2021-08-09 05:34:44 +00:00
|
|
|
const { BeanModel } = require("redbean-node/dist/bean-model");
|
|
|
|
const passwordHash = require("../password-hash");
|
|
|
|
const { R } = require("redbean-node");
|
2023-10-08 23:01:54 +00:00
|
|
|
const jwt = require("jsonwebtoken");
|
|
|
|
const { shake256, SHAKE256_LENGTH } = require("../util-server");
|
2021-08-09 05:34:44 +00:00
|
|
|
|
|
|
|
class User extends BeanModel {
|
|
|
|
/**
|
2022-04-21 17:30:04 +00:00
|
|
|
* Reset user password
|
2022-04-18 07:21:58 +00:00
|
|
|
* Fix #1510, as in the context reset-password.js, there is no auto model mapping. Call this static function instead.
|
2022-04-21 17:30:04 +00:00
|
|
|
* @param {number} userID ID of user to update
|
2023-08-11 07:46:41 +00:00
|
|
|
* @param {string} newPassword Users new password
|
2021-08-09 05:34:44 +00:00
|
|
|
* @returns {Promise<void>}
|
|
|
|
*/
|
2022-04-18 07:21:58 +00:00
|
|
|
static async resetPassword(userID, newPassword) {
|
2021-08-09 05:34:44 +00:00
|
|
|
await R.exec("UPDATE `user` SET password = ? WHERE id = ? ", [
|
|
|
|
passwordHash.generate(newPassword),
|
2022-04-18 07:21:58 +00:00
|
|
|
userID
|
2021-08-09 05:34:44 +00:00
|
|
|
]);
|
2022-04-18 07:21:58 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
/**
|
2022-04-21 17:30:04 +00:00
|
|
|
* Reset this users password
|
2023-08-11 07:46:41 +00:00
|
|
|
* @param {string} newPassword Users new password
|
2022-04-18 07:21:58 +00:00
|
|
|
* @returns {Promise<void>}
|
|
|
|
*/
|
|
|
|
async resetPassword(newPassword) {
|
|
|
|
await User.resetPassword(this.id, newPassword);
|
2021-08-09 05:34:44 +00:00
|
|
|
this.password = newPassword;
|
|
|
|
}
|
2022-04-18 07:21:58 +00:00
|
|
|
|
2023-10-08 23:01:54 +00:00
|
|
|
/**
|
|
|
|
* Create a new JWT for a user
|
2023-10-09 16:39:55 +00:00
|
|
|
* @param {User} user The User to create a JsonWebToken for
|
|
|
|
* @param {string} jwtSecret The key used to sign the JsonWebToken
|
|
|
|
* @returns {string} the JsonWebToken as a string
|
2023-10-08 23:01:54 +00:00
|
|
|
*/
|
|
|
|
static createJWT(user, jwtSecret) {
|
|
|
|
return jwt.sign({
|
|
|
|
username: user.username,
|
|
|
|
h: shake256(user.password, SHAKE256_LENGTH),
|
|
|
|
}, jwtSecret);
|
|
|
|
}
|
|
|
|
|
2021-08-09 05:34:44 +00:00
|
|
|
}
|
|
|
|
|
|
|
|
module.exports = User;
|