aneurin
/
herda


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105
							import type { ClientSession } from 'mongodb'
import type { Context } from '../types'
import { ObjectId } from 'mongodb'
import crypto from 'crypto'
import type { Account, AccountCreate, AccountUpdate } from './types'

/** Model for accessing and managing accounts. */
export type AccountModel = Awaited<ReturnType<typeof createAccountModel>>

/** Create an account model. */
async function createAccountModel(ctx: Context) {
  const collection = ctx.db.collection<Account>('account')

  /**
   * Create an account.
   * The password is automatically hashed.
   */
  async function create(input: AccountCreate) {
    const passwordSalt = generateSalt()
    const password = hashPassword(input.password, passwordSalt)

    const result = await collection.insertOne({
      email: input.email,
      password,
      passwordSalt,
    })

    return await collection.findOne({ _id: result.insertedId })
  }

  /**
   * Delete an account.
   * This function also deletes any related data, including herds and tasks.
   */
  async function _delete(id: ObjectId | string, session?: ClientSession) {
    let deletedHerds = 0
    let deletedTasks = 0

    // Delete herds
    const herds = ctx.ctx().model.herd.collection.find({ _account: new ObjectId(id) }, { projection: { _id: 1 }, session })
    for await (const herd of herds) {
      const result = await ctx.ctx().model.herd.delete(herd._id)
      deletedHerds++
      deletedTasks += result.deletedCount
    }

    const account = await collection.findOneAndDelete({ _id: new ObjectId(id) }, { session })

    return { account, deletedHerds, deletedTasks }
  }

  /** Generate a salt for use in password hashing. */
  function generateSalt() {
    return crypto.randomBytes(32).toString('hex')
  }

  /** Hash a password. */
  function hashPassword(password: string, salt: string) {
    return crypto.createHmac('sha256', salt).update(password).digest('hex')
  }

  /** Initialize the account collection. */
  async function init() {
    await ctx.db.createCollection('account')

    const exists = await collection.indexExists('account_unq_email')
    if (!exists) {
      await collection.createIndex({ email: 1 }, { name: 'account_unq_email', unique: true })
    }
  }

  /**
   * Update an account.
   * If a password is given, it is automatically hashed with a new salt.
   */
  async function update(id: ObjectId | string, input: AccountUpdate) {
    const changes = <Partial<Account>>{}
    if (input.email) changes.email = input.email
    if (input.password) {
      changes.passwordSalt = crypto.randomBytes(32).toString('hex')
      changes.password = crypto.createHmac('sha256', changes.passwordSalt).update(input.password).digest('hex')
    }

    return collection.findOneAndUpdate(
      { _id: new ObjectId(id) },
      { $set: changes },
      { returnDocument: 'after' },
    )
  }

  // Initialize on startup
  await init()

  return {
    collection,
    create,
    delete: _delete,
    generateSalt,
    hashPassword,
    init,
    update,
  }
}

export default createAccountModel