gitadmin/freeCodeCamp
1
0
Fork 0
mirror of https://github.com/freeCodeCamp/freeCodeCamp.git synced 2026-05-28 18:26:54 +00:00
Code Issues Packages Projects Releases Wiki Activity
Files
ee37d563f74e937ab7d110649d7804f507ecb36b
freeCodeCamp/api/src/routes/settings.ts
T
Oliver Eyton-Williams ee37d563f7 fix(api): reject social urls with invalid domains (#55595)
2024-07-25 10:49:34 -05:00

817 lines
22 KiB
TypeScript
Raw Blame History

import {
TypeBoxTypeProvider,
type FastifyPluginCallbackTypebox
} from '@fastify/type-provider-typebox';
import type {
ContextConfigDefault,
FastifyError,
FastifyInstance,
FastifyReply,
FastifyRequest,
RawReplyDefaultExpression,
RawRequestDefaultExpression,
RawServerDefault,
RouteGenericInterface
} from 'fastify';
import { ResolveFastifyReplyType } from 'fastify/types/type-provider';
import { differenceInMinutes } from 'date-fns';
import validator from 'validator';
import { isValidUsername } from '../../../shared/utils/validate';
import * as schemas from '../schemas';
import { createAuthToken, isExpired } from '../utils/tokens';
import { API_LOCATION } from '../utils/env';
import { getRedirectParams } from '../utils/redirection';
import { isRestricted } from './helpers/is-restricted';
const { isEmail } = validator;
type WaitMesssageArgs = {
sentAt: Date | null;
now?: Date;
};
/**
* Get a message to display to the user about how long they need to wait before
* they can request an authentication link.
*
* @param param The parameters.
* @param param.sentAt The date the last email was sent at.
* @param param.now The current date.
* @returns The message to display to the user.
*/
export function getWaitMessage({ sentAt, now = new Date() }: WaitMesssageArgs) {
const minutesLeft = getWaitPeriod({ sentAt, now });
if (minutesLeft <= 0) return null;
const timeToWait = `${minutesLeft} minute${minutesLeft > 1 ? 's' : ''}`;
return `Please wait ${timeToWait} to resend an authentication link.`;
}
function getWaitPeriod({ sentAt, now }: Required<WaitMesssageArgs>) {
if (sentAt == null) return 0;
return 5 - differenceInMinutes(now, sentAt);
}
/**
* Validate an image url.
*
* @param picture The url to check.
* @returns Whether the url is a picture with a valid protocol.
*/
export const isPictureWithProtocol = (picture?: string): boolean => {
if (!picture) return false;
try {
const url = new URL(picture);
return url.protocol == 'http:' || url.protocol == 'https:';
} catch {
return false;
}
};
const ALLOWED_DOMAINS_MAP = {
githubProfile: ['github.com'],
linkedin: ['linkedin.com'],
twitter: ['twitter.com', 'x.com']
};
/**
* Validate a social URL.
*
* @param socialUrl The URL to check.
* @param key The key of the allowed socials and domains.
* @returns Whether the URL is valid.
*/
export const validateSocialUrl = (
socialUrl: string,
key: keyof typeof ALLOWED_DOMAINS_MAP
): boolean => {
if (!socialUrl) return true;
try {
const url = new URL(socialUrl);
const domains = ALLOWED_DOMAINS_MAP[key];
const domainAndTld = url.hostname.split('.').slice(-2).join('.');
return domains.includes(domainAndTld);
} catch {
return false;
}
};
/**
* Plugin for all endpoints related to user settings.
*
* @param fastify The Fastify instance.
* @param _options Fastify options I guess?
* @param done Callback to signal that the logic has completed.
*/
export const settingRoutes: FastifyPluginCallbackTypebox = (
fastify,
_options,
done
) => {
type CommonResponseSchema = {
response: { 400: (typeof schemas.updateMyProfileUI.response)[400] };
};
// TODO: figure out if there's a nicer way to generate this type
type UpdateReplyType = FastifyReply<
RawServerDefault,
RawRequestDefaultExpression<RawServerDefault>,
RawReplyDefaultExpression<RawServerDefault>,
RouteGenericInterface,
ContextConfigDefault,
CommonResponseSchema,
TypeBoxTypeProvider,
ResolveFastifyReplyType<
TypeBoxTypeProvider,
CommonResponseSchema,
RouteGenericInterface
>
>;
function updateErrorHandler(
error: FastifyError,
request: FastifyRequest,
reply: UpdateReplyType
) {
if (error.validation) {
void reply.code(400);
void reply.send({ message: 'flash.wrong-updating', type: 'danger' });
} else {
fastify.errorHandler(error, request, reply);
}
}
fastify.put(
'/update-my-profileui',
{
schema: schemas.updateMyProfileUI,
errorHandler: updateErrorHandler
},
async (req, reply) => {
try {
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
profileUI: {
isLocked: req.body.profileUI.isLocked,
showAbout: req.body.profileUI.showAbout,
showCerts: req.body.profileUI.showCerts,
showDonation: req.body.profileUI.showDonation,
showHeatMap: req.body.profileUI.showHeatMap,
showLocation: req.body.profileUI.showLocation,
showName: req.body.profileUI.showName,
showPoints: req.body.profileUI.showPoints,
showPortfolio: req.body.profileUI.showPortfolio,
showTimeLine: req.body.profileUI.showTimeLine
}
}
});
return {
message: 'flash.privacy-updated',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
function createUpdateEmailText({ email, id }: { email: string; id: string }) {
const encodedEmail = Buffer.from(email).toString('base64');
return `Please confirm this email address for freeCodeCamp.org:
${API_LOCATION}/confirm-email?email=${encodedEmail}&token=${id}&emailChange=true
Happy coding!
- The freeCodeCamp.org Team
`;
}
fastify.put(
'/update-my-email',
{
schema: schemas.updateMyEmail,
// We need to customize the responses to validation failures:
attachValidation: true
},
async (req, reply) => {
if (req.validationError) {
void reply.code(400);
return { message: 'Email format is invalid', type: 'danger' } as const;
}
const user = await fastify.prisma.user.findUniqueOrThrow({
where: { id: req.user?.id },
select: {
id: true,
email: true,
emailVerifyTTL: true,
newEmail: true,
emailVerified: true,
emailAuthLinkTTL: true
}
});
const newEmail = req.body.email.toLowerCase();
const currentEmailFormatted = user.email.toLowerCase();
const isVerifiedEmail = user.emailVerified;
const isOwnEmail = newEmail === currentEmailFormatted;
if (isOwnEmail && isVerifiedEmail) {
void reply.code(400);
return reply.send({
type: 'info',
message: `${newEmail} is already associated with this account.
You can update a new email address instead.`
});
}
const isResendUpdateToSameEmail =
newEmail === user.newEmail?.toLowerCase();
const isLinkSentWithinLimitTTL = getWaitMessage({
sentAt: user.emailVerifyTTL
});
if (isResendUpdateToSameEmail && isLinkSentWithinLimitTTL) {
void reply.code(429);
return reply.send({
type: 'info',
message: `We have already sent an email confirmation request to ${newEmail}.
${isLinkSentWithinLimitTTL}`
});
}
const isEmailAlreadyTaken =
(await fastify.prisma.user.count({ where: { email: newEmail } })) > 0;
if (isEmailAlreadyTaken && !isOwnEmail) {
void reply.code(400);
return reply.send({
type: 'info',
message: `${newEmail} is already associated with another account.`
});
}
// ToDo(MVP): email the new email and wait user to confirm it, before we update the user schema.
try {
await fastify.prisma.user.update({
where: { id: user.id },
data: {
newEmail,
emailVerified: false,
emailVerifyTTL: new Date()
}
});
// TODO: combine emailVerifyTTL and emailAuthLinkTTL? I'm not sure why
// we need emailVeriftyTTL given that the main thing we want is to
// restrict the rate of attempts and the emailAuthLinkTTL already does
// that.
const tooManyRequestsMessage = getWaitMessage({
sentAt: user.emailAuthLinkTTL
});
if (tooManyRequestsMessage) {
void reply.code(429);
return reply.send({
type: 'info',
message: tooManyRequestsMessage
});
}
// Update the emailAuthLinkTTL to ensure we don't send too many emails.
await fastify.prisma.user.update({
where: { id: user.id },
data: {
emailAuthLinkTTL: new Date()
}
});
// The auth token is used to confirm that the user owns the email. If
// the user provides the correct id (by following the link we send
// them), then we can update the email.
const { id } = await fastify.prisma.authToken.create({
data: createAuthToken(user.id),
select: { id: true }
});
await fastify.sendEmail({
from: 'team@freecodecamp.org',
to: newEmail,
subject:
'Please confirm your updated email address for freeCodeCamp.org',
text: createUpdateEmailText({ email: newEmail, id })
});
await reply.send({
message:
'Check your email and click the link we sent you to confirm your new email address.',
type: 'info'
});
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
await reply.send({ message: 'flash.wrong-updating', type: 'danger' });
}
}
);
fastify.put(
'/update-my-theme',
{
schema: schemas.updateMyTheme,
errorHandler: updateErrorHandler
},
async (req, reply) => {
try {
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
theme: req.body.theme
}
});
return {
message: 'flash.updated-themes',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
fastify.put(
'/update-my-socials',
{
schema: schemas.updateMySocials,
errorHandler: updateErrorHandler
},
async (req, reply) => {
const valid = (['twitter', 'githubProfile', 'linkedin'] as const).every(
key => validateSocialUrl(req.body[key], key)
);
if (!valid) {
void reply.code(400);
return reply.send({
message: 'flash.wrong-updating',
type: 'danger'
});
}
try {
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
website: req.body.website,
twitter: req.body.twitter,
githubProfile: req.body.githubProfile,
linkedin: req.body.linkedin
}
});
return {
message: 'flash.updated-socials',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
fastify.put(
'/update-my-username',
{
schema: schemas.updateMyUsername,
attachValidation: true
},
async (req, reply) => {
try {
const user = await fastify.prisma.user.findFirstOrThrow({
where: { id: req.user?.id }
});
const newUsernameDisplay = req.body.username.trim();
const oldUsernameDisplay = user.usernameDisplay?.trim();
const newUsername = newUsernameDisplay.toLowerCase();
const oldUsername = user.username.toLowerCase();
const usernameUnchanged =
newUsername === oldUsername &&
newUsernameDisplay === oldUsernameDisplay;
if (usernameUnchanged) {
void reply.code(400);
return {
message: 'flash.username-used',
type: 'info'
} as const;
}
if (req.validationError) {
void reply.code(400);
return {
message: req.validationError.message,
type: 'info'
} as const;
}
const validation = isValidUsername(newUsername);
if (!validation.valid) {
void reply.code(400);
return reply.send({
// TODO(Post-MVP): custom validation errors.
message: `Username ${newUsername} ${validation.error}`,
type: 'info'
});
}
const usernameTaken =
newUsername === oldUsername
? false
: await fastify.prisma.user.count({
where: { username: newUsername }
});
if (usernameTaken || isRestricted(newUsername)) {
void reply.code(400);
return reply.send({
message: 'flash.username-taken',
type: 'info'
});
}
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
username: newUsername,
usernameDisplay: newUsernameDisplay
}
});
return reply.send({
message: 'flash.username-updated',
type: 'success',
variables: { username: newUsernameDisplay }
});
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
await reply.send({ message: 'flash.wrong-updating', type: 'danger' });
}
}
);
fastify.put(
'/update-my-about',
{
schema: schemas.updateMyAbout
},
async (req, reply) => {
const hasProtocol = isPictureWithProtocol(req.body.picture);
try {
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
about: req.body.about,
name: req.body.name,
location: req.body.location,
...(hasProtocol && { picture: req.body.picture })
}
});
return {
message: 'flash.updated-about-me',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
fastify.put(
'/update-my-keyboard-shortcuts',
{
schema: schemas.updateMyKeyboardShortcuts,
errorHandler: updateErrorHandler
},
async (req, reply) => {
try {
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
keyboardShortcuts: req.body.keyboardShortcuts
}
});
return {
message: 'flash.keyboard-shortcut-updated',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
fastify.put(
'/update-my-quincy-email',
{
schema: schemas.updateMyQuincyEmail,
errorHandler: updateErrorHandler
},
async (req, reply) => {
try {
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
sendQuincyEmail: req.body.sendQuincyEmail
}
});
return {
message: 'flash.subscribe-to-quincy-updated',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
fastify.put(
'/update-my-honesty',
{
schema: schemas.updateMyHonesty,
errorHandler: updateErrorHandler
},
async (req, reply) => {
try {
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
isHonest: req.body.isHonest
}
});
return {
message: 'buttons.accepted-honesty',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
fastify.put(
'/update-privacy-terms',
{
schema: schemas.updateMyPrivacyTerms,
errorHandler: updateErrorHandler
},
async (req, reply) => {
try {
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
acceptedPrivacyTerms: true,
sendQuincyEmail: req.body.quincyEmails
}
});
return {
message: 'flash.privacy-updated',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
fastify.put(
'/update-my-portfolio',
{
schema: schemas.updateMyPortfolio,
errorHandler: updateErrorHandler
},
async (req, reply) => {
try {
// TODO(Post-MVP): make all properties required in the schema and use
// req.body.portfolio directly.
const portfolio = req.body.portfolio.map(
({ id, title, url, description, image }) => ({
id: id ? id : '',
title: title ? title : '',
url: url ? url : '',
description: description ? description : '',
image: image ? image : ''
})
);
await fastify.prisma.user.update({
where: { id: req.user?.id },
data: {
portfolio
}
});
return {
message: 'flash.portfolio-item-updated',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(500);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
fastify.put(
'/update-my-classroom-mode',
{
schema: schemas.updateMyClassroomMode,
errorHandler: (error, request, reply) => {
if (error.validation) {
void reply.code(403);
void reply.send({ message: 'flash.wrong-updating', type: 'danger' });
} else {
fastify.errorHandler(error, request, reply);
}
}
},
async (req, reply) => {
try {
const classroomMode = req.body.isClassroomAccount;
await fastify.prisma.user.update({
where: { id: req.user!.id },
data: {
isClassroomAccount: classroomMode
}
});
return {
message: 'flash.classroom-mode-updated',
type: 'success'
} as const;
} catch (err) {
fastify.log.error(err);
fastify.Sentry.captureException(err);
void reply.code(403);
return { message: 'flash.wrong-updating', type: 'danger' } as const;
}
}
);
done();
};
/**
* Plugin for endpoints that redirect if the user is not authenticated.
*
* @param fastify The Fastify instance.
* @param _options Options for the plugin.
* @param done Callback to signal that the logic has completed.
*/
export const settingRedirectRoutes: FastifyPluginCallbackTypebox = (
fastify,
_options,
done
) => {
const redirectMessage = {
type: 'danger',
content:
'Oops! Something went wrong. Please try again in a moment or contact support@freecodecamp.org if the error persists.'
} as const;
const expirationMessage = {
type: 'info',
content:
'The link to confirm your new email address has expired. Please try again.'
} as const;
const successMessage = {
type: 'success',
content: 'flash.email-valid'
} as const;
async function updateEmail(
fastify: FastifyInstance,
{ id, email }: { id: string; email: string }
) {
await fastify.prisma.user.update({
where: { id },
data: {
email,
emailAuthLinkTTL: null,
emailVerified: true,
emailVerifyTTL: null,
newEmail: null
}
});
}
async function deleteAuthToken(
fastify: FastifyInstance,
{ id }: { id: string }
) {
await fastify.prisma.authToken.delete({
where: { id }
});
}
fastify.get(
'/confirm-email',
{
schema: schemas.confirmEmail,
errorHandler(error, request, reply) {
if (error.validation) {
const { origin } = getRedirectParams(request);
void reply.redirectWithMessage(origin, redirectMessage);
} else {
fastify.errorHandler(error, request, reply);
}
}
},
async (req, reply) => {
const email = Buffer.from(req.query.email, 'base64').toString();
const { origin } = getRedirectParams(req);
if (!isEmail(email)) {
return reply.redirectWithMessage(origin, redirectMessage);
}
const authToken = await fastify.prisma.authToken.findUnique({
where: { id: req.query.token }
});
if (!authToken) {
return reply.redirectWithMessage(origin, redirectMessage);
}
// TODO(Post-MVP): clean up expired auth tokens.
if (isExpired(authToken)) {
return reply.redirectWithMessage(origin, expirationMessage);
}
// TODO(Post-MVP): should this fail if it's not the currently signed in
// user?
const targetUser = await fastify.prisma.user.findUnique({
where: { id: authToken.userId }
});
if (targetUser?.newEmail !== email) {
return reply.redirectWithMessage(origin, redirectMessage);
}
// TODO(Post-MVP): clean up any other auth tokens for this user once
// the email is confirmed.
await Promise.all([
updateEmail(fastify, { id: targetUser.id, email }),
deleteAuthToken(fastify, { id: authToken.id })
]);
return reply.redirectWithMessage(origin, successMessage);
}
);
done();
};
Reference in New Issue View Git Blame Copy Permalink