From 01707674d2cc7e765edae5adcab7eb4507b32533 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Mon, 8 Nov 2021 13:27:03 +0100
Subject: [PATCH 01/23] Added LoginUserRepository to get login_users.

---
 backend/src/typeorm/repository/LoginUser.ts | 11 +++++++++++
 1 file changed, 11 insertions(+)
 create mode 100644 backend/src/typeorm/repository/LoginUser.ts

diff --git a/backend/src/typeorm/repository/LoginUser.ts b/backend/src/typeorm/repository/LoginUser.ts
new file mode 100644
index 000000000..65ac6f67b
--- /dev/null
+++ b/backend/src/typeorm/repository/LoginUser.ts
@@ -0,0 +1,11 @@
+import { EntityRepository, Repository } from 'typeorm'
+import { LoginUser } from '@entity/LoginUser'
+
+@EntityRepository(LoginUser)
+export class LoginUserRepository extends Repository<LoginUser> {
+  async findByEmail(email: string): Promise<LoginUser> {
+    return this.createQueryBuilder('loginUser')
+      .where('loginUser.email = :email', { email })
+      .getOneOrFail()
+  }
+}

From a375e6ecc9d9982ad7ea569b3f186a562107df30 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Mon, 8 Nov 2021 13:27:32 +0100
Subject: [PATCH 02/23] WIP: Change the login so that the unsecureLogin logic
 is implemented.

---
 backend/src/graphql/resolver/UserResolver.ts | 41 +++++++++++++-------
 1 file changed, 26 insertions(+), 15 deletions(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index d05640e5e..bfb8b41b4 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -26,9 +26,13 @@ import { UserSettingRepository } from '../../typeorm/repository/UserSettingRepos
 import { Setting } from '../enum/Setting'
 import { UserRepository } from '../../typeorm/repository/User'
 import { LoginUser } from '@entity/LoginUser'
+import { LoginUserRepository } from '../../typeorm/repository/LoginUser'
 
 @Resolver()
 export class UserResolver {
+  private userRepository = getCustomRepository(UserRepository)
+  private userSettingRepository = getCustomRepository(UserSettingRepository)
+
   @Query(() => User)
   @UseMiddleware(klicktippNewsletterStateMiddleware)
   async login(
@@ -36,27 +40,34 @@ export class UserResolver {
     @Ctx() context: any,
   ): Promise<User> {
     email = email.trim().toLowerCase()
-    const result = await apiPost(CONFIG.LOGIN_API_URL + 'unsecureLogin', { email, password })
-
-    // if there is no user, throw an authentication error
-    if (!result.success) {
-      throw new Error(result.data)
+    // const result = await apiPost(CONFIG.LOGIN_API_URL + 'unsecureLogin', { email, password })
+    // UnsecureLogin
+    const userCount = await LoginUser.count({ email })
+    if (userCount === 0) {
+      throw new Error('No user with this credentials')
     }
+    if (!isPassword(password)) {
+      throw new Error('No user with this credentials')
+    }
+
+    const loginUserRepository = getCustomRepository(LoginUserRepository)
+    const loginUser = await loginUserRepository.findByEmail(email)
+    if (loginUser.password)
 
     context.setHeaders.push({
       key: 'token',
       value: encode(result.data.session_id, result.data.user.public_hex),
     })
-    const user = new User(result.data.user)
+    // const user = new User(result.data.user)
     // Hack: Database Field is not validated properly and not nullable
     if (user.publisherId === 0) {
       user.publisherId = undefined
     }
     user.hasElopage = result.data.hasElopage
     // read additional settings from settings table
-    const userRepository = getCustomRepository(UserRepository)
+    // const userRepository = getCustomRepository(UserRepository)
     let userEntity: void | DbUser
-    userEntity = await userRepository.findByPubkeyHex(user.pubkey).catch(() => {
+    userEntity = await this.userRepository.findByPubkeyHex(user.pubkey).catch(() => {
       userEntity = new DbUser()
       userEntity.firstName = user.firstName
       userEntity.lastName = user.lastName
@@ -64,7 +75,7 @@ export class UserResolver {
       userEntity.email = user.email
       userEntity.pubkey = Buffer.from(fromHex(user.pubkey))
 
-      userRepository.save(userEntity).catch(() => {
+      this.userRepository.save(userEntity).catch(() => {
         throw new Error('error by save userEntity')
       })
     })
@@ -216,7 +227,7 @@ export class UserResolver {
       },
     }
     let response: UpdateUserInfosResponse | undefined
-    const userRepository = getCustomRepository(UserRepository)
+    // const userRepository = getCustomRepository(UserRepository)
 
     if (
       firstName ||
@@ -232,7 +243,7 @@ export class UserResolver {
       if (!result.success) throw new Error(result.data)
       response = new UpdateUserInfosResponse(result.data)
 
-      const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
+      const userEntity = await this.userRepository.findByPubkeyHex(context.pubKey)
       let userEntityChanged = false
       if (firstName) {
         userEntity.firstName = firstName
@@ -247,7 +258,7 @@ export class UserResolver {
         userEntityChanged = true
       }
       if (userEntityChanged) {
-        userRepository.save(userEntity).catch((error) => {
+        this.userRepository.save(userEntity).catch((error) => {
           throw new Error(error)
         })
       }
@@ -255,10 +266,10 @@ export class UserResolver {
     if (coinanimation !== undefined) {
       // load user and balance
 
-      const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
+      const userEntity = await this.userRepository.findByPubkeyHex(context.pubKey)
 
-      const userSettingRepository = getCustomRepository(UserSettingRepository)
-      userSettingRepository
+      // const userSettingRepository = getCustomRepository(UserSettingRepository)
+      this.userSettingRepository
         .setOrUpdate(userEntity.id, Setting.COIN_ANIMATION, coinanimation.toString())
         .catch((error) => {
           throw new Error(error)

From f2d8d400ac39c48c8534b6a1d5d4702f83920b87 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Mon, 8 Nov 2021 14:26:32 +0100
Subject: [PATCH 03/23] Add libsodium.

---
 backend/package-lock.json | 19 ++++++++++++++++---
 backend/package.json      |  1 +
 backend/yarn.lock         | 12 ++++++++++++
 3 files changed, 29 insertions(+), 3 deletions(-)

diff --git a/backend/package-lock.json b/backend/package-lock.json
index bb0d16316..f18213264 100644
--- a/backend/package-lock.json
+++ b/backend/package-lock.json
@@ -4903,6 +4903,19 @@
       "resolved": "https://registry.npmjs.org/libphonenumber-js/-/libphonenumber-js-1.9.34.tgz",
       "integrity": "sha512-gHTNU9xTtVgSp30IDX/57W4pETMXDIYXFfwEOJVXiYosiY7Hc7ogJwlBjOqlCcU04X0aA8DT57hdwUC1sJBJnA=="
     },
+    "libsodium": {
+      "version": "0.7.9",
+      "resolved": "https://registry.npmjs.org/libsodium/-/libsodium-0.7.9.tgz",
+      "integrity": "sha512-gfeADtR4D/CM0oRUviKBViMGXZDgnFdMKMzHsvBdqLBHd9ySi6EtYnmuhHVDDYgYpAO8eU8hEY+F8vIUAPh08A=="
+    },
+    "libsodium-wrappers": {
+      "version": "0.7.9",
+      "resolved": "https://registry.npmjs.org/libsodium-wrappers/-/libsodium-wrappers-0.7.9.tgz",
+      "integrity": "sha512-9HaAeBGk1nKTRFRHkt7nzxqCvnkWTjn1pdjKgcUnZxj0FyOP4CnhgFhMdrFfgNsukijBGyBLpP2m2uKT1vuWhQ==",
+      "requires": {
+        "libsodium": "^0.7.0"
+      }
+    },
     "load-json-file": {
       "version": "4.0.0",
       "resolved": "https://registry.npmjs.org/load-json-file/-/load-json-file-4.0.0.tgz",
@@ -6934,9 +6947,9 @@
       }
     },
     "validator": {
-      "version": "13.6.0",
-      "resolved": "https://registry.npmjs.org/validator/-/validator-13.6.0.tgz",
-      "integrity": "sha512-gVgKbdbHgtxpRyR8K0O6oFZPhhB5tT1jeEHZR0Znr9Svg03U0+r9DXWMrnRAB+HtCStDQKlaIZm42tVsVjqtjg=="
+      "version": "13.7.0",
+      "resolved": "https://registry.npmjs.org/validator/-/validator-13.7.0.tgz",
+      "integrity": "sha512-nYXQLCBkpJ8X6ltALua9dRrZDHVYxjJ1wgskNt1lH9fzGjs3tgojGSCBjmEPwkWS1y29+DrizMTW19Pr9uB2nw=="
     },
     "vary": {
       "version": "1.1.2",
diff --git a/backend/package.json b/backend/package.json
index e47939b41..c0d244ecd 100644
--- a/backend/package.json
+++ b/backend/package.json
@@ -27,6 +27,7 @@
     "graphql": "^15.5.1",
     "jest": "^27.2.4",
     "jsonwebtoken": "^8.5.1",
+    "libsodium-wrappers": "^0.7.9",
     "module-alias": "^2.2.2",
     "mysql2": "^2.3.0",
     "nodemailer": "^6.6.5",
diff --git a/backend/yarn.lock b/backend/yarn.lock
index 915766619..3cb8e9b43 100644
--- a/backend/yarn.lock
+++ b/backend/yarn.lock
@@ -3918,6 +3918,18 @@ libphonenumber-js@^1.9.7:
   resolved "https://registry.yarnpkg.com/libphonenumber-js/-/libphonenumber-js-1.9.37.tgz#944f59a3618a8f85d9b619767a0b6fb87523f285"
   integrity sha512-RnUR4XwiVhMLnT7uFSdnmLeprspquuDtaShAgKTA+g/ms9/S4hQU3/QpFdh3iXPHtxD52QscXLm2W2+QBmvYAg==
 
+libsodium-wrappers@^0.7.9:
+  version "0.7.9"
+  resolved "https://registry.yarnpkg.com/libsodium-wrappers/-/libsodium-wrappers-0.7.9.tgz#4ffc2b69b8f7c7c7c5594a93a4803f80f6d0f346"
+  integrity sha512-9HaAeBGk1nKTRFRHkt7nzxqCvnkWTjn1pdjKgcUnZxj0FyOP4CnhgFhMdrFfgNsukijBGyBLpP2m2uKT1vuWhQ==
+  dependencies:
+    libsodium "^0.7.0"
+
+libsodium@^0.7.0:
+  version "0.7.9"
+  resolved "https://registry.yarnpkg.com/libsodium/-/libsodium-0.7.9.tgz#4bb7bcbf662ddd920d8795c227ae25bbbfa3821b"
+  integrity sha512-gfeADtR4D/CM0oRUviKBViMGXZDgnFdMKMzHsvBdqLBHd9ySi6EtYnmuhHVDDYgYpAO8eU8hEY+F8vIUAPh08A==
+
 load-json-file@^4.0.0:
   version "4.0.0"
   resolved "https://registry.yarnpkg.com/load-json-file/-/load-json-file-4.0.0.tgz#2f5f45ab91e33216234fd53adab668eb4ec0993b"

From 5400967142619d975ff74efb0aa802b1f7e6ce1f Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Mon, 8 Nov 2021 14:27:07 +0100
Subject: [PATCH 04/23] Get LoginUser from the DB, checkPassword.

---
 backend/src/graphql/resolver/UserResolver.ts | 14 +++++---------
 1 file changed, 5 insertions(+), 9 deletions(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index be1e06305..4768b4659 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -196,9 +196,6 @@ const SecretKeyCryptographyEncrypt = (message: Buffer, encryptionKey: Buffer): B
 
 @Resolver()
 export class UserResolver {
-  
-  private userSettingRepository = getCustomRepository(UserSettingRepository)
-
   @Query(() => User)
   @UseMiddleware(klicktippNewsletterStateMiddleware)
   async login(
@@ -208,19 +205,18 @@ export class UserResolver {
     email = email.trim().toLowerCase()
     // const result = await apiPost(CONFIG.LOGIN_API_URL + 'unsecureLogin', { email, password })
     // UnsecureLogin
-    const userCount = await LoginUser.count({ email })
-    if (userCount === 0) {
+    const loginUserRepository = getCustomRepository(LoginUserRepository)
+    const loginUser = await loginUserRepository.findByEmail(email)
+    if (!loginUser) {
       throw new Error('No user with this credentials')
     }
     if (!isPassword(password)) {
       throw new Error('No user with this credentials')
     }
 
-    const loginUserRepository = getCustomRepository(LoginUserRepository)
-    const loginUser = await loginUserRepository.findByEmail(email)
     const passwordHash = SecretKeyCryptographyCreateKey(email, password) // return short and long hash
-    // loginUser.password = passwordHash[0].readBigUInt64LE()
-    if (loginUser.password !== passwordHash[0].readBigUInt64LE()) {
+    const loginUserPassword = BigInt(loginUser.password.toString())
+    if (loginUserPassword !== passwordHash[0].readBigUInt64LE()) {
       throw new Error('No user with this credentials')
     }
 

From 8a61f73c56ecf122f74978dc87545841c94f307e Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 06:01:25 +0100
Subject: [PATCH 05/23] Added the load or store of the state_users.

---
 backend/src/graphql/resolver/UserResolver.ts | 42 +++++++++++---------
 1 file changed, 24 insertions(+), 18 deletions(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index 4768b4659..50f2cfe48 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -224,6 +224,29 @@ export class UserResolver {
       key: 'token',
       value: encode(loginUser.pubKey),
     })
+
+    const userRepository = getCustomRepository(UserRepository)
+    let userEntity: void | DbUser
+    userEntity = await userRepository
+      .findByPubkeyHex(loginUser.pubKey.toString('utf8'))
+      .catch(() => {
+        // User not stored in state_users
+        userEntity = new DbUser()
+        userEntity.firstName = loginUser.firstName
+        userEntity.lastName = loginUser.lastName
+        userEntity.username = loginUser.username
+        userEntity.email = loginUser.email
+        userEntity.pubkey = Buffer.from(loginUser.pubKey.toString('utf8'), 'hex')
+
+        userRepository.save(userEntity).catch(() => {
+          throw new Error('error by save userEntity')
+        })
+      })
+    if (!userEntity) {
+      throw new Error('error with cannot happen')
+    }
+    // TODO: Check and/or store hasElopage
+    // TODO: If user has no pubKey Create it again and update user.
     throw new Error('WIP')
     // const user = new User(result.data.user)
     // Hack: Database Field is not validated properly and not nullable
@@ -232,25 +255,8 @@ export class UserResolver {
     // }
     // user.hasElopage = result.data.hasElopage
     // // read additional settings from settings table
-    // const userRepository = getCustomRepository(UserRepository)
-    // let userEntity: void | DbUser
-    // userEntity = await userRepository.findByPubkeyHex(user.pubkey).catch(() => {
-    //   userEntity = new DbUser()
-    //   userEntity.firstName = user.firstName
-    //   userEntity.lastName = user.lastName
-    //   userEntity.username = user.username
-    //   userEntity.email = user.email
-    //   userEntity.pubkey = Buffer.from(user.pubkey, 'hex')
 
-    //   userRepository.save(userEntity).catch(() => {
-    //     throw new Error('error by save userEntity')
-    //   })
-    // })
-    // if (!userEntity) {
-    //   throw new Error('error with cannot happen')
-    // }
-
-    // // Save publisherId if Elopage is not yet registered
+    // Save publisherId if Elopage is not yet registered
     // if (!user.hasElopage && publisherId) {
     //   user.publisherId = publisherId
     //   await this.updateUserInfos(

From e8b9765a34c588c909eb4581e4f96c35dec61cf4 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 06:13:29 +0100
Subject: [PATCH 06/23] Withdrew the check on the sessionId when is authorized
 is called.

---
 backend/src/graphql/directive/isAuthorized.ts | 14 +++++++-------
 1 file changed, 7 insertions(+), 7 deletions(-)

diff --git a/backend/src/graphql/directive/isAuthorized.ts b/backend/src/graphql/directive/isAuthorized.ts
index c553539bc..23971162d 100644
--- a/backend/src/graphql/directive/isAuthorized.ts
+++ b/backend/src/graphql/directive/isAuthorized.ts
@@ -14,13 +14,13 @@ const isAuthorized: AuthChecker<any> = async (
   if (context.token) {
     const decoded = decode(context.token)
     // if (decoded.sessionId && decoded.sessionId !== 0) {
-      // const result = await apiGet(
-      //   `${CONFIG.LOGIN_API_URL}checkSessionState?session_id=${decoded.sessionId}`,
-      // )
-      // context.sessionId = decoded.sessionId
-      context.pubKey = decoded.pubKey
-      context.setHeaders.push({ key: 'token', value: encode(decoded.pubKey) })
-      return true
+    // const result = await apiGet(
+    //   `${CONFIG.LOGIN_API_URL}checkSessionState?session_id=${decoded.sessionId}`,
+    // )
+    // context.sessionId = decoded.sessionId
+    context.pubKey = decoded.pubKey
+    context.setHeaders.push({ key: 'token', value: encode(decoded.pubKey) })
+    return true
     // }
   }
   throw new Error('401 Unauthorized')

From 8730bc898c86f0300f3a589783e9b1f3b728e864 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 06:14:02 +0100
Subject: [PATCH 07/23] We don't use the login_server to fill this model
 anymore.

---
 backend/src/graphql/model/User.ts | 20 +++++++++++---------
 1 file changed, 11 insertions(+), 9 deletions(-)

diff --git a/backend/src/graphql/model/User.ts b/backend/src/graphql/model/User.ts
index 08651ae17..5b7682e01 100644
--- a/backend/src/graphql/model/User.ts
+++ b/backend/src/graphql/model/User.ts
@@ -10,15 +10,17 @@ export class User {
   @PrimaryGeneratedColumn()
   id: number
   */
-  constructor(json: any) {
-    this.email = json.email
-    this.firstName = json.first_name
-    this.lastName = json.last_name
-    this.username = json.username
-    this.description = json.description
-    this.pubkey = json.public_hex
-    this.language = json.language
-    this.publisherId = json.publisher_id
+  constructor(json?: any) {
+    if (json) {
+      this.email = json.email
+      this.firstName = json.first_name
+      this.lastName = json.last_name
+      this.username = json.username
+      this.description = json.description
+      this.pubkey = json.public_hex
+      this.language = json.language
+      this.publisherId = json.publisher_id
+    }
   }
 
   @Field(() => String)

From 4af3c6ed8c1e422991ad73d7e24b6abc18b46b78 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 06:14:38 +0100
Subject: [PATCH 08/23] Filling the returned model so that we get the same
 result as before.

---
 backend/src/graphql/resolver/UserResolver.ts | 19 +++++++++++++++++--
 1 file changed, 17 insertions(+), 2 deletions(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index 50f2cfe48..b37c568a4 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -219,6 +219,7 @@ export class UserResolver {
     if (loginUserPassword !== passwordHash[0].readBigUInt64LE()) {
       throw new Error('No user with this credentials')
     }
+    // TODO: If user has no pubKey Create it again and update user.
 
     context.setHeaders.push({
       key: 'token',
@@ -245,8 +246,22 @@ export class UserResolver {
     if (!userEntity) {
       throw new Error('error with cannot happen')
     }
-    // TODO: Check and/or store hasElopage
-    // TODO: If user has no pubKey Create it again and update user.
+
+    const user = new User()
+    user.email = email
+    user.firstName = loginUser.firstName
+    user.lastName = loginUser.lastName
+    user.username = loginUser.username
+    user.description = loginUser.description
+    user.pubkey = loginUser.pubKey.toString('utf8')
+    user.language = loginUser.language
+    // TODO: hasElopage
+    // auto elopage_buy = Poco::AutoPtr<model::table::ElopageBuy>(new model::table::ElopageBuy);
+    // mHasElopage = elopage_buy->isExistInDB("payer_email", mEmail);
+    // else undefined
+
+    // TODO: coinAnimation
+    return user
     throw new Error('WIP')
     // const user = new User(result.data.user)
     // Hack: Database Field is not validated properly and not nullable

From 75d7ff3905f38b39777ce1934cc8f029255032a1 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 06:15:58 +0100
Subject: [PATCH 09/23] Withdrew the comments.

---
 backend/src/graphql/directive/isAuthorized.ts | 9 ---------
 1 file changed, 9 deletions(-)

diff --git a/backend/src/graphql/directive/isAuthorized.ts b/backend/src/graphql/directive/isAuthorized.ts
index 23971162d..079e8e88c 100644
--- a/backend/src/graphql/directive/isAuthorized.ts
+++ b/backend/src/graphql/directive/isAuthorized.ts
@@ -2,9 +2,6 @@
 
 import { AuthChecker } from 'type-graphql'
 
-import CONFIG from '../../config'
-import { apiGet } from '../../apis/HttpRequest'
-
 import decode from '../../jwt/decode'
 import encode from '../../jwt/encode'
 
@@ -13,15 +10,9 @@ const isAuthorized: AuthChecker<any> = async (
 ) => {
   if (context.token) {
     const decoded = decode(context.token)
-    // if (decoded.sessionId && decoded.sessionId !== 0) {
-    // const result = await apiGet(
-    //   `${CONFIG.LOGIN_API_URL}checkSessionState?session_id=${decoded.sessionId}`,
-    // )
-    // context.sessionId = decoded.sessionId
     context.pubKey = decoded.pubKey
     context.setHeaders.push({ key: 'token', value: encode(decoded.pubKey) })
     return true
-    // }
   }
   throw new Error('401 Unauthorized')
 }

From 30ef78dddea4214c5d65fc11dca19b5ce7d7e4d8 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 10:25:41 +0100
Subject: [PATCH 10/23] Withdrew sessionId from the jwt token.

---
 backend/src/jwt/decode.ts | 5 -----
 1 file changed, 5 deletions(-)

diff --git a/backend/src/jwt/decode.ts b/backend/src/jwt/decode.ts
index 34b3ed836..6f09276b0 100644
--- a/backend/src/jwt/decode.ts
+++ b/backend/src/jwt/decode.ts
@@ -2,27 +2,22 @@ import jwt, { JwtPayload } from 'jsonwebtoken'
 import CONFIG from '../config/'
 
 interface CustomJwtPayload extends JwtPayload {
-  sessionId: number
   pubKey: Buffer
 }
 
 type DecodedJwt = {
   token: string
-  sessionId: number
   pubKey: Buffer
 }
 
 export default (token: string): DecodedJwt => {
   if (!token) throw new Error('401 Unauthorized')
-  let sessionId = null
   let pubKey = null
   try {
     const decoded = <CustomJwtPayload>jwt.verify(token, CONFIG.JWT_SECRET)
-    sessionId = decoded.sessionId
     pubKey = decoded.pubKey
     return {
       token,
-      sessionId,
       pubKey,
     }
   } catch (err) {

From 74cc9522c21e53eb57f2a18347d01247eaedb637 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 10:27:05 +0100
Subject: [PATCH 11/23] Added method to find User with their email & find User
 with a PubKey Buffer.

---
 backend/src/typeorm/repository/User.ts | 9 +++++++++
 1 file changed, 9 insertions(+)

diff --git a/backend/src/typeorm/repository/User.ts b/backend/src/typeorm/repository/User.ts
index 441c1b2c8..e127c179c 100644
--- a/backend/src/typeorm/repository/User.ts
+++ b/backend/src/typeorm/repository/User.ts
@@ -9,6 +9,15 @@ export class UserRepository extends Repository<User> {
       .getOneOrFail()
   }
 
+  async findByPubkeyHexBuffer(pubkeyHexBuffer: Buffer): Promise<User> {
+    const pubKeyString = pubkeyHexBuffer.toString('hex')
+    return await this.findByPubkeyHex(pubKeyString)
+  }
+
+  async findByEmail(email: string): Promise<User> {
+    return this.createQueryBuilder('user').where('user.email = :email', { email }).getOneOrFail()
+  }
+
   async getUsersIndiced(userIds: number[]): Promise<User[]> {
     if (!userIds.length) return []
     const users = await this.createQueryBuilder('user')

From a16b7ad47a7ff176760b808a4b3c297f148c486f Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 10:28:31 +0100
Subject: [PATCH 12/23] Changed the decode of context.pubKey so that it is
 stored in a buffer and transformed after in a Hex string.

---
 backend/src/graphql/resolver/BalanceResolver.ts     | 3 ++-
 backend/src/graphql/resolver/GdtResolver.ts         | 3 ++-
 backend/src/graphql/resolver/TransactionResolver.ts | 6 ++++--
 3 files changed, 8 insertions(+), 4 deletions(-)

diff --git a/backend/src/graphql/resolver/BalanceResolver.ts b/backend/src/graphql/resolver/BalanceResolver.ts
index e067b4d68..902e50b8b 100644
--- a/backend/src/graphql/resolver/BalanceResolver.ts
+++ b/backend/src/graphql/resolver/BalanceResolver.ts
@@ -18,7 +18,8 @@ export class BalanceResolver {
     const balanceRepository = getCustomRepository(BalanceRepository)
     const userRepository = getCustomRepository(UserRepository)
 
-    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
+    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
+    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
     const balanceEntity = await balanceRepository.findByUser(userEntity.id)
     const now = new Date()
 
diff --git a/backend/src/graphql/resolver/GdtResolver.ts b/backend/src/graphql/resolver/GdtResolver.ts
index b4f9a512b..ba10d45bf 100644
--- a/backend/src/graphql/resolver/GdtResolver.ts
+++ b/backend/src/graphql/resolver/GdtResolver.ts
@@ -22,7 +22,8 @@ export class GdtResolver {
   ): Promise<GdtEntryList> {
     // load user
     const userRepository = getCustomRepository(UserRepository)
-    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
+    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
+    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
 
     const resultGDT = await apiGet(
       `${CONFIG.GDT_API_URL}/GdtEntries/listPerEmailApi/${userEntity.email}/${currentPage}/${pageSize}/${order}`,
diff --git a/backend/src/graphql/resolver/TransactionResolver.ts b/backend/src/graphql/resolver/TransactionResolver.ts
index 70dfdc505..b804c1af9 100644
--- a/backend/src/graphql/resolver/TransactionResolver.ts
+++ b/backend/src/graphql/resolver/TransactionResolver.ts
@@ -496,7 +496,8 @@ export class TransactionResolver {
   ): Promise<TransactionList> {
     // load user
     const userRepository = getCustomRepository(UserRepository)
-    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
+    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
+    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
 
     const transactions = await listTransactions(currentPage, pageSize, order, userEntity)
 
@@ -531,7 +532,8 @@ export class TransactionResolver {
     // TODO this is subject to replay attacks
     // validate sender user (logged in)
     const userRepository = getCustomRepository(UserRepository)
-    const senderUser = await userRepository.findByPubkeyHex(context.pubKey)
+    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
+    const senderUser = await userRepository.findByPubkeyHex(pubKeyString)
     if (senderUser.pubkey.length !== 32) {
       throw new Error('invalid sender public key')
     }

From 6a85017406a315c86f8d84215ed5c524c639adfc Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 10:30:35 +0100
Subject: [PATCH 13/23] PubKey decoded has to be cast to buffer and back to hex
 string, changed the coinanimation.

---
 backend/src/graphql/resolver/UserResolver.ts | 63 ++++++++++----------
 1 file changed, 30 insertions(+), 33 deletions(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index b37c568a4..a2d4ee0e8 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -228,21 +228,21 @@ export class UserResolver {
 
     const userRepository = getCustomRepository(UserRepository)
     let userEntity: void | DbUser
-    userEntity = await userRepository
-      .findByPubkeyHex(loginUser.pubKey.toString('utf8'))
-      .catch(() => {
-        // User not stored in state_users
-        userEntity = new DbUser()
-        userEntity.firstName = loginUser.firstName
-        userEntity.lastName = loginUser.lastName
-        userEntity.username = loginUser.username
-        userEntity.email = loginUser.email
-        userEntity.pubkey = Buffer.from(loginUser.pubKey.toString('utf8'), 'hex')
+    const loginUserPubKey = loginUser.pubKey
+    const loginUserPubKeyString = loginUserPubKey.toString('hex')
+    userEntity = await userRepository.findByPubkeyHex(loginUserPubKeyString).catch(() => {
+      // User not stored in state_users
+      userEntity = new DbUser()
+      userEntity.firstName = loginUser.firstName
+      userEntity.lastName = loginUser.lastName
+      userEntity.username = loginUser.username
+      userEntity.email = loginUser.email
+      userEntity.pubkey = loginUser.pubKey
 
-        userRepository.save(userEntity).catch(() => {
-          throw new Error('error by save userEntity')
-        })
+      userRepository.save(userEntity).catch(() => {
+        throw new Error('error by save userEntity')
       })
+    })
     if (!userEntity) {
       throw new Error('error with cannot happen')
     }
@@ -253,24 +253,19 @@ export class UserResolver {
     user.lastName = loginUser.lastName
     user.username = loginUser.username
     user.description = loginUser.description
-    user.pubkey = loginUser.pubKey.toString('utf8')
+    user.pubkey = loginUserPubKeyString
     user.language = loginUser.language
-    // TODO: hasElopage
+    // TODO: Get Method from PR (hasElopage)
     // auto elopage_buy = Poco::AutoPtr<model::table::ElopageBuy>(new model::table::ElopageBuy);
     // mHasElopage = elopage_buy->isExistInDB("payer_email", mEmail);
     // else undefined
+    // user.hasElopage = result.data.hasElopage
 
-    // TODO: coinAnimation
-    return user
-    throw new Error('WIP')
-    // const user = new User(result.data.user)
+    // TODO: Get Method from PR (publisherId)
     // Hack: Database Field is not validated properly and not nullable
     // if (user.publisherId === 0) {
     //   user.publisherId = undefined
     // }
-    // user.hasElopage = result.data.hasElopage
-    // // read additional settings from settings table
-
     // Save publisherId if Elopage is not yet registered
     // if (!user.hasElopage && publisherId) {
     //   user.publisherId = publisherId
@@ -280,14 +275,15 @@ export class UserResolver {
     //   )
     // }
 
-    // const userSettingRepository = getCustomRepository(UserSettingRepository)
-    // const coinanimation = await userSettingRepository
-    //   .readBoolean(userEntity.id, Setting.COIN_ANIMATION)
-    //   .catch((error) => {
-    //     throw new Error(error)
-    //   })
-    // user.coinanimation = coinanimation
-    // return user
+    // coinAnimation
+    const userSettingRepository = getCustomRepository(UserSettingRepository)
+    const coinanimation = await userSettingRepository
+      .readBoolean(userEntity.id, Setting.COIN_ANIMATION)
+      .catch((error) => {
+        throw new Error(error)
+      })
+    user.coinanimation = coinanimation
+    return user
   }
 
   @Query(() => LoginViaVerificationCode)
@@ -521,7 +517,8 @@ export class UserResolver {
       if (!result.success) throw new Error(result.data)
       response = new UpdateUserInfosResponse(result.data)
 
-      const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
+      const pubKeyString = Buffer.from(context.pubKey).toString('hex')
+      const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
       let userEntityChanged = false
       if (firstName) {
         userEntity.firstName = firstName
@@ -543,8 +540,8 @@ export class UserResolver {
     }
     if (coinanimation !== undefined) {
       // load user and balance
-
-      const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
+      const pubKeyString = Buffer.from(context.pubKey).toString('hex')
+      const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
 
       const userSettingRepository = getCustomRepository(UserSettingRepository)
       userSettingRepository

From 5d886a93607a2af03b3c0d4cea51e9daf66e210e Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Wed, 10 Nov 2021 11:28:35 +0100
Subject: [PATCH 14/23] LoginUserRepository import has droped out put it in
 again.

---
 backend/src/graphql/resolver/UserResolver.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index ec28f964e..3aa7e7fd5 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -23,6 +23,7 @@ import {
 } from '../../middleware/klicktippMiddleware'
 import { CheckEmailResponse } from '../model/CheckEmailResponse'
 import { UserSettingRepository } from '../../typeorm/repository/UserSettingRepository'
+import { LoginUserRepository } from '../../typeorm/repository/LoginUser'
 import { Setting } from '../enum/Setting'
 import { UserRepository } from '../../typeorm/repository/User'
 import { LoginUser } from '@entity/LoginUser'

From 7655a647fe30e3ce7c129cfc1533419e372285ef Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Thu, 11 Nov 2021 06:15:21 +0100
Subject: [PATCH 15/23] Implementation of the LoginElopageBuys repository.

---
 backend/src/typeorm/repository/LoginElopageBuys.ts | 5 +++++
 1 file changed, 5 insertions(+)
 create mode 100644 backend/src/typeorm/repository/LoginElopageBuys.ts

diff --git a/backend/src/typeorm/repository/LoginElopageBuys.ts b/backend/src/typeorm/repository/LoginElopageBuys.ts
new file mode 100644
index 000000000..15f2a8492
--- /dev/null
+++ b/backend/src/typeorm/repository/LoginElopageBuys.ts
@@ -0,0 +1,5 @@
+import { EntityRepository, Repository } from 'typeorm'
+import { LoginElopageBuys } from '@entity/LoginElopageBuys'
+
+@EntityRepository(LoginElopageBuys)
+export class LoginElopageBuysRepository extends Repository<LoginElopageBuys> {}

From 1baf756c08953784111e28cd29e9a72f95e9e42a Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Thu, 11 Nov 2021 06:31:00 +0100
Subject: [PATCH 16/23] HasElopage has been called, search loginUser catch
 instead of if no user, context get's the pubKey at the end of the login call
 instead of the start.

---
 backend/src/graphql/resolver/UserResolver.ts | 27 ++++++++------------
 1 file changed, 10 insertions(+), 17 deletions(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index 437d7072e..bee35d676 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -31,6 +31,7 @@ import { LoginElopageBuys } from '@entity/LoginElopageBuys'
 import { LoginUserBackup } from '@entity/LoginUserBackup'
 import { LoginEmailOptIn } from '@entity/LoginEmailOptIn'
 import { sendEMail } from '../../util/sendEMail'
+import { LoginElopageBuysRepository } from '../../typeorm/repository/LoginElopageBuys'
 
 // eslint-disable-next-line @typescript-eslint/no-var-requires
 const sodium = require('sodium-native')
@@ -195,14 +196,9 @@ export class UserResolver {
     // const result = await apiPost(CONFIG.LOGIN_API_URL + 'unsecureLogin', { email, password })
     // UnsecureLogin
     const loginUserRepository = getCustomRepository(LoginUserRepository)
-    const loginUser = await loginUserRepository.findByEmail(email)
-    if (!loginUser) {
+    const loginUser = await loginUserRepository.findByEmail(email).catch(() => {
       throw new Error('No user with this credentials')
-    }
-    if (!isPassword(password)) {
-      throw new Error('No user with this credentials')
-    }
-
+    })
     const passwordHash = SecretKeyCryptographyCreateKey(email, password) // return short and long hash
     const loginUserPassword = BigInt(loginUser.password.toString())
     if (loginUserPassword !== passwordHash[0].readBigUInt64LE()) {
@@ -210,11 +206,6 @@ export class UserResolver {
     }
     // TODO: If user has no pubKey Create it again and update user.
 
-    context.setHeaders.push({
-      key: 'token',
-      value: encode(loginUser.pubKey),
-    })
-
     const userRepository = getCustomRepository(UserRepository)
     let userEntity: void | DbUser
     const loginUserPubKey = loginUser.pubKey
@@ -244,11 +235,7 @@ export class UserResolver {
     user.description = loginUser.description
     user.pubkey = loginUserPubKeyString
     user.language = loginUser.language
-    // TODO: Get Method from PR (hasElopage)
-    // auto elopage_buy = Poco::AutoPtr<model::table::ElopageBuy>(new model::table::ElopageBuy);
-    // mHasElopage = elopage_buy->isExistInDB("payer_email", mEmail);
-    // else undefined
-    // user.hasElopage = result.data.hasElopage
+    user.hasElopage = await this.hasElopage({ pubkey: loginUser.pubKey })
 
     // TODO: Get Method from PR (publisherId)
     // Hack: Database Field is not validated properly and not nullable
@@ -272,6 +259,12 @@ export class UserResolver {
         throw new Error(error)
       })
     user.coinanimation = coinanimation
+
+    context.setHeaders.push({
+      key: 'token',
+      value: encode(loginUser.pubKey),
+    })
+
     return user
   }
 

From e976c6854d88d2b4586eb6959c5af77df308cd93 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Thu, 11 Nov 2021 06:41:56 +0100
Subject: [PATCH 17/23] Adding hasElopage and publisherId logic, hasElopage is
 called and checks if in ElopageBuys their is a user with this email, if
 hasElopage and publisherId is filled store it in the user table.

---
 backend/src/graphql/resolver/UserResolver.ts | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index bee35d676..8462df819 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -236,7 +236,10 @@ export class UserResolver {
     user.pubkey = loginUserPubKeyString
     user.language = loginUser.language
     user.hasElopage = await this.hasElopage({ pubkey: loginUser.pubKey })
-
+    if (!user.hasElopage && publisherId) {
+      user.publisherId = publisherId
+      await this.updateUserInfos({ publisherId }, { pubKey: loginUser.pubKey })
+    }
     // TODO: Get Method from PR (publisherId)
     // Hack: Database Field is not validated properly and not nullable
     // if (user.publisherId === 0) {

From e97798d73c780f6a7c16870e1f04b64f20c255e4 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Thu, 11 Nov 2021 06:42:27 +0100
Subject: [PATCH 18/23] Withdrew comments.

---
 backend/src/graphql/resolver/UserResolver.ts | 17 ++---------------
 1 file changed, 2 insertions(+), 15 deletions(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index 8462df819..ee44346e7 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -31,7 +31,6 @@ import { LoginElopageBuys } from '@entity/LoginElopageBuys'
 import { LoginUserBackup } from '@entity/LoginUserBackup'
 import { LoginEmailOptIn } from '@entity/LoginEmailOptIn'
 import { sendEMail } from '../../util/sendEMail'
-import { LoginElopageBuysRepository } from '../../typeorm/repository/LoginElopageBuys'
 
 // eslint-disable-next-line @typescript-eslint/no-var-requires
 const sodium = require('sodium-native')
@@ -235,24 +234,13 @@ export class UserResolver {
     user.description = loginUser.description
     user.pubkey = loginUserPubKeyString
     user.language = loginUser.language
+
+    // Elopage Status & Stored PublisherId
     user.hasElopage = await this.hasElopage({ pubkey: loginUser.pubKey })
     if (!user.hasElopage && publisherId) {
       user.publisherId = publisherId
       await this.updateUserInfos({ publisherId }, { pubKey: loginUser.pubKey })
     }
-    // TODO: Get Method from PR (publisherId)
-    // Hack: Database Field is not validated properly and not nullable
-    // if (user.publisherId === 0) {
-    //   user.publisherId = undefined
-    // }
-    // Save publisherId if Elopage is not yet registered
-    // if (!user.hasElopage && publisherId) {
-    //   user.publisherId = publisherId
-    //   await this.updateUserInfos(
-    //     { publisherId },
-    //     { sessionId: result.data.session_id, pubKey: result.data.user.public_hex },
-    //   )
-    // }
 
     // coinAnimation
     const userSettingRepository = getCustomRepository(UserSettingRepository)
@@ -600,7 +588,6 @@ export class UserResolver {
   @Authorized()
   @Query(() => Boolean)
   async hasElopage(@Ctx() context: any): Promise<boolean> {
-    // const result = await apiGet(CONFIG.LOGIN_API_URL + 'hasElopage?session_id=' + context.sessionId)
     const userRepository = getCustomRepository(UserRepository)
     const userEntity = await userRepository.findByPubkeyHex(context.pubKey).catch()
     if (!userEntity) {

From a73a36b971b73bcbec0ebc8528200827cffce2a8 Mon Sep 17 00:00:00 2001
From: elweyn <heine.hannes@gmail.com>
Date: Thu, 11 Nov 2021 10:09:08 +0100
Subject: [PATCH 19/23] Withdrew the JWT changes and store the Buffer again
 instead of the hex key.

---
 backend/src/graphql/resolver/UserResolver.ts | 13 ++++++++-----
 1 file changed, 8 insertions(+), 5 deletions(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index ee44346e7..e70f67552 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -27,10 +27,10 @@ import { LoginUserRepository } from '../../typeorm/repository/LoginUser'
 import { Setting } from '../enum/Setting'
 import { UserRepository } from '../../typeorm/repository/User'
 import { LoginUser } from '@entity/LoginUser'
-import { LoginElopageBuys } from '@entity/LoginElopageBuys'
 import { LoginUserBackup } from '@entity/LoginUserBackup'
 import { LoginEmailOptIn } from '@entity/LoginEmailOptIn'
 import { sendEMail } from '../../util/sendEMail'
+import { LoginElopageBuysRepository } from '../../typeorm/repository/LoginElopageBuys'
 
 // eslint-disable-next-line @typescript-eslint/no-var-requires
 const sodium = require('sodium-native')
@@ -236,10 +236,11 @@ export class UserResolver {
     user.language = loginUser.language
 
     // Elopage Status & Stored PublisherId
-    user.hasElopage = await this.hasElopage({ pubkey: loginUser.pubKey })
+    user.hasElopage = await this.hasElopage({ pubKey: loginUser.pubKey })
     if (!user.hasElopage && publisherId) {
       user.publisherId = publisherId
-      await this.updateUserInfos({ publisherId }, { pubKey: loginUser.pubKey })
+      // TODO: Merge login_call_updateUserInfos
+      // await this.updateUserInfos({ publisherId }, { pubKey: loginUser.pubKey })
     }
 
     // coinAnimation
@@ -589,12 +590,14 @@ export class UserResolver {
   @Query(() => Boolean)
   async hasElopage(@Ctx() context: any): Promise<boolean> {
     const userRepository = getCustomRepository(UserRepository)
-    const userEntity = await userRepository.findByPubkeyHex(context.pubKey).catch()
+    const pubKey = Buffer.from(context.pubKey).toString('hex')
+    const userEntity = await userRepository.findByPubkeyHex(pubKey).catch()
     if (!userEntity) {
       return false
     }
 
-    const elopageBuyCount = await LoginElopageBuys.count({ payerEmail: userEntity.email })
+    const loginElopageBuysRepository = getCustomRepository(LoginElopageBuysRepository)
+    const elopageBuyCount = await loginElopageBuysRepository.count({ payerEmail: userEntity.email })
     return elopageBuyCount > 0
   }
 }

From 8eb5c74ba84c6c9ff3a35c76660f7b1eccaa4315 Mon Sep 17 00:00:00 2001
From: Ulf Gebhardt <ulf.gebhardt@webcraft-media.de>
Date: Wed, 17 Nov 2021 12:51:58 +0100
Subject: [PATCH 20/23] encode buffer to hex when decoding the jwt, not
 everytime we use it

---
 backend/src/graphql/directive/isAuthorized.ts       | 2 +-
 backend/src/graphql/resolver/BalanceResolver.ts     | 3 +--
 backend/src/graphql/resolver/GdtResolver.ts         | 3 +--
 backend/src/graphql/resolver/TransactionResolver.ts | 6 ++----
 backend/src/graphql/resolver/UserResolver.ts        | 3 +--
 5 files changed, 6 insertions(+), 11 deletions(-)

diff --git a/backend/src/graphql/directive/isAuthorized.ts b/backend/src/graphql/directive/isAuthorized.ts
index 079e8e88c..6245ef8ba 100644
--- a/backend/src/graphql/directive/isAuthorized.ts
+++ b/backend/src/graphql/directive/isAuthorized.ts
@@ -10,7 +10,7 @@ const isAuthorized: AuthChecker<any> = async (
 ) => {
   if (context.token) {
     const decoded = decode(context.token)
-    context.pubKey = decoded.pubKey
+    context.pubKey = Buffer.from(decoded.pubKey).toString('hex')
     context.setHeaders.push({ key: 'token', value: encode(decoded.pubKey) })
     return true
   }
diff --git a/backend/src/graphql/resolver/BalanceResolver.ts b/backend/src/graphql/resolver/BalanceResolver.ts
index 902e50b8b..e067b4d68 100644
--- a/backend/src/graphql/resolver/BalanceResolver.ts
+++ b/backend/src/graphql/resolver/BalanceResolver.ts
@@ -18,8 +18,7 @@ export class BalanceResolver {
     const balanceRepository = getCustomRepository(BalanceRepository)
     const userRepository = getCustomRepository(UserRepository)
 
-    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
-    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
+    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
     const balanceEntity = await balanceRepository.findByUser(userEntity.id)
     const now = new Date()
 
diff --git a/backend/src/graphql/resolver/GdtResolver.ts b/backend/src/graphql/resolver/GdtResolver.ts
index ba10d45bf..b4f9a512b 100644
--- a/backend/src/graphql/resolver/GdtResolver.ts
+++ b/backend/src/graphql/resolver/GdtResolver.ts
@@ -22,8 +22,7 @@ export class GdtResolver {
   ): Promise<GdtEntryList> {
     // load user
     const userRepository = getCustomRepository(UserRepository)
-    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
-    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
+    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
 
     const resultGDT = await apiGet(
       `${CONFIG.GDT_API_URL}/GdtEntries/listPerEmailApi/${userEntity.email}/${currentPage}/${pageSize}/${order}`,
diff --git a/backend/src/graphql/resolver/TransactionResolver.ts b/backend/src/graphql/resolver/TransactionResolver.ts
index fbdbaf1bc..968ce9d4c 100644
--- a/backend/src/graphql/resolver/TransactionResolver.ts
+++ b/backend/src/graphql/resolver/TransactionResolver.ts
@@ -473,8 +473,7 @@ export class TransactionResolver {
   ): Promise<TransactionList> {
     // load user
     const userRepository = getCustomRepository(UserRepository)
-    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
-    const userEntity = await userRepository.findByPubkeyHex(pubKeyString)
+    const userEntity = await userRepository.findByPubkeyHex(context.pubKey)
 
     const transactions = await listTransactions(currentPage, pageSize, order, userEntity)
 
@@ -509,8 +508,7 @@ export class TransactionResolver {
     // TODO this is subject to replay attacks
     // validate sender user (logged in)
     const userRepository = getCustomRepository(UserRepository)
-    const pubKeyString = Buffer.from(context.pubKey).toString('hex')
-    const senderUser = await userRepository.findByPubkeyHex(pubKeyString)
+    const senderUser = await userRepository.findByPubkeyHex(context.pubKey)
     if (senderUser.pubkey.length !== 32) {
       throw new Error('invalid sender public key')
     }
diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index 436aee075..ad04a0e9f 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -621,8 +621,7 @@ export class UserResolver {
   @Query(() => Boolean)
   async hasElopage(@Ctx() context: any): Promise<boolean> {
     const userRepository = getCustomRepository(UserRepository)
-    const pubKey = Buffer.from(context.pubKey).toString('hex')
-    const userEntity = await userRepository.findByPubkeyHex(pubKey).catch()
+    const userEntity = await userRepository.findByPubkeyHex(context.pubKey).catch()
     if (!userEntity) {
       return false
     }

From 0fd2110fa1694039a55bbfa8c3c0642a4813fc65 Mon Sep 17 00:00:00 2001
From: Ulf Gebhardt <ulf.gebhardt@webcraft-media.de>
Date: Mon, 22 Nov 2021 16:06:48 +0100
Subject: [PATCH 21/23] removed duplicate import

---
 backend/src/graphql/resolver/UserResolver.ts | 1 -
 1 file changed, 1 deletion(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index ad04a0e9f..8683dbf56 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -30,7 +30,6 @@ import { LoginUserBackup } from '@entity/LoginUserBackup'
 import { LoginEmailOptIn } from '@entity/LoginEmailOptIn'
 import { sendEMail } from '../../util/sendEMail'
 import { LoginElopageBuysRepository } from '../../typeorm/repository/LoginElopageBuys'
-import { LoginUserRepository } from '../../typeorm/repository/LoginUser'
 
 // eslint-disable-next-line @typescript-eslint/no-var-requires
 const sodium = require('sodium-native')

From 1d9042ca4bfe6ec80b7144bca7c62e68ce5d2f26 Mon Sep 17 00:00:00 2001
From: Hannes Heine <heine.hannes@gmail.com>
Date: Mon, 22 Nov 2021 21:42:09 +0100
Subject: [PATCH 22/23] Update backend/src/graphql/resolver/UserResolver.ts

Co-authored-by: Ulf Gebhardt <ulf.gebhardt@webcraft-media.de>
---
 backend/src/graphql/resolver/UserResolver.ts | 1 +
 1 file changed, 1 insertion(+)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index 8683dbf56..3a8573680 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -220,6 +220,7 @@ export class UserResolver {
     const loginUserPubKeyString = loginUserPubKey.toString('hex')
     userEntity = await userRepository.findByPubkeyHex(loginUserPubKeyString).catch(() => {
       // User not stored in state_users
+      // TODO: Check with production data - email is unique which can cause problems
       userEntity = new DbUser()
       userEntity.firstName = loginUser.firstName
       userEntity.lastName = loginUser.lastName

From 6dab777005c76f2ae63493ff86e135e57b572c19 Mon Sep 17 00:00:00 2001
From: Ulf Gebhardt <ulf.gebhardt@webcraft-media.de>
Date: Mon, 22 Nov 2021 22:00:57 +0100
Subject: [PATCH 23/23] use correct pubKey, use hex instead of buffer

---
 backend/src/graphql/resolver/UserResolver.ts | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/backend/src/graphql/resolver/UserResolver.ts b/backend/src/graphql/resolver/UserResolver.ts
index 3a8573680..ad4566070 100644
--- a/backend/src/graphql/resolver/UserResolver.ts
+++ b/backend/src/graphql/resolver/UserResolver.ts
@@ -246,7 +246,7 @@ export class UserResolver {
     user.language = loginUser.language
 
     // Elopage Status & Stored PublisherId
-    user.hasElopage = await this.hasElopage({ pubKey: loginUser.pubKey })
+    user.hasElopage = await this.hasElopage({ pubKey: loginUserPubKeyString })
     if (!user.hasElopage && publisherId) {
       user.publisherId = publisherId
       // TODO: Check if we can use updateUserInfos