architex/lib/matrix_server/account.ex

defmodule MatrixServer.Account do
  use Ecto.Schema

  import Ecto.{Changeset, Query}

  alias MatrixServer.{Repo, Account, Device}
  alias MatrixServerWeb.API.{Register, Login}
  alias Ecto.Multi

  @max_mxid_length 255

  @primary_key {:localpart, :string, []}
  schema "accounts" do
    field :password_hash, :string, redact: true
    has_many :devices, Device, foreign_key: :localpart
    timestamps(updated_at: false)
  end

  def available?(localpart) when is_binary(localpart) do
    if Regex.match?(MatrixServer.localpart_regex(), localpart) and
         String.length(localpart) <= localpart_length() do
      if Repo.one!(
           Account
           |> where([a], a.localpart == ^localpart)
           |> select([a], count(a))
         ) == 0 do
        :ok
      else
        {:error, :user_in_use}
      end
    else
      {:error, :invalid_username}
    end
  end

  def register(%Register{} = input) do
    account_params = %{
      localpart: input.username || MatrixServer.random_string(10, ?a..?z),
      password_hash: Bcrypt.hash_pwd_salt(input.password)
    }

    Multi.new()
    |> Multi.insert(:account, changeset(%Account{}, account_params))
    |> Multi.insert(:device, fn %{account: account} ->
      device_params = %{
        display_name: input.initial_device_display_name,
        device_id: input.device_id || Device.generate_device_id(account.localpart)
      }

      Ecto.build_assoc(account, :devices)
      |> Device.changeset(device_params)
    end)
    |> Multi.run(:device_with_access_token, &Device.insert_new_access_token/2)
  end

  def login(%Login{} = input) do
    localpart = try_get_localpart(input.identifier.user)

    fn repo ->
      case repo.one(from a in Account, where: a.localpart == ^localpart) do
        %Account{password_hash: hash} = account ->
          if Bcrypt.verify_pass(input.password, hash) do
            case Device.login(input, account) do
              {:ok, device} ->
                device

              {:error, _cs} ->
                IO.inspect(_cs)
                repo.rollback(:forbidden)
            end
          else
            repo.rollback(:forbidden)
          end

        nil ->
          repo.rollback(:forbidden)
      end
    end
  end

  def by_access_token(access_token) do
    Device
    |> where([d], d.access_token == ^access_token)
    |> join(:inner, [d], a in assoc(d, :account))
    |> select([d, a], {a, d})
    |> Repo.one()
  end

  def changeset(account, params \\ %{}) do
    # TODO: fix password_hash in params
    account
    |> cast(params, [:localpart, :password_hash])
    |> validate_required([:localpart, :password_hash])
    |> validate_length(:password_hash, max: 60)
    |> validate_format(:localpart, MatrixServer.localpart_regex())
    |> validate_length(:localpart, max: localpart_length())
    |> unique_constraint(:localpart, name: :accounts_pkey)
  end

  defp localpart_length do
    # Subtract the "@" and ":" in the MXID.
    @max_mxid_length - 2 - String.length(MatrixServer.server_name())
  end

  defp try_get_localpart("@" <> rest = user_id) do
    case String.split(rest, ":") do
      [localpart, _] -> localpart
      _ -> user_id
    end
  end

  defp try_get_localpart(localpart), do: localpart
end
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`defmodule MatrixServer.Account do`
			`use Ecto.Schema`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`import Ecto.{Changeset, Query}`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00
			`alias MatrixServer.{Repo, Account, Device}`
Add tests for login 2021-07-13 21:16:56 +00:00			`alias MatrixServerWeb.API.{Register, Login}`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`alias Ecto.Multi`
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00
			`@max_mxid_length 255`

			`@primary_key {:localpart, :string, []}`
			`schema "accounts" do`
			`field :password_hash, :string, redact: true`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`has_many :devices, Device, foreign_key: :localpart`
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`timestamps(updated_at: false)`
			`end`

			`def available?(localpart) when is_binary(localpart) do`
Add endpoint for room creation 2021-07-10 21:16:00 +00:00			`if Regex.match?(MatrixServer.localpart_regex(), localpart) and`
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`String.length(localpart) <= localpart_length() do`
			`if Repo.one!(`
			`Account`
			`\|> where([a], a.localpart == ^localpart)`
			`\|> select([a], count(a))`
			`) == 0 do`
			`:ok`
			`else`
			`{:error, :user_in_use}`
			`end`
			`else`
			`{:error, :invalid_username}`
			`end`
			`end`

Add part of room creation endpoint 2021-07-17 15:38:20 +00:00			`def register(%Register{} = input) do`
Add more register tests 2021-07-13 17:35:02 +00:00			`account_params = %{`
Add part of room creation endpoint 2021-07-17 15:38:20 +00:00			`localpart: input.username \|\| MatrixServer.random_string(10, ?a..?z),`
			`password_hash: Bcrypt.hash_pwd_salt(input.password)`
Add more register tests 2021-07-13 17:35:02 +00:00			`}`

Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`Multi.new()`
Add more register tests 2021-07-13 17:35:02 +00:00			`\|> Multi.insert(:account, changeset(%Account{}, account_params))`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`\|> Multi.insert(:device, fn %{account: account} ->`
Add more register tests 2021-07-13 17:35:02 +00:00			`device_params = %{`
Add part of room creation endpoint 2021-07-17 15:38:20 +00:00			`display_name: input.initial_device_display_name,`
			`device_id: input.device_id \|\| Device.generate_device_id(account.localpart)`
Add more register tests 2021-07-13 17:35:02 +00:00			`}`
Add start of controller testing 2021-07-13 15:08:07 +00:00
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`Ecto.build_assoc(account, :devices)`
Add more register tests 2021-07-13 17:35:02 +00:00			`\|> Device.changeset(device_params)`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`end)`
Implement login endpoint 2021-06-27 15:28:28 +00:00			`\|> Multi.run(:device_with_access_token, &Device.insert_new_access_token/2)`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`end`

Add part of room creation endpoint 2021-07-17 15:38:20 +00:00			`def login(%Login{} = input) do`
			`localpart = try_get_localpart(input.identifier.user)`
Add tests for login 2021-07-13 21:16:56 +00:00
Add endpoint for room creation 2021-07-10 21:16:00 +00:00			`fn repo ->`
			`case repo.one(from a in Account, where: a.localpart == ^localpart) do`
			`%Account{password_hash: hash} = account ->`
Add part of room creation endpoint 2021-07-17 15:38:20 +00:00			`if Bcrypt.verify_pass(input.password, hash) do`
			`case Device.login(input, account) do`
Add tests for login 2021-07-13 21:16:56 +00:00			`{:ok, device} ->`
			`device`
Add endpoint for room creation 2021-07-10 21:16:00 +00:00
Add tests for login 2021-07-13 21:16:56 +00:00			`{:error, _cs} ->`
			`IO.inspect(_cs)`
			`repo.rollback(:forbidden)`
Add endpoint for room creation 2021-07-10 21:16:00 +00:00			`end`
			`else`
			`repo.rollback(:forbidden)`
			`end`

			`nil ->`
			`repo.rollback(:forbidden)`
			`end`
			`end`
			`end`

Implement logout and logout/all endpoints 2021-06-27 20:24:54 +00:00			`def by_access_token(access_token) do`
			`Device`
			`\|> where([d], d.access_token == ^access_token)`
			`\|> join(:inner, [d], a in assoc(d, :account))`
			`\|> select([d, a], {a, d})`
Implement access token authentication Add whoami endpoint 2021-06-25 22:29:33 +00:00			`\|> Repo.one()`
			`end`

Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`def changeset(account, params \\ %{}) do`
Add part of room creation endpoint 2021-07-17 15:38:20 +00:00			`# TODO: fix password_hash in params`
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`account`
Implement register endpoint for m.login.dummy login type Add device table 2021-06-25 15:43:12 +00:00			`\|> cast(params, [:localpart, :password_hash])`
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`\|> validate_required([:localpart, :password_hash])`
			`\|> validate_length(:password_hash, max: 60)`
Add endpoint for room creation 2021-07-10 21:16:00 +00:00			`\|> validate_format(:localpart, MatrixServer.localpart_regex())`
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`\|> validate_length(:localpart, max: localpart_length())`
			`\|> unique_constraint(:localpart, name: :accounts_pkey)`
			`end`

			`defp localpart_length do`
			`# Subtract the "@" and ":" in the MXID.`
Add endpoint for room creation 2021-07-10 21:16:00 +00:00			`@max_mxid_length - 2 - String.length(MatrixServer.server_name())`
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`end`
Add tests for login 2021-07-13 21:16:56 +00:00
			`defp try_get_localpart("@" <> rest = user_id) do`
			`case String.split(rest, ":") do`
			`[localpart, _] -> localpart`
			`_ -> user_id`
			`end`
			`end`

			`defp try_get_localpart(localpart), do: localpart`
Add migration and schema for accounts Add account name availability endpoint 2021-06-22 21:04:37 +00:00			`end`