feat: Invitation welcome links (#122)

Author: nbiton

imports/api/base/associations-helper.js

@@ -1,4 +1,5 @@
 import { Meteor } from 'meteor/meteor'
+import _ from 'lodash'
 
 export const makeAssociationFactory = collectionName => (publisher, associateFn) => function (unitName) {
   const origAdded = this.added
@@ -15,10 +16,11 @@ export const makeAssociationFactory = collectionName => (publisher, associateFn)
   return publisher.call(this, unitName)
 }
 
-export const withUsers = loginNamesGetter => (publishedItem, addingFn) => Meteor.users.find({
-  'bugzillaCreds.login': {$in: loginNamesGetter(publishedItem)}
-}, {
-  fields: {profile: 1, 'bugzillaCreds.login': 1}
-}).forEach(user => {
-  addingFn.call(this, 'users', user._id, user)
-})
+export const withUsers = (loginNamesGetter, customQuery = _.identity, customProj = _.identity) =>
+  (publishedItem, addingFn) => Meteor.users.find(customQuery({
+    'bugzillaCreds.login': {$in: loginNamesGetter(publishedItem)}
+  }, publishedItem), {
+    fields: customProj({profile: 1, 'bugzillaCreds.login': 1}, publishedItem)
+  }).forEach(user => {
+    addingFn.call(this, 'users', user._id, user)
+  })

imports/api/comments.js

@@ -53,9 +53,11 @@ Meteor.methods({
         // Creating the comment
         const createData = callAPI('post', `/rest/bug/${caseId}/comment`, payload, false, true)
         const { token } = currUser.bugzillaCreds
+        console.log('createData.data', createData.data)
 
         // Fetching the full comment object by the returned id from the creation operation
         const commentData = callAPI('get', `/rest/bug/comment/${createData.data.id}`, {token}, false, true)
+        console.log('commentData.data', commentData.data)
 
         // Digging the new comment object out of the response
         const newComment = commentData.data.comments[createData.data.id.toString()]

imports/api/custom-users.js

@@ -1,4 +1,6 @@
 import { Meteor } from 'meteor/meteor'
+import { Accounts } from 'meteor/accounts-base'
+import randToken from 'rand-token'
 
 if (Meteor.isServer) {
   Meteor.publish('users.myBzLogin', function () {
@@ -14,3 +16,66 @@ if (Meteor.isServer) {
     })
   })
 }
+
+Meteor.methods({
+  'users.invitationLogin': function (code) {
+    if (Meteor.user()) throw new Meteor.Error('Not allowed for an existing user')
+
+    // Reusable matcher object for the next mongo queries
+    const codeMatcher = {
+      invitedToCases: {
+        $elemMatch: {
+          accessToken: code
+        }
+      }
+    }
+
+    // Finding the user for this invite code (and checking whether one-click login is still allowed for it)
+    const invitedUser = Meteor.users.findOne(Object.assign({
+      'profile.isLimited': true
+    }, codeMatcher), {
+      fields: Object.assign({
+        emails: 1
+      }, codeMatcher)
+    })
+    if (!invitedUser) throw new Meteor.Error('The code is invalid or login is required first')
+
+    // Keeping track of how many times the user used this invitation to access the system
+    Meteor.users.update({
+      _id: invitedUser._id,
+      'invitedToCases.accessToken': code
+    }, {
+      $inc: {
+        'invitedToCases.$.accessedCount': 1
+      }
+    })
+    console.log(`${invitedUser.emails[0].address} is using an invitation to access the system`)
+
+    // Resetting the password to something new the client-side could use for an automated login
+    const randPass = randToken.generate(12)
+    Accounts.setPassword(invitedUser._id, randPass, {logout: true})
+
+    const invitedByDetails = (() => {
+      const { emails: [{ address: email }], profile: { name } } =
+        Meteor.users.findOne(invitedUser.invitedToCases[0].invitedBy)
+      return {
+        email,
+        name
+      }
+    })()
+    return {
+      email: invitedUser.emails[0].address,
+      pw: randPass,
+      caseId: invitedUser.invitedToCases[0].caseId,
+      invitedByDetails
+    }
+  },
+  'users.updateMyName': function (name) {
+    if (!Meteor.user()) return new Meteor.Error('Must be logged in')
+    if (!name || name.length < 2) return new Meteor.Error('Name should be of minimum 2 characters')
+
+    Meteor.users.update(Meteor.userId(), {
+      $set: {'profile.name': name}
+    })
+  }
+})

imports/api/hooks/on-login.js

@@ -0,0 +1,15 @@
+import { Accounts } from 'meteor/accounts-base'
+import randToken from 'rand-token'
+
+// Enforces one-time usage of random generated passwords for newly invited users
+Accounts.onLogin(info => {
+  if (info.type === 'password') {
+    console.log('info', info)
+    const { user } = info
+    if (user.profile.isLimited) {
+      console.log(`resetting the password for ${user.emails[0].address} after one-time usage by invitation`)
+      const randPass = randToken.generate(12)
+      Accounts.setPassword(user._id, randPass, {logout: false})
+    }
+  }
+})

imports/api/pending-invitations.js

@@ -31,10 +31,16 @@ if (Meteor.isServer) {
     }
 
     return [
-      PendingInvitations.find({caseId}),
-      Meteor.users.find({ // TODO: filter out users whose invitation was already finalized
+      PendingInvitations.find({
+        caseId,
+        done: {$ne: true}
+      }),
+      Meteor.users.find({
         invitedToCases: {
-          $elemMatch: {caseId}
+          $elemMatch: {
+            caseId,
+            done: {$ne: true}
+          }
         }
       }, {
         fields: {
@@ -68,9 +74,24 @@ Meteor.methods({
       }
 
       // Checking only the default_assigned_to field (Should default_qa_contact be added too in the future?)
-      const isUserAlreadyInvolved = unitItem.components.filter(
+      const userAssignedToComponent = unitItem.components.filter(
         ({default_assigned_to: assignedTo}) => assignedTo === email
       ).length > 0
+      const userWasInvitedToRole = (() => {
+        const existingInvolvedUser = Meteor.users.findOne({
+          'emails.address': email,
+          invitedToCases: {
+            $elemMatch: {
+              unitId,
+              // This is only for if the invitation was already 'done' so the user can be added to the case directly,
+              //   and not via email
+              done: true
+            }
+          }
+        })
+        return !!existingInvolvedUser
+      })()
+      const isUserAlreadyInvolved = userAssignedToComponent || userWasInvitedToRole
       if (isUserAlreadyInvolved) {
         throw new Meteor.Error('This email belongs to a user already assigned to a role in this unit')
       }

imports/api/rest/put-pending-invitations.js

@@ -34,14 +34,27 @@ export default (req, res) => {
           }
         }
       })
-      invite(invitee, inviteby)
-      console.log(inviteby, 'has invited', invitee)
+      try {
+        invite(invitee, inviteby)
+      } catch (e) {
+        console.log(`Sending invitation email to ${invitee.emails[0].address} has failed due to`, e)
+      }
+      console.log(inviteby.emails[0].address, 'has invited', invitee.emails[0].address)
 
       // Also store back reference to who invited that user?
 
       // Update invitee user that he/she has been invited to a particular case
-      Meteor.users.update({ 'bugzillaCreds.id': inviteInfo.invitee, 'invitedToCases': { $elemMatch: { caseId: inviteInfo.caseId } } },
-        { $set: { 'invitedToCases.$.done': true } })
+      Meteor.users.update(
+        {
+          'bugzillaCreds.id': inviteInfo.invitee,
+          'invitedToCases': { $elemMatch: { caseId: inviteInfo.caseId } }
+        },
+        {
+          $set: {
+            'invitedToCases.$.done': true
+          }
+        }
+      )
     })
     res.send(200, results)
   } catch (e) {

imports/api/units.js

@@ -3,6 +3,7 @@ import { Mongo } from 'meteor/mongo'
 import publicationFactory from './base/rest-resource-factory'
 import { makeAssociationFactory, withUsers } from './base/associations-helper'
 import { callAPI } from '../util/bugzilla-api'
+import _ from 'lodash'
 
 export const collectionName = 'units'
 
@@ -12,22 +13,35 @@ export const factoryOptions = {
   dataResolver: data => data.products
 }
 
-export const getUnitRoles = unit =>
-  unit.components.reduce((all, {default_assigned_to: assigned, default_qa_contact: qaContact, name}) => {
+export const getUnitRoles = unit => _.uniqBy(
+  unit.components.reduce((all, {default_assigned_to: assigned, name}) => { // Getting names from the unit's components
     if (assigned) {
       all.push({
         login: assigned,
         role: name
       })
     }
-    if (qaContact) {
-      all.push({
-        login: qaContact,
-        role: name
-      })
-    }
     return all
-  }, [])
+  }, []).concat(Meteor.users.find({ // Getting more names of users with a finalized invitation to the unit
+    invitedToCases: {
+      $elemMatch: {
+        unitId: unit.id,
+        done: true
+      }
+    }
+  }, Meteor.isServer ? { // Projection is only done on the server, as some features are not supported in Minimongo
+    fields: {
+      'invitedToCases.$': 1,
+      'bugzillaCreds.login': 1
+    }
+  } : {}).fetch()
+  // Mapping the users to the same interface as the first half of the array
+    .map(({ invitedToCases: [{ role }], bugzillaCreds: { login } }) => ({
+      login,
+      role
+    }))),
+  ({login}) => login // Filtering out duplicates in case a user shows up in a component and has a finalized invitation
+)
 
 if (Meteor.isServer) {
   const factory = publicationFactory(factoryOptions)
@@ -40,7 +54,19 @@ if (Meteor.isServer) {
         params: {names: unitName}
       })
     }),
-    withUsers(unitItem => getUnitRoles(unitItem).map(u => u.login))
+    withUsers(
+      unitItem => getUnitRoles(unitItem).map(u => u.login),
+      (query, unitItem) => Object.assign({
+        invitedToCases: {
+          $elemMatch: {
+            unitId: unitItem.id
+          }
+        }
+      }, query),
+      (projection, unitItem) => Object.assign({
+        'invitedToCases.$': 1
+      }, projection)
+    )
   ))
 
   Meteor.publish(`${collectionName}.forReporting`, function () {
@@ -51,7 +77,7 @@ if (Meteor.isServer) {
         const listResponse = callAPI('get', '/rest/product_enterable', {token}, false, true)
         ids = listResponse.data.ids
       } catch (e) {
-        console.error('API error encountered', 'unitsForReporting', this.userId)
+        console.error('API error encountered', `${collectionName}.forReporting`, this.userId)
         this.ready()
         this.error(new Meteor.Error({message: 'REST API error', origError: e}))
       }

imports/state/epics/create-case.js

@@ -13,6 +13,7 @@ import { collectionName } from '../../api/cases'
 
 import 'rxjs/add/operator/take'
 import 'rxjs/add/operator/mergeMap'
+import 'rxjs/add/operator/filter'
 
 export const createCase = action$ => action$
   .ofType(CREATE_CASE)

imports/state/epics/fetch-invitation-credentials.js

@@ -0,0 +1,57 @@
+import { Meteor } from 'meteor/meteor'
+import { Subject } from 'rxjs/Subject'
+import { merge } from 'rxjs/observable/merge'
+import { of } from 'rxjs/observable/of'
+import { push } from 'react-router-redux'
+import {
+  FETCH_INVITATION_CREDENTIALS,
+  LOADING_INVITATION_CREDENTIALS,
+  ERROR_INVITATION_CREDENTIALS,
+  LOGIN_INVITATION_CREDENTIALS,
+  SUCCESS_INVITATION_CREDENTIALS
+} from '../../ui/invitation-login/invitation-login.actions'
+
+import 'rxjs/add/operator/filter'
+import 'rxjs/add/operator/switchMap'
+
+export const fetchInvitationCredentials = action$ => action$
+  .ofType(FETCH_INVITATION_CREDENTIALS)
+  .filter(() => !Meteor.userId()) // fail safe, but shouldn't happen
+  .switchMap(({code}) => {
+    const meteorResult$ = new Subject()
+    Meteor.call('users.invitationLogin', code, (error, {email, pw, caseId, invitedByDetails}) => {
+      if (error) {
+        meteorResult$.next({
+          type: ERROR_INVITATION_CREDENTIALS,
+          error
+        })
+        meteorResult$.complete()
+        return
+      }
+      meteorResult$.next({
+        type: LOGIN_INVITATION_CREDENTIALS
+      })
+      Meteor.loginWithPassword(email, pw, error => {
+        if (error) {
+          meteorResult$.next({
+            type: ERROR_INVITATION_CREDENTIALS,
+            error
+          })
+        } else {
+          meteorResult$.next({
+            type: SUCCESS_INVITATION_CREDENTIALS,
+            showWelcomeMessage: !Meteor.user().profile.name,
+            invitedByDetails
+          })
+          meteorResult$.next(push(`/case/${caseId}`))
+        }
+        meteorResult$.complete()
+      })
+    })
+    return merge(
+      of({
+        type: LOADING_INVITATION_CREDENTIALS
+      }),
+      meteorResult$
+    )
+  })

imports/state/epics/update-invited-user-name.js

@@ -0,0 +1,14 @@
+import { Meteor } from 'meteor/meteor'
+import { of } from 'rxjs/observable/of'
+import { UPDATE_INVITED_USER_NAME, clearWelcomeMessage } from '../../ui/case/case.actions'
+
+import 'rxjs/add/operator/filter'
+import 'rxjs/add/operator/mergeMap'
+
+export const updateUserName = action$ =>
+  action$.ofType(UPDATE_INVITED_USER_NAME)
+    .filter(() => !!Meteor.userId()) // fail safe, but shouldn't happen
+    .mergeMap(({name}) => {
+      Meteor.call('users.updateMyName', name)
+      return of(clearWelcomeMessage())
+    })