Sharkey/src/server/api/endpoints/i/regenerate_token.ts

43 lines
945 B
TypeScript
Raw Normal View History

2017-08-28 16:47:43 +02:00
/**
* Module dependencies
*/
import $ from 'cafy';
import * as bcrypt from 'bcryptjs';
2018-03-29 13:32:18 +02:00
import User from '../../../../models/user';
2018-04-02 06:33:46 +02:00
import event from '../../../../publishers/stream';
2017-08-28 16:47:43 +02:00
import generateUserToken from '../../common/generate-native-user-token';
/**
* Regenerate native token
*
* @param {any} params
* @param {any} user
* @return {Promise<any>}
*/
module.exports = async (params, user) => new Promise(async (res, rej) => {
// Get 'password' parameter
const [password, passwordErr] = $(params.password).string().$;
if (passwordErr) return rej('invalid password param');
// Compare password
const same = await bcrypt.compare(password, user.account.password);
2017-08-28 16:47:43 +02:00
if (!same) {
return rej('incorrect password');
}
// Generate secret
const secret = generateUserToken();
await User.update(user._id, {
$set: {
'account.token': secret
2017-08-28 16:47:43 +02:00
}
});
res();
2017-08-28 16:49:14 +02:00
// Publish event
2017-08-28 16:47:43 +02:00
event(user._id, 'my_token_regenerated');
});