monkeeShark/src/server/api/endpoints/i/2fa/unregister.ts

35 lines
581 B
TypeScript
Raw Normal View History

2017-12-09 17:45:32 +00:00
import $ from 'cafy';
import * as bcrypt from 'bcryptjs';
2018-11-02 04:47:44 +00:00
import User from '../../../../../models/user';
import define from '../../../define';
2017-12-09 17:45:32 +00:00
2018-07-16 19:36:44 +00:00
export const meta = {
requireCredential: true,
2018-11-02 03:49:08 +00:00
secure: true,
params: {
password: {
validator: $.str
}
}
2018-07-16 19:36:44 +00:00
};
export default define(meta, async (ps, user) => {
2017-12-09 17:45:32 +00:00
// Compare password
2018-11-02 03:49:08 +00:00
const same = await bcrypt.compare(ps.password, user.password);
2017-12-09 17:45:32 +00:00
if (!same) {
throw new Error('incorrect password');
2017-12-09 17:45:32 +00:00
}
await User.update(user._id, {
$set: {
2018-04-07 18:58:11 +00:00
'twoFactorSecret': null,
'twoFactorEnabled': false
2017-12-09 17:45:32 +00:00
}
});
return;
});