overleaf/services/web/app/src/Features/User/ThirdPartyIdentityManager.js

const EmailHandler = require('../../../../app/src/Features/Email/EmailHandler')
const Errors = require('../Errors/Errors')
const logger = require('logger-sharelatex')
const { User } = require('../../models/User')
const settings = require('settings-sharelatex')
const _ = require('lodash')

const oauthProviders = settings.oauthProviders || {}

const ThirdPartyIdentityManager = (module.exports = {
  getUser(providerId, externalUserId, callback) {
    if (providerId == null || externalUserId == null) {
      return callback(new Error('invalid arguments'))
    }
    const query = ThirdPartyIdentityManager._getUserQuery(
      providerId,
      externalUserId
    )
    User.findOne(query, function(err, user) {
      if (err != null) {
        return callback(err)
      }
      if (!user) {
        return callback(new Errors.ThirdPartyUserNotFoundError())
      }
      callback(null, user)
    })
  },

  login(providerId, externalUserId, externalData, callback) {
    ThirdPartyIdentityManager.getUser(providerId, externalUserId, function(
      err,
      user
    ) {
      if (err != null) {
        return callback(err)
      }
      if (!externalData) {
        return callback(null, user)
      }
      const query = ThirdPartyIdentityManager._getUserQuery(
        providerId,
        externalUserId
      )
      const update = ThirdPartyIdentityManager._thirdPartyIdentifierUpdate(
        user,
        providerId,
        externalUserId,
        externalData
      )
      User.findOneAndUpdate(query, update, { new: true }, callback)
    })
  },

  _getUserQuery(providerId, externalUserId) {
    externalUserId = externalUserId.toString()
    providerId = providerId.toString()
    const query = {
      'thirdPartyIdentifiers.externalUserId': externalUserId,
      'thirdPartyIdentifiers.providerId': providerId
    }
    return query
  },

  _thirdPartyIdentifierUpdate(user, providerId, externalUserId, externalData) {
    providerId = providerId.toString()
    // get third party identifier object from array
    const thirdPartyIdentifier = user.thirdPartyIdentifiers.find(
      tpi =>
        tpi.externalUserId === externalUserId && tpi.providerId === providerId
    )
    // do recursive merge of new data over existing data
    _.merge(thirdPartyIdentifier.externalData, externalData)
    const update = { 'thirdPartyIdentifiers.$': thirdPartyIdentifier }
    return update
  },

  // register: () ->
  // this should be implemented once we move to having v2 as the master
  // but for now we need to register with v1 then call link once that
  // is complete

  link(userId, providerId, externalUserId, externalData, callback, retry) {
    if (!oauthProviders[providerId]) {
      return callback(new Error('Not a valid provider'))
    }
    const query = {
      _id: userId,
      'thirdPartyIdentifiers.providerId': {
        $ne: providerId
      }
    }
    const update = {
      $push: {
        thirdPartyIdentifiers: {
          externalUserId,
          externalData,
          providerId
        }
      }
    }
    // add new tpi only if an entry for the provider does not exist
    // projection includes thirdPartyIdentifiers for tests
    User.findOneAndUpdate(
      query,
      update,
      { projection: { email: 1, thirdPartyIdentifiers: 1 }, new: 1 },
      (err, res) => {
        if (err && err.code === 11000) {
          callback(new Errors.ThirdPartyIdentityExistsError())
        } else if (err != null) {
          callback(err)
        } else if (res) {
          const emailOptions = {
            to: res.email,
            provider: oauthProviders[providerId].name
          }
          if (settings.oauthFallback) {
            return callback(null, res)
          } else {
            EmailHandler.sendEmail(
              'emailThirdPartyIdentifierLinked',
              emailOptions,
              error => {
                if (error != null) {
                  logger.warn(error)
                }
                return callback(null, res)
              }
            )
          }
        } else if (retry) {
          // if already retried then throw error
          callback(new Error('update failed'))
        } else {
          // attempt to clear existing entry then retry
          ThirdPartyIdentityManager.unlink(userId, providerId, function(err) {
            if (err != null) {
              return callback(err)
            }
            ThirdPartyIdentityManager.link(
              userId,
              providerId,
              externalUserId,
              externalData,
              callback,
              retry
            )
          })
        }
      }
    )
  },

  unlink(userId, providerId, callback) {
    if (!oauthProviders[providerId]) {
      return callback(new Error('Not a valid provider'))
    }
    const query = {
      _id: userId
    }
    const update = {
      $pull: {
        thirdPartyIdentifiers: {
          providerId
        }
      }
    }
    // projection includes thirdPartyIdentifiers for tests
    User.findOneAndUpdate(
      query,
      update,
      { projection: { email: 1, thirdPartyIdentifiers: 1 }, new: 1 },
      (err, res) => {
        if (err != null) {
          callback(err)
        } else if (!res) {
          callback(new Error('update failed'))
        } else {
          const emailOptions = {
            to: res.email,
            provider: oauthProviders[providerId].name
          }
          if (settings.oauthFallback) {
            return callback(null, res)
          } else {
            EmailHandler.sendEmail(
              'emailThirdPartyIdentifierUnlinked',
              emailOptions,
              error => {
                if (error != null) {
                  logger.warn(error)
                }
                return callback(null, res)
              }
            )
          }
        }
      }
    )
  }
})
Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`const EmailHandler = require('../../../../app/src/Features/Email/EmailHandler')`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`const Errors = require('../Errors/Errors')`
Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`const logger = require('logger-sharelatex')`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`const { User } = require('../../models/User')`
Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`const settings = require('settings-sharelatex')`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`const _ = require('lodash')`

Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`const oauthProviders = settings.oauthProviders \|\| {}`

remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`const ThirdPartyIdentityManager = (module.exports = {`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`getUser(providerId, externalUserId, callback) {`
			`if (providerId == null \|\| externalUserId == null) {`
			`return callback(new Error('invalid arguments'))`
			`}`
			`const query = ThirdPartyIdentityManager._getUserQuery(`
			`providerId,`
			`externalUserId`
			`)`
remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`User.findOne(query, function(err, user) {`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`if (err != null) {`
			`return callback(err)`
			`}`
			`if (!user) {`
			`return callback(new Errors.ThirdPartyUserNotFoundError())`
			`}`
remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`callback(null, user)`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`})`
			`},`

			`login(providerId, externalUserId, externalData, callback) {`
remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`ThirdPartyIdentityManager.getUser(providerId, externalUserId, function(`
			`err,`
			`user`
			`) {`
			`if (err != null) {`
			`return callback(err)`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`}`
remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`if (!externalData) {`
			`return callback(null, user)`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`}`
remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`const query = ThirdPartyIdentityManager._getUserQuery(`
			`providerId,`
			`externalUserId`
			`)`
			`const update = ThirdPartyIdentityManager._thirdPartyIdentifierUpdate(`
			`user,`
			`providerId,`
			`externalUserId,`
			`externalData`
			`)`
			`User.findOneAndUpdate(query, update, { new: true }, callback)`
			`})`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`},`

			`_getUserQuery(providerId, externalUserId) {`
			`externalUserId = externalUserId.toString()`
			`providerId = providerId.toString()`
			`const query = {`
			`'thirdPartyIdentifiers.externalUserId': externalUserId,`
			`'thirdPartyIdentifiers.providerId': providerId`
			`}`
			`return query`
			`},`

			`_thirdPartyIdentifierUpdate(user, providerId, externalUserId, externalData) {`
			`providerId = providerId.toString()`
			`// get third party identifier object from array`
			`const thirdPartyIdentifier = user.thirdPartyIdentifiers.find(`
			`tpi =>`
			`tpi.externalUserId === externalUserId && tpi.providerId === providerId`
			`)`
			`// do recursive merge of new data over existing data`
			`_.merge(thirdPartyIdentifier.externalData, externalData)`
			`const update = { 'thirdPartyIdentifiers.$': thirdPartyIdentifier }`
			`return update`
			`},`

			`// register: () ->`
			`// this should be implemented once we move to having v2 as the master`
			`// but for now we need to register with v1 then call link once that`
			`// is complete`

remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`link(userId, providerId, externalUserId, externalData, callback, retry) {`
Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`if (!oauthProviders[providerId]) {`
			`return callback(new Error('Not a valid provider'))`
			`}`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`const query = {`
remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`_id: userId,`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`'thirdPartyIdentifiers.providerId': {`
			`$ne: providerId`
			`}`
			`}`
			`const update = {`
			`$push: {`
			`thirdPartyIdentifiers: {`
			`externalUserId,`
			`externalData,`
			`providerId`
			`}`
			`}`
			`}`
			`// add new tpi only if an entry for the provider does not exist`
Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`// projection includes thirdPartyIdentifiers for tests`
			`User.findOneAndUpdate(`
			`query,`
			`update,`
			`{ projection: { email: 1, thirdPartyIdentifiers: 1 }, new: 1 },`
			`(err, res) => {`
			`if (err && err.code === 11000) {`
			`callback(new Errors.ThirdPartyIdentityExistsError())`
			`} else if (err != null) {`
			`callback(err)`
			`} else if (res) {`
			`const emailOptions = {`
			`to: res.email,`
			`provider: oauthProviders[providerId].name`
			`}`
			`if (settings.oauthFallback) {`
			`return callback(null, res)`
			`} else {`
			`EmailHandler.sendEmail(`
			`'emailThirdPartyIdentifierLinked',`
			`emailOptions,`
			`error => {`
			`if (error != null) {`
			`logger.warn(error)`
			`}`
			`return callback(null, res)`
			`}`
			`)`
			`}`
			`} else if (retry) {`
			`// if already retried then throw error`
			`callback(new Error('update failed'))`
			`} else {`
			`// attempt to clear existing entry then retry`
			`ThirdPartyIdentityManager.unlink(userId, providerId, function(err) {`
			`if (err != null) {`
			`return callback(err)`
			`}`
			`ThirdPartyIdentityManager.link(`
			`userId,`
			`providerId,`
			`externalUserId,`
			`externalData,`
			`callback,`
			`retry`
			`)`
			`})`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`}`
Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`}`
			`)`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`},`

remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`unlink(userId, providerId, callback) {`
Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`if (!oauthProviders[providerId]) {`
			`return callback(new Error('Not a valid provider'))`
			`}`
			`const query = {`
			`_id: userId`
			`}`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`const update = {`
			`$pull: {`
			`thirdPartyIdentifiers: {`
			`providerId`
			`}`
			`}`
			`}`
Merge pull request #1903 from overleaf/jel-oauth-email-notification OAuth link/unlink email notification via v2 GitOrigin-RevId: 36b0c6153d3eb8174adc4fd684837d81be95b644 2019-07-11 11:22:25 -04:00			`// projection includes thirdPartyIdentifiers for tests`
			`User.findOneAndUpdate(`
			`query,`
			`update,`
			`{ projection: { email: 1, thirdPartyIdentifiers: 1 }, new: 1 },`
			`(err, res) => {`
			`if (err != null) {`
			`callback(err)`
			`} else if (!res) {`
			`callback(new Error('update failed'))`
			`} else {`
			`const emailOptions = {`
			`to: res.email,`
			`provider: oauthProviders[providerId].name`
			`}`
			`if (settings.oauthFallback) {`
			`return callback(null, res)`
			`} else {`
			`EmailHandler.sendEmail(`
			`'emailThirdPartyIdentifierUnlinked',`
			`emailOptions,`
			`error => {`
			`if (error != null) {`
			`logger.warn(error)`
			`}`
			`return callback(null, res)`
			`}`
			`)`
			`}`
			`}`
			`}`
			`)`
Merge pull request #1717 from overleaf/as-decaffeinate-backend Decaffeinate backend GitOrigin-RevId: 4ca9f94fc809cab6f47cec8254cacaf1bb3806fa 2019-05-29 05:21:06 -04:00			`}`
remove collabratec v1 deps, and user stubs for oauth GitOrigin-RevId: c4bc497a07658eb580b0bfdb011fea32ea1657e1 2019-06-06 17:14:16 -04:00			`})`