Sign upLogin

dbmedialab/reader-critics

View on GitHub
Star
src/app/services/user/UserDAO.ts

Summary

Maintainability
A
0 mins
Test Coverage
//
// LESERKRITIKK v2 (aka Reader Critics)
// Copyright (C) 2017 DB Medialab/Aller Media AS, Oslo, Norway
// https://github.com/dbmedialab/reader-critics/
//
// This program is free software: you can redistribute it and/or modify it under
// the terms of the GNU General Public License as published by the Free Software
// Foundation, either version 3 of the License, or (at your option) any later
// version.
//
// This program is distributed in the hope that it will be useful, but WITHOUT
// ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS
// FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details.
//
// You should have received a copy of the GNU General Public License along with
// this program. If not, see <http://www.gnu.org/licenses/>.
//

import * as bcrypt from 'bcrypt';
import { identity, pickBy } from 'lodash';

import { Person } from 'base/zz/Person';
import { User } from 'base/User';
import { UserRole } from 'base/UserRole';

import {
    UserDocument,
    UserModel
} from 'app/db/models';

import {
    wrapFind,
    wrapFindOne,
    wrapSave,
} from 'app/db/common';

import {
    defaultLimit,
    defaultSkip,
} from 'app/services//BasicPersistingService';

import emptyCheck from 'app/util/emptyCheck';

import { NotFoundError } from 'app/util/errors';

import { getFilterCondition } from 'app/services/user/lib/getFilterCondition';

export function checkPassword(user : User, password : string) : Promise <boolean> {
    return UserModel.findOne({
        name: user.name,
        email: user.email,
    })
    .select('+password').exec().then((u : UserDocument) => {
        const hash = u.get('password');
        return hash === null ? Promise.resolve(false) : bcrypt.compare(password, hash);
    });
}

export function get(name : String, email? : String) : Promise <User> {
    emptyCheck(name);  // Do not check optional "email" parameter
    const query : any = { name };

    if (email !== undefined) {
        query.email = email;
    }

    // Better be paranoid about the password hash!
    return wrapFindOne <UserDocument, User> (UserModel.findOne(query).select('-password'));
}

export function getRange(
    skip : number = defaultSkip,
    limit : number = defaultLimit,
    sort : {} = { name: 1 },
    search: string
) : Promise <User[]>
{
    const match = getFilterCondition(search);
    return wrapFind <UserDocument, User> (
        UserModel.find(match).sort(sort).skip(skip).limit(limit)
    );
}

/*
 * Fetching user by email. password is excluded.
 */
export function getByEmail(email : String) : Promise <User> {
    emptyCheck(email);
    const query : any = { email: email };

    return wrapFindOne <UserDocument, User> (UserModel.findOne(query).select('-password'));
}

/*
 * Fetching user by ID parameter. Password excluded.
 */
export function getByID(id : String) : Promise <User> {
    return UserModel.findOne({'_id': id})
    .select('-password').exec()
    .then(res => (res === null)
        ? Promise.reject(new NotFoundError('User not found'))
        : Promise.resolve(res)
    );
}

export function getByRole(whatRoles : UserRole[]) : Promise <User[]>
{
    emptyCheck(whatRoles);
    return wrapFind <UserDocument, User> (UserModel.find({
        role: {
            '$in': whatRoles,
        },
        name: {
            '$ne': '',
        },
        email: {
            '$ne': '',
        },
    })
    .select('-password').sort('name'));
}

export function save(user : User) : Promise <User> {
    emptyCheck(user);

    return wrapSave<User>(new UserModel(user).save());
}

export function findOrInsert(user : Person) : Promise <User> {
    emptyCheck(user);
    return wrapFindOne(UserModel.findOneAndUpdate({
        name: user.name,
        email: user.email,
    },
    user,
    {
        upsert: true,
        new: true,
        setDefaultsOnInsert: true,
    }));
}

/*
 * Deletes user entry by ID. Null - if not found, user object if found is returned.
 */
export function doDelete(id: String) : Promise <any> {
    return UserModel.findOneAndRemove({ '_id': id })
    .then(res => (res === null)
        ? Promise.reject(new NotFoundError('User not found'))
        : Promise.resolve(res)
    );
}

/*
 * Update a user. Returns "null" if not found, updated user otherwise.
 * This function *will not* create a password hash if the passwort property is
 * present. The password needs to be hashed with BCrypt explicitely before being
 * written to the database. Use the dedicated function setPasswordHash() instead
 * and chain the two together if updating the whole object is needed.
 */
export function update(id : string, user : User) : Promise <any> {
    emptyCheck(id, user);

    return wrapFindOne(UserModel.findOneAndUpdate({
        '_id': id,
    }, {
        '$set': Object.assign({}, pickBy(user, identity), { id: undefined }),
    }, {
        new: true,  // return the modified document rather than the original
        upsert: false,  // fail if the object does not exist yet
        fields: '-password',
    }))
    .then(res => (res === null)
        ? Promise.reject(new NotFoundError('User not found'))
        : Promise.resolve(res)
    );
}