authorizer/server/graph/schema.resolvers.go

package graph

// This file will be automatically regenerated based on the schema, any resolver implementations
// will be copied through when generating and any unknown code will be moved to the end.

import (
	"context"
	"errors"
	"fmt"
	"log"
	"strings"
	"time"

	"github.com/yauthdev/yauth/server/db"
	"github.com/yauthdev/yauth/server/enum"
	"github.com/yauthdev/yauth/server/graph/generated"
	"github.com/yauthdev/yauth/server/graph/model"
	"github.com/yauthdev/yauth/server/session"
	"github.com/yauthdev/yauth/server/utils"
	"golang.org/x/crypto/bcrypt"
)

func (r *mutationResolver) VerifySignupToken(ctx context.Context, params model.VerifySignupTokenInput) (*model.Response, error) {
	// // verify if token is valid
	var res *model.Response
	_, err := db.Mgr.GetVerificationByToken(params.Token)
	if err != nil {
		return res, errors.New(`Invalid token`)
	}

	// verify if token exists in db
	claim, err := utils.VerifyVerificationToken(params.Token)
	if err != nil {
		return res, errors.New(`Invalid token`)
	}
	res = &model.Response{
		Message: `Email verified successfully. Login to access the system.`,
	}

	// update email_verified_at in users table
	db.Mgr.UpdateVerificationTime(time.Now().Unix(), claim.Email)
	// delete from verification table
	db.Mgr.DeleteToken(claim.Email)

	return res, nil
}

func (r *mutationResolver) BasicAuthSignUp(ctx context.Context, params model.BasicAuthSignupInput) (*model.BasicAuthSignupResponse, error) {
	var res *model.BasicAuthSignupResponse
	if params.CofirmPassword != params.Password {
		return res, errors.New(`Passowrd and Confirm Password does not match`)
	}

	params.Email = strings.ToLower(params.Email)

	if !utils.IsValidEmail(params.Email) {
		return res, errors.New(`Invalid email address`)
	}

	// find user with email
	existingUser, err := db.Mgr.GetUserByEmail(params.Email)
	if err != nil {
		log.Println("User with email " + params.Email + " not found")
	}

	if existingUser.EmailVerifiedAt > 0 {
		// email is verified
		return res, errors.New(`You have already signed up. Please login`)
	}
	user := db.User{
		Email:    params.Email,
		Password: params.Password,
	}

	if params.FirstName != nil {
		user.FirstName = *params.FirstName
	}

	if params.LastName != nil {
		user.LastName = *params.LastName
	}

	user.SignUpMethod = enum.BasicAuth.String()
	_, err = db.Mgr.AddUser(user)
	if err != nil {
		return res, err
	}

	// insert verification request
	verificationType := enum.BasicAuth.String()
	token, err := utils.CreateVerificationToken(params.Email, verificationType)
	if err != nil {
		log.Println(`Error generating token`, err)
	}
	db.Mgr.AddVerification(db.Verification{
		Token:      token,
		Identifier: verificationType,
		ExpiresAt:  time.Now().Add(time.Minute * 30).Unix(),
		Email:      params.Email,
	})

	// exec it as go routin so that we can reduce the api latency
	go func() {
		utils.SendVerificationMail(params.Email, token)
	}()

	res = &model.BasicAuthSignupResponse{
		Message: `Verification email sent successfully. Please check your inbox`,
	}

	return res, nil
}

func (r *mutationResolver) Login(ctx context.Context, params model.LoginInput) (*model.LoginResponse, error) {
	gc, err := utils.GinContextFromContext(ctx)
	var res *model.LoginResponse
	if err != nil {
		return res, err
	}

	params.Email = strings.ToLower(params.Email)
	user, err := db.Mgr.GetUserByEmail(params.Email)
	if err != nil {
		return res, errors.New(`User with this email not found`)
	}

	if user.SignUpMethod != enum.BasicAuth.String() {
		return res, errors.New(`User has not signed up email & password`)
	}

	if user.EmailVerifiedAt <= 0 {
		return res, errors.New(`Email not verified`)
	}
	// match password
	err = bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(params.Password))
	if err != nil {
		return res, errors.New(`Invalid Password`)
	}
	userIdStr := fmt.Sprintf("%d", user.ID)
	log.Println("session object init -> ", session.GetToken(userIdStr))
	refreshToken, _ := utils.CreateAuthToken(utils.UserAuthInfo{
		ID:    userIdStr,
		Email: user.Email,
	}, enum.RefreshToken)

	accessToken, _ := utils.CreateAuthToken(utils.UserAuthInfo{
		ID:    userIdStr,
		Email: user.Email,
	}, enum.AccessToken)

	session.SetToken(userIdStr, refreshToken)
	log.Println("session object -> ", session.GetToken(userIdStr))

	res = &model.LoginResponse{
		Message:     `Logged in successfully`,
		AccessToken: &accessToken,
		User: &model.User{
			ID:        userIdStr,
			Email:     user.Email,
			Image:     &user.Image,
			FirstName: &user.FirstName,
			LastName:  &user.LastName,
		},
	}

	utils.SetCookie(gc, accessToken)

	return res, nil
}

func (r *queryResolver) Users(ctx context.Context) ([]*model.User, error) {
	var res []*model.User
	users, err := db.Mgr.GetUsers()
	if err != nil {
		return res, err
	}

	for _, user := range users {
		res = append(res, &model.User{
			ID:              fmt.Sprintf("%d", user.ID),
			Email:           user.Email,
			SignUpMethod:    user.SignupMethod,
			FirstName:       &user.FirstName,
			LastName:        &user.LastName,
			Password:        &user.Password,
			EmailVerifiedAt: &user.EmailVerifiedAt,
		})
	}

	return res, nil
}

func (r *queryResolver) UpdateToken(ctx context.Context) (*model.LoginResponse, error) {
	panic(fmt.Errorf("not implemented"))
}

// Mutation returns generated.MutationResolver implementation.
func (r *Resolver) Mutation() generated.MutationResolver { return &mutationResolver{r} }

// Query returns generated.QueryResolver implementation.
func (r *Resolver) Query() generated.QueryResolver { return &queryResolver{r} }

type (
	mutationResolver struct{ *Resolver }
	queryResolver    struct{ *Resolver }
)
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`package graph`

			`// This file will be automatically regenerated based on the schema, any resolver implementations`
			`// will be copied through when generating and any unknown code will be moved to the end.`

			`import (`
			`"context"`
implement login resolver 2021-07-14 18:42:18 +00:00			`"errors"`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`"fmt"`
add signup resolver 2021-07-12 18:22:16 +00:00			`"log"`
			`"strings"`
			`"time"`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00
add signup resolver 2021-07-12 18:22:16 +00:00			`"github.com/yauthdev/yauth/server/db"`
add sign_up_method to users table 2021-07-14 07:16:48 +00:00			`"github.com/yauthdev/yauth/server/enum"`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`"github.com/yauthdev/yauth/server/graph/generated"`
			`"github.com/yauthdev/yauth/server/graph/model"`
implement login resolver 2021-07-14 18:42:18 +00:00			`"github.com/yauthdev/yauth/server/session"`
add signup resolver 2021-07-12 18:22:16 +00:00			`"github.com/yauthdev/yauth/server/utils"`
implement login resolver 2021-07-14 18:42:18 +00:00			`"golang.org/x/crypto/bcrypt"`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`)`

feat: add resolver for token verification Resolves #6 2021-07-13 20:06:11 +00:00			`func (r mutationResolver) VerifySignupToken(ctx context.Context, params model.VerifySignupTokenInput) (model.Response, error) {`
			`// // verify if token is valid`
			`var res *model.Response`
			`_, err := db.Mgr.GetVerificationByToken(params.Token)`
			`if err != nil {`
implement login resolver 2021-07-14 18:42:18 +00:00			return res, errors.New(`Invalid token`)
			`}`
feat: add resolver for token verification Resolves #6 2021-07-13 20:06:11 +00:00
implement login resolver 2021-07-14 18:42:18 +00:00			`// verify if token exists in db`
			`claim, err := utils.VerifyVerificationToken(params.Token)`
			`if err != nil {`
			return res, errors.New(`Invalid token`)
			`}`
			`res = &model.Response{`
			Message: `Email verified successfully. Login to access the system.`,
feat: add resolver for token verification Resolves #6 2021-07-13 20:06:11 +00:00			`}`

implement login resolver 2021-07-14 18:42:18 +00:00			`// update email_verified_at in users table`
			`db.Mgr.UpdateVerificationTime(time.Now().Unix(), claim.Email)`
			`// delete from verification table`
			`db.Mgr.DeleteToken(claim.Email)`

feat: add resolver for token verification Resolves #6 2021-07-13 20:06:11 +00:00			`return res, nil`
			`}`

add signup resolver 2021-07-12 18:22:16 +00:00			`func (r mutationResolver) BasicAuthSignUp(ctx context.Context, params model.BasicAuthSignupInput) (model.BasicAuthSignupResponse, error) {`
			`var res *model.BasicAuthSignupResponse`
			`if params.CofirmPassword != params.Password {`
implement login resolver 2021-07-14 18:42:18 +00:00			return res, errors.New(`Passowrd and Confirm Password does not match`)
add signup resolver 2021-07-12 18:22:16 +00:00			`}`

			`params.Email = strings.ToLower(params.Email)`

			`if !utils.IsValidEmail(params.Email) {`
implement login resolver 2021-07-14 18:42:18 +00:00			return res, errors.New(`Invalid email address`)
add signup resolver 2021-07-12 18:22:16 +00:00			`}`

			`// find user with email`
			`existingUser, err := db.Mgr.GetUserByEmail(params.Email)`
			`if err != nil {`
			`log.Println("User with email " + params.Email + " not found")`
			`}`

			`if existingUser.EmailVerifiedAt > 0 {`
			`// email is verified`
implement login resolver 2021-07-14 18:42:18 +00:00			return res, errors.New(`You have already signed up. Please login`)
			`}`
			`user := db.User{`
			`Email: params.Email,`
			`Password: params.Password,`
			`}`
add signup resolver 2021-07-12 18:22:16 +00:00
implement login resolver 2021-07-14 18:42:18 +00:00			`if params.FirstName != nil {`
			`user.FirstName = *params.FirstName`
			`}`
add signup resolver 2021-07-12 18:22:16 +00:00
implement login resolver 2021-07-14 18:42:18 +00:00			`if params.LastName != nil {`
			`user.LastName = *params.LastName`
			`}`

			`user.SignUpMethod = enum.BasicAuth.String()`
			`_, err = db.Mgr.AddUser(user)`
			`if err != nil {`
			`return res, err`
			`}`

			`// insert verification request`
			`verificationType := enum.BasicAuth.String()`
			`token, err := utils.CreateVerificationToken(params.Email, verificationType)`
			`if err != nil {`
			log.Println(`Error generating token`, err)
			`}`
			`db.Mgr.AddVerification(db.Verification{`
			`Token: token,`
			`Identifier: verificationType,`
			`ExpiresAt: time.Now().Add(time.Minute * 30).Unix(),`
			`Email: params.Email,`
			`})`

			`// exec it as go routin so that we can reduce the api latency`
			`go func() {`
			`utils.SendVerificationMail(params.Email, token)`
			`}()`

			`res = &model.BasicAuthSignupResponse{`
			Message: `Verification email sent successfully. Please check your inbox`,
add signup resolver 2021-07-12 18:22:16 +00:00			`}`

			`return res, nil`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`}`

implement login resolver 2021-07-14 18:42:18 +00:00			`func (r mutationResolver) Login(ctx context.Context, params model.LoginInput) (model.LoginResponse, error) {`
			`gc, err := utils.GinContextFromContext(ctx)`
			`var res *model.LoginResponse`
			`if err != nil {`
			`return res, err`
			`}`

			`params.Email = strings.ToLower(params.Email)`
			`user, err := db.Mgr.GetUserByEmail(params.Email)`
			`if err != nil {`
			return res, errors.New(`User with this email not found`)
			`}`

			`if user.SignUpMethod != enum.BasicAuth.String() {`
			return res, errors.New(`User has not signed up email & password`)
			`}`

			`if user.EmailVerifiedAt <= 0 {`
			return res, errors.New(`Email not verified`)
			`}`
			`// match password`
			`err = bcrypt.CompareHashAndPassword([]byte(user.Password), []byte(params.Password))`
			`if err != nil {`
			return res, errors.New(`Invalid Password`)
			`}`
			`userIdStr := fmt.Sprintf("%d", user.ID)`
			`log.Println("session object init -> ", session.GetToken(userIdStr))`
			`refreshToken, _ := utils.CreateAuthToken(utils.UserAuthInfo{`
			`ID: userIdStr,`
			`Email: user.Email,`
			`}, enum.RefreshToken)`

			`accessToken, _ := utils.CreateAuthToken(utils.UserAuthInfo{`
			`ID: userIdStr,`
			`Email: user.Email,`
			`}, enum.AccessToken)`

			`session.SetToken(userIdStr, refreshToken)`
			`log.Println("session object -> ", session.GetToken(userIdStr))`

			`res = &model.LoginResponse{`
			Message: `Logged in successfully`,
			`AccessToken: &accessToken,`
			`User: &model.User{`
			`ID: userIdStr,`
			`Email: user.Email,`
			`Image: &user.Image,`
			`FirstName: &user.FirstName,`
			`LastName: &user.LastName,`
			`},`
			`}`

			`utils.SetCookie(gc, accessToken)`

			`return res, nil`
update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`}`

add signup resolver 2021-07-12 18:22:16 +00:00			`func (r queryResolver) Users(ctx context.Context) ([]model.User, error) {`
			`var res []*model.User`
			`users, err := db.Mgr.GetUsers()`
			`if err != nil {`
			`return res, err`
			`}`

			`for _, user := range users {`
			`res = append(res, &model.User{`
			`ID: fmt.Sprintf("%d", user.ID),`
			`Email: user.Email,`
			`SignUpMethod: user.SignupMethod,`
			`FirstName: &user.FirstName,`
			`LastName: &user.LastName,`
			`Password: &user.Password,`
			`EmailVerifiedAt: &user.EmailVerifiedAt,`
			`})`
			`}`

			`return res, nil`
			`}`

implement login resolver 2021-07-14 18:42:18 +00:00			`func (r queryResolver) UpdateToken(ctx context.Context) (model.LoginResponse, error) {`
			`panic(fmt.Errorf("not implemented"))`
			`}`

update server boilerplate to use graphql 2021-07-08 12:15:19 +00:00			`// Mutation returns generated.MutationResolver implementation.`
			`func (r *Resolver) Mutation() generated.MutationResolver { return &mutationResolver{r} }`

			`// Query returns generated.QueryResolver implementation.`
			`func (r *Resolver) Query() generated.QueryResolver { return &queryResolver{r} }`

add signup resolver 2021-07-12 18:22:16 +00:00			`type (`
			`mutationResolver struct{ *Resolver }`
			`queryResolver struct{ *Resolver }`
			`)`