datasquirel/package-shared/functions/api/social-login/googleLogin.js

// @ts-check

/**
 * ==============================================================================
 * Imports
 * ==============================================================================
 */
const fs = require("fs");

////////////////////////////////////////////////
////////////////////////////////////////////////
////////////////////////////////////////////////

const { OAuth2Client } = require("google-auth-library");

const { hashPassword } = require("../../backend/passwordHash");
const serverError = require("../../backend/serverError");
const { ServerResponse } = require("http");
const DB_HANDLER = require("../../../utils/backend/global-db/DB_HANDLER");

//////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////
//////////////////////////////////////////////////////////////////////////////////

/**
 * ==============================================================================
 * Main Function
 * ==============================================================================
 * @param {Object} params
 * @param {string} params.usertype
 * @param {any} params.foundUser
 * @param {boolean} params.isSocialValidated
 * @param {boolean} params.isUserValid
 * @param {any} params.reqBody
 * @param {any} params.serverRes
 * @param {any} params.loginFailureReason
 */
module.exports = async function googleLogin({
    usertype,
    foundUser,
    isSocialValidated,
    isUserValid,
    reqBody,
    serverRes,
    loginFailureReason,
}) {
    const client = new OAuth2Client(
        process.env.NEXT_PUBLIC_DSQL_GOOGLE_CLIENT_ID
    );
    let isGoogleAuthValid = false;
    let newFoundUser = null;

    ////////////////////////////////////////////////
    ////////////////////////////////////////////////
    ////////////////////////////////////////////////

    try {
        const ticket = await client.verifyIdToken({
            idToken: reqBody.token,
            audience: process.env.NEXT_PUBLIC_DSQL_GOOGLE_CLIENT_ID, // Specify the CLIENT_ID of the app that accesses the backend
            // Or, if multiple clients access the backend:
            //[CLIENT_ID_1, CLIENT_ID_2, CLIENT_ID_3]
        });

        const payload = ticket.getPayload();
        const userid = payload?.["sub"];

        if (!payload)
            throw new Error("Google login failed. Credentials invalid");

        isUserValid = Boolean(payload.email_verified);

        if (!isUserValid || !payload || !payload.email_verified) return;

        serverRes.isUserValid = payload.email_verified;
        isSocialValidated = payload.email_verified;
        isGoogleAuthValid = payload.email_verified;
        ////// If request specified a G Suite domain:
        ////// const domain = payload['hd'];

        let socialHashedPassword = hashPassword(payload.at_hash || "");

        ////////////////////////////////////////////////
        ////////////////////////////////////////////////
        ////////////////////////////////////////////////

        let existinEmail = await DB_HANDLER(
            `SELECT * FROM ${usertype} WHERE email='${payload.email}' AND social_login!='1' AND social_platform!='google'`
        );

        if (existinEmail && existinEmail[0]) {
            loginFailureReason = "Email Exists Already";
            isGoogleAuthValid = false;
            return {
                isGoogleAuthValid: isGoogleAuthValid,
                newFoundUser: newFoundUser,
                loginFailureReason: loginFailureReason,
            };
        }

        ////////////////////////////////////////

        foundUser = await DB_HANDLER(
            `SELECT * FROM ${usertype} WHERE email='${payload.email}' AND social_login='1' AND social_platform='google'`
        );

        if (foundUser && foundUser[0]) {
            newFoundUser = foundUser;
            return {
                isGoogleAuthValid: isGoogleAuthValid,
                newFoundUser: newFoundUser,
            };
        }

        ////////////////////////////////////////////////
        ////////////////////////////////////////////////
        ////////////////////////////////////////////////

        let newUser = await DB_HANDLER(`INSERT INTO ${usertype} (
            first_name,
            last_name,
            social_platform,
            social_name,
            social_id,
            email,
            image,
            image_thumbnail,
            password,
            verification_status,
            social_login,
            terms_agreement,
            date_created,
            date_code
        ) VALUES (
            '${payload.given_name}',
            '${payload.family_name}',
            'google',
            'google_${payload.email?.replace(/@.*/, "")}',
            '${payload.sub}',
            '${payload.email}',
            '${payload.picture}',
            '${payload.picture}',
            '${socialHashedPassword}',
            '1',
            '1',
            '1',
            '${Date()}',
            '${Date.now()}'
        )`);

        newFoundUser = await DB_HANDLER(
            `SELECT * FROM ${usertype} WHERE id='${newUser.insertId}'`
        );

        ////////////////////////////////////////////////
        ////////////////////////////////////////////////
        ////////////////////////////////////////////////
    } catch (/** @type {any} */ error) {
        serverError({
            component: "googleLogin",
            message: error.message,
        });

        loginFailureReason = error;

        isUserValid = false;
        isSocialValidated = false;
    }

    ////////////////////////////////////////////////
    ////////////////////////////////////////////////
    ////////////////////////////////////////////////

    return { isGoogleAuthValid: isGoogleAuthValid, newFoundUser: newFoundUser };
};