Merge pull request #13 from aayush-05/addBetterAuthentication

Add User and Organization API

Author: capedcrusader23

.gitignore

@@ -1,2 +1,3 @@
 node_modules/
 package-lock.json
+.env

example.env

@@ -0,0 +1,3 @@
+DATABASE_URL="mongodb://<username>:<password>@cluster0-shard-00-00.t4hho.mongodb.net:27017,cluster0-shard-00-01.t4hho.mongodb.net:27017,cluster0-shard-00-02.t4hho.mongodb.net:27017/<dbname>?ssl=true&replicaSet=atlas-a80apd-shard-0&authSource=admin&retryWrites=true&w=majority"
+JWT_SECRET = "somesupersecretkey"
+PORT=8000

graphql/resolvers/auth.js

@@ -4,24 +4,6 @@ require("dotenv").config();
 const User = require("../../models/user");
 
 module.exports = {
-  createUser: async (args) => {
-    try {
-      const existingUser = await User.findOne({ email: args.userInput.email });
-      if (existingUser) {
-        throw Error("User is already registered");
-      }
-      const user = new User({
-        email: args.userInput.email,
-        password: args.userInput.password,
-        username: args.userInput.username,
-      });
-      const saveUser = await user.save();
-      return { ...saveUser._doc };
-    } catch (err) {
-      console.log(err);
-      throw err;
-    }
-  },
   login: async (args) => {
     try {
       const user = await User.findOne({ email: args.email });
@@ -34,9 +16,7 @@ module.exports = {
       }
       const token = jwt.sign(
         {
-          userId: user.id,
-          email: user.email,
-          username: user.username,
+          id: user.id,
         },
         `${process.env.JWT_SECRET}`,
         {
@@ -45,8 +25,8 @@ module.exports = {
         }
       );
       return {
-        userId: user.id,
-        username: user.username,
+        id: user.id,
+        name: user.name,
         token: token,
         tokenexpiration: 1,
       };

graphql/resolvers/errorMessages.js

@@ -0,0 +1,14 @@
+//user
+module.exports.authenticationError = "Authentication Required";
+module.exports.userExistError = "User is already registered";
+module.exports.noUserError = "User not registered";
+module.exports.adminAccessError = "Admin authorization required";
+module.exports.noAdminError = "User is not an Admin"
+module.exports.noModeratorError = "User is not a Moderator";
+module.exports.firstAdminDemoteError = "First Admin can't be demoted";
+module.exports.firstAdminBlockError = "First Admin can't be blocked";
+module.exports.firstAdminRemoveError = "First Admin can't be removed";
+
+//organization
+module.exports.noOrganizationError = "Organization to be created first";
+module.exports.organizationExistError = "Organization can be created only once";

graphql/resolvers/index.js

@@ -1,12 +1,10 @@
-const topicResolver = require("./topic");
-const categoryResolver = require("./category");
 const authResolver = require("./auth");
-const messageResolver = require("./message");
+const userResolver = require("./user");
+const organizationResolver = require("./organization");
 
 const rootResolver = {
-  ...messageResolver,
-  ...topicResolver,
-  ...categoryResolver,
+  ...organizationResolver,
+  ...userResolver,
   ...authResolver,
 };
 

graphql/resolvers/organization.js

@@ -0,0 +1,235 @@
+require("dotenv").config();
+const User = require("../../models/user");
+const Organization = require("../../models/organization");
+const { 
+  organizationCreatedResult, 
+  madeAdminResult, 
+  madeModeratorResult, 
+  removeAdminResult, 
+  removeModeratorResult } = require("./resultMessages");
+const { authenticationError, 
+  adminAccessError, 
+  noUserError, 
+  organizationExistError, 
+  firstAdminDemoteError, 
+  noAdminError, 
+  noModeratorError } = require("./errorMessages");
+
+module.exports = {
+  createOrganization: async (args) => {
+    try {
+      const organizations = await Organization.find({}).lean();
+      if (organizations.length === 0) {
+        const organization = new Organization({
+          name: args.organizationInput.name,
+          description: args.organizationInput.description,
+          contactInfo: args.organizationInput.contactInfo,
+        });
+        await organization.save();
+        return { result: organizationCreatedResult };
+      } else {
+        throw new Error(organizationExistError);
+      }
+    } catch (err) {
+      console.log(err);
+      throw err;
+    }
+  },
+
+  getOrganization: async () => {
+    try {
+      const organization = await Organization.findOne().lean();
+      return organization;
+    } catch (err) {
+      console.log(err);
+      throw err;
+    }
+  },
+
+  updateOrganization: async (req, args) => {
+    if (!req.isAuth) {
+      throw new Error(authenticationError);
+    }
+    try {
+      const organizations = await Organization.find({}).lean();
+      if (req.currentUser.isAdmin && organizations.length !== 0) {
+        const organization = await Organization.updateOne(
+          {},
+          {
+            $set: {
+              name: args.organizationInput.name,
+              description: args.organizationInput.description,
+              contactInfo: args.organizationInput.contactInfo,
+            },
+          }
+        );
+        return { ...organization._doc };
+      } else {
+        throw new Error(adminAccessError);
+      }
+    } catch (err) {
+      console.log(err);
+      throw err;
+    }
+  },
+
+  makeAdmin: async (req, args) => {
+    if (!req.isAuth) {
+      throw new Error(authenticationError);
+    }
+    try {
+      if (req.currentUser.isAdmin) {
+        let user;
+        if (args.userFindInput.email) {
+          user = await User.findOne({ email: args.userFindInput.email });
+        } else if (args.userFindInput._id) {
+          user = await User.findById(args.userFindInput._id);
+        }
+        if (!user) {
+          throw new Error(noUserError);
+        }
+        user.isAdmin = true;
+        await user.save();
+        const organization = await Organization.findOne({});
+        organization.adminInfo.adminIds.push(user);
+        await organization.save();
+        return { result: madeAdminResult };
+      } else {
+        throw new Error(adminAccessError);
+      }
+    } catch (err) {
+      console.log(err);
+      throw err;
+    }
+  },
+
+  makeModerator: async (req, args) => {
+    if (!req.isAuth) {
+      throw new Error(authenticationError);
+    }
+    try {
+      if (req.currentUser.isAdmin) {
+        let user;
+        if (args.userFindInput.email) {
+          user = await User.findOne({ email: args.userFindInput.email });
+        } else if (args.userFindInput._id) {
+          user = await User.findById(args.userFindInput._id);
+        }
+        if (!user) {
+          throw new Error(noUserError);
+        }
+        user.isModerator = true;
+        await user.save();
+        const organization = await Organization.findOne({});
+        organization.moderatorInfo.moderatorIds.push(user);
+        await organization.save();
+        return {
+          result: madeModeratorResult,
+        };
+      } else {
+        throw new Error(adminAccessError);
+      }
+    } catch (err) {
+      console.log(err);
+      throw err;
+    }
+  },
+
+  removeAdmin: async (req, args) => {
+    if (!req.isAuth) {
+      throw new Error(authenticationError);
+    }
+    console.log(args.userFindInput);
+    try {
+      if (req.currentUser.isAdmin) {
+        let user;
+        if (args.userFindInput.email) {
+          user = await User.findOne({ email: args.userFindInput.email });
+        } else if (args.userFindInput._id) {
+          user = await User.findById(args.userFindInput._id);
+        }
+        if (!user) {
+          throw new Error(noUserError);
+        }
+        if (user.isFirstAdmin) {
+          throw new Error(firstAdminDemoteError);
+        }
+        if(!user.isAdmin) {
+          throw new Error(noAdminError);
+        }
+        user.isAdmin = false;
+        user.isModerator = false;
+        await user.save();
+        const organization = await Organization.findOne({});
+        console.log(organization.adminInfo.adminIds);
+        organization.adminInfo.adminIds = organization.adminInfo.adminIds.filter(
+          (adminId) => adminId.toString() !== user.id
+        );
+        await organization.save();
+        return { result: removeAdminResult };
+      } else {
+        throw new Error(adminAccessError);
+      }
+    } catch (err) {
+      console.log(err);
+      throw err;
+    }
+  },
+
+  removeModerator: async (req, args) => {
+    if (!req.isAuth) {
+      throw new Error(authenticationError);
+    }
+    try {
+      if (req.currentUser.isAdmin) {
+        let user;
+        if (args.email) {
+          user = await User.findOne({ email: args.userFindInput.email });
+        } else if (args.userFindInput._id) {
+          user = await User.findById(args.userFindInput._id);
+        }
+        if (!user) {
+          throw new Error(noUserError);
+        }
+        if (!user.isModerator) {
+          throw new Error(noModeratorError);
+        }
+        user.isModerator = false;
+        await user.save();
+        const organization = await Organization.findOne({});
+        organization.moderatorInfo.moderatorIds = organization.moderatorInfo.moderatorIds.filter(
+          (moderatorId) => moderatorId.toString() !== user.id
+        );
+        await organization.save();
+        return {
+          result: removeModeratorResult,
+        };
+      } else {
+        throw new Error(adminAccessError);
+      }
+    } catch (err) {
+      console.log(err);
+      throw err;
+    }
+  },
+
+  getAdminModerators: async (req) => {
+    if (!req.isAuth) {
+      throw new Error(authenticationError);
+    }
+    try {
+      if (req.currentUser.isAdmin) {
+        const organization = await Organization.findOne({}).populate();
+        return {
+          admins: organization.adminInfo.adminIds,
+          moderators: organization.moderatorInfo.moderatorIds,
+        };
+      } else {
+        throw new Error(adminAccessError);
+      }
+    } catch (err) {
+      console.log(err);
+      throw err;
+    }
+  },
+};

graphql/resolvers/resultMessages.js

@@ -0,0 +1,14 @@
+//user
+module.exports.userBlockResult = "User blocked successfully";
+module.exports.userRemoveResult = "User removed successfully";
+
+//organization
+module.exports.organizationCreatedResult = "Organization created successfully";
+module.exports.madeAdminResult =
+  "User promoted to Admin authorization successfully";
+module.exports.madeModeratorResult =
+  "User promoted to Moderator authorization successfully";
+module.exports.removeAdminResult =
+  "Admin demoted to User authorization successfully";
+module.exports.removeModeratorResult =
+  "Moderator demoted to User authorization successfully";