architex/lib/matrix_server/account.ex

113 lines
3.1 KiB
Elixir
Raw Normal View History

defmodule MatrixServer.Account do
use Ecto.Schema
import Ecto.{Changeset, Query}
alias MatrixServer.{Repo, Account, Device}
2021-07-13 21:16:56 +00:00
alias MatrixServerWeb.API.{Register, Login}
alias Ecto.Multi
@max_mxid_length 255
@primary_key {:localpart, :string, []}
schema "accounts" do
field :password_hash, :string, redact: true
has_many :devices, Device, foreign_key: :localpart
timestamps(updated_at: false)
end
def available?(localpart) when is_binary(localpart) do
2021-07-10 21:16:00 +00:00
if Regex.match?(MatrixServer.localpart_regex(), localpart) and
String.length(localpart) <= localpart_length() do
if Repo.one!(
Account
|> where([a], a.localpart == ^localpart)
|> select([a], count(a))
) == 0 do
:ok
else
{:error, :user_in_use}
end
else
{:error, :invalid_username}
end
end
2021-07-17 15:38:20 +00:00
def register(%Register{} = input) do
2021-07-13 17:35:02 +00:00
account_params = %{
2021-07-17 15:38:20 +00:00
localpart: input.username || MatrixServer.random_string(10, ?a..?z),
password_hash: Bcrypt.hash_pwd_salt(input.password)
2021-07-13 17:35:02 +00:00
}
Multi.new()
2021-07-13 17:35:02 +00:00
|> Multi.insert(:account, changeset(%Account{}, account_params))
|> Multi.insert(:device, fn %{account: account} ->
2021-07-13 17:35:02 +00:00
device_params = %{
2021-07-17 15:38:20 +00:00
display_name: input.initial_device_display_name,
device_id: input.device_id || Device.generate_device_id(account.localpart)
2021-07-13 17:35:02 +00:00
}
2021-07-13 15:08:07 +00:00
Ecto.build_assoc(account, :devices)
2021-07-13 17:35:02 +00:00
|> Device.changeset(device_params)
end)
2021-06-27 15:28:28 +00:00
|> Multi.run(:device_with_access_token, &Device.insert_new_access_token/2)
end
2021-07-17 15:38:20 +00:00
def login(%Login{} = input) do
localpart = try_get_localpart(input.identifier.user)
2021-07-13 21:16:56 +00:00
2021-07-10 21:16:00 +00:00
fn repo ->
case repo.one(from a in Account, where: a.localpart == ^localpart) do
%Account{password_hash: hash} = account ->
2021-07-17 15:38:20 +00:00
if Bcrypt.verify_pass(input.password, hash) do
case Device.login(input, account) do
2021-07-13 21:16:56 +00:00
{:ok, device} ->
device
2021-07-10 21:16:00 +00:00
2021-07-13 21:16:56 +00:00
{:error, _cs} ->
repo.rollback(:forbidden)
2021-07-10 21:16:00 +00:00
end
else
repo.rollback(:forbidden)
end
nil ->
repo.rollback(:forbidden)
end
end
end
def by_access_token(access_token) do
Device
|> where([d], d.access_token == ^access_token)
|> join(:inner, [d], a in assoc(d, :account))
|> select([d, a], {a, d})
|> Repo.one()
end
def changeset(account, params \\ %{}) do
2021-07-17 15:38:20 +00:00
# TODO: fix password_hash in params
account
|> cast(params, [:localpart, :password_hash])
|> validate_required([:localpart, :password_hash])
|> validate_length(:password_hash, max: 60)
2021-07-10 21:16:00 +00:00
|> validate_format(:localpart, MatrixServer.localpart_regex())
|> validate_length(:localpart, max: localpart_length())
|> unique_constraint(:localpart, name: :accounts_pkey)
end
defp localpart_length do
# Subtract the "@" and ":" in the MXID.
2021-07-10 21:16:00 +00:00
@max_mxid_length - 2 - String.length(MatrixServer.server_name())
end
2021-07-13 21:16:56 +00:00
defp try_get_localpart("@" <> rest = user_id) do
case String.split(rest, ":") do
[localpart, _] -> localpart
_ -> user_id
end
end
defp try_get_localpart(localpart), do: localpart
end