lqdvi/app2-api
2
0
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity

.

Browse Source
This commit is contained in:
David Arranz 2022-02-17 14:20:42 +01:00
parent 49e43cb27a
commit 2675762f69
2 changed files with 465 additions and 319 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

682
modules/auth/auth.controller.js
View File

@ -1,333 +1,481 @@
'use strict';
"use strict";
const _ = require('lodash');
const moment = require('moment');
const httpStatus = require('http-status');
const controllerHelper = require('../../helpers/controller.helper');
const crypto = require('crypto');
const securityHelper = require('../../helpers/security.helper');
const authService = require('./auth.service');
const userService = require('./user.service');
const eventInscriptionService = require('../events/events_inscriptions.service');
const { RequestContactImportNewList } = require('sib-api-v3-sdk');
moment.locale('es');
const _ = require("lodash");
const moment = require("moment");
const httpStatus = require("http-status");
const controllerHelper = require("../../helpers/controller.helper");
const crypto = require("crypto");
const securityHelper = require("../../helpers/security.helper");
const authService = require("./auth.service");
const userService = require("./user.service");
const eventInscriptionService = require("../events/events_inscriptions.service");
const { RequestContactImportNewList } = require("sib-api-v3-sdk");
moment.locale("es");
////////////////////////////////////////////////////////////////////////////////
// CONSTANTS
////////////////////////////////////////////////////////////////////////////////
// Module Name
const MODULE_NAME = '[auth.controller]';
const MODULE_NAME = "[auth.controller]";
////////////////////////////////////////////////////////////////////////////////
// PUBLIC METHODS
////////////////////////////////////////////////////////////////////////////////
async function login(req, res, next) {
try {
const data = {
id: req.user.id,
email: req.user.email,
phone: req.user.phoneNumber,
fbuid: req.user.uid
};
try {
const data = {
id: req.user.id,
email: req.user.email,
phone: req.user.phoneNumber,
fbuid: req.user.uid,
};
const tokens = securityHelper.generateToken(data);
const tokens = securityHelper.generateToken(data);
const response = {
token: tokens.token,
refreshToken: tokens.refreshToken,
user: req.user,
};
const response = {
token: tokens.token,
refreshToken: tokens.refreshToken,
user: req.user,
};
return controllerHelper.handleResultResponse(response, null, req.params, res, httpStatus.OK);
} catch (error) {
return controllerHelper.handleErrorResponse(MODULE_NAME, login.name, error, res)
}
return controllerHelper.handleResultResponse(
response,
null,
req.params,
res,
httpStatus.OK
);
} catch (error) {
return controllerHelper.handleErrorResponse(
MODULE_NAME,
login.name,
error,
res
);
}
}
async function loginWithPhone(req, res, next) {
try {
const appVersion = ((req && req.headers && req.headers['accept-version']) ? req.headers['accept-version'] : null);
console.log('loginWithPhone - appVersion: ', appVersion);
try {
const appVersion =
req && req.headers && req.headers["accept-version"]
? req.headers["accept-version"]
: null;
console.log("loginWithPhone - appVersion: ", appVersion);
console.log(req.user);
const findOptions = {
phone: req.user.phoneNumber,
fbuid: req.user.uid
};
console.log(req.user);
const findOptions = {
phone: req.user.phoneNumber,
fbuid: req.user.uid,
};
//Comprobamos si el usuario ya existe en nuestro sistema
let _user = await authService.extraMethods.findUserByPhone(req.user.phoneNumber);
if (_user) {
_user = _user.toJSON();
if (appVersion) {
if (_user.app_version != appVersion) {
const result = userService._updateLastLoginAndVersionUser(_user.id, appVersion);
console.log('PRUEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEBA>>>> ', result);
_user.app_version = appVersion;
}
}
const tokenData = {
id: _user.id,
email: _user.email,
phone: _user.phone,
fbuid: _user.fbuid,
};
const tokens = securityHelper.generateToken(tokenData);
_user.token = tokens.token;
//Recuperamos el número de tickets para los proximos eventos
try {
const result = await eventInscriptionService._getInscriptionsOfNextEventsUser(_user.id);
console.log('Entradas del usuario', result);
_user.nextTicketsCount = result;
} catch (error) {
console.error(error);
return handleErrorResponse(MODULE_NAME, 'getInscriptionsOfNextEventsCount', error, res)
}
return controllerHelper.handleResultResponse(_user, null, req.params, res, httpStatus.OK);
} else {
return controllerHelper.handleResultResponse(null, null, req.params, res, httpStatus.NOT_FOUND);
//Comprobamos si el usuario ya existe en nuestro sistema
let _user = await authService.extraMethods.findUserByPhone(
req.user.phoneNumber
);
if (_user) {
_user = _user.toJSON();
if (appVersion) {
if (_user.app_version != appVersion) {
const result = userService._updateLastLoginAndVersionUser(
_user.id,
appVersion
);
console.log("PRUEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEBA>>>> ", result);
_user.app_version = appVersion;
}
} catch (error) {
}
const tokenData = {
id: _user.id,
email: _user.email,
phone: _user.phone,
fbuid: _user.fbuid,
};
const tokens = securityHelper.generateToken(tokenData);
_user.token = tokens.token;
//Recuperamos el número de tickets para los proximos eventos
try {
const result =
await eventInscriptionService._getInscriptionsOfNextEventsUser(
_user.id
);
console.log("Entradas del usuario", result);
_user.nextTicketsCount = result;
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(MODULE_NAME, login.name, error, res)
return handleErrorResponse(
MODULE_NAME,
"getInscriptionsOfNextEventsCount",
error,
res
);
}
return controllerHelper.handleResultResponse(
_user,
null,
req.params,
res,
httpStatus.OK
);
} else {
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.NOT_FOUND
);
}
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(
MODULE_NAME,
login.name,
error,
res
);
}
}
async function register(req, res, next) {
function cleanAdminData(user) {
let cUser = user;
delete cUser.lastLogin;
delete cUser.state;
delete cUser.createdAt;
delete cUser.updatedAt;
return cUser;
}
function cleanAdminData(user) {
let cUser = user;
delete cUser.lastLogin;
delete cUser.state;
delete cUser.createdAt;
delete cUser.updatedAt;
return cUser;
}
const values = {
phone: req.body.phone,
fbuid: req.body.fbuid,
};
const values = {
const appVersion =
req && req.headers && req.headers["accept-version"]
? req.headers["accept-version"]
: null;
console.log("register - appVersion: ", appVersion);
//Comprobamos si el usuario ya existe en nuestro sistema
let newUser = await authService.extraMethods.findUserByPhone(values.phone);
console.log("COMPROBAMOS IS EXISTE EN NUESTRO SISTEMA", newUser);
if (!newUser) {
try {
const data = {
//refresh_token: tokens.refreshToken,
phone: req.body.phone,
fbuid: req.body.fbuid
};
fbuid: req.body.fbuid,
email: req.body.email,
name: req.body.name,
surname: req.body.surname,
entityId: req.body.entityid,
accessibility: req.body.accesssibility,
profile: req.body.profile,
app_version: appVersion,
lastlogin: moment().utc(),
};
const appVersion = ((req && req.headers && req.headers['accept-version']) ? req.headers['accept-version'] : null);
console.log('register - appVersion: ', appVersion);
//Comprobamos si el usuario ya existe en nuestro sistema
let newUser = await authService.extraMethods.findUserByPhone(values.phone);
console.log('COMPROBAMOS IS EXISTE EN NUESTRO SISTEMA', newUser);
if (!newUser) {
try {
const data = {
//refresh_token: tokens.refreshToken,
phone: req.body.phone,
fbuid: req.body.fbuid,
email: req.body.email,
name: req.body.name,
surname: req.body.surname,
entityId: req.body.entityid,
accessibility: req.body.accesssibility,
profile: req.body.profile,
app_version: appVersion,
lastlogin: moment().utc(),
};
newUser = await authService.extraMethods.createUser(data);
console.log('CREAMOS EL USUARIO EN NUESTRO SISTEMA', newUser);
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(MODULE_NAME, register.name, error, res);
}
};
if (newUser) {
newUser = newUser.toJSON();
newUser = cleanAdminData(newUser);
if (appVersion) {
if (newUser.app_version != appVersion) {
const result = userService._updateLastLoginAndVersionUser(newUser.id, appVersion);
console.log('PRUEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEBA>>>> ', result);
newUser.app_version = appVersion;
}
}
const tokenData = {
phone: values.phone,
fbuid: values.fbuid,
id: newUser.id,
email: newUser.email,
};
const tokens = securityHelper.generateToken(tokenData);
newUser.token = tokens.token;
console.log('COMO YA EXISTE CREAMOS EL TOKEN Y LO ASIGNAMOS', newUser);
newUser = await authService.extraMethods.createUser(data);
console.log("CREAMOS EL USUARIO EN NUESTRO SISTEMA", newUser);
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(
MODULE_NAME,
register.name,
error,
res
);
}
return controllerHelper.handleResultResponse(newUser, null, req.params, res, httpStatus.OK);
}
if (newUser) {
newUser = newUser.toJSON();
newUser = cleanAdminData(newUser);
if (appVersion) {
if (newUser.app_version != appVersion) {
const result = userService._updateLastLoginAndVersionUser(
newUser.id,
appVersion
);
console.log("PRUEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEBA>>>> ", result);
newUser.app_version = appVersion;
}
}
const tokenData = {
phone: values.phone,
fbuid: values.fbuid,
id: newUser.id,
email: newUser.email,
};
const tokens = securityHelper.generateToken(tokenData);
newUser.token = tokens.token;
console.log("COMO YA EXISTE CREAMOS EL TOKEN Y LO ASIGNAMOS", newUser);
}
return controllerHelper.handleResultResponse(
newUser,
null,
req.params,
res,
httpStatus.OK
);
}
async function regenerateToken(req, res, next) {
const refreshToken = req.body.token;
const phone = req.body.phone;
const email = req.body.email;
const user = await authService.extraMethods.findUserByRefreshToken(refreshToken);
const refreshToken = req.body.token;
const phone = req.body.phone;
const email = req.body.email;
const user = await authService.extraMethods.findUserByRefreshToken(
refreshToken
);
console.debug(user, req.body);
console.debug(user, req.body);
if (user && user.phone === phone && user.email === email) {
const tokenData = {
phone: user.phone,
fbuid: user.fbuid,
id: user.id,
email: user.email,
};
try {
const tokens = securityHelper.generateToken(tokenData);
await authService.extraMethods.updateUserRefreshToken(user.id, tokens.refreshToken);
const result = { token: tokens.token };
return controllerHelper.handleResultResponse(result, null, req.params, res, httpStatus.OK);
} catch(error) {
return controllerHelper.handleErrorResponse(MODULE_NAME, regenerateToken.name, error, res);
}
} else {
return controllerHelper.handleResultResponse(null, null, req.params, res, httpStatus.UNAUTHORIZED);
if (user && user.phone === phone && user.email === email) {
const tokenData = {
phone: user.phone,
fbuid: user.fbuid,
id: user.id,
email: user.email,
};
try {
const tokens = securityHelper.generateToken(tokenData);
await authService.extraMethods.updateUserRefreshToken(
user.id,
tokens.refreshToken
);
const result = { token: tokens.token };
return controllerHelper.handleResultResponse(
result,
null,
req.params,
res,
httpStatus.OK
);
} catch (error) {
return controllerHelper.handleErrorResponse(
MODULE_NAME,
regenerateToken.name,
error,
res
);
}
} else {
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.UNAUTHORIZED
);
}
}
async function rejectToken(req, res, next) {
const refreshToken = req.body.refreshToken;
const user = await authService.extraMethods.findUserByRefreshToken(refreshToken);
const refreshToken = req.body.refreshToken;
const user = await authService.extraMethods.findUserByRefreshToken(
refreshToken
);
if (user && user.token === refreshToken ) {
try {
await authService.extraMethods.deleteRefreshToken(refreshToken);
return controllerHelper.handleResultResponse(result, null, req.params, res, httpStatus.OK);
} catch (error) {
return controllerHelper.handleErrorResponse(MODULE_NAME, rejectToken.name, error, res);
}
} else {
return controllerHelper.handleResultResponse(null, null, req.params, res, httpStatus.NOT_FOUND);
if (user && user.token === refreshToken) {
try {
await authService.extraMethods.deleteRefreshToken(refreshToken);
return controllerHelper.handleResultResponse(
result,
null,
req.params,
res,
httpStatus.OK
);
} catch (error) {
return controllerHelper.handleErrorResponse(
MODULE_NAME,
rejectToken.name,
error,
res
);
}
} else {
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.NOT_FOUND
);
}
}
// Registro por email y por password
async function singup(req, res, next) {
var newUser = undefined;
var newUser = undefined;
try {
const data = {
email: req.body.email,
name: req.body.name,
surname: req.body.surname,
level: 8,
password: crypto.createHash('sha512').update(req.body.password).digest('hex')
};
try {
const data = {
email: req.body.email,
name: req.body.name,
surname: req.body.surname,
level: 8,
password: crypto
.createHash("sha512")
.update(req.body.password)
.digest("hex"),
};
newUser = await authService.extraMethods.createUser(data);
newUser = await authService.extraMethods.createUser(data);
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(
MODULE_NAME,
register.name,
error,
res
);
}
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(MODULE_NAME, register.name, error, res);
}
if (newUser) {
newUser = newUser.toJSON();
if (newUser) {
newUser = newUser.toJSON();
const tokenData = {
phone: undefined,
fbuid: undefined,
id: newUser.id,
email: newUser.email,
};
const tokens = securityHelper.generateToken(tokenData);
const tokenData = {
phone: undefined,
fbuid: undefined,
id: newUser.id,
email: newUser.email,
};
const tokens = securityHelper.generateToken(tokenData);
newUser.token = tokens.token;
}
newUser.token = tokens.token;
}
return controllerHelper.handleResultResponse(newUser, null, req.params, res, httpStatus.OK);
return controllerHelper.handleResultResponse(
newUser,
null,
req.params,
res,
httpStatus.OK
);
}
function verify(req, res, next) {
const params = controllerHelper.extractParamsFromRequest(req, res, {});
const phone = params.query.phone;
const email = params.query.email;
const fbuid = params.query.fbuid;
const user = req.user;
const params = controllerHelper.extractParamsFromRequest(req, res, {});
const phone = params.query.phone;
const email = params.query.email;
const fbuid = params.query.fbuid;
const user = req.user;
if (user && user.phone === phone && user.email === email && user.fbuid === fbuid) {
return controllerHelper.handleResultResponse(user, null, req.params, res, httpStatus.OK);
} else {
return controllerHelper.handleResultResponse(null, null, req.params, res, httpStatus.UNAUTHORIZED);
}
if (
user &&
user.phone === phone &&
user.email === email &&
user.fbuid === fbuid
) {
return controllerHelper.handleResultResponse(
user,
null,
req.params,
res,
httpStatus.OK
);
} else {
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.UNAUTHORIZED
);
}
}
async function getOrCreateUser(req, res, next) {
console.log('>>>>>>>>>>>>>>>>>>>> getOrCreateUser');
const params = controllerHelper.extractParamsFromRequest(req, res, {});
let dataInscription = res.locals.dataInscription;
if (!dataInscription)
return handleResultResponse("Error getOrCreateUser, prepareInscription, recuperateEvent, recuperateReservation requerida", null, params, res, httpStatus.NOT_FOUND);
console.log(">>>>>>>>>>>>>>>>>>>> getOrCreateUser");
const params = controllerHelper.extractParamsFromRequest(req, res, {});
let dataInscription = res.locals.dataInscription;
if (!dataInscription)
return handleResultResponse(
"Error getOrCreateUser, prepareInscription, recuperateEvent, recuperateReservation requerida",
null,
params,
res,
httpStatus.NOT_FOUND
);
//Iniciamos el usuario relacionadas con la inscripción.
let dataUser = {
id: (req.user) ? req.user.id : null,
phone: (req.user) ? req.user.phone : null, //((req.body.phone != '+34') ? req.body.phone : null), lo quitamos de momento por la de movistar
name: (req.user) ? req.user.name : req.body.name,
surname: (req.user) ? req.user.surname : req.body.surname,
email: (req.user) ? req.user.email : req.body.email,
entityId: null,
entityName: null,
entityLevel: null,
userResult: (req.user) ? req.user : null,
};
//Asignamos a los datos del usuario a crear, el id de la entidad a la que pertenece, este caso solo es necesario cuando viene la inscripción por web ya que hay que crear un usuario nuevo
if (dataInscription.reservation) {
dataUser.entityId = dataInscription.reservation.entityId;
};
//Iniciamos el usuario relacionadas con la inscripción.
let dataUser = {
id: req.user ? req.user.id : null,
phone: req.user ? req.user.phone : null, //((req.body.phone != '+34') ? req.body.phone : null), lo quitamos de momento por la de movistar
name: req.user ? req.user.name : req.body.name,
surname: req.user ? req.user.surname : req.body.surname,
email: req.user ? req.user.email : req.body.email,
entityId: null,
entityName: null,
entityLevel: null,
userResult: req.user ? req.user : null,
};
//creamos o recuperamos el usuario teniendo en cuenta que pude venir por APP o WEB
//si viene por web se tendra en cuenta el email y si viene por APP el phone para buscar
try {
//CHAPUZA PARA PODER DAR DE ALTA USUARIOS CON EL MISMO CORREO ELECTRONICO, PERO DISTINTO NOMBRE Y APELLIDO.
if (req.user) //? 'app' : 'web', //En el caso de tener ya usuario viene por APP sino viene por web
dataUser.userResult = await userService._getOrCreateUser(dataUser)
else
dataUser.userResult = await userService._getOrCreateUserWEB(dataUser);
//Asignamos a los datos del usuario a crear, el id de la entidad a la que pertenece, este caso solo es necesario cuando viene la inscripción por web ya que hay que crear un usuario nuevo
if (dataInscription.reservation) {
dataUser.entityId = dataInscription.reservation.entityId;
}
if (!dataUser.userResult) {
// No se ha encontrado
return handleResultResponse("No se ha podido crear o encontrar el usuario dado", null, params, res, httpStatus.NOT_FOUND);
};
} catch (error) {
return handleErrorResponse(MODULE_NAME, 'createInscription', error, res);
};
console.log('>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>', dataUser.userResult.user.Entity);
dataUser.entityId = (dataUser.userResult.user.Entity) ? dataUser.userResult.user.Entity.id : null;
dataUser.entityName = (dataUser.userResult.user.Entity) ? dataUser.userResult.user.Entity.name : 'DEFAULT';
dataUser.entityLevel = (dataUser.userResult.user.Entity) ? dataUser.userResult.user.Entity.level : null;
res.locals.dataUser = dataUser;
next();
//creamos o recuperamos el usuario teniendo en cuenta que pude venir por APP o WEB
//si viene por web se tendra en cuenta el email y si viene por APP el phone para buscar
try {
//CHAPUZA PARA PODER DAR DE ALTA USUARIOS CON EL MISMO CORREO ELECTRONICO, PERO DISTINTO NOMBRE Y APELLIDO.
if (req.user)
//? 'app' : 'web', //En el caso de tener ya usuario viene por APP sino viene por web
dataUser.userResult = await userService._getOrCreateUser(dataUser);
else dataUser.userResult = await userService._getOrCreateUserWEB(dataUser);
if (!dataUser.userResult) {
// No se ha encontrado
return handleResultResponse(
"No se ha podido crear o encontrar el usuario dado",
null,
params,
res,
httpStatus.NOT_FOUND
);
}
} catch (error) {
return handleErrorResponse(MODULE_NAME, "createInscription", error, res);
}
console.log(
">>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>>",
dataUser.userResult.user.Entity
);
dataUser.entityId = dataUser.userResult.user.Entity
? dataUser.userResult.user.Entity.id
: null;
dataUser.entityName = dataUser.userResult.user.Entity
? dataUser.userResult.user.Entity.name
: "DEFAULT";
dataUser.entityLevel = dataUser.userResult.user.Entity
? dataUser.userResult.user.Entity.level
: null;
res.locals.dataUser = dataUser;
next();
}
module.exports = {
login,
loginWithPhone,
register,
regenerateToken,
rejectToken,
singup,
verify,
getOrCreateUser,
MODULE_NAME
}
login,
loginWithPhone,
register,
regenerateToken,
rejectToken,
singup,
verify,
getOrCreateUser,
MODULE_NAME,
};

102
modules/auth/auth.service.js
View File

@ -1,61 +1,59 @@
'use strict';
"use strict";
//const JwtHelper = require('../../helpers/jwt.helper');
const models = require('../../core/models');
const models = require("../../core/models");
const extraMethods = {
findUser: async (params, context) => {
return await models.User.findOne({
where: params,
include: [{
required: false,
model: models.Entity,
as: 'Entity',
}]
const extraMethods = {
findUser: async (params, context) => {
return await models.User.findOne({
where: params,
include: [
{
required: false,
model: models.Entity,
as: "Entity",
},
],
});
},
});
},
findUserByPhone: async (Phone) => {
return await models.User.findOne({
where: { phone: Phone },
});
},
findUserByPhone: async (Phone) => {
return await models.User.findOne({
where: {phone: Phone},
});
},
createUser: async (params, context) => {
// return models.sequelize.transaction(async transaction => {
//const result = await models.User.create(params, { transaction });
const result = await models.User.create(params);
return result;
// });
},
createUser: async (params, context) => {
// return models.sequelize.transaction(async transaction => {
//const result = await models.User.create(params, { transaction });
const result = await models.User.create(params);
return result;
// });
},
findUserByRefreshToken: async (refreshToken) => {
return await models.User.findOne({
where: {
refresh_token: refreshToken,
state: "active",
},
});
},
findUserByRefreshToken: async(refreshToken) => {
return await models.User.findOne({
where: {
refresh_token: refreshToken,
state: 'active'
}
})
},
updateUserRefreshToken: async (userId, newRefreshToken) => {
return await models.User.update(
{ refresh_token: newRefreshToken },
{ where: { id: userId } }
);
},
updateUserRefreshToken: async(userId, newRefreshToken) => {
return await models.User.update(
{ refresh_token: newRefreshToken },
{ where: { id: userId }}
);
},
deleteRefreshToken: async (userId, refreshToken) => {
return await models.User.update(
{ refresh_token: null },
{ where: { id: userId } }
);
}
}
module.exports = {
extraMethods
deleteRefreshToken: async (userId, refreshToken) => {
return await models.User.update(
{ refresh_token: null },
{ where: { id: userId } }
);
},
};
module.exports = {
extraMethods,
};