ershisan99/flashcards-api
1
0
Fork 0
mirror of https://github.com/ershisan99/flashcards-api.git synced 2025-12-17 05:09:26 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
719ac3cf0f64cabe52d10db85d586f6933560e66
flashcards-api/src/modules/auth/auth.controller.ts
Andres 719ac3cf0f fix cookie reset on logout
2023-07-19 22:45:39 +02:00

227 lines
7.6 KiB
TypeScript
Raw Blame History

import {
Body,
Controller,
Get,
HttpCode,
HttpStatus,
Param,
Patch,
Post,
Request,
Res,
Response,
UnauthorizedException,
UploadedFiles,
UseGuards,
UseInterceptors,
} from '@nestjs/common'
import { CommandBus } from '@nestjs/cqrs'
import { FileFieldsInterceptor } from '@nestjs/platform-express'
import {
ApiBadRequestResponse,
ApiBody,
ApiConsumes,
ApiNoContentResponse,
ApiNotFoundResponse,
ApiOperation,
ApiTags,
ApiUnauthorizedResponse,
} from '@nestjs/swagger'
import { Response as ExpressResponse } from 'express'
import { Cookies } from '../../infrastructure/decorators'
import {
EmailVerificationDto,
LoginDto,
RecoverPasswordDto,
RegistrationDto,
ResendVerificationEmailDto,
} from './dto'
import { ResetPasswordDto } from './dto/reset-password.dto'
import { UpdateUserDataDto } from './dto/update-user-data.dto'
import { LoginResponse, UserEntity } from './entities/auth.entity'
import { JwtAuthGuard, JwtRefreshGuard, LocalAuthGuard } from './guards'
import {
CreateUserCommand,
GetCurrentUserDataCommand,
LogoutCommand,
RefreshTokenCommand,
ResendVerificationEmailCommand,
ResetPasswordCommand,
SendPasswordRecoveryEmailCommand,
VerifyEmailCommand,
UpdateUserCommand,
} from './use-cases'
@ApiTags('Auth')
@Controller('auth')
export class AuthController {
constructor(private commandBus: CommandBus) {}
@ApiOperation({ description: 'Retrieve current user data.', summary: 'Current user data' })
@ApiUnauthorizedResponse({ description: 'Not logged in' })
@ApiBadRequestResponse({ description: 'User not found' })
@UseGuards(JwtAuthGuard)
@Get('me')
async getUserData(@Request() req): Promise<UserEntity> {
const userId = req.user.id
return await this.commandBus.execute(new GetCurrentUserDataCommand(userId))
}
@ApiConsumes('multipart/form-data')
@ApiOperation({ description: 'Update current user data.', summary: 'Update user data' })
@ApiUnauthorizedResponse({ description: 'Not logged in' })
@ApiBadRequestResponse({ description: 'User not found' })
@UseInterceptors(FileFieldsInterceptor([{ name: 'avatar', maxCount: 1 }]))
@UseGuards(JwtAuthGuard)
@Patch('me')
async updateUserData(
@Request() req,
@UploadedFiles()
files: { avatar: Express.Multer.File[] },
@Body() body: UpdateUserDataDto
): Promise<UserEntity> {
const userId = req.user.id
return await this.commandBus.execute(new UpdateUserCommand(userId, body, files.avatar?.[0]))
}
@ApiOperation({
description: 'Sign in using email and password. Must have an account to do so.',
summary: 'Sign in using email and password. Must have an account to do so.',
})
@ApiUnauthorizedResponse({ description: 'Invalid credentials' })
@ApiBody({ type: LoginDto })
@HttpCode(HttpStatus.OK)
@UseGuards(LocalAuthGuard)
@Post('login')
async login(
@Request() req,
@Res({ passthrough: true }) res: ExpressResponse
): Promise<LoginResponse> {
const userData = req.user.data
res.cookie('refreshToken', userData.refreshToken, {
httpOnly: true,
sameSite: 'none',
path: '/v1/auth/refresh-token',
secure: true,
})
res.cookie('accessToken', userData.accessToken, {
httpOnly: true,
sameSite: 'none',
secure: true,
})
return { accessToken: req.user.data.accessToken }
}
@ApiOperation({ description: 'Create a new user account', summary: 'Create a new user account' })
@ApiBadRequestResponse({ description: 'Email already exists' })
@HttpCode(HttpStatus.CREATED)
@Post('sign-up')
async registration(@Body() registrationData: RegistrationDto): Promise<UserEntity> {
return await this.commandBus.execute(new CreateUserCommand(registrationData))
}
@ApiOperation({ description: 'Verify user email', summary: 'Verify user email' })
@ApiBadRequestResponse({ description: 'Email has already been verified' })
@ApiNotFoundResponse({ description: 'User not found' })
@ApiNoContentResponse({ description: 'Email verified successfully' })
@HttpCode(HttpStatus.NO_CONTENT)
@Post('verify-email')
async confirmRegistration(@Body() body: EmailVerificationDto): Promise<void> {
return await this.commandBus.execute(new VerifyEmailCommand(body.code))
}
@ApiOperation({
description: 'Send verification email again',
summary: 'Send verification email again',
})
@ApiBadRequestResponse({ description: 'Email has already been verified' })
@ApiNotFoundResponse({ description: 'User not found' })
@ApiNoContentResponse({ description: 'Verification email sent successfully' })
@HttpCode(HttpStatus.NO_CONTENT)
@Post('resend-verification-email')
async resendVerificationEmail(@Body() body: ResendVerificationEmailDto): Promise<void> {
return await this.commandBus.execute(new ResendVerificationEmailCommand(body.userId))
}
@ApiOperation({ description: 'Sign current user out', summary: 'Sign current user out' })
@ApiUnauthorizedResponse({ description: 'Not logged in' })
@ApiNoContentResponse({ description: 'Logged out successfully' })
@HttpCode(HttpStatus.NO_CONTENT)
@UseGuards(JwtAuthGuard)
@Post('logout')
async logout(
@Cookies('accessToken') accessToken: string,
@Res({ passthrough: true }) res: ExpressResponse
): Promise<void> {
if (!accessToken) throw new UnauthorizedException()
await this.commandBus.execute(new LogoutCommand(accessToken))
res.clearCookie('accessToken', { httpOnly: true, sameSite: 'none', secure: true })
res.clearCookie('refreshToken', { httpOnly: true, sameSite: 'none', secure: true })
return null
}
@ApiOperation({
description: 'Get new access token using refresh token',
summary: 'Get new access token using refresh token',
})
@ApiUnauthorizedResponse({ description: 'Invalid or missing refreshToken' })
@ApiNoContentResponse({ description: 'New tokens generated successfully' })
@HttpCode(HttpStatus.NO_CONTENT)
@UseGuards(JwtRefreshGuard)
@Post('refresh-token')
async refreshToken(
@Request() req,
@Response({ passthrough: true }) res: ExpressResponse
): Promise<void> {
if (!req.cookies?.refreshToken) throw new UnauthorizedException()
const userId = req.user.id
const newTokens = await this.commandBus.execute(new RefreshTokenCommand(userId))
res.cookie('refreshToken', newTokens.refreshToken, {
httpOnly: true,
sameSite: 'none',
path: '/v1/auth/refresh-token',
secure: true,
})
res.cookie('accessToken', newTokens.accessToken, {
httpOnly: true,
sameSite: 'none',
secure: true,
})
return null
}
@ApiOperation({
description: 'Send password recovery email',
summary: 'Send password recovery email',
})
@ApiBadRequestResponse({ description: 'Email has already been verified' })
@ApiNotFoundResponse({ description: 'User not found' })
@ApiNoContentResponse({ description: 'Password recovery email sent successfully' })
@HttpCode(HttpStatus.NO_CONTENT)
@Post('recover-password')
async recoverPassword(@Body() body: RecoverPasswordDto): Promise<void> {
return await this.commandBus.execute(new SendPasswordRecoveryEmailCommand(body))
}
@ApiOperation({ description: 'Reset password', summary: 'Reset password' })
@ApiBadRequestResponse({ description: 'Password is required' })
@ApiNotFoundResponse({ description: 'Incorrect or expired password reset token' })
@ApiNoContentResponse({ description: 'Password reset successfully' })
@HttpCode(HttpStatus.NO_CONTENT)
@Post('reset-password/:token')
async resetPassword(
@Body() body: ResetPasswordDto,
@Param('token') token: string
): Promise<void> {
return await this.commandBus.execute(new ResetPasswordCommand(token, body.password))
}
}
Reference in New Issue View Git Blame Copy Permalink