Libera o nome de usuário e email caso o token de ativação da conta expire

models/activation.js

@@ -214,6 +214,5 @@ export default Object.freeze({
   getActivationApiEndpoint,
   getActivationPageEndpoint,
   activateUserUsingTokenId,
-  activateUserByUserId,
   update,
 });

models/user.js

@@ -230,6 +230,7 @@ async function findOneById(userId, options = {}) {
 async function create(postedUserData) {
   const validUserData = validatePostSchema(postedUserData);
   await validateUniqueUser(validUserData);
+  await deleteExpiredUsers(validUserData);
   await hashPasswordInObject(validUserData);
 
   validUserData.features = ['read:activation_token'];
@@ -295,6 +296,7 @@ async function update(targetUser, postedUserData, options = {}) {
   if (shouldValidateUsername || shouldValidateEmail) {
     try {
       await validateUniqueUser({ ...validPostedUserData, id: currentUser.id }, { transaction: options.transaction });
+      await deleteExpiredUsers(validPostedUserData);
       if (shouldValidateEmail && !options.skipEmailConfirmation) {
         await emailConfirmation.createAndSendEmail(currentUser, validPostedUserData.email, {
           transaction: options.transaction,
@@ -375,30 +377,36 @@ async function validateUniqueUser(userData, options) {
 
   if (userData.username) {
     queryValues.push(userData.username);
-    orConditions.push(`LOWER(username) = LOWER($${queryValues.length})`);
+    orConditions.push(`LOWER(u.username) = LOWER($${queryValues.length})`);
   }
 
   if (userData.email) {
     queryValues.push(userData.email);
-    orConditions.push(`LOWER(email) = LOWER($${queryValues.length})`);
+    orConditions.push(`LOWER(u.email) = LOWER($${queryValues.length})`);
   }
 
   let where = `(${orConditions.join(' OR ')})`;
 
   if (userData.id) {
     queryValues.push(userData.id);
-    where += ` AND id <> $${queryValues.length}`;
+    where += ` AND u.id <> $${queryValues.length}`;
   }
 
   const query = {
     text: `
       SELECT
-        username,
-        email
+        u.username,
+        u.email
       FROM
-        users
+        users u
+      LEFT JOIN activate_account_tokens aat ON user_id = u.id
       WHERE
-        ${where}
+        (
+          COALESCE(aat.used, true)
+          OR aat.expires_at > NOW()
+          OR 'nuked' = ANY(u.features)
+        )
+        AND ${where}
     `,
     values: queryValues,
   };
@@ -428,6 +436,28 @@ async function validateUniqueUser(userData, options) {
   });
 }
 
+async function deleteExpiredUsers(userObject) {
+  const query = {
+    text: `
+      DELETE FROM
+        users u
+      USING activate_account_tokens aat
+      WHERE
+        aat.user_id = u.id
+        AND COALESCE(aat.used, false) = false
+        AND aat.expires_at < NOW()
+        AND NOT ('nuked' = ANY(u.features))
+        AND (
+          LOWER(username) = LOWER($2)
+          OR LOWER(email) = LOWER($1)
+        )
+    ;`,
+    values: [userObject.email, userObject.username],
+  };
+
+  await database.query(query);
+}
+
 async function hashPasswordInObject(userObject) {
   userObject.password = await authentication.hashPassword(userObject.password);
   return userObject;