by create the table if not exist */ function _bind() { return new Promise(function (resolve, reject) { var dbfile = path.join(settings.workDir, 'users.fuxap.db'); var dbfileExist = fs.existsSync(dbfile); db_usr = new sqlite3.Database(dbfile, function (err) { if (err) { logger.error(`usrstorage.bind failed! ${err}`); reject(); } logger.info(`usrstorage.connected ${dbfile} database`, true); }); // prepare query var sql = "CREATE TABLE if not exists users (username TEXT PRIMARY KEY, fullname TEXT, password TEXT, groups INTEGER, info TEXT);"; sql += "CREATE TABLE if not exists roles (name TEXT PRIMARY KEY, value TEXT);"; db_usr.exec(sql, function (err) { if (err) { logger.error(`usrstorage.bind failed! ${err}`); reject(); } else { const columnsToAdd = [{ name: 'fullname', type: 'TEXT' }, { name: 'info', type: 'TEXT' }]; _checkUpdate(columnsToAdd).then(() => { resolve(dbfileExist); }).catch(() => { resolve(dbfileExist); }); } }); }); } function _checkUpdate(columnsToAdd) { return new Promise(function (resolve, reject) { const addColumn = (column, callback) => { const { name, type } = column; const addColumnQuery = `ALTER TABLE users ADD COLUMN ${name} ${type};`; db_usr.run(addColumnQuery, err => { if (err) { if (!err.message.includes('duplicate column name')) { logger.error(`usrstorage._checkUpdate error! ${err}`); } } callback(); }); }; const addColumnsInSerie = index => { if (index < columnsToAdd.length) { addColumn(columnsToAdd[index], () => { addColumnsInSerie(index + 1); }); } else { resolve(); } }; addColumnsInSerie(0); }); } /** * Set default users value in database (administrator) */ function setDefault() { return new Promise(function (resolve, reject) { // prepare query var sql = ""; sql += "INSERT OR REPLACE INTO users (username, fullname, password, groups) VALUES('admin', 'Administrator Account', '" + bcrypt.hashSync('123456', 10) + "','-1');"; db_usr.exec(sql, function (err) { if (err) { logger.error(`usrstorage.set failed! ${err}`); reject(); } else { resolve(); } }); }); } /** * Return the Users list */ function getUsers(user) { return new Promise(function (resolve, reject) { var sql = "SELECT username, fullname, password, groups, info FROM users"; var params = []; if (user && user.username) { sql += " WHERE username = ?"; params = [user.username]; } db_usr.all(sql, params, (error, rows) => { if (error) { reject(error); } else { resolve(rows); } }); }); } /** * Set user value in database */ function setUser(usr, fullname, pwd, groups, info) { return new Promise(function (resolve, reject) { // prepare query var exist = false; getUsers({ username: usr }).then(function (data) { if (data && data.length) { exist = true; } var sql = ""; if (pwd) { sql = "INSERT OR REPLACE INTO users (username, fullname, password, groups, info) VALUES('" + usr + "','" + fullname + "','" + bcrypt.hashSync(pwd, 10) + "','" + groups + "','" + info + "');"; if (exist) { sql = "UPDATE users SET password = '" + bcrypt.hashSync(pwd, 10) + "', info = '" + info + "', groups = '" + groups + "', fullname = '" + fullname + "' WHERE username = '" + usr + "';"; } } else { sql = "INSERT OR REPLACE INTO users (username, fullname, groups, info) VALUES('" + usr + "','" + fullname + "','" + groups + "','" + info + "');"; if (exist) { sql = "UPDATE users SET groups = '" + groups + "', info = '" + info + "', fullname = '" + fullname + "' WHERE username = '" + usr + "';"; } } db_usr.exec(sql, function (err) { if (err) { logger.error(`usrstorage.set failed! ${err}`); reject(); } else { resolve(); } }); }).catch(function (err) { reject(); }); }); } /** * Remove user from database */ function removeUser(usr) { return new Promise(function (resolve, reject) { // prepare query var sql = "DELETE FROM users WHERE username = '" + usr + "'"; db_usr.exec(sql, function (err) { if (err) { logger.error(`usrstorage.remove failed! ${err}`); reject(); } else { resolve(); } }); }); } /** * Return the Roles list */ function getRoles() { return new Promise(function (resolve, reject) { var sql = "SELECT value FROM roles"; db_usr.all(sql, function (err, rows) { if (err) { reject(err); } else { resolve(rows); } }); }); } /** * Set roles value in database */ function setRoles(roles) { return new Promise(async function (resolve, reject) { for (var i = 0; i < roles.length; i++) { const role = roles[i]; var value = JSON.stringify(role).replace(/\'/g,"''"); var sql = "INSERT OR REPLACE INTO roles (name, value) VALUES('" + role.id + "','"+ value + "');"; await db_usr.exec(sql, function (err) { if (err) { logger.error(`usrstorage.set role failed! ${err}`); reject(); } }); } resolve(); }); } /** * Remove roles from database */ function removeRoles(roles) { return new Promise(async function (resolve, reject) { for (var i = 0; i < roles.length; i++) { const role = roles[i]; var sql = "DELETE FROM roles WHERE name = '" + role.id + "'"; await db_usr.exec(sql, function (err) { if (err) { logger.error(`usrstorage.remove role failed! ${err}`); reject(); } }); } resolve(); }); } /** * Close the database */ function close() { if (db_usr) { db_usr.close(); } } module.exports = { init: init, close: close, setDefault: setDefault, getUsers: getUsers, setUser: setUser, removeUser: removeUser, getRoles: getRoles, setRoles: setRoles, removeRoles: removeRoles };