Revert code without Security Vulnerability

RLIndia · web-flow · commit b6ea5b4002d3 · 2018-09-24T15:17:24.000+05:30
diff --git a/server/app/services/emailService.js b/server/app/services/emailService.js
@@ -0,0 +1,94 @@
+var logger = require('_pr/logger')(module);
+var nodeMailer = require('nodemailer');
+var authEmail = require('_pr/model/dao/authemaildao');
+var mongoDbConnect = require('_pr/lib/mongodb');
+var appConfig = require('_pr/config');
+var AWS = require('aws-sdk');
+var Cryptography = require('_pr/lib/utils/cryptography.js');
+
+var schedulerService = module.exports = {
+    sendEmail: sendEmail,
+    verifyEmail: verifyEmail
+};
+
+function sendEmail(msg) {
+    authEmail.findOne({
+        category: 'failedbot'
+    }, function (err, data) {
+        if(err) logger.error(err);
+        else if (data == null) logger.info('No email config found');
+        else {
+            sendSns(data, msg);
+        }
+    })
+}
+
+function verifyEmail(emailId, callback) {
+    authEmail.findOne({
+        category: 'failedbot'
+    }, function (err, data) {
+        if(err) console.log(err);
+        else {
+            var cryptoConfig = appConfig.cryptoSettings;
+            var cryptography = new Cryptography(cryptoConfig.algorithm, cryptoConfig.password);
+            var secretKey = cryptography.decryptText(data.secretkey, cryptoConfig.decryptionEncoding, cryptoConfig.encryptionEncoding);
+            var ses = new AWS.SES({
+                "accessKeyId": data.accesskey,
+                "secretAccessKey": secretKey,
+                "region": data.region,
+                "accountNumber": data.accountno
+            });
+            ses.verifyEmailIdentity({EmailAddress: emailId}, function(err, data) {
+                if (err) {
+                    callback(err, null);
+                }
+                else {
+                    console.log(typeof callback);
+                    callback(null, data);
+                }
+            });
+        }
+    })
+}
+
+function sendSns(data, msg) {
+    var cryptoConfig = appConfig.cryptoSettings;
+    var cryptography = new Cryptography(cryptoConfig.algorithm, cryptoConfig.password);
+    var secretKey = cryptography.decryptText(data.secretkey, cryptoConfig.decryptionEncoding, cryptoConfig.encryptionEncoding);
+    var ses = new AWS.SES({
+        "accessKeyId": data.accesskey,
+        "secretAccessKey": secretKey,
+        "region": data.region,
+        "accountNumber": data.accountno
+    });
+    var params = {
+        Destination: {
+            ToAddresses: [
+                data.to
+            ]
+        },
+        Message: {
+            Body: {
+                Html: {
+                    Charset: "UTF-8",
+                    Data: data.body
+                },
+                Text: {
+                    Charset: "UTF-8",
+                    Data: data.body
+                }
+            },
+            Subject: {
+                Charset: "UTF-8",
+                Data: data.subject + ' - ' + msg
+            }
+        },
+        Source: data.from,
+    };
+    ses.sendEmail(params, function(err, data){
+        if(err) console.log(err);
+        else {
+            console.log(JSON.stringify(data));
+        }
+    });
+}
