module.exports = adduser var url = require("url") function adduser (base, username, password, email, cb) { if (!base) return cb(new Error("Required base URI not supplied")) username = ("" + (username || "")).trim() if (!username) return cb(new Error("No username supplied.")) password = ("" + (password || "")).trim() if (!password) return cb(new Error("No password supplied.")) email = ("" + (email || "")).trim() if (!email) return cb(new Error("No email address supplied.")) if (!email.match(/^[^@]+@[^\.]+\.[^\.]+/)) { return cb(new Error("Please use a real email address.")) } var userobj = { name : username , password : password , email : email , _id : 'org.couchdb.user:'+username , type : "user" , roles : [] , date: new Date().toISOString() } // pluck off any other username/password/token. it needs to be the // same as the user we're becoming now. replace them on error. var c = this.conf.getCredentialsByURI(base) var pre = { username: c.username , password: c.password , email: c.email , token: this.conf.get('_token') } this.conf.del('_token') if (this.couchLogin) { this.couchLogin.token = null } cb = done.call(this, cb, pre) var logObj = Object.keys(userobj).map(function (k) { if (k === 'password') return [k, 'XXXXX'] return [k, userobj[k]] }).reduce(function (s, kv) { s[kv[0]] = kv[1] return s }, {}) this.log.verbose("adduser", "before first PUT", logObj) var uri = url.resolve(base, '/-/user/org.couchdb.user:' + encodeURIComponent(username)) this.request('PUT' , uri , { body : userobj } , function (error, data, json, response) { // if it worked, then we just created a new user, and all is well. // but if we're updating a current record, then it'll 409 first var c = this.conf.getCredentialsByURI(base) if (error && !c.auth) { // must be trying to re-auth on a new machine. // use this info as auth this.conf.setCredentialsByURI(base, { username : username, password : password, email : email }) } if (!error || !response || response.statusCode !== 409) { return cb(error, data, json, response) } this.log.verbose("adduser", "update existing user") return this.request('GET' , uri + '?write=true' , null , function (er, data, json, response) { if (er || data.error) { return cb(er, data, json, response) } Object.keys(data).forEach(function (k) { if (!userobj[k] || k === 'roles') { userobj[k] = data[k] } }) this.log.verbose("adduser", "userobj", logObj) this.request('PUT' , uri + "/-rev/" + userobj._rev , { body : userobj } , cb) }.bind(this)) }.bind(this)) function done (cb, pre) { return function (error, data, json, response) { if (!error && (!response || response.statusCode === 201)) { return cb(error, data, json, response) } // there was some kind of error, re-instate previous auth/token/etc. this.conf.set('_token', pre.token) if (this.couchLogin) { this.couchLogin.token = pre.token if (this.couchLogin.tokenSet) { this.couchLogin.tokenSet(pre.token) } } this.conf.setCredentialsByURI(base, { username : pre.username, password : pre.password, email : pre.email }) this.log.verbose("adduser", "back", [error, data, json]) if (!error) { error = new Error( (response && response.statusCode || "") + " " + "Could not create user\n" + JSON.stringify(data) ) } if (response && (response.statusCode === 401 || response.statusCode === 403)) { this.log.warn("adduser", "Incorrect username or password\n" + "You can reset your account by visiting:\n" + "\n" + " https://npmjs.org/forgot\n") } return cb(error) }.bind(this) } }