0ct0pu5/DweebUI
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
DweebUI/controllers/register.js
lllllllillllllillll 00c31f0fb6 Almost a complete rewrite, part 2.
2024-08-10 00:57:22 -07:00

86 lines
3 KiB
JavaScript
Raw Blame History

import bcrypt from "bcrypt";
import { Op } from "sequelize";
import { User, ServerSettings, Permission } from "../database/config.js";
export const Register = async function(req,res){
// Redirect to dashboard if user is already logged in.
if (req.session.username) { res.redirect("/dashboard"); }
let user_registration = await ServerSettings.findOne({ where: { key: 'user_registration' }});
let secret_input = '';
// Input field for secret if one has been set.
if (user_registration) {
secret_input = `<div class="mb-3"><label class="form-label">Secret</label>
<div class="input-group input-group-flat">
<input type="text" class="form-control" autocomplete="off" name="registration_secret">
</div>
</div>`}
// If there are no users, or registration has been enabled, display the registration page.
if ((await User.count() == 0) || (user_registration.value == true)) {
res.render("register",{
"error": "",
"reg_secret": secret_input,
});
} else {
res.render("login", {
"error": "User registration is disabled."
});
}
}
export const submitRegister = async function(req,res){
const { name, username, password, confirm, secret } = req.body;
let email = req.body.email.toLowerCase();
let registration_secret = await ServerSettings.findOne({ where: { key: 'registration_secret' }}).value;
let error = '';
if (!name || !username || !email || !password || !confirm) { error = "All fields are required"; }
else if (password !== confirm) { error = "Passwords do not match"; }
else if (registration_secret && secret !== registration_secret) { error = "Invalid secret"; }
else if (await User.findOne({ where: { [Op.or]: [{ username: username }, { email: email }] }})) { error = "Username or email already exists"; }
if (error) {
res.render("register", { "error": error });
return;
}
// Returns 'admin' if no users have been created.
async function Role() {
if (await User.count() == 0) { return "admin"; }
else { return "user"; }
}
// Create the user.
await User.create({
name: name,
username: username,
email: email,
password: bcrypt.hashSync(password, 10),
role: await Role(),
preferences: JSON.stringify({ language: "english", hidden_profile: false }),
lastLogin: new Date().toLocaleString(),
});
// Make sure the user was created and get the UUID.
let user = await User.findOne({ where: { email: email }});
let match = await bcrypt.compare(password, user.password);
if (match) {
console.log(`User ${username} created`);
req.session.username = user.username;
req.session.userID = user.userID;
req.session.role = user.role;
res.redirect("/dashboard");
} else {
res.render("register", { "error": "Error. User not created" });
}
}
Reference in a new issue View git blame Copy permalink