Newer
Older
/* This Source Code Form is subject to the terms of the Mozilla Public
* License, v. 2.0. If a copy of the MPL was not distributed with this
* file, You can obtain one at http://mozilla.org/MPL/2.0/. */
Lloyd Hilaiel
committed
/* This is a mysql driver for the browserid server. It maps the data
* storage requirements of browserid onto a relational schema. This
* driver is intended to be fast and scalable.
*/
Lloyd Hilaiel
committed
/*
* The Schema:
* +--- email -------+
* +--- user --------------------+ |*int id |
* |*int id |<-----|*int user |
* | string passwd | |*string address |
* | timestamp lastPasswordReset | | enum type |
* +-----------------------------+ | bool verified |
* +-----------------+
Lloyd Hilaiel
committed
*
*
* +------ staged ----------+
* |*string secret |
* | bool new_acct |
* | int existing_user |
* |*string email |
Shane Tomlinson
committed
* |*string passwd |
* | timestamp ts |
* +------------------------+
Lloyd Hilaiel
committed
*/
Zachary Carter
committed
/*global dne:true */
Lloyd Hilaiel
committed
const
mysql = require('./mysql_wrapper.js'),
secrets = require('../secrets.js'),
logger = require('../logging.js').logger,
conf = require('../configuration.js');
Lloyd Hilaiel
committed
Lloyd Hilaiel
committed
var client = undefined;
// for testing! when 'STALL_MYSQL_WHEN_PRESENT' is defined in the environment,
// it causes the driver to simulate stalling whent said file is present
if (conf.get('env') === 'test_mysql' && process.env['STALL_MYSQL_WHEN_PRESENT']) {
logger.debug('database driver will be stalled when file is present: ' +
process.env['STALL_MYSQL_WHEN_PRESENT']);
const fs = require('fs');
fs.watchFile(
process.env['STALL_MYSQL_WHEN_PRESENT'],
{ persistent: false, interval: 1 },
function (curr, prev) {
// stall the database driver when specified file is present
fs.stat(process.env['STALL_MYSQL_WHEN_PRESENT'], function(err, stats) {
if (client) {
var stall = !(err && err.code === 'ENOENT');
logger.debug("database driver is " + (stall ? "stalled" : "unblocked"));
client.stall(stall);
}
});
});
}
// If you change these schemas, please notify <services-ops@mozilla.com>
"CREATE TABLE IF NOT EXISTS user (" +
"id BIGINT AUTO_INCREMENT PRIMARY KEY," +
"passwd CHAR(64)," +
"lastPasswordReset TIMESTAMP DEFAULT 0 NOT NULL" +
") ENGINE=InnoDB;",
"CREATE TABLE IF NOT EXISTS email (" +
"id BIGINT AUTO_INCREMENT PRIMARY KEY," +
"user BIGINT NOT NULL," +
Lloyd Hilaiel
committed
"address VARCHAR(255) UNIQUE NOT NULL," +
Lloyd Hilaiel
committed
"type ENUM('secondary', 'primary') DEFAULT 'secondary' NOT NULL," +
"verified BOOLEAN DEFAULT TRUE NOT NULL, " +
"FOREIGN KEY user_fkey (user) REFERENCES user(id)" +
") ENGINE=InnoDB;",
"CREATE TABLE IF NOT EXISTS staged (" +
"id BIGINT AUTO_INCREMENT PRIMARY KEY," +
"secret CHAR(48) UNIQUE NOT NULL," +
"new_acct BOOL NOT NULL," +
"existing_user BIGINT," +
"email VARCHAR(255) UNIQUE NOT NULL," +
Shane Tomlinson
committed
"passwd CHAR(64)," +
"ts TIMESTAMP DEFAULT CURRENT_TIMESTAMP NOT NULL," +
"FOREIGN KEY existing_user_fkey (existing_user) REFERENCES user(id)" +
function now() { return Math.floor(new Date().getTime() / 1000); }
// log an unexpected database error
function logUnexpectedError(detail) {
// first, get line number of callee
var where;
try { dne; } catch (e) { where = e.stack.split('\n')[2].trim(); };
// now log it!
logger.warn("unexpected database failure: " + detail + " -- " + where);
}
Lloyd Hilaiel
committed
// open & create the mysql database
exports.open = function(cfg, cb) {
Lloyd Hilaiel
committed
if (client) throw "database is already open!";
Lloyd Hilaiel
committed
// mysql config requires
Lloyd Hilaiel
committed
var options = {
Lloyd Hilaiel
committed
host: '127.0.0.1',
port: "3306",
Lloyd Hilaiel
committed
user: undefined,
password: undefined,
Lloyd Hilaiel
committed
unit_test: false
Lloyd Hilaiel
committed
};
Lloyd Hilaiel
committed
Object.keys(options).forEach(function(param) {
options[param] = (cfg[param] !== undefined ? cfg[param] : options[param]);
if (options[param] === undefined) delete options[param];
Lloyd Hilaiel
committed
});
Lloyd Hilaiel
committed
// let's figure out the database name
var database = cfg.name;
Lloyd Hilaiel
committed
if (!database) database = "browserid";
// create the client
function doConnect() {
Lloyd Hilaiel
committed
logger.debug("connecting to database: " + database);
options.database = database;
client = mysql.createClient(options);
client.ping(function(err) {
logger.debug("connection to database " + (err ? ("fails: " + err) : "established"));
cb(err);
});
}
// now create the databse
if (cfg.create_schema) {
logger.debug("creating database and tables if required");
var createClient = mysql.createClient(options);
createClient.query("CREATE DATABASE IF NOT EXISTS " + database, function(err) {
if (err) {
logUnexpectedError(err);
cb(err);
return;
}
createClient.useDatabase(database, function(err) {
Pete Fritchman
committed
if (err) {
logUnexpectedError(err);
cb(err);
return;
}
Pete Fritchman
committed
// now create tables
function createNextTable(i) {
if (i < schemas.length) {
createClient.query(schemas[i], function(err) {
Pete Fritchman
committed
if (err) {
logUnexpectedError(err);
cb(err);
} else {
createNextTable(i+1);
}
});
} else {
createClient.end(function(err) {
if (err) {
logUnexpectedError(err);
cb(err);
} else {
doConnect();
}
});
Pete Fritchman
committed
}
}
Pete Fritchman
committed
createNextTable(0);
});
});
} else {
doConnect();
}
Lloyd Hilaiel
committed
exports.close = function(cb) {
Lloyd Hilaiel
committed
client.end(function(err) {
client = undefined;
if (err) logUnexpectedError(err);
if (cb) cb(err === undefined ? null : err);
Lloyd Hilaiel
committed
});
};
exports.closeAndRemove = function(cb) {
var db_to_remove = client.database;
// don't let this happen if the name of the database is 'browserid',
// as a sanity check
if (db_to_remove === 'browserid') {
throw "dropping a database named 'browserid' is not allowed";
Lloyd Hilaiel
committed
}
Lloyd Hilaiel
committed
client.query("DROP DATABASE " + db_to_remove, function(err) {
exports.close(cb);
});
exports.emailKnown = function(email, cb) {
client.query(
"SELECT COUNT(*) as N FROM email WHERE address = ?", [ email ],
cb(err, rows && rows.length > 0 && rows[0].N > 0);
};
exports.userKnown = function(uid, cb) {
client.query(
"SELECT COUNT(*) as N FROM user WHERE id = ?", [ uid ],
function(err, rows) {
cb(err, rows && rows.length > 0 && rows[0].N > 0);
}
);
};
exports.emailType = function(email, cb) {
client.query(
"SELECT type FROM email WHERE address = ?", [ email ],
function(err, rows) {
cb(err, (rows && rows.length > 0) ? rows[0].type : undefined);
}
);
}
exports.emailIsVerified = function(email, cb) {
client.query(
"SELECT verified FROM email WHERE address = ?", [ email ],
function(err, rows) {
if (rows && rows.length > 0) cb(err, !!rows[0].verified);
else cb('no such email');
}
);
};
exports.isStaged = function(email, cb) {
client.query(
"SELECT COUNT(*) as N FROM staged WHERE email = ?", [ email ],
cb(err, rows && rows.length > 0 && rows[0].N > 0);
Lloyd Hilaiel
committed
exports.lastStaged = function(email, cb) {
client.query(
"SELECT UNIX_TIMESTAMP(ts) as ts FROM staged WHERE email = ?", [ email ],
function(err, rows) {
if (err) cb(err);
else if (!rows || rows.length === 0) cb(null);
else cb(null, new Date(rows[0].ts * 1000));
Lloyd Hilaiel
committed
}
);
Lloyd Hilaiel
committed
Shane Tomlinson
committed
exports.stageUser = function(email, hash, cb) {
secrets.generate(48, function(secret) {
// overwrite previously staged users
Shane Tomlinson
committed
client.query('INSERT INTO staged (secret, new_acct, email, passwd) VALUES(?,TRUE,?,?) ' +
'ON DUPLICATE KEY UPDATE secret=VALUES(secret), existing_user=NULL, new_acct=TRUE, ts=NOW()',
Shane Tomlinson
committed
[ secret, email, hash ],
cb(err, err ? undefined : secret);
Lloyd Hilaiel
committed
exports.haveVerificationSecret = function(secret, cb) {
client.query(
"SELECT count(*) as n FROM staged WHERE secret = ?", [ secret ],
function(err, rows) {
cb(err, rows && rows.length === 1 && rows[0].n === 1);
Lloyd Hilaiel
committed
});
};
exports.emailForVerificationSecret = function(secret, cb) {
Lloyd Hilaiel
committed
client.query(
Lloyd Hilaiel
committed
"SELECT email, existing_user, passwd FROM staged WHERE secret = ?", [ secret ],
Lloyd Hilaiel
committed
function(err, rows) {
if (err) return cb("database unavailable");
// if the record was not found, fail out
if (!rows || rows.length != 1) return cb("no such secret");
Lloyd Hilaiel
committed
cb(null, rows[0].email, rows[0].existing_user, rows[0].passwd);
Lloyd Hilaiel
committed
});
};
exports.authForVerificationSecret = function(secret, cb) {
client.query(
"SELECT existing_user, passwd FROM staged WHERE secret = ?", [ secret ],
Lloyd Hilaiel
committed
function(err, rows) {
if (err) return cb("database unavailable");
Lloyd Hilaiel
committed
// if the record was not found, fail out
if (!rows || rows.length != 1) return cb("no such secret");
var o = rows[0];
Lloyd Hilaiel
committed
// if there is a hashed passwd in the result, we're done
if (o.passwd) return cb(null, o.passwd, o.existing_user);
Lloyd Hilaiel
committed
// otherwise, let's get the passwd from the user record
Lloyd Hilaiel
committed
if (!o.existing_user) return cb("no password for user");
Lloyd Hilaiel
committed
exports.checkAuth(o.existing_user, function(err, hash) {
cb(err, hash, o.existing_user);
});
Lloyd Hilaiel
committed
});
};
Lloyd Hilaiel
committed
exports.verificationSecretForEmail = function(email, cb) {
client.query(
"SELECT secret FROM staged WHERE email = ?", [ email ],
function(err, rows) {
cb(err, (rows && rows.length > 0) ? rows[0].secret : undefined);
Lloyd Hilaiel
committed
});
};
function addEmailToUser(userID, email, type, cb) {
// issue #170 - delete any old records with the same
// email address. this is necessary because
// gotVerificationSecret is invoked both for
// forgotten password flows and for new user signups.
client.query(
"DELETE FROM email WHERE address = ?",
[ email ],
function(err, info) {
if (err) return cb(err);
else {
client.query(
"INSERT INTO email(user, address, type) VALUES(?, ?, ?)",
[ userID, email, type ],
function(err, info) {
if (err) logUnexpectedError(err);
cb(err, email, userID);
});
}
});
}
Lloyd Hilaiel
committed
function getAndDeleteRowForSecret(secret, cb) {
client.query(
"SELECT * FROM staged WHERE secret = ?", [ secret ],
function(err, rows) {
if (err) {
logUnexpectedError(err);
cb(err);
} else if (rows.length === 0) {
cb("unknown secret");
} else {
// delete the record
client.query("DELETE LOW_PRIORITY FROM staged WHERE secret = ?", [ secret ]);
Lloyd Hilaiel
committed
cb(null, rows[0]);
}
});
}
Lloyd Hilaiel
committed
exports.completeCreateUser = function(secret, cb) {
getAndDeleteRowForSecret(secret, function(err, o) {
if (err) return cb(err);
if (!o.new_acct) return cb("this verification link is not for a new account");
// we're creating a new account, add appropriate entries into user and email tables.
client.query(
"INSERT INTO user(passwd, lastPasswordReset) VALUES(?,FROM_UNIXTIME(?))",
[ o.passwd, now() ],
Lloyd Hilaiel
committed
function(err, info) {
if (err) return cb(err);
addEmailToUser(info.insertId, o.email, 'secondary', cb);
});
});
};
Lloyd Hilaiel
committed
Lloyd Hilaiel
committed
// either a email re-verification, or an email addition - we treat these things
// the same
exports.completeConfirmEmail = function(secret, cb) {
Lloyd Hilaiel
committed
getAndDeleteRowForSecret(secret, function(err, o) {
if (err) return cb(err);
if (o.new_acct) return cb("this verification link is not for an email addition");
// ensure the expected existing_user field is populated, which it must always be when
// new_acct is false
if (typeof o.existing_user !== 'number') {
return cb("data inconsistency, no numeric existing user associated with staged email address");
Lloyd Hilaiel
committed
Lloyd Hilaiel
committed
// we're adding or reverifying an email address to an existing user account. add appropriate
// entries into email table.
Lloyd Hilaiel
committed
if (o.passwd) {
exports.updatePassword(o.existing_user, o.passwd, false, function(err) {
Lloyd Hilaiel
committed
401
402
403
404
405
406
407
408
409
410
411
412
413
414
415
416
417
418
419
420
421
422
423
424
425
426
427
428
429
430
431
432
433
434
435
436
if (err) return cb('could not set user\'s password');
addEmailToUser(o.existing_user, o.email, 'secondary', cb);
});
} else {
addEmailToUser(o.existing_user, o.email, 'secondary', cb);
}
});
};
exports.completePasswordReset = function(secret, cb) {
getAndDeleteRowForSecret(secret, function(err, o) {
if (err) return cb(err);
if (o.new_acct || !o.passwd || !o.existing_user) {
return cb("this verification link is not for a password reset");
}
// verify that the email still exists in the database, and the the user with whom it is
// associated is the same as the user in the database
exports.emailToUID(o.email, function(err, uid) {
if (err) return cb(err);
// if for some reason the email is associated with a different user now than when
// the action was initiated, error out.
if (uid !== o.existing_user) {
return cb("cannot update password, data inconsistency");
}
// flip the verification bit on all emails for the user other than the one just verified
client.query(
'UPDATE email SET verified = FALSE WHERE user = ? AND type = ? AND address != ?',
[ uid, 'secondary', o.email ],
function(err) {
if (err) return cb(err);
// update the password!
exports.updatePassword(uid, o.passwd, true, function(err) {
Lloyd Hilaiel
committed
});
});
});
};
exports.addPrimaryEmailToAccount = function(uid, emailToAdd, cb) {
// we're adding an email address to an existing user account. add appropriate entries into
// email table
addEmailToUser(uid, emailToAdd, 'primary', cb);
exports.createUserWithPrimaryEmail = function(email, cb) {
// create a new user acct with no password
client.query(
"INSERT INTO user(lastPasswordReset) VALUES(FROM_UNIXTIME(?))",
[ now() ],
function(err, info) {
if (err) return cb(err);
Lloyd Hilaiel
committed
var uid = info.insertId;
client.query(
"INSERT INTO email(user, address, type) VALUES(?, ?, ?)",
Lloyd Hilaiel
committed
[ uid, email, 'primary' ],
function(err, info) {
cb(err, uid);
});
});
};
exports.emailsBelongToSameAccount = function(lhs, rhs, cb) {
client.query(
'SELECT COUNT(*) AS n FROM email WHERE address = ? AND user = ( SELECT user FROM email WHERE address = ? );',
[ lhs, rhs ],
function (err, rows) {
cb(err, rows && rows.length === 1 && rows[0].n === 1);
});
}
exports.userOwnsEmail = function(uid, email, cb) {
client.query(
'SELECT COUNT(*) AS n FROM email WHERE address = ? AND user = ?',
[ email, uid ],
function (err, rows) {
cb(err, rows && rows.length === 1 && rows[0].n === 1);
});
}
Shane Tomlinson
committed
exports.stageEmail = function(existing_user, new_email, hash, cb) {
secrets.generate(48, function(secret) {
// overwrite previously staged users
Shane Tomlinson
committed
client.query('INSERT INTO staged (secret, new_acct, existing_user, email, passwd) VALUES(?,FALSE,?,?,?) ' +
'ON DUPLICATE KEY UPDATE secret=VALUES(secret), existing_user=VALUES(existing_user), new_acct=FALSE, ts=NOW()',
Shane Tomlinson
committed
[ secret, existing_user, new_email, hash ],
cb(err, err ? undefined : secret);
exports.emailToUID = function(email, cb) {
client.query(
'SELECT user FROM email WHERE address = ?',
[ email ],
function (err, rows) {
cb(err, (rows && rows.length == 1) ? rows[0].user : undefined);
});
};
exports.checkAuth = function(uid, cb) {
client.query(
'SELECT passwd FROM user WHERE id = ?',
[ uid ],
function (err, rows) {
cb(err, (rows && rows.length == 1) ? rows[0].passwd : undefined);
});
}
exports.lastPasswordReset = function(uid, cb) {
Lloyd Hilaiel
committed
client.query(
'SELECT UNIX_TIMESTAMP(lastPasswordReset) AS lastPasswordReset FROM user WHERE id = ?',
[ uid ],
function (err, rows) {
cb(err, (rows && rows.length == 1) ? rows[0].lastPasswordReset : undefined);
});
}
exports.updatePassword = function(uid, hash, invalidateSessions, cb) {
var query = invalidateSessions ?
'UPDATE user SET passwd = ?, lastPasswordReset = FROM_UNIXTIME(?) WHERE id = ?' :
'UPDATE user SET passwd = ? WHERE id = ?';
var args = invalidateSessions ? [ hash, now(), uid ] : [ hash, uid ];
client.query(query, args,
Lloyd Hilaiel
committed
function (err, rows) {
if (!err && (!rows || rows.affectedRows !== 1)) {
Zachary Carter
committed
err = "no record with id " + uid;
}
cb(err);
Lloyd Hilaiel
committed
});
}
Lloyd Hilaiel
committed
* list the user's emails.
Lloyd Hilaiel
committed
* returns an object keyed by email address with properties for each email.
exports.listEmails = function(uid, cb) {
client.query(
'SELECT address, type, verified FROM email WHERE user = ?',
[ uid ],
function (err, rows) {
if (err) cb(err);
else {
var emails = {};
for (var i = 0; i < rows.length; i++) {
var o = { type: rows[i].type };
if (o.type === 'secondary') {
Lloyd Hilaiel
committed
o.verified = rows[i].verified ? true : false;
}
emails[rows[i].address] = o;
}
cb(null,emails);
}
});
};
exports.removeEmail = function(authenticated_user, email, cb) {
exports.userOwnsEmail(authenticated_user, email, function(err, ok) {
if (err) return cb(err);
logger.warn(authenticated_user + ' attempted to delete an email that doesn\'t belong to her: ' + email);
cb("authenticated user doesn't have permission to remove specified email " + email);
return;
}
client.query(
'DELETE FROM email WHERE address = ?',
function(err, info) {
cb(err);
Lloyd Hilaiel
committed
};
exports.cancelAccount = function(uid, cb) {
client.query("DELETE LOW_PRIORITY FROM email WHERE user = ?", [ uid ], function(err) {
if (err) return cb(err);
client.query("DELETE LOW_PRIORITY FROM user WHERE id = ?", [ uid ], cb);
});
Lloyd Hilaiel
committed
};
exports.addTestUser = function(email, hash, cb) {
client.query(
"INSERT INTO user(passwd, lastPasswordReset) VALUES(FROM_UNIXTIME(?))",
[ hash, now() ],
Lloyd Hilaiel
committed
function(err, info) {
if (err) return cb(err);
Lloyd Hilaiel
committed
client.query(
"INSERT INTO email(user, address) VALUES(?, ?)",
[ info.insertId, email ],
function(err, info) {
if (err) logUnexpectedError(err);
cb(err, err ? null : email);
Lloyd Hilaiel
committed
});
});
};
Lloyd Hilaiel
committed
Lloyd Hilaiel
committed
client.ping(function(err) {
cb(err);
});
};