fosrl/pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2025-05-13 13:50:40 +01:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

Merge branch 'main' of https://github.com/fosrl/pangolin

Browse source
This commit is contained in:
Owen Schwartz 2024-10-10 22:00:32 -04:00
commit 33990da68c
No known key found for this signature in database
GPG key ID: 8271FDFFD9E0CCBD
16 changed files with 215 additions and 24 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

18
bruno/Auth/2fa-disable.bru Normal file
View file

@ -0,0 +1,18 @@
meta {
name: 2fa-disable
type: http
seq: 6
}
post {
url: http://localhost:3000/api/v1/auth/2fa/disable
body: json
auth: none
}
body:json {
{
"password": "aaaaa-1A",
"code": "377289"
}
}

17
bruno/Auth/2fa-enable.bru Normal file
View file

@ -0,0 +1,17 @@
meta {
name: 2fa-enable
type: http
seq: 4
}
post {
url: http://localhost:3000/api/v1/auth/2fa/enable
body: json
auth: none
}
body:json {
{
"code": "374138"
}
}

17
bruno/Auth/2fa-request.bru Normal file
View file

@ -0,0 +1,17 @@
meta {
name: 2fa-request
type: http
seq: 5
}
post {
url: http://localhost:3000/api/v1/auth/2fa/request
body: json
auth: none
}
body:json {
{
"password": "aaaaa-1A"
}
}

18
bruno/Auth/change-password.bru Normal file
View file

@ -0,0 +1,18 @@
meta {
name: change-password
type: http
seq: 9
}
post {
url: http://localhost:3000/api/v1/auth/change-password
body: json
auth: none
}
body:json {
{
"oldPassword": "",
"newPassword": ""
}
}

13
bruno/Auth/login.bru
View file

@ -4,8 +4,15 @@ meta {
seq: 1
}
get {
url:
body: none
post {
url: http://localhost:3000/api/v1/auth/login
body: json
auth: none
}
body:json {
{
"email": "milo@fossorial.io",
"password": "Password123!"
}
}

11
bruno/Auth/logout.bru Normal file
View file

@ -0,0 +1,11 @@
meta {
name: logout
type: http
seq: 3
}
post {
url: http://localhost:3000/api/v1/auth/logout
body: none
auth: none
}

17
bruno/Auth/reset-password-request.bru Normal file
View file

@ -0,0 +1,17 @@
meta {
name: reset-password-request
type: http
seq: 10
}
post {
url: http://localhost:3000/api/v1/auth/reset-password/request
body: json
auth: none
}
body:json {
{
"email": "milo@fossorial.io"
}
}

19
bruno/Auth/reset-password.bru Normal file
View file

@ -0,0 +1,19 @@
meta {
name: reset-password
type: http
seq: 11
}
post {
url: http://localhost:3000/api/v1/auth/reset-password
body: json
auth: none
}
body:json {
{
"token": "3uhsbom72dwdhboctwrtntyd6jrlg4jtf5oaxy4k",
"newPassword": "aaaaa-1A",
"code": "6irqCGR3"
}
}

13
bruno/Auth/signup.bru
View file

@ -4,8 +4,15 @@ meta {
seq: 2
}
get {
url:
body: none
put {
url: http://localhost:3000/api/v1/auth/signup
body: json
auth: none
}
body:json {
{
"email": "milo@fossorial.io",
"password": "Password123!"
}
}

11
bruno/Auth/verify-email-request.bru Normal file
View file

@ -0,0 +1,11 @@
meta {
name: verify-email-request
type: http
seq: 8
}
post {
url: http://localhost:3000/api/v1/auth/verify-email/request
body: none
auth: none
}

9
bruno/Auth/verify-email.bru
View file

@ -1,18 +1,17 @@
meta {
name: verify-email
type: http
seq: 3
seq: 7
}
put {
url: http://localhost:3000/api/v1/auth/signup
post {
url: http://localhost:3000/api/v1/auth/verify-email
body: json
auth: none
}
body:json {
{
"email": "owen@fossorial.io",
"password": "Password123!"
"code": "50317187"
}
}

6
bruno/bruno.json
View file

@ -5,5 +5,9 @@
"ignore": [
"node_modules",
".git"
]
],
"presets": {
"requestType": "http",
"requestUrl": "http://localhost:3000/api/v1"
}
}

1
package.json
View file

@ -39,6 +39,7 @@
"http-errors": "2.0.0",
"lucia": "3.2.0",
"lucide-react": "0.447.0",
"moment": "2.30.1",
"next": "14.2.13",
"node-fetch": "3.3.2",
"nodemailer": "6.9.15",

5
server/auth/index.ts
View file

@ -5,7 +5,6 @@ import { Lucia, TimeSpan } from "lucia";
import { DrizzleSQLiteAdapter } from "@lucia-auth/adapter-drizzle";
import db from "@server/db";
import { sessions, users } from "@server/db/schema";
import environment from "@server/environment";
const adapter = new DrizzleSQLiteAdapter(db, sessions, users);
@ -16,6 +15,7 @@ export const lucia = new Lucia(adapter, {
twoFactorEnabled: attributes.twoFactorEnabled,
twoFactorSecret: attributes.twoFactorSecret,
emailVerified: attributes.emailVerified,
dateCreated: attributes.dateCreated,
};
},
// getSessionAttributes: (attributes) => {
@ -30,7 +30,7 @@ export const lucia = new Lucia(adapter, {
// secure: environment.ENVIRONMENT === "prod",
// sameSite: "strict",
secure: false,
domain: ".testing123.io"
domain: ".testing123.io",
},
},
sessionExpiresIn: new TimeSpan(2, "w"),
@ -52,6 +52,7 @@ interface DatabaseUserAttributes {
twoFactorEnabled: boolean;
twoFactorSecret?: string;
emailVerified: boolean;
dateCreated: string;
}
interface DatabaseSessionAttributes {

9
server/db/schema.ts
View file

@ -81,6 +81,7 @@ export const users = sqliteTable("user", {
emailVerified: integer("emailVerified", { mode: "boolean" })
.notNull()
.default(false),
dateCreated: text("dateCreated").notNull(),
});
export const twoFactorBackupCodes = sqliteTable("twoFactorBackupCodes", {
@ -107,7 +108,9 @@ export const userOrgs = sqliteTable("userOrgs", {
orgId: integer("orgId")
.notNull()
.references(() => orgs.orgId),
roleId: integer("roleId").notNull().references(() => roles.roleId),
roleId: integer("roleId")
.notNull()
.references(() => roles.roleId),
});
export const emailVerificationCodes = sqliteTable("emailVerificationCodes", {
@ -205,7 +208,9 @@ export const userResources = sqliteTable("userResources", {
export const limitsTable = sqliteTable("limits", {
limitId: integer("limitId").primaryKey({ autoIncrement: true }),
orgId: integer("orgId").references(() => orgs.orgId, { onDelete: "cascade" }),
orgId: integer("orgId").references(() => orgs.orgId, {
onDelete: "cascade",
}),
name: text("name").notNull(),
value: integer("value").notNull(),
description: text("description"),

39
server/routers/auth/signup.ts
View file

@ -12,6 +12,8 @@ import response from "@server/utils/response";
import { SqliteError } from "better-sqlite3";
import { sendEmailVerificationCode } from "./sendEmailVerificationCode";
import { passwordSchema } from "@server/auth/passwordSchema";
import { eq } from "drizzle-orm";
import moment from "moment";
export const signupBodySchema = z.object({
email: z.string().email(),
@ -51,10 +53,47 @@ export async function signup(
const userId = generateId(15);
try {
const existing = await db
.select()
.from(users)
.where(eq(users.email, email));
if (existing && existing.length > 0) {
const user = existing[0];
// If the user is already verified, we don't want to create a new user
if (user.emailVerified) {
return next(
createHttpError(
HttpCode.BAD_REQUEST,
"A user with that email address already exists",
),
);
}
const dateCreated = moment(user.dateCreated);
const now = moment();
const diff = now.diff(dateCreated, "hours");
if (diff < 2) {
// If the user was created less than 2 hours ago, we don't want to create a new user
return next(
createHttpError(
HttpCode.BAD_REQUEST,
"A verification email was already sent to this email address. Please check your email for the verification code.",
),
);
} else {
// If the user was created more than 2 hours ago, we want to delete the old user and create a new one
await db.delete(users).where(eq(users.id, user.id));
}
}
await db.insert(users).values({
id: userId,
email: email,
passwordHash,
dateCreated: moment().toISOString(),
});
const session = await lucia.createSession(userId, {});