bo/worklenz
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Initial commit: Angular frontend and Expressjs backend

Browse Source
This commit is contained in:
chamikaJ
2024-05-17 09:32:30 +05:30
parent eb0a0d77d6
commit 298ca6beeb
3548 changed files with 193558 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
worklenz-backend/src/passport/passport-strategies/passport-constants.ts Normal file
View File

@@ -0,0 +1,2 @@
export const SUCCESS_KEY = "success";
export const ERROR_KEY = "error";

73
worklenz-backend/src/passport/passport-strategies/passport-google.ts Normal file
View File

@@ -0,0 +1,73 @@
import GoogleStrategy from "passport-google-oauth20";
import {sendWelcomeEmail} from "../../shared/email-templates";
import {log_error} from "../../shared/utils";
import db from "../../config/db";
import {ERROR_KEY} from "./passport-constants";
import {Request} from "express";
async function handleGoogleLogin(req: Request, _accessToken: string, _refreshToken: string, profile: GoogleStrategy.Profile, done: GoogleStrategy.VerifyCallback) {
try {
const body: any = profile;
if (Array.isArray(profile.emails) && profile.emails.length) body.email = profile.emails[0].value;
if (Array.isArray(profile.photos) && profile.photos.length) body.picture = profile.photos[0].value;
// Check for existing accounts signed up using OAuth
const localAccountResult = await db.query("SELECT 1 FROM users WHERE email = $1 AND password IS NOT NULL;", [body.email]);
if (localAccountResult.rowCount) {
const message = `No Google account exists for email ${body.email}.`;
(req.session as any).error = message;
return done(null, undefined, req.flash(ERROR_KEY, message));
}
// If the user came from an invitation, this exists
const state = JSON.parse(req.query.state as string || "{}");
if (state) {
body.team = state.team;
body.member_id = state.teamMember;
}
const q1 = `SELECT id, google_id, name, email, active_team
FROM users
WHERE google_id = $1
OR email = $2;`;
const result1 = await db.query(q1, [body.id, body.email]);
if (result1.rowCount) { // Login
const [user] = result1.rows;
// Update active team of users who came from an invitation
try {
await db.query("SELECT set_active_team($1, $2);", [user.id || null, state.team || null]);
} catch (error) {
log_error(error, user);
}
if (user)
return done(null, user);
} else { // Register
const q2 = `SELECT register_google_user($1) AS user;`;
const result2 = await db.query(q2, [JSON.stringify(body)]);
const [data] = result2.rows;
sendWelcomeEmail(data.user.email, body.displayName);
return done(null, data.user, {message: "User successfully logged in"});
}
return done(null);
} catch (error: any) {
return done(error);
}
}
/**
* Passport strategy for authenticate with google
* http://www.passportjs.org/packages/passport-google-oauth20/
*/
export default new GoogleStrategy.Strategy({
clientID: process.env.GOOGLE_CLIENT_ID as string,
clientSecret: process.env.GOOGLE_CLIENT_SECRET as string,
callbackURL: process.env.GOOGLE_CALLBACK_URL as string,
passReqToCallback: true
},
(req, _accessToken, _refreshToken, profile, done) => void handleGoogleLogin(req, _accessToken, _refreshToken, profile, done));

46
worklenz-backend/src/passport/passport-strategies/passport-local-login.ts Normal file
View File

@@ -0,0 +1,46 @@
import bcrypt from "bcrypt";
import {Strategy as LocalStrategy} from "passport-local";
import {log_error} from "../../shared/utils";
import db from "../../config/db";
import {Request} from "express";
async function handleLogin(req: Request, email: string, password: string, done: any) {
(req.session as any).flash = {};
if (!email || !password)
return done(null, false, {message: "Invalid credentials."});
try {
// select the user from the database based on the username
const q = `SELECT id, email, google_id, password
FROM users
WHERE email = $1
AND google_id IS NULL;`;
const result = await db.query(q, [email]);
const [data] = result.rows;
// Check user existence
if (!data?.password)
return done(null, false, {message: "Invalid credentials."});
// Compare the password & email
if (bcrypt.compareSync(password, data.password) && email === data.email) {
delete data.password;
req.logout(() => true);
return done(false, data, {message: "User successfully logged in"});
}
return done(null, false, {message: "Invalid credentials."});
} catch (error) {
log_error(error, req.body);
return done(error);
}
}
export default new LocalStrategy({
usernameField: "email", // = email
passwordField: "password",
passReqToCallback: true
}, (req, email, password, done) => void handleLogin(req, email, password, done));

96
worklenz-backend/src/passport/passport-strategies/passport-local-signup.ts Normal file
View File

@@ -0,0 +1,96 @@
import bcrypt from "bcrypt";
import {Strategy as LocalStrategy} from "passport-local";
import {DEFAULT_ERROR_MESSAGE} from "../../shared/constants";
import {sendWelcomeEmail} from "../../shared/email-templates";
import {log_error} from "../../shared/utils";
import db from "../../config/db";
import {Request} from "express";
import {ERROR_KEY, SUCCESS_KEY} from "./passport-constants";
async function isGoogleAccountFound(email: string) {
const q = `
SELECT 1
FROM users
WHERE email = $1
AND google_id IS NOT NULL;
`;
const result = await db.query(q, [email]);
return !!result.rowCount;
}
async function registerUser(password: string, team_id: string, name: string, team_name: string, email: string, timezone: string, team_member_id: string) {
const salt = bcrypt.genSaltSync(10);
const encryptedPassword = bcrypt.hashSync(password, salt);
const teamId = team_id || null;
const q = "SELECT register_user($1) AS user;";
const body = {
name,
team_name,
email,
password: encryptedPassword,
timezone,
invited_team_id: teamId,
team_member_id,
};
const result = await db.query(q, [JSON.stringify(body)]);
const [data] = result.rows;
return data.user;
}
async function handleSignUp(req: Request, email: string, password: string, done: any) {
(req.session as any).flash = {};
// team = Invited team_id if req.body.from_invitation is true
const {name, team_name, team_member_id, team_id, timezone} = req.body;
if (!team_name) return done(null, null, req.flash(ERROR_KEY, "Team name is required"));
const googleAccountFound = await isGoogleAccountFound(email);
if (googleAccountFound)
return done(null, null, req.flash(ERROR_KEY, `${req.body.email} is already linked with a Google account.`));
try {
const user = await registerUser(password, team_id, name, team_name, email, timezone, team_member_id);
sendWelcomeEmail(email, name);
setTimeout(() => {
return done(null, user, req.flash(SUCCESS_KEY, "Registration successful. Please check your email for verification."));
}, 500);
} catch (error: any) {
const message = (error?.message) || "";
if (message === "ERROR_INVALID_JOINING_EMAIL") {
return done(null, null, req.flash(ERROR_KEY, `No invitations found for email ${req.body.email}.`));
}
// if error.message is "email already exists" then it should have the email address in the error message after ":".
if (message.includes("EMAIL_EXISTS_ERROR") || error.constraint === "users_google_id_uindex") {
const [, value] = error.message.split(":");
return done(null, null, req.flash(ERROR_KEY, `Worklenz account already exists for email ${value}.`));
}
if (message.includes("TEAM_NAME_EXISTS_ERROR")) {
const [, value] = error.message.split(":");
return done(null, null, req.flash(ERROR_KEY, `Team name "${value}" already exists. Please choose a different team name.`));
}
// The Team name is already taken.
if (error.constraint === "teams_url_uindex" || error.constraint === "teams_name_uindex") {
return done(null, null, req.flash(ERROR_KEY, `Team name "${team_name}" is already taken. Please choose a different team name.`));
}
log_error(error, req.body);
return done(null, null, req.flash(ERROR_KEY, DEFAULT_ERROR_MESSAGE));
}
}
export default new LocalStrategy({
usernameField: "email",
passwordField: "password",
passReqToCallback: true
}, (req, email, password, done) => void handleSignUp(req, email, password, done));