rudeshark.net/src/server/api/endpoints/i/2fa/remove-key.ts

import $ from 'cafy';
import * as bcrypt from 'bcryptjs';
import define from '../../../define';
import { UserProfiles, UserSecurityKeys, Users } from '../../../../../models';
import { ensure } from '../../../../../prelude/ensure';
import { publishMainStream } from '../../../../../services/stream';

export const meta = {
	requireCredential: true,

	secure: true,

	params: {
		password: {
			validator: $.str
		},
		credentialId: {
			validator: $.str
		},
	}
};

export default define(meta, async (ps, user) => {
	const profile = await UserProfiles.findOne(user.id).then(ensure);

	// Compare password
	const same = await bcrypt.compare(ps.password, profile.password!);

	if (!same) {
		throw new Error('incorrect password');
	}

	// Make sure we only delete the user's own creds
	await UserSecurityKeys.delete({
		userId: user.id,
		id: ps.credentialId
	});

	// Publish meUpdated event
	publishMainStream(user.id, 'meUpdated', await Users.pack(user.id, user, {
		detail: true,
		includeSecrets: true
	}));

	return {};
});
Implement Webauthn 🎉 (#5088) * Implement Webauthn :tada: * Share hexifyAB * Move hr inside template and add AttestationChallenges janitor daemon * Apply suggestions from code review Co-Authored-By: Acid Chicken (硫酸鶏) <root@acid-chicken.com> * Add newline at the end of file * Fix stray newline in promise chain * Ignore var in try{}catch(){} block Co-Authored-By: Acid Chicken (硫酸鶏) <root@acid-chicken.com> * Add missing comma * Add missing semicolon * Support more attestation formats * add support for more key types and linter pass * Refactor * Refactor * credentialId --> id * Fix * Improve readability * Add indexes * fixes for credentialId->id * Avoid changing store state * Fix syntax error and code style * Remove unused import * Refactor of getkey API * Create 1561706992953-webauthn.ts * Update ja-JP.yml * Add type annotations * Fix code style * Specify depedency version * Fix code style * Fix janitor daemon and login requesting 2FA regardless of status 2019-07-03 13:18:07 +02:00			`import $ from 'cafy';`
			`import * as bcrypt from 'bcryptjs';`
			`import define from '../../../define';`
			`import { UserProfiles, UserSecurityKeys, Users } from '../../../../../models';`
			`import { ensure } from '../../../../../prelude/ensure';`
			`import { publishMainStream } from '../../../../../services/stream';`

			`export const meta = {`
			`requireCredential: true,`

			`secure: true,`

			`params: {`
			`password: {`
			`validator: $.str`
			`},`
			`credentialId: {`
			`validator: $.str`
			`},`
			`}`
			`};`

			`export default define(meta, async (ps, user) => {`
			`const profile = await UserProfiles.findOne(user.id).then(ensure);`

			`// Compare password`
			`const same = await bcrypt.compare(ps.password, profile.password!);`

			`if (!same) {`
			`throw new Error('incorrect password');`
			`}`

			`// Make sure we only delete the user's own creds`
			`await UserSecurityKeys.delete({`
			`userId: user.id,`
			`id: ps.credentialId`
			`});`

			`// Publish meUpdated event`
			`publishMainStream(user.id, 'meUpdated', await Users.pack(user.id, user, {`
			`detail: true,`
			`includeSecrets: true`
			`}));`

			`return {};`
			`});`