Merge pull request #94

promisify user authentication functions

Author: cesine

.eslintrc.js

@@ -11,5 +11,12 @@ module.exports = {
     ecmaVersion: 12,
   },
   rules: {
+    'max-len': ['error', 120, 2, {
+      ignoreUrls: true,
+      ignoreComments: false,
+      ignoreRegExpLiterals: true,
+      ignoreStrings: true,
+      ignoreTemplateLiterals: true,
+    }],
   },
 };

.github/workflows/node.js.yml

@@ -27,14 +27,14 @@ jobs:
         node-version: ${{ matrix.node-version }}
         cache: 'npm'
     - run: npm ci
-    - run: npm run lint || echo "Lint failed"
+    - run: npm run lint:ci || echo "Lint failed"
     - run: DEBUG=replay* npm run coverage
 
     - name: Coveralls
       uses: coverallsapp/github-action@master
       with:
         github-token: ${{ secrets.GITHUB_TOKEN }}
 
-    - run: npm run docker:test
+    - run: DEBUG='none' npm run docker:test
       env:
         SOURCE_URL: ${{ secrets.SOURCE_URL }}

lib/corpus.js

@@ -7,6 +7,7 @@ const { CorpusMask } = require('fielddb/api/corpus/CorpusMask');
 const { DataList } = require('fielddb/api/data_list/DataList');
 const { Team } = require('fielddb/api/user/Team');
 const uuid = require('uuid');
+const nano = require('nano');
 /* variable for permissions */
 const commenter = 'commenter';
 const collaborator = 'reader';
@@ -65,7 +66,7 @@ exports.createPlaceholderDocsForCorpus = createPlaceholderDocsForCorpus;
 // Only create users on the same server.
 const parsed = url.parse('http://localhost:5984');
 const couchConnectUrl = `${parsed.protocol}//${couchKeys.username}:${couchKeys.password}@${parsed.host}`;
-debug('Using corpus url: ', parsed);
+debug('Using corpus url: ', couchConnectUrl);
 const createNewCorpus = function createNewCorpus(corpusObject, done) {
   const { username } = corpusObject;
   delete corpusObject.username;
@@ -78,7 +79,7 @@ const createNewCorpus = function createNewCorpus(corpusObject, done) {
     corpusObject.id = uuid.v4();
   }
   debug(`${new Date()} Creating new database ${corpusObject.dbname}`);
-  const server = require('nano')({
+  const server = nano({
     requestDefaults: {
       headers: {
         'x-request-id': requestId,
@@ -128,7 +129,7 @@ const createNewCorpus = function createNewCorpus(corpusObject, done) {
         ],
       },
     };
-    const newDatabase = require('nano')({
+    const newDatabase = nano({
       requestDefaults: {
         headers: {
           'x-request-id': requestId,
@@ -184,7 +185,7 @@ const createNewCorpus = function createNewCorpus(corpusObject, done) {
       if (!couchDBError) {
         debug(`${new Date()} Corpus activity feed successfully replicated.`, couchActivityFeedResponse);
         // Set up security on new corpus activity feed
-        const activityDb = require('nano')({
+        const activityDb = nano({
           requestDefaults: {
             headers: {
               'x-request-id': requestId,
@@ -226,7 +227,7 @@ module.exports.updateRoles = updateRoles;
 var addRoleToUserInfo = function addRoleToUserInfo(connection, username, roles, successdone, errordone) {
   debug(`${new Date()} In addRoleToUser ${util.inspect(roles)} to ${username} on ${connection.dbname}`);
   const connect = `${couchConnectUrl}/_users`;
-  const db = require('nano')(connect);
+  const db = nano(connect);
   const userid = `org.couchdb.user:${username}`;
   const _ = require('lodash');
   db.get(userid, (couchDBError, body) => {
@@ -266,7 +267,7 @@ const isRequestingUserAnAdminOnCorpus = function isRequestingUserAnAdminOnCorpus
   /*
    * Check to see if the user is an admin on the corpus
    */
-  const nanoforpermissions = require('nano')({
+  const nanoforpermissions = nano({
     requestDefaults: {
       headers: {
         'x-request-id': requestId,
@@ -280,8 +281,8 @@ const isRequestingUserAnAdminOnCorpus = function isRequestingUserAnAdminOnCorpus
       // Clean the couchDBErroror of couchdb leaks
       delete couchDBError.request;
       delete couchDBError.headers;
-      couchDBError.status = couchDBError.statusCode || 401;
-      couchDBError.error = couchDBError.error || `User ${requestingUser} couldn't be found on this server`;
+      couchDBError.status = couchDBError.statusCode || 500;
+      couchDBError.error = couchDBError.error;
       return done(couchDBError, null, {
         message: 'There was a problem deciding if you have permission to do this.',
       });

lib/corpusmanagement.js

@@ -230,7 +230,7 @@ const addRoleToUser = function addRoleToUser(dbConnection, userPermission, succe
               }
               err.status = err.status || 500;
               userPermission.status = err.status;
-              userPermission.message = `There was a problem giving ${resultingRolesForThisCorpus.join(', ')} access to user ${userPermission.username}. Please notify us of this error.`;
+              userPermission.message = `There was a problem giving ${resultingRolesForThisCorpus.join(', ')} access to user ${userPermission.username}.${err.status === 409 ? '' : ' Please notify us of this error.'}`;
               return errorcallback(err, userPermission, {
                 message: userPermission.message,
               });

lib/email.js

@@ -0,0 +1,203 @@
+const bcrypt = require('bcryptjs');
+const config = require('config');
+const debug = require('debug')('lib:email');
+const nodemailer = require('nodemailer');
+
+const corpusmanagement = require('./corpusmanagement');
+
+function emailWhenServerStarts() {
+  return new Promise((resolve, reject) => {
+    setTimeout(() => {
+      reject(new Error('not implemented'));
+    });
+  });
+}
+
+function emailWelcomeToTheUser({
+  // user,
+} = {}) {
+  return new Promise((resolve, reject) => {
+    setTimeout(() => {
+      reject(new Error('not implemented'));
+    });
+  });
+}
+
+function emailWelcomeToCorpus({
+  user,
+  newConnection,
+} = {}) {
+  if (!user.email || !user.email.length > 5 || config.mailConnection.auth.user === '') {
+    debug(`${new Date()} Didn't email welcome to corpus to new user ${
+      user.username} why: emailpresent: ${user.email
+    }, mailconfig: ${config.mailConnection.auth.user !== ''}`);
+    return Promise.resolve({
+      info: {
+        message: 'Email not sent',
+      },
+    });
+  }
+  const smtpTransport = nodemailer.createTransport(config.mailConnection);
+  let mailOptions = config.welcomeToCorpusTeamMailOptions();
+  if (user.appbrand === 'phophlo') {
+    mailOptions = config.welcomeToCorpusTeamMailOptionsPhophlo();
+  }
+  mailOptions.to = `${user.email},${mailOptions.to}`;
+  mailOptions.text = mailOptions.text.replace(/insert_corpus_identifier/g, newConnection.dbname);
+  mailOptions.html = mailOptions.html.replace(/insert_corpus_identifier/g, newConnection.dbname);
+  return smtpTransport.sendMail(mailOptions)
+    .then((response) => {
+      debug(`${new Date()} Message sent: \n${response.message}`);
+      debug(`${new Date()} Sent User ${user.username} a welcome to corpus email at ${user.email}`);
+      smtpTransport.close();
+      return {
+        info: {
+          message: 'Email sent',
+        },
+      };
+    })
+    .catch((error) => {
+      debug(`${new Date()} Mail error${JSON.stringify(error)}`);
+    });
+}
+
+/**
+function generates a temporary password which is alpha-numeric and 10
+ * chars long
+ *
+ * @returns {String}
+ */
+function makeRandomPassword() {
+  let text = '';
+  const possible = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
+  for (let i = 0; i < 10; i++) {
+    text += possible.charAt(Math.floor(Math.random() * possible.length));
+  }
+  return text;
+}
+
+/**
+ * This emails the user, if the user has an email, if the
+ * email is 'valid' TODO do better email validation. and if
+ * the config has a valid user. For the dev and local
+ * versions of the app, this wil never be fired because the
+ * config doesnt have a valid user. But the production
+ * config does, and it is working.
+ *
+ * @param  {[type]}   user              [description]
+ * @param  {[type]}   temporaryPassword message       [description]
+ * @param  {Function} done              [description]
+ * @return {[type]}                     [description]
+ */
+function emailTemporaryPasswordToTheUserIfTheyHavAnEmail({
+  user = { email: '' },
+  temporaryPassword,
+  successMessage,
+} = {}) {
+  if (!user.email || user.email.length < 5) {
+    const err = new Error('The user didnt provide a valid email.');
+    err.status = 412;
+    err.userFriendlyErrors = ["You didnt provide an email when you registered, so we can't send you a temporary password. If you can't remember your password, you might need to contact us to ask us to reset your password."];
+    return Promise.reject(err);
+  }
+  if (config.mailConnection.auth.user === '') {
+    const err = new Error('The mail configuration is missing a user, this server cant send email.');
+    err.userFriendlyErrors = ['The server was unable to send you an email, your password has not been reset. Please report this 2823'];
+    return Promise.reject(err);
+  }
+  const newpassword = temporaryPassword || makeRandomPassword();
+  const smtpTransport = nodemailer.createTransport(config.mailConnection);
+  let mailOptions = config.suspendedUserMailOptions();
+  if (user.appbrand === 'phophlo') {
+    mailOptions = config.suspendedUserMailOptionsPhophlo();
+  }
+  mailOptions.to = `${user.email},${mailOptions.to}`;
+  mailOptions.text = mailOptions.text.replace(/insert_temporary_password/g, newpassword);
+  mailOptions.html = mailOptions.html.replace(/insert_temporary_password/g, newpassword);
+  return smtpTransport.sendMail(mailOptions)
+    .then((response) => {
+      debug(`${new Date()} Temporary pasword sent: \n${response.message}`);
+      const connection = user.corpora[user.corpora.length - 1];
+      // save new password to couch _users too
+      // TODO convert to return promises
+      return corpusmanagement.changeUsersPassword(
+        connection,
+        user,
+        newpassword,
+        (res) => {
+          debug(`${new Date()} There was success in creating changing the couchdb password: ${JSON.stringify(res)}\n`);
+          debug(`${new Date()} this is the user after changing their couch password ${JSON.stringify(user)}`);
+          const salt = bcrypt.genSaltSync(10);
+          user.hash = bcrypt.hashSync(newpassword, salt);
+          user.serverlogs.oldIncorrectPasswordAttempts = user.serverlogs.oldIncorrectPasswordAttempts || [];
+          user.serverlogs.incorrectPasswordAttempts = user.serverlogs.incorrectPasswordAttempts || [];
+          user.serverlogs.oldIncorrectPasswordAttempts = user.serverlogs.oldIncorrectPasswordAttempts
+            .concat(user.serverlogs.incorrectPasswordAttempts);
+          user.serverlogs.incorrectPasswordAttempts = [];
+
+          return {
+            user,
+            info: {
+              message: successMessage,
+            },
+          };
+        },
+        (err) => {
+          debug(`${new Date()} There was an error in creating changing the couchdb password ${JSON.stringify(err)}\n`);
+          err.error = err.error || 'Couchdb errored when trying to save the user.';
+          err.status = err.status || err.statusCode || 500;
+          err.userFriendlyErrors = ['The server was unable to change your password, your password has not been reset. Please report this 2893'];
+          throw err;
+        },
+      );
+      // smtpTransport.close();
+    })
+    .catch((error) => {
+      debug(`${new Date()} Mail error${JSON.stringify(error)}`);
+      error.error = error.error || error.code || 'Mail server failed to send an email';
+      error.userFriendlyErrors = error.userFriendlyErrors || ['The server was unable to send you an email, your password has not been reset. Please report this 2898'];
+      throw error;
+    });
+}
+
+function emailCorusCreationFailure({
+  connection = {},
+  user = { email: '' },
+} = {}) {
+  let { email } = user;
+  if (!email) {
+    email = 'bounce@lingsync.org';
+  }
+
+  if (config.mailConnection.auth.user === '') {
+    debug(`${new Date()} Didnt email welcome to new user${user.username} why: emailpresent: ${email}, valid user email: ${email.length > 5}, mailconfig: ${config.mailConnection.auth.user !== ''}`);
+    return Promise.resolve();
+  }
+
+  const smtpTransport = nodemailer.createTransport(config.mailConnection);
+  let mailOptions = config.newUserMailOptions();
+  if (user.appbrand === 'phophlo') {
+    mailOptions = config.newUserMailOptionsPhophlo();
+  }
+  mailOptions.to = `${email},${mailOptions.to}`;
+  mailOptions.text = `There was a problem while cerating your corpus ${connection.dbname}. The server admins have been notified.${user.username}`;
+  mailOptions.html = `There was a problem while cerating your corpus ${connection.dbname}. The server admins have been notified.${user.username}`;
+  return smtpTransport.sendMail(mailOptions)
+    .then((response) => {
+      debug(`${new Date()} Message sent: \n${response.message}`);
+      debug(`${new Date()} Sent User ${user.username} a welcome email at ${email}`);
+      smtpTransport.close();
+    })
+    .catch((error) => {
+      debug(`${new Date()} Mail error${JSON.stringify(error)}`);
+    });
+}
+
+module.exports = {
+  emailCorusCreationFailure,
+  emailWhenServerStarts,
+  emailWelcomeToTheUser,
+  emailWelcomeToCorpus,
+  emailTemporaryPasswordToTheUserIfTheyHavAnEmail,
+  makeRandomPassword,
+};