Notes/src/services/change_password.js

"use strict";

const sql = require('./sql');
const optionService = require('./options');
const myScryptService = require('./my_scrypt');
const utils = require('./utils');
const passwordEncryptionService = require('./password_encryption');

function changePassword(currentPassword, newPassword) {
    if (!passwordEncryptionService.verifyPassword(currentPassword)) {
        return {
            success: false,
            message: "Given current password doesn't match hash"
        };
    }

    sql.transactional(() => {
        const decryptedDataKey = passwordEncryptionService.getDataKey(currentPassword);

        optionService.setOption('passwordVerificationSalt', utils.randomSecureToken(32));
        optionService.setOption('passwordDerivedKeySalt', utils.randomSecureToken(32));

        const newPasswordVerificationKey = utils.toBase64(myScryptService.getVerificationHash(newPassword));

        passwordEncryptionService.setDataKey(newPassword, decryptedDataKey);

        optionService.setOption('passwordVerificationHash', newPasswordVerificationKey);
    });

    return {
        success: true
    };
}

module.exports = {
    changePassword
};
use strict in all JS files 2017-10-21 21:10:33 -04:00			`"use strict";`

backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00			`const sql = require('./sql');`
refactored backend to use new naming convention for modules 2018-04-01 21:27:46 -04:00			`const optionService = require('./options');`
			`const myScryptService = require('./my_scrypt');`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00			`const utils = require('./utils');`
refactored backend to use new naming convention for modules 2018-04-01 21:27:46 -04:00			`const passwordEncryptionService = require('./password_encryption');`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00
syncification 2020-06-20 12:31:38 +02:00			`function changePassword(currentPassword, newPassword) {`
			`if (!passwordEncryptionService.verifyPassword(currentPassword)) {`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00			`return {`
refactoring of password change and preparations for server side encryption 2017-11-09 23:25:23 -05:00			`success: false,`
			`message: "Given current password doesn't match hash"`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00			`};`
			`}`

syncification 2020-06-20 12:31:38 +02:00			`sql.transactional(() => {`
change salts on password change + more robust handling of decryption failures 2020-09-25 20:55:45 +02:00			`const decryptedDataKey = passwordEncryptionService.getDataKey(currentPassword);`

			`optionService.setOption('passwordVerificationSalt', utils.randomSecureToken(32));`
			`optionService.setOption('passwordDerivedKeySalt', utils.randomSecureToken(32));`

			`const newPasswordVerificationKey = utils.toBase64(myScryptService.getVerificationHash(newPassword));`

syncification 2020-06-20 12:31:38 +02:00			`passwordEncryptionService.setDataKey(newPassword, decryptedDataKey);`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00
syncification 2020-06-20 12:31:38 +02:00			`optionService.setOption('passwordVerificationHash', newPasswordVerificationKey);`
better transaction handling with rollback on exception 2017-10-29 18:50:28 -04:00			`});`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00
			`return {`
fix undefined variable 2017-11-22 20:36:07 -05:00			`success: true`
backend ported to node.js (work in progress) 2017-10-14 23:31:44 -04:00			`};`
			`}`

			`module.exports = {`
			`changePassword`
syncification 2020-06-20 12:31:38 +02:00			`};`