@abtnode/webapp 1.8.63-beta-a36b5e1a → 1.8.63

package/api/libs/storage.js

@@ -1,69 +0,0 @@
-/* eslint-disable consistent-return */
-const fs = require('fs');
-const os = require('os');
-const path = require('path');
-const crypto = require('crypto');
-
-function getFilename(req, file, cb) {
-  crypto.randomBytes(16, (err, raw) => {
-    cb(err, err ? undefined : raw.toString('hex'));
-  });
-}
-
-function getDestination(req, file, cb) {
-  cb(null, os.tmpdir());
-}
-
-function DiskStorage(opts) {
-  this.getFilename = opts.filename || getFilename;
-  this.getDestination = opts.destination || getDestination;
-}
-
-// A better version from https://github.com/expressjs/multer/blob/master/storage/disk.js
-// Because it stores the file with the content hash
-DiskStorage.prototype._handleFile = function _handleFile(req, file, cb) {
-  const that = this;
-  const hash = crypto.createHash('md5');
-
-  that.getDestination(req, file, (err, destination) => {
-    if (err) return cb(err);
-
-    that.getFilename(req, file, (e, filename) => {
-      if (e) return cb(e);
-
-      let finalPath = path.join(destination, filename);
-      const outStream = fs.createWriteStream(finalPath);
-
-      file.stream.pipe(outStream);
-      file.stream.on('data', x => hash.update(x));
-
-      outStream.on('error', cb);
-      outStream.on('finish', () => {
-        const md5 = hash.digest('hex').toLowerCase();
-        const finalName = md5 + path.extname(file.originalname);
-        const oldPath = finalPath;
-        finalPath = path.join(destination, finalName);
-
-        fs.rename(oldPath, finalPath, () => {
-          cb(null, {
-            destination,
-            filename: finalName,
-            path: finalPath,
-            size: outStream.bytesWritten,
-          });
-        });
-      });
-    });
-  });
-};
-
-DiskStorage.prototype._removeFile = function _removeFile(req, file, cb) {
-  const filePath = file.path;
-  delete file.destination;
-  delete file.filename;
-  delete file.path;
-
-  fs.unlink(filePath, cb);
-};
-
-module.exports = DiskStorage;

package/api/middlewares/mutate-blocklet-permission.js

@@ -1,18 +0,0 @@
-const ensurePermission = node => async (req, res, next) => {
-  if (req.user) {
-    const rbac = await node.getRBAC();
-    const can = rbac.canAny(
-      req.user.role,
-      ['mutate_blocklets', 'mutate_blocklet'].map(x => x.split('_'))
-    );
-    if (!can) {
-      return res.status(403).json({ code: 'forbidden', error: 'no permission' });
-    }
-  } else {
-    return res.status(403).json({ code: 'forbidden', error: 'not authorized' });
-  }
-
-  return next();
-};
-
-module.exports = ensurePermission;

package/api/routes/auth/accept-server.js

@@ -1,28 +0,0 @@
-const { onAddNodeOwnerAuth, getProfileClaim, getAssetProfile } = require('./util');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'accept-server',
-    onConnect: () => {
-      return {
-        asset: getAssetProfile(node),
-        profile: ({ extraParams: { locale } }) => getProfileClaim(locale),
-      };
-    },
-
-    onAuth: async ({ claims, userDid, userPk, challenge, updateSession, extraParams: { locale }, req, baseUrl }) => {
-      return onAddNodeOwnerAuth({
-        action: 'accept-server',
-        node,
-        req,
-        claims,
-        userDid,
-        userPk,
-        challenge,
-        locale,
-        baseUrl,
-        updateSession,
-      });
-    },
-  };
-};

package/api/routes/auth/connect-owner.js

@@ -1,143 +0,0 @@
-const get = require('lodash/get');
-const path = require('path');
-const { ROLES, VC_TYPE_NODE_PASSPORT, NODE_DATA_DIR_NAME } = require('@abtnode/constant');
-const getNodeWallet = require('@abtnode/util/lib/get-app-wallet');
-const getRandomMessage = require('@abtnode/util/lib/get-random-message');
-const formatContext = require('@abtnode/util/lib/format-context');
-const { extractUserAvatar } = require('@abtnode/util/lib/user-avatar');
-const { createPassport, createPassportVC, createUserPassport } = require('@abtnode/auth/lib/passport');
-
-const createPassportSvg = require('@abtnode/auth/lib/util/create-passport-svg');
-
-const verifySignature = require('@abtnode/auth/lib/util/verify-signature');
-const { messages, checkWalletVersion, getPassportStatusEndpoint } = require('@abtnode/auth/lib/auth');
-const logger = require('@abtnode/logger')(require('../../../package.json').name);
-
-const { createSessionToken } = require('../../libs/login');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'connect-owner',
-    onConnect: () => {
-      return {
-        profile: async ({ extraParams: { locale } }) => {
-          const info = await node.getNodeInfo();
-
-          if (info.ownerNft && info.ownerNft.holder && info.ownerNft.issuer) {
-            throw new Error(messages.requestOwnershipNft[locale]);
-          }
-
-          return {
-            fields: ['fullName', 'email', 'avatar'],
-            description: messages.requestProfile[locale],
-          };
-        },
-
-        signature: async ({ extraParams: { locale }, context: { didwallet } }) => {
-          checkWalletVersion({ didwallet, locale });
-          const info = await node.getNodeInfo();
-          const passport = await createPassport({
-            name: ROLES.OWNER,
-            node,
-            teamDid: info.did,
-            locale,
-          });
-          const issuerName = info.name;
-
-          return {
-            description: messages.receivePassport[locale],
-            data: getRandomMessage(),
-            type: 'mime:text/plain',
-            display: JSON.stringify({
-              type: 'svg',
-              content: createPassportSvg({
-                title: passport.title,
-                issuer: issuerName,
-                issuerDid: info.did,
-                ownerName: 'Your Name',
-                preferredColor: 'default',
-              }),
-            }),
-          };
-        },
-      };
-    },
-
-    onAuth: async ({ claims, userDid, userPk, updateSession, extraParams: { locale }, req, baseUrl }) => {
-      const profile = claims.find(x => x.type === 'profile');
-      const info = await node.getNodeInfo();
-      const teamDid = info.did;
-
-      // Verify signature
-      const claim = claims.find(x => x.type === 'signature');
-      logger.info('claim.signature.onAuth', { userPk, userDid, claim });
-      verifySignature(claim, userDid, userPk, locale);
-
-      // Add owner
-      await node.updateNodeOwner({ nodeOwner: { did: userDid, pk: userPk } });
-      logger.info('connect owner to node', { userDid });
-
-      // Issue owner passport
-      const vc = createPassportVC({
-        issuerName: info.name,
-        issuerWallet: getNodeWallet(info.sk),
-        ownerDid: userDid,
-        passport: await createPassport({
-          name: ROLES.OWNER,
-          node,
-          teamDid,
-          locale,
-          endpoint: baseUrl,
-        }),
-        endpoint: getPassportStatusEndpoint({
-          baseUrl,
-          userDid,
-          teamDid,
-        }),
-        types: [VC_TYPE_NODE_PASSPORT],
-        tag: info.did,
-        ownerProfile: profile,
-      });
-
-      const role = ROLES.OWNER;
-
-      const passport = createUserPassport(vc, { role });
-
-      const doc = await node.addUser({
-        teamDid,
-        user: {
-          ...profile,
-          avatar: await extractUserAvatar(get(profile, 'avatar'), {
-            dataDir: path.join(node.dataDirs.data, NODE_DATA_DIR_NAME),
-          }),
-          did: userDid,
-          pk: userPk,
-          passports: [passport],
-          approved: true,
-          locale,
-          firstLoginAt: new Date().toISOString(),
-          lastLoginAt: new Date().toISOString(),
-        },
-      });
-      await node.createAuditLog(
-        {
-          action: 'addUser',
-          args: { teamDid, userDid, reason: 'claim server' },
-          context: formatContext(Object.assign(req, { user: doc })),
-          result: doc,
-        },
-        node
-      );
-
-      // Generate new session token that client can save to localStorage
-      const sessionToken = await createSessionToken(userDid, { passport, role });
-      await updateSession({ sessionToken }, true);
-
-      return {
-        disposition: 'attachment',
-        type: 'VerifiableCredential',
-        data: vc,
-      };
-    },
-  };
-};

package/api/routes/auth/delegate-transfer-owner-nft.js

@@ -1,86 +0,0 @@
-const { fromPublicKey } = require('@ocap/wallet');
-const Client = require('@ocap/client');
-const { toDelegateAddress } = require('@arcblock/did-util');
-const { toTypeInfo } = require('@arcblock/did');
-const formatContext = require('@abtnode/util/lib/format-context');
-
-const logger = require('@abtnode/logger')(require('../../../package.json').name);
-
-const messages = {
-  selectNFTOwner: {
-    en: 'Please select the owner of the NFT to proceed',
-    zh: '请选择 NFT 所有者',
-  },
-  authorizeToServer: {
-    en: 'Please authorize Blocklet Server to transfer owner NFT',
-    zh: '请授权该节点交易 NFT',
-  },
-};
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'delegate-transfer-nft',
-    authPrincipal: false,
-    claims: [
-      {
-        authPrincipal: async ({ extraParams: { locale } }) => {
-          const info = await node.getNodeInfo();
-
-          return {
-            target: info.ownerNft.holder,
-            description: messages.selectNFTOwner[locale],
-          };
-        },
-      },
-      {
-        signature: async ({ userDid, userPk, extraParams: { locale } }) => {
-          const info = await node.getNodeInfo();
-
-          return {
-            type: 'DelegateTx',
-            chainInfo: { host: info.launcher.chainHost },
-            data: {
-              from: userDid,
-              pk: userPk,
-              itx: {
-                address: toDelegateAddress(userDid, info.did),
-                to: info.did,
-                ops: [{ typeUrl: 'fg:t:transfer_v2', rules: [] }],
-              },
-            },
-            description: messages.authorizeToServer[locale],
-          };
-        },
-      },
-    ],
-    onAuth: async ({ userDid, userPk, claims, req }) => {
-      const info = await node.getNodeInfo();
-      const claim = claims.find(x => x.type === 'signature');
-      const client = new Client(info.launcher.chainHost);
-
-      logger.info('delegating.onAuth', { userDid, userPk, claims });
-
-      const tx = client.decodeTx(claim.origin);
-      const hash = await client.sendDelegateTx({
-        tx,
-        wallet: fromPublicKey(userPk, toTypeInfo(userDid)),
-        signature: claim.sig,
-      });
-
-      logger.info('delegated.onAuth', { userDid, userPk, hash });
-
-      const owner = await node.getOwner({ teamDid: info.did });
-
-      await node.createAuditLog(
-        {
-          action: 'delegateTransferNFT',
-          args: { owner: userDid, reason: 'delegate server to transfer nft' },
-          context: formatContext(Object.assign(req, { user: owner })),
-        },
-        node
-      );
-
-      return { hash, tx: claim.origin };
-    },
-  };
-};

package/api/routes/auth/invite.js

@@ -1,93 +0,0 @@
-const {
-  createInvitationRequest,
-  handleInvitationResponse,
-  messages,
-  checkWalletVersion,
-  beforeInvitationRequest,
-} = require('@abtnode/auth/lib/auth');
-const { get } = require('lodash');
-const logger = require('@abtnode/logger')(require('../../../package.json').name);
-
-const { createSessionToken } = require('../../libs/login');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'invite',
-
-    onStart: async ({ extraParams }) => {
-      const { locale = 'en', inviteId } = extraParams;
-      const nodeInfo = await node.getNodeInfo();
-      const teamDid = nodeInfo.did;
-
-      await beforeInvitationRequest({ node, teamDid, locale, inviteId });
-    },
-
-    claims: {
-      profile: async ({ userDid, extraParams }) => {
-        const nodeInfo = await node.getNodeInfo();
-        const { locale, inviteId } = extraParams;
-
-        const tmpInvitation = await node.getInvitation({ teamDid: nodeInfo.did, inviteId });
-
-        if (tmpInvitation.role === 'owner' && userDid === nodeInfo.nodeOwner.did) {
-          throw new Error(messages.notAllowedTransferToSelf[locale]);
-        }
-
-        if ((await node.isInitialized()) === false) {
-          throw new Error(messages.notInitialized[locale]);
-        }
-
-        return {
-          fields: ['fullName', 'email', 'avatar'],
-          description: messages.description[locale],
-        };
-      },
-
-      signature: async ({ extraParams, context: { didwallet } }) => {
-        const { locale, inviteId } = extraParams;
-        checkWalletVersion({ didwallet, locale });
-        const nodeInfo = await node.getNodeInfo();
-        const teamDid = nodeInfo.did;
-
-        return createInvitationRequest({
-          node,
-          nodeInfo,
-          teamDid,
-          inviteId,
-          locale,
-        });
-      },
-    },
-
-    onAuth: async ({ claims, userDid, userPk, updateSession, extraParams, req, baseUrl }) => {
-      const { locale, inviteId, previousWorkflowData } = extraParams;
-      const nodeInfo = await node.getNodeInfo();
-      const teamDid = nodeInfo.did;
-      const statusEndpointBaseUrl = baseUrl;
-      const endpoint = baseUrl;
-
-      const { passport, response, role } = await handleInvitationResponse({
-        req,
-        node,
-        nodeInfo,
-        teamDid,
-        userDid,
-        userPk,
-        inviteId,
-        locale,
-        claims,
-        statusEndpointBaseUrl,
-        endpoint,
-        newNftOwner: get(previousWorkflowData, 'userDid'),
-      });
-
-      // Generate new session token that client can save to localStorage
-      const sessionToken = await createSessionToken(userDid, { passport, role });
-      await updateSession({ sessionToken }, true);
-      await updateSession({ passportId: response.data.id });
-      logger.info('invite.success', { userDid });
-
-      return response;
-    },
-  };
-};

package/api/routes/auth/issue-passport.js

@@ -1,61 +0,0 @@
-const {
-  createIssuePassportRequest,
-  handleIssuePassportResponse,
-  checkWalletVersion,
-  beforeIssuePassportRequest,
-} = require('@abtnode/auth/lib/auth');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'issue-passport',
-
-    onStart: async ({ extraParams }) => {
-      const { locale = 'en', id } = extraParams;
-
-      const nodeInfo = await node.getNodeInfo();
-      const teamDid = nodeInfo.did;
-
-      await beforeIssuePassportRequest({ node, teamDid, locale, id });
-    },
-
-    claims: {
-      signature: async ({ extraParams, context: { didwallet } }) => {
-        const { id, locale } = extraParams;
-        checkWalletVersion({ didwallet, locale });
-        const nodeInfo = await node.getNodeInfo();
-        const teamDid = nodeInfo.did;
-
-        return createIssuePassportRequest({
-          node,
-          nodeInfo,
-          teamDid,
-          id,
-          locale,
-        });
-      },
-    },
-
-    onAuth: async ({ userDid, userPk, claims, extraParams, updateSession, req, baseUrl }) => {
-      const { locale, id } = extraParams;
-      const nodeInfo = await node.getNodeInfo();
-      const teamDid = nodeInfo.did;
-      const statusEndpointBaseUrl = baseUrl;
-      const endpoint = baseUrl;
-
-      return handleIssuePassportResponse({
-        req,
-        node,
-        nodeInfo,
-        teamDid,
-        userDid,
-        userPk,
-        id,
-        locale,
-        claims,
-        statusEndpointBaseUrl,
-        updateSession,
-        endpoint,
-      });
-    },
-  };
-};

package/api/routes/auth/launch-free-blocklet-by-nft.js

@@ -1,9 +0,0 @@
-const { createLaunchBlockletHandler, getLaunchBlockletClaims } = require('@abtnode/auth/lib/server');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'launch-free-blocklet-by-nft',
-    claims: getLaunchBlockletClaims(node, 'nft'),
-    onAuth: createLaunchBlockletHandler(node, 'nft'),
-  };
-};

package/api/routes/auth/launch-free-blocklet.js

@@ -1,9 +0,0 @@
-const { createLaunchBlockletHandler, getLaunchBlockletClaims } = require('@abtnode/auth/lib/server');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'launch-free-blocklet-by-vc',
-    claims: getLaunchBlockletClaims(node, 'vc'),
-    onAuth: createLaunchBlockletHandler(node, 'vc'),
-  };
-};

package/api/routes/auth/launch-paid-blocklet-by-nft.js

@@ -1,9 +0,0 @@
-const { createLaunchBlockletHandler, getLaunchBlockletClaims } = require('@abtnode/auth/lib/server');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'launch-paid-blocklet-by-nft',
-    claims: getLaunchBlockletClaims(node, 'nft'),
-    onAuth: createLaunchBlockletHandler(node, 'nft'),
-  };
-};

package/api/routes/auth/launch-paid-blocklet.js

@@ -1,9 +0,0 @@
-const { createLaunchBlockletHandler, getLaunchBlockletClaims } = require('@abtnode/auth/lib/server');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'launch-paid-blocklet-by-vc',
-    claims: getLaunchBlockletClaims(node, 'vc'),
-    onAuth: createLaunchBlockletHandler(node, 'vc'),
-  };
-};

package/api/routes/auth/login.js

@@ -1,63 +0,0 @@
-const { messages } = require('@abtnode/auth/lib/auth');
-const { authenticateByVc, getAuthVcClaim } = require('@abtnode/auth/lib/server');
-const formatContext = require('@abtnode/util/lib/format-context');
-
-const logger = require('@abtnode/logger')(require('../../../package.json').name);
-
-const { createSessionToken } = require('../../libs/login');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'login',
-    onConnect: async ({ userDid, extraParams }) => {
-      const { locale } = extraParams;
-
-      if ((await node.isInitialized()) === false) {
-        throw new Error(messages.notInitialized[locale]);
-      }
-
-      const info = await node.getNodeInfo();
-      const user = await node.getUser({ teamDid: info.did, user: { did: userDid } });
-      if (!user) {
-        throw new Error(messages.notAllowed[locale]);
-      }
-
-      return { verifiableCredential: getAuthVcClaim({ node }) };
-    },
-
-    onAuth: async ({ claims, challenge, userDid, userPk, updateSession, extraParams, req }) => {
-      const { locale } = extraParams;
-      const { role, teamDid, passport } = await authenticateByVc({ node, locale, userDid, claims, challenge });
-
-      try {
-        // Update user
-        const doc = await node.updateUser({
-          teamDid,
-          user: {
-            did: userDid,
-            pk: userPk,
-            locale,
-            lastLoginAt: new Date().toISOString(),
-          },
-        });
-        await node.createAuditLog(
-          {
-            action: 'login',
-            args: { teamDid, userDid, passport },
-            context: formatContext(Object.assign(req, { user: doc })),
-            result: doc,
-          },
-          node
-        );
-
-        // Generate new session token that client can save to localStorage
-        const sessionToken = await createSessionToken(userDid, { passport, role });
-        await updateSession({ sessionToken }, true);
-        logger.info('login.success', { userDid });
-      } catch (err) {
-        logger.error('login.error', { error: err, userDid });
-        throw new Error(err.message);
-      }
-    },
-  };
-};

package/api/routes/auth/lost-passport-issue.js

@@ -1,5 +0,0 @@
-const { createLostPassportIssueRoute, TEAM_TYPES } = require('@abtnode/auth/lib/lost-passport');
-
-module.exports = function createRoutes(node) {
-  return createLostPassportIssueRoute({ node, type: TEAM_TYPES.NODE });
-};

package/api/routes/auth/lost-passport-list.js

@@ -1,5 +0,0 @@
-const { createLostPassportListRoute } = require('@abtnode/auth/lib/lost-passport');
-
-module.exports = function createRoutes(node) {
-  return createLostPassportListRoute({ node, type: 'node' });
-};

package/api/routes/auth/switch-passport.js

@@ -1,47 +0,0 @@
-const { messages } = require('@abtnode/auth/lib/auth');
-const { getAuthVcClaim, authenticateByVc } = require('@abtnode/auth/lib/server');
-const formatContext = require('@abtnode/util/lib/format-context');
-
-const { createSessionToken } = require('../../libs/login');
-
-module.exports = function createRoutes(node) {
-  return {
-    action: 'switch-passport',
-    onConnect: async ({ userDid, extraParams: { locale, connectedDid } }) => {
-      if (userDid && connectedDid && userDid !== connectedDid) {
-        throw new Error(messages.userMismatch[locale]);
-      }
-
-      const info = await node.getNodeInfo();
-      const user = await node.getUser({ teamDid: info.did, user: { did: userDid } });
-      if (!user) {
-        throw new Error(messages.notAllowed[locale]);
-      }
-      if (!user.approved) {
-        throw new Error(messages.notAuthorized[locale]);
-      }
-
-      return { verifiableCredential: getAuthVcClaim({ node }) };
-    },
-
-    onAuth: async ({ claims, challenge, userDid, updateSession, extraParams, req }) => {
-      const { locale } = extraParams;
-      const { role, passport } = await authenticateByVc({ node, locale, userDid, claims, challenge });
-      const info = await node.getNodeInfo();
-      const user = await node.getUser({ teamDid: info.did, user: { did: userDid } });
-      await node.createAuditLog(
-        {
-          action: 'switchPassport',
-          args: { teamDid: info.did, userDid, passport },
-          context: formatContext(Object.assign(req, { user })),
-          result: {},
-        },
-        node
-      );
-
-      // Generate new session token that client can save to localStorage
-      const sessionToken = await createSessionToken(userDid, { passport, role });
-      await updateSession({ sessionToken }, true);
-    },
-  };
-};