📩 feat: invite user

api/models/inviteUser.js

@@ -0,0 +1,59 @@
+const crypto = require('crypto');
+const bcrypt = require('bcryptjs');
+const InviteUser = require('./schema/inviteUserSchema');
+const logger = require('~/config/winston');
+
+/**
+ * @module inviteUser
+ * @description This module provides functions to create and get user invites
+ */
+
+module.exports = {
+  /**
+   * @type {InviteUser}
+   */
+  InviteUser,
+
+  /**
+   * @function createInvite
+   * @description This function creates a new user invite
+   * @param {string} email - The email of the user to invite
+   * @returns {Promise<Object>} A promise that resolves to the saved invite document
+   * @throws {Error} If there is an error creating the invite
+   */
+  createInvite: async (email) => {
+    try {
+      let token = crypto.randomBytes(32).toString('hex');
+      const hash = bcrypt.hashSync(token, 10);
+      const encodedToken = encodeURIComponent(token);
+      const invite = new InviteUser({ email, token: hash, createdAt: Date.now() });
+      await invite.save();
+      return encodedToken;
+    } catch (error) {
+      logger.error('[createInvite] Error creating invite', error);
+      return { message: 'Error creating invite' };
+    }
+  },
+
+  /**
+   * @function getInvite
+   * @description This function retrieves a user invite
+   * @param {string} token - The token of the invite to retrieve
+   * @returns {Promise<Object>} A promise that resolves to the retrieved invite document
+   * @throws {Error} If there is an error retrieving the invite or if the invite does not exist
+   */
+  getInvite: async (encodedToken) => {
+    try {
+      const token = decodeURIComponent(encodedToken);
+      const hash = bcrypt.hashSync(token, 10);
+      const invite = await InviteUser.findOne({ token: hash }).lean().exec();
+      if (!invite) {
+        throw new Error('Invite not found');
+      }
+      return invite;
+    } catch (error) {
+      logger.error('[getInvite] Error getting invite', error);
+      return { message: 'Error getting invite' };
+    }
+  },
+};

api/models/schema/inviteUserSchema.js

@@ -0,0 +1,21 @@
+const mongoose = require('mongoose');
+const Schema = mongoose.Schema;
+
+const inviteUserSchema = new Schema({
+  email: {
+    required: true,
+    type: String,
+  },
+  token: {
+    type: String,
+    required: true,
+  },
+  createdAt: {
+    type: Date,
+    required: true,
+    default: Date.now,
+    expires: 604800,
+  },
+});
+
+module.exports = mongoose.model('InviteUser', inviteUserSchema);

api/package.json

@@ -12,6 +12,7 @@
     "list-balances": "node ./list-balances.js",
     "user-stats": "node ./user-stats.js",
     "create-user": "node ./create-user.js",
+    "invite-user": "node ./invite-user.js",
     "ban-user": "node ./ban-user.js",
     "delete-user": "node ./delete-user.js"
   },

api/server/middleware/checkInviteUser.js

@@ -0,0 +1,27 @@
+const { getInvite } = require('~/models/inviteUser');
+
+function checkInviteUser(req, res, next) {
+  const token = req.body.token;
+
+  if (!token || token === 'undefined') {
+    console.log('No token provided');
+    next();
+    return;
+  }
+
+  getInvite(token)
+    .then((invite) => {
+      console.log('Invite:', invite);
+      if (invite) {
+        req.invite = invite;
+        next();
+      } else {
+        res.status(400).json({ message: 'Invalid invite' });
+      }
+    })
+    .catch((error) => {
+      return res.status(400).json({ message: error.message });
+    });
+}
+
+module.exports = checkInviteUser;

api/server/middleware/index.js

@@ -10,6 +10,7 @@ const requireLocalAuth = require('./requireLocalAuth');
 const canDeleteAccount = require('./canDeleteAccount');
 const requireLdapAuth = require('./requireLdapAuth');
 const abortMiddleware = require('./abortMiddleware');
+const checkInviteUser = require('./checkInviteUser');
 const requireJwtAuth = require('./requireJwtAuth');
 const validateModel = require('./validateModel');
 const moderateText = require('./moderateText');
@@ -29,6 +30,7 @@ module.exports = {
   moderateText,
   validateModel,
   requireJwtAuth,
+  checkInviteUser,
   requireLdapAuth,
   requireLocalAuth,
   canDeleteAccount,

api/server/middleware/validateRegistration.js

@@ -1,9 +1,17 @@
 const { isEnabled } = require('~/server/utils');
 
 function validateRegistration(req, res, next) {
+  console.log('Invite:', req.invite);
+  if (req.invite) {
+    console.log('Registration is allowed because of invite.');
+    return next();
+  }
+
   if (isEnabled(process.env.ALLOW_REGISTRATION)) {
+    console.log('Registration is allowed.');
     next();
   } else {
+    console.log('Registration is not allowed.');
     res.status(403).send('Registration is not allowed.');
   }
 }

api/server/routes/auth.js

@@ -11,6 +11,7 @@ const {
   checkBan,
   loginLimiter,
   requireJwtAuth,
+  checkInviteUser,
   registerLimiter,
   requireLdapAuth,
   requireLocalAuth,
@@ -33,7 +34,14 @@ router.post(
   loginController,
 );
 router.post('/refresh', refreshController);
-router.post('/register', registerLimiter, checkBan, validateRegistration, registrationController);
+router.post(
+  '/register',
+  registerLimiter,
+  checkBan,
+  checkInviteUser,
+  validateRegistration,
+  registrationController,
+);
 router.post(
   '/requestPasswordReset',
   resetPasswordLimiter,