UNPKG

@nocobase/plugin-auth

Version:

User authentication management, including password, SMS, and support for Single Sign-On (SSO) protocols, with extensibility.

docs.nocobase.com/handbook/auth

92 lines (90 loc) 3.14 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
/** * This file is part of the NocoBase (R) project. * Copyright (c) 2020-2024 NocoBase Co., Ltd. * Authors: NocoBase Team. * * This project is dual-licensed under AGPL-3.0 and NocoBase Commercial License. * For more information, please refer to: https://www.nocobase.com/agreement. */ var __defProp = Object.defineProperty; var __getOwnPropDesc = Object.getOwnPropertyDescriptor; var __getOwnPropNames = Object.getOwnPropertyNames; var __hasOwnProp = Object.prototype.hasOwnProperty; var __export = (target, all) => { for (var name in all) __defProp(target, name, { get: all[name], enumerable: true }); }; var __copyProps = (to, from, except, desc) => { if (from && typeof from === "object" || typeof from === "function") { for (let key of __getOwnPropNames(from)) if (!__hasOwnProp.call(to, key) && key !== except) __defProp(to, key, { get: () => from[key], enumerable: !(desc = __getOwnPropDesc(from, key)) || desc.enumerable }); } return to; }; var __toCommonJS = (mod) => __copyProps(__defProp({}, "__esModule", { value: true }), mod); var auth_exports = {}; __export(auth_exports, { default: () => auth_default }); module.exports = __toCommonJS(auth_exports); var import_preset = require("../../preset"); /* istanbul ignore file -- @preserve */ var auth_default = { lostPassword: async (ctx, next) => { ctx.body = await ctx.auth.lostPassword(); await next(); }, resetPassword: async (ctx, next) => { ctx.body = await ctx.auth.resetPassword(); await next(); }, checkResetToken: async (ctx, next) => { const { resetToken } = ctx.action.params.values; ctx.body = await ctx.auth.checkResetToken(resetToken); await next(); }, changePassword: async (ctx, next) => { const systemSettings = ctx.db.getRepository("systemSettings"); const settings = await systemSettings.findOne(); const enableChangePassword = settings.get("enableChangePassword"); if (enableChangePassword === false) { ctx.throw(403, ctx.t("Password is not allowed to be changed", { ns: import_preset.namespace })); } const { values: { oldPassword, newPassword, confirmPassword } } = ctx.action.params; if (newPassword !== confirmPassword) { ctx.throw(400, ctx.t("The password is inconsistent, please re-enter", { ns: import_preset.namespace })); } const currentUser = ctx.auth.user; if (!currentUser) { ctx.throw(401); } let key; if (currentUser.username) { key = "username"; } else { key = "email"; } const UserRepo = ctx.db.getRepository("users"); const user = await UserRepo.findOne({ where: { [key]: currentUser[key] } }); const pwd = ctx.db.getCollection("users").getField("password"); const isValid = await pwd.verify(oldPassword, user.password); if (!isValid) { ctx.throw(401, ctx.t("The password is incorrect, please re-enter", { ns: import_preset.namespace })); } await UserRepo.update({ filterByTk: user.id, values: { password: newPassword } }); ctx.body = currentUser; await next(); } };