feat: user deletion functionality

Author: m0wer

api/resolvers/user.js

@@ -1,3 +1,4 @@
+import { createHash } from 'crypto'
 import { readFile } from 'fs/promises'
 import { join, resolve } from 'path'
 import { decodeCursor, LIMIT, nextCursorEncoded } from '@/lib/cursor'
@@ -656,6 +657,86 @@ export default {
   },
 
   Mutation: {
+    deleteAccount: async (parent, { deleteContent, confirmation }, { me, models }) => {
+      if (!me) {
+        throw new GqlAuthenticationError()
+      }
+
+      if (confirmation !== 'DELETE MY ACCOUNT') {
+        throw new GqlInputError('incorrect confirmation text')
+      }
+
+      return await models.$transaction(async (tx) => {
+        const user = await tx.user.findUnique({
+          where: { id: me.id },
+          select: {
+            msats: true,
+            mcredits: true,
+            name: true
+          }
+        })
+
+        if ((user.msats + user.mcredits) > 0) {
+          throw new GqlInputError('please withdraw your balance before deleting your account')
+        }
+
+        // If deleteContent is true, replace content with hash
+        if (deleteContent) {
+        // Get all items for this user
+          const items = await tx.item.findMany({
+            where: { userId: me.id },
+            select: { id: true, title: true, text: true, url: true }
+          })
+
+          // Update each item with hashed content
+          for (const item of items) {
+            const originalContent = JSON.stringify({
+              title: item.title,
+              text: item.text,
+              url: item.url
+            })
+
+            const hash = createHash('sha256').update(originalContent).digest('hex')
+            const deletedContent = `[deleted] ${hash}`
+
+            await tx.item.update({
+              where: { id: item.id },
+              data: {
+                title: item.title ? deletedContent : null,
+                text: item.text ? deletedContent : null,
+                url: item.url ? deletedContent : null
+              }
+            })
+          }
+        }
+
+        // Create deletion timestamp and hash the old username with it
+        const deletionTimestamp = new Date()
+        const usernameHashInput = `${user.name}${deletionTimestamp.toISOString()}`
+        const hashedUsername = createHash('sha256').update(usernameHashInput).digest('hex')
+
+        // Mark user as deleted and anonymize data
+        await tx.user.update({
+          where: { id: me.id },
+          data: {
+            deletedAt: deletionTimestamp,
+            name: hashedUsername,
+            email: null,
+            emailVerified: null,
+            emailHash: null,
+            image: null,
+            pubkey: null,
+            apiKeyHash: null,
+            nostrPubkey: null,
+            nostrAuthPubkey: null,
+            twitterId: null,
+            githubId: null
+          }
+        })
+
+        return true
+      })
+    },
     disableFreebies: async (parent, args, { me, models }) => {
       if (!me) {
         throw new GqlAuthenticationError()

api/ssrApollo.js

@@ -19,6 +19,23 @@ import { MULTI_AUTH_ANON, MULTI_AUTH_LIST } from '@/lib/auth'
 
 export default async function getSSRApolloClient ({ req, res, me = null }) {
   const session = req && await getServerSession(req, res, getAuthOptions(req))
+
+  // If there's a session, check if the user is deleted
+  let meUser = me
+  if (session?.user) {
+    const user = await models.user.findUnique({
+      where: { id: parseInt(session.user.id) }, // Convert string to int
+      select: { deletedAt: true }
+    })
+
+    // If the user is deleted, don't pass the session to the context
+    if (user?.deletedAt) {
+      meUser = null
+    } else {
+      meUser = session.user
+    }
+  }
+
   const client = new ApolloClient({
     ssrMode: true,
     link: new SchemaLink({
@@ -28,9 +45,7 @@ export default async function getSSRApolloClient ({ req, res, me = null }) {
       }),
       context: {
         models,
-        me: session
-          ? session.user
-          : me,
+        me: meUser,
         lnd,
         search
       }
@@ -160,6 +175,18 @@ export function getGetServerSideProps (
       me = null
     }
 
+    // Check if the user account is deleted
+    if (me) {
+      const user = await models.user.findUnique({
+        where: { id: parseInt(me.id) }, // Convert string to int
+        select: { deletedAt: true }
+      })
+
+      if (user?.deletedAt) {
+        me = null
+      }
+    }
+
     if (authRequired && !me) {
       let callback = process.env.NEXT_PUBLIC_URL + req.url
       // On client-side routing, the callback is a NextJS URL

api/typeDefs/user.js

@@ -56,6 +56,7 @@ export default gql`
     generateApiKey(id: ID!): String
     deleteApiKey(id: ID!): User
     disableFreebies: Boolean
+    deleteAccount(deleteContent: Boolean!, confirmation: String!): Boolean
   }
 
   type User {
@@ -70,6 +71,7 @@ export default gql`
     bioId: Int
     photoId: Int
     since: Int
+    deletedAt: Date
 
     """
     this is only returned when we sort stackers by value

components/item-info.js

@@ -132,11 +132,14 @@ export default function ItemInfo ({
       <span> \ </span>
       <span>
         {showUser &&
-          <Link href={`/${item.user.name}`}>
-            <UserPopover name={item.user.name}>@{item.user.name}</UserPopover>
-            <Badges badgeClassName='fill-grey' spacingClassName='ms-xs' height={12} width={12} user={item.user} />
-            {embellishUser}
-          </Link>}
+          (item.user.deletedAt
+            ? <span className='text-muted'>[deleted]</span>
+            : <Link href={`/${item.user.name}`}>
+              <UserPopover name={item.user.name}>@{item.user.name}</UserPopover>
+              <Badges badgeClassName='fill-grey' spacingClassName='ms-xs' height={12} width={12} user={item.user} />
+              {embellishUser}
+              </Link>
+          )}
         <span> </span>
         <Link href={`/items/${item.id}`} title={item.invoicePaidAt || item.createdAt} className='text-reset' suppressHydrationWarning>
           {timeSince(new Date(item.invoicePaidAt || item.createdAt))}

docker-compose.yml

@@ -179,7 +179,7 @@ services:
       - OPENSEARCH_INITIAL_ADMIN_PASSWORD=${OPENSEARCH_PASSWORD}
       - plugins.security.disabled=true
       - discovery.type=single-node
-      - "_JAVA_OPTIONS=-Xms2g -Xmx2g -XX:UseSVE=0"
+      - "_JAVA_OPTIONS=-Xms2g -Xmx2g"
     ports:
       - 9200:9200 # REST API
       - 9600:9600 # Performance Analyzer

fragments/items.js

@@ -26,6 +26,7 @@ export const ITEM_FIELDS = gql`
       id
       name
       meMute
+      deletedAt
       ...StreakFields
     }
     sub {
@@ -100,6 +101,7 @@ export const ITEM_FULL_FIELDS = gql`
       user {
         id
         name
+        deletedAt
         ...StreakFields
       }
       sub {

lib/auth.js

@@ -35,6 +35,18 @@ export const cookieOptions = (args) => ({
   ...args
 })
 
+// Add a function to handle checking for deleted accounts
+export const checkDeletedAccount = async (user, prisma) => {
+  if (!user?.id) return false
+
+  const dbUser = await prisma.user.findUnique({
+    where: { id: user.id },
+    select: { deletedAt: true }
+  })
+
+  return !!dbUser?.deletedAt
+}
+
 export function setMultiAuthCookies (req, res, { id, jwt, name, photoId }) {
   const httpOnlyOptions = cookieOptions()
   const jsOptions = { ...httpOnlyOptions, httpOnly: false }

pages/api/auth/[...nextauth].js

@@ -93,6 +93,19 @@ function getCallbacks (req, res) {
      * @return {object}            JSON Web Token that will be saved
      */
     async jwt ({ token, user, account, profile, isNewUser }) {
+      // Check if the user account is deleted
+      if (user?.id) {
+        const dbUser = await prisma.user.findUnique({
+          where: { id: user.id },
+          select: { deletedAt: true }
+        })
+
+        if (dbUser?.deletedAt) {
+          // Return false to prevent sign in for deleted accounts
+          return false
+        }
+      }
+
       if (user) {
         // reset signup cookie if any
         res.appendHeader('Set-Cookie', cookie.serialize('signin', '', { path: '/', expires: 0, maxAge: 0 }))

pages/settings/index.js

@@ -1,14 +1,11 @@
 import { Checkbox, Form, Input, SubmitButton, Select, VariableInput, CopyInput } from '@/components/form'
-import Alert from 'react-bootstrap/Alert'
-import Button from 'react-bootstrap/Button'
-import InputGroup from 'react-bootstrap/InputGroup'
-import Nav from 'react-bootstrap/Nav'
+import { Alert, Button, InputGroup, Nav, Form as BootstrapForm, OverlayTrigger, Tooltip } from 'react-bootstrap'
 import Layout from '@/components/layout'
 import { useState, useMemo } from 'react'
 import { gql, useMutation, useQuery } from '@apollo/client'
 import { getGetServerSideProps } from '@/api/ssrApollo'
 import LoginButton from '@/components/login-button'
-import { signIn } from 'next-auth/react'
+import { signIn, signOut } from 'next-auth/react'
 import { LightningAuth } from '@/components/lightning-auth'
 import { SETTINGS, SET_SETTINGS } from '@/fragments/users'
 import { useRouter } from 'next/router'
@@ -27,7 +24,6 @@ import { useToast } from '@/components/toast'
 import { useServiceWorkerLogger } from '@/components/logger'
 import { useMe } from '@/components/me'
 import { INVOICE_RETENTION_DAYS, ZAP_UNDO_DELAY_MS } from '@/lib/constants'
-import { OverlayTrigger, Tooltip } from 'react-bootstrap'
 import { useField } from 'formik'
 import styles from './settings.module.css'
 import { AuthBanner } from '@/components/banners'
@@ -87,6 +83,112 @@ export function SettingsHeader () {
   )
 }
 
+const DELETE_ACCOUNT = gql`
+  mutation deleteAccount($deleteContent: Boolean!, $confirmation: String!) {
+    deleteAccount(deleteContent: $deleteContent, confirmation: $confirmation)
+  }
+`
+
+function DeleteAccount () {
+  const [showConfirmation, setShowConfirmation] = useState(false)
+  const [deleteContent, setDeleteContent] = useState(false)
+  const [confirmation, setConfirmation] = useState('')
+  const [deleteAccount] = useMutation(DELETE_ACCOUNT)
+  const toaster = useToast()
+
+  const handleDelete = async () => {
+    try {
+      await deleteAccount({
+        variables: {
+          deleteContent,
+          confirmation
+        }
+      })
+
+      // Sign out the user after successful deletion
+      signOut({ callbackUrl: '/' })
+
+      // Show success message
+      toaster.success('Your account has been deleted')
+    } catch (error) {
+      console.error(error)
+      toaster.danger(error.message || 'Failed to delete account')
+    }
+  }
+
+  return (
+    <>
+      <div className='form-label mt-4 text-danger'>danger zone</div>
+      <div className='card border-danger mb-3'>
+        <div className='card-body'>
+          <h5 className='card-title'>Delete Account</h5>
+          <p className='card-text'>
+            This will permanently delete your account. This action cannot be undone.
+          </p>
+
+          {!showConfirmation
+            ? (
+              <Button
+                variant='danger'
+                onClick={() => setShowConfirmation(true)}
+              >
+                Delete my account
+              </Button>
+              )
+            : (
+              <>
+                <Alert variant='danger'>
+                  <p><strong>Warning:</strong> Account deletion is permanent and cannot be reversed.</p>
+                  <p>Before proceeding, please ensure:</p>
+                  <ul>
+                    <li>You have withdrawn all your sats (you cannot delete an account with a balance)</li>
+                    <li>You understand that you will lose access to your account name</li>
+                    <li>You have considered that this action affects your entire account history</li>
+                  </ul>
+                </Alert>
+
+                <BootstrapForm.Check
+                  type='checkbox'
+                  id='delete-content'
+                  label='Also anonymize all my posts and comments (they will show as "[deleted]")'
+                  checked={deleteContent}
+                  onChange={(e) => setDeleteContent(e.target.checked)}
+                  className='mb-3'
+                />
+
+                <BootstrapForm.Group className='mb-3'>
+                  <BootstrapForm.Label>Type "DELETE MY ACCOUNT" to confirm:</BootstrapForm.Label>
+                  <BootstrapForm.Control
+                    type='text'
+                    value={confirmation}
+                    onChange={(e) => setConfirmation(e.target.value)}
+                    placeholder='DELETE MY ACCOUNT'
+                  />
+                </BootstrapForm.Group>
+
+                <div className='d-flex justify-content-between'>
+                  <Button
+                    variant='secondary'
+                    onClick={() => setShowConfirmation(false)}
+                  >
+                    Cancel
+                  </Button>
+                  <Button
+                    variant='danger'
+                    disabled={confirmation !== 'DELETE MY ACCOUNT'}
+                    onClick={handleDelete}
+                  >
+                    Permanently delete my account
+                  </Button>
+                </div>
+              </>
+              )}
+        </div>
+      </div>
+    </>
+  )
+}
+
 export default function Settings ({ ssrData }) {
   const toaster = useToast()
   const { me } = useMe()
@@ -661,6 +763,9 @@ export default function Settings ({ ssrData }) {
           <div className='form-label'>saturday newsletter</div>
           <Button href='https://mail.stacker.news/subscription/form' target='_blank'>(re)subscribe</Button>
           {settings?.authMethods && <AuthMethods methods={settings.authMethods} apiKeyEnabled={settings.apiKeyEnabled} />}
+
+          {/* Add the delete account section */}
+          <DeleteAccount />
         </div>
       </div>
     </Layout>

prisma/migrations/20250604211427_user_deletion/migration.sql

@@ -0,0 +1 @@
+ALTER TABLE "users" ADD COLUMN "deletedAt" TIMESTAMP(3);