Moyettes/DiscordClone
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases 1 Wiki Activity
Files
958cf56b2366bd8fae7d5e243c4c093b43e5ec1c
DiscordClone/convex/auth.js
Bryan1029384756 958cf56b23
Some checks failed
Build and Release / build-and-release (push) Failing after 0s
Details
feat: Implement core chat application UI, including chat, voice, members, DMs, and shared components.
2026-02-14 01:57:15 -06:00

384 lines
18 KiB
JavaScript
Raw Blame History

"use strict";
var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
return new (P || (P = Promise))(function (resolve, reject) {
function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
step((generator = generator.apply(thisArg, _arguments || [])).next());
});
};
var __generator = (this && this.__generator) || function (thisArg, body) {
var _ = { label: 0, sent: function() { if (t[0] & 1) throw t[1]; return t[1]; }, trys: [], ops: [] }, f, y, t, g = Object.create((typeof Iterator === "function" ? Iterator : Object).prototype);
return g.next = verb(0), g["throw"] = verb(1), g["return"] = verb(2), typeof Symbol === "function" && (g[Symbol.iterator] = function() { return this; }), g;
function verb(n) { return function (v) { return step([n, v]); }; }
function step(op) {
if (f) throw new TypeError("Generator is already executing.");
while (g && (g = 0, op[0] && (_ = 0)), _) try {
if (f = 1, y && (t = op[0] & 2 ? y["return"] : op[0] ? y["throw"] || ((t = y["return"]) && t.call(y), 0) : y.next) && !(t = t.call(y, op[1])).done) return t;
if (y = 0, t) op = [op[0] & 2, t.value];
switch (op[0]) {
case 0: case 1: t = op; break;
case 4: _.label++; return { value: op[1], done: false };
case 5: _.label++; y = op[1]; op = [0]; continue;
case 7: op = _.ops.pop(); _.trys.pop(); continue;
default:
if (!(t = _.trys, t = t.length > 0 && t[t.length - 1]) && (op[0] === 6 || op[0] === 2)) { _ = 0; continue; }
if (op[0] === 3 && (!t || (op[1] > t[0] && op[1] < t[3]))) { _.label = op[1]; break; }
if (op[0] === 6 && _.label < t[1]) { _.label = t[1]; t = op; break; }
if (t && _.label < t[2]) { _.label = t[2]; _.ops.push(op); break; }
if (t[2]) _.ops.pop();
_.trys.pop(); continue;
}
op = body.call(thisArg, _);
} catch (e) { op = [6, e]; y = 0; } finally { f = t = 0; }
if (op[0] & 5) throw op[1]; return { value: op[0] ? op[1] : void 0, done: true };
}
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.updateStatus = exports.getMyJoinSoundUrl = exports.updateProfile = exports.getPublicKeys = exports.createUserWithProfile = exports.verifyUser = exports.getSalt = void 0;
var server_1 = require("./_generated/server");
var values_1 = require("convex/values");
var storageUrl_1 = require("./storageUrl");
function sha256Hex(input) {
return __awaiter(this, void 0, void 0, function () {
var buffer;
return __generator(this, function (_a) {
switch (_a.label) {
case 0: return [4 /*yield*/, crypto.subtle.digest("SHA-256", new TextEncoder().encode(input))];
case 1:
buffer = _a.sent();
return [2 /*return*/, Array.from(new Uint8Array(buffer))
.map(function (b) { return b.toString(16).padStart(2, "0"); })
.join("")];
}
});
});
}
// Get salt for a username (returns fake salt for non-existent users)
exports.getSalt = (0, server_1.query)({
args: { username: values_1.v.string() },
returns: values_1.v.object({ salt: values_1.v.string() }),
handler: function (ctx, args) { return __awaiter(void 0, void 0, void 0, function () {
var user, fakeSalt;
return __generator(this, function (_a) {
switch (_a.label) {
case 0: return [4 /*yield*/, ctx.db
.query("userProfiles")
.withIndex("by_username", function (q) { return q.eq("username", args.username); })
.unique()];
case 1:
user = _a.sent();
if (user) {
return [2 /*return*/, { salt: user.clientSalt }];
}
return [4 /*yield*/, sha256Hex("SERVER_SECRET_KEY" + args.username)];
case 2:
fakeSalt = _a.sent();
return [2 /*return*/, { salt: fakeSalt }];
}
});
}); },
});
// Verify user credentials (DAK comparison)
exports.verifyUser = (0, server_1.mutation)({
args: {
username: values_1.v.string(),
dak: values_1.v.string(),
},
returns: values_1.v.union(values_1.v.object({
success: values_1.v.boolean(),
userId: values_1.v.string(),
encryptedMK: values_1.v.string(),
encryptedPrivateKeys: values_1.v.string(),
publicKey: values_1.v.string(),
}), values_1.v.object({ error: values_1.v.string() })),
handler: function (ctx, args) { return __awaiter(void 0, void 0, void 0, function () {
var user, hashedDAK;
return __generator(this, function (_a) {
switch (_a.label) {
case 0: return [4 /*yield*/, ctx.db
.query("userProfiles")
.withIndex("by_username", function (q) { return q.eq("username", args.username); })
.unique()];
case 1:
user = _a.sent();
if (!user) {
return [2 /*return*/, { error: "Invalid credentials" }];
}
return [4 /*yield*/, sha256Hex(args.dak)];
case 2:
hashedDAK = _a.sent();
if (hashedDAK === user.hashedAuthKey) {
return [2 /*return*/, {
success: true,
userId: user._id,
encryptedMK: user.encryptedMasterKey,
encryptedPrivateKeys: user.encryptedPrivateKeys,
publicKey: user.publicIdentityKey,
}];
}
return [2 /*return*/, { error: "Invalid credentials" }];
}
});
}); },
});
// Register new user with crypto keys
exports.createUserWithProfile = (0, server_1.mutation)({
args: {
username: values_1.v.string(),
salt: values_1.v.string(),
encryptedMK: values_1.v.string(),
hak: values_1.v.string(),
publicKey: values_1.v.string(),
signingKey: values_1.v.string(),
encryptedPrivateKeys: values_1.v.string(),
inviteCode: values_1.v.optional(values_1.v.string()),
},
returns: values_1.v.union(values_1.v.object({ success: values_1.v.boolean(), userId: values_1.v.string() }), values_1.v.object({ error: values_1.v.string() })),
handler: function (ctx, args) { return __awaiter(void 0, void 0, void 0, function () {
var existing, isFirstUser, invite, userId, everyoneRoleId, ownerRoleId, everyoneRole;
return __generator(this, function (_a) {
switch (_a.label) {
case 0: return [4 /*yield*/, ctx.db
.query("userProfiles")
.withIndex("by_username", function (q) { return q.eq("username", args.username); })
.unique()];
case 1:
existing = _a.sent();
if (existing) {
return [2 /*return*/, { error: "Username taken" }];
}
return [4 /*yield*/, ctx.db.query("userProfiles").first()];
case 2:
isFirstUser = (_a.sent()) === null;
if (!!isFirstUser) return [3 /*break*/, 5];
if (!args.inviteCode) {
return [2 /*return*/, { error: "Invite code required" }];
}
return [4 /*yield*/, ctx.db
.query("invites")
.withIndex("by_code", function (q) { return q.eq("code", args.inviteCode); })
.unique()];
case 3:
invite = _a.sent();
if (!invite) {
return [2 /*return*/, { error: "Invalid invite code" }];
}
if (invite.expiresAt && Date.now() > invite.expiresAt) {
return [2 /*return*/, { error: "Invite expired" }];
}
if (invite.maxUses !== undefined &&
invite.maxUses !== null &&
invite.uses >= invite.maxUses) {
return [2 /*return*/, { error: "Invite max uses reached" }];
}
return [4 /*yield*/, ctx.db.patch(invite._id, { uses: invite.uses + 1 })];
case 4:
_a.sent();
_a.label = 5;
case 5: return [4 /*yield*/, ctx.db.insert("userProfiles", {
username: args.username,
clientSalt: args.salt,
encryptedMasterKey: args.encryptedMK,
hashedAuthKey: args.hak,
publicIdentityKey: args.publicKey,
publicSigningKey: args.signingKey,
encryptedPrivateKeys: args.encryptedPrivateKeys,
isAdmin: isFirstUser,
})];
case 6:
userId = _a.sent();
if (!isFirstUser) return [3 /*break*/, 11];
return [4 /*yield*/, ctx.db.insert("roles", {
name: "@everyone",
color: "#99aab5",
position: 0,
permissions: {
create_invite: true,
embed_links: true,
attach_files: true,
},
isHoist: false,
})];
case 7:
everyoneRoleId = _a.sent();
return [4 /*yield*/, ctx.db.insert("roles", {
name: "Owner",
color: "#e91e63",
position: 100,
permissions: {
manage_channels: true,
manage_roles: true,
manage_messages: true,
create_invite: true,
embed_links: true,
attach_files: true,
},
isHoist: true,
})];
case 8:
ownerRoleId = _a.sent();
return [4 /*yield*/, ctx.db.insert("userRoles", { userId: userId, roleId: everyoneRoleId })];
case 9:
_a.sent();
return [4 /*yield*/, ctx.db.insert("userRoles", { userId: userId, roleId: ownerRoleId })];
case 10:
_a.sent();
return [3 /*break*/, 14];
case 11: return [4 /*yield*/, ctx.db
.query("roles")
.filter(function (q) { return q.eq(q.field("name"), "@everyone"); })
.first()];
case 12:
everyoneRole = _a.sent();
if (!everyoneRole) return [3 /*break*/, 14];
return [4 /*yield*/, ctx.db.insert("userRoles", {
userId: userId,
roleId: everyoneRole._id,
})];
case 13:
_a.sent();
_a.label = 14;
case 14: return [2 /*return*/, { success: true, userId: userId }];
}
});
}); },
});
// Get all users' public keys
exports.getPublicKeys = (0, server_1.query)({
args: {},
returns: values_1.v.array(values_1.v.object({
id: values_1.v.string(),
username: values_1.v.string(),
public_identity_key: values_1.v.string(),
status: values_1.v.optional(values_1.v.string()),
displayName: values_1.v.optional(values_1.v.string()),
avatarUrl: values_1.v.optional(values_1.v.union(values_1.v.string(), values_1.v.null())),
aboutMe: values_1.v.optional(values_1.v.string()),
customStatus: values_1.v.optional(values_1.v.string()),
joinSoundUrl: values_1.v.optional(values_1.v.union(values_1.v.string(), values_1.v.null())),
})),
handler: function (ctx) { return __awaiter(void 0, void 0, void 0, function () {
var users, results, _i, users_1, u, avatarUrl, joinSoundUrl;
return __generator(this, function (_a) {
switch (_a.label) {
case 0: return [4 /*yield*/, ctx.db.query("userProfiles").collect()];
case 1:
users = _a.sent();
results = [];
_i = 0, users_1 = users;
_a.label = 2;
case 2:
if (!(_i < users_1.length)) return [3 /*break*/, 8];
u = users_1[_i];
avatarUrl = null;
if (!u.avatarStorageId) return [3 /*break*/, 4];
return [4 /*yield*/, (0, storageUrl_1.getPublicStorageUrl)(ctx, u.avatarStorageId)];
case 3:
avatarUrl = _a.sent();
_a.label = 4;
case 4:
joinSoundUrl = null;
if (!u.joinSoundStorageId) return [3 /*break*/, 6];
return [4 /*yield*/, (0, storageUrl_1.getPublicStorageUrl)(ctx, u.joinSoundStorageId)];
case 5:
joinSoundUrl = _a.sent();
_a.label = 6;
case 6:
results.push({
id: u._id,
username: u.username,
public_identity_key: u.publicIdentityKey,
status: u.status || "offline",
displayName: u.displayName,
avatarUrl: avatarUrl,
aboutMe: u.aboutMe,
customStatus: u.customStatus,
joinSoundUrl: joinSoundUrl,
});
_a.label = 7;
case 7:
_i++;
return [3 /*break*/, 2];
case 8: return [2 /*return*/, results];
}
});
}); },
});
// Update user profile (aboutMe, avatar, customStatus)
exports.updateProfile = (0, server_1.mutation)({
args: {
userId: values_1.v.id("userProfiles"),
displayName: values_1.v.optional(values_1.v.string()),
aboutMe: values_1.v.optional(values_1.v.string()),
avatarStorageId: values_1.v.optional(values_1.v.id("_storage")),
customStatus: values_1.v.optional(values_1.v.string()),
joinSoundStorageId: values_1.v.optional(values_1.v.id("_storage")),
removeJoinSound: values_1.v.optional(values_1.v.boolean()),
},
returns: values_1.v.null(),
handler: function (ctx, args) { return __awaiter(void 0, void 0, void 0, function () {
var patch;
return __generator(this, function (_a) {
switch (_a.label) {
case 0:
patch = {};
if (args.displayName !== undefined)
patch.displayName = args.displayName;
if (args.aboutMe !== undefined)
patch.aboutMe = args.aboutMe;
if (args.avatarStorageId !== undefined)
patch.avatarStorageId = args.avatarStorageId;
if (args.customStatus !== undefined)
patch.customStatus = args.customStatus;
if (args.joinSoundStorageId !== undefined)
patch.joinSoundStorageId = args.joinSoundStorageId;
if (args.removeJoinSound)
patch.joinSoundStorageId = undefined;
return [4 /*yield*/, ctx.db.patch(args.userId, patch)];
case 1:
_a.sent();
return [2 /*return*/, null];
}
});
}); },
});
// Get the current user's join sound URL
exports.getMyJoinSoundUrl = (0, server_1.query)({
args: { userId: values_1.v.id("userProfiles") },
returns: values_1.v.union(values_1.v.string(), values_1.v.null()),
handler: function (ctx, args) { return __awaiter(void 0, void 0, void 0, function () {
var user;
return __generator(this, function (_a) {
switch (_a.label) {
case 0: return [4 /*yield*/, ctx.db.get(args.userId)];
case 1:
user = _a.sent();
if (!(user === null || user === void 0 ? void 0 : user.joinSoundStorageId))
return [2 /*return*/, null];
return [4 /*yield*/, (0, storageUrl_1.getPublicStorageUrl)(ctx, user.joinSoundStorageId)];
case 2: return [2 /*return*/, _a.sent()];
}
});
}); },
});
// Update user status
exports.updateStatus = (0, server_1.mutation)({
args: {
userId: values_1.v.id("userProfiles"),
status: values_1.v.string(),
},
returns: values_1.v.null(),
handler: function (ctx, args) { return __awaiter(void 0, void 0, void 0, function () {
return __generator(this, function (_a) {
switch (_a.label) {
case 0: return [4 /*yield*/, ctx.db.patch(args.userId, { status: args.status })];
case 1:
_a.sent();
return [2 /*return*/, null];
}
});
}); },
});
Reference in New Issue View Git Blame Copy Permalink