@barchart/portfolio-client-js 1.4.7 → 2.0.0

package/lib/security/JwtProvider.js

@@ -0,0 +1,188 @@
+const assert = require('@barchart/common-js/lang/assert'),
+	Disposable = require('@barchart/common-js/lang/Disposable'),
+	is = require('@barchart/common-js/lang/is'),
+	random = require('@barchart/common-js/lang/random'),
+	Scheduler = require('@barchart/common-js/timing/Scheduler');
+
+const EndpointBuilder = require('@barchart/common-js/api/http/builders/EndpointBuilder'),
+	Gateway = require('@barchart/common-js/api/http/Gateway'),
+	ProtocolType = require('@barchart/common-js/api/http/definitions/ProtocolType'),
+	ResponseInterceptor = require('@barchart/common-js/api/http/interceptors/ResponseInterceptor'),
+	VerbType = require('@barchart/common-js/api/http/definitions/VerbType');
+
+const Configuration = require('../common/Configuration');
+
+module.exports = (() => {
+	'use strict';
+
+	const DEFAULT_REFRESH_INTERVAL_MILLISECONDS = 5 * 60 * 1000;
+
+	/**
+	 * Generates and caches a signed token (using a delegate). The cached token
+	 * is refreshed periodically.
+	 *
+	 * @public
+	 * @exported
+	 * @param {Callbacks.JwtTokenGenerator} tokenGenerator - An anonymous function which returns a signed JWT token.
+	 * @param {Number=} refreshInterval - The number of milliseconds which must pass before a new JWT token is generated. A zero value means the token should never be refreshed. A null or undefined value means the token is not cached.
+	 */
+	class JwtProvider extends Disposable {
+		constructor(tokenGenerator, refreshInterval) {
+			super();
+
+			assert.argumentIsRequired(tokenGenerator, 'tokenGenerator', Function);
+			assert.argumentIsOptional(refreshInterval, 'refreshInterval', Number);
+
+			this._tokenGenerator = tokenGenerator;
+
+			this._tokenPromise = null;
+
+			this._refreshTimestamp = null;
+			this._refreshPending = false;
+
+			if (is.number(refreshInterval)) {
+				this._refreshInterval = Math.max(refreshInterval || 0, 0);
+				this._refreshJitter = random.range(0, Math.floor(this._refreshInterval / 10));
+			} else {
+				this._refreshInterval = null;
+				this._refreshJitter = null;
+			}
+
+			this._scheduler = new Scheduler();
+		}
+
+		/**
+		 * Reads the current token, refreshing if necessary.
+		 *
+		 * @public
+		 * @returns {Promise<String>}
+		 */
+		getToken() {
+			return Promise.resolve()
+				.then(() => {
+					if (this._refreshPending) {
+						return this._tokenPromise;
+					}
+
+					if (this._tokenPromise === null || this._refreshInterval === null || (this._refreshInterval > 0 && getTime() > (this._refreshTimestamp + this._refreshInterval + this._refreshJitter))) {
+						this._refreshPending = true;
+
+						this._tokenPromise = this._scheduler.backoff(() => this._tokenGenerator(), 100, 'Read JWT token', 3)
+							.then((token) => {
+								this._refreshTimestamp = getTime();
+								this._refreshPending = false;
+
+								return token;
+							}).catch((e) => {
+								this._tokenPromise = null;
+
+								this._refreshTimestamp = null;
+								this._refreshPending = false;
+
+								return Promise.reject(e);
+							});
+					}
+
+					return this._tokenPromise;
+				});
+		}
+
+		/**
+		 * A factory for {@link JwtProvider} which is an alternative to the constructor.
+		 *
+		 * @public
+		 * @static
+		 * @exported
+		 * @param {Callbacks.JwtTokenGenerator} tokenGenerator - An anonymous function which returns a signed JWT token.
+		 * @param {Number=} refreshInterval - The number of milliseconds which must pass before a new JWT token is generated. A zero value means the token should never be refreshed. A null or undefined value means the token is not cached.
+		 * @returns {JwtProvider}
+		 */
+		static fromTokenGenerator(tokenGenerator, refreshInterval) {
+			return new JwtProvider(tokenGenerator, refreshInterval);
+		}
+
+		/**
+		 * Builds a {@link JwtProvider} which will generate tokens impersonating the specified
+		 * user. These tokens will only work in the "test" environment.
+		 *
+		 * Recall, the "test" environment is not "secure" -- any data saved here can be accessed
+		 * by anyone (using this feature). Furthermore, data is periodically purged from the
+		 * test environment.
+		 *
+		 * @public
+		 * @static
+		 * @param {String} userId - The user identifier to impersonate.
+		 * @param {String} contextId - The context identifier of the user to impersonate.
+		 * @param {String=} permissions - The desired permission level.
+		 * @returns {JwtProvider}
+		 */
+		static forTest(userId, contextId, permissions) {
+			return getJwtProviderForImpersonation(Configuration.getJwtImpersonationHost, 'test', userId, contextId, permissions);
+		}
+
+		/**
+		 * Builds a {@link JwtProvider} which will generate tokens impersonating the specified
+		 * user. The "development" environment is for Barchart use only and access is restricted
+		 * to Barchart's internal network.
+		 *
+		 * @public
+		 * @static
+		 * @param {String} userId - The user identifier to impersonate.
+		 * @param {String} contextId - The context identifier of the user to impersonate.
+		 * @param {String=} permissions - The desired permission level.
+		 * @returns {JwtProvider}
+		 */
+		static forDevelopment(userId, contextId, permissions) {
+			return getJwtProviderForImpersonation(Configuration.getJwtImpersonationHost, 'dev', userId, contextId, permissions);
+		}
+
+		_onDispose() {
+			this._scheduler.dispose();
+			this._scheduler = null;
+		}
+
+		toString() {
+			return '[JwtProvider]';
+		}
+	}
+
+	function getJwtProviderForImpersonation(host, environment, userId, contextId, permissions) {
+		assert.argumentIsRequired(host, 'host', String);
+		assert.argumentIsRequired(environment, 'environment', String);
+		assert.argumentIsRequired(userId, 'userId', String);
+		assert.argumentIsRequired(contextId, 'contextId', String);
+		assert.argumentIsOptional(permissions, 'permissions', String);
+
+		const tokenEndpoint = EndpointBuilder.for('generate-impersonation-jwt-for-test', 'generate JWT token for test environment')
+			.withVerb(VerbType.POST)
+			.withProtocol(ProtocolType.HTTPS)
+			.withHost(host)
+			.withPathBuilder((pb) =>
+				pb.withLiteralParameter('version', 'v1')
+					.withLiteralParameter('tokens', 'tokens')
+					.withLiteralParameter('impersonate', 'impersonate')
+					.withLiteralParameter('service', 'portfolio')
+					.withLiteralParameter('environment', environment)
+			)
+			.withBody()
+			.withResponseInterceptor(ResponseInterceptor.DATA)
+			.endpoint;
+
+		const payload = { };
+
+		payload.userId = userId;
+		payload.contextId = contextId;
+
+		if (permissions) {
+			payload.permissions = permissions;
+		}
+
+		return new JwtProvider(() => Gateway.invoke(tokenEndpoint, payload), DEFAULT_REFRESH_INTERVAL_MILLISECONDS);
+	}
+
+	function getTime() {
+		return (new Date()).getTime();
+	}
+
+	return JwtProvider;
+})();

package/lib/security/meta.js

@@ -0,0 +1,14 @@
+/**
+ * A meta namespace containing signatures of anonymous functions.
+ *
+ * @namespace Callbacks
+ */
+
+/**
+ * A function which returns a signed token.
+ *
+ * @public
+ * @callback JwtTokenGenerator
+ * @memberOf Callbacks
+ * @returns {String|Promise<String>}
+ */

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@barchart/portfolio-client-js",
-  "version": "1.4.7",
+  "version": "2.0.0",
   "description": "JavaScript library for interfacing with Barchart's Portfolio API",
   "author": {
     "name": "Bryan Ingle",
@@ -21,13 +21,13 @@
     "SDK"
   ],
   "dependencies": {
-    "@barchart/common-js": "^3.5.1",
+    "@barchart/common-js": "^3.15.0",
     "@barchart/portfolio-api-common": "^1.4.4"
   },
   "devDependencies": {
-    "@babel/core": "^7.6.2",
+    "@babel/core": "^7.11.1",
     "babelify": "^10.0.0",
-    "browserify": "^16.5.0",
+    "browserify": "^16.5.2",
     "git-get-status": "^1.0.5",
     "glob": "^6.0.1",
     "gulp": "^4.0.2",
@@ -35,9 +35,9 @@
     "gulp-jasmine": "^2.2.1",
     "gulp-jsdoc3": "^1.0.1",
     "gulp-jshint": "~2.1.0",
-    "gulp-replace": "^0.5.4",
     "gulp-prompt": "^1.2.0",
-    "jshint": "^2.10.3",
+    "gulp-replace": "^0.5.4",
+    "jshint": "^2.12.0",
     "vinyl-buffer": "^1.0.1",
     "vinyl-source-stream": "^2.0.0"
   },

package/example/example.css

@@ -1,124 +0,0 @@
-body {
-    font-family: "Gill Sans MT";
-}
-h4 {
-    margin: 0px;
-}
-
-.container-center-outer  {
-    height: 100%;
-    width: 100%;
-
-    display: table;
-}
-.container-center-inner {
-    display: table-cell;
-    text-align: center;
-    vertical-align: middle;
-}
-
-.center {
-    text-align: center;
-}
-
-.header {
-    position: absolute;
-    z-index: 1000;
-    top: 0px;
-    left: 0px;
-    right: 0px;
-    height: 50px;
-    background-color: #29506D;
-    color: #FFFFFF;
-    padding-left: 20px;
-    padding-right: 20px;
-}
-.header h4 {
-    line-height: 50px;
-    margin-top: 0px;
-    margin-bottom: 0px;
-}
-.header .header-action-buttons {
-    margin-left: 20px;
-}
-.header .text-button {
-    line-height: 50px;
-    margin-right: 10px;
-}
-
-.header input {
-    position: relative;
-    top: -4px;
-}
-
-.header .input-group {
-    position: relative;
-    top: 6px;
-}
-
-.header .input-group input {
-    top: 1px;
-}
-
-.header .header-action-buttons .btn-group {
-    margin-top: 8px;
-}
-
-.main {
-    position: absolute;
-    height: auto;
-    top: 50px;
-    bottom: 40px;
-    left: 0px;
-    right: 0px;
-    overflow: auto;
-    padding-top: 20px;
-    padding-left: 20px;
-    padding-right: 20px;
-}
-
-.main .login {
-    margin: auto;
-    width: 300px;
-}
-
-.footer {
-    position: absolute;
-    bottom: 0px;
-    left: 0px;
-    right: 0px;
-    height: 40px;
-    background-color: #496D89;
-    opacity: 0.99;
-    z-index: 1;
-    padding-left: 20px;
-    padding-right: 20px;
-}
-.footer h4 {
-    font-size: 14px;
-    line-height: 40px;
-    margin-top: 0px;
-    margin-bottom: 0px;
-    color: white;
-}
-
-.watchlist-action-buttons .text-button {
-    margin-left: 10px;
-}
-
-.text-button {
-    cursor: pointer;
-}
-.text-button:hover {
-    text-shadow: 0 0 1.2em #00FFFF;
-}
-.text-button.text-button-black {
-    color: #555555;
-}
-.text-button.text-button-black:hover {
-    text-shadow: 0 0 1.2em #FF0000;
-}
-
-.btn {
-    text-shadow: none;
-}

package/example/example.html

@@ -1,98 +0,0 @@
-<!DOCTYPE html>
-<html lang="en">
-<head>
-    <meta charset="utf-8"/>
-
-    <title>Barchart Portfolio Client API</title>
-
-    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap.min.css" integrity="sha384-1q8mTJOASx8j1Au+a5WDVnPi2lkFfwwEAa8hDDdjZlpLegxhjVME1fgjWPGmkzs7" crossorigin="anonymous">
-    <link rel="stylesheet" href="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/css/bootstrap-theme.min.css" integrity="sha384-fLW2N01lMqjakBkx3l/M9EahuwpSfeNvV63J5ezn3uZzapT0u7EYsXMjQV+0En5r" crossorigin="anonymous">
-    <link rel="stylesheet" href="https://cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/toastr.min.css" type="text/css">
-    <link rel="stylesheet" href="example.css" type="text/css">
-
-    <script src="https://cdnjs.cloudflare.com/ajax/libs/babel-polyfill/6.23.0/polyfill.min.js"></script>
-
-    <script src="https://code.jquery.com/jquery-2.1.4.min.js"></script>
-    <script src="https://cdnjs.cloudflare.com/ajax/libs/knockout/3.4.0/knockout-min.js"></script>
-    <script src="https://maxcdn.bootstrapcdn.com/bootstrap/3.3.6/js/bootstrap.min.js" integrity="sha384-0mSbJDEHialfmuBBQP6A4Qrprq5OVfW37PRR3j5ELqxss1yVqOtnepnHVP9aJ7xS" crossorigin="anonymous"></script>
-    <script src="https://cdnjs.cloudflare.com/ajax/libs/toastr.js/latest/toastr.min.js"></script>
-
-    <script src="example.js"></script>
-
-    <script type="text/html" id="disconnected-template">
-        <div class="container-center-outer">
-            <div class="container-center-inner">
-                <form class="form-horizontal login">
-                    <div class="form-group" data-bind="css: { 'has-error': user().length === 0 }, event: { keypress: handleLoginKeypress }">
-                        <label class="pull-left">User</label>
-                        <input class="form-control" data-bind="textInput: user" type="text" placeholder="User">
-                    </div>
-                    <div class="form-group" data-bind="css: { 'has-error': user().length === 0 }, event: { keypress: handleLoginKeypress }">
-                        <label class="pull-left">Legacy User</label>
-                        <input class="form-control" data-bind="textInput: userLegacy" type="text" placeholder="Legacy User">
-                    </div>
-                    <div class="form-group buttons">
-                        <button class="form-control btn btn-primary" type="button" data-bind="click: connect, enable: canConnect">Connect</button>
-                    </div>
-                </form>
-            </div>
-        </div>
-    </script>
-
-    <script type="text/html" id="portfolio-header-template">
-        <div class="pull-left">
-            <h4 class="pull-left">Barchart Portfolio API <span data-bind="visible: connected"></span></h4>
-
-            <div class="pull-left header-action-buttons form-inline" style="margin-top: 12px;" data-bind="visible: connected() === true">
-                <input class="form-control" data-bind="value: portfolio" type="text" placeholder="Portfolio">
-                <input class="form-control" data-bind="value: position" type="text" placeholder="Position">
-                <input class="form-control" data-bind="value: transaction" type="text" placeholder="Transaction">
-            </div>
-        </div>
-
-        <div class="pull-left">
-            <div class="pull-left header-action-buttons form-inline" data-bind="visible: connected() === true">
-                <div class="dropdown" style="margin-top: 8px;">
-                    <button class="btn btn-default dropdown-toggle" style="width: 200px;" type="button" data-toggle="dropdown" aria-haspopup="true" aria-expanded="true">
-                        <span data-bind="text: mode().text"></span>
-                    </button>
-                    <ul class="dropdown-menu" data-bind="foreach: modes">
-                        <li class="center"><a href="#" data-bind="text: $data.text, click: function() { $parent.setMode($data); }"></a></li>
-                    </ul>
-                </div>
-            </div>
-
-            <div class="pull-left header-action-buttons form-inline" data-bind="visible: connected() === true">
-                <span class="text-button glyphicon glyphicon-play" data-bind="click: execute"></span>
-            </div>
-        </div>
-
-        <div class="pull-right">
-            <div class="header-action-buttons pull-right form-inline" data-bind="visible: connected() === true">
-                <span class="text-button glyphicon glyphicon-remove" data-bind="click: disconnect"></span>
-            </div>
-        </div>
-    </script>
-
-    <script type="text/html" id="portfolio-console-template">
-        <div data-bind="foreach: console">
-            <pre data-bind="text: $data" style="font-size: 10px;"></pre>
-        </div>
-    </script>
-
-    <script type="text/html" id="footer-template">
-        <h4 class="pull-left" data-bind="visible: connected">
-            Client Version: <span data-bind="text: clientVersion"></span>
-        </h4>
-        <h4 class="pull-right">
-            User: <span data-bind="text: user"></span>
-        </h4>
-    </script>
-</head>
-<body>
-<div class="header" data-bind="template: { name: 'portfolio-header-template' }"></div>
-<div class="main" data-bind="template: { name: activeTemplate }"></div>
-<div class="footer" data-bind="template: { name: 'footer-template' }">
-</div>
-</body>
-</html>