github/directus
1
0
Fork 0
mirror of https://github.com/directus/directus.git synced 2026-02-06 23:04:59 -05:00
Code Issues Packages Projects Releases Wiki Activity
Files
4d33b9a7abf9348ef3c6b017637d29b93d49d4e3
directus/src/services/users.ts
rijkvanzanten 9c36f90192 Add relational write for m2o
2020-07-08 11:24:27 -04:00

65 lines
2.2 KiB
TypeScript
Raw Blame History

import { Query } from '../types/query';
import * as ItemsService from './items';
import jwt from 'jsonwebtoken';
import { sendInviteMail } from '../mail';
import database from '../database';
import argon2 from 'argon2';
import { InvalidPayloadException } from '../exceptions';
export const createUser = async (data: Record<string, any>, query?: Query) => {
const primaryKey = await ItemsService.createItem('directus_users', data);
return await ItemsService.readItem('directus_user', primaryKey, query);
};
export const readUsers = async (query?: Query) => {
return await ItemsService.readItems('directus_users', query);
};
export const readUser = async (pk: string | number, query?: Query) => {
return await ItemsService.readItem('directus_users', pk, query);
};
export const updateUser = async (pk: string | number, data: Record<string, any>, query?: Query) => {
/**
* @todo
* Remove "other" refresh token sessions when changing password to enforce "logout everywhere" on password change
*
* Maybe make this an option?
*/
const primaryKey = await ItemsService.updateItem('directus_users', pk, data);
return await ItemsService.readItem('directus_user', primaryKey, query);
};
export const deleteUser = async (pk: string | number) => {
await ItemsService.deleteItem('directus_users', pk);
};
export const inviteUser = async (email: string, role: string) => {
await createUser({ email, role, status: 'invited' });
const payload = { email };
const token = jwt.sign(payload, process.env.SECRET, { expiresIn: '7d' });
const acceptURL = process.env.PUBLIC_URL + '/admin/accept-invite?token=' + token;
await sendInviteMail(email, acceptURL);
};
export const acceptInvite = async (token: string, password: string) => {
const { email } = jwt.verify(token, process.env.SECRET) as Record<string, any>;
const user = await database
.select('id', 'status')
.from('directus_users')
.where({ email })
.first();
if (!user || user.status !== 'invited') {
throw new InvalidPayloadException(`Email address ${email} hasn't been invited.`);
}
const passwordHashed = await argon2.hash(password);
await database('directus_users')
.update({ password: passwordHashed, status: 'active' })
.where({ id: user.id });
};
Reference in New Issue View Git Blame Copy Permalink