# Modelo User 🚶🏼♂️🚶🏻♀️
Puesto que vamos a guardar los detalles de usuario en Mongo, vamos a crear un modelo de usuario en [Mongoose ](http://mongoosejs.com/index.html)vamos a guardar este modelo dentro de la carpeta /api/user puesto que también estos registros serán expuestos atraves de una API.
Primero vamos a instalar las dependencias que vamos a necesitar para esta parte.
```bash
# Install dependecies
npm i -S crypto
```
### Schema
Luego de esto vamos crear nuestro modelo
{% code title="api/user/user.model.js" %}
```javascript
/**
* user model
*/
const crypto = require('crypto');
const mongoose = require('mongoose');
const { Schema } = mongoose;
const authTypes = ['github', 'twitter', 'facebook', 'google'];
const AdditionalDataSchema = new Schema({
address: { type: String, uppercase: true },
phoneNumber: { type: String },
country: { type: String, default: 'COLOMBIA', uppercase: true },
city: { type: String, default: 'MEDELLIN', uppercase: true },
language: { type: String, default: 'ES', uppercase: true },
timeZone: { type: String, default: 'America/Bogota' },
picture: { type: String, lowercase: true, trim: true },
}, { _id: false });
const UserSchema = new Schema({
name: String,
email: {
type: String,
lowercase: true,
unique: true,
trim: true,
required() {
if (authTypes.indexOf(this.provider) === -1) {
return true;
}
return false;
},
},
role: { type: String, default: 'user' },
password: {
type: String,
required() {
if (authTypes.indexOf(this.provider) === -1) {
return true;
}
return false;
},
},
additionalData: AdditionalDataSchema,
provider: String,
salt: String,
google: {},
github: {},
passwordResetToken: String,
passwordResetExpires: Date,
}, { timestamps: true });
UserSchema
.path('role')
.validate(value => /admin|manager|user/i.test(value), 'role, assigned role is invalid');
module.exports = mongoose.model('User', UserSchema);
```
{% endcode %}
### Schema Virtual
Los esquemas virtuales son campos adicionales para un modelo dado. Sus valores se pueden configurar de forma manual o automática con la funcionalidad definida. Una propiedad virtual común es el nombre completo de una persona, compuesto por el nombre y apellido del usuario.
Ejemplo: `UserSchema.virtual('fullname').get(() => (${this.first} ${this.last}));`
Vamos agregar a nuestro archivo `api/user/user.model.js` el siguiente código:
{% code title="api/user/user.model.js" %}
```javascript
/**
* Virtuals
*/
// Public profile information
UserSchema
.virtual('profile')
.get(function () {
return {
name: this.name,
role: this.role,
};
});
// Non-sensitive info we'll be putting in the token
UserSchema
.virtual('token')
.get(function () {
return {
_id: this._id,
role: this.role,
};
});
```
{% endcode %}
### Schema Validation
La validación de esquema de JSON extiende la validación de documentos de muchas maneras diferentes, incluida la capacidad de imponer esquemas dentro de *arrays* y evitar que se agreguen atributos no aprobados.
Para nuestro caso de uso vamos adicionar validaciones para el campo `email` y `password` con el siguiente código:
{% code title="api/user/user.model.js" %}
```javascript
/**
* Validations
*/
// Validate empty email
UserSchema
.path('email')
.validate(function (email) {
if (authTypes.indexOf(this.provider) !== -1) {
return true;
}
return email.length;
}, 'Email cannot be blank');
// Validate empty password
UserSchema
.path('password')
.validate(function (password) {
if (authTypes.indexOf(this.provider) !== -1) {
return true;
}
return password.length;
}, 'Password cannot be blank');
// Validate email is not taken
UserSchema
.path('email')
.validate(function (value) {
if (authTypes.indexOf(this.provider) !== -1) {
return true;
}
return this.constructor.findOne({ email: value }).exec()
.then((user) => {
if (user) {
if (this.id === user.id) {
return true;
}
return false;
}
return true;
})
.catch((err) => {
throw err;
});
}, 'The specified email address is already in use.');
```
{% endcode %}
### Schema Hook
{% code title="api/user/user.model.js" %}
```javascript
const validatePresenceOf = function (value) {
return value && value.length;
};
/**
* Pre-save hook
*/
UserSchema
.pre('save', function (next) {
// Handle new/update passwords
if (!this.isModified('password')) {
return next();
}
if (!validatePresenceOf(this.password)) {
if (authTypes.indexOf(this.provider) === -1) {
return next(new Error('Invalid password'));
}
return next();
}
// Make salt with a callback
return this.makeSalt((saltErr, salt) => {
if (saltErr) {
return next(saltErr);
}
this.salt = salt;
this.encryptPassword(this.password, (encryptErr, hashedPassword) => {
if (encryptErr) {
return next(encryptErr);
}
this.password = hashedPassword;
return next();
});
});
});
```
{% endcode %}
### Schema Methods
{% code title="api/user/user.model.js" %}
```javascript
/**
* Methods
*/
UserSchema.methods = {
/**
* Authenticate - check if the passwords are the same
*
* @param {String} password
* @param {Function} callback
* @return {Boolean}
* @api public
*/
authenticate(password, callback) {
if (!callback) {
return this.password === this.encryptPassword(password);
}
return this.encryptPassword(password, (err, pwdGen) => {
if (err) {
return callback(err);
}
if (this.password === pwdGen) {
return callback(null, true);
}
return callback(null, false);
});
},
/**
* Make salt
*
* @param {Number} [byteSize] - Optional salt byte size, default to 16
* @param {Function} callback
* @return {String}
* @api public
*/
makeSalt(...args) {
const defaultByteSize = 16;
let byteSize;
let callback;
if (typeof args[0] === 'function') {
callback = args[0];
byteSize = defaultByteSize;
} else if (typeof args[1] === 'function') {
callback = args[1];
} else {
throw new Error('Missing Callback');
}
if (!byteSize) {
byteSize = defaultByteSize;
}
return crypto.randomBytes(byteSize, (err, salt) => {
if (err) {
return callback(err);
}
return callback(null, salt.toString('base64'));
});
},
/**
* Encrypt password
*
* @param {String} password
* @param {Function} callback
* @return {String}
* @api public
*/
encryptPassword(password, callback) {
if (!password || !this.salt) {
if (!callback) {
return null;
}
return callback('Missing password or salt');
}
const defaultIterations = 10000;
const defaultKeyLength = 64;
const salt = Buffer.from(this.salt, 'base64');
if (!callback) {
return crypto.pbkdf2Sync(
password,
salt,
defaultIterations,
defaultKeyLength,
'sha256',
).toString('base64');
}
return crypto.pbkdf2(password, salt, defaultIterations, defaultKeyLength, 'sha256', (err, key) => {
if (err) {
return callback(err);
}
return callback(null, key.toString('base64'));
});
},
};
```
{% endcode %}
Recuerda que debes agregar todo a tu archivo.
#### Repositorio: [Create the User's model](https://github.com/colombia-dev/medjs-workshop-fullstack-js-backend/commit/09a6d372f1d7420e3fa99d3388018d581385d5d3)
---
# Agent Instructions: Querying This Documentation
If you need additional information that is not directly available in this page, you can query the documentation dynamically by asking a question.
Perform an HTTP GET request on the current page URL with the `ask` query parameter:
```
GET https://medellin-js.gitbook.io/workshop-fullstack-js-developer/backend/passport-js/modelo-user.md?ask=
```
The question should be specific, self-contained, and written in natural language.
The response will contain a direct answer to the question and relevant excerpts and sources from the documentation.
Use this mechanism when the answer is not explicitly present in the current page, you need clarification or additional context, or you want to retrieve related documentation sections.