diff options
Diffstat (limited to 'app/models/User.js')
| -rw-r--r-- | app/models/User.js | 182 |
1 files changed, 182 insertions, 0 deletions
diff --git a/app/models/User.js b/app/models/User.js new file mode 100644 index 0000000..0dc38f3 --- /dev/null +++ b/app/models/User.js @@ -0,0 +1,182 @@ + +/** + * Module dependencies + */ + +var mongoose = require('mongoose') + , Schema = mongoose.Schema + , crypto = require('crypto') + , authTypes = ['facebook', 'twitter']; + + +/** + * User schema + * + * statuscodes: + * 1: invited + * 2: unconfirmed + * 3: active + * 4: paying user + */ + +var UserSchema = new Schema({ + name: String, + email: { type: String, unique: true }, + username: String, + provider: String, + hashed_password: String, + salt: String, + accessToken: String, + facebook: {}, + twitter: {}, + status: { type: Number, default: 2 }, + randomToken: String, + created: { type: Date, default: Date.now }, + updated: { type: Date, default: Date.now } +}); + + +/** + * Virtuals + */ + +UserSchema + .virtual('password') + .set(function(password) { + this._password = password + this.salt = this.makeSalt() + this.hashed_password = this.encryptPassword(password) + }).get(function() { return this._password }); + + +/** + * Validations + */ + +var validatePrecenceOf = function(value) { + return value && value.length; +} + +// the four validations below only apply if you are signing up traditionally + +UserSchema.path('name').validate(function(name) { + // if you're authenticated by any of the oauth strategies (facebook, twitter), don't validate + if(authTypes.indexOf(this.provider) !== -1 || this.status === 1) return true; + return name.length; +}, 'Name cannot be blank'); + +UserSchema.path('email').validate(function(email) { + if(authTypes.indexOf(this.provider) !== -1) return true; + return email.length; +}, 'Email cannot be blank'); + +UserSchema.path('username').validate(function(username) { + if(authTypes.indexOf(this.provider) !== -1 || this.status === 1) return true; + return username.length; +}, 'Username cannot be blank'); + +UserSchema.path('hashed_password').validate(function(hashed_password) { + if(authTypes.indexOf(this.provider) !== -1) return true; + return hashed_password.length; +}, 'Password cannot be blank'); + + +/** + * Pre-save hook + */ + +UserSchema.pre('save', function(next) { + if (!this.isNew || this.status === 1) return next(); + + this.updated = Date.now(); + next(); + +}); + + +/** + * Methods + */ + +UserSchema.methods = { + + /** + * Authenticate - check if passwords are the same + * + * @param {String} plainText + * @return {Bolean} + * @api public + */ + + authenticate: function(plainText) { + return this.encryptPassword(plainText) === this.hashed_password; + }, + + + /** + * Make salt + * + * @return {String} + * @api public + */ + + makeSalt: function() { + return Math.round((new Date().valueOf() * Math.random())) + ''; + }, + + + /** + * Encrypt password + * + * @param {String} password + * @return {String} + * @api public + */ + + encryptPassword: function(password) { + if (!password) return ''; + return crypto.createHmac('sha1', this.salt).update(password).digest('hex'); + }, + + + /** + * Generate random access token for Remember Me function + * + * @param {Number} length + * @param {Boolean} noDate + * @return {String} + * @api public + */ + + generateRandomToken: function(length, noDate) { + if (typeof(length) === undefined) length = 16; // default length of token + var chars = '_-abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ1234567890' + , token = noDate ? '' : new Date().getTime() + '_'; + for (var i = 0; i < length; i++) { + var x = Math.floor(Math.random() * chars.length); + token += chars.charAt(x); + } + return token; + } +} + +UserSchema.statics = { + + /** + * Load user from their email address + * + * @param {String} email + * @param {Function} callback + * @api private + */ + + loadUser: function(email, callback) { + this.findOne({ email: email }) + .exec(callback); + } + +} + +mongoose.model('User', UserSchema); + + |