huanld/speckle-server
1
0
Fork 0
Code Issues Pull Requests Actions 2 Packages Projects Releases Wiki Activity

fix(server local auth): user is created before the invite is used, so stream permissions can be set

Browse Source 
fix #470
This commit is contained in:
Gergő Jedlicska
2021-11-17 13:22:50 +01:00
parent 8ee1ec8751
commit 3ffc156b79
1 changed files with 10 additions and 8 deletions
Download Patch File Download Diff File Expand all files Collapse all files
packages/server/modules/auth/strategies/local.js
+10 -8
View File
@@ -44,19 +44,21 @@ module.exports = async ( app, session, sessionAppId, finalizeAuth ) => {
let user = req.body
if ( serverInfo.inviteOnly && !req.session.inviteId ) {
throw new Error( 'This server is invite only. Please provide an invite id.' )
}
if ( req.session.inviteId ) {
const valid = await validateInvite( { id: req.session.inviteId, email: user.email } )
if ( !valid )
let userId
// go ahead with register
if ( !serverInfo.inviteOnly ){
userId = await createUser( user )
} else {
if ( !req.session.inviteId )
throw new Error( 'This server is invite only. Please provide an invite id.' )
if ( !await validateInvite( { id: req.session.inviteId, email: user.email } ) )
throw new Error( 'Invite email mismatch. Please use the original email the invite was sent to register.' )
userId = await createUser( user )
await useInvite( { id: req.session.inviteId, email: user.email } )
}
let userId = await createUser( user )
req.user = { id: userId, email: user.email }
return next( )