meta/lib/recycledcloud/accounts.ex

defmodule RecycledCloud.Accounts do
  @moduledoc """
  The Accounts context.
  """

  import Ecto.Query, warn: false
  alias RecycledCloud.Repo
  alias RecycledCloud.Accounts.{User, Key, UserToken, UserNotifier}

  ## Database getters

  @doc """
  Gets a user by username.

  ## Examples

      iex> get_user_by_username("foo")
      %User{}

      iex> get_user_by_username("unknown")
      nil

  """
  def get_user_by_username(username) when is_binary(username) do
    User.get_by_username(username)
  end

  @doc """
  Gets a user by username and password.

  ## Examples

      iex> get_user_by_username_and_password("foo", "correct_password")
      %User{}

      iex> get_user_by_username_and_password("foo", "invalid_password")
      nil

  """
  def get_user_by_username_and_password(username, password)
      when is_binary(username) and is_binary(password) do
    user = get_user_by_username(username)
    if User.valid_password?(user, password), do: user
  end

  @doc """
  Gets a single user.

  Raises `Ecto.NoResultsError` if the User does not exist.

  ## Examples

      iex> get_user!(123)
      %User{}

      iex> get_user!(456)
      ** (Ecto.NoResultsError)

  """
  def get_user!(id), do: User.get!(id)

  ## User registration

  @doc """
  Insert an user in local database.

  ## Examples

      iex> insert_user(%{field: value})
      {:ok, %User{}}

      iex> insert_user(%{field: bad_value})
      {:error, %Ecto.Changeset{}}

  """
  def insert_user(attrs) do
    %User{}
    |> User.insertion_changeset(attrs)
    |> Repo.insert()
  end

  @doc """
  Register an user in LDAP backend and insert in local database.
  """
  def register_user(attrs) do
    changeset = %User{} |> User.registration_changeset(attrs)
    case Ecto.Changeset.apply_action(changeset, :update) do
      {:ok, user} ->
        case User.register(user) do
          {:ok, result} -> {:ok, result}
          {:error, :entryAlreadyExists} ->
            err = changeset
              |> Ecto.Changeset.add_error(:username, "has already been taken")
              |> Ecto.Changeset.apply_action(:update)
        end
      err -> err
    end
  end

  @doc """
  Returns an `%Ecto.Changeset{}` for tracking user changes.

  ## Examples

      iex> change_user_registration(user)
      %Ecto.Changeset{data: %User{}}

  """
  def change_user_registration(%User{} = user, attrs \\ %{}) do
    User.registration_changeset(user, attrs)
  end

  ## Settings

  @doc """
  Returns an `%Ecto.Changeset{}` for changing the user email.

  ## Examples

      iex> change_user_email(user)
      %Ecto.Changeset{data: %User{}}

  """
  def change_user_email(user, attrs \\ %{}) do
    User.email_changeset(user, attrs)
  end

  @doc """
  Emulates that the email will change without actually changing
  it in the database.

  ## Examples

      iex> apply_user_email(user, "valid password", %{email: ...})
      {:ok, %User{}}

      iex> apply_user_email(user, "invalid password", %{email: ...})
      {:error, %Ecto.Changeset{}}

  """
  def apply_user_email(user, password, attrs) do
    user
    |> User.email_changeset(attrs)
    |> User.validate_current_password(password)
    |> Ecto.Changeset.apply_action(:update)
  end

  @doc """
  Updates the user email using the given token.

  If the token matches, the user email is updated and the token is deleted.
  The confirmed_at date is also updated to the current time.
  """
  def update_user_email(user, token) do
    context = "change:#{user.email}"

    with {:ok, query} <- UserToken.verify_change_email_token_query(token, context),
         %UserToken{sent_to: email} <- Repo.one(query),
         {:ok, _} <- Repo.transaction(user_email_multi(user, email, context)),
         :ok <- User.set_email(user, email) do
      :ok
    else
      _ -> :error
    end
  end

  defp user_email_multi(user, email, context) do
    changeset = user
                |> User.email_changeset(%{email: email})
                |> User.confirm_changeset()

    # Delete existing tokens.
    Ecto.Multi.new()
    |> Ecto.Multi.update(:user, changeset)
    |> Ecto.Multi.delete_all(:tokens, UserToken.user_and_contexts_query(user, [context]))
  end

  @doc """
  Delivers the update email instructions to the given user.

  ## Examples

      iex> deliver_update_email_instructions(user, current_email, &Routes.user_update_email_url(conn, :edit, &1))
      {:ok, %{to: ..., body: ...}}

  """
  def deliver_update_email_instructions(%User{} = user, current_email, update_email_url_fun)
      when is_function(update_email_url_fun, 1) do
    {encoded_token, user_token} = UserToken.build_email_token(user, "change:#{current_email}")

    Repo.insert!(user_token)
    UserNotifier.deliver_update_email_instructions(user, update_email_url_fun.(encoded_token))
  end

  @doc """
  Returns an `%Ecto.Changeset{}` for changing the user password.

  ## Examples

      iex> change_user_password(user)
      %Ecto.Changeset{data: %User{}}

  """
  def change_user_password(user, attrs \\ %{}) do
    User.password_changeset(user, attrs)
  end

  defp set_user_password(user, changeset, new_password) do
    case Ecto.Changeset.apply_action(changeset, :update) do
      {:ok, _} ->
        case User.set_password(user, new_password) do
          :ok ->
            Repo.delete_all(UserToken.user_and_contexts_query(user, :all))
            {:ok, user}
          {:error, err} ->
            msg = {"Unknown error: #{err}", [err: inspect(err)]}
            changeset_errors = [
              current_password: msg,
              password: msg
            ]
            updated_changeset = changeset
                                |> Map.put(:action, :update)
                                |> Map.put(:errors, changeset_errors)
            {:error, updated_changeset}
        end
      err ->
        err
    end
  end

  @doc """
  Updates the user password.

  ## Examples

      iex> update_user_password(user, "valid password", %{password: ...})
      {:ok, %User{}}

      iex> update_user_password(user, "invalid password", %{password: ...})
      {:error, %Ecto.Changeset{}}

  """
  def update_user_password(user, current_password, attrs) do
    changeset = user
                |> User.password_changeset(attrs)
                |> User.validate_current_password(current_password)

    set_user_password(user, changeset, attrs["password"])
  end

  ## Session

  @doc """
  Generates a session token.
  """
  def generate_user_session_token(user) do
    {token, user_token} = UserToken.build_session_token(user)
    Repo.insert!(user_token)
    token
  end

  @doc """
  Gets the user with the given signed token.
  """
  def get_user_by_session_token(token) do
    {:ok, query} = UserToken.verify_session_token_query(token)
    Repo.one(query) |> User.maybe_populate_ldap_attributes()
  end

  @doc """
  Deletes the signed token with the given context.
  """
  def delete_session_token(token) do
    Repo.delete_all(UserToken.token_and_context_query(token, "session"))
    :ok
  end

  ## Confirmation

  @doc """
  Delivers the confirmation email instructions to the given user.

  ## Examples

      iex> deliver_user_confirmation_instructions(user, &Routes.user_confirmation_url(conn, :confirm, &1))
      {:ok, %{to: ..., body: ...}}

      iex> deliver_user_confirmation_instructions(confirmed_user, &Routes.user_confirmation_url(conn, :confirm, &1))
      {:error, :already_confirmed}

  """
  def deliver_user_confirmation_instructions(%User{} = user, confirmation_url_fun)
      when is_function(confirmation_url_fun, 1) do
    if user.confirmed_at do
      {:error, :already_confirmed}
    else
      {encoded_token, user_token} = UserToken.build_email_token(user, "confirm")
      Repo.insert!(user_token)
      UserNotifier.deliver_confirmation_instructions(user, confirmation_url_fun.(encoded_token))
    end
  end

  @doc """
  Confirms a user by the given token.

  If the token matches, the user account is marked as confirmed
  and the token is deleted.
  """
  def confirm_user(token) do
    with {:ok, query} <- UserToken.verify_email_token_query(token, "confirm"),
         %User{} = user <- Repo.one(query),
         {:ok, %{user: user}} <- Repo.transaction(confirm_user_multi(user)) do
      {:ok, user}
    else
      _ -> :error
    end
  end

  defp confirm_user_multi(user) do
    Ecto.Multi.new()
    |> Ecto.Multi.update(:user, User.confirm_changeset(user))
    |> Ecto.Multi.delete_all(:tokens, UserToken.user_and_contexts_query(user, ["confirm"]))
  end

  ## Reset password

  @doc """
  Delivers the reset password email to the given user.

  ## Examples

      iex> deliver_user_reset_password_instructions(user, &Routes.user_reset_password_url(conn, :edit, &1))
      {:ok, %{to: ..., body: ...}}

  """
  def deliver_user_reset_password_instructions(%User{} = user, reset_password_url_fun)
      when is_function(reset_password_url_fun, 1) do
    {encoded_token, user_token} = UserToken.build_email_token(user, "reset_password")
    Repo.insert!(user_token)
    UserNotifier.deliver_reset_password_instructions(user, reset_password_url_fun.(encoded_token))
  end

  @doc """
  Gets the user by reset password token.

  ## Examples

      iex> get_user_by_reset_password_token("validtoken")
      %User{}

      iex> get_user_by_reset_password_token("invalidtoken")
      nil

  """
  def get_user_by_reset_password_token(token) do
    with {:ok, query} <- UserToken.verify_email_token_query(token, "reset_password"),
         %User{} = user <- Repo.one(query) do
      user
    else
      _ -> nil
    end
  end

  @doc """
  Resets the user password.

  ## Examples

      iex> reset_user_password(user, %{password: "new long password", password_confirmation: "new long password"})
      {:ok, %User{}}

      iex> reset_user_password(user, %{password: "valid", password_confirmation: "not the same"})
      {:error, %Ecto.Changeset{}}

  """
  def reset_user_password(user, attrs) do
    changeset = user
                |> User.password_changeset(attrs)

    set_user_password(user, changeset, attrs["password"])
  end

  ## Keys

  def get_key!(id), do: Repo.get!(Key, id)

  def get_keys_for(%User{} = user) do
    Repo.preload(user, :keys).keys
  end

  def change_user_key(user, attrs \\ %{}) do
    Key.changeset(user, attrs)
  end

  def add_key(%User{} = user, value, comment \\ nil) do
    %Key{}
    |> Key.changeset(%{value: value, comment: comment})
    |> Ecto.Changeset.put_assoc(:user, user)
    |> Repo.insert()
  end

  def remove_key!(%Key{} = key) do
    Repo.delete!(key)
  end
end
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`defmodule RecycledCloud.Accounts do`
			`@moduledoc """`
			`The Accounts context.`
			`"""`

			`import Ecto.Query, warn: false`
			`alias RecycledCloud.Repo`
Add minimal SSH key management 2020-12-23 12:51:05 +01:00			`alias RecycledCloud.Accounts.{User, Key, UserToken, UserNotifier}`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00
			`## Database getters`

			`@doc """`
authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`Gets a user by username.`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00
			`## Examples`

authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`iex> get_user_by_username("foo")`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`%User{}`

authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`iex> get_user_by_username("unknown")`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`nil`

			`"""`
authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`def get_user_by_username(username) when is_binary(username) do`
Refactor user-related LDAP logic 2020-12-22 14:22:34 +01:00			`User.get_by_username(username)`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`end`

			`@doc """`
authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`Gets a user by username and password.`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00
			`## Examples`

authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`iex> get_user_by_username_and_password("foo", "correct_password")`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`%User{}`

authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`iex> get_user_by_username_and_password("foo", "invalid_password")`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`nil`

			`"""`
authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`def get_user_by_username_and_password(username, password)`
			`when is_binary(username) and is_binary(password) do`
			`user = get_user_by_username(username)`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`if User.valid_password?(user, password), do: user`
			`end`

			`@doc """`
			`Gets a single user.`

			Raises `Ecto.NoResultsError` if the User does not exist.

			`## Examples`

			`iex> get_user!(123)`
			`%User{}`

			`iex> get_user!(456)`
			`** (Ecto.NoResultsError)`

			`"""`
Refactor user-related LDAP logic 2020-12-22 14:22:34 +01:00			`def get_user!(id), do: User.get!(id)`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00
			`## User registration`

			`@doc """`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`Insert an user in local database.`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00
			`## Examples`

Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`iex> insert_user(%{field: value})`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`{:ok, %User{}}`

Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`iex> insert_user(%{field: bad_value})`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`{:error, %Ecto.Changeset{}}`

			`"""`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`def insert_user(attrs) do`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`%User{}`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`\|> User.insertion_changeset(attrs)`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`\|> Repo.insert()`
			`end`

Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`@doc """`
			`Register an user in LDAP backend and insert in local database.`
			`"""`
			`def register_user(attrs) do`
			`changeset = %User{} \|> User.registration_changeset(attrs)`
			`case Ecto.Changeset.apply_action(changeset, :update) do`
			`{:ok, user} ->`
			`case User.register(user) do`
			`{:ok, result} -> {:ok, result}`
			`{:error, :entryAlreadyExists} ->`
Wire/test registration and password reset 2021-01-08 14:41:37 +01:00			`err = changeset`
			`\|> Ecto.Changeset.add_error(:username, "has already been taken")`
			`\|> Ecto.Changeset.apply_action(:update)`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`end`
			`err -> err`
			`end`
			`end`

Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`@doc """`
			Returns an `%Ecto.Changeset{}` for tracking user changes.

			`## Examples`

			`iex> change_user_registration(user)`
			`%Ecto.Changeset{data: %User{}}`

			`"""`
			`def change_user_registration(%User{} = user, attrs \\ %{}) do`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`User.registration_changeset(user, attrs)`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`end`

			`## Settings`

			`@doc """`
			Returns an `%Ecto.Changeset{}` for changing the user email.

			`## Examples`

			`iex> change_user_email(user)`
			`%Ecto.Changeset{data: %User{}}`

			`"""`
			`def change_user_email(user, attrs \\ %{}) do`
			`User.email_changeset(user, attrs)`
			`end`

			`@doc """`
			`Emulates that the email will change without actually changing`
			`it in the database.`

			`## Examples`

			`iex> apply_user_email(user, "valid password", %{email: ...})`
			`{:ok, %User{}}`

			`iex> apply_user_email(user, "invalid password", %{email: ...})`
			`{:error, %Ecto.Changeset{}}`

			`"""`
			`def apply_user_email(user, password, attrs) do`
			`user`
			`\|> User.email_changeset(attrs)`
			`\|> User.validate_current_password(password)`
			`\|> Ecto.Changeset.apply_action(:update)`
			`end`

			`@doc """`
			`Updates the user email using the given token.`

			`If the token matches, the user email is updated and the token is deleted.`
			`The confirmed_at date is also updated to the current time.`
			`"""`
			`def update_user_email(user, token) do`
			`context = "change:#{user.email}"`

			`with {:ok, query} <- UserToken.verify_change_email_token_query(token, context),`
			`%UserToken{sent_to: email} <- Repo.one(query),`
Wire mail change to LDAP backend 2020-12-22 15:10:38 +01:00			`{:ok, _} <- Repo.transaction(user_email_multi(user, email, context)),`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`:ok <- User.set_email(user, email) do`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`:ok`
			`else`
Start LDAP server with tests, fix various tests and warnings 2021-01-07 08:15:09 +01:00			`_ -> :error`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`end`
			`end`

			`defp user_email_multi(user, email, context) do`
Wire mail change to LDAP backend 2020-12-22 15:10:38 +01:00			`changeset = user`
			`\|> User.email_changeset(%{email: email})`
			`\|> User.confirm_changeset()`
Inefficiently fetch email from LDAP directory 2020-12-22 13:20:54 +01:00
Wire mail change to LDAP backend 2020-12-22 15:10:38 +01:00			`# Delete existing tokens.`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`Ecto.Multi.new()`
Wire mail change to LDAP backend 2020-12-22 15:10:38 +01:00			`\|> Ecto.Multi.update(:user, changeset)`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`\|> Ecto.Multi.delete_all(:tokens, UserToken.user_and_contexts_query(user, [context]))`
			`end`

			`@doc """`
			`Delivers the update email instructions to the given user.`

			`## Examples`

			`iex> deliver_update_email_instructions(user, current_email, &Routes.user_update_email_url(conn, :edit, &1))`
			`{:ok, %{to: ..., body: ...}}`

			`"""`
			`def deliver_update_email_instructions(%User{} = user, current_email, update_email_url_fun)`
			`when is_function(update_email_url_fun, 1) do`
			`{encoded_token, user_token} = UserToken.build_email_token(user, "change:#{current_email}")`

			`Repo.insert!(user_token)`
			`UserNotifier.deliver_update_email_instructions(user, update_email_url_fun.(encoded_token))`
			`end`

			`@doc """`
			Returns an `%Ecto.Changeset{}` for changing the user password.

			`## Examples`

			`iex> change_user_password(user)`
			`%Ecto.Changeset{data: %User{}}`

			`"""`
			`def change_user_password(user, attrs \\ %{}) do`
authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`User.password_changeset(user, attrs)`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`end`

Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`defp set_user_password(user, changeset, new_password) do`
			`case Ecto.Changeset.apply_action(changeset, :update) do`
			`{:ok, _} ->`
			`case User.set_password(user, new_password) do`
			`:ok ->`
			`Repo.delete_all(UserToken.user_and_contexts_query(user, :all))`
			`{:ok, user}`
			`{:error, err} ->`
Wire/test registration and password reset 2021-01-08 14:41:37 +01:00			`msg = {"Unknown error: #{err}", [err: inspect(err)]}`
			`changeset_errors = [`
			`current_password: msg,`
			`password: msg`
			`]`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`updated_changeset = changeset`
			`\|> Map.put(:action, :update)`
			`\|> Map.put(:errors, changeset_errors)`
			`{:error, updated_changeset}`
			`end`
			`err ->`
			`err`
			`end`
			`end`

Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`@doc """`
			`Updates the user password.`

			`## Examples`

			`iex> update_user_password(user, "valid password", %{password: ...})`
			`{:ok, %User{}}`

			`iex> update_user_password(user, "invalid password", %{password: ...})`
			`{:error, %Ecto.Changeset{}}`

			`"""`
authentication: initial LDAP wiring (login, password change) 2020-12-21 15:40:19 +01:00			`def update_user_password(user, current_password, attrs) do`
			`changeset = user`
			`\|> User.password_changeset(attrs)`
			`\|> User.validate_current_password(current_password)`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00
Wire/test registration and password reset 2021-01-08 14:41:37 +01:00			`set_user_password(user, changeset, attrs["password"])`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`end`

			`## Session`

			`@doc """`
			`Generates a session token.`
			`"""`
			`def generate_user_session_token(user) do`
			`{token, user_token} = UserToken.build_session_token(user)`
			`Repo.insert!(user_token)`
			`token`
			`end`

			`@doc """`
			`Gets the user with the given signed token.`
			`"""`
			`def get_user_by_session_token(token) do`
			`{:ok, query} = UserToken.verify_session_token_query(token)`
Refactor user-related LDAP logic 2020-12-22 14:22:34 +01:00			`Repo.one(query) \|> User.maybe_populate_ldap_attributes()`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`end`

			`@doc """`
			`Deletes the signed token with the given context.`
			`"""`
			`def delete_session_token(token) do`
			`Repo.delete_all(UserToken.token_and_context_query(token, "session"))`
			`:ok`
			`end`

			`## Confirmation`

			`@doc """`
			`Delivers the confirmation email instructions to the given user.`

			`## Examples`

			`iex> deliver_user_confirmation_instructions(user, &Routes.user_confirmation_url(conn, :confirm, &1))`
			`{:ok, %{to: ..., body: ...}}`

			`iex> deliver_user_confirmation_instructions(confirmed_user, &Routes.user_confirmation_url(conn, :confirm, &1))`
			`{:error, :already_confirmed}`

			`"""`
			`def deliver_user_confirmation_instructions(%User{} = user, confirmation_url_fun)`
			`when is_function(confirmation_url_fun, 1) do`
			`if user.confirmed_at do`
			`{:error, :already_confirmed}`
			`else`
			`{encoded_token, user_token} = UserToken.build_email_token(user, "confirm")`
			`Repo.insert!(user_token)`
			`UserNotifier.deliver_confirmation_instructions(user, confirmation_url_fun.(encoded_token))`
			`end`
			`end`

			`@doc """`
			`Confirms a user by the given token.`

			`If the token matches, the user account is marked as confirmed`
			`and the token is deleted.`
			`"""`
			`def confirm_user(token) do`
			`with {:ok, query} <- UserToken.verify_email_token_query(token, "confirm"),`
			`%User{} = user <- Repo.one(query),`
			`{:ok, %{user: user}} <- Repo.transaction(confirm_user_multi(user)) do`
			`{:ok, user}`
			`else`
			`_ -> :error`
			`end`
			`end`

			`defp confirm_user_multi(user) do`
			`Ecto.Multi.new()`
			`\|> Ecto.Multi.update(:user, User.confirm_changeset(user))`
			`\|> Ecto.Multi.delete_all(:tokens, UserToken.user_and_contexts_query(user, ["confirm"]))`
			`end`

			`## Reset password`

			`@doc """`
			`Delivers the reset password email to the given user.`

			`## Examples`

			`iex> deliver_user_reset_password_instructions(user, &Routes.user_reset_password_url(conn, :edit, &1))`
			`{:ok, %{to: ..., body: ...}}`

			`"""`
			`def deliver_user_reset_password_instructions(%User{} = user, reset_password_url_fun)`
			`when is_function(reset_password_url_fun, 1) do`
			`{encoded_token, user_token} = UserToken.build_email_token(user, "reset_password")`
			`Repo.insert!(user_token)`
			`UserNotifier.deliver_reset_password_instructions(user, reset_password_url_fun.(encoded_token))`
			`end`

			`@doc """`
			`Gets the user by reset password token.`

			`## Examples`

			`iex> get_user_by_reset_password_token("validtoken")`
			`%User{}`

			`iex> get_user_by_reset_password_token("invalidtoken")`
			`nil`

			`"""`
			`def get_user_by_reset_password_token(token) do`
			`with {:ok, query} <- UserToken.verify_email_token_query(token, "reset_password"),`
			`%User{} = user <- Repo.one(query) do`
			`user`
			`else`
			`_ -> nil`
			`end`
			`end`

			`@doc """`
			`Resets the user password.`

			`## Examples`

			`iex> reset_user_password(user, %{password: "new long password", password_confirmation: "new long password"})`
			`{:ok, %User{}}`

			`iex> reset_user_password(user, %{password: "valid", password_confirmation: "not the same"})`
			`{:error, %Ecto.Changeset{}}`

			`"""`
			`def reset_user_password(user, attrs) do`
Remove exldap dep, dumb ldap user creation, patch tests for LDAP backend 2021-01-05 17:20:35 +01:00			`changeset = user`
			`\|> User.password_changeset(attrs)`

Wire/test registration and password reset 2021-01-08 14:41:37 +01:00			`set_user_password(user, changeset, attrs["password"])`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`end`
Add minimal SSH key management 2020-12-23 12:51:05 +01:00
			`## Keys`

			`def get_key!(id), do: Repo.get!(Key, id)`

			`def get_keys_for(%User{} = user) do`
			`Repo.preload(user, :keys).keys`
			`end`

			`def change_user_key(user, attrs \\ %{}) do`
			`Key.changeset(user, attrs)`
			`end`

			`def add_key(%User{} = user, value, comment \\ nil) do`
			`%Key{}`
			`\|> Key.changeset(%{value: value, comment: comment})`
			`\|> Ecto.Changeset.put_assoc(:user, user)`
			`\|> Repo.insert()`
			`end`

			`def remove_key!(%Key{} = key) do`
			`Repo.delete!(key)`
			`end`
Run `mix phx.gen.auth Accounts User users` Uses phx_gen_auth as a scaffold to build our own logic. 2020-12-15 14:24:14 +01:00			`end`