setup and invite

2024-08-25 13:36:19 +02:00 · 2024-08-25 13:36:19 +02:00 · 7df7cf2697
commit 7df7cf2697
parent 03e0f90279
23 changed files with 515 additions and 43 deletions
--- a/src/controller/inviteController.ts
+++ b/src/controller/inviteController.ts
@ -0,0 +1,159 @@
+import { Request, Response } from "express";
+import { JWTHelper } from "../helpers/jwtHelper";
+import { JWTToken } from "../type/jwtTypes";
+import InternalException from "../exceptions/internalException";
+import RefreshCommandHandler from "../command/refreshCommandHandler";
+import { CreateRefreshCommand } from "../command/refreshCommand";
+import speakeasy from "speakeasy";
+import UnauthorizedRequestException from "../exceptions/unauthorizedRequestException";
+import QRCode from "qrcode";
+import { CreateUserCommand } from "../command/userCommand";
+import UserCommandHandler from "../command/userCommandHandler";
+import { CreateInviteCommand, DeleteInviteCommand } from "../command/inviteCommand";
+import InviteCommandHandler from "../command/inviteCommandHandler";
+import MailHelper from "../helpers/mailHelper";
+import InviteService from "../service/inviteService";
+import UserService from "../service/userService";
+import CustomRequestException from "../exceptions/customRequestException";
+
+/**
+ * @description start first user
+ * @param req {Request} Express req object
+ * @param res {Response} Express res object
+ * @returns {Promise<*>}
+ */
+export async function inviteUser(req: Request, res: Response): Promise<any> {
+  let origin = req.headers.origin;
+  let username = req.body.username;
+  let mail = req.body.mail;
+  let firstname = req.body.firstname;
+  let lastname = req.body.lastname;
+
+  let users = await UserService.getByMailOrUsername(mail, username);
+  if (users.length == 1) {
+    // username or mail is used
+    if (users[0].username == username && users[0].mail == mail) {
+      throw new CustomRequestException(409, "Username and Mail are already in use");
+    } else if (users[0].username == username) {
+      throw new CustomRequestException(409, "Username is already in use");
+    } else {
+      throw new CustomRequestException(409, "Mail is already in use");
+    }
+  } else if (users.length >= 2) {
+    throw new CustomRequestException(409, "Username and Mail are already in use");
+  }
+
+  var secret = speakeasy.generateSecret({ length: 20, name: `Mitgliederverwaltung ${process.env.CLUB_NAME}` });
+
+  let createInvite: CreateInviteCommand = {
+    username: username,
+    mail: mail,
+    firstname: firstname,
+    lastname: lastname,
+    secret: secret.base32,
+  };
+  let token = await InviteCommandHandler.create(createInvite);
+
+  // sendmail
+  let mailhelper = new MailHelper();
+  await mailhelper.sendMail(
+    mail,
+    `Email Bestätigung für Mitglieder Admin-Portal von ${process.env.CLUB_NAME}`,
+    `Öffne folgenden Link: ${origin}/setup/verify?mail=${mail}&token=${token}`
+  );
+
+  res.sendStatus(204);
+}
+
+/**
+ * @description Create first user
+ * @param req {Request} Express req object
+ * @param res {Response} Express res object
+ * @returns {Promise<*>}
+ */
+export async function verifyInvite(req: Request, res: Response): Promise<any> {
+  let mail = req.body.mail;
+  let token = req.body.token;
+
+  let { secret } = await InviteService.getByMailAndToken(mail, token);
+
+  const url = `otpauth://totp/Mitgliederverwaltung ${process.env.CLUB_NAME}?secret=${secret}`;
+
+  QRCode.toDataURL(url)
+    .then((result) => {
+      res.send(result);
+    })
+    .catch((err) => {
+      throw new InternalException("QRCode not created");
+    });
+}
+
+/**
+ * @description Create first user
+ * @param req {Request} Express req object
+ * @param res {Response} Express res object
+ * @returns {Promise<*>}
+ */
+export async function finishInvite(req: Request, res: Response): Promise<any> {
+  let mail = req.body.mail;
+  let token = req.body.token;
+  let totp = req.body.totp;
+
+  let { secret, username, firstname, lastname } = await InviteService.getByMailAndToken(mail, token);
+
+  let valid = speakeasy.totp.verify({
+    secret: secret,
+    encoding: "base32",
+    token: totp,
+    window: 2,
+  });
+
+  console.log(valid);
+
+  if (!valid) {
+    throw new UnauthorizedRequestException("Token not valid or expired");
+  }
+
+  let createUser: CreateUserCommand = {
+    username: username,
+    firstname: firstname,
+    lastname: lastname,
+    mail: mail,
+    secret: secret,
+  };
+  let id = await UserCommandHandler.create(createUser);
+
+  let jwtData: JWTToken = {
+    userId: id,
+    username: username,
+    rights: [],
+  };
+
+  let accessToken: string;
+  let refreshToken: string;
+
+  JWTHelper.create(jwtData)
+    .then((result) => {
+      accessToken = result;
+    })
+    .catch((err) => {
+      console.log(err);
+      throw new InternalException("Failed accessToken creation");
+    });
+
+  let refreshCommand: CreateRefreshCommand = {
+    userId: id,
+  };
+  refreshToken = await RefreshCommandHandler.create(refreshCommand);
+
+  let deleteInvite: DeleteInviteCommand = {
+    mail: mail,
+    token: token,
+  };
+  await InviteCommandHandler.deleteByTokenAndMail(deleteInvite);
+
+  res.json({
+    accessToken,
+    refreshToken,
+  });
+}