huanld/speckle-server
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
Files
632ad53152febd05ab1c484102cc871ff71a4e63
speckle-server/packages/server/modules/emails/rest/index.js
T
Gergő Jedlicska 0ac118e05c (refactor) server for less app-root-path
2022-05-03 13:10:00 +02:00

60 lines
2.1 KiB
JavaScript
Raw Blame History

const knex = require('@/db/knex')
const { getUserByEmail } = require('@/modules/core/services/users')
const { contextMiddleware } = require('@/modules/shared')
const {
sendEmailVerification,
isVerificationValid
} = require('../services/verification')
const Verifications = () => knex('email_verifications')
const Users = () => knex('users')
module.exports = (app) => {
app.post('/auth/emailverification/request', contextMiddleware, async (req, res) => {
try {
if (!req.context.auth) return res.status(403).send('Not authenticated')
if (!req.body.email) return res.status(400).send('Invalid request')
const user = await getUserByEmail({ email: req.body.email })
if (user.id !== req.context.userId) {
return res
.status(403)
.send("Authenticated user email doesn't match the requested email")
}
const emailResult = await sendEmailVerification({ recipient: user.email })
// i'm choosing not to create a test for this, since its hard,
// and in the real world this should not exist
// i also tested it manually
// sorry if this causes pain for u
/* istanbul ignore next */
if (!emailResult) return res.status(500).send('Email sending failed')
return res.status(200).send('Email verification initiated.')
} catch (error) {
if (error.message.includes('You already have a valid'))
return res.status(400).send(error.message)
return res.status(500).send(error.message)
}
})
app.get('/auth/verifyemail', async (req, res) => {
if (!req.query.t) return res.status(400).send('No verification token set.')
const verification = await Verifications().where({ id: req.query.t }).first()
if (!verification) {
return res.status(404).send('No verification with this token.')
}
if (!isVerificationValid(verification)) {
return res.status(400).send('Verification expired, please request a new one.')
}
await Users().where({ email: verification.email }).update({ verified: true })
await Verifications().where({ id: req.query.t }).del()
return res.redirect('/?emailverfiedstatus=true')
})
}
Reference in New Issue View Git Blame Copy Permalink