tethys.backend/app/Controllers/Http/Auth/UserController.ts

import type { HttpContext } from '@adonisjs/core/http';
import User from '#models/user';
// import { RenderResponse } from '@ioc:EidelLev/Inertia';
import TwoFactorAuthProvider from '#app/services/TwoFactorAuthProvider';
import hash from '@adonisjs/core/services/hash';
// import { schema, rules } from '@adonisjs/validator';
import vine from '@vinejs/vine';
import BackupCodeStorage, { SecureRandom } from '#services/backup_code_storage';

// Here we are generating secret and recovery codes for the user that’s enabling 2FA and storing them to our database.
export default class UserController {
    /**
     * Show the user a form to change their personal information & password.
     *
     * @return — \Inertia\Response
     */
    public async accountInfo({ inertia, auth }: HttpContext) {
        // const user = auth.user;
        const user = (await User.find(auth.user?.id)) as User;
        // const id = request.param('id');
        // const user = await User.query().where('id', id).firstOrFail();

        let storage = new BackupCodeStorage(new SecureRandom());
        // const codes=  user.isTwoFactorEnabled? (await user.getBackupCodes()).map((role) => role.code) : [];
        let backupState = await storage.getBackupCodesState(user);

        return inertia.render('Auth/AccountInfo', {
            user: user,
            twoFactorEnabled: user.isTwoFactorEnabled,
            // code: await TwoFactorAuthProvider.generateQrCode(user),
            backupState:  backupState,
        });
    }

    public async accountInfoStore({ auth, request, response, session }: HttpContext) {
        // const passwordSchema = schema.create({
        //     old_password: schema.string({ trim: true }, [rules.required()]),
        //     new_password: schema.string({ trim: true }, [rules.minLength(8), rules.maxLength(255), rules.confirmed('confirm_password')]),
        //     confirm_password: schema.string({ trim: true }, [rules.required()]),
        // });
        const passwordSchema = vine.object({
            // first step
            old_password: vine
                .string()
                .trim()
                .regex(/^[a-zA-Z0-9]+$/),
            new_password: vine.string().confirmed({ confirmationField: 'confirm_password' }).trim().minLength(8).maxLength(255),
        });
        try {
            // await request.validate({ schema: passwordSchema });
            const validator = vine.compile(passwordSchema);
            await request.validateUsing(validator);
        } catch (error) {
            // return response.badRequest(error.messages);
            throw error;
        }
        
        try {
            const user = await auth.user as User;
            const { old_password, new_password } = request.only(['old_password', 'new_password']);

            // if (!(old_password && new_password && confirm_password)) {
            //     return response.status(400).send({ warning: 'Old password and new password are required.' });
            // }

            // Verify if the provided old password matches the user's current password
            const isSame = await hash.verify(user.password, old_password);
            if (!isSame) {
                return response.flash('warning', 'Old password is incorrect.').redirect().back();
            }

            // Hash the new password before updating the user's password
            user.password = new_password;
            await user.save();

            // return response.status(200).send({ message: 'Password updated successfully.' });
            session.flash({ message: 'Password updated successfully.' });
            return response.redirect().toRoute('settings.user');
        } catch (error) {
            // return response.status(500).send({ message: 'Internal server error.' });
            return response.flash('warning', `Invalid server state. Internal server error.`).redirect().back();
        }
    }

    public async enableTwoFactorAuthentication({ auth, response, session }: HttpContext): Promise<void> {
        // const user: User | undefined = auth?.user;
        const user = (await User.find(auth.user?.id)) as User;

        user.twoFactorSecret = TwoFactorAuthProvider.generateSecret(user);
        user.twoFactorRecoveryCodes = await TwoFactorAuthProvider.generateRecoveryCodes();
        await user.save();

        session.flash('message', 'Two factor authentication enabled.');
        return response.redirect().back();
        // return inertia.render('Auth/AccountInfo', {
        //     // status: {
        //     //     type: 'success',
        //     //     message: 'Two factor authentication enabled.',
        //     // },
        //     user: user,
        //     twoFactorEnabled: user.isTwoFactorEnabled,
        //     code: await TwoFactorAuthProvider.generateQrCode(user),
        //     recoveryCodes: user.twoFactorRecoveryCodes,
        // });
    }

    public async disableTwoFactorAuthentication({ auth, response, session }: HttpContext): Promise<void> {
        const user: User | undefined = auth.user;

        if (user) {
            user.twoFactorSecret = null;
            user.twoFactorRecoveryCodes = null;
            await user.save();
            session.flash('message', 'Two-factor authentication disabled.');
        } else {
            session.flash('error', 'User not found.');
        }
    
        return response.redirect().back();
        // return inertia.render('Auth/AccountInfo', {
        //     // status: {
        //     //     type: 'success',
        //     //     message: 'Two factor authentication disabled.',
        //     // },
        //     user: user,
        //     twoFactorEnabled: user.isTwoFactorEnabled,
        // });
    }

    // public async fetchRecoveryCodes({ auth, view }) {
    //     const user = auth?.user;

    //     return view.render('pages/settings', {
    //         twoFactorEnabled: user.isTwoFactorEnabled,
    //         recoveryCodes: user.twoFactorRecoveryCodes,
    //     });
    // }
}
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								import type { HttpContext } from '@adonisjs/core/http';
-												- npm updates
- renamed 'models' and 'validators' folders
- removed unneccessary files in contracts folder

											
										
										
											2024-04-30 09:50:50 +00:00
+								import User from '#models/user';
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								// import { RenderResponse } from '@ioc:EidelLev/Inertia';
-												- added own provider for drive methods
- renamed middleware Role and Can to role_middleware and can_middleware
- added some typing for inertia vue3 components
- npm updates

											
										
										
											2024-04-23 17:36:45 +00:00
+								import TwoFactorAuthProvider from '#app/services/TwoFactorAuthProvider';
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								import hash from '@adonisjs/core/services/hash';
-												- replaced validation library @adonisjs/validator with @vinejs/vine (performance)
- npm updates

											
										
										
											2024-05-16 11:47:06 +00:00
+								// import { schema, rules } from '@adonisjs/validator';
-												- typsafe vanilla_error_reporter.ts
- updated Dockerfole for using node 20
- remove validator_old.ts
- npm updates

											
										
										
											2024-05-21 12:41:10 +00:00
+								import vine from '@vinejs/vine';
-												- added backup codes for 2 factor authentication
- npm updates
- coverage validation: elevation ust be positive, depth must be negative
- vinejs-provider.js: get enabled extensions from database, not via validOptions.extnames
- vue components for backup codes: e.g.: PersonalSettings.vue
- validate spaital coverage in leaflet map: draw.component.vue, map.component.vue
- add backup code authentication into Login.vue
- preset to use no preferred reviewer: Release.vue
- 2 new vinejs validation rules: file_scan.ts and file-length.ts

											
										
										
											2024-07-08 11:52:20 +00:00
+								import BackupCodeStorage, { SecureRandom } from '#services/backup_code_storage';
-												- aded npm packages @types/qrcode, qrcode and node-f2a
- corrected UsersController.ts and RoleController.ts with correct routes for settings
- added migration script and ui and Controller for 2 Factor Authentication
- npm updates

											
										
										
											2023-12-29 14:54:49 +00:00
 								// Here we are generating secret and recovery codes for the user that’s enabling 2FA and storing them to our database.
 								export default class UserController {
 								    /**
 								     * Show the user a form to change their personal information & password.
 								     *
 								     * @return — \Inertia\Response
 								     */
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								    public async accountInfo({ inertia, auth }: HttpContext) {
-												- aded npm packages @types/qrcode, qrcode and node-f2a
- corrected UsersController.ts and RoleController.ts with correct routes for settings
- added migration script and ui and Controller for 2 Factor Authentication
- npm updates

											
										
										
											2023-12-29 14:54:49 +00:00
+								        // const user = auth.user;
 								        const user = (await User.find(auth.user?.id)) as User;
 								        // const id = request.param('id');
 								        // const user = await User.query().where('id', id).firstOrFail();
-												- added backup codes for 2 factor authentication
- npm updates
- coverage validation: elevation ust be positive, depth must be negative
- vinejs-provider.js: get enabled extensions from database, not via validOptions.extnames
- vue components for backup codes: e.g.: PersonalSettings.vue
- validate spaital coverage in leaflet map: draw.component.vue, map.component.vue
- add backup code authentication into Login.vue
- preset to use no preferred reviewer: Release.vue
- 2 new vinejs validation rules: file_scan.ts and file-length.ts

											
										
										
											2024-07-08 11:52:20 +00:00
+								        let storage = new BackupCodeStorage(new SecureRandom());
 								        // const codes=  user.isTwoFactorEnabled? (await user.getBackupCodes()).map((role) => role.code) : [];
 								        let backupState = await storage.getBackupCodesState(user);
-												- aded npm packages @types/qrcode, qrcode and node-f2a
- corrected UsersController.ts and RoleController.ts with correct routes for settings
- added migration script and ui and Controller for 2 Factor Authentication
- npm updates

											
										
										
											2023-12-29 14:54:49 +00:00
+								        return inertia.render('Auth/AccountInfo', {
 								            user: user,
 								            twoFactorEnabled: user.isTwoFactorEnabled,
-												- added api UserController.ts for 2FA
- added PersonalTotpSettings.vue vor enablin/disabling 2FA
- changed User.ts: added attributes: state, twoFactorSecret and twoFactorRecoveryCodes
- added resources/js/utils/toast.ts for notifications
- modified start/routes/api.ts
- npm updates

											
										
										
											2024-01-19 14:33:46 +00:00
+								            // code: await TwoFactorAuthProvider.generateQrCode(user),
-												- added backup codes for 2 factor authentication
- npm updates
- coverage validation: elevation ust be positive, depth must be negative
- vinejs-provider.js: get enabled extensions from database, not via validOptions.extnames
- vue components for backup codes: e.g.: PersonalSettings.vue
- validate spaital coverage in leaflet map: draw.component.vue, map.component.vue
- add backup code authentication into Login.vue
- preset to use no preferred reviewer: Release.vue
- 2 new vinejs validation rules: file_scan.ts and file-length.ts

											
										
										
											2024-07-08 11:52:20 +00:00
+								            backupState:  backupState,
-												- aded npm packages @types/qrcode, qrcode and node-f2a
- corrected UsersController.ts and RoleController.ts with correct routes for settings
- added migration script and ui and Controller for 2 Factor Authentication
- npm updates

											
										
										
											2023-12-29 14:54:49 +00:00
+								        });
 								    }
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								    public async accountInfoStore({ auth, request, response, session }: HttpContext) {
-												- replaced validation library @adonisjs/validator with @vinejs/vine (performance)
- npm updates

											
										
										
											2024-05-16 11:47:06 +00:00
+								        // const passwordSchema = schema.create({
 								        //     old_password: schema.string({ trim: true }, [rules.required()]),
 								        //     new_password: schema.string({ trim: true }, [rules.minLength(8), rules.maxLength(255), rules.confirmed('confirm_password')]),
 								        //     confirm_password: schema.string({ trim: true }, [rules.required()]),
 								        // });
 								        const passwordSchema = vine.object({
 								            // first step
 								            old_password: vine
 								                .string()
 								                .trim()
 								                .regex(/^[a-zA-Z0-9]+$/),
 								            new_password: vine.string().confirmed({ confirmationField: 'confirm_password' }).trim().minLength(8).maxLength(255),
-												- npm updates
- removed all controller methods from 'app/Controlles/Http/Admin/UsersControllers.ts'
- merged all authentication methods inside 'app/Controllers/Http/Auth/UserController.ts'

											
										
										
											2024-02-06 15:39:33 +00:00
+								        });
 								        try {
-												- replaced validation library @adonisjs/validator with @vinejs/vine (performance)
- npm updates

											
										
										
											2024-05-16 11:47:06 +00:00
+								            // await request.validate({ schema: passwordSchema });
 								            const validator = vine.compile(passwordSchema);
 								            await request.validateUsing(validator);
-												- npm updates
- removed all controller methods from 'app/Controlles/Http/Admin/UsersControllers.ts'
- merged all authentication methods inside 'app/Controllers/Http/Auth/UserController.ts'

											
										
										
											2024-02-06 15:39:33 +00:00
+								        } catch (error) {
 								            // return response.badRequest(error.messages);
 								            throw error;
 								        }
 								        try {
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								            const user = await auth.user as User;
-												- npm updates
- removed all controller methods from 'app/Controlles/Http/Admin/UsersControllers.ts'
- merged all authentication methods inside 'app/Controllers/Http/Auth/UserController.ts'

											
										
										
											2024-02-06 15:39:33 +00:00
+								            const { old_password, new_password } = request.only(['old_password', 'new_password']);
 								            // if (!(old_password && new_password && confirm_password)) {
 								            //     return response.status(400).send({ warning: 'Old password and new password are required.' });
 								            // }
 								            // Verify if the provided old password matches the user's current password
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								            const isSame = await hash.verify(user.password, old_password);
-												- npm updates
- removed all controller methods from 'app/Controlles/Http/Admin/UsersControllers.ts'
- merged all authentication methods inside 'app/Controllers/Http/Auth/UserController.ts'

											
										
										
											2024-02-06 15:39:33 +00:00
+								            if (!isSame) {
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								                return response.flash('warning', 'Old password is incorrect.').redirect().back();
-												- npm updates
- removed all controller methods from 'app/Controlles/Http/Admin/UsersControllers.ts'
- merged all authentication methods inside 'app/Controllers/Http/Auth/UserController.ts'

											
										
										
											2024-02-06 15:39:33 +00:00
+								            }
 								            // Hash the new password before updating the user's password
 								            user.password = new_password;
 								            await user.save();
 								            // return response.status(200).send({ message: 'Password updated successfully.' });
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								            session.flash({ message: 'Password updated successfully.' });
-												- replaced validation library @adonisjs/validator with @vinejs/vine (performance)
- npm updates

											
										
										
											2024-05-16 11:47:06 +00:00
+								            return response.redirect().toRoute('settings.user');
-												- npm updates
- removed all controller methods from 'app/Controlles/Http/Admin/UsersControllers.ts'
- merged all authentication methods inside 'app/Controllers/Http/Auth/UserController.ts'

											
										
										
											2024-02-06 15:39:33 +00:00
+								        } catch (error) {
 								            // return response.status(500).send({ message: 'Internal server error.' });
 								            return response.flash('warning', `Invalid server state. Internal server error.`).redirect().back();
 								        }
 								    }
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								    public async enableTwoFactorAuthentication({ auth, response, session }: HttpContext): Promise<void> {
-												- aded npm packages @types/qrcode, qrcode and node-f2a
- corrected UsersController.ts and RoleController.ts with correct routes for settings
- added migration script and ui and Controller for 2 Factor Authentication
- npm updates

											
										
										
											2023-12-29 14:54:49 +00:00
+								        // const user: User | undefined = auth?.user;
 								        const user = (await User.find(auth.user?.id)) as User;
 								        user.twoFactorSecret = TwoFactorAuthProvider.generateSecret(user);
 								        user.twoFactorRecoveryCodes = await TwoFactorAuthProvider.generateRecoveryCodes();
 								        await user.save();
 								        session.flash('message', 'Two factor authentication enabled.');
 								        return response.redirect().back();
 								        // return inertia.render('Auth/AccountInfo', {
 								        //     // status: {
 								        //     //     type: 'success',
 								        //     //     message: 'Two factor authentication enabled.',
 								        //     // },
 								        //     user: user,
 								        //     twoFactorEnabled: user.isTwoFactorEnabled,
 								        //     code: await TwoFactorAuthProvider.generateQrCode(user),
 								        //     recoveryCodes: user.twoFactorRecoveryCodes,
 								        // });
 								    }
-												- update to AdonisJS 6

											
										
										
											2024-03-14 19:25:27 +00:00
+								    public async disableTwoFactorAuthentication({ auth, response, session }: HttpContext): Promise<void> {
-												- npm added @japa/api-client, @japa/assert, @types/supertest
- webpack added opions['__VUE_PROD_HYDRATION_MISMATCH_DETAILS__'] = false;
- bodyparser config replaced whitelistedMethods with allowedMethods
- extended stardust_provider
- adapted tests for adonisjs v6

											
										
										
											2024-04-25 13:17:22 +00:00
+								        const user: User | undefined = auth.user;
-												- aded npm packages @types/qrcode, qrcode and node-f2a
- corrected UsersController.ts and RoleController.ts with correct routes for settings
- added migration script and ui and Controller for 2 Factor Authentication
- npm updates

											
										
										
											2023-12-29 14:54:49 +00:00
-												- npm added @japa/api-client, @japa/assert, @types/supertest
- webpack added opions['__VUE_PROD_HYDRATION_MISMATCH_DETAILS__'] = false;
- bodyparser config replaced whitelistedMethods with allowedMethods
- extended stardust_provider
- adapted tests for adonisjs v6

											
										
										
											2024-04-25 13:17:22 +00:00
+								        if (user) {
 								            user.twoFactorSecret = null;
 								            user.twoFactorRecoveryCodes = null;
 								            await user.save();
 								            session.flash('message', 'Two-factor authentication disabled.');
 								        } else {
 								            session.flash('error', 'User not found.');
 								        }
-												- aded npm packages @types/qrcode, qrcode and node-f2a
- corrected UsersController.ts and RoleController.ts with correct routes for settings
- added migration script and ui and Controller for 2 Factor Authentication
- npm updates

											
										
										
											2023-12-29 14:54:49 +00:00
+								        return response.redirect().back();
 								        // return inertia.render('Auth/AccountInfo', {
 								        //     // status: {
 								        //     //     type: 'success',
 								        //     //     message: 'Two factor authentication disabled.',
 								        //     // },
 								        //     user: user,
 								        //     twoFactorEnabled: user.isTwoFactorEnabled,
 								        // });
 								    }
 								    // public async fetchRecoveryCodes({ auth, view }) {
 								    //     const user = auth?.user;
 								    //     return view.render('pages/settings', {
 								    //         twoFactorEnabled: user.isTwoFactorEnabled,
 								    //         recoveryCodes: user.twoFactorRecoveryCodes,
 								    //     });
 								    // }
 								}