richard
/
wiki
mirror of https://github.com/Requarks/wiki.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1742 Commits
3 Branches
120 Tags
80 MiB
Tree: c815877ad7
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'c815877ad7'
${ noResults }
wiki/server/graph/resolvers/user.js

265 lines
8.1 KiB
Raw Normal View History

feat: admin create user + markdown help fix
5 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: GraphQL schema
7 years ago
refactor: global namespace + admin pages UI
6 years ago
feat: GraphQL schema
7 years ago
feat: GraphQL mutations for User + Group
7 years ago
feat: admin group edit / assign / unassign
6 years ago
feat: GraphQL mutations for User + Group
7 years ago
feat: admin group edit / assign / unassign
6 years ago
feat: core improvements + local fs provider + UI fixes
6 years ago
feat: assets move + comments migration + admin users UI
4 years ago
feat: admin group edit / assign / unassign
6 years ago
feat: core improvements + local fs provider + UI fixes
6 years ago
refactor: migrate to objection.js + knex
6 years ago
feat: jwt renew via graphql + users create/authorize UI
6 years ago
feat: admin group edit / assign / unassign
6 years ago
feat: core improvements + local fs provider + UI fixes
6 years ago
feat: apollo upgrade to 2.0 + dev improvements + localization
6 years ago
feat: enable/disable TFA per user
4 years ago
feat: apollo upgrade to 2.0 + dev improvements + localization
6 years ago
feat: user profile fetch info + groups
4 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: social login providers with dynamic instances
4 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: social login providers with dynamic instances
4 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: admin dashboard last logins
4 years ago
feat: admin group edit / assign / unassign
6 years ago
feat: delete a user
4 years ago
feat: admin create user + markdown help fix
5 years ago
feat: GraphQL mutations for folder, group, tag, user
7 years ago
feat: delete a user
4 years ago
feat: delete user with replace target
4 years ago
fix: revocation token list for users + groups
4 years ago
feat: delete a user
4 years ago
feat: GraphQL setting, right, folder resolvers
7 years ago
feat: delete a user
4 years ago
feat: update user
5 years ago
feat: GraphQL setting, right, folder resolvers
7 years ago
feat: verify + activate + deactivate user from admin
4 years ago
fix: revocation token list for users + groups
4 years ago
feat: verify + activate + deactivate user from admin
4 years ago
feat: enable/disable TFA per user
4 years ago
feat: verify + activate + deactivate user from admin
4 years ago
feat: delete a user
4 years ago
feat: GraphQL setting, right, folder resolvers
7 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: timezone + dateFOrmat + appearance profile settings
4 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: timezone + dateFOrmat + appearance profile settings
4 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: GraphQL mutations for User + Group
7 years ago
feat: GraphQL schema
7 years ago
feat: GraphQL mutations for User + Group
7 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: user edit UI + admin UI improvements + fixes
5 years ago
feat: GraphQL schema
7 years ago
feat: user profile page - save info + change pwd
4 years ago
feat: GraphQL schema
7 years ago
  1. const graphHelper = require('../../helpers/graph')
  2. const _ = require('lodash')
  4. /* global WIKI */
  6. module.exports = {
  7. Query: {
  8. async users() { return {} }
  9. },
  10. Mutation: {
  11. async users() { return {} }
  12. },
  13. UserQuery: {
  14. async list(obj, args, context, info) {
  15. return WIKI.models.users.query()
  16. .select('id', 'email', 'name', 'providerKey', 'isSystem', 'isActive', 'createdAt', 'lastLoginAt')
  17. },
  18. async search(obj, args, context, info) {
  19. return WIKI.models.users.query()
  20. .where('email', 'like', `%${args.query}%`)
  21. .orWhere('name', 'like', `%${args.query}%`)
  22. .limit(10)
  23. .select('id', 'email', 'name', 'providerKey', 'createdAt')
  24. },
  25. async single(obj, args, context, info) {
  26. let usr = await WIKI.models.users.query().findById(args.id)
  27. usr.password = ''
  28. usr.tfaSecret = ''
  30. const str = _.get(WIKI.auth.strategies, usr.providerKey)
  31. str.strategy = _.find(WIKI.data.authentication, ['key', str.strategyKey])
  32. usr.providerName = str.displayName
  33. usr.providerIs2FACapable = _.get(str, 'strategy.useForm', false)
  35. return usr
  36. },
  37. async profile (obj, args, context, info) {
  38. if (!context.req.user || context.req.user.id < 1 || context.req.user.id === 2) {
  39. throw new WIKI.Error.AuthRequired()
  40. }
  41. const usr = await WIKI.models.users.query().findById(context.req.user.id)
  42. if (!usr.isActive) {
  43. throw new WIKI.Error.AuthAccountBanned()
  44. }
  46. const providerInfo = _.get(WIKI.auth.strategies, usr.providerKey, {})
  48. usr.providerName = providerInfo.displayName || 'Unknown'
  49. usr.lastLoginAt = usr.lastLoginAt || usr.updatedAt
  50. usr.password = ''
  51. usr.providerId = ''
  52. usr.tfaSecret = ''
  54. return usr
  55. },
  56. async lastLogins (obj, args, context, info) {
  57. return WIKI.models.users.query()
  58. .select('id', 'name', 'lastLoginAt')
  59. .whereNotNull('lastLoginAt')
  60. .orderBy('lastLoginAt', 'desc')
  61. .limit(10)
  62. }
  63. },
  64. UserMutation: {
  65. async create (obj, args) {
  66. try {
  67. await WIKI.models.users.createNewUser(args)
  69. return {
  70. responseResult: graphHelper.generateSuccess('User created successfully')
  71. }
  72. } catch (err) {
  73. return graphHelper.generateError(err)
  74. }
  75. },
  76. async delete (obj, args) {
  77. try {
  78. if (args.id <= 2) {
  79. throw new WIKI.Error.UserDeleteProtected()
  80. }
  81. await WIKI.models.users.deleteUser(args.id, args.replaceId)
  83. WIKI.auth.revokeUserTokens({ id: args.id, kind: 'u' })
  84. WIKI.events.outbound.emit('addAuthRevoke', { id: args.id, kind: 'u' })
  86. return {
  87. responseResult: graphHelper.generateSuccess('User deleted successfully')
  88. }
  89. } catch (err) {
  90. if (err.message.indexOf('foreign') >= 0) {
  91. return graphHelper.generateError(new WIKI.Error.UserDeleteForeignConstraint())
  92. } else {
  93. return graphHelper.generateError(err)
  94. }
  95. }
  96. },
  97. async update (obj, args) {
  98. try {
  99. await WIKI.models.users.updateUser(args)
  101. return {
  102. responseResult: graphHelper.generateSuccess('User created successfully')
  103. }
  104. } catch (err) {
  105. return graphHelper.generateError(err)
  106. }
  107. },
  108. async verify (obj, args) {
  109. try {
  110. await WIKI.models.users.query().patch({ isVerified: true }).findById(args.id)
  112. return {
  113. responseResult: graphHelper.generateSuccess('User verified successfully')
  114. }
  115. } catch (err) {
  116. return graphHelper.generateError(err)
  117. }
  118. },
  119. async activate (obj, args) {
  120. try {
  121. await WIKI.models.users.query().patch({ isActive: true }).findById(args.id)
  123. return {
  124. responseResult: graphHelper.generateSuccess('User activated successfully')
  125. }
  126. } catch (err) {
  127. return graphHelper.generateError(err)
  128. }
  129. },
  130. async deactivate (obj, args) {
  131. try {
  132. if (args.id <= 2) {
  133. throw new Error('Cannot deactivate system accounts.')
  134. }
  135. await WIKI.models.users.query().patch({ isActive: false }).findById(args.id)
  137. WIKI.auth.revokeUserTokens({ id: args.id, kind: 'u' })
  138. WIKI.events.outbound.emit('addAuthRevoke', { id: args.id, kind: 'u' })
  140. return {
  141. responseResult: graphHelper.generateSuccess('User deactivated successfully')
  142. }
  143. } catch (err) {
  144. return graphHelper.generateError(err)
  145. }
  146. },
  147. async enableTFA (obj, args) {
  148. try {
  149. await WIKI.models.users.query().patch({ tfaIsActive: true, tfaSecret: null }).findById(args.id)
  151. return {
  152. responseResult: graphHelper.generateSuccess('User 2FA enabled successfully')
  153. }
  154. } catch (err) {
  155. return graphHelper.generateError(err)
  156. }
  157. },
  158. async disableTFA (obj, args) {
  159. try {
  160. await WIKI.models.users.query().patch({ tfaIsActive: false, tfaSecret: null }).findById(args.id)
  162. return {
  163. responseResult: graphHelper.generateSuccess('User 2FA disabled successfully')
  164. }
  165. } catch (err) {
  166. return graphHelper.generateError(err)
  167. }
  168. },
  169. resetPassword (obj, args) {
  170. return false
  171. },
  172. async updateProfile (obj, args, context) {
  173. try {
  174. if (!context.req.user || context.req.user.id < 1 || context.req.user.id === 2) {
  175. throw new WIKI.Error.AuthRequired()
  176. }
  177. const usr = await WIKI.models.users.query().findById(context.req.user.id)
  178. if (!usr.isActive) {
  179. throw new WIKI.Error.AuthAccountBanned()
  180. }
  181. if (!usr.isVerified) {
  182. throw new WIKI.Error.AuthAccountNotVerified()
  183. }
  185. if (!['', 'DD/MM/YYYY', 'DD.MM.YYYY', 'MM/DD/YYYY', 'YYYY-MM-DD', 'YYYY/MM/DD'].includes(args.dateFormat)) {
  186. throw new WIKI.Error.InputInvalid()
  187. }
  189. if (!['', 'light', 'dark'].includes(args.appearance)) {
  190. throw new WIKI.Error.InputInvalid()
  191. }
  193. await WIKI.models.users.updateUser({
  194. id: usr.id,
  195. name: _.trim(args.name),
  196. jobTitle: _.trim(args.jobTitle),
  197. location: _.trim(args.location),
  198. timezone: args.timezone,
  199. dateFormat: args.dateFormat,
  200. appearance: args.appearance
  201. })
  203. const newToken = await WIKI.models.users.refreshToken(usr.id)
  205. return {
  206. responseResult: graphHelper.generateSuccess('User profile updated successfully'),
  207. jwt: newToken.token
  208. }
  209. } catch (err) {
  210. return graphHelper.generateError(err)
  211. }
  212. },
  213. async changePassword (obj, args, context) {
  214. try {
  215. if (!context.req.user || context.req.user.id < 1 || context.req.user.id === 2) {
  216. throw new WIKI.Error.AuthRequired()
  217. }
  218. const usr = await WIKI.models.users.query().findById(context.req.user.id)
  219. if (!usr.isActive) {
  220. throw new WIKI.Error.AuthAccountBanned()
  221. }
  222. if (!usr.isVerified) {
  223. throw new WIKI.Error.AuthAccountNotVerified()
  224. }
  225. if (usr.providerKey !== 'local') {
  226. throw new WIKI.Error.AuthProviderInvalid()
  227. }
  228. try {
  229. await usr.verifyPassword(args.current)
  230. } catch (err) {
  231. throw new WIKI.Error.AuthPasswordInvalid()
  232. }
  234. await WIKI.models.users.updateUser({
  235. id: usr.id,
  236. newPassword: args.new
  237. })
  239. const newToken = await WIKI.models.users.refreshToken(usr)
  241. return {
  242. responseResult: graphHelper.generateSuccess('Password changed successfully'),
  243. jwt: newToken.token
  244. }
  245. } catch (err) {
  246. return graphHelper.generateError(err)
  247. }
  248. }
  249. },
  250. User: {
  251. groups (usr) {
  252. return usr.$relatedQuery('groups')
  253. }
  254. },
  255. UserProfile: {
  256. async groups (usr) {
  257. const usrGroups = await usr.$relatedQuery('groups')
  258. return usrGroups.map(g => g.name)
  259. },
  260. async pagesTotal (usr) {
  261. const result = await WIKI.models.pages.query().count('* as total').where('creatorId', usr.id).first()
  262. return _.toSafeInteger(result.total)
  263. }
  264. }
  265. }