lqdvi/app2-api
2
0
Fork 0
Code Issues 24 Pull Requests Actions Packages Projects Releases Wiki Activity
0bd5891df3
app2-api/modules/auth/auth.controller.js
David 0bd5891df3 API v3
2022-03-12 12:03:31 +01:00

505 lines
13 KiB
JavaScript
Raw Blame History

"use strict";
const _ = require("lodash");
const moment = require("moment");
const httpStatus = require("http-status");
const controllerHelper = require("../../helpers/controller.helper");
const crypto = require("crypto");
const securityHelper = require("../../helpers/security.helper");
const authService = require("./auth.service");
const userService = require("./user.service");
const eventInscriptionService = require("../events/events_inscriptions.service");
const { RequestContactImportNewList } = require("sib-api-v3-sdk");
moment.locale("es");
////////////////////////////////////////////////////////////////////////////////
// CONSTANTS
////////////////////////////////////////////////////////////////////////////////
// Module Name
const MODULE_NAME = "[auth.controller]";
////////////////////////////////////////////////////////////////////////////////
// PUBLIC METHODS
////////////////////////////////////////////////////////////////////////////////
async function login(req, res, next) {
try {
const data = {
id: req.user.id,
email: req.user.email,
phone: req.user.phoneNumber,
fbuid: req.user.uid,
};
const tokens = securityHelper.generateToken(data);
const response = {
token: tokens.token,
refreshToken: tokens.refreshToken,
user: req.user,
};
return controllerHelper.handleResultResponse(
response,
null,
req.params,
res,
httpStatus.OK
);
} catch (error) {
return controllerHelper.handleErrorResponse(
MODULE_NAME,
login.name,
error,
res
);
}
}
async function loginWithPhone(req, res, next) {
try {
const appVersion =
req && req.headers && req.headers["accept-version"]
? req.headers["accept-version"]
: null;
console.log("loginWithPhone - appVersion: ", appVersion);
console.log(req.user);
const findOptions = {
phone: req.user.phoneNumber,
fbuid: req.user.uid,
};
//Comprobamos si el usuario ya existe en nuestro sistema
let _user = await authService.extraMethods.findUserByPhone(
req.user.phoneNumber
);
if (_user) {
_user = _user.toJSON();
if (appVersion) {
if (_user.app_version != appVersion) {
const result = userService._updateLastLoginAndVersionUser(
_user.id,
appVersion
);
_user.app_version = appVersion;
}
}
const tokenData = {
id: _user.id,
email: _user.email,
phone: _user.phone,
fbuid: _user.fbuid,
};
const tokens = securityHelper.generateToken(tokenData);
_user.token = tokens.token;
//Recuperamos el número de tickets para los proximos eventos
try {
const result =
await eventInscriptionService._getInscriptionsOfNextEventsUser(
_user.id
);
console.log("Entradas del usuario", result);
_user.nextTicketsCount = result;
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(
MODULE_NAME,
"getInscriptionsOfNextEventsCount",
error,
res
);
}
return controllerHelper.handleResultResponse(
_user,
null,
req.params,
res,
httpStatus.OK
);
} else {
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.NOT_FOUND
);
}
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(
MODULE_NAME,
login.name,
error,
res
);
}
}
async function register(req, res, next) {
function cleanAdminData(user) {
let cUser = user;
delete cUser.lastLogin;
delete cUser.state;
delete cUser.createdAt;
delete cUser.updatedAt;
return cUser;
}
const values = {
phone: req.body.phone,
fbuid: req.body.fbuid,
};
const appVersion =
req && req.headers && req.headers["accept-version"]
? req.headers["accept-version"]
: null;
console.log("register - appVersion: ", appVersion);
//Comprobamos si el usuario ya existe en nuestro sistema
console.log("COMPROBAMOS SI EXISTE EN NUESTRO SISTEMA", values.phone);
let newUser = await authService.extraMethods.findUserByPhone(values.phone);
if (!newUser) {
console.log("NO EXISTE");
try {
const data = {
//refresh_token: tokens.refreshToken,
phone: req.body.phone,
fbuid: req.body.fbuid,
email: req.body.email,
name: req.body.name,
surname: req.body.surname,
entityId: req.body.entityid,
accessibility: req.body.accesssibility,
profile: req.body.profile,
app_version: appVersion,
lastlogin: moment().utc(),
};
newUser = await authService.extraMethods.createUser(data);
console.log("CREAMOS EL USUARIO EN NUESTRO SISTEMA", newUser);
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(
MODULE_NAME,
register.name,
error,
res
);
}
}
if (newUser) {
newUser = newUser.toJSON();
newUser = cleanAdminData(newUser);
if (appVersion) {
if (newUser.app_version != appVersion) {
const result = userService._updateLastLoginAndVersionUser(
newUser.id,
appVersion
);
console.log("PRUEEEEEEEEEEEEEEEEEEEEEEEEEEEEEEBA>>>> ", result);
newUser.app_version = appVersion;
}
}
const tokenData = {
phone: values.phone,
fbuid: values.fbuid,
id: newUser.id,
email: newUser.email,
};
const tokens = securityHelper.generateToken(tokenData);
newUser.token = tokens.token;
console.log("COMO YA EXISTE CREAMOS EL TOKEN Y LO ASIGNAMOS", newUser);
}
return controllerHelper.handleResultResponse(
newUser,
null,
req.params,
res,
httpStatus.OK
);
}
async function regenerateToken(req, res, next) {
const refreshToken = req.body.token;
const phone = req.body.phone;
const email = req.body.email;
const user = await authService.extraMethods.findUserByRefreshToken(
refreshToken
);
console.debug(user, req.body);
if (user && user.phone === phone && user.email === email) {
const tokenData = {
phone: user.phone,
fbuid: user.fbuid,
id: user.id,
email: user.email,
};
try {
const tokens = securityHelper.generateToken(tokenData);
await authService.extraMethods.updateUserRefreshToken(
user.id,
tokens.refreshToken
);
const result = { token: tokens.token };
return controllerHelper.handleResultResponse(
result,
null,
req.params,
res,
httpStatus.OK
);
} catch (error) {
return controllerHelper.handleErrorResponse(
MODULE_NAME,
regenerateToken.name,
error,
res
);
}
} else {
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.UNAUTHORIZED
);
}
}
async function rejectToken(req, res, next) {
const refreshToken = req.body.refreshToken;
const user = await authService.extraMethods.findUserByRefreshToken(
refreshToken
);
if (user && user.token === refreshToken) {
try {
await authService.extraMethods.deleteRefreshToken(refreshToken);
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.OK
);
} catch (error) {
return controllerHelper.handleErrorResponse(
MODULE_NAME,
rejectToken.name,
error,
res
);
}
} else {
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.NOT_FOUND
);
}
}
// Registro por email y por password
async function singup(req, res, next) {
var newUser = undefined;
try {
const data = {
email: req.body.email,
name: req.body.name,
surname: req.body.surname,
level: 8,
password: crypto
.createHash("sha512")
.update(req.body.password)
.digest("hex"),
};
newUser = await authService.extraMethods.createUser(data);
} catch (error) {
console.error(error);
return controllerHelper.handleErrorResponse(
MODULE_NAME,
register.name,
error,
res
);
}
if (newUser) {
newUser = newUser.toJSON();
const tokenData = {
phone: undefined,
fbuid: undefined,
id: newUser.id,
email: newUser.email,
};
const tokens = securityHelper.generateToken(tokenData);
newUser.token = tokens.token;
}
return controllerHelper.handleResultResponse(
newUser,
null,
req.params,
res,
httpStatus.OK
);
}
function adminVerify(req, res, next) {
return controllerHelper.handleResultResponse(
"OK",
null,
req.params,
res,
httpStatus.OK
);
}
function verify(req, res, next) {
const params = controllerHelper.extractParamsFromRequest(req, res, {});
const phone = params.query.phone;
const email = params.query.email;
const fbuid = params.query.fbuid;
const user = req.user;
if (
user &&
user.phone === phone &&
user.email === email &&
user.fbuid === fbuid
) {
return controllerHelper.handleResultResponse(
user,
null,
req.params,
res,
httpStatus.OK
);
} else {
return controllerHelper.handleResultResponse(
null,
null,
req.params,
res,
httpStatus.UNAUTHORIZED
);
}
}
async function getOrCreateUser(req, res, next) {
const params = controllerHelper.extractParamsFromRequest(req, res, {});
let dataInscription = res.locals.dataInscription;
if (!dataInscription)
return controllerHelper.handleResultResponse(
"Error getOrCreateUser, prepareDataInscription, recuperateReservationByCode requerida",
null,
params,
res,
httpStatus.NOT_FOUND
);
//Iniciamos el usuario relacionadas con la inscripción.
let dataUser = {
id: req.user ? req.user.id : null,
phone: req.user ? req.user.phone : null, //((req.body.phone != '+34') ? req.body.phone : null), lo quitamos de momento por la de movistar
name: req.user ? req.user.name : req.body.name,
surname: req.user ? req.user.surname : req.body.surname,
email: req.user ? req.user.email : req.body.email,
entityId: null,
entityName: null,
entityLevel: null,
userResult: req.user ? req.user : null,
};
//Asignamos a los datos del usuario a crear, el id de la entidad a la que pertenece, este caso solo es necesario cuando viene la inscripción por web ya que hay que crear un usuario nuevo
if (dataInscription.reservation) {
dataUser.entityId = dataInscription.reservation.entityId;
}
//creamos o recuperamos el usuario teniendo en cuenta que pude venir por APP o WEB
//si viene por web se tendra en cuenta el email y si viene por APP el phone para buscar
try {
//CHAPUZA PARA PODER DAR DE ALTA USUARIOS CON EL MISMO CORREO ELECTRONICO, PERO DISTINTO NOMBRE Y APELLIDO.
if (req.user)
//? 'app' : 'web', //En el caso de tener ya usuario viene por APP sino viene por web
dataUser.userResult = await userService._getOrCreateUser(dataUser);
else dataUser.userResult = await userService._getOrCreateUserWEB(dataUser);
if (!dataUser.userResult) {
// No se ha encontrado
return controllerHelper.handleResultResponse(
"No se ha podido crear o encontrar el usuario dado",
null,
params,
res,
httpStatus.NOT_FOUND
);
}
} catch (error) {
return controllerHelper.handleErrorResponse(
MODULE_NAME,
"getOrCreateUser",
error,
res
);
}
//console.log(">>>>>>>>>>>>>>>>>>>> getOrCreateUser", dataUser.userResult.user.Entity);
//Refrescamos datos que nos interesan
dataUser.id = dataUser.userResult.user.id;
dataUser.entityId = dataUser.userResult.user.Entity
? dataUser.userResult.user.Entity.id
: null;
dataUser.entityName = dataUser.userResult.user.Entity
? dataUser.userResult.user.Entity.name
: "DEFAULT";
dataUser.entityLevel = dataUser.userResult.user.Entity
? dataUser.userResult.user.Entity.level
: null;
dataUser.email = dataUser.userResult.user ? dataUser.userResult.user.email : null;
dataUser.phone = dataUser.userResult.user ? dataUser.userResult.user.phone : null; //((req.body.phone != '+34') ? req.body.phone : null), lo quitamos de momento por la de movistar
dataUser.name = dataUser.userResult.user ? dataUser.userResult.user.name : null;
dataUser.surname = dataUser.userResult.user ? dataUser.userResult.user.surname : null;
;
//Reasignamos a variable de entorno
res.locals.dataUser = dataUser;
next();
}
module.exports = {
login,
loginWithPhone,
register,
regenerateToken,
rejectToken,
singup,
adminVerify,
verify,
getOrCreateUser,
MODULE_NAME,
};
Reference in New Issue View Git Blame Copy Permalink