gestion code

Author: alainabbas

src/management/passwd/dto/ask-code.dto.ts …/management/passwd/dto/init-reset.dto.tssrc/management/passwd/dto/ask-code.dto.ts renamed to src/management/passwd/dto/init-reset.dto.ts src/management/passwd/dto/ask-code.dto.ts renamed to src/management/passwd/dto/init-reset.dto.ts

@@ -1,13 +1,8 @@
 import { ApiProperty } from '@nestjs/swagger';
 import { IsString } from 'class-validator';
 
-export class AskCodeDto {
+export class InitResetDto {
   @IsString()
   @ApiProperty({ example: 'paul.bismuth', description: 'User id' })
   uid: string;
-
-  @ApiProperty({ example: 'monemail@mondomaine.com', description: 'secondary mail' })
-  @IsString()
-  mail: string;
-
 }

src/management/passwd/dto/reset-by-code-dto.ts

@@ -0,0 +1,12 @@
+import { ApiProperty } from '@nestjs/swagger';
+import {IsNumber, IsString} from 'class-validator';
+
+export class ResetByCodeDto {
+  @IsString()
+  @ApiProperty({ example: '3F4AC...', description: 'Token received by initreset' })
+  token: string;
+
+  @IsNumber
+  @ApiProperty({ example: '123456', description: 'Code received by email or Sms' })
+  code: number;
+}

src/management/passwd/passwd.controller.ts

@@ -1,26 +1,30 @@
 import {Controller, Post, Body, Res, Logger, HttpStatus, Get} from '@nestjs/common';
-import { PasswdService } from './passwd.service';
-import { ApiTags, ApiOperation, ApiResponse } from '@nestjs/swagger';
-import { Response } from 'express';
-import { ChangePasswordDto } from './dto/change-password.dto';
-import { AskTokenDto } from './dto/ask-token.dto';
-import { VerifyTokenDto } from './dto/verify-token.dto';
-import { ResetPasswordDto } from './dto/reset-password.dto';
+import {PasswdService} from './passwd.service';
+import {ApiTags, ApiOperation, ApiResponse} from '@nestjs/swagger';
+import {Response} from 'express';
+import {ChangePasswordDto} from './dto/change-password.dto';
+import {AskTokenDto} from './dto/ask-token.dto';
+import {VerifyTokenDto} from './dto/verify-token.dto';
+import {ResetPasswordDto} from './dto/reset-password.dto';
 import {omit} from "radash";
 import {PasswdadmService} from "~/settings/passwdadm/passwdadm.service";
 import {PasswordPolicies} from "~/settings/passwdadm/_schemas/PasswordPolicies";
 import {InitAccountDto} from "~/management/passwd/dto/init-account.dto";
+import {InitResetDto} from "~/management/passwd/dto/init-reset.dto";
+import crypto from "crypto";
+import {ResetByCodeDto} from "~/management/passwd/dto/reset-by-code-dto";
 
 @Controller('passwd')
 @ApiTags('management/passwd')
 export class PasswdController {
   private readonly logger = new Logger(PasswdController.name);
 
-  public constructor(private passwdService: PasswdService,private passwdadmService: PasswdadmService) { }
+  public constructor(private passwdService: PasswdService, private passwdadmService: PasswdadmService) {
+  }
 
   @Post('change')
-  @ApiOperation({ summary: 'Execute un job de changement de mot de passe sur le/les backends' })
-  @ApiResponse({ status: HttpStatus.OK, description: 'Mot de passe synchronisé sur le/les backends' })
+  @ApiOperation({summary: 'Execute un job de changement de mot de passe sur le/les backends'})
+  @ApiResponse({status: HttpStatus.OK, description: 'Mot de passe synchronisé sur le/les backends'})
   public async change(@Body() body: ChangePasswordDto, @Res() res: Response): Promise<Response> {
     const debug = {}
     const [_, data] = await this.passwdService.change(body);
@@ -31,34 +35,52 @@ export class PasswdController {
     }
 
     return res.status(HttpStatus.OK).json({
-      message: 'Password changed', status:0,
+      message: 'Password changed', status: 0,
       ...debug,
     });
   }
 
   @Post('gettoken')
-  @ApiOperation({ summary: 'Récupère un jeton de réinitialisation de mot de passe' })
-  @ApiResponse({ status: HttpStatus.OK, description: 'Retourne un jeton de réinitialisation de mot de passe' })
+  @ApiOperation({summary: 'Récupère un jeton de réinitialisation de mot de passe'})
+  @ApiResponse({status: HttpStatus.OK, description: 'Retourne un jeton de réinitialisation de mot de passe'})
   public async gettoken(@Body() asktoken: AskTokenDto, @Res() res: Response): Promise<Response> {
     this.logger.log('GetToken for : ' + asktoken.uid);
-    const token = await this.passwdService.askToken(asktoken);
+    const k = crypto.randomBytes(PasswdService.RANDOM_BYTES_K).toString('hex');
+    const token = await this.passwdService.askToken(asktoken, k, PasswdService.TOKEN_EXPIRATION);
 
-    return res.status(HttpStatus.OK).json({ data: { token } });
+    return res.status(HttpStatus.OK).json({data: {token}});
   }
 
   @Post('verifytoken')
-  @ApiOperation({ summary: 'Vérifie un jeton de réinitilisation de mot de passe' })
-  @ApiResponse({ status: HttpStatus.OK })
+  @ApiOperation({summary: 'Vérifie un jeton de réinitilisation de mot de passe'})
+  @ApiResponse({status: HttpStatus.OK})
   public async verifyToken(@Body() body: VerifyTokenDto, @Res() res: Response): Promise<Response> {
     this.logger.log('Verify token : ' + body.token);
     const data = await this.passwdService.decryptToken(body.token);
 
-    return res.status(HttpStatus.OK).json({ data });
+    return res.status(HttpStatus.OK).json({data});
+  }
+
+  @Post('resetbycode')
+  @ApiOperation({summary: 'reinitialise le mot de passe avec le code reçu'})
+  @ApiResponse({status: HttpStatus.OK})
+  public async resetbycode(@Body() body: ResetByCodeDto, @Res() res: Response): Promise<Response> {
+    const debug = {}
+    this.logger.log('Reset by code : ' + body.token + " code : " + body.code);
+    const [_, data] = await this.passwdService.resetByCode(body);
+    if (process.env.NODE_ENV === 'development') {
+      debug['_debug'] = data;
+    }
+
+    return res.status(HttpStatus.OK).json({
+      message: 'Password changed',
+      ...debug,
+    });
   }
 
   @Post('reset')
-  @ApiOperation({ summary: 'Execute un job de réinitialisation de mot de passe sur le/les backends' })
-  @ApiResponse({ status: HttpStatus.OK })
+  @ApiOperation({summary: 'Execute un job de réinitialisation de mot de passe sur le/les backends'})
+  @ApiResponse({status: HttpStatus.OK})
   public async reset(@Body() body: ResetPasswordDto, @Res() res: Response): Promise<Response> {
     const debug = {}
     const [_, data] = await this.passwdService.reset(body);
@@ -72,23 +94,40 @@ export class PasswdController {
       ...debug,
     });
   }
+
   @Get('getpolicies')
-  @ApiOperation({ summary: 'Retourne la politique de mot de passe à appliquer' })
-  @ApiResponse({ status: HttpStatus.OK })
+  @ApiOperation({summary: 'Retourne la politique de mot de passe à appliquer'})
+  @ApiResponse({status: HttpStatus.OK})
   public async getPolicies(@Res() res: Response): Promise<Response> {
     const data = await this.passwdadmService.getPolicies()
     //const datax=omit(data.toObject,['_id'])
     return res.status(HttpStatus.OK).json({data})
   }
+
   @Post('init')
-  @ApiOperation({ summary: 'Initialise le compte envoi un jeton par mail à l\'identité' })
-  @ApiResponse({ status: HttpStatus.OK })
+  @ApiOperation({summary: 'Initialise le compte envoi un jeton par mail à l\'identité'})
+  @ApiResponse({status: HttpStatus.OK})
   public async init(@Body() body: InitAccountDto, @Res() res: Response): Promise<Response> {
     const debug = {}
-    const ok=await this.passwdService.initAccount(body)
+    const ok = await this.passwdService.initAccount(body)
     return res.status(HttpStatus.OK).json({
       message: 'Email envoyé verifiez votre boite mail alternative et vos spam',
       ...debug,
     });
   }
+
+  @Post('initreset')
+  @ApiOperation({summary: 'Demande l envoi de mail pour le reset'})
+  @ApiResponse({status: HttpStatus.OK})
+  public async initreset(@Body() body: InitResetDto, @Res() res: Response): Promise<Response> {
+    const debug = {}
+    const data = await this.passwdService.initReset(body)
+
+    return res.status(HttpStatus.OK).json({
+      message: 'Email envoyé verifiez votre boite mail alternative et vos spam',
+      token: data,
+      ...debug,
+    });
+  }
+
 }