UNPKG

node-local-auth

Version:

Framework agnostic library for secure username/email/password authentication including registration and password management

github.com/emertechie/node-local-auth

emertechie/node-local-auth

53 lines (45 loc) 2.38 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
'use strict'; const assert = require('./utils/assert'); const vutils = require('./utils/validationUtils'); const schemas = require('./schemas'); const co = require('co'); const ValidationError = require('./errors/validationError'); const AuthenticationError = require('./errors/authenticationError'); const debug = require('debug')('nla-changepassword'); class ChangePassword { constructor(userStore, hashAlgo, emailService) { this.userStore = assert(userStore, 'userStore'); this.hashAlgo = assert(hashAlgo, 'hashAlgo'); this.emailService = assert(emailService, 'emailService'); } changePassword(loggedInUserEmail, oldPassword, newPassword, confirmNewPassword, optionalTenantId) { if (!loggedInUserEmail) { return Promise.reject(new AuthenticationError('Unauthenticated')); } try { const vOldPassword = vutils.assertValid(schemas.password.required().validate(oldPassword), 'Old password required'); const vNewPassword = vutils.assertValid(schemas.password.required().validate(newPassword), 'New password required'); const vConfirmNewPassword = vutils.assertValid(schemas.password.required().validate(confirmNewPassword), 'New password confirmation required'); if (vNewPassword !== vConfirmNewPassword) { return Promise.reject(new ValidationError('New password and confirm password do not match')); } const self = this; return co(function *() { const user = yield self.userStore.getByEmail(loggedInUserEmail, optionalTenantId); if (!user) { throw new ValidationError('Could not find user'); } const oldPwdOk = yield self.hashAlgo.verify(vOldPassword, user.hashedPassword); if (!oldPwdOk) { return Promise.reject(new ValidationError('Incorrect password')); } const hashedPassword = yield self.hashAlgo.hash(vNewPassword); yield self.userStore.setHashedPassword(user, hashedPassword, optionalTenantId); yield self.emailService.sendPasswordSuccessfullyChangedEmail(user, optionalTenantId); }); } catch (e) { return Promise.reject(e); } } } module.exports = ChangePassword;