UNPKG

@syngrisi/syngrisi

Version:

Syngrisi - Visual Testing Tool

github.com/syngrisi/syngrisi/tree/main/packages/syngrisi

syngrisi/syngrisi

94 lines (77 loc) 3.11 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
import hasha from 'hasha'; import uuidAPIKey from 'uuid-apikey'; import { User } from '@models'; import log from "../lib/logger"; import { RequestUser } from '@types'; import { ApiError, errMsg } from '@utils'; import { appSettings } from "@settings"; import httpStatus from 'http-status'; function getApiKey(): string { return uuidAPIKey.create().apiKey; } const generateApiKey = async (username: string): Promise<string> => { const logOpts = { user: username, scope: 'apikey', msgType: 'GENERATE_API' }; const apiKey = getApiKey(); log.debug( `generate API Key for user: '${username}'`, logOpts ); const hash = hasha(apiKey); const user: RequestUser | null = await User.findOne({ username }); if (!user) throw new Error(`cannot find the user with username: '${username}'`); user.apiKey = hash; await user.save(); return apiKey; }; const changeUserPassword = async (username: string, currentPassword: string, newPassword: string): Promise<void> => { const logOpts = { scope: 'changePassword', msgType: 'CHANGE_PASSWORD', itemType: 'user', ref: username, }; log.debug(`change password for '${username}', params: '${JSON.stringify({ currentPassword, newPassword })}'`, logOpts); const user: RequestUser | null = await User.findOne({ username }); if (!user) { log.error('user is not logged in', logOpts); throw new Error('user is not logged in'); } try { await user.changePassword(currentPassword, newPassword); } catch (e: unknown) { log.error(e, logOpts); throw new Error(errMsg(e)); } log.debug(`password was successfully changed for user: ${username}`, logOpts); }; const changePasswordFirstRun = async (newPassword: string): Promise<void> => { const logOpts = { scope: 'changePasswordFirstRun', msgType: 'CHANGE_PASSWORD_FIRST_RUN', itemType: 'user', ref: 'Administrator', }; const AppSettings = await appSettings; if ((await AppSettings.isAuthEnabled()) && ((await AppSettings.isFirstRun()))) { log.debug(`first run, change password for default 'Administrator', params: '${JSON.stringify({ newPassword })}'`, logOpts); const user = await User.findOne({ username: 'Administrator' }).exec(); if (!user) throw new ApiError(httpStatus.NOT_FOUND, `cannot change password at first run, user withusername: 'Administrator', not found`); logOpts.ref = String(user?.username); await user.setPassword(newPassword); await user.save(); log.debug('password was successfully changed for default Administrator', logOpts); await AppSettings.set('first_run', false); } else { log.error(`trying to use first run API with no first run state, auth: '${await AppSettings.isAuthEnabled()}', global settings: '${(await AppSettings.get('first_run'))}'`, logOpts); throw new Error('forbidden'); } }; export { generateApiKey, changeUserPassword, changePasswordFirstRun, };