overseerr/server/entity/User.ts

import {
  Entity,
  PrimaryGeneratedColumn,
  Column,
  CreateDateColumn,
  UpdateDateColumn,
  OneToMany,
  RelationCount,
} from 'typeorm';
import { Permission, hasPermission } from '../lib/permissions';
import { MediaRequest } from './MediaRequest';
import bcrypt from 'bcrypt';
import path from 'path';
import PreparedEmail from '../lib/email';
import logger from '../logger';
import { getSettings } from '../lib/settings';
import { default as generatePassword } from 'secure-random-password';
import { UserType } from '../constants/user';

@Entity()
export class User {
  public static filterMany(users: User[]): Partial<User>[] {
    return users.map((u) => u.filter());
  }

  static readonly filteredFields: string[] = ['plexToken', 'password'];

  @PrimaryGeneratedColumn()
  public id: number;

  @Column({ unique: true })
  public email: string;

  @Column()
  public username: string;

  @Column({ nullable: true, select: false })
  public password?: string;

  @Column({ type: 'integer', default: UserType.PLEX })
  public userType: UserType;

  @Column({ nullable: true, select: false })
  public plexId?: number;

  @Column({ nullable: true, select: false })
  public plexToken?: string;

  @Column({ type: 'integer', default: 0 })
  public permissions = 0;

  @Column()
  public avatar: string;

  @RelationCount((user: User) => user.requests)
  public requestCount: number;

  @OneToMany(() => MediaRequest, (request) => request.requestedBy)
  public requests: MediaRequest[];

  @CreateDateColumn()
  public createdAt: Date;

  @UpdateDateColumn()
  public updatedAt: Date;

  constructor(init?: Partial<User>) {
    Object.assign(this, init);
  }

  public filter(): Partial<User> {
    const filtered: Partial<User> = Object.assign(
      {},
      ...(Object.keys(this) as (keyof User)[])
        .filter((k) => !User.filteredFields.includes(k))
        .map((k) => ({ [k]: this[k] }))
    );

    return filtered;
  }

  public hasPermission(permissions: Permission | Permission[]): boolean {
    return !!hasPermission(permissions, this.permissions);
  }

  public passwordMatch(password: string): Promise<boolean> {
    return new Promise((resolve, reject) => {
      if (this.password) {
        resolve(bcrypt.compare(password, this.password));
      } else {
        return reject(false);
      }
    });
  }

  public async setPassword(password: string): Promise<void> {
    const hashedPassword = await bcrypt.hash(password, 12);
    this.password = hashedPassword;
  }

  public async resetPassword(): Promise<void> {
    const password = generatePassword.randomPassword({ length: 16 });
    this.setPassword(password);

    const applicationUrl = getSettings().main.applicationUrl;
    try {
      logger.info(`Sending password email for ${this.email}`, {
        label: 'User creation',
      });
      const email = new PreparedEmail();
      await email.send({
        template: path.join(__dirname, '../templates/email/password'),
        message: {
          to: this.email,
        },
        locals: {
          password: password,
          applicationUrl,
        },
      });
    } catch (e) {
      logger.error('Failed to send out password email', {
        label: 'User creation',
        message: e.message,
      });
    }
  }
}
feat(api-user): add basic User Entity and basic routing to fetch all users 4 years ago			`import {`
			`Entity,`
			`PrimaryGeneratedColumn,`
			`Column,`
			`CreateDateColumn,`
			`UpdateDateColumn,`
Request Model (#79) * feat(api): request model Also adds request binding to search/discover results * fix(api): rename Request to MediaRequest and update nextjs tsconfig * refactor(api): move related request fetching code into MediaRequest entity 4 years ago			`OneToMany,`
feat: throw 404 when movie/tv show doesnt exist also adds site webmanifest for mobile icons and title changes for tv/movie pages 4 years ago			`RelationCount,`
feat(api-user): add basic User Entity and basic routing to fetch all users 4 years ago			`} from 'typeorm';`
Permission System (#47) * feat(api): permissions system Adds a permission system for isAuthenticated middleware. Also adds user CRUD. 4 years ago			`import { Permission, hasPermission } from '../lib/permissions';`
Request Model (#79) * feat(api): request model Also adds request binding to search/discover results * fix(api): rename Request to MediaRequest and update nextjs tsconfig * refactor(api): move related request fetching code into MediaRequest entity 4 years ago			`import { MediaRequest } from './MediaRequest';`
feat(login): add local users functionality (#591) 3 years ago			`import bcrypt from 'bcrypt';`
			`import path from 'path';`
			`import PreparedEmail from '../lib/email';`
			`import logger from '../logger';`
			`import { getSettings } from '../lib/settings';`
			`import { default as generatePassword } from 'secure-random-password';`
fix(user edit): fix user edit not being able to be saved (#651) Co-authored-by: sct <sctsnipe@gmail.com> 3 years ago			`import { UserType } from '../constants/user';`
feat(api-user): add basic User Entity and basic routing to fetch all users 4 years ago
			`@Entity()`
			`export class User {`
Settings System (#46) * feat(api): settings system Also includes /auth/me endpoint for ticket ch76 and OpenAPI 3.0 compatibility for ch77 * refactor(api): remove unused imports 4 years ago			`public static filterMany(users: User[]): Partial<User>[] {`
			`return users.map((u) => u.filter());`
			`}`

feat(login): add local users functionality (#591) 3 years ago			`static readonly filteredFields: string[] = ['plexToken', 'password'];`
Permission System (#47) * feat(api): permissions system Adds a permission system for isAuthenticated middleware. Also adds user CRUD. 4 years ago
feat(api-user): add basic User Entity and basic routing to fetch all users 4 years ago			`@PrimaryGeneratedColumn()`
			`public id: number;`

			`@Column({ unique: true })`
			`public email: string;`

Request Model (#79) * feat(api): request model Also adds request binding to search/discover results * fix(api): rename Request to MediaRequest and update nextjs tsconfig * refactor(api): move related request fetching code into MediaRequest entity 4 years ago			`@Column()`
			`public username: string;`

feat(login): add local users functionality (#591) 3 years ago			`@Column({ nullable: true, select: false })`
			`public password?: string;`

fix(user edit): fix user edit not being able to be saved (#651) Co-authored-by: sct <sctsnipe@gmail.com> 3 years ago			`@Column({ type: 'integer', default: UserType.PLEX })`
			`public userType: UserType;`
feat(login): add local users functionality (#591) 3 years ago
			`@Column({ nullable: true, select: false })`
			`public plexId?: number;`
Request Model (#79) * feat(api): request model Also adds request binding to search/discover results * fix(api): rename Request to MediaRequest and update nextjs tsconfig * refactor(api): move related request fetching code into MediaRequest entity 4 years ago
			`@Column({ nullable: true, select: false })`
Settings System (#46) * feat(api): settings system Also includes /auth/me endpoint for ticket ch76 and OpenAPI 3.0 compatibility for ch77 * refactor(api): remove unused imports 4 years ago			`public plexToken?: string;`
feat(api-user): add basic User Entity and basic routing to fetch all users 4 years ago
Permission System (#47) * feat(api): permissions system Adds a permission system for isAuthenticated middleware. Also adds user CRUD. 4 years ago			`@Column({ type: 'integer', default: 0 })`
			`public permissions = 0;`

feat: user avatars from plex (#53) 4 years ago			`@Column()`
			`public avatar: string;`

feat: throw 404 when movie/tv show doesnt exist also adds site webmanifest for mobile icons and title changes for tv/movie pages 4 years ago			`@RelationCount((user: User) => user.requests)`
			`public requestCount: number;`

Request Model (#79) * feat(api): request model Also adds request binding to search/discover results * fix(api): rename Request to MediaRequest and update nextjs tsconfig * refactor(api): move related request fetching code into MediaRequest entity 4 years ago			`@OneToMany(() => MediaRequest, (request) => request.requestedBy)`
feat: initial user list (no edit/delete yet) and job schedules 4 years ago			`public requests: MediaRequest[];`
Request Model (#79) * feat(api): request model Also adds request binding to search/discover results * fix(api): rename Request to MediaRequest and update nextjs tsconfig * refactor(api): move related request fetching code into MediaRequest entity 4 years ago
feat(api-user): add basic User Entity and basic routing to fetch all users 4 years ago			`@CreateDateColumn()`
			`public createdAt: Date;`

			`@UpdateDateColumn()`
			`public updatedAt: Date;`

			`constructor(init?: Partial<User>) {`
			`Object.assign(this, init);`
			`}`
Settings System (#46) * feat(api): settings system Also includes /auth/me endpoint for ticket ch76 and OpenAPI 3.0 compatibility for ch77 * refactor(api): remove unused imports 4 years ago
			`public filter(): Partial<User> {`
Permission System (#47) * feat(api): permissions system Adds a permission system for isAuthenticated middleware. Also adds user CRUD. 4 years ago			`const filtered: Partial<User> = Object.assign(`
			`{},`
			`...(Object.keys(this) as (keyof User)[])`
			`.filter((k) => !User.filteredFields.includes(k))`
			`.map((k) => ({ [k]: this[k] }))`
			`);`

			`return filtered;`
			`}`

			`public hasPermission(permissions: Permission \| Permission[]): boolean {`
			`return !!hasPermission(permissions, this.permissions);`
Settings System (#46) * feat(api): settings system Also includes /auth/me endpoint for ticket ch76 and OpenAPI 3.0 compatibility for ch77 * refactor(api): remove unused imports 4 years ago			`}`
feat(login): add local users functionality (#591) 3 years ago
			`public passwordMatch(password: string): Promise<boolean> {`
			`return new Promise((resolve, reject) => {`
			`if (this.password) {`
			`resolve(bcrypt.compare(password, this.password));`
			`} else {`
			`return reject(false);`
			`}`
			`});`
			`}`

			`public async setPassword(password: string): Promise<void> {`
			`const hashedPassword = await bcrypt.hash(password, 12);`
			`this.password = hashedPassword;`
			`}`

			`public async resetPassword(): Promise<void> {`
			`const password = generatePassword.randomPassword({ length: 16 });`
			`this.setPassword(password);`

			`const applicationUrl = getSettings().main.applicationUrl;`
			`try {`
			logger.info(`Sending password email for ${this.email}`, {
			`label: 'User creation',`
			`});`
			`const email = new PreparedEmail();`
			`await email.send({`
			`template: path.join(__dirname, '../templates/email/password'),`
			`message: {`
			`to: this.email,`
			`},`
			`locals: {`
			`password: password,`
			`applicationUrl,`
			`},`
			`});`
			`} catch (e) {`
			`logger.error('Failed to send out password email', {`
			`label: 'User creation',`
			`message: e.message,`
			`});`
			`}`
			`}`
feat(api-user): add basic User Entity and basic routing to fetch all users 4 years ago			`}`