@backstage-community/plugin-mend-backend 0.4.0 → 0.4.1

package/CHANGELOG.md

@@ -1,5 +1,11 @@
 # @backstage-community/plugin-mend-backend
 
+## 0.4.1
+
+### Patch Changes
+
+- a6e6de7: Updated the targetPluginId from 'plugin.catalog.service' to 'catalog' to get the correct token
+
 ## 0.4.0
 
 ### Minor Changes

package/dist/service/router.cjs.js

@@ -43,7 +43,7 @@ async function createRouter(options) {
       const credentials = await httpAuth.credentials(request);
       const { token } = await auth.getPluginRequestToken({
         onBehalfOf: credentials,
-        targetPluginId: "plugin.catalog.service"
+        targetPluginId: "catalog"
       });
       const results = await Promise.all([
         catalogClient$1.getEntities(
@@ -87,7 +87,7 @@ async function createRouter(options) {
       const credentials = await httpAuth.credentials(request);
       const { token } = await auth.getPluginRequestToken({
         onBehalfOf: credentials,
-        targetPluginId: "plugin.catalog.service"
+        targetPluginId: "catalog"
       });
       const uid = request.body.uid;
       if (!uid) {

package/dist/service/router.cjs.js.map

@@ -1 +1 @@
-{"version":3,"file":"router.cjs.js","sources":["../../src/service/router.ts"],"sourcesContent":["import express from 'express';\nimport Router from 'express-promise-router';\nimport { MiddlewareFactory } from '@backstage/backend-defaults/rootHttpRouter';\nimport {\n  LoggerService,\n  DiscoveryService,\n  AuthService,\n  HttpAuthService,\n  PermissionsService,\n} from '@backstage/backend-plugin-api';\nimport { CatalogClient } from '@backstage/catalog-client';\nimport { Config } from '@backstage/config';\nimport { AuthorizeResult } from '@backstage/plugin-permission-common';\nimport {\n  dataFindingParser,\n  dataMatcher,\n  dataProjectParser,\n  fetchQueryPagination,\n} from './data.service.helpers';\nimport { MendDataService } from './data.service';\nimport { MendAuthSevice } from './auth.service';\nimport {\n  PaginationQueryParams,\n  ProjectStatisticsSuccessResponseData,\n  OrganizationProjectSuccessResponseData,\n  CodeFindingSuccessResponseData,\n  DependenciesFindingSuccessResponseData,\n  ContainersFindingSuccessResponseData,\n} from './data.service.types';\nimport {\n  mendReadPermission,\n  transformConditions,\n  permissionIntegrationRouter,\n  type FilterProps,\n} from '../permission';\n\n/** @internal */\nexport type RouterOptions = {\n  logger: LoggerService;\n  config: Config;\n  discovery: DiscoveryService;\n  auth: AuthService;\n  httpAuth: HttpAuthService;\n  permissions: PermissionsService;\n};\n\nenum ROUTE {\n  PROJECT = '/project',\n  FINDING = '/finding',\n}\n\n/** @internal */\nexport async function createRouter(\n  options: RouterOptions,\n): Promise<express.Router> {\n  const { logger, config, discovery, auth, httpAuth, permissions } = options;\n\n  const router = Router();\n  router.use(express.json());\n\n  router.use(permissionIntegrationRouter);\n\n  const checkForAuth = (\n    _request: express.Request,\n    response: express.Response,\n    next: express.NextFunction,\n  ) => {\n    if (MendAuthSevice.getAuthToken()) {\n      next();\n      return;\n    }\n\n    MendAuthSevice.connect()\n      .then(next)\n      .catch(() => {\n        response.status(401).json({ error: 'Oops! Unauthorized' });\n      });\n  };\n\n  const baseUrl = config.getString('mend.baseUrl');\n  const activationKey = config.getString('mend.activationKey');\n\n  // Init api service\n  const mendDataService = new MendDataService({\n    baseUrl,\n    activationKey,\n  });\n\n  // Init catalog client\n  const catalogClient = new CatalogClient({ discoveryApi: discovery });\n\n  // Routes\n  router.get(ROUTE.PROJECT, checkForAuth, async (request, response) => {\n    try {\n      // service to service auth\n      const credentials = await httpAuth.credentials(request);\n      const { token } = await auth.getPluginRequestToken({\n        onBehalfOf: credentials,\n        targetPluginId: 'plugin.catalog.service',\n      });\n\n      // entity to project match\n      const results = await Promise.all([\n        catalogClient.getEntities(\n          { filter: [{ kind: ['Component'] }] },\n          { token },\n        ),\n        fetchQueryPagination<ProjectStatisticsSuccessResponseData>(\n          mendDataService.getProjectStatistics,\n        ),\n        fetchQueryPagination<OrganizationProjectSuccessResponseData>(\n          mendDataService.getOrganizationProject,\n        ),\n      ]);\n\n      // permission - filter to exclude or include project\n      const decision = (\n        await permissions.authorizeConditional(\n          [{ permission: mendReadPermission }],\n          {\n            credentials,\n          },\n        )\n      )[0];\n\n      let items;\n      if (decision.result === AuthorizeResult.CONDITIONAL) {\n        const filter = transformConditions(decision.conditions) as FilterProps;\n        items = results[1].filter(item =>\n          filter?.exclude\n            ? !filter.ids.includes(item.uuid)\n            : filter.ids.includes(item.uuid),\n        );\n      }\n\n      const data = dataMatcher(results[0].items, items || results[1]);\n\n      // parse data\n      const projects = dataProjectParser(data, results[2]);\n\n      response.json({\n        ...projects,\n        clientUrl: MendAuthSevice.getClientUrl(),\n        clientName: MendAuthSevice.getClientName(),\n      });\n      // Allow any object structure here\n    } catch (error: any) {\n      logger.error('/project', error);\n      response.status(500).json({ error: 'Oops! Please try again later.' });\n    }\n  });\n\n  router.post(ROUTE.FINDING, checkForAuth, async (request, response) => {\n    try {\n      // service to service auth\n      const credentials = await httpAuth.credentials(request);\n      const { token } = await auth.getPluginRequestToken({\n        onBehalfOf: credentials,\n        targetPluginId: 'plugin.catalog.service',\n      });\n\n      // entity to project match\n      const uid = request.body.uid;\n\n      if (!uid) {\n        response.status(401).json({ error: 'Oops! No UUID provided' });\n        return;\n      }\n\n      const projectResult = await Promise.all([\n        catalogClient.getEntities(\n          { filter: [{ 'metadata.uid': uid }] },\n          { token },\n        ),\n        fetchQueryPagination<ProjectStatisticsSuccessResponseData>(\n          mendDataService.getProjectStatistics,\n        ),\n        fetchQueryPagination<OrganizationProjectSuccessResponseData>(\n          mendDataService.getOrganizationProject,\n        ),\n      ]);\n\n      // permission - filter to exclude or include project\n      const decision = (\n        await permissions.authorizeConditional(\n          [{ permission: mendReadPermission }],\n          {\n            credentials,\n          },\n        )\n      )[0];\n\n      let items;\n      if (decision.result === AuthorizeResult.CONDITIONAL) {\n        const filter = transformConditions(decision.conditions) as FilterProps;\n        items = projectResult[1].filter(item =>\n          filter?.exclude\n            ? !filter.ids.includes(item.uuid)\n            : filter.ids.includes(item.uuid),\n        );\n      }\n\n      const data = dataMatcher(\n        projectResult[0].items,\n        items || projectResult[1],\n      );\n\n      if (!data.length) {\n        response.json({\n          findingList: [],\n          projectName: '',\n          projectUuid: '',\n          clientUrl: MendAuthSevice.getClientUrl(),\n          clientName: MendAuthSevice.getClientName(),\n        });\n        return;\n      }\n\n      const params = {\n        pathParams: {\n          uuid: data[0].uuid,\n        },\n      };\n\n      // get project findings\n      const findingResult = await Promise.all([\n        fetchQueryPagination<CodeFindingSuccessResponseData>(\n          (queryParam: PaginationQueryParams) =>\n            mendDataService.getCodeFinding({\n              ...params,\n              ...queryParam,\n            }),\n        ),\n        fetchQueryPagination<DependenciesFindingSuccessResponseData>(\n          (queryParam: PaginationQueryParams) =>\n            mendDataService.getDependenciesFinding({\n              ...params,\n              ...queryParam,\n            }),\n        ),\n        fetchQueryPagination<ContainersFindingSuccessResponseData>(\n          (queryParam: PaginationQueryParams) =>\n            mendDataService.getContainersFinding({\n              ...params,\n              ...queryParam,\n            }),\n        ),\n      ]);\n\n      const project = dataProjectParser(data, projectResult[2]);\n      const findingList = dataFindingParser(\n        findingResult[0].filter(item => !item.suppressed), // NOTE: Do not show suppressed item\n        findingResult[1].filter(\n          item => !(item.findingInfo.status === 'IGNORED'),\n        ), // NOTE: Do not show ignored item\n        findingResult[2], // ESC-51: Follow Jira activity\n      );\n\n      response.json({\n        findingList,\n        projectName: project.projectList[0].entity.params.repo,\n        projectUuid: project.projectList[0].uuid,\n        clientUrl: MendAuthSevice.getClientUrl(),\n        clientName: MendAuthSevice.getClientName(),\n      });\n      // Allow any object structure here\n    } catch (error: any) {\n      logger.error('/finding', error);\n      response.status(500).json({ error: 'Oops! Please try again later.' });\n    }\n  });\n\n  router.get('/health', (_, response) => {\n    logger.info('PONG!');\n    response.json({ status: 'ok' });\n  });\n\n  const middleware = MiddlewareFactory.create({ logger, config });\n\n  router.use(middleware.error());\n  return router;\n}\n"],"names":["permissions","Router","express","permissionIntegrationRouter","MendAuthSevice","MendDataService","catalogClient","CatalogClient","fetchQueryPagination","mendReadPermission","AuthorizeResult","transformConditions","dataMatcher","dataProjectParser","dataFindingParser","MiddlewareFactory"],"mappings":";;;;;;;;;;;;;;;;;;;AAoDA,eAAsB,aACpB,OACyB,EAAA;AACzB,EAAA,MAAM,EAAE,MAAQ,EAAA,MAAA,EAAQ,WAAW,IAAM,EAAA,QAAA,eAAUA,eAAgB,GAAA,OAAA;AAEnE,EAAA,MAAM,SAASC,uBAAO,EAAA;AACtB,EAAO,MAAA,CAAA,GAAA,CAAIC,wBAAQ,CAAA,IAAA,EAAM,CAAA;AAEzB,EAAA,MAAA,CAAO,IAAIC,sCAA2B,CAAA;AAEtC,EAAA,MAAM,YAAe,GAAA,CACnB,QACA,EAAA,QAAA,EACA,IACG,KAAA;AACH,IAAI,IAAAC,2BAAA,CAAe,cAAgB,EAAA;AACjC,MAAK,IAAA,EAAA;AACL,MAAA;AAAA;AAGF,IAAAA,2BAAA,CAAe,SACZ,CAAA,IAAA,CAAK,IAAI,CAAA,CACT,MAAM,MAAM;AACX,MAAA,QAAA,CAAS,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,sBAAsB,CAAA;AAAA,KAC1D,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,OAAA,GAAU,MAAO,CAAA,SAAA,CAAU,cAAc,CAAA;AAC/C,EAAM,MAAA,aAAA,GAAgB,MAAO,CAAA,SAAA,CAAU,oBAAoB,CAAA;AAG3D,EAAM,MAAA,eAAA,GAAkB,IAAIC,4BAAgB,CAAA;AAAA,IAC1C,OAAA;AAAA,IACA;AAAA,GACD,CAAA;AAGD,EAAA,MAAMC,kBAAgB,IAAIC,2BAAA,CAAc,EAAE,YAAA,EAAc,WAAW,CAAA;AAGnE,EAAA,MAAA,CAAO,GAAI,CAAA,UAAA,gBAAe,YAAc,EAAA,OAAO,SAAS,QAAa,KAAA;AACnE,IAAI,IAAA;AAEF,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,OAAO,CAAA;AACtD,MAAA,MAAM,EAAE,KAAA,EAAU,GAAA,MAAM,KAAK,qBAAsB,CAAA;AAAA,QACjD,UAAY,EAAA,WAAA;AAAA,QACZ,cAAgB,EAAA;AAAA,OACjB,CAAA;AAGD,MAAM,MAAA,OAAA,GAAU,MAAM,OAAA,CAAQ,GAAI,CAAA;AAAA,QAChCD,eAAc,CAAA,WAAA;AAAA,UACZ,EAAE,QAAQ,CAAC,EAAE,MAAM,CAAC,WAAW,CAAE,EAAC,CAAE,EAAA;AAAA,UACpC,EAAE,KAAM;AAAA,SACV;AAAA,QACAE,yCAAA;AAAA,UACE,eAAgB,CAAA;AAAA,SAClB;AAAA,QACAA,yCAAA;AAAA,UACE,eAAgB,CAAA;AAAA;AAClB,OACD,CAAA;AAGD,MAAM,MAAA,QAAA,GAAA,CACJ,MAAMR,aAAY,CAAA,oBAAA;AAAA,QAChB,CAAC,EAAE,UAAY,EAAAS,8BAAA,EAAoB,CAAA;AAAA,QACnC;AAAA,UACE;AAAA;AACF,SAEF,CAAC,CAAA;AAEH,MAAI,IAAA,KAAA;AACJ,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAC,sCAAA,CAAgB,WAAa,EAAA;AACnD,QAAM,MAAA,MAAA,GAASC,8BAAoB,CAAA,QAAA,CAAS,UAAU,CAAA;AACtD,QAAQ,KAAA,GAAA,OAAA,CAAQ,CAAC,CAAE,CAAA,MAAA;AAAA,UAAO,CACxB,IAAA,KAAA,MAAA,EAAQ,OACJ,GAAA,CAAC,OAAO,GAAI,CAAA,QAAA,CAAS,IAAK,CAAA,IAAI,CAC9B,GAAA,MAAA,CAAO,GAAI,CAAA,QAAA,CAAS,KAAK,IAAI;AAAA,SACnC;AAAA;AAGF,MAAM,MAAA,IAAA,GAAOC,iCAAY,OAAQ,CAAA,CAAC,EAAE,KAAO,EAAA,KAAA,IAAS,OAAQ,CAAA,CAAC,CAAC,CAAA;AAG9D,MAAA,MAAM,QAAW,GAAAC,sCAAA,CAAkB,IAAM,EAAA,OAAA,CAAQ,CAAC,CAAC,CAAA;AAEnD,MAAA,QAAA,CAAS,IAAK,CAAA;AAAA,QACZ,GAAG,QAAA;AAAA,QACH,SAAA,EAAWT,4BAAe,YAAa,EAAA;AAAA,QACvC,UAAA,EAAYA,4BAAe,aAAc;AAAA,OAC1C,CAAA;AAAA,aAEM,KAAY,EAAA;AACnB,MAAO,MAAA,CAAA,KAAA,CAAM,YAAY,KAAK,CAAA;AAC9B,MAAA,QAAA,CAAS,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,iCAAiC,CAAA;AAAA;AACtE,GACD,CAAA;AAED,EAAA,MAAA,CAAO,IAAK,CAAA,UAAA,gBAAe,YAAc,EAAA,OAAO,SAAS,QAAa,KAAA;AACpE,IAAI,IAAA;AAEF,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,OAAO,CAAA;AACtD,MAAA,MAAM,EAAE,KAAA,EAAU,GAAA,MAAM,KAAK,qBAAsB,CAAA;AAAA,QACjD,UAAY,EAAA,WAAA;AAAA,QACZ,cAAgB,EAAA;AAAA,OACjB,CAAA;AAGD,MAAM,MAAA,GAAA,GAAM,QAAQ,IAAK,CAAA,GAAA;AAEzB,MAAA,IAAI,CAAC,GAAK,EAAA;AACR,QAAA,QAAA,CAAS,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,0BAA0B,CAAA;AAC7D,QAAA;AAAA;AAGF,MAAM,MAAA,aAAA,GAAgB,MAAM,OAAA,CAAQ,GAAI,CAAA;AAAA,QACtCE,eAAc,CAAA,WAAA;AAAA,UACZ,EAAE,MAAQ,EAAA,CAAC,EAAE,cAAgB,EAAA,GAAA,EAAK,CAAE,EAAA;AAAA,UACpC,EAAE,KAAM;AAAA,SACV;AAAA,QACAE,yCAAA;AAAA,UACE,eAAgB,CAAA;AAAA,SAClB;AAAA,QACAA,yCAAA;AAAA,UACE,eAAgB,CAAA;AAAA;AAClB,OACD,CAAA;AAGD,MAAM,MAAA,QAAA,GAAA,CACJ,MAAMR,aAAY,CAAA,oBAAA;AAAA,QAChB,CAAC,EAAE,UAAY,EAAAS,8BAAA,EAAoB,CAAA;AAAA,QACnC;AAAA,UACE;AAAA;AACF,SAEF,CAAC,CAAA;AAEH,MAAI,IAAA,KAAA;AACJ,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAC,sCAAA,CAAgB,WAAa,EAAA;AACnD,QAAM,MAAA,MAAA,GAASC,8BAAoB,CAAA,QAAA,CAAS,UAAU,CAAA;AACtD,QAAQ,KAAA,GAAA,aAAA,CAAc,CAAC,CAAE,CAAA,MAAA;AAAA,UAAO,CAC9B,IAAA,KAAA,MAAA,EAAQ,OACJ,GAAA,CAAC,OAAO,GAAI,CAAA,QAAA,CAAS,IAAK,CAAA,IAAI,CAC9B,GAAA,MAAA,CAAO,GAAI,CAAA,QAAA,CAAS,KAAK,IAAI;AAAA,SACnC;AAAA;AAGF,MAAA,MAAM,IAAO,GAAAC,gCAAA;AAAA,QACX,aAAA,CAAc,CAAC,CAAE,CAAA,KAAA;AAAA,QACjB,KAAA,IAAS,cAAc,CAAC;AAAA,OAC1B;AAEA,MAAI,IAAA,CAAC,KAAK,MAAQ,EAAA;AAChB,QAAA,QAAA,CAAS,IAAK,CAAA;AAAA,UACZ,aAAa,EAAC;AAAA,UACd,WAAa,EAAA,EAAA;AAAA,UACb,WAAa,EAAA,EAAA;AAAA,UACb,SAAA,EAAWR,4BAAe,YAAa,EAAA;AAAA,UACvC,UAAA,EAAYA,4BAAe,aAAc;AAAA,SAC1C,CAAA;AACD,QAAA;AAAA;AAGF,MAAA,MAAM,MAAS,GAAA;AAAA,QACb,UAAY,EAAA;AAAA,UACV,IAAA,EAAM,IAAK,CAAA,CAAC,CAAE,CAAA;AAAA;AAChB,OACF;AAGA,MAAM,MAAA,aAAA,GAAgB,MAAM,OAAA,CAAQ,GAAI,CAAA;AAAA,QACtCI,yCAAA;AAAA,UACE,CAAC,UACC,KAAA,eAAA,CAAgB,cAAe,CAAA;AAAA,YAC7B,GAAG,MAAA;AAAA,YACH,GAAG;AAAA,WACJ;AAAA,SACL;AAAA,QACAA,yCAAA;AAAA,UACE,CAAC,UACC,KAAA,eAAA,CAAgB,sBAAuB,CAAA;AAAA,YACrC,GAAG,MAAA;AAAA,YACH,GAAG;AAAA,WACJ;AAAA,SACL;AAAA,QACAA,yCAAA;AAAA,UACE,CAAC,UACC,KAAA,eAAA,CAAgB,oBAAqB,CAAA;AAAA,YACnC,GAAG,MAAA;AAAA,YACH,GAAG;AAAA,WACJ;AAAA;AACL,OACD,CAAA;AAED,MAAA,MAAM,OAAU,GAAAK,sCAAA,CAAkB,IAAM,EAAA,aAAA,CAAc,CAAC,CAAC,CAAA;AACxD,MAAA,MAAM,WAAc,GAAAC,sCAAA;AAAA,QAClB,cAAc,CAAC,CAAA,CAAE,OAAO,CAAQ,IAAA,KAAA,CAAC,KAAK,UAAU,CAAA;AAAA;AAAA,QAChD,aAAA,CAAc,CAAC,CAAE,CAAA,MAAA;AAAA,UACf,CAAQ,IAAA,KAAA,EAAE,IAAK,CAAA,WAAA,CAAY,MAAW,KAAA,SAAA;AAAA,SACxC;AAAA;AAAA,QACA,cAAc,CAAC;AAAA;AAAA,OACjB;AAEA,MAAA,QAAA,CAAS,IAAK,CAAA;AAAA,QACZ,WAAA;AAAA,QACA,aAAa,OAAQ,CAAA,WAAA,CAAY,CAAC,CAAA,CAAE,OAAO,MAAO,CAAA,IAAA;AAAA,QAClD,WAAa,EAAA,OAAA,CAAQ,WAAY,CAAA,CAAC,CAAE,CAAA,IAAA;AAAA,QACpC,SAAA,EAAWV,4BAAe,YAAa,EAAA;AAAA,QACvC,UAAA,EAAYA,4BAAe,aAAc;AAAA,OAC1C,CAAA;AAAA,aAEM,KAAY,EAAA;AACnB,MAAO,MAAA,CAAA,KAAA,CAAM,YAAY,KAAK,CAAA;AAC9B,MAAA,QAAA,CAAS,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,iCAAiC,CAAA;AAAA;AACtE,GACD,CAAA;AAED,EAAA,MAAA,CAAO,GAAI,CAAA,SAAA,EAAW,CAAC,CAAA,EAAG,QAAa,KAAA;AACrC,IAAA,MAAA,CAAO,KAAK,OAAO,CAAA;AACnB,IAAA,QAAA,CAAS,IAAK,CAAA,EAAE,MAAQ,EAAA,IAAA,EAAM,CAAA;AAAA,GAC/B,CAAA;AAED,EAAA,MAAM,aAAaW,gCAAkB,CAAA,MAAA,CAAO,EAAE,MAAA,EAAQ,QAAQ,CAAA;AAE9D,EAAO,MAAA,CAAA,GAAA,CAAI,UAAW,CAAA,KAAA,EAAO,CAAA;AAC7B,EAAO,OAAA,MAAA;AACT;;;;"}
+{"version":3,"file":"router.cjs.js","sources":["../../src/service/router.ts"],"sourcesContent":["import express from 'express';\nimport Router from 'express-promise-router';\nimport { MiddlewareFactory } from '@backstage/backend-defaults/rootHttpRouter';\nimport {\n  LoggerService,\n  DiscoveryService,\n  AuthService,\n  HttpAuthService,\n  PermissionsService,\n} from '@backstage/backend-plugin-api';\nimport { CatalogClient } from '@backstage/catalog-client';\nimport { Config } from '@backstage/config';\nimport { AuthorizeResult } from '@backstage/plugin-permission-common';\nimport {\n  dataFindingParser,\n  dataMatcher,\n  dataProjectParser,\n  fetchQueryPagination,\n} from './data.service.helpers';\nimport { MendDataService } from './data.service';\nimport { MendAuthSevice } from './auth.service';\nimport {\n  PaginationQueryParams,\n  ProjectStatisticsSuccessResponseData,\n  OrganizationProjectSuccessResponseData,\n  CodeFindingSuccessResponseData,\n  DependenciesFindingSuccessResponseData,\n  ContainersFindingSuccessResponseData,\n} from './data.service.types';\nimport {\n  mendReadPermission,\n  transformConditions,\n  permissionIntegrationRouter,\n  type FilterProps,\n} from '../permission';\n\n/** @internal */\nexport type RouterOptions = {\n  logger: LoggerService;\n  config: Config;\n  discovery: DiscoveryService;\n  auth: AuthService;\n  httpAuth: HttpAuthService;\n  permissions: PermissionsService;\n};\n\nenum ROUTE {\n  PROJECT = '/project',\n  FINDING = '/finding',\n}\n\n/** @internal */\nexport async function createRouter(\n  options: RouterOptions,\n): Promise<express.Router> {\n  const { logger, config, discovery, auth, httpAuth, permissions } = options;\n\n  const router = Router();\n  router.use(express.json());\n\n  router.use(permissionIntegrationRouter);\n\n  const checkForAuth = (\n    _request: express.Request,\n    response: express.Response,\n    next: express.NextFunction,\n  ) => {\n    if (MendAuthSevice.getAuthToken()) {\n      next();\n      return;\n    }\n\n    MendAuthSevice.connect()\n      .then(next)\n      .catch(() => {\n        response.status(401).json({ error: 'Oops! Unauthorized' });\n      });\n  };\n\n  const baseUrl = config.getString('mend.baseUrl');\n  const activationKey = config.getString('mend.activationKey');\n\n  // Init api service\n  const mendDataService = new MendDataService({\n    baseUrl,\n    activationKey,\n  });\n\n  // Init catalog client\n  const catalogClient = new CatalogClient({ discoveryApi: discovery });\n\n  // Routes\n  router.get(ROUTE.PROJECT, checkForAuth, async (request, response) => {\n    try {\n      // service to service auth\n      const credentials = await httpAuth.credentials(request);\n      const { token } = await auth.getPluginRequestToken({\n        onBehalfOf: credentials,\n        targetPluginId: 'catalog',\n      });\n\n      // entity to project match\n      const results = await Promise.all([\n        catalogClient.getEntities(\n          { filter: [{ kind: ['Component'] }] },\n          { token },\n        ),\n        fetchQueryPagination<ProjectStatisticsSuccessResponseData>(\n          mendDataService.getProjectStatistics,\n        ),\n        fetchQueryPagination<OrganizationProjectSuccessResponseData>(\n          mendDataService.getOrganizationProject,\n        ),\n      ]);\n\n      // permission - filter to exclude or include project\n      const decision = (\n        await permissions.authorizeConditional(\n          [{ permission: mendReadPermission }],\n          {\n            credentials,\n          },\n        )\n      )[0];\n\n      let items;\n      if (decision.result === AuthorizeResult.CONDITIONAL) {\n        const filter = transformConditions(decision.conditions) as FilterProps;\n        items = results[1].filter(item =>\n          filter?.exclude\n            ? !filter.ids.includes(item.uuid)\n            : filter.ids.includes(item.uuid),\n        );\n      }\n\n      const data = dataMatcher(results[0].items, items || results[1]);\n\n      // parse data\n      const projects = dataProjectParser(data, results[2]);\n\n      response.json({\n        ...projects,\n        clientUrl: MendAuthSevice.getClientUrl(),\n        clientName: MendAuthSevice.getClientName(),\n      });\n      // Allow any object structure here\n    } catch (error: any) {\n      logger.error('/project', error);\n      response.status(500).json({ error: 'Oops! Please try again later.' });\n    }\n  });\n\n  router.post(ROUTE.FINDING, checkForAuth, async (request, response) => {\n    try {\n      // service to service auth\n      const credentials = await httpAuth.credentials(request);\n      const { token } = await auth.getPluginRequestToken({\n        onBehalfOf: credentials,\n        targetPluginId: 'catalog',\n      });\n\n      // entity to project match\n      const uid = request.body.uid;\n\n      if (!uid) {\n        response.status(401).json({ error: 'Oops! No UUID provided' });\n        return;\n      }\n\n      const projectResult = await Promise.all([\n        catalogClient.getEntities(\n          { filter: [{ 'metadata.uid': uid }] },\n          { token },\n        ),\n        fetchQueryPagination<ProjectStatisticsSuccessResponseData>(\n          mendDataService.getProjectStatistics,\n        ),\n        fetchQueryPagination<OrganizationProjectSuccessResponseData>(\n          mendDataService.getOrganizationProject,\n        ),\n      ]);\n\n      // permission - filter to exclude or include project\n      const decision = (\n        await permissions.authorizeConditional(\n          [{ permission: mendReadPermission }],\n          {\n            credentials,\n          },\n        )\n      )[0];\n\n      let items;\n      if (decision.result === AuthorizeResult.CONDITIONAL) {\n        const filter = transformConditions(decision.conditions) as FilterProps;\n        items = projectResult[1].filter(item =>\n          filter?.exclude\n            ? !filter.ids.includes(item.uuid)\n            : filter.ids.includes(item.uuid),\n        );\n      }\n\n      const data = dataMatcher(\n        projectResult[0].items,\n        items || projectResult[1],\n      );\n\n      if (!data.length) {\n        response.json({\n          findingList: [],\n          projectName: '',\n          projectUuid: '',\n          clientUrl: MendAuthSevice.getClientUrl(),\n          clientName: MendAuthSevice.getClientName(),\n        });\n        return;\n      }\n\n      const params = {\n        pathParams: {\n          uuid: data[0].uuid,\n        },\n      };\n\n      // get project findings\n      const findingResult = await Promise.all([\n        fetchQueryPagination<CodeFindingSuccessResponseData>(\n          (queryParam: PaginationQueryParams) =>\n            mendDataService.getCodeFinding({\n              ...params,\n              ...queryParam,\n            }),\n        ),\n        fetchQueryPagination<DependenciesFindingSuccessResponseData>(\n          (queryParam: PaginationQueryParams) =>\n            mendDataService.getDependenciesFinding({\n              ...params,\n              ...queryParam,\n            }),\n        ),\n        fetchQueryPagination<ContainersFindingSuccessResponseData>(\n          (queryParam: PaginationQueryParams) =>\n            mendDataService.getContainersFinding({\n              ...params,\n              ...queryParam,\n            }),\n        ),\n      ]);\n\n      const project = dataProjectParser(data, projectResult[2]);\n      const findingList = dataFindingParser(\n        findingResult[0].filter(item => !item.suppressed), // NOTE: Do not show suppressed item\n        findingResult[1].filter(\n          item => !(item.findingInfo.status === 'IGNORED'),\n        ), // NOTE: Do not show ignored item\n        findingResult[2], // ESC-51: Follow Jira activity\n      );\n\n      response.json({\n        findingList,\n        projectName: project.projectList[0].entity.params.repo,\n        projectUuid: project.projectList[0].uuid,\n        clientUrl: MendAuthSevice.getClientUrl(),\n        clientName: MendAuthSevice.getClientName(),\n      });\n      // Allow any object structure here\n    } catch (error: any) {\n      logger.error('/finding', error);\n      response.status(500).json({ error: 'Oops! Please try again later.' });\n    }\n  });\n\n  router.get('/health', (_, response) => {\n    logger.info('PONG!');\n    response.json({ status: 'ok' });\n  });\n\n  const middleware = MiddlewareFactory.create({ logger, config });\n\n  router.use(middleware.error());\n  return router;\n}\n"],"names":["permissions","Router","express","permissionIntegrationRouter","MendAuthSevice","MendDataService","catalogClient","CatalogClient","fetchQueryPagination","mendReadPermission","AuthorizeResult","transformConditions","dataMatcher","dataProjectParser","dataFindingParser","MiddlewareFactory"],"mappings":";;;;;;;;;;;;;;;;;;;AAoDA,eAAsB,aACpB,OACyB,EAAA;AACzB,EAAA,MAAM,EAAE,MAAQ,EAAA,MAAA,EAAQ,WAAW,IAAM,EAAA,QAAA,eAAUA,eAAgB,GAAA,OAAA;AAEnE,EAAA,MAAM,SAASC,uBAAO,EAAA;AACtB,EAAO,MAAA,CAAA,GAAA,CAAIC,wBAAQ,CAAA,IAAA,EAAM,CAAA;AAEzB,EAAA,MAAA,CAAO,IAAIC,sCAA2B,CAAA;AAEtC,EAAA,MAAM,YAAe,GAAA,CACnB,QACA,EAAA,QAAA,EACA,IACG,KAAA;AACH,IAAI,IAAAC,2BAAA,CAAe,cAAgB,EAAA;AACjC,MAAK,IAAA,EAAA;AACL,MAAA;AAAA;AAGF,IAAAA,2BAAA,CAAe,SACZ,CAAA,IAAA,CAAK,IAAI,CAAA,CACT,MAAM,MAAM;AACX,MAAA,QAAA,CAAS,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,sBAAsB,CAAA;AAAA,KAC1D,CAAA;AAAA,GACL;AAEA,EAAM,MAAA,OAAA,GAAU,MAAO,CAAA,SAAA,CAAU,cAAc,CAAA;AAC/C,EAAM,MAAA,aAAA,GAAgB,MAAO,CAAA,SAAA,CAAU,oBAAoB,CAAA;AAG3D,EAAM,MAAA,eAAA,GAAkB,IAAIC,4BAAgB,CAAA;AAAA,IAC1C,OAAA;AAAA,IACA;AAAA,GACD,CAAA;AAGD,EAAA,MAAMC,kBAAgB,IAAIC,2BAAA,CAAc,EAAE,YAAA,EAAc,WAAW,CAAA;AAGnE,EAAA,MAAA,CAAO,GAAI,CAAA,UAAA,gBAAe,YAAc,EAAA,OAAO,SAAS,QAAa,KAAA;AACnE,IAAI,IAAA;AAEF,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,OAAO,CAAA;AACtD,MAAA,MAAM,EAAE,KAAA,EAAU,GAAA,MAAM,KAAK,qBAAsB,CAAA;AAAA,QACjD,UAAY,EAAA,WAAA;AAAA,QACZ,cAAgB,EAAA;AAAA,OACjB,CAAA;AAGD,MAAM,MAAA,OAAA,GAAU,MAAM,OAAA,CAAQ,GAAI,CAAA;AAAA,QAChCD,eAAc,CAAA,WAAA;AAAA,UACZ,EAAE,QAAQ,CAAC,EAAE,MAAM,CAAC,WAAW,CAAE,EAAC,CAAE,EAAA;AAAA,UACpC,EAAE,KAAM;AAAA,SACV;AAAA,QACAE,yCAAA;AAAA,UACE,eAAgB,CAAA;AAAA,SAClB;AAAA,QACAA,yCAAA;AAAA,UACE,eAAgB,CAAA;AAAA;AAClB,OACD,CAAA;AAGD,MAAM,MAAA,QAAA,GAAA,CACJ,MAAMR,aAAY,CAAA,oBAAA;AAAA,QAChB,CAAC,EAAE,UAAY,EAAAS,8BAAA,EAAoB,CAAA;AAAA,QACnC;AAAA,UACE;AAAA;AACF,SAEF,CAAC,CAAA;AAEH,MAAI,IAAA,KAAA;AACJ,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAC,sCAAA,CAAgB,WAAa,EAAA;AACnD,QAAM,MAAA,MAAA,GAASC,8BAAoB,CAAA,QAAA,CAAS,UAAU,CAAA;AACtD,QAAQ,KAAA,GAAA,OAAA,CAAQ,CAAC,CAAE,CAAA,MAAA;AAAA,UAAO,CACxB,IAAA,KAAA,MAAA,EAAQ,OACJ,GAAA,CAAC,OAAO,GAAI,CAAA,QAAA,CAAS,IAAK,CAAA,IAAI,CAC9B,GAAA,MAAA,CAAO,GAAI,CAAA,QAAA,CAAS,KAAK,IAAI;AAAA,SACnC;AAAA;AAGF,MAAM,MAAA,IAAA,GAAOC,iCAAY,OAAQ,CAAA,CAAC,EAAE,KAAO,EAAA,KAAA,IAAS,OAAQ,CAAA,CAAC,CAAC,CAAA;AAG9D,MAAA,MAAM,QAAW,GAAAC,sCAAA,CAAkB,IAAM,EAAA,OAAA,CAAQ,CAAC,CAAC,CAAA;AAEnD,MAAA,QAAA,CAAS,IAAK,CAAA;AAAA,QACZ,GAAG,QAAA;AAAA,QACH,SAAA,EAAWT,4BAAe,YAAa,EAAA;AAAA,QACvC,UAAA,EAAYA,4BAAe,aAAc;AAAA,OAC1C,CAAA;AAAA,aAEM,KAAY,EAAA;AACnB,MAAO,MAAA,CAAA,KAAA,CAAM,YAAY,KAAK,CAAA;AAC9B,MAAA,QAAA,CAAS,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,iCAAiC,CAAA;AAAA;AACtE,GACD,CAAA;AAED,EAAA,MAAA,CAAO,IAAK,CAAA,UAAA,gBAAe,YAAc,EAAA,OAAO,SAAS,QAAa,KAAA;AACpE,IAAI,IAAA;AAEF,MAAA,MAAM,WAAc,GAAA,MAAM,QAAS,CAAA,WAAA,CAAY,OAAO,CAAA;AACtD,MAAA,MAAM,EAAE,KAAA,EAAU,GAAA,MAAM,KAAK,qBAAsB,CAAA;AAAA,QACjD,UAAY,EAAA,WAAA;AAAA,QACZ,cAAgB,EAAA;AAAA,OACjB,CAAA;AAGD,MAAM,MAAA,GAAA,GAAM,QAAQ,IAAK,CAAA,GAAA;AAEzB,MAAA,IAAI,CAAC,GAAK,EAAA;AACR,QAAA,QAAA,CAAS,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,0BAA0B,CAAA;AAC7D,QAAA;AAAA;AAGF,MAAM,MAAA,aAAA,GAAgB,MAAM,OAAA,CAAQ,GAAI,CAAA;AAAA,QACtCE,eAAc,CAAA,WAAA;AAAA,UACZ,EAAE,MAAQ,EAAA,CAAC,EAAE,cAAgB,EAAA,GAAA,EAAK,CAAE,EAAA;AAAA,UACpC,EAAE,KAAM;AAAA,SACV;AAAA,QACAE,yCAAA;AAAA,UACE,eAAgB,CAAA;AAAA,SAClB;AAAA,QACAA,yCAAA;AAAA,UACE,eAAgB,CAAA;AAAA;AAClB,OACD,CAAA;AAGD,MAAM,MAAA,QAAA,GAAA,CACJ,MAAMR,aAAY,CAAA,oBAAA;AAAA,QAChB,CAAC,EAAE,UAAY,EAAAS,8BAAA,EAAoB,CAAA;AAAA,QACnC;AAAA,UACE;AAAA;AACF,SAEF,CAAC,CAAA;AAEH,MAAI,IAAA,KAAA;AACJ,MAAI,IAAA,QAAA,CAAS,MAAW,KAAAC,sCAAA,CAAgB,WAAa,EAAA;AACnD,QAAM,MAAA,MAAA,GAASC,8BAAoB,CAAA,QAAA,CAAS,UAAU,CAAA;AACtD,QAAQ,KAAA,GAAA,aAAA,CAAc,CAAC,CAAE,CAAA,MAAA;AAAA,UAAO,CAC9B,IAAA,KAAA,MAAA,EAAQ,OACJ,GAAA,CAAC,OAAO,GAAI,CAAA,QAAA,CAAS,IAAK,CAAA,IAAI,CAC9B,GAAA,MAAA,CAAO,GAAI,CAAA,QAAA,CAAS,KAAK,IAAI;AAAA,SACnC;AAAA;AAGF,MAAA,MAAM,IAAO,GAAAC,gCAAA;AAAA,QACX,aAAA,CAAc,CAAC,CAAE,CAAA,KAAA;AAAA,QACjB,KAAA,IAAS,cAAc,CAAC;AAAA,OAC1B;AAEA,MAAI,IAAA,CAAC,KAAK,MAAQ,EAAA;AAChB,QAAA,QAAA,CAAS,IAAK,CAAA;AAAA,UACZ,aAAa,EAAC;AAAA,UACd,WAAa,EAAA,EAAA;AAAA,UACb,WAAa,EAAA,EAAA;AAAA,UACb,SAAA,EAAWR,4BAAe,YAAa,EAAA;AAAA,UACvC,UAAA,EAAYA,4BAAe,aAAc;AAAA,SAC1C,CAAA;AACD,QAAA;AAAA;AAGF,MAAA,MAAM,MAAS,GAAA;AAAA,QACb,UAAY,EAAA;AAAA,UACV,IAAA,EAAM,IAAK,CAAA,CAAC,CAAE,CAAA;AAAA;AAChB,OACF;AAGA,MAAM,MAAA,aAAA,GAAgB,MAAM,OAAA,CAAQ,GAAI,CAAA;AAAA,QACtCI,yCAAA;AAAA,UACE,CAAC,UACC,KAAA,eAAA,CAAgB,cAAe,CAAA;AAAA,YAC7B,GAAG,MAAA;AAAA,YACH,GAAG;AAAA,WACJ;AAAA,SACL;AAAA,QACAA,yCAAA;AAAA,UACE,CAAC,UACC,KAAA,eAAA,CAAgB,sBAAuB,CAAA;AAAA,YACrC,GAAG,MAAA;AAAA,YACH,GAAG;AAAA,WACJ;AAAA,SACL;AAAA,QACAA,yCAAA;AAAA,UACE,CAAC,UACC,KAAA,eAAA,CAAgB,oBAAqB,CAAA;AAAA,YACnC,GAAG,MAAA;AAAA,YACH,GAAG;AAAA,WACJ;AAAA;AACL,OACD,CAAA;AAED,MAAA,MAAM,OAAU,GAAAK,sCAAA,CAAkB,IAAM,EAAA,aAAA,CAAc,CAAC,CAAC,CAAA;AACxD,MAAA,MAAM,WAAc,GAAAC,sCAAA;AAAA,QAClB,cAAc,CAAC,CAAA,CAAE,OAAO,CAAQ,IAAA,KAAA,CAAC,KAAK,UAAU,CAAA;AAAA;AAAA,QAChD,aAAA,CAAc,CAAC,CAAE,CAAA,MAAA;AAAA,UACf,CAAQ,IAAA,KAAA,EAAE,IAAK,CAAA,WAAA,CAAY,MAAW,KAAA,SAAA;AAAA,SACxC;AAAA;AAAA,QACA,cAAc,CAAC;AAAA;AAAA,OACjB;AAEA,MAAA,QAAA,CAAS,IAAK,CAAA;AAAA,QACZ,WAAA;AAAA,QACA,aAAa,OAAQ,CAAA,WAAA,CAAY,CAAC,CAAA,CAAE,OAAO,MAAO,CAAA,IAAA;AAAA,QAClD,WAAa,EAAA,OAAA,CAAQ,WAAY,CAAA,CAAC,CAAE,CAAA,IAAA;AAAA,QACpC,SAAA,EAAWV,4BAAe,YAAa,EAAA;AAAA,QACvC,UAAA,EAAYA,4BAAe,aAAc;AAAA,OAC1C,CAAA;AAAA,aAEM,KAAY,EAAA;AACnB,MAAO,MAAA,CAAA,KAAA,CAAM,YAAY,KAAK,CAAA;AAC9B,MAAA,QAAA,CAAS,OAAO,GAAG,CAAA,CAAE,KAAK,EAAE,KAAA,EAAO,iCAAiC,CAAA;AAAA;AACtE,GACD,CAAA;AAED,EAAA,MAAA,CAAO,GAAI,CAAA,SAAA,EAAW,CAAC,CAAA,EAAG,QAAa,KAAA;AACrC,IAAA,MAAA,CAAO,KAAK,OAAO,CAAA;AACnB,IAAA,QAAA,CAAS,IAAK,CAAA,EAAE,MAAQ,EAAA,IAAA,EAAM,CAAA;AAAA,GAC/B,CAAA;AAED,EAAA,MAAM,aAAaW,gCAAkB,CAAA,MAAA,CAAO,EAAE,MAAA,EAAQ,QAAQ,CAAA;AAE9D,EAAO,MAAA,CAAA,GAAA,CAAI,UAAW,CAAA,KAAA,EAAO,CAAA;AAC7B,EAAO,OAAA,MAAA;AACT;;;;"}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@backstage-community/plugin-mend-backend",
-  "version": "0.4.0",
+  "version": "0.4.1",
   "main": "dist/index.cjs.js",
   "types": "dist/index.d.ts",
   "license": "Apache-2.0",