apitech
/
Rocket.Chat
mirror of https://github.com/RocketChat/Rocket.Chat
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
The communications platform that puts data protection first.
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
20364 Commits
705 Branches
1182 Tags
2.0 GiB
 
 
 
 
 
Tag: Branch: Tree: 558bab0380
Branches Tags
${ item.name }
Create tag ${ searchTerm }
Create branch ${ searchTerm }
from '558bab0380'
${ noResults }
Rocket.Chat/server/methods/registerUser.js

99 lines
3.2 KiB
Raw Blame History

import { Meteor } from 'meteor/meteor';
import { Match, check } from 'meteor/check';
import { Accounts } from 'meteor/accounts-base';
import s from 'underscore.string';
import { Users } from '../../app/models';
import { settings } from '../../app/settings';
import { validateEmailDomain, passwordPolicy } from '../../app/lib';
import { validateInviteToken } from '../../app/invites/server/functions/validateInviteToken';
Meteor.methods({
registerUser(formData) {
const AllowAnonymousRead = settings.get('Accounts_AllowAnonymousRead');
const AllowAnonymousWrite = settings.get('Accounts_AllowAnonymousWrite');
const manuallyApproveNewUsers = settings.get('Accounts_ManuallyApproveNewUsers');
if (AllowAnonymousRead === true && AllowAnonymousWrite === true && formData.email == null) {
const userId = Accounts.insertUserDoc({}, {
globalRoles: [
'anonymous',
],
active: true,
});
const stampedLoginToken = Accounts._generateStampedLoginToken();
Accounts._insertLoginToken(userId, stampedLoginToken);
return stampedLoginToken;
}
check(formData, Match.ObjectIncluding({
email: String,
pass: String,
name: String,
secretURL: Match.Optional(String),
reason: Match.Optional(String),
}));
if (settings.get('Accounts_RegistrationForm') === 'Disabled') {
throw new Meteor.Error('error-user-registration-disabled', 'User registration is disabled', { method: 'registerUser' });
}
if (settings.get('Accounts_RegistrationForm') === 'Secret URL' && (!formData.secretURL || formData.secretURL !== settings.get('Accounts_RegistrationForm_SecretURL'))) {
if (!formData.secretURL) {
throw new Meteor.Error('error-user-registration-secret', 'User registration is only allowed via Secret URL', { method: 'registerUser' });
}
try {
validateInviteToken(formData.secretURL);
} catch (e) {
throw new Meteor.Error('error-user-registration-secret', 'User registration is only allowed via Secret URL', { method: 'registerUser' });
}
}
passwordPolicy.validate(formData.pass);
validateEmailDomain(formData.email);
const userData = {
email: s.trim(formData.email.toLowerCase()),
password: formData.pass,
name: formData.name,
reason: formData.reason,
};
let userId;
try {
// Check if user has already been imported and never logged in. If so, set password and let it through
const importedUser = Users.findOneByEmailAddress(formData.email);
if (importedUser && importedUser.importIds && importedUser.importIds.length && !importedUser.lastLogin) {
Accounts.setPassword(importedUser._id, userData.password);
userId = importedUser._id;
} else {
userId = Accounts.createUser(userData);
}
} catch (e) {
if (e instanceof Meteor.Error) {
throw e;
}
throw new Meteor.Error(e.message);
}
Users.setName(userId, s.trim(formData.name));
const reason = s.trim(formData.reason);
if (manuallyApproveNewUsers && reason) {
Users.setReason(userId, reason);
}
try {
Accounts.sendVerificationEmail(userId, userData.email);
} catch (error) {
// throw new Meteor.Error 'error-email-send-failed', 'Error trying to send email: ' + error.message, { method: 'registerUser', message: error.message }
}
return userId;
},
});