Merge pull request #112 from Open-Webtoon-Reader/staging

Author: Xen0Xys

bun.lock

@@ -13,43 +13,43 @@
     },
     "dependencies": {
         "@fastify/helmet": "^13.0.1",
-        "@fastify/static": "^8.1.1",
-        "@nestjs/common": "^11.0.15",
+        "@fastify/static": "^8.2.0",
+        "@nestjs/common": "^11.1.3",
         "@nestjs/config": "^4.0.2",
-        "@nestjs/cli": "^11.0.6",
-        "@nestjs/core": "^11.0.15",
+        "@nestjs/cli": "^11.0.7",
+        "@nestjs/core": "^11.1.3",
         "@nestjs/jwt": "^11.0.0",
         "@nestjs/passport": "^11.0.5",
-        "@nestjs/platform-fastify": "^11.0.15",
-        "@nestjs/platform-socket.io": "^11.0.15",
-        "@nestjs/schedule": "^5.0.1",
-        "@nestjs/swagger": "^11.1.1",
+        "@nestjs/platform-fastify": "^11.1.3",
+        "@nestjs/platform-socket.io": "^11.1.3",
+        "@nestjs/schedule": "^6.0.0",
+        "@nestjs/swagger": "^11.2.0",
         "@nestjs/throttler": "^6.4.0",
-        "@nestjs/websockets": "^11.0.15",
-        "@prisma/client": "6.6.0",
-        "axios": "^1.8.4",
+        "@nestjs/websockets": "^11.1.3",
+        "@prisma/client": "6.9.0",
+        "axios": "^1.9.0",
         "class-transformer": "^0.5.1",
-        "class-validator": "^0.14.1",
-        "fastify": "5.2.2",
-        "jsdom": "^26.0.0",
+        "class-validator": "^0.14.2",
+        "fastify": "5.3.3",
+        "jsdom": "^26.1.0",
         "jszip": "^3.10.1",
         "minio": "^8.0.5",
         "passport-jwt": "^4.0.1",
-        "sharp": "^0.34.1",
+        "sharp": "^0.34.2",
         "socket.io": "^4.8.1",
         "swagger-themes": "^1.4.3",
         "uuid": "^11.1.0"
     },
     "devDependencies": {
         "@nestjs/schematics": "^11.0.5",
-        "@stylistic/eslint-plugin": "^4.2.0",
-        "@types/bun": "^1.2.9",
+        "@stylistic/eslint-plugin": "^4.4.1",
+        "@types/bun": "^1.2.15",
         "@types/jsdom": "^21.1.7",
-        "@types/node": "^22.14.0",
+        "@types/node": "^22.15.30",
         "@types/passport-jwt": "^4.0.1",
-        "@typescript-eslint/parser": "^8.29.1",
-        "eslint": "^9.24.0",
-        "prisma": "^6.6.0",
+        "@typescript-eslint/parser": "^8.33.1",
+        "eslint": "^9.28.0",
+        "prisma": "^6.9.0",
         "source-map-support": "^0.5.21",
         "typescript": "^5.8.3"
     },

package.json

@@ -35,11 +35,16 @@ export class StorageService{
         const fileName: string = this.getFileName(sum);
         this.logger.verbose(`Uploading file ${fileName}`);
         let file: BunFile | S3File;
-        if(this.s3Client)
+        if(this.s3Client){
             file = this.s3Client.file(fileName);
-        else
+            await file.write(data, {
+                // @ts-ignore
+                storageClass: process.env.S3_STORAGE_CLASS || "STANDARD",
+            });
+        }else{
             file = Bun.file(fileName);
-        await file.write(data);
+            await file.write(data);
+        }
         return sum;
     }
 

src/modules/storage/storage.service.ts

@@ -0,0 +1,12 @@
+import {IsNotEmpty, IsOptional, IsString, Length} from "class-validator";
+
+export class ChangePasswordDto{
+    @IsString()
+    @IsOptional()
+    oldPassword?: string;
+
+    @IsNotEmpty()
+    @IsString()
+    @Length(8, 255)
+    newPassword: string;
+}

src/modules/users/models/dto/change-password.dto.ts

@@ -0,0 +1,20 @@
+import {IsAlphanumeric, IsEmail, IsNotEmpty, IsString, Length} from "class-validator";
+
+export class CreateUserDto{
+    @IsString()
+    @IsNotEmpty()
+    @Length(3, 30)
+    @IsAlphanumeric()
+    username: string;
+
+    @IsString()
+    @IsNotEmpty()
+    @IsEmail()
+    @Length(8, 255)
+    email: string;
+
+    @IsString()
+    @IsNotEmpty()
+    @Length(8, 255)
+    password: string;
+}

src/modules/users/models/dto/create-user.dto.ts

@@ -1,4 +1,4 @@
-import {Body, Controller, Delete, Get, HttpCode, HttpStatus, Param, Post, UseGuards} from "@nestjs/common";
+import {Body, Controller, Delete, Get, HttpCode, HttpStatus, Param, Patch, Post, UseGuards} from "@nestjs/common";
 import {UserEntity} from "./models/entities/user.entity";
 import {LoginPayload} from "./models/payloads/login.payload";
 import {User} from "./decorators/user.decorator";
@@ -7,6 +7,7 @@ import {ApiBearerAuth} from "@nestjs/swagger";
 import {UsersService} from "./users.service";
 import {AuthGuard} from "@nestjs/passport";
 import {EpisodeProgressionDto} from "./models/dto/episode-progression.dto";
+import {ChangePasswordDto} from "./models/dto/change-password.dto";
 
 @Controller("user")
 export class UsersController{
@@ -34,11 +35,20 @@ export class UsersController{
         return avatars;
     }
 
-    @Post("avatar/:sum")
+    @Patch("avatar/:sum")
     @UseGuards(AuthGuard("jwt"))
     @ApiBearerAuth()
+    @HttpCode(HttpStatus.NO_CONTENT)
     async setAvatar(@User() user: UserEntity, @Param("sum") sum: string): Promise<void>{
-        await this.usersService.setAvatar(user, sum);
+        return this.usersService.setAvatar(user, sum);
+    }
+
+    @Patch("password")
+    @UseGuards(AuthGuard("jwt"))
+    @ApiBearerAuth()
+    @HttpCode(HttpStatus.NO_CONTENT)
+    async changePassword(@User() user: UserEntity, @Body() changePasswordDto: ChangePasswordDto): Promise<void>{
+        return this.usersService.changePassword(user, changePasswordDto);
     }
 
     @Get("progression/webtoon/:webtoon_id")
@@ -92,17 +102,17 @@ export class UsersController{
     }
 
     @Post("likes/webtoon/:webtoon_id")
-    @HttpCode(HttpStatus.NO_CONTENT)
     @UseGuards(AuthGuard("jwt"))
     @ApiBearerAuth()
+    @HttpCode(HttpStatus.NO_CONTENT)
     async likeWebtoon(@User() user: UserEntity, @Param("webtoon_id") webtoonId: number): Promise<void>{
         await this.usersService.likeWebtoon(user, webtoonId);
     }
 
     @Delete("likes/webtoon/:webtoon_id")
-    @HttpCode(HttpStatus.NO_CONTENT)
     @UseGuards(AuthGuard("jwt"))
     @ApiBearerAuth()
+    @HttpCode(HttpStatus.NO_CONTENT)
     async unlikeWebtoon(@User() user: UserEntity, @Param("webtoon_id") webtoonId: number): Promise<void>{
         await this.usersService.unlikeWebtoon(user, webtoonId);
     }

src/modules/users/users.controller.ts

@@ -32,5 +32,6 @@ import {AdminJwtStrategy} from "./strategies/admin-jwt.strategy";
         JwtStrategy,
         AdminJwtStrategy,
     ],
+    exports: [UsersService],
 })
 export class UsersModule{}

src/modules/users/users.module.ts

@@ -1,4 +1,10 @@
-import {BadRequestException, Injectable, NotFoundException, UnauthorizedException} from "@nestjs/common";
+import {
+    BadRequestException,
+    ConflictException,
+    Injectable,
+    NotFoundException,
+    UnauthorizedException,
+} from "@nestjs/common";
 import ImageTypes from "../webtoon/webtoon/models/enums/image-types";
 import {LoginPayload} from "./models/payloads/login.payload";
 import {UserEntity} from "./models/entities/user.entity";
@@ -7,6 +13,8 @@ import {MiscService} from "../misc/misc.service";
 import {EpisodeProgressions, Images, Users} from "@prisma/client";
 import {JwtService} from "@nestjs/jwt";
 import {EpisodeProgressionPayload} from "./models/payloads/episode-progression.payload";
+import {CreateUserDto} from "./models/dto/create-user.dto";
+import {ChangePasswordDto} from "./models/dto/change-password.dto";
 
 @Injectable()
 export class UsersService{
@@ -28,6 +36,70 @@ export class UsersService{
         });
     }
 
+    async createUser(userDto: CreateUserDto): Promise<UserEntity>{
+        // Check if the user already exists
+        const existingUser = await this.prismaService.users.findFirst({
+            where: {
+                OR: [
+                    {username: userDto.username},
+                    {email: userDto.email},
+                ],
+            },
+        });
+        if(existingUser)
+            throw new ConflictException("User with this username or email already exists");
+        // Create the user
+        const hashedPassword = this.miscService.hashPassword(userDto.password);
+        const user = await this.prismaService.users.create({
+            data: {
+                id: Bun.randomUUIDv7(),
+                username: userDto.username,
+                email: userDto.email,
+                password: hashedPassword,
+                admin: false,
+                jwt_id: this.miscService.generateRandomBytes(16),
+            },
+            include: {
+                avatar: true,
+            },
+        });
+        return this.toUserEntity(user, user.avatar?.sum);
+    }
+
+    async changePassword(user: UserEntity, changePasswordDto: ChangePasswordDto): Promise<void>{
+        // Check if the old password is valid
+        if(changePasswordDto.oldPassword && !this.miscService.comparePassword(changePasswordDto.oldPassword, user.password))
+            throw new UnauthorizedException("Invalid old password");
+        // Check if the new password is valid
+        if(changePasswordDto.newPassword.length < 8)
+            throw new BadRequestException("New password must be at least 8 characters long");
+        // Hash the new password
+        const hashedPassword = this.miscService.hashPassword(changePasswordDto.newPassword);
+        // Update the user's password
+        await this.prismaService.users.update({
+            where: {
+                id: user.id,
+            },
+            data: {
+                password: hashedPassword,
+            },
+        });
+    }
+
+    async changeUserPassword(userId: string, newPassword: string): Promise<void>{
+        // Hash the new password
+        const hashedPassword = this.miscService.hashPassword(newPassword);
+        // Update the user's password
+        await this.prismaService.users.update({
+            where: {
+                id: userId,
+            },
+            data: {
+                password: hashedPassword,
+            },
+        });
+    }
+
     async getAvailableAvatars(): Promise<string[]>{
         const webtoons: any[] = await this.prismaService.webtoons.findMany({
             include: {
@@ -80,6 +152,33 @@ export class UsersService{
         return this.toUserEntity(user, user.avatar?.sum);
     }
 
+    async getUsers(): Promise<UserEntity[]>{
+        const users = await this.prismaService.users.findMany({
+            include: {
+                avatar: true,
+            },
+        });
+        if(!users.length)
+            return [];
+        return users.map((user): UserEntity => this.toUserEntity(user, user.avatar?.sum));
+    }
+
+    async deleteUserById(userId: string): Promise<void>{
+        const user = await this.prismaService.users.findUnique({
+            where: {
+                id: userId,
+            },
+        });
+        if(!user)
+            throw new NotFoundException("User not found");
+        // Delete the user
+        await this.prismaService.users.delete({
+            where: {
+                id: userId,
+            },
+        });
+    }
+
     async login(usernameOrEmail: string, password: string): Promise<LoginPayload>{
         const user = await this.prismaService.users.findFirst({
             where: {

src/modules/users/users.service.ts

@@ -0,0 +1,59 @@
+import {
+    Body,
+    ConflictException,
+    Controller,
+    Delete,
+    Get,
+    HttpCode,
+    Param,
+    Patch,
+    Post,
+    UseGuards,
+} from "@nestjs/common";
+import {ApiBearerAuth, ApiTags} from "@nestjs/swagger";
+import {AuthGuard} from "@nestjs/passport";
+import {UsersService} from "../../users/users.service";
+import {UserEntity} from "../../users/models/entities/user.entity";
+import {CreateUserDto} from "../../users/models/dto/create-user.dto";
+import {HttpStatusCode} from "axios";
+import {User} from "../../users/decorators/user.decorator";
+import {ChangePasswordDto} from "../../users/models/dto/change-password.dto";
+
+@Controller("admin/users")
+@ApiTags("Admin users")
+@UseGuards(AuthGuard("admin-jwt"))
+export class AdminUsersController{
+    constructor(
+        private readonly usersService: UsersService,
+    ){}
+
+    @Get("")
+    @ApiBearerAuth()
+    async getUsers(): Promise<UserEntity[]>{
+        return this.usersService.getUsers();
+    }
+
+    @Post("new")
+    @ApiBearerAuth()
+    async createUser(@Body() user: CreateUserDto): Promise<UserEntity>{
+        return this.usersService.createUser(user);
+    }
+
+    @Delete(":id")
+    @ApiBearerAuth()
+    @HttpCode(HttpStatusCode.NoContent)
+    async deleteUser(@User() user: UserEntity, @Param("id") userId: string): Promise<void>{
+        if(user.id === userId)
+            throw new ConflictException("You cannot delete your own account");
+        return this.usersService.deleteUserById(userId);
+    }
+
+    @Patch(":id/password")
+    @ApiBearerAuth()
+    @HttpCode(HttpStatusCode.NoContent)
+    async setUserPassword(@User() user: UserEntity, @Body() changePasswordDto: ChangePasswordDto, @Param("id") userId: string): Promise<void>{
+        if(user.id === userId)
+            throw new ConflictException("You cannot change your own password through this endpoint. Use the user profile endpoint instead.");
+        return this.usersService.changeUserPassword(userId, changePasswordDto.newPassword);
+    }
+}

src/modules/webtoon/admin/admin-users.controller.ts

@@ -5,13 +5,15 @@ import {AddWebtoonToQueueDto} from "./models/dto/add-webtoon-to-queue.dto";
 import {ApiBearerAuth, ApiResponse, ApiTags} from "@nestjs/swagger";
 import {AuthGuard} from "@nestjs/passport";
 import {HttpStatusCode} from "axios";
+import {UsersService} from "../../users/users.service";
 
 @Controller("admin")
 @ApiTags("Admin")
 @UseGuards(AuthGuard("admin-jwt"))
 export class AdminController{
     constructor(
         private readonly downloadManagerService: DownloadManagerService,
+        private readonly usersService: UsersService,
     ){}
 
     @Post("queue")