import { crypt, sha1, randomStr } from "../utils/CryptUtils"; import { APIClient } from "../entities/APIClient"; import { UserLoginTokens } from "../entities/UserLoginTokens"; import { DatabaseHelper } from "./DatabaseHelper"; /** * Account helper * * @author Pierre HUBERT */ const USER_TABLE = "utilisateurs"; const USERS_TOKENS_TABLE = "comunic_api_users_tokens"; export class AccountHelper { /** * Given email address and password, try to sign in user * * @param email The email of the user * @param password User password * @param client Information about associated client / null if none found */ static async LoginUser(email: string, password: string, client: APIClient) : Promise { // Perform a request on the database const row = await DatabaseHelper.QueryRow({ table: USER_TABLE, fields: ["ID"], where: { mail: email, password: this.CryptPassword(password) } }); // Check if user was found if(row == null) return null; const userID = row.ID; // Check for existing tokens let tokens = await this.GetClientTokens(userID, client); if(tokens != null) return tokens; const newTokens : UserLoginTokens = { userID: userID, clientID: client.id, token1: randomStr(150), token2: "dummy_data" } // Save new tokens await DatabaseHelper.InsertRow(USERS_TOKENS_TABLE, { user_id: newTokens.userID, service_id: newTokens.clientID, token1: newTokens.token1, token2: newTokens.token2 }); return newTokens; } /** * Get user client tokens (if it exists) * * @param userID Target user ID * @param client Information about associated client / null if none found */ private static async GetClientTokens(userID: number, client: APIClient): Promise { const row = await DatabaseHelper.QueryRow({ table: USERS_TOKENS_TABLE, where: { user_id: userID, service_id: client.id } }); return row == null ? null : this.DBToUserTokens(row); } /** * Crypt a password * * @param pass The password to crypt * @return Encrypted string */ private static CryptPassword(pass: string) : string { return crypt(sha1(pass), sha1(pass)); } private static DBToUserTokens(row : any) : UserLoginTokens { return { userID: row.user_id, clientID: row.service_id, token1: row.token1, token2: row.token2 }; } }