joe/kami-parse-server
Public Access
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Adds ability to login with email when provided as username (#4420)

Browse Source
This commit is contained in:
Florent Vilmart
2017-12-12 08:49:45 -05:00
committed by GitHub
parent 8fd5f31089
commit bad217911c
2 changed files with 69 additions and 2 deletions
Download Patch File Download Diff File Expand all files Collapse all files

54
spec/ParseUser.spec.js
View File

@@ -3432,6 +3432,60 @@ describe('Parse.User testing', () => {
}); });
}); });
it('allows login when providing email as username', (done) => {
const user = new Parse.User();
user.save({
username: 'yolo',
password: 'yolopass',
email: 'yo@lo.com'
}).then(() => {
return Parse.User.logIn('yo@lo.com', 'yolopass');
}).then((user) => {
expect(user.get('username')).toBe('yolo');
}).then(done).catch(done.fail);
});
it('handles properly when 2 users share username / email pairs', (done) => {
const user = new Parse.User({
username: 'yo@loname.com',
password: 'yolopass',
email: 'yo@lo.com'
});
const user2 = new Parse.User({
username: 'yo@lo.com',
email: 'yo@loname.com',
password: 'yolopass2' // different passwords
});
Parse.Object.saveAll([user, user2]).then(() => {
return Parse.User.logIn('yo@loname.com', 'yolopass');
}).then((user) => {
// the username takes precedence over the email,
// so we get the user with username as passed in
expect(user.get('username')).toBe('yo@loname.com');
}).then(done).catch(done.fail);
});
it('handles properly when 2 users share username / email pairs, counterpart', (done) => {
const user = new Parse.User({
username: 'yo@loname.com',
password: 'yolopass',
email: 'yo@lo.com'
});
const user2 = new Parse.User({
username: 'yo@lo.com',
email: 'yo@loname.com',
password: 'yolopass2' // different passwords
});
Parse.Object.saveAll([user, user2]).then(() => {
return Parse.User.logIn('yo@loname.com', 'yolopass2');
}).then(done.fail).catch((err) => {
expect(err.message).toEqual('Invalid username/password.');
done();
});
});
it('fails to login when password is not provided', (done) => { it('fails to login when password is not provided', (done) => {
const user = new Parse.User(); const user = new Parse.User();
user.save({ user.save({

17
src/Routers/UsersRouter.js
View File

@@ -84,13 +84,26 @@ export class UsersRouter extends ClassesRouter {
let user; let user;
let isValidPassword = false; let isValidPassword = false;
const query = Object.assign({}, username ? { username } : {}, email ? { email } : {}); let query;
if (email && username) {
query = { email, username };
} else if (email) {
query = { email };
} else {
query = { $or: [{ username } , { email: username }] };
}
return req.config.database.find('_User', query) return req.config.database.find('_User', query)
.then((results) => { .then((results) => {
if (!results.length) { if (!results.length) {
throw new Parse.Error(Parse.Error.OBJECT_NOT_FOUND, 'Invalid username/password.'); throw new Parse.Error(Parse.Error.OBJECT_NOT_FOUND, 'Invalid username/password.');
} }
user = results[0];
if (results.length > 1) { // corner case where user1 has username == user2 email
req.config.loggerController.warn('There is a user which email is the same as another user\'s username, logging in based on username');
user = results.filter((user) => user.username === username)[0];
} else {
user = results[0];
}
if (req.config.verifyUserEmails && req.config.preventLoginWithUnverifiedEmail && !user.emailVerified) { if (req.config.verifyUserEmails && req.config.preventLoginWithUnverifiedEmail && !user.emailVerified) {
throw new Parse.Error(Parse.Error.EMAIL_NOT_FOUND, 'User email is not verified.'); throw new Parse.Error(Parse.Error.EMAIL_NOT_FOUND, 'User email is not verified.');