verdnatura-mirror
/
loopback
mirror of https://github.com/strongloop/loopback.git
0
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity

fix bug in User.verify when confirm is disabled

This commit is contained in:
wolrajhti 2018-05-28 14:07:25 +02:00 committed by Miroslav Bajtoš
parent eb3301abf2
commit cc4fc2197f
No known key found for this signature in database
GPG Key ID: 6F2304BA9361C7E3
2 changed files with 50 additions and 16 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

45
common/models/user.js
View File

@ -736,22 +736,32 @@ module.exports = function(User) {
(verifyOptions.protocol === 'https' && verifyOptions.port == '443') (verifyOptions.protocol === 'https' && verifyOptions.port == '443')
) ? '' : ':' + verifyOptions.port; ) ? '' : ':' + verifyOptions.port;
var urlPath = joinUrlPath( if (!verifyOptions.verifyHref) {
verifyOptions.restApiRoot, const confirmMethod = userModel.sharedClass.findMethodByName('confirm');
userModel.http.path, if (!confirmMethod) {
userModel.sharedClass.findMethodByName('confirm').http.path throw new Error(
); 'Cannot build user verification URL, ' +
'the default confirm method is not public. ' +
'Please provide the URL in verifyOptions.verifyHref.');
}
verifyOptions.verifyHref = verifyOptions.verifyHref || const urlPath = joinUrlPath(
verifyOptions.protocol + verifyOptions.restApiRoot,
'://' + userModel.http.path,
verifyOptions.host + confirmMethod.http.path
displayPort + );
urlPath +
'?' + qs.stringify({ verifyOptions.verifyHref =
uid: '' + verifyOptions.user[pkName], verifyOptions.protocol +
redirect: verifyOptions.redirect, '://' +
}); verifyOptions.host +
displayPort +
urlPath +
'?' + qs.stringify({
uid: '' + verifyOptions.user[pkName],
redirect: verifyOptions.redirect,
});
}
verifyOptions.to = verifyOptions.to || user.email; verifyOptions.to = verifyOptions.to || user.email;
verifyOptions.subject = verifyOptions.subject || g.f('Thanks for Registering'); verifyOptions.subject = verifyOptions.subject || g.f('Thanks for Registering');
@ -779,7 +789,10 @@ module.exports = function(User) {
// TODO - support more verification types // TODO - support more verification types
function sendEmail(user) { function sendEmail(user) {
verifyOptions.verifyHref += '&token=' + user.verificationToken; verifyOptions.verifyHref +=
verifyOptions.verifyHref.indexOf('?') === -1 ? '?' : '&';
verifyOptions.verifyHref += 'token=' + user.verificationToken;
verifyOptions.verificationToken = user.verificationToken; verifyOptions.verificationToken = user.verificationToken;
verifyOptions.text = verifyOptions.text || g.f('Please verify your email by opening ' + verifyOptions.text = verifyOptions.text || g.f('Please verify your email by opening ' +
'this link in a web browser:\n\t%s', verifyOptions.verifyHref); 'this link in a web browser:\n\t%s', verifyOptions.verifyHref);

21
test/user.test.js
View File

@ -2155,6 +2155,27 @@ describe('User', function() {
}); });
}); });
it('handles the case when remote method "confirm" is disabled', () => {
let actualVerifyHref;
const VERIFY_HREF = 'http://example.com/a-verify-url';
Object.assign(verifyOptions, {
verifyHref: VERIFY_HREF,
templateFn: (options, cb) => {
actualVerifyHref = options.verifyHref;
cb(null, 'dummy body');
},
});
User.disableRemoteMethodByName('confirm');
return user.verify(verifyOptions)
.then(() => {
expect(actualVerifyHref.substring(0, VERIFY_HREF.length + 1))
.to.equal(`${VERIFY_HREF}?`);
});
});
function givenUser() { function givenUser() {
return User.create({email: 'test@example.com', password: 'pass'}) return User.create({email: 'test@example.com', password: 'pass'})
.then(u => user = u); .then(u => user = u);