mirror/fosrl.pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2025-07-22 19:55:37 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1

make all emails lowercase closes #89

Browse source
This commit is contained in:
Milo Schwartz 2025-01-21 18:36:50 -05:00
parent d1278c252b
commit 5f92b0bbc1
No known key found for this signature in database
10 changed files with 73 additions and 15 deletions
Download patch file Download diff file Expand all files Collapse all files

6
server/lib/config.ts
View file

@ -37,7 +37,8 @@ const configSchema = z.object({
base_domain: hostnameSchema base_domain: hostnameSchema
.optional() .optional()
.transform(getEnvOrYaml("APP_BASEDOMAIN")) .transform(getEnvOrYaml("APP_BASEDOMAIN"))
.pipe(hostnameSchema), .pipe(hostnameSchema)
.transform((url) => url.toLowerCase()),
log_level: z.enum(["debug", "info", "warn", "error"]), log_level: z.enum(["debug", "info", "warn", "error"]),
save_logs: z.boolean() save_logs: z.boolean()
}), }),
@ -123,7 +124,8 @@ const configSchema = z.object({
.email() .email()
.optional() .optional()
.transform(getEnvOrYaml("USERS_SERVERADMIN_EMAIL")) .transform(getEnvOrYaml("USERS_SERVERADMIN_EMAIL"))
.pipe(z.string().email()), .pipe(z.string().email())
.transform((v) => v.toLowerCase()),
password: passwordSchema password: passwordSchema
.optional() .optional()
.transform(getEnvOrYaml("USERS_SERVERADMIN_PASSWORD")) .transform(getEnvOrYaml("USERS_SERVERADMIN_PASSWORD"))

5
server/routers/auth/login.ts
View file

@ -20,7 +20,10 @@ import { verifySession } from "@server/auth/sessions/verifySession";
export const loginBodySchema = z export const loginBodySchema = z
.object({ .object({
email: z.string().email(), email: z
.string()
.email()
.transform((v) => v.toLowerCase()),
password: z.string(), password: z.string(),
code: z.string().optional() code: z.string().optional()
}) })

10
server/routers/auth/requestPasswordReset.ts
View file

@ -20,7 +20,10 @@ import { hashPassword } from "@server/auth/password";
export const requestPasswordResetBody = z export const requestPasswordResetBody = z
.object({ .object({
email: z.string().email() email: z
.string()
.email()
.transform((v) => v.toLowerCase())
}) })
.strict(); .strict();
@ -63,10 +66,7 @@ export async function requestPasswordReset(
); );
} }
const token = generateRandomString( const token = generateRandomString(8, alphabet("0-9", "A-Z", "a-z"));
8,
alphabet("0-9", "A-Z", "a-z")
);
await db.transaction(async (trx) => { await db.transaction(async (trx) => {
await trx await trx
.delete(passwordResetTokens) .delete(passwordResetTokens)

5
server/routers/auth/resetPassword.ts
View file

@ -19,7 +19,10 @@ import { passwordSchema } from "@server/auth/passwordSchema";
export const resetPasswordBody = z export const resetPasswordBody = z
.object({ .object({
email: z.string().email(), email: z
.string()
.email()
.transform((v) => v.toLowerCase()),
token: z.string(), // reset secret code token: z.string(), // reset secret code
newPassword: passwordSchema, newPassword: passwordSchema,
code: z.string().optional() // 2fa code code: z.string().optional() // 2fa code

2
server/routers/auth/signup.ts
View file

@ -23,7 +23,7 @@ import { checkValidInvite } from "@server/auth/checkValidInvite";
import { passwordSchema } from "@server/auth/passwordSchema"; import { passwordSchema } from "@server/auth/passwordSchema";
export const signupBodySchema = z.object({ export const signupBodySchema = z.object({
email: z.string().email(), email: z.string().email().transform((v) => v.toLowerCase()),
password: passwordSchema, password: passwordSchema,
inviteToken: z.string().optional(), inviteToken: z.string().optional(),
inviteId: z.string().optional() inviteId: z.string().optional()

5
server/routers/resource/authWithWhitelist.ts
View file

@ -24,7 +24,10 @@ import logger from "@server/logger";
const authWithWhitelistBodySchema = z const authWithWhitelistBodySchema = z
.object({ .object({
email: z.string().email(), email: z
.string()
.email()
.transform((v) => v.toLowerCase()),
otp: z.string().optional() otp: z.string().optional()
}) })
.strict(); .strict();

5
server/routers/resource/setResourceWhitelist.ts
View file

@ -11,7 +11,10 @@ import { and, eq } from "drizzle-orm";
const setResourceWhitelistBodySchema = z const setResourceWhitelistBodySchema = z
.object({ .object({
emails: z.array(z.string().email()).max(50) emails: z
.array(z.string().email())
.max(50)
.transform((v) => v.map((e) => e.toLowerCase()))
}) })
.strict(); .strict();

5
server/routers/user/inviteUser.ts
View file

@ -23,7 +23,10 @@ const inviteUserParamsSchema = z
const inviteUserBodySchema = z const inviteUserBodySchema = z
.object({ .object({
email: z.string().email(), email: z
.string()
.email()
.transform((v) => v.toLowerCase()),
roleId: z.number(), roleId: z.number(),
validHours: z.number().gt(0).lte(168), validHours: z.number().gt(0).lte(168),
sendEmail: z.boolean().optional() sendEmail: z.boolean().optional()

5
server/setup/migrations.ts
View file

@ -11,7 +11,7 @@ import m2 from "./scripts/1.0.0-beta2";
import m3 from "./scripts/1.0.0-beta3"; import m3 from "./scripts/1.0.0-beta3";
import m4 from "./scripts/1.0.0-beta5"; import m4 from "./scripts/1.0.0-beta5";
import m5 from "./scripts/1.0.0-beta6"; import m5 from "./scripts/1.0.0-beta6";
import { existsSync, mkdirSync } from "fs"; import m6 from "./scripts/1.0.0-beta9";
// THIS CANNOT IMPORT ANYTHING FROM THE SERVER // THIS CANNOT IMPORT ANYTHING FROM THE SERVER
// EXCEPT FOR THE DATABASE AND THE SCHEMA // EXCEPT FOR THE DATABASE AND THE SCHEMA
@ -22,7 +22,8 @@ const migrations = [
{ version: "1.0.0-beta.2", run: m2 }, { version: "1.0.0-beta.2", run: m2 },
{ version: "1.0.0-beta.3", run: m3 }, { version: "1.0.0-beta.3", run: m3 },
{ version: "1.0.0-beta.5", run: m4 }, { version: "1.0.0-beta.5", run: m4 },
{ version: "1.0.0-beta.6", run: m5 } { version: "1.0.0-beta.6", run: m5 },
{ version: "1.0.0-beta.9", run: m6 }
// Add new migrations here as they are created // Add new migrations here as they are created
] as const; ] as const;

40
server/setup/scripts/1.0.0-beta9.ts Normal file
View file

@ -0,0 +1,40 @@
import db from "@server/db";
import {
emailVerificationCodes,
passwordResetTokens,
resourceOtp,
resourceWhitelist,
userInvites,
users
} from "@server/db/schema";
import { sql } from "drizzle-orm";
export default async function migration() {
console.log("Running setup script 1.0.0-beta.9...");
try {
await db.transaction(async (trx) => {
await db.transaction(async (trx) => {
trx.run(sql`UPDATE ${users} SET email = LOWER(email);`);
trx.run(
sql`UPDATE ${emailVerificationCodes} SET email = LOWER(email);`
);
trx.run(
sql`UPDATE ${passwordResetTokens} SET email = LOWER(email);`
);
trx.run(sql`UPDATE ${userInvites} SET email = LOWER(email);`);
trx.run(
sql`UPDATE ${resourceWhitelist} SET email = LOWER(email);`
);
trx.run(sql`UPDATE ${resourceOtp} SET email = LOWER(email);`);
});
});
} catch (error) {
console.log(
"We were unable to make all emails lower case in the database."
);
console.error(error);
}
console.log("Done.");
}