1 var db
= require("../utils/database");
2 var maild
= require("../utils/mailer.js");
3 var TokenGen
= require("../utils/tokenGenerator");
10 * loginToken: token on server only
11 * loginTime: datetime (validity)
12 * sessionToken: token in cookies for authentication
13 * notify: boolean (send email notifications for corr games)
17 exports
.create = function(name
, email
, notify
, callback
)
20 notify
= false; //default
21 db
.serialize(function() {
23 "INSERT INTO Users " +
24 "(name, email, notify) VALUES " +
25 "(" + name
+ "," + email
+ "," + notify
+ ")");
29 // Find one user (by id, name, email, or token)
30 exports
.getOne = function(by
, value
, cb
)
32 const delimiter
= (typeof value
=== "string" ? "'" : "");
33 db
.serialize(function() {
35 "SELECT * FROM Users " +
36 "WHERE " + by
+ " = " + delimiter
+ value
+ delimiter
,
44 exports
.setLoginToken = function(token
, uid
, cb
)
46 db
.serialize(function() {
49 "SET loginToken = " + token
+ " AND loginTime = " + Date
.now() + " " +
54 // Set session token only if empty (first login)
55 // TODO: weaker security (but avoid to re-login everywhere after each logout)
56 exports
.trySetSessionToken = function(uid
, cb
)
58 // Also empty the login token to invalidate future attempts
59 db
.serialize(function() {
61 "SELECT sessionToken " +
63 "WHERE id = " + uid
, (err
,token
) => {
66 const newToken
= token
|| TokenGen
.generate(params
.token
.length
);
69 "SET loginToken = NULL " +
70 (!token
? "AND sessionToken = " + newToken
+ " " : "") +
77 exports
.updateSettings = function(user
, cb
)
79 db
.serialize(function() {
82 "SET name = " + user
.name
+
83 " AND email = " + user
.email
+
84 " AND notify = " + user
.notify
+ " " +
85 "WHERE id = " + user
._id
);