Dedicated messages to change the user email address.

2024-11-18 07:45:37 +01:00 · 2024-11-18 07:45:37 +01:00 · 1f929cdab6
commit 1f929cdab6
parent 6cbd421370
3 changed files with 91 additions and 1 deletions
--- a/src/requests/mail.cr
+++ b/src/requests/mail.cr
@ -0,0 +1,77 @@
+class AuthD::Request
+	# NewEmailAddress: any connected user can ask to change its email address.
+	IPC::JSON.message NewEmailAddress, 16 do
+		property email : String
+
+		def initialize(@email)
+		end
+
+		def handle(authd : AuthD::Service, fd : Int32)
+			logged_user = authd.get_logged_user_full? fd
+			return Response::ErrorMustBeAuthenticated.new if logged_user.nil?
+
+			cloned_user = logged_user.clone
+
+			# In case of a new email address:
+			# 1. the new address is stored as "pending_email"
+			# 2. the new address has to be validated before being used as primary email address
+
+			# Verify the email address isn't already in the database.
+			if authd.users_per_email.get? Base64.encode(@email).chomp
+				return Response::ErrorEmailAddressAlreadyUsed.new
+			end
+			cloned_user.contact.pending_email = @email
+			cloned_user.contact.new_activation_key
+
+			begin
+				u_login            = cloned_user.login
+				u_email            = cloned_user.contact.pending_email.not_nil!
+				u_activation_token = cloned_user.contact.activation_key.not_nil!
+
+				# Once the user is created and stored, we try to contact him.
+				send_activation_token authd, u_login, u_email, u_activation_token
+			rescue e
+				Baguette::Log.error "mailer: #{e}"
+				return Response::ErrorCannotContactUser.new
+			end
+
+			authd.users_per_uid.update cloned_user
+
+			Response::NewEmailTokenSent.new
+		end
+	end
+	AuthD.requests << NewEmailAddress
+
+	# NewEmailAddressToken: validate a pending email address.
+	IPC::JSON.message NewEmailAddressToken, 17 do
+		property token : String
+
+		def initialize(@token)
+		end
+
+		def handle(authd : AuthD::Service, fd : Int32)
+			logged_user = authd.get_logged_user_full? fd
+			return Response::ErrorMustBeAuthenticated.new if logged_user.nil?
+
+			if logged_user.contact.activation_key.nil?
+				return Response::ErrorUserAlreadyValidated.new
+			end
+
+			# Remove the user contact activation key: the email is validated.
+			if logged_user.contact.activation_key != @token
+				return Response::ErrorInvalidActivationKey.new
+			end
+
+			cloned_user = logged_user.clone
+
+			cloned_user.contact.activation_key = nil
+			cloned_user.contact.email = cloned_user.contact.pending_email
+			cloned_user.contact.pending_email = nil
+
+			authd.users_per_uid.update cloned_user
+
+			Response::NewEmailAddressValidated.new
+		end
+	end
+	AuthD.requests << NewEmailAddressToken
+end
--- a/src/responses/contact.cr
+++ b/src/responses/contact.cr
@ -1,5 +1,5 @@
 class AuthD::Response
-	IPC::JSON.message Contacts, 12 do
+	IPC::JSON.message Contacts, 13 do
 		property user : UInt32
 		property email : String? = nil
 		def initialize(@user, @email)
--- a/src/responses/email.cr
+++ b/src/responses/email.cr
@ -0,0 +1,13 @@
+class AuthD::Response
+	IPC::JSON.message NewEmailTokenSent, 14 do
+		def initialize()
+		end
+	end
+	AuthD.responses << NewEmailTokenSent
+
+	IPC::JSON.message NewEmailAddressValidated, 15 do
+		def initialize()
+		end
+	end
+	AuthD.responses << NewEmailAddressValidated
+end