• Index
• Search by APIs
• Search by Words
• Project Search

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• IBM-HyperProtectMBaaS-master
  • src
    • entity
      • OCKTask.ts
      • OCKEntity.ts
      • uuid.ts
      • Durartion.ts
      • OCKOutcome.ts
      • Timezone.ts
      • SchemaVersion.ts
      • Name.ts
      • Value.ts
      • Schedule.ts
      • User.ts
      • Operation.ts
      • KnowledgeVector.ts
      • Element.ts
      • OCKObject.ts
      • OCKContact.ts
      • OCKRevisionRecord.ts
      • OCKPatient.ts
      • OCKCarePlan.ts
      • Interval.ts
    • index.ts
    • middleware
      • validateRole.ts
      • validateToken.ts
    • controllers
      • CarePlanController.ts
      • EnableEntity.ts
      • MongoController.ts
      • TaskController.ts
      • ContactController.ts
      • OutcomeController.ts
      • AuthController.ts
      • UserController.ts
      • PatientController.ts
      • RevisionRecordController.ts
    • utils.ts
    • jsonSchema
      • knowledgeVector.json
      • schema.json
    • routes
      • mongoOps.ts
      • user.ts
      • auth.ts
      • patient.ts
      • task.ts
      • revisionRecord.ts
      • routes.ts
      • contact.ts
      • outcome.ts
      • careplan.ts
  • .env
  • generate_certs.sh
  • __test__
    • BackendSDKTest.spec.js
  • tslint.json.off
  • LICENSE
  • certs
    • cert
  • CONTRIBUTING.md
  • config
    • default.json
  • JSON
    • rivisionRecord.json
    • careplan.json
    • outcome.json
    • patient.json
    • revisionRecordSampleApp.json
    • task.json
    • contact.json
  • README.md
  • package.json
  • ormconfig.json
  • copy_cert.sh
  • Dockerfile
  • tsconfig.json
  • .gitignore
  • verification.json
  • docker-compose.yml

/*
 Copyright (c) 2020, International Business Machines All rights reserved.
 
 Redistribution and use in source and binary forms, with or without modification,
 are permitted provided that the following conditions are met:
 
 1.  Redistributions of source code must retain the above copyright notice, this
 list of conditions and the following disclaimer.
 
 2.  Redistributions in binary form must reproduce the above copyright notice,
 this list of conditions and the following disclaimer in the documentation and/or
 other materials provided with the distribution.
 
 3. Neither the name of the copyright holder(s) nor the names of any contributors
 may be used to endorse or promote products derived from this software without
 specific prior written permission. No license is granted to the trademarks of
 the copyright holders even if such marks are included in this software.
 
 THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS "AS IS"
 AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
 IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
 ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT OWNER OR CONTRIBUTORS BE LIABLE
 FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
 DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
 SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER
 CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY,
 OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
 OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
 */

import { Request, Response } from "express";
import * as jwt from "jsonwebtoken";
import { getRepository } from "typeorm";

import { User } from "../entity/User";
import config from "../../config/default.json";
import { validate } from "class-validator";

class AuthController {
  static login = async (req: Request, res: Response) => {
    //Check if username and password are set
    let { username, password } = req.body;
    if (!(username && password)) {
      res.status(400).send();
      return;
    }

    //Get user from database
    const userRepository = getRepository(User);
    let user: User;
    try {
      user = await userRepository.findOneOrFail({ where: { username } });
    } catch (error) {
      res.status(401).send();
      return;
    }

    //Check if encrypted password match
    if (!user.checkIfUnencryptedPasswordIsValid(password)) {
      res.status(401).send();
      return;
    }

    //Sing JWT, valid for 1 hour
    const token = jwt.sign({ userId: user.id, username: user.name }, config.jwtSecret, { expiresIn: "1h" });

    //Send the jwt in the response
    res.send(token);
  };

  static changePassword = async (req: Request, res: Response) => {
    //Get ID from JWT
    const id = res.locals.jwtPayload.userId;

    //Get parameters from the body
    const { oldPassword, newPassword } = req.body;
    if (!(oldPassword && newPassword)) {
      res.status(400).send();
      return;
    }

    const userRepository = getRepository(User);
    let user: User;
    try {
      user = await userRepository.findOneOrFail(id);
    } catch (id) {
      res.status(401).send();
      return;
    }

    if (!user.checkIfUnencryptedPasswordIsValid(oldPassword)) {
      res.status(401).send();
      return;
    }

    user.password = newPassword;
    const errors = await validate(user);
    if (errors.length > 0) {
      res.status(400).send(errors);
      return;
    }

    user.hashPassword();
    await userRepository.save(user);

    res.status(204).send();
  };
}
export default AuthController;