mirror of
https://github.com/danny-avila/LibreChat.git
synced 2025-09-22 08:12:00 +02:00
ee673d682e
* feat: verification email * chore: email verification invalid; localize: update * fix: redirect to login when signup: fix: save emailVerified correctly * docs: update ALLOW_UNVERIFIED_EMAIL_LOGIN; fix: don't accept login only when ALLOW_UNVERIFIED_EMAIL_LOGIN = true * fix: user needs to be authenticated * style: update * fix: registration success message and redirect logic * refactor: use `isEnabled` in ALLOW_UNVERIFIED_EMAIL_LOGIN * refactor: move checkEmailConfig to server/utils * refactor: use req as param for verifyEmail function * chore: jsdoc * chore: remove console log * refactor: rename `createNewUser` to `createSocialUser` * refactor: update typing and add expiresAt field to userSchema * refactor: begin use of user methods over direct model access for User * refactor: initial email verification rewrite * chore: typing * refactor: registration flow rewrite * chore: remove help center text * refactor: update getUser to getUserById and add findUser methods. general fixes from recent changes * refactor: Update updateUser method to remove expiresAt field and use $set and $unset operations, createUser now returns Id only * refactor: Update openidStrategy to use optional chaining for avatar check, move saveBuffer init to buffer condition * refactor: logout on deleteUser mutatation * refactor: Update openidStrategy login success message format * refactor: Add emailVerified field to Discord and Facebook profile details * refactor: move limiters to separate middleware dir * refactor: Add limiters for email verification and password reset * refactor: Remove getUserController and update routes and controllers accordingly * refactor: Update getUserById method to exclude password and version fields * refactor: move verification to user route, add resend verification option * refactor: Improve email verification process and resend option * refactor: remove more direct model access of User and remove unused code * refactor: replace user authentication methods and token generation * fix: add user.id to jwt user * refactor: Update AuthContext to include setError function, add resend link to Login Form, make registration redirect shorter * fix(updateUserPluginsService): ensure userPlugins variable is defined * refactor: Delete all shared links for a specific user * fix: remove use of direct User.save() in handleExistingUser * fix(importLibreChatConvo): handle missing createdAt field in messages --------- Co-authored-by: Danny Avila <danny@librechat.ai>
39 lines
1.3 KiB
JavaScript
39 lines
1.3 KiB
JavaScript
const { isEnabled } = require('~/server/utils');
|
|
const getLogStores = require('./getLogStores');
|
|
const banViolation = require('./banViolation');
|
|
|
|
/**
|
|
* Logs the violation.
|
|
*
|
|
* @param {Object} req - Express request object containing user information.
|
|
* @param {Object} res - Express response object.
|
|
* @param {string} type - The type of violation.
|
|
* @param {Object} errorMessage - The error message to log.
|
|
* @param {number} [score=1] - The severity of the violation. Defaults to 1
|
|
*/
|
|
const logViolation = async (req, res, type, errorMessage, score = 1) => {
|
|
const userId = req.user?.id ?? req.user?._id;
|
|
if (!userId) {
|
|
return;
|
|
}
|
|
const logs = getLogStores('general');
|
|
const violationLogs = getLogStores(type);
|
|
const key = isEnabled(process.env.USE_REDIS) ? `${type}:${userId}` : userId;
|
|
|
|
const userViolations = (await violationLogs.get(key)) ?? 0;
|
|
const violationCount = +userViolations + +score;
|
|
await violationLogs.set(key, violationCount);
|
|
|
|
errorMessage.user_id = userId;
|
|
errorMessage.prev_count = userViolations;
|
|
errorMessage.violation_count = violationCount;
|
|
errorMessage.date = new Date().toISOString();
|
|
|
|
await banViolation(req, res, errorMessage);
|
|
const userLogs = (await logs.get(key)) ?? [];
|
|
userLogs.push(errorMessage);
|
|
delete errorMessage.user_id;
|
|
await logs.set(key, userLogs);
|
|
};
|
|
|
|
module.exports = logViolation;
|