UNPKG

apinode

Version:

An API server that can greatly reduce the work needed to implment API services. It can also cooperate with other API node to make it a mesh of services.

github.com/benlue/apinode

benlue/apinode

81 lines (70 loc) 2.38 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
/*! * cnode * authors: Ben Lue * Copyright(c) 2015 Gocharm Inc. */ var async = require('async'), soar = require('sql-soar'), userUtil = require('../util/userUtil.js'); var usrExpr = soar.sql('GrpUser AS gu') .join({ table: 'FbUser AS fu', onWhat: 'gu.GrpUser_id=fu.userID', type: 'LEFT' }) .column(['passwd', 'fbUserID']) .filter({ name: 'GrpUser_id', op: '='}), qUsrCmd = {op: 'query', expr: usrExpr}; exports.checkArguments = function(rt, cb) { var inData = rt.inData; if (!inData.oldPasswd) return cb( {code: 1, message: 'The original password is missing.'}); if (!inData.passwd || !inData.passwd2) return cb( {code: 2, message: 'The new password is missing.'} ); if (inData.passwd2 && inData.passwd !== inData.passwd2) return cb( {code: 3, message: 'Password and confirmed password do not match.'} ); cb( null, true ); }; exports.run = function(rt, cb) { var inData = rt.inData; async.waterfall([ function getUser(cb) { var query = {GrpUser_id: rt.uPro.userID}; soar.execute( qUsrCmd, query, function(err, usrData) { if (err || !usrData) return cb({code: -100, message: 'Internal error.'}); cb(null, usrData); }); }, function matchPasswd(usrData, cb) { if (usrData.fbUserID && !usrData.passwd) return cb( {code: 5, message: 'Cannot set password for the FB user.'}); if (usrData.passwd) { var salt = usrData.passwd.substring(0, 16), passwd = userUtil.genPassword( inData.oldPasswd, salt ); //console.log('incoming passwd is: ' + inData.passwd); //console.log('original password: ' + usrData.passwd); //console.log('generated password: ' + passwd); if (usrData.passwd === passwd) cb( null, usrData); else cb({code: 4, message: 'The original password is not correct.'}); } else return cb( {code: 6, message: 'This user is not allowed to change his/her password.'}); }, function updatePasswd(usrData, cb) { var userID = rt.uPro.userID, newPasswd = userUtil.genPassword( inData.passwd ); soar.update('GrpUser', {passwd: newPasswd}, {GrpUser_id: userID}, function(err) { cb(err ? {code: -100, message: 'Internal error.'} : null); }); } ], function(err) { if (err) cb(null, err); else cb( null, {code: 0, message: 'Ok'} ); }); };