authorizer/server/resolvers/update_profile.go

package resolvers

import (
	"context"
	"fmt"
	"log"
	"strings"
	"time"

	"github.com/authorizerdev/authorizer/server/db"
	"github.com/authorizerdev/authorizer/server/enum"
	"github.com/authorizerdev/authorizer/server/graph/model"
	"github.com/authorizerdev/authorizer/server/session"
	"github.com/authorizerdev/authorizer/server/utils"
	"golang.org/x/crypto/bcrypt"
)

func UpdateProfile(ctx context.Context, params model.UpdateProfileInput) (*model.Response, error) {
	gc, err := utils.GinContextFromContext(ctx)
	var res *model.Response
	if err != nil {
		return res, err
	}

	token, err := utils.GetAuthToken(gc)
	if err != nil {
		return res, err
	}

	claim, err := utils.VerifyAuthToken(token)
	if err != nil {
		return res, err
	}

	id := fmt.Sprintf("%v", claim["id"])
	sessionToken := session.GetToken(id, token)

	if sessionToken == "" {
		return res, fmt.Errorf(`unauthorized`)
	}

	// validate if all params are not empty
	if params.GivenName == nil && params.FamilyName == nil && params.Picture == nil && params.MiddleName == nil && params.Nickname == nil && params.OldPassword == nil && params.Email == nil && params.Birthdate == nil && params.Gender == nil && params.PhoneNumber == nil {
		return res, fmt.Errorf("please enter atleast one param to update")
	}

	email := fmt.Sprintf("%v", claim["email"])
	user, err := db.Mgr.GetUserByEmail(email)
	if err != nil {
		return res, err
	}

	if params.GivenName != nil && user.GivenName != params.GivenName {
		user.GivenName = params.GivenName
	}

	if params.FamilyName != nil && user.FamilyName != params.FamilyName {
		user.FamilyName = params.FamilyName
	}

	if params.MiddleName != nil && user.MiddleName != params.MiddleName {
		user.MiddleName = params.MiddleName
	}

	if params.Nickname != nil && user.Nickname != params.Nickname {
		user.Nickname = params.Nickname
	}

	if params.Birthdate != nil && user.Birthdate != params.Birthdate {
		user.Birthdate = params.Birthdate
	}

	if params.Gender != nil && user.Gender != params.Gender {
		user.Gender = params.Gender
	}

	if params.PhoneNumber != nil && user.PhoneNumber != params.PhoneNumber {
		user.PhoneNumber = params.PhoneNumber
	}

	if params.Picture != nil && user.Picture != params.Picture {
		user.Picture = params.Picture
	}

	if params.OldPassword != nil {
		if err = bcrypt.CompareHashAndPassword([]byte(*user.Password), []byte(*params.OldPassword)); err != nil {
			return res, fmt.Errorf("incorrect old password")
		}

		if params.NewPassword == nil {
			return res, fmt.Errorf("new password is required")
		}

		if params.ConfirmNewPassword == nil {
			return res, fmt.Errorf("confirm password is required")
		}

		if *params.ConfirmNewPassword != *params.NewPassword {
			return res, fmt.Errorf(`password and confirm password does not match`)
		}

		password, _ := utils.HashPassword(*params.NewPassword)

		user.Password = &password
	}

	hasEmailChanged := false

	if params.Email != nil && user.Email != *params.Email {
		// check if valid email
		if !utils.IsValidEmail(*params.Email) {
			return res, fmt.Errorf("invalid email address")
		}
		newEmail := strings.ToLower(*params.Email)
		// check if user with new email exists
		_, err = db.Mgr.GetUserByEmail(newEmail)
		// err = nil means user exists
		if err == nil {
			return res, fmt.Errorf("user with this email address already exists")
		}

		session.DeleteUserSession(fmt.Sprintf("%v", user.ID))
		utils.DeleteCookie(gc)

		user.Email = newEmail
		user.EmailVerifiedAt = nil
		hasEmailChanged = true
		// insert verification request
		verificationType := enum.UpdateEmail.String()
		token, err := utils.CreateVerificationToken(newEmail, verificationType)
		if err != nil {
			log.Println(`error generating token`, err)
		}
		db.Mgr.AddVerification(db.VerificationRequest{
			Token:      token,
			Identifier: verificationType,
			ExpiresAt:  time.Now().Add(time.Minute * 30).Unix(),
			Email:      newEmail,
		})

		// exec it as go routin so that we can reduce the api latency
		go func() {
			utils.SendVerificationMail(newEmail, token)
		}()
	}

	_, err = db.Mgr.UpdateUser(user)
	if err != nil {
		log.Println("error updating user:", err)
		return res, err
	}
	message := `Profile details updated successfully.`
	if hasEmailChanged {
		message += `For the email change we have sent new verification email, please verify and continue`
	}
	res = &model.Response{
		Message: message,
	}

	return res, nil
}
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`package resolvers`

			`import (`
			`"context"`
			`"fmt"`
			`"log"`
			`"strings"`
			`"time"`

chore: rename project 2021-07-23 16:27:44 +00:00			`"github.com/authorizerdev/authorizer/server/db"`
			`"github.com/authorizerdev/authorizer/server/enum"`
			`"github.com/authorizerdev/authorizer/server/graph/model"`
			`"github.com/authorizerdev/authorizer/server/session"`
			`"github.com/authorizerdev/authorizer/server/utils"`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`"golang.org/x/crypto/bcrypt"`
			`)`

			`func UpdateProfile(ctx context.Context, params model.UpdateProfileInput) (*model.Response, error) {`
			`gc, err := utils.GinContextFromContext(ctx)`
			`var res *model.Response`
			`if err != nil {`
			`return res, err`
			`}`

			`token, err := utils.GetAuthToken(gc)`
			`if err != nil {`
			`return res, err`
			`}`

			`claim, err := utils.VerifyAuthToken(token)`
			`if err != nil {`
			`return res, err`
			`}`

feat/role based access (#50) * feat: add roles based access * feat: update roles env + todo * feat: add roles to update profile * feat: add role based oauth * feat: validate role for a given token 2021-09-20 05:06:26 +00:00			`id := fmt.Sprintf("%v", claim["id"])`
Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`sessionToken := session.GetToken(id, token)`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00
			`if sessionToken == "" {`
			return res, fmt.Errorf(`unauthorized`)
			`}`

			`// validate if all params are not empty`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`if params.GivenName == nil && params.FamilyName == nil && params.Picture == nil && params.MiddleName == nil && params.Nickname == nil && params.OldPassword == nil && params.Email == nil && params.Birthdate == nil && params.Gender == nil && params.PhoneNumber == nil {`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`return res, fmt.Errorf("please enter atleast one param to update")`
			`}`

feat/role based access (#50) * feat: add roles based access * feat: update roles env + todo * feat: add roles to update profile * feat: add role based oauth * feat: validate role for a given token 2021-09-20 05:06:26 +00:00			`email := fmt.Sprintf("%v", claim["email"])`
			`user, err := db.Mgr.GetUserByEmail(email)`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`if err != nil {`
			`return res, err`
			`}`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if params.GivenName != nil && user.GivenName != params.GivenName {`
			`user.GivenName = params.GivenName`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`}`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if params.FamilyName != nil && user.FamilyName != params.FamilyName {`
			`user.FamilyName = params.FamilyName`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`}`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if params.MiddleName != nil && user.MiddleName != params.MiddleName {`
			`user.MiddleName = params.MiddleName`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`}`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if params.Nickname != nil && user.Nickname != params.Nickname {`
			`user.Nickname = params.Nickname`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`}`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if params.Birthdate != nil && user.Birthdate != params.Birthdate {`
			`user.Birthdate = params.Birthdate`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`}`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if params.Gender != nil && user.Gender != params.Gender {`
			`user.Gender = params.Gender`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`}`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if params.PhoneNumber != nil && user.PhoneNumber != params.PhoneNumber {`
			`user.PhoneNumber = params.PhoneNumber`
fix: refactor schema for open id claim standards 2021-12-22 05:21:12 +00:00			`}`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if params.Picture != nil && user.Picture != params.Picture {`
			`user.Picture = params.Picture`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`}`

			`if params.OldPassword != nil {`
fix: unique constraint data 2021-12-22 10:01:45 +00:00			`if err = bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(params.OldPassword)); err != nil {`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`return res, fmt.Errorf("incorrect old password")`
			`}`

			`if params.NewPassword == nil {`
			`return res, fmt.Errorf("new password is required")`
			`}`

			`if params.ConfirmNewPassword == nil {`
			`return res, fmt.Errorf("confirm password is required")`
			`}`

			`if params.ConfirmNewPassword != params.NewPassword {`
			return res, fmt.Errorf(`password and confirm password does not match`)
			`}`

			`password, _ := utils.HashPassword(*params.NewPassword)`

fix: unique constraint data 2021-12-22 10:01:45 +00:00			`user.Password = &password`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`}`

			`hasEmailChanged := false`

			`if params.Email != nil && user.Email != *params.Email {`
			`// check if valid email`
			`if !utils.IsValidEmail(*params.Email) {`
			`return res, fmt.Errorf("invalid email address")`
			`}`
			`newEmail := strings.ToLower(*params.Email)`
			`// check if user with new email exists`
			`_, err = db.Mgr.GetUserByEmail(newEmail)`
			`// err = nil means user exists`
			`if err == nil {`
			`return res, fmt.Errorf("user with this email address already exists")`
			`}`

Feat/multiple session (#64) * fix: disable windows build * feat: add ability to handle multiple sessions 2021-10-27 17:45:38 +00:00			`session.DeleteUserSession(fmt.Sprintf("%v", user.ID))`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`utils.DeleteCookie(gc)`

			`user.Email = newEmail`
fix: make email verification col nullable 2021-12-22 10:08:51 +00:00			`user.EmailVerifiedAt = nil`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`hasEmailChanged = true`
			`// insert verification request`
			`verificationType := enum.UpdateEmail.String()`
fix: add location middleware to get exact host 2021-08-04 10:25:13 +00:00			`token, err := utils.CreateVerificationToken(newEmail, verificationType)`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`if err != nil {`
feat/add arangodb support (#80) feat: add arangodb init fix: dao for sql + arangodb * fix: update error logs * fix: use db name dynamically 2021-12-17 15:55:07 +00:00			log.Println(`error generating token`, err)
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`}`
Add query for verification requests Resolves #28 2021-07-18 04:22:54 +00:00			`db.Mgr.AddVerification(db.VerificationRequest{`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			`Token: token,`
			`Identifier: verificationType,`
			`ExpiresAt: time.Now().Add(time.Minute * 30).Unix(),`
			`Email: newEmail,`
			`})`

			`// exec it as go routin so that we can reduce the api latency`
			`go func() {`
			`utils.SendVerificationMail(newEmail, token)`
			`}()`
			`}`

			`_, err = db.Mgr.UpdateUser(user)`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`if err != nil {`
feat/add arangodb support (#80) feat: add arangodb init fix: dao for sql + arangodb * fix: update error logs * fix: use db name dynamically 2021-12-17 15:55:07 +00:00			`log.Println("error updating user:", err)`
feat: login wall (#42) * feat: add login-wall app * fix: rename vars * fix: rename vars * update docker file * add validations for app state * add host check for app * fix: docker file 2021-08-04 06:48:57 +00:00			`return res, err`
			`}`
Add resolver to update profile Resolves #12 #11 2021-07-18 03:55:20 +00:00			message := `Profile details updated successfully.`
			`if hasEmailChanged {`
			message += `For the email change we have sent new verification email, please verify and continue`
			`}`
			`res = &model.Response{`
			`Message: message,`
			`}`

			`return res, nil`
			`}`