IT4Change/gradido
3
0
Fork 0
mirror of https://github.com/IT4Change/gradido.git synced 2025-12-13 07:45:54 +00:00
Code Issues Packages Projects Releases Wiki Activity

Get LoginUser from the DB, checkPassword.

Browse Source
This commit is contained in:
elweyn 2021-11-08 14:27:07 +01:00
parent f2d8d400ac
commit 5400967142
1 changed files with 5 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
backend/src/graphql/resolver/UserResolver.ts
View File

@ -196,9 +196,6 @@ const SecretKeyCryptographyEncrypt = (message: Buffer, encryptionKey: Buffer): B
@Resolver()
export class UserResolver {
private userSettingRepository = getCustomRepository(UserSettingRepository)
@Query(() => User)
@UseMiddleware(klicktippNewsletterStateMiddleware)
async login(
@ -208,19 +205,18 @@ export class UserResolver {
email = email.trim().toLowerCase()
// const result = await apiPost(CONFIG.LOGIN_API_URL + 'unsecureLogin', { email, password })
// UnsecureLogin
const userCount = await LoginUser.count({ email })
if (userCount === 0) {
const loginUserRepository = getCustomRepository(LoginUserRepository)
const loginUser = await loginUserRepository.findByEmail(email)
if (!loginUser) {
throw new Error('No user with this credentials')
}
if (!isPassword(password)) {
throw new Error('No user with this credentials')
}
const loginUserRepository = getCustomRepository(LoginUserRepository)
const loginUser = await loginUserRepository.findByEmail(email)
const passwordHash = SecretKeyCryptographyCreateKey(email, password) // return short and long hash
// loginUser.password = passwordHash[0].readBigUInt64LE()
if (loginUser.password !== passwordHash[0].readBigUInt64LE()) {
const loginUserPassword = BigInt(loginUser.password.toString())
if (loginUserPassword !== passwordHash[0].readBigUInt64LE()) {
throw new Error('No user with this credentials')
}