p5.js-web-editor/server/models/user.js

import mongoose from 'mongoose';

const bcrypt = require('bcrypt-nodejs');

const EmailConfirmationStates = {
  Verified: 'verified',
  Sent: 'sent',
  Resent: 'resent',
};

const { Schema } = mongoose;

const apiKeySchema = new Schema({
  label: { type: String, default: 'API Key' },
  lastUsedAt: { type: Date, required: true, default: Date.now },
  hashedKey: { type: String, required: true },
}, { timestamps: true, _id: true });

apiKeySchema.virtual('id').get(function getApiKeyId() {
  return this._id.toHexString();
});

apiKeySchema.set('toJSON', {
  virtuals: true
});

const userSchema = new Schema({
  name: { type: String, default: '' },
  username: { type: String, required: true, unique: true },
  password: { type: String },
  resetPasswordToken: String,
  resetPasswordExpires: Date,
  verified: { type: String },
  verifiedToken: String,
  verifiedTokenExpires: Date,
  github: { type: String },
  email: { type: String, unique: true },
  tokens: Array,
  apiKeys: { type: [apiKeySchema] },
  preferences: {
    fontSize: { type: Number, default: 18 },
    indentationAmount: { type: Number, default: 2 },
    isTabIndent: { type: Boolean, default: false },
    autosave: { type: Boolean, default: true },
    linewrap: { type: Boolean, default: true },
    lintWarning: { type: Boolean, default: false },
    textOutput: { type: Boolean, default: false },
    gridOutput: { type: Boolean, default: false },
    soundOutput: { type: Boolean, default: false },
    theme: { type: String, default: 'light' },
    autorefresh: { type: Boolean, default: false }
  }
}, { timestamps: true, usePushEach: true });

/**
 * Password hash middleware.
 */
userSchema.pre('save', function checkPassword(next) { // eslint-disable-line consistent-return
  const user = this;
  if (!user.isModified('password')) { return next(); }
  bcrypt.genSalt(10, (err, salt) => { // eslint-disable-line consistent-return
    if (err) { return next(err); }
    bcrypt.hash(user.password, salt, null, (innerErr, hash) => {
      if (innerErr) { return next(innerErr); }
      user.password = hash;
      return next();
    });
  });
});

userSchema.virtual('id').get(function idToString() {
  return this._id.toHexString();
});

userSchema.set('toJSON', {
  virtuals: true
});


/**
 * Helper method for validating user's password.
 */
userSchema.methods.comparePassword = function comparePassword(candidatePassword, cb) {
// userSchema.methods.comparePassword = (candidatePassword, cb) => {
  bcrypt.compare(candidatePassword, this.password, (err, isMatch) => {
    cb(err, isMatch);
  });
};

userSchema.statics.findByMailOrName = function findByMailOrName(email) {
  const query = {
    $or: [{
      email,
    }, {
      username: email,
    }],
  };
  return this.findOne(query).exec();
};

userSchema.statics.EmailConfirmation = EmailConfirmationStates;

export default mongoose.model('User', userSchema);
add session and cookie and passport config for server 2016-05-13 22:04:16 +02:00			`import mongoose from 'mongoose';`
update eslint to latest version, fix lots of linting errors (#308) * update eslint and dependencies, fix linting errors that can be fixed with --fix * fix lots of linting errors * update eslintrc, fix some linting errors * fix all server side linting errors, untested * fix errors that fixing linting errors had caused * fix client side eslint errors * fix client side linting errors * fix refs lint errors * fix more linting errors * update eslint and dependencies, fix linting errors that can be fixed with --fix * fix lots of linting errors * update eslintrc, fix some linting errors * fix all server side linting errors, untested * fix errors that fixing linting errors had caused * fix client side eslint errors * fix client side linting errors * fix refs lint errors * fix more linting errors * fix some accessibility linting errors * fix a lot of linting errors * fix a billion more linting errors * hopefully fix all linting errors, still need to test * fix bugs that fixing linting had caused 2017-02-22 20:29:35 +01:00
add sign up server side, still working on client side 2016-06-09 22:28:21 +02:00			`const bcrypt = require('bcrypt-nodejs');`
add session and cookie and passport config for server 2016-05-13 22:04:16 +02:00
Email verification (#369) * Re-introduce Email Verification code Revert "Revert "Email verification"" This reverts commit d154d8bff259350523a0f139e844db96c43d2ee1. * Uses MJML to generate Reset Password email * Sends Password Reset and Email Confirmation emails using MJML template * Sends verified status along with user data * API endpoint for resending email verification confirmation * Displays verification status on Account page and allows resending * Send back error string * Passes email address through to sign/verify helper * Uses enum-style object to set verified state * Sends minimal info when user verifies since it can be done without login * Provides /verify UI and sends confirmation token to API * Better name for JWT secret token env var * Adds mail config variables to Readme * Encrypts email address in JWT The JWT sent as the token in the Confirm Password URL can be unencoded by anyone, although it's signature can only be verified by us. To ensure that no passwords are leaked, we encrypt the email address before creating the token. * Removes unused mail templates * Resets verified flag when email is changed and sends another email * Moves email confirmation functions next to each other * Extracts random token generator to helper * Moves email confirmation actions into Redux - updates the AccountForm label with a message to check inbox - show status when verifying email token * Uses generated token stored in DB for email confirmation * Sets email confirmation status to verified if logging in from Github * Sends email using new method on account creation * Fixes linting errors * Removes replyTo config 2017-06-26 18:48:28 +02:00			`const EmailConfirmationStates = {`
			`Verified: 'verified',`
			`Sent: 'sent',`
			`Resent: 'resent',`
			`};`

fix even more linting errors 2018-05-05 02:59:43 +02:00			`const { Schema } = mongoose;`
update eslint to latest version, fix lots of linting errors (#308) * update eslint and dependencies, fix linting errors that can be fixed with --fix * fix lots of linting errors * update eslintrc, fix some linting errors * fix all server side linting errors, untested * fix errors that fixing linting errors had caused * fix client side eslint errors * fix client side linting errors * fix refs lint errors * fix more linting errors * update eslint and dependencies, fix linting errors that can be fixed with --fix * fix lots of linting errors * update eslintrc, fix some linting errors * fix all server side linting errors, untested * fix errors that fixing linting errors had caused * fix client side eslint errors * fix client side linting errors * fix refs lint errors * fix more linting errors * fix some accessibility linting errors * fix a lot of linting errors * fix a billion more linting errors * hopefully fix all linting errors, still need to test * fix bugs that fixing linting had caused 2017-02-22 20:29:35 +01:00
Added DB schema and backend logic for API keys creation and deletion 2018-10-14 21:08:36 +02:00			`const apiKeySchema = new Schema({`
			`label: { type: String, default: 'API Key' },`
			`lastUsedAt: { type: Date, required: true, default: Date.now },`
			`hashedKey: { type: String, required: true },`
			`}, { timestamps: true, _id: true });`

			`apiKeySchema.virtual('id').get(function getApiKeyId() {`
			`return this._id.toHexString();`
			`});`

			`apiKeySchema.set('toJSON', {`
			`virtuals: true`
			`});`

add session and cookie and passport config for server 2016-05-13 22:04:16 +02:00			`const userSchema = new Schema({`
fix a ton of eslint errors 2016-06-24 00:29:55 +02:00			`name: { type: String, default: '' },`
fix some minor eslint errors 2016-06-27 19:09:18 +02:00			`username: { type: String, required: true, unique: true },`
fix a ton of eslint errors 2016-06-24 00:29:55 +02:00			`password: { type: String },`
start to add mailgun and nodemailer 2016-10-12 18:02:46 +02:00			`resetPasswordToken: String,`
			`resetPasswordExpires: Date,`
Email verification (#369) * Re-introduce Email Verification code Revert "Revert "Email verification"" This reverts commit d154d8bff259350523a0f139e844db96c43d2ee1. * Uses MJML to generate Reset Password email * Sends Password Reset and Email Confirmation emails using MJML template * Sends verified status along with user data * API endpoint for resending email verification confirmation * Displays verification status on Account page and allows resending * Send back error string * Passes email address through to sign/verify helper * Uses enum-style object to set verified state * Sends minimal info when user verifies since it can be done without login * Provides /verify UI and sends confirmation token to API * Better name for JWT secret token env var * Adds mail config variables to Readme * Encrypts email address in JWT The JWT sent as the token in the Confirm Password URL can be unencoded by anyone, although it's signature can only be verified by us. To ensure that no passwords are leaked, we encrypt the email address before creating the token. * Removes unused mail templates * Resets verified flag when email is changed and sends another email * Moves email confirmation functions next to each other * Extracts random token generator to helper * Moves email confirmation actions into Redux - updates the AccountForm label with a message to check inbox - show status when verifying email token * Uses generated token stored in DB for email confirmation * Sets email confirmation status to verified if logging in from Github * Sends email using new method on account creation * Fixes linting errors * Removes replyTo config 2017-06-26 18:48:28 +02:00			`verified: { type: String },`
			`verifiedToken: String,`
			`verifiedTokenExpires: Date,`
fix a ton of eslint errors 2016-06-24 00:29:55 +02:00			`github: { type: String },`
			`email: { type: String, unique: true },`
			`tokens: Array,`
Added DB schema and backend logic for API keys creation and deletion 2018-10-14 21:08:36 +02:00			`apiKeys: { type: [apiKeySchema] },`
remove code bloat from preferences, add preferences to user schema 2016-08-04 05:45:49 +02:00			`preferences: {`
fix preferences font size text size bug 2016-08-10 00:45:59 +02:00			`fontSize: { type: Number, default: 18 },`
remove code bloat from preferences, add preferences to user schema 2016-08-04 05:45:49 +02:00			`indentationAmount: { type: Number, default: 2 },`
			`isTabIndent: { type: Boolean, default: false },`
add preferences to include text output 2016-08-12 21:50:33 +02:00			`autosave: { type: Boolean, default: true },`
Added softwrap preference for users. (#970) * Client and server side code added for Linewrap option * Linked linewrap prop with the Editor.jsx property * linewrap defaults to true * Renamed 'LineWrap' to 'WordWrap' 2019-03-26 20:37:44 +01:00			`linewrap: { type: Boolean, default: true },`
add preferences to include text output 2016-08-12 21:50:33 +02:00			`lintWarning: { type: Boolean, default: false },`
Accessibility (#361) * add p5 interceptor submodule * update package * remoce interceptor * update interceptor; * merge scripts * change postinstall script * refactor interceptor files * remove merge conflicts * change source files * add registry class * provide seperate outputs for text and grid * switch textOutput to boolean * make both modules usable together * update interceptor for safari * fix grid label * add sound output as well * change file strucure * change constants * change input lables * switch submodule branch * change variable name * change grid to table * remove role from table elements * switch submodule branch 2017-05-31 21:23:30 +02:00			`textOutput: { type: Boolean, default: false },`
			`gridOutput: { type: Boolean, default: false },`
			`soundOutput: { type: Boolean, default: false },`
auto autorefresh to preferences, save autorefresh server side 2016-09-28 20:12:01 +02:00			`theme: { type: String, default: 'light' },`
temporarily remote autorefresh and loop protect 2016-10-04 21:35:23 +02:00			`autorefresh: { type: Boolean, default: false }`
remove code bloat from preferences, add preferences to user schema 2016-08-04 05:45:49 +02:00			`}`
attempt to fix error in mongo logs 2019-05-03 01:10:14 +02:00			`}, { timestamps: true, usePushEach: true });`
add a lot of server side libraries, preemptively, still hooking everything up 2016-05-17 21:50:37 +02:00
			`/**`
			`* Password hash middleware.`
			`*/`
fix some minor eslint errors 2016-06-27 19:09:18 +02:00			`userSchema.pre('save', function checkPassword(next) { // eslint-disable-line consistent-return`
add a lot of server side libraries, preemptively, still hooking everything up 2016-05-17 21:50:37 +02:00			`const user = this;`
			`if (!user.isModified('password')) { return next(); }`
fix some minor eslint errors 2016-06-27 19:09:18 +02:00			`bcrypt.genSalt(10, (err, salt) => { // eslint-disable-line consistent-return`
add a lot of server side libraries, preemptively, still hooking everything up 2016-05-17 21:50:37 +02:00			`if (err) { return next(err); }`
fix some minor eslint errors 2016-06-27 19:09:18 +02:00			`bcrypt.hash(user.password, salt, null, (innerErr, hash) => {`
			`if (innerErr) { return next(innerErr); }`
add a lot of server side libraries, preemptively, still hooking everything up 2016-05-17 21:50:37 +02:00			`user.password = hash;`
fix some minor eslint errors 2016-06-27 19:09:18 +02:00			`return next();`
add a lot of server side libraries, preemptively, still hooking everything up 2016-05-17 21:50:37 +02:00			`});`
			`});`
add session and cookie and passport config for server 2016-05-13 22:04:16 +02:00			`});`

update eslint to latest version, fix lots of linting errors (#308) * update eslint and dependencies, fix linting errors that can be fixed with --fix * fix lots of linting errors * update eslintrc, fix some linting errors * fix all server side linting errors, untested * fix errors that fixing linting errors had caused * fix client side eslint errors * fix client side linting errors * fix refs lint errors * fix more linting errors * update eslint and dependencies, fix linting errors that can be fixed with --fix * fix lots of linting errors * update eslintrc, fix some linting errors * fix all server side linting errors, untested * fix errors that fixing linting errors had caused * fix client side eslint errors * fix client side linting errors * fix refs lint errors * fix more linting errors * fix some accessibility linting errors * fix a lot of linting errors * fix a billion more linting errors * hopefully fix all linting errors, still need to test * fix bugs that fixing linting had caused 2017-02-22 20:29:35 +01:00			`userSchema.virtual('id').get(function idToString() {`
fix linting errors that are fixable with --fix in server side code 2016-11-17 17:15:35 +01:00			`return this._id.toHexString();`
fix preferences font size text size bug 2016-08-10 00:45:59 +02:00			`});`

			`userSchema.set('toJSON', {`
fix linting errors that are fixable with --fix in server side code 2016-11-17 17:15:35 +01:00			`virtuals: true`
fix preferences font size text size bug 2016-08-10 00:45:59 +02:00			`});`


add a lot of server side libraries, preemptively, still hooking everything up 2016-05-17 21:50:37 +02:00			`/**`
			`* Helper method for validating user's password.`
			`*/`
fix some minor eslint errors 2016-06-27 19:09:18 +02:00			`userSchema.methods.comparePassword = function comparePassword(candidatePassword, cb) {`
fix some linting errors 2016-06-25 00:18:22 +02:00			`// userSchema.methods.comparePassword = (candidatePassword, cb) => {`
add a lot of server side libraries, preemptively, still hooking everything up 2016-05-17 21:50:37 +02:00			`bcrypt.compare(candidatePassword, this.password, (err, isMatch) => {`
			`cb(err, isMatch);`
			`});`
			`};`

Use username also to log in (#250) * Use username also to log in * Minor changes 2017-01-07 00:14:42 +01:00			`userSchema.statics.findByMailOrName = function findByMailOrName(email) {`
			`const query = {`
			`$or: [{`
			`email,`
			`}, {`
			`username: email,`
			`}],`
			`};`
			`return this.findOne(query).exec();`
			`};`

Email verification (#369) * Re-introduce Email Verification code Revert "Revert "Email verification"" This reverts commit d154d8bff259350523a0f139e844db96c43d2ee1. * Uses MJML to generate Reset Password email * Sends Password Reset and Email Confirmation emails using MJML template * Sends verified status along with user data * API endpoint for resending email verification confirmation * Displays verification status on Account page and allows resending * Send back error string * Passes email address through to sign/verify helper * Uses enum-style object to set verified state * Sends minimal info when user verifies since it can be done without login * Provides /verify UI and sends confirmation token to API * Better name for JWT secret token env var * Adds mail config variables to Readme * Encrypts email address in JWT The JWT sent as the token in the Confirm Password URL can be unencoded by anyone, although it's signature can only be verified by us. To ensure that no passwords are leaked, we encrypt the email address before creating the token. * Removes unused mail templates * Resets verified flag when email is changed and sends another email * Moves email confirmation functions next to each other * Extracts random token generator to helper * Moves email confirmation actions into Redux - updates the AccountForm label with a message to check inbox - show status when verifying email token * Uses generated token stored in DB for email confirmation * Sets email confirmation status to verified if logging in from Github * Sends email using new method on account creation * Fixes linting errors * Removes replyTo config 2017-06-26 18:48:28 +02:00			`userSchema.statics.EmailConfirmation = EmailConfirmationStates;`

fix some linting errors 2016-06-25 00:18:22 +02:00			`export default mongoose.model('User', userSchema);`