ghostfolio/apps/api/src/app/user/user.service.ts

import { ConfigurationService } from '@ghostfolio/api/services/configuration.service';
import { PrismaService } from '@ghostfolio/api/services/prisma.service';
import { locale } from '@ghostfolio/common/config';
import { User as IUser, UserWithSettings } from '@ghostfolio/common/interfaces';
import { getPermissions, permissions } from '@ghostfolio/common/permissions';
import { SubscriptionType } from '@ghostfolio/common/types/subscription.type';
import { Injectable } from '@nestjs/common';
import { Currency, Prisma, Provider, User, ViewMode } from '@prisma/client';
import { isBefore } from 'date-fns';

import { UserSettingsParams } from './interfaces/user-settings-params.interface';

const crypto = require('crypto');

@Injectable()
export class UserService {
  public static DEFAULT_CURRENCY = Currency.USD;

  public constructor(
    private readonly configurationService: ConfigurationService,
    private readonly prismaService: PrismaService
  ) {}

  public async getUser({
    Account,
    alias,
    id,
    permissions,
    Settings,
    subscription
  }: UserWithSettings): Promise<IUser> {
    const access = await this.prismaService.access.findMany({
      include: {
        User: true
      },
      orderBy: { User: { alias: 'asc' } },
      where: { GranteeUser: { id } }
    });

    return {
      alias,
      id,
      permissions,
      subscription,
      access: access.map((accessItem) => {
        return {
          alias: accessItem.User.alias,
          id: accessItem.id
        };
      }),
      accounts: Account,
      settings: {
        locale,
        baseCurrency: Settings?.currency ?? UserService.DEFAULT_CURRENCY,
        viewMode: Settings?.viewMode ?? ViewMode.DEFAULT
      }
    };
  }

  public async user(
    userWhereUniqueInput: Prisma.UserWhereUniqueInput
  ): Promise<UserWithSettings | null> {
    const userFromDatabase = await this.prismaService.user.findUnique({
      include: { Account: true, Settings: true, Subscription: true },
      where: userWhereUniqueInput
    });

    const user: UserWithSettings = userFromDatabase;

    const currentPermissions = getPermissions(userFromDatabase.role);

    if (this.configurationService.get('ENABLE_FEATURE_FEAR_AND_GREED_INDEX')) {
      currentPermissions.push(permissions.accessFearAndGreedIndex);
    }

    user.permissions = currentPermissions;

    if (userFromDatabase?.Settings) {
      if (!userFromDatabase.Settings.currency) {
        // Set default currency if needed
        userFromDatabase.Settings.currency = UserService.DEFAULT_CURRENCY;
      }
    } else if (userFromDatabase) {
      // Set default settings if needed
      userFromDatabase.Settings = {
        currency: UserService.DEFAULT_CURRENCY,
        updatedAt: new Date(),
        userId: userFromDatabase?.id,
        viewMode: ViewMode.DEFAULT
      };
    }

    if (this.configurationService.get('ENABLE_FEATURE_SUBSCRIPTION')) {
      if (userFromDatabase?.Subscription?.length > 0) {
        const latestSubscription = userFromDatabase.Subscription.reduce(
          (a, b) => {
            return new Date(a.expiresAt) > new Date(b.expiresAt) ? a : b;
          }
        );

        user.subscription = {
          expiresAt: latestSubscription.expiresAt,
          type: isBefore(new Date(), latestSubscription.expiresAt)
            ? SubscriptionType.Premium
            : SubscriptionType.Basic
        };
      } else {
        user.subscription = {
          type: SubscriptionType.Basic
        };
      }

      if (user.subscription.type === SubscriptionType.Basic) {
        user.permissions = user.permissions.filter((permission) => {
          return permission !== permissions.updateViewMode;
        });
        user.Settings.viewMode = ViewMode.ZEN;
      }
    }

    return user;
  }

  public async users(params: {
    skip?: number;
    take?: number;
    cursor?: Prisma.UserWhereUniqueInput;
    where?: Prisma.UserWhereInput;
    orderBy?: Prisma.UserOrderByInput;
  }): Promise<User[]> {
    const { skip, take, cursor, where, orderBy } = params;
    return this.prismaService.user.findMany({
      skip,
      take,
      cursor,
      where,
      orderBy
    });
  }

  public createAccessToken(password: string, salt: string): string {
    const hash = crypto.createHmac('sha512', salt);
    hash.update(password);

    return hash.digest('hex');
  }

  public async createUser(data?: Prisma.UserCreateInput): Promise<User> {
    let user = await this.prismaService.user.create({
      data: {
        ...data,
        Account: {
          create: {
            isDefault: true,
            name: 'Default Account'
          }
        }
      }
    });

    if (data.provider === Provider.ANONYMOUS) {
      const accessToken = this.createAccessToken(
        user.id,
        this.getRandomString(10)
      );

      const hashedAccessToken = this.createAccessToken(
        accessToken,
        process.env.ACCESS_TOKEN_SALT
      );

      user = await this.prismaService.user.update({
        data: { accessToken: hashedAccessToken },
        where: { id: user.id }
      });

      return { ...user, accessToken };
    }

    return user;
  }

  public async updateUser(params: {
    where: Prisma.UserWhereUniqueInput;
    data: Prisma.UserUpdateInput;
  }): Promise<User> {
    const { where, data } = params;
    return this.prismaService.user.update({
      data,
      where
    });
  }

  public async deleteUser(where: Prisma.UserWhereUniqueInput): Promise<User> {
    await this.prismaService.access.deleteMany({
      where: { OR: [{ granteeUserId: where.id }, { userId: where.id }] }
    });

    await this.prismaService.account.deleteMany({
      where: { userId: where.id }
    });

    await this.prismaService.analytics.delete({
      where: { userId: where.id }
    });

    await this.prismaService.order.deleteMany({
      where: { userId: where.id }
    });

    try {
      await this.prismaService.settings.delete({
        where: { userId: where.id }
      });
    } catch {}

    return this.prismaService.user.delete({
      where
    });
  }

  public async updateUserSettings({
    currency,
    userId,
    viewMode
  }: UserSettingsParams) {
    await this.prismaService.settings.upsert({
      create: {
        currency,
        User: {
          connect: {
            id: userId
          }
        },
        viewMode
      },
      update: {
        currency,
        viewMode
      },
      where: {
        userId: userId
      }
    });

    return;
  }

  private getRandomString(length: number) {
    const characters = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';
    const result = [];

    for (let i = 0; i < length; i++) {
      result.push(
        characters.charAt(Math.floor(Math.random() * characters.length))
      );
    }
    return result.join('');
  }
}
Feature/improve imports with paths in tsconfig (#32) * Improve imports 2021-04-21 20:27:39 +02:00			`import { ConfigurationService } from '@ghostfolio/api/services/configuration.service';`
			`import { PrismaService } from '@ghostfolio/api/services/prisma.service';`
Introduce @ghostfolio/common lib (#102) 2021-05-16 22:11:14 +02:00			`import { locale } from '@ghostfolio/common/config';`
			`import { User as IUser, UserWithSettings } from '@ghostfolio/common/interfaces';`
			`import { getPermissions, permissions } from '@ghostfolio/common/permissions';`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`import { SubscriptionType } from '@ghostfolio/common/types/subscription.type';`
Initial commit 2021-04-13 21:53:58 +02:00			`import { Injectable } from '@nestjs/common';`
Feature/zen mode (#110) * Start with implementation * Refactor AuthGuard, persist displayMode in user settings * Refactor DisplayMode to ViewMode * Update changelog 2021-05-22 10:04:56 +02:00			`import { Currency, Prisma, Provider, User, ViewMode } from '@prisma/client';`
Feature/setup subscription with stripe (#178) * Set up stripe for subscriptions * Update permissions and add discount * Update changelog 2021-06-21 20:03:36 +02:00			`import { isBefore } from 'date-fns';`

			`import { UserSettingsParams } from './interfaces/user-settings-params.interface';`
Initial commit 2021-04-13 21:53:58 +02:00
			`const crypto = require('crypto');`

			`@Injectable()`
			`export class UserService {`
			`public static DEFAULT_CURRENCY = Currency.USD;`

Simplify initial project setup (#12) * Simplify initial project setup * Added a validation for environment variables * Added support for feature flags to simplify the initial project setup * Add configuration service to test * Optimize data gathering and exchange rate calculation (#14) * Clean up changelog 2021-04-18 19:06:54 +02:00			`public constructor(`
			`private readonly configurationService: ConfigurationService,`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`private readonly prismaService: PrismaService`
Simplify initial project setup (#12) * Simplify initial project setup * Added a validation for environment variables * Added support for feature flags to simplify the initial project setup * Add configuration service to test * Optimize data gathering and exchange rate calculation (#14) * Clean up changelog 2021-04-18 19:06:54 +02:00			`) {}`
Initial commit 2021-04-13 21:53:58 +02:00
			`public async getUser({`
Prepare for multi accounts support: store account for new transactions (#46) 2021-04-25 21:22:35 +02:00			`Account,`
Initial commit 2021-04-13 21:53:58 +02:00			`alias,`
			`id,`
Feature/setup subscription with stripe (#178) * Set up stripe for subscriptions * Update permissions and add discount * Update changelog 2021-06-21 20:03:36 +02:00			`permissions,`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`Settings,`
			`subscription`
Initial commit 2021-04-13 21:53:58 +02:00			`}: UserWithSettings): Promise<IUser> {`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`const access = await this.prismaService.access.findMany({`
Initial commit 2021-04-13 21:53:58 +02:00			`include: {`
			`User: true`
			`},`
			`orderBy: { User: { alias: 'asc' } },`
			`where: { GranteeUser: { id } }`
			`});`

			`return {`
			`alias,`
			`id,`
Feature/setup subscription with stripe (#178) * Set up stripe for subscriptions * Update permissions and add discount * Update changelog 2021-06-21 20:03:36 +02:00			`permissions,`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`subscription,`
Initial commit 2021-04-13 21:53:58 +02:00			`access: access.map((accessItem) => {`
			`return {`
			`alias: accessItem.User.alias,`
			`id: accessItem.id`
			`};`
			`}),`
Prepare for multi accounts support: store account for new transactions (#46) 2021-04-25 21:22:35 +02:00			`accounts: Account,`
Initial commit 2021-04-13 21:53:58 +02:00			`settings: {`
Feature/zen mode (#110) * Start with implementation * Refactor AuthGuard, persist displayMode in user settings * Refactor DisplayMode to ViewMode * Update changelog 2021-05-22 10:04:56 +02:00			`locale,`
			`baseCurrency: Settings?.currency ?? UserService.DEFAULT_CURRENCY,`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`viewMode: Settings?.viewMode ?? ViewMode.DEFAULT`
Initial commit 2021-04-13 21:53:58 +02:00			`}`
			`};`
			`}`

			`public async user(`
			`userWhereUniqueInput: Prisma.UserWhereUniqueInput`
			`): Promise<UserWithSettings \| null> {`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`const userFromDatabase = await this.prismaService.user.findUnique({`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`include: { Account: true, Settings: true, Subscription: true },`
Initial commit 2021-04-13 21:53:58 +02:00			`where: userWhereUniqueInput`
			`});`

Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`const user: UserWithSettings = userFromDatabase;`

Feature/setup subscription with stripe (#178) * Set up stripe for subscriptions * Update permissions and add discount * Update changelog 2021-06-21 20:03:36 +02:00			`const currentPermissions = getPermissions(userFromDatabase.role);`

			`if (this.configurationService.get('ENABLE_FEATURE_FEAR_AND_GREED_INDEX')) {`
			`currentPermissions.push(permissions.accessFearAndGreedIndex);`
			`}`

			`user.permissions = currentPermissions;`

Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`if (userFromDatabase?.Settings) {`
			`if (!userFromDatabase.Settings.currency) {`
Initial commit 2021-04-13 21:53:58 +02:00			`// Set default currency if needed`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`userFromDatabase.Settings.currency = UserService.DEFAULT_CURRENCY;`
Initial commit 2021-04-13 21:53:58 +02:00			`}`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`} else if (userFromDatabase) {`
Initial commit 2021-04-13 21:53:58 +02:00			`// Set default settings if needed`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`userFromDatabase.Settings = {`
Initial commit 2021-04-13 21:53:58 +02:00			`currency: UserService.DEFAULT_CURRENCY,`
			`updatedAt: new Date(),`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`userId: userFromDatabase?.id,`
Feature/zen mode (#110) * Start with implementation * Refactor AuthGuard, persist displayMode in user settings * Refactor DisplayMode to ViewMode * Update changelog 2021-05-22 10:04:56 +02:00			`viewMode: ViewMode.DEFAULT`
Initial commit 2021-04-13 21:53:58 +02:00			`};`
			`}`

Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`if (this.configurationService.get('ENABLE_FEATURE_SUBSCRIPTION')) {`
			`if (userFromDatabase?.Subscription?.length > 0) {`
			`const latestSubscription = userFromDatabase.Subscription.reduce(`
			`(a, b) => {`
			`return new Date(a.expiresAt) > new Date(b.expiresAt) ? a : b;`
			`}`
			`);`

			`user.subscription = {`
			`expiresAt: latestSubscription.expiresAt,`
			`type: isBefore(new Date(), latestSubscription.expiresAt)`
			`? SubscriptionType.Premium`
			`: SubscriptionType.Basic`
			`};`
			`} else {`
			`user.subscription = {`
			`type: SubscriptionType.Basic`
			`};`
			`}`
Feature/setup subscription with stripe (#178) * Set up stripe for subscriptions * Update permissions and add discount * Update changelog 2021-06-21 20:03:36 +02:00
			`if (user.subscription.type === SubscriptionType.Basic) {`
			`user.permissions = user.permissions.filter((permission) => {`
			`return permission !== permissions.updateViewMode;`
			`});`
			`user.Settings.viewMode = ViewMode.ZEN;`
			`}`
Feature/extend pricing page (#130) * Extend pricing page * Feature/align pricing page with subscription model (#135) * Align pricing page with subscription model * Update changelog 2021-06-02 20:15:53 +02:00			`}`

Initial commit 2021-04-13 21:53:58 +02:00			`return user;`
			`}`

			`public async users(params: {`
			`skip?: number;`
			`take?: number;`
			`cursor?: Prisma.UserWhereUniqueInput;`
			`where?: Prisma.UserWhereInput;`
			`orderBy?: Prisma.UserOrderByInput;`
			`}): Promise<User[]> {`
			`const { skip, take, cursor, where, orderBy } = params;`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`return this.prismaService.user.findMany({`
Initial commit 2021-04-13 21:53:58 +02:00			`skip,`
			`take,`
			`cursor,`
			`where,`
			`orderBy`
			`});`
			`}`

			`public createAccessToken(password: string, salt: string): string {`
			`const hash = crypto.createHmac('sha512', salt);`
			`hash.update(password);`

			`return hash.digest('hex');`
			`}`

			`public async createUser(data?: Prisma.UserCreateInput): Promise<User> {`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`let user = await this.prismaService.user.create({`
Prepare for multi accounts support (#42) 2021-04-25 12:07:32 +02:00			`data: {`
			`...data,`
			`Account: {`
			`create: {`
			`isDefault: true,`
			`name: 'Default Account'`
			`}`
			`}`
			`}`
Initial commit 2021-04-13 21:53:58 +02:00			`});`

			`if (data.provider === Provider.ANONYMOUS) {`
			`const accessToken = this.createAccessToken(`
			`user.id,`
			`this.getRandomString(10)`
			`);`

			`const hashedAccessToken = this.createAccessToken(`
			`accessToken,`
			`process.env.ACCESS_TOKEN_SALT`
			`);`

Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`user = await this.prismaService.user.update({`
Initial commit 2021-04-13 21:53:58 +02:00			`data: { accessToken: hashedAccessToken },`
			`where: { id: user.id }`
			`});`

			`return { ...user, accessToken };`
			`}`

			`return user;`
			`}`

			`public async updateUser(params: {`
			`where: Prisma.UserWhereUniqueInput;`
			`data: Prisma.UserUpdateInput;`
			`}): Promise<User> {`
			`const { where, data } = params;`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`return this.prismaService.user.update({`
Initial commit 2021-04-13 21:53:58 +02:00			`data,`
			`where`
			`});`
			`}`

			`public async deleteUser(where: Prisma.UserWhereUniqueInput): Promise<User> {`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`await this.prismaService.access.deleteMany({`
Feature/allow to delete users (#64) * Allow to delete users * Update changelog 2021-05-03 21:23:00 +02:00			`where: { OR: [{ granteeUserId: where.id }, { userId: where.id }] }`
			`});`

Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`await this.prismaService.account.deleteMany({`
Feature/allow to delete users (#64) * Allow to delete users * Update changelog 2021-05-03 21:23:00 +02:00			`where: { userId: where.id }`
			`});`

Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`await this.prismaService.analytics.delete({`
Feature/allow to delete users (#64) * Allow to delete users * Update changelog 2021-05-03 21:23:00 +02:00			`where: { userId: where.id }`
			`});`

Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`await this.prismaService.order.deleteMany({`
Feature/allow to delete users (#64) * Allow to delete users * Update changelog 2021-05-03 21:23:00 +02:00			`where: { userId: where.id }`
			`});`

			`try {`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`await this.prismaService.settings.delete({`
Feature/allow to delete users (#64) * Allow to delete users * Update changelog 2021-05-03 21:23:00 +02:00			`where: { userId: where.id }`
			`});`
			`} catch {}`

Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`return this.prismaService.user.delete({`
Initial commit 2021-04-13 21:53:58 +02:00			`where`
			`});`
			`}`

			`public async updateUserSettings({`
			`currency,`
Feature/zen mode (#110) * Start with implementation * Refactor AuthGuard, persist displayMode in user settings * Refactor DisplayMode to ViewMode * Update changelog 2021-05-22 10:04:56 +02:00			`userId,`
			`viewMode`
Feature/setup subscription with stripe (#178) * Set up stripe for subscriptions * Update permissions and add discount * Update changelog 2021-06-21 20:03:36 +02:00			`}: UserSettingsParams) {`
Harmonize prisma service (#266) 2021-08-07 22:38:07 +02:00			`await this.prismaService.settings.upsert({`
Initial commit 2021-04-13 21:53:58 +02:00			`create: {`
			`currency,`
			`User: {`
			`connect: {`
			`id: userId`
			`}`
Feature/zen mode (#110) * Start with implementation * Refactor AuthGuard, persist displayMode in user settings * Refactor DisplayMode to ViewMode * Update changelog 2021-05-22 10:04:56 +02:00			`},`
			`viewMode`
Initial commit 2021-04-13 21:53:58 +02:00			`},`
			`update: {`
Feature/zen mode (#110) * Start with implementation * Refactor AuthGuard, persist displayMode in user settings * Refactor DisplayMode to ViewMode * Update changelog 2021-05-22 10:04:56 +02:00			`currency,`
			`viewMode`
Initial commit 2021-04-13 21:53:58 +02:00			`},`
			`where: {`
			`userId: userId`
			`}`
			`});`

			`return;`
			`}`
Improve scraper (#28) 2021-04-20 21:52:01 +02:00
			`private getRandomString(length: number) {`
			`const characters = 'ABCDEFGHIJKLMNOPQRSTUVWXYZ0123456789';`
			`const result = [];`

			`for (let i = 0; i < length; i++) {`
			`result.push(`
			`characters.charAt(Math.floor(Math.random() * characters.length))`
			`);`
			`}`
			`return result.join('');`
			`}`
Initial commit 2021-04-13 21:53:58 +02:00			`}`