refactor(core): Introduce password utility (no-changelog) (#7979)

## Summary Provide details about your pull request and what it adds, fixes, or changes. Photos and videos are recommended. Continue breaking down `UserManagementHelper.ts` ... #### How to test the change: 1. ... ## Issues fixed Include links to Github issue or Community forum post or **Linear ticket**: > Important in order to close automatically and provide context to reviewers ... ## Review / Merge checklist - [ ] PR title and summary are descriptive. **Remember, the title automatically goes into the changelog. Use `(no-changelog)` otherwise.** ([conventions](https://github.com/n8n-io/n8n/blob/master/.github/pull_request_title_conventions.md)) - [ ] [Docs updated](https://github.com/n8n-io/n8n-docs) or follow-up ticket created. - [ ] Tests included. > A bug is not considered fixed, unless a test is added to prevent it from happening again. A feature is not complete without tests. > > *(internal)* You can use Slack commands to trigger [e2e tests](https://www.notion.so/n8n/How-to-use-Test-Instances-d65f49dfc51f441ea44367fb6f67eb0a?pvs=4#a39f9e5ba64a48b58a71d81c837e8227) or [deploy test instance](https://www.notion.so/n8n/How-to-use-Test-Instances-d65f49dfc51f441ea44367fb6f67eb0a?pvs=4#f6a177d32bde4b57ae2da0b8e454bfce) or [deploy early access version on Cloud](https://www.notion.so/n8n/Cloudbot-3dbe779836004972b7057bc989526998?pvs=4#fef2d36ab02247e1a0f65a74f6fb534e).
2023-12-11 18:23:42 +01:00
parent 240d259260
commit c378f60a25
18 changed files with 206 additions and 98 deletions
--- a/packages/cli/src/services/password.utility.ts
+++ b/packages/cli/src/services/password.utility.ts
@@ -0,0 +1,45 @@
+import { BadRequestError } from '@/errors/response-errors/bad-request.error';
+import { Service as Utility } from 'typedi';
+import { compare, genSaltSync, hash } from 'bcryptjs';
+import {
+	MAX_PASSWORD_CHAR_LENGTH as maxLength,
+	MIN_PASSWORD_CHAR_LENGTH as minLength,
+} from '@/constants';
+
+@Utility()
+export class PasswordUtility {
+	async hash(plaintext: string) {
+		const SALT_ROUNDS = 10;
+		const salt = genSaltSync(SALT_ROUNDS);
+
+		return hash(plaintext, salt);
+	}
+
+	async compare(plaintext: string, hashed: string) {
+		return compare(plaintext, hashed);
+	}
+
+	validate(plaintext?: string) {
+		if (!plaintext) throw new BadRequestError('Password is mandatory');
+
+		const errorMessages: string[] = [];
+
+		if (plaintext.length < minLength || plaintext.length > maxLength) {
+			errorMessages.push(`Password must be ${minLength} to ${maxLength} characters long.`);
+		}
+
+		if (!/\d/.test(plaintext)) {
+			errorMessages.push('Password must contain at least 1 number.');
+		}
+
+		if (!/[A-Z]/.test(plaintext)) {
+			errorMessages.push('Password must contain at least 1 uppercase letter.');
+		}
+
+		if (errorMessages.length > 0) {
+			throw new BadRequestError(errorMessages.join(' '));
+		}
+
+		return plaintext;
+	}
+}