Merge pull request #9 from IGZgustavomarin/feature/email-available

Added public endpoint to check email availability.

Author: Gustavo Marin

src/cipherlayer.js

@@ -102,7 +102,8 @@ function startListener(publicPort, internalPort, cbk){
                 "/auth/google",
                 "/auth/google/*",
                 "/user/activate*",
-                "/heartbeat"
+                "/heartbeat",
+                "/user/email/available"
             ];
             publicServer.use(versionControl(versionControlOptions));
 

src/managers/dao.js

@@ -6,6 +6,7 @@ var escapeRegexp = require('escape-regexp');
 var config = require(process.cwd() + '/config.json');
 var mongoClient = require('mongodb').MongoClient;
 var ObjectID = require('mongodb').ObjectID;
+var _ = require('lodash');
 
 var ERROR_USER_NOT_FOUND = 'user_not_found';
 var ERROR_USERNAME_ALREADY_EXISTS = 'username_already_exists';
@@ -117,6 +118,28 @@ function countUsers(cbk){
     });
 }
 
+function findByEmail(email, callback) {
+
+    var targetEmail = new RegExp("^"+escapeRegexp(email.toLowerCase())+"$", "i");
+
+
+    usersCollection.find({username: targetEmail}, {password: 0}).toArray(function(error, foundUsers) {
+
+        if (error) {
+            return callback({statusCode: 500, body: {
+                err: 'InternalError',
+                des: 'User lookup failed'
+            }});
+        }
+
+        if (_.isEmpty(foundUsers)) {
+            return callback(null, {available: true});
+        }
+
+        return callback(null, {available: false});
+    });
+}
+
 function getFromUsername(username, cbk){
     if(!username){
         return cbk({err:'invalid_username'}, null);
@@ -346,6 +369,6 @@ module.exports = {
     getRealms: getRealms,
     resetRealmsVariables: resetRealmsVariables,
     deleteAllRealms: deleteAllRealms,
-
+    findByEmail:findByEmail,
     getStatus: getStatus
 };

src/public_routes/user.js

@@ -13,6 +13,8 @@ var checkAccessTokenParam = require('../middlewares/accessTokenParam.js');
 var checkAuthHeader = require('../middlewares/authHeader.js');
 var decodeToken = require('../middlewares/decodeToken.js');
 var findUser = require('../middlewares/findUser.js');
+var _ = require('lodash');
+var log = require('../logger/service.js');
 
 function sendNewPassword(req, res, next) {
     if (!req.params.email) {
@@ -272,13 +274,36 @@ function setPassword(req, res, next) {
     });
 }
 
+function checkEmailAvailable(req, res, next) {
+    var email = req.body.email;
+
+    if (_.isEmpty(email)) {
+        res.send(400, {
+            err: 'BadRequestError',
+            des: 'Missing email in request body'
+        });
+        return next();
+    }
+
+
+    daoMng.findByEmail(email, function(error, output) {
+        if (error) {
+            res.send(error.statusCode, error.body);
+            return next();
+        }
+
+        res.send(200, output);
+        return next();
+    });
+}
+
 function addRoutes(service) {
     service.get('/user/:email/password', sendNewPassword);
 
     service.post(config.passThroughEndpoint.path, createUserEndpoint);
     service.get('/user/activate', createUserByToken);
     service.post('/user/activate', createUserByToken);
-
+    service.post('/user/email/available', checkEmailAvailable);
     service.put('/user/me/password', checkAccessTokenParam, checkAuthHeader, decodeToken, checkBody, findUser, validateOldPassword, setPassword);
 }
 

tests/emailAvailable.js

@@ -0,0 +1,97 @@
+var assert = require('assert');
+var request = require('request');
+
+var cipherlayer = require('../src/cipherlayer');
+var config = require('../config.json');
+var userDao = require('../src/managers/dao');
+
+var baseUser = {
+  id: 'a1b2c3d4e5f6',
+  username: 'user@example.com',
+  password: 'pass1'
+};
+
+describe('Check Email Available endpoint', function() {
+
+  beforeEach(function(done) {
+    cipherlayer.start(config.public_port, config.internal_port, function(error) {
+      assert.equal(error, null);
+      userDao.deleteAllUsers(function(error) {
+        assert.equal(error, null);
+        return done();
+      });
+    });
+  });
+
+  afterEach(function(done) {
+    cipherlayer.stop(done);
+  });
+
+  it('should indicate that requested email is available', function(done) {
+
+    var requestOptions = {
+      url: 'http://localhost:' + config.public_port + '/user/email/available',
+      headers: {
+        'Content-Type': 'application/json; charset=utf-8'
+      },
+      method: 'POST',
+      json: true,
+      body: {
+        email: baseUser.username
+      }
+    };
+
+    request(requestOptions, function(err, res, body) {
+      assert.equal(err, null);
+      assert.equal(res.statusCode, 200);
+      assert.equal(body.available, true);
+      return done();
+    });
+  });
+
+  it('should indicate that requested email is unavailable', function(done) {
+    var requestOptions = {
+      url: 'http://localhost:' + config.public_port + '/user/email/available',
+      headers: {
+        'Content-Type': 'application/json; charset=utf-8'
+      },
+      method: 'POST',
+      json: true,
+      body: {
+        email: baseUser.username
+      }
+    };
+
+    userDao.addUser()(baseUser, function(error) {
+
+      assert.equal(error, null);
+
+      request(requestOptions, function(err, res, body) {
+        assert.equal(err, null);
+        assert.equal(res.statusCode, 200);
+        assert.equal(body.available, false);
+        return done();
+      });
+    });
+  });
+
+  it('should return a BadRequestError on missing email component', function(done) {
+    var requestOptions = {
+      url: 'http://localhost:' + config.public_port + '/user/email/available',
+      headers: {
+        'Content-Type': 'application/json; charset=utf-8'
+      },
+      method: 'POST',
+      json: true,
+      body: {}
+    };
+
+    request(requestOptions, function(err, res) {
+      assert.equal(err, null);
+      assert.equal(res.statusCode, 400);
+      assert.equal(res.body.err, 'BadRequestError');
+      assert.equal(res.body.des, 'Missing email in request body');
+      return done();
+    });
+  });
+});