matt/stratos
1
0
Fork 0
mirror of https://github.com/matt-fidd/stratos.git synced 2026-01-01 17:59:25 +00:00
Code Issues Projects Releases Wiki Activity
Files
e38135cb6c7038abc56900a7deee0c85498d089b
stratos/lib/PasswordReset.js
matt e38135cb6c Implemented User getter
2022-02-14 10:29:35 +00:00

100 lines
1.7 KiB
JavaScript
Raw Blame History

'use strict';
const bcrypt = require('bcrypt');
const crypto = require('crypto');
const DatabaseConnectionPool = require('./DatabaseConnectionPool');
class PasswordReset {
userId;
token;
nonce;
expires;
constructor(userId, token) {
const sql = `
select
userId,
token,
nonce,
UNIX_TIMESTAMP(expires) as expires
from passwordReset
where
userId = ?
and token = ?;
`;
return (async () => {
const conn = await new DatabaseConnectionPool();
const record = await conn.runQuery(sql, [
userId,
token
]);
if (!record.length)
throw new Error('No password reset found');
for (const [ k, v ] of Object.entries(record[0]))
this[k] = v;
return this;
})();
}
get user() {
return new (require('./User'))(null, this.userId);
}
static async hashToken(u) {
const nonce = crypto
.randomBytes(16)
.toString('hex')
.slice(0, 16);
const tokenString = u.id + u.email + nonce + u.lastName;
const token = await bcrypt.hash(tokenString, 10);
return [ nonce, token ];
}
static async generatePasswordReset(userId) {
const u = await new (require('./User'))(null, userId);
const conn = await new DatabaseConnectionPool();
let sql = `
delete from passwordReset
where userId = ?;
`;
await conn.runQuery(sql, [ u.id ]);
const [ nonce, token ] = await PasswordReset.hashToken(u);
const d = new Date();
d.setHours(d.getHours() + 1);
const expires = d.getTime() / 1000;
sql = `
insert into passwordReset
(
userId,
token,
nonce,
expires
)
values (?, ?, ?, FROM_UNIXTIME(?));
`;
await conn.runQuery(sql, [
u.id,
token,
nonce,
expires
]);
return new PasswordReset(u.id, token);
}
}
module.exports = PasswordReset;
Reference in New Issue View Git Blame Copy Permalink