• Index
• Search by APIs
• Search by Words
• Project Search

• Java
• Python
• JavaScript
• TypeScript
• C++
• Scala
• Blog

• nestjs-angular-starter-master
  • .github
    • workflows
      • node.js.yml
  • .eslintignore
  • src
    • database
      • database-connection-manager.ts
      • models
        • user-profile.db.model.ts
        • index.ts
      • database.module.ts
      • database.service.ts
    • config.ts
    • social-auth
      • social-auth.models.ts
      • social-auth.service.ts
      • social-auth.controller.ts
      • social-auth.module.ts
    • models
      • app-config.ts
      • app-req-res.ts
      • index.ts
    • app.module.ts
    • misc
      • env-config-loader.spec.ts
      • env-config-loader.ts
      • index.ts
      • angular-mounter.ts
      • utils.ts
    • config
      • production.json
      • development.json
      • test.json
      • default.json
    • controllers
      • api.controller.ts
      • api.controller.spec.ts
    • forms
      • register.form.spec.ts
      • index.ts
      • register.form.ts
    • main.ts
    • auth
      • auth.controller.ts
      • user-auth-guard.ts
      • auth.service.spec.ts
      • jwt.strategy.ts
      • request-user.decorator.ts
      • auth.service.ts
      • auth.controller.spec.ts
      • roles.decorators.ts
      • auth.module.ts
    • config-manager
      • config-manager.module.ts
      • config-parser.ts
      • config.service.ts
      • config-parser.spec.ts
    • testing
      • services
        • database.test.service.ts
      • test_db_setup.ts
      • test_utils.ts
  • .mocharc.js
  • .env
  • angular-src
    • tsconfig.base.json
    • src
      • tsconfig.spec.json
      • styles.scss
      • main.server.ts
      • tsconfig.server.json
      • .browserslistrc
      • polyfills.ts
      • tsconfig.app.json
      • main.ts
      • karma.conf.js
      • index.html
      • test.ts
      • app
        • app.component.html
        • app.component.spec.ts
        • app.server.module.ts
        • app.component.scss
        • social-login
          • social-login-button
            • social-login-button.component.html
            • social-login-button.component.spec.ts
            • social-login-button.component.ts
            • social-login-button.component.css
          • social-login.service.ts
          • social-login.module.ts
        • app.module.ts
        • components
          • home
            • home.component.ts
            • home.component.scss
            • home.component.html
            • home.component.spec.ts
          • user-page
            • user-page.component.ts
            • user-page.component.scss
            • user-page.component.html
            • user-page.component.spec.ts
          • example-page
            • example-page.component.spec.ts
            • example-page.component.scss
            • example-page.component.html
            • example-page.component.ts
          • register
            • register.component.scss
            • register.component.spec.ts
            • register.component.html
            • register.component.ts
          • login
            • login.component.spec.ts
            • login.component.scss
            • login.component.html
            • login.component.ts
        • app.component.ts
        • core
          • services
            • auth.service.spec.ts
            • auth.service.ts
            • index.ts
            • app.service.ts
            • auth-guard.service.ts
            • requests.service.ts
            • api.service.ts
          • app-http.interceptor.ts
          • components
            • footer
              • footer.component.scss
              • footer.component.html
              • footer.component.spec.ts
              • footer.component.ts
            • header
              • header.component.html
              • header.component.scss
              • header.component.spec.ts
              • header.component.ts
          • core.module.spec.ts
          • universal-relative.interceptor.ts
          • core.module.ts
        • shared
          • shared.module.ts
          • directives
            • form-validator.directive.ts
            • index.ts
          • shared.module.spec.ts
        • testing
          • mock
            • core.module.mock.ts
            • api.service.mock.ts
          • test_utils.ts
      • environments
        • environment.ts
        • environment.prod.ts
      • assets
        • .gitkeep
    • server.ts
    • tslint.json
    • e2e
      • src
        • app.e2e-spec.ts
        • app.po.ts
      • protractor.conf.js
      • tsconfig.e2e.json
    • local.js
    • README.md
    • package.json
    • ng-toolkit.json
    • angular.json
    • tsconfig.json
    • .gitignore
  • rest.http
  • .prettierrc
  • LICENSE
  • .gitattributes
  • tsconfig.build.json
  • README.md
  • package.json
  • scripts
    • install_all.sh
    • copy-essentials.sh
    • build.sh
  • Dockerfile
  • .eslintrc.js
  • shared
    • index.ts
    • models
      • index.ts
      • user-profile.ts
      • login-response.ts
      • user-profile.model.ts
    • shared-utils.ts
    • testing
      • shared_test_utils.ts
      • mock
        • user.mock.ts
  • tsconfig.json
  • .gitignore
  • .prettierignore
  • .dockerignore
  • .vscode
    • settings.json
    • launch.json
    • extensions.json
  • docker-compose.yml
  • nest-cli.json

import * as bcrypt from 'bcryptjs';
import { DocumentQuery } from 'mongoose';
import { UserProfile } from 'shared';

import { Injectable, UnauthorizedException } from '@nestjs/common';
import { JwtService } from '@nestjs/jwt';

import { IUserProfileDbModel, UserProfileDbModel } from '../database/models/user-profile.db.model';

/**
 * Responsible of authenticating users, it uses JWT for the authentication process.
 */
@Injectable()
export class AuthService {
  constructor(private jwtService: JwtService) {}

  /**
   * Checks if the provided username and password valid, if so, returns the user match. If not, returns null.
   * @param email
   * @param password
   */
  authenticate(email: string, password: string): Promise<IUserProfileDbModel> {
    return UserProfileDbModel.findOne({ email }).then(user => {
      // If this user does not exist, throw the same error for security reasons
      if (!user)
        throw new UnauthorizedException('Email or password are invalid!');

      return bcrypt.compare(password, user.password).then(match => {
        // The password do not match the one saved on the database
        if (!match)
          throw new UnauthorizedException('Email or password are invalid!');
        return user;
      });
    });
  }

  getUserFromDB(
    email: string,
  ): DocumentQuery<IUserProfileDbModel, IUserProfileDbModel, unknown> {
    return UserProfileDbModel.findOne({ email });
  }

  getUserFromToken(
    token: string,
  ): DocumentQuery<IUserProfileDbModel, IUserProfileDbModel, unknown> {
    // Decode the token
    const decodedUser = this.jwtService.verify(token) as IUserProfileDbModel;

    if (decodedUser) {
      // If the user has been decoded successfully, check it against the database
      return UserProfileDbModel.findById(decodedUser._id);
    }
  }

  userHasRoles(user: UserProfile, ...roles: string[]): boolean {
    // If the user don't have this amount of roles, don't pass
    if (user.roles.length < roles.length) return false;

    // Go through each role, and check if the user has it, if not, return false
    for (const role of roles) if (!user.roles.includes(role)) return false;

    return true;
  }

  /**
   * Generates a JWT token with the specified user data.
   * @param user
   */
  generateToken(user: UserProfile): string {
    return this.jwtService.sign(user);
  }

  /**
   * Decodes a JWT token and returns the user found.
   * @param token
   */
  decodeToken(token: string): UserProfile {
    return this.jwtService.verify(token) as UserProfile;
  }
}