78 lines
2.2 KiB
Elixir
78 lines
2.2 KiB
Elixir
defmodule PhoenixPasskeys.Accounts.User do
|
|
use Ecto.Schema
|
|
import Ecto.Changeset
|
|
|
|
schema "users" do
|
|
field :email, :string
|
|
field :confirmed_at, :naive_datetime
|
|
|
|
has_many :credentials, PhoenixPasskeys.Accounts.UserCredential
|
|
|
|
timestamps()
|
|
end
|
|
|
|
@doc """
|
|
A user changeset for registration.
|
|
|
|
It is important to validate the length of both email and password.
|
|
Otherwise databases may truncate the email without warnings, which
|
|
could lead to unpredictable or insecure behaviour. Long passwords may
|
|
also be very expensive to hash for certain algorithms.
|
|
|
|
## Options
|
|
Defaults to `true`.
|
|
|
|
* `:validate_email` - Validates the uniqueness of the email, in case
|
|
you don't want to validate the uniqueness of the email (like when
|
|
using this changeset for validations on a LiveView form before
|
|
submitting the form), this option can be set to `false`.
|
|
Defaults to `true`.
|
|
"""
|
|
def registration_changeset(user, attrs, opts \\ []) do
|
|
user
|
|
|> cast(attrs, [:email])
|
|
|> validate_email(opts)
|
|
end
|
|
|
|
defp validate_email(changeset, opts) do
|
|
changeset
|
|
|> validate_required([:email])
|
|
|> validate_format(:email, ~r/^[^\s]+@[^\s]+$/, message: "must have the @ sign and no spaces")
|
|
|> validate_length(:email, max: 160)
|
|
|> maybe_validate_unique_email(opts)
|
|
end
|
|
|
|
defp maybe_validate_unique_email(changeset, opts) do
|
|
if Keyword.get(opts, :validate_email, true) do
|
|
changeset
|
|
|> unsafe_validate_unique(:email, PhoenixPasskeys.Repo)
|
|
|> unique_constraint(:email)
|
|
else
|
|
changeset
|
|
end
|
|
end
|
|
|
|
@doc """
|
|
A user changeset for changing the email.
|
|
|
|
It requires the email to change otherwise an error is added.
|
|
"""
|
|
def email_changeset(user, attrs, opts \\ []) do
|
|
user
|
|
|> cast(attrs, [:email])
|
|
|> validate_email(opts)
|
|
|> case do
|
|
%{changes: %{email: _}} = changeset -> changeset
|
|
%{} = changeset -> add_error(changeset, :email, "did not change")
|
|
end
|
|
end
|
|
|
|
@doc """
|
|
Confirms the account by setting `confirmed_at`.
|
|
"""
|
|
def confirm_changeset(user) do
|
|
now = NaiveDateTime.utc_now() |> NaiveDateTime.truncate(:second)
|
|
change(user, confirmed_at: now)
|
|
end
|
|
end
|