@boxyhq/saml-jackson 1.33.0 → 1.33.1-beta.1

package/dist/src/directory-sync/non-scim/google/oauth.js

@@ -0,0 +1,105 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { OAuth2Client } from 'google-auth-library';
+import { JacksonError, apiError } from '../../../controller/error';
+const scope = [
+    'https://www.googleapis.com/auth/admin.directory.user.readonly',
+    'https://www.googleapis.com/auth/admin.directory.group.readonly',
+    'https://www.googleapis.com/auth/admin.directory.group.member.readonly',
+];
+export class GoogleAuth {
+    constructor({ directories, opts }) {
+        this.opts = opts;
+        this.directories = directories;
+    }
+    createOAuth2Client(directory) {
+        var _a, _b;
+        const googleProvider = (_b = (_a = this.opts.dsync) === null || _a === void 0 ? void 0 : _a.providers) === null || _b === void 0 ? void 0 : _b.google;
+        const authClient = new OAuth2Client(googleProvider === null || googleProvider === void 0 ? void 0 : googleProvider.clientId, googleProvider === null || googleProvider === void 0 ? void 0 : googleProvider.clientSecret, `${this.opts.externalUrl}${googleProvider === null || googleProvider === void 0 ? void 0 : googleProvider.callbackPath}`);
+        authClient.setCredentials({
+            access_token: directory.google_access_token,
+            refresh_token: directory.google_refresh_token,
+        });
+        return authClient;
+    }
+    // Generate the Google authorization URL
+    generateAuthorizationUrl(params) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const { directoryId } = params;
+            try {
+                const { data: directory, error } = yield this.directories.get(directoryId);
+                if (error) {
+                    throw error;
+                }
+                if ((directory === null || directory === void 0 ? void 0 : directory.type) !== 'google') {
+                    throw new JacksonError('Directory is not a Google Directory', 400);
+                }
+                const oauth2Client = this.createOAuth2Client(directory);
+                const authorizationUrl = oauth2Client.generateAuthUrl({
+                    access_type: 'offline',
+                    prompt: 'consent',
+                    scope,
+                    state: JSON.stringify({ directoryId }),
+                });
+                const data = {
+                    authorizationUrl,
+                };
+                return { data, error: null };
+            }
+            catch (error) {
+                return apiError(error);
+            }
+        });
+    }
+    // Get the Google API access token from the authorization code
+    getAccessToken(params) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const { directoryId, code } = params;
+            try {
+                const { data: directory, error } = yield this.directories.get(directoryId);
+                if (error) {
+                    throw error;
+                }
+                const oauth2Client = this.createOAuth2Client(directory);
+                const { tokens } = yield oauth2Client.getToken(code);
+                return { data: tokens, error: null };
+            }
+            catch (error) {
+                return apiError(error);
+            }
+        });
+    }
+    // Set the Google API access token and refresh token for the directory
+    setToken(params) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const { directoryId, accessToken, refreshToken } = params;
+            try {
+                if (!accessToken) {
+                    throw new JacksonError(`Access token is required`, 400);
+                }
+                if (!refreshToken) {
+                    throw new JacksonError(`Refresh token is required`, 400);
+                }
+                const { data } = yield this.directories.update(directoryId, {
+                    google_access_token: accessToken,
+                    google_refresh_token: refreshToken,
+                });
+                if (!data) {
+                    throw new JacksonError('Failed to update directory', 400);
+                }
+                return { data, error: null };
+            }
+            catch (error) {
+                return apiError(error);
+            }
+        });
+    }
+}
+//# sourceMappingURL=oauth.js.map

package/dist/src/directory-sync/non-scim/google/oauth.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"oauth.js","sourceRoot":"","sources":["../../../../../src/directory-sync/non-scim/google/oauth.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,YAAY,EAAe,MAAM,qBAAqB,CAAC;AAEhE,OAAO,EAAE,YAAY,EAAE,QAAQ,EAAE,MAAM,2BAA2B,CAAC;AAGnE,MAAM,KAAK,GAAG;IACZ,+DAA+D;IAC/D,gEAAgE;IAChE,uEAAuE;CACxE,CAAC;AAOF,MAAM,OAAO,UAAU;IAIrB,YAAY,EAAE,WAAW,EAAE,IAAI,EAAoB;QACjD,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;IACjC,CAAC;IAED,kBAAkB,CAAC,SAAoB;;QACrC,MAAM,cAAc,GAAG,MAAA,MAAA,IAAI,CAAC,IAAI,CAAC,KAAK,0CAAE,SAAS,0CAAE,MAAM,CAAC;QAE1D,MAAM,UAAU,GAAG,IAAI,YAAY,CACjC,cAAc,aAAd,cAAc,uBAAd,cAAc,CAAE,QAAQ,EACxB,cAAc,aAAd,cAAc,uBAAd,cAAc,CAAE,YAAY,EAC5B,GAAG,IAAI,CAAC,IAAI,CAAC,WAAW,GAAG,cAAc,aAAd,cAAc,uBAAd,cAAc,CAAE,YAAY,EAAE,CAC1D,CAAC;QAEF,UAAU,CAAC,cAAc,CAAC;YACxB,YAAY,EAAE,SAAS,CAAC,mBAAmB;YAC3C,aAAa,EAAE,SAAS,CAAC,oBAAoB;SAC9C,CAAC,CAAC;QAEH,OAAO,UAAU,CAAC;IACpB,CAAC;IAED,wCAAwC;IAClC,wBAAwB,CAAC,MAE9B;;YACC,MAAM,EAAE,WAAW,EAAE,GAAG,MAAM,CAAC;YAE/B,IAAI,CAAC;gBACH,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;gBAE3E,IAAI,KAAK,EAAE,CAAC;oBACV,MAAM,KAAK,CAAC;gBACd,CAAC;gBAED,IAAI,CAAA,SAAS,aAAT,SAAS,uBAAT,SAAS,CAAE,IAAI,MAAK,QAAQ,EAAE,CAAC;oBACjC,MAAM,IAAI,YAAY,CAAC,qCAAqC,EAAE,GAAG,CAAC,CAAC;gBACrE,CAAC;gBAED,MAAM,YAAY,GAAG,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;gBAExD,MAAM,gBAAgB,GAAG,YAAY,CAAC,eAAe,CAAC;oBACpD,WAAW,EAAE,SAAS;oBACtB,MAAM,EAAE,SAAS;oBACjB,KAAK;oBACL,KAAK,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE,WAAW,EAAE,CAAC;iBACvC,CAAC,CAAC;gBAEH,MAAM,IAAI,GAAG;oBACX,gBAAgB;iBACjB,CAAC;gBAEF,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;YAC/B,CAAC;YAAC,OAAO,KAAU,EAAE,CAAC;gBACpB,OAAO,QAAQ,CAAC,KAAK,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;KAAA;IAED,8DAA8D;IACxD,cAAc,CAAC,MAA6C;;YAChE,MAAM,EAAE,WAAW,EAAE,IAAI,EAAE,GAAG,MAAM,CAAC;YAErC,IAAI,CAAC;gBACH,MAAM,EAAE,IAAI,EAAE,SAAS,EAAE,KAAK,EAAE,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,GAAG,CAAC,WAAW,CAAC,CAAC;gBAE3E,IAAI,KAAK,EAAE,CAAC;oBACV,MAAM,KAAK,CAAC;gBACd,CAAC;gBAED,MAAM,YAAY,GAAG,IAAI,CAAC,kBAAkB,CAAC,SAAS,CAAC,CAAC;gBAExD,MAAM,EAAE,MAAM,EAAE,GAAG,MAAM,YAAY,CAAC,QAAQ,CAAC,IAAI,CAAC,CAAC;gBAErD,OAAO,EAAE,IAAI,EAAE,MAAM,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;YACvC,CAAC;YAAC,OAAO,KAAU,EAAE,CAAC;gBACpB,OAAO,QAAQ,CAAC,KAAK,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;KAAA;IAED,sEAAsE;IAChE,QAAQ,CAAC,MAId;;YACC,MAAM,EAAE,WAAW,EAAE,WAAW,EAAE,YAAY,EAAE,GAAG,MAAM,CAAC;YAE1D,IAAI,CAAC;gBACH,IAAI,CAAC,WAAW,EAAE,CAAC;oBACjB,MAAM,IAAI,YAAY,CAAC,0BAA0B,EAAE,GAAG,CAAC,CAAC;gBAC1D,CAAC;gBAED,IAAI,CAAC,YAAY,EAAE,CAAC;oBAClB,MAAM,IAAI,YAAY,CAAC,2BAA2B,EAAE,GAAG,CAAC,CAAC;gBAC3D,CAAC;gBAED,MAAM,EAAE,IAAI,EAAE,GAAG,MAAM,IAAI,CAAC,WAAW,CAAC,MAAM,CAAC,WAAW,EAAE;oBAC1D,mBAAmB,EAAE,WAAW;oBAChC,oBAAoB,EAAE,YAAY;iBACnC,CAAC,CAAC;gBAEH,IAAI,CAAC,IAAI,EAAE,CAAC;oBACV,MAAM,IAAI,YAAY,CAAC,4BAA4B,EAAE,GAAG,CAAC,CAAC;gBAC5D,CAAC;gBAED,OAAO,EAAE,IAAI,EAAE,KAAK,EAAE,IAAI,EAAE,CAAC;YAC/B,CAAC;YAAC,OAAO,KAAU,EAAE,CAAC;gBACpB,OAAO,QAAQ,CAAC,KAAK,CAAC,CAAC;YACzB,CAAC;QACH,CAAC;KAAA;CACF"}

package/dist/src/directory-sync/non-scim/index.d.ts

@@ -0,0 +1,24 @@
+import type { IDirectoryConfig, IUsers, IGroups, IRequestHandler, JacksonOption, EventCallback, CronLock } from '../../typings';
+interface SyncParams {
+    userController: IUsers;
+    groupController: IGroups;
+    opts: JacksonOption;
+    directories: IDirectoryConfig;
+    requestHandler: IRequestHandler;
+    eventCallback: EventCallback;
+    eventLock: CronLock;
+}
+export declare class SyncProviders {
+    private userController;
+    private groupController;
+    private directories;
+    private requestHandler;
+    private opts;
+    private cronInterval;
+    private eventCallback;
+    private eventLock;
+    constructor({ userController, groupController, opts, directories, requestHandler, eventCallback, eventLock, }: SyncParams);
+    startSync(): Promise<void>;
+    private scheduleSync;
+}
+export {};

package/dist/src/directory-sync/non-scim/index.js

@@ -0,0 +1,85 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { newGoogleProvider } from './google';
+import { SyncUsers } from './syncUsers';
+import { SyncGroups } from './syncGroups';
+import { SyncGroupMembers } from './syncGroupMembers';
+let isJobRunning = false;
+let intervalId;
+export class SyncProviders {
+    constructor({ userController, groupController, opts, directories, requestHandler, eventCallback, eventLock, }) {
+        var _a, _b;
+        this.userController = userController;
+        this.groupController = groupController;
+        this.directories = directories;
+        this.requestHandler = requestHandler;
+        this.eventCallback = eventCallback;
+        this.opts = opts;
+        this.cronInterval = (_b = (_a = this.opts.dsync) === null || _a === void 0 ? void 0 : _a.providers) === null || _b === void 0 ? void 0 : _b.google.cronInterval;
+        this.eventLock = eventLock;
+        if (this.cronInterval) {
+            this.scheduleSync = this.scheduleSync.bind(this);
+            this.scheduleSync();
+        }
+    }
+    // Start the sync process
+    startSync() {
+        return __awaiter(this, void 0, void 0, function* () {
+            if (isJobRunning) {
+                console.info('A sync process is already running, skipping.');
+                return;
+            }
+            if (!(yield this.eventLock.acquire())) {
+                return;
+            }
+            isJobRunning = true;
+            const { directory: provider } = newGoogleProvider({ directories: this.directories, opts: this.opts });
+            const startTime = Date.now();
+            try {
+                const allDirectories = yield provider.getDirectories();
+                console.info(`Starting the sync process for ${allDirectories.length} directories`);
+                for (const directory of allDirectories) {
+                    const params = {
+                        directory,
+                        provider,
+                        userController: this.userController,
+                        groupController: this.groupController,
+                        requestHandler: this.requestHandler,
+                        callback: this.eventCallback,
+                    };
+                    yield new SyncUsers(params).sync();
+                    yield new SyncGroups(params).sync();
+                    yield new SyncGroupMembers(params).sync();
+                }
+            }
+            catch (e) {
+                console.error(' Error processing Google sync:', e);
+            }
+            yield this.eventLock.release();
+            const endTime = Date.now();
+            console.info(`Sync process completed in ${(endTime - startTime) / 1000} seconds`);
+            isJobRunning = false;
+            if (this.cronInterval) {
+                this.scheduleSync();
+            }
+        });
+    }
+    // Schedule the next sync process
+    scheduleSync() {
+        if (!this.cronInterval) {
+            return;
+        }
+        if (intervalId) {
+            clearInterval(intervalId);
+        }
+        intervalId = setInterval(() => this.startSync(), this.cronInterval * 1000);
+    }
+}
+//# sourceMappingURL=index.js.map

package/dist/src/directory-sync/non-scim/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/directory-sync/non-scim/index.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,EAAE,iBAAiB,EAAE,MAAM,UAAU,CAAC;AAU7C,OAAO,EAAE,SAAS,EAAE,MAAM,aAAa,CAAC;AACxC,OAAO,EAAE,UAAU,EAAE,MAAM,cAAc,CAAC;AAC1C,OAAO,EAAE,gBAAgB,EAAE,MAAM,oBAAoB,CAAC;AAYtD,IAAI,YAAY,GAAG,KAAK,CAAC;AACzB,IAAI,UAA0B,CAAC;AAE/B,MAAM,OAAO,aAAa;IAUxB,YAAY,EACV,cAAc,EACd,eAAe,EACf,IAAI,EACJ,WAAW,EACX,cAAc,EACd,aAAa,EACb,SAAS,GACE;;QACX,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;QACvC,IAAI,CAAC,WAAW,GAAG,WAAW,CAAC;QAC/B,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,aAAa,GAAG,aAAa,CAAC;QACnC,IAAI,CAAC,IAAI,GAAG,IAAI,CAAC;QACjB,IAAI,CAAC,YAAY,GAAG,MAAA,MAAA,IAAI,CAAC,IAAI,CAAC,KAAK,0CAAE,SAAS,0CAAE,MAAM,CAAC,YAAY,CAAC;QACpE,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;QAE3B,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,YAAY,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;YACjD,IAAI,CAAC,YAAY,EAAE,CAAC;QACtB,CAAC;IACH,CAAC;IAED,yBAAyB;IACZ,SAAS;;YACpB,IAAI,YAAY,EAAE,CAAC;gBACjB,OAAO,CAAC,IAAI,CAAC,8CAA8C,CAAC,CAAC;gBAC7D,OAAO;YACT,CAAC;YAED,IAAI,CAAC,CAAC,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC,EAAE,CAAC;gBACtC,OAAO;YACT,CAAC;YAED,YAAY,GAAG,IAAI,CAAC;YAEpB,MAAM,EAAE,SAAS,EAAE,QAAQ,EAAE,GAAG,iBAAiB,CAAC,EAAE,WAAW,EAAE,IAAI,CAAC,WAAW,EAAE,IAAI,EAAE,IAAI,CAAC,IAAI,EAAE,CAAC,CAAC;YAEtG,MAAM,SAAS,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAE7B,IAAI,CAAC;gBACH,MAAM,cAAc,GAAG,MAAM,QAAQ,CAAC,cAAc,EAAE,CAAC;gBAEvD,OAAO,CAAC,IAAI,CAAC,iCAAiC,cAAc,CAAC,MAAM,cAAc,CAAC,CAAC;gBAEnF,KAAK,MAAM,SAAS,IAAI,cAAc,EAAE,CAAC;oBACvC,MAAM,MAAM,GAAG;wBACb,SAAS;wBACT,QAAQ;wBACR,cAAc,EAAE,IAAI,CAAC,cAAc;wBACnC,eAAe,EAAE,IAAI,CAAC,eAAe;wBACrC,cAAc,EAAE,IAAI,CAAC,cAAc;wBACnC,QAAQ,EAAE,IAAI,CAAC,aAAa;qBAC7B,CAAC;oBAEF,MAAM,IAAI,SAAS,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;oBACnC,MAAM,IAAI,UAAU,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;oBACpC,MAAM,IAAI,gBAAgB,CAAC,MAAM,CAAC,CAAC,IAAI,EAAE,CAAC;gBAC5C,CAAC;YACH,CAAC;YAAC,OAAO,CAAM,EAAE,CAAC;gBAChB,OAAO,CAAC,KAAK,CAAC,gCAAgC,EAAE,CAAC,CAAC,CAAC;YACrD,CAAC;YAED,MAAM,IAAI,CAAC,SAAS,CAAC,OAAO,EAAE,CAAC;YAE/B,MAAM,OAAO,GAAG,IAAI,CAAC,GAAG,EAAE,CAAC;YAC3B,OAAO,CAAC,IAAI,CAAC,6BAA6B,CAAC,OAAO,GAAG,SAAS,CAAC,GAAG,IAAI,UAAU,CAAC,CAAC;YAElF,YAAY,GAAG,KAAK,CAAC;YAErB,IAAI,IAAI,CAAC,YAAY,EAAE,CAAC;gBACtB,IAAI,CAAC,YAAY,EAAE,CAAC;YACtB,CAAC;QACH,CAAC;KAAA;IAED,iCAAiC;IACzB,YAAY;QAClB,IAAI,CAAC,IAAI,CAAC,YAAY,EAAE,CAAC;YACvB,OAAO;QACT,CAAC;QAED,IAAI,UAAU,EAAE,CAAC;YACf,aAAa,CAAC,UAAU,CAAC,CAAC;QAC5B,CAAC;QAED,UAAU,GAAG,WAAW,CAAC,GAAG,EAAE,CAAC,IAAI,CAAC,SAAS,EAAE,EAAE,IAAI,CAAC,YAAY,GAAG,IAAI,CAAC,CAAC;IAC7E,CAAC;CACF"}

package/dist/src/directory-sync/non-scim/syncGroupMembers.d.ts

@@ -0,0 +1,23 @@
+import type { Directory, IGroups, Group, IRequestHandler, DirectorySyncRequest, EventCallback, IDirectoryProvider, GroupMembership } from '../../typings';
+interface SyncGroupMembersParams {
+    groupController: IGroups;
+    provider: IDirectoryProvider;
+    requestHandler: IRequestHandler;
+    callback: EventCallback;
+    directory: Directory;
+}
+type HandleRequestParams = Pick<DirectorySyncRequest, 'method' | 'body' | 'resourceId'>;
+export declare class SyncGroupMembers {
+    private groupController;
+    private provider;
+    private requestHandler;
+    private callback;
+    private directory;
+    constructor({ directory, groupController, requestHandler, provider, callback }: SyncGroupMembersParams);
+    sync(): Promise<void>;
+    getAllExistingMembers(group: Group): Promise<Pick<GroupMembership, "user_id">[]>;
+    addMembers(group: Group, memberIds: string[]): Promise<void>;
+    deleteMembers(group: Group, memberIds: string[]): Promise<void>;
+    handleRequest(payload: HandleRequestParams): Promise<void>;
+}
+export {};

package/dist/src/directory-sync/non-scim/syncGroupMembers.js

@@ -0,0 +1,105 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import _ from 'lodash';
+import { compareAndFindDeletedMembers, compareAndFindNewMembers, toGroupMembershipSCIMPayload, } from './utils';
+export class SyncGroupMembers {
+    constructor({ directory, groupController, requestHandler, provider, callback }) {
+        this.groupController = groupController;
+        this.provider = provider;
+        this.requestHandler = requestHandler;
+        this.callback = callback;
+        this.directory = directory;
+    }
+    sync() {
+        return __awaiter(this, void 0, void 0, function* () {
+            let nextPageOption = null;
+            do {
+                const { data: groups, metadata } = yield this.provider.getGroups(this.directory, nextPageOption);
+                if (!groups || groups.length === 0) {
+                    break;
+                }
+                for (const group of groups) {
+                    const membersFromDB = yield this.getAllExistingMembers(group);
+                    const membersFromProvider = yield this.provider.getGroupMembers(this.directory, group);
+                    const idsFromDB = _.map(membersFromDB, 'user_id');
+                    const idsFromProvider = _.map(membersFromProvider, 'id');
+                    const deletedMembers = compareAndFindDeletedMembers(idsFromDB, idsFromProvider);
+                    const newMembers = compareAndFindNewMembers(idsFromDB, idsFromProvider);
+                    if (deletedMembers && deletedMembers.length > 0) {
+                        yield this.deleteMembers(group, deletedMembers);
+                    }
+                    if (newMembers && newMembers.length > 0) {
+                        yield this.addMembers(group, newMembers);
+                    }
+                }
+                nextPageOption = metadata;
+            } while (nextPageOption && nextPageOption.hasNextPage);
+        });
+    }
+    // Get all existing members for a group from the Jackson store
+    getAllExistingMembers(group) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const existingMembers = [];
+            const pageLimit = 500;
+            let pageOffset = 0;
+            while (true) {
+                const { data: members } = yield this.groupController
+                    .setTenantAndProduct(this.directory.tenant, this.directory.product)
+                    .getGroupMembers({
+                    groupId: group.id,
+                    pageOffset,
+                    pageLimit,
+                });
+                if (!members || members.length === 0) {
+                    break;
+                }
+                existingMembers.push(...members);
+                if (members.length < pageLimit) {
+                    break;
+                }
+                pageOffset += pageLimit;
+            }
+            return existingMembers;
+        });
+    }
+    addMembers(group, memberIds) {
+        return __awaiter(this, void 0, void 0, function* () {
+            yield this.handleRequest({
+                method: 'PATCH',
+                body: toGroupMembershipSCIMPayload(memberIds, 'add'),
+                resourceId: group.id,
+            });
+        });
+    }
+    deleteMembers(group, memberIds) {
+        return __awaiter(this, void 0, void 0, function* () {
+            yield this.handleRequest({
+                method: 'PATCH',
+                body: toGroupMembershipSCIMPayload(memberIds, 'remove'),
+                resourceId: group.id,
+            });
+        });
+    }
+    handleRequest(payload) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const request = {
+                query: {},
+                body: payload.body,
+                resourceType: 'groups',
+                method: payload.method,
+                directoryId: this.directory.id,
+                apiSecret: this.directory.scim.secret,
+                resourceId: payload.resourceId,
+            };
+            yield this.requestHandler.handle(request, this.callback);
+        });
+    }
+}
+//# sourceMappingURL=syncGroupMembers.js.map

package/dist/src/directory-sync/non-scim/syncGroupMembers.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"syncGroupMembers.js","sourceRoot":"","sources":["../../../../src/directory-sync/non-scim/syncGroupMembers.ts"],"names":[],"mappings":";;;;;;;;;AAAA,OAAO,CAAC,MAAM,QAAQ,CAAC;AAavB,OAAO,EACL,4BAA4B,EAC5B,wBAAwB,EACxB,4BAA4B,GAC7B,MAAM,SAAS,CAAC;AAYjB,MAAM,OAAO,gBAAgB;IAO3B,YAAY,EAAE,SAAS,EAAE,eAAe,EAAE,cAAc,EAAE,QAAQ,EAAE,QAAQ,EAA0B;QACpG,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;QACvC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;IAC7B,CAAC;IAEK,IAAI;;YACR,IAAI,cAAc,GAA4B,IAAI,CAAC;YAEnD,GAAG,CAAC;gBACF,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC;gBAEjG,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBACnC,MAAM;gBACR,CAAC;gBAED,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;oBAC3B,MAAM,aAAa,GAAG,MAAM,IAAI,CAAC,qBAAqB,CAAC,KAAK,CAAC,CAAC;oBAC9D,MAAM,mBAAmB,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,eAAe,CAAC,IAAI,CAAC,SAAS,EAAE,KAAK,CAAC,CAAC;oBAEvF,MAAM,SAAS,GAAG,CAAC,CAAC,GAAG,CAAC,aAAa,EAAE,SAAS,CAAC,CAAC;oBAClD,MAAM,eAAe,GAAG,CAAC,CAAC,GAAG,CAAC,mBAAmB,EAAE,IAAI,CAAC,CAAC;oBAEzD,MAAM,cAAc,GAAG,4BAA4B,CAAC,SAAS,EAAE,eAAe,CAAC,CAAC;oBAChF,MAAM,UAAU,GAAG,wBAAwB,CAAC,SAAS,EAAE,eAAe,CAAC,CAAC;oBAExE,IAAI,cAAc,IAAI,cAAc,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;wBAChD,MAAM,IAAI,CAAC,aAAa,CAAC,KAAK,EAAE,cAAc,CAAC,CAAC;oBAClD,CAAC;oBAED,IAAI,UAAU,IAAI,UAAU,CAAC,MAAM,GAAG,CAAC,EAAE,CAAC;wBACxC,MAAM,IAAI,CAAC,UAAU,CAAC,KAAK,EAAE,UAAU,CAAC,CAAC;oBAC3C,CAAC;gBACH,CAAC;gBAED,cAAc,GAAG,QAAQ,CAAC;YAC5B,CAAC,QAAQ,cAAc,IAAI,cAAc,CAAC,WAAW,EAAE;QACzD,CAAC;KAAA;IAED,8DAA8D;IACxD,qBAAqB,CAAC,KAAY;;YACtC,MAAM,eAAe,GAAuC,EAAE,CAAC;YAC/D,MAAM,SAAS,GAAG,GAAG,CAAC;YACtB,IAAI,UAAU,GAAG,CAAC,CAAC;YAEnB,OAAO,IAAe,EAAE,CAAC;gBACvB,MAAM,EAAE,IAAI,EAAE,OAAO,EAAE,GAAG,MAAM,IAAI,CAAC,eAAe;qBACjD,mBAAmB,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;qBAClE,eAAe,CAAC;oBACf,OAAO,EAAE,KAAK,CAAC,EAAE;oBACjB,UAAU;oBACV,SAAS;iBACV,CAAC,CAAC;gBAEL,IAAI,CAAC,OAAO,IAAI,OAAO,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBACrC,MAAM;gBACR,CAAC;gBAED,eAAe,CAAC,IAAI,CAAC,GAAG,OAAO,CAAC,CAAC;gBAEjC,IAAI,OAAO,CAAC,MAAM,GAAG,SAAS,EAAE,CAAC;oBAC/B,MAAM;gBACR,CAAC;gBAED,UAAU,IAAI,SAAS,CAAC;YAC1B,CAAC;YAED,OAAO,eAAe,CAAC;QACzB,CAAC;KAAA;IAEK,UAAU,CAAC,KAAY,EAAE,SAAmB;;YAChD,MAAM,IAAI,CAAC,aAAa,CAAC;gBACvB,MAAM,EAAE,OAAO;gBACf,IAAI,EAAE,4BAA4B,CAAC,SAAS,EAAE,KAAK,CAAC;gBACpD,UAAU,EAAE,KAAK,CAAC,EAAE;aACrB,CAAC,CAAC;QACL,CAAC;KAAA;IAEK,aAAa,CAAC,KAAY,EAAE,SAAmB;;YACnD,MAAM,IAAI,CAAC,aAAa,CAAC;gBACvB,MAAM,EAAE,OAAO;gBACf,IAAI,EAAE,4BAA4B,CAAC,SAAS,EAAE,QAAQ,CAAC;gBACvD,UAAU,EAAE,KAAK,CAAC,EAAE;aACrB,CAAC,CAAC;QACL,CAAC;KAAA;IAEK,aAAa,CAAC,OAA4B;;YAC9C,MAAM,OAAO,GAAyB;gBACpC,KAAK,EAAE,EAAE;gBACT,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,YAAY,EAAE,QAAQ;gBACtB,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE;gBAC9B,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM;gBACrC,UAAU,EAAE,OAAO,CAAC,UAAU;aAC/B,CAAC;YAEF,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC3D,CAAC;KAAA;CACF"}

package/dist/src/directory-sync/non-scim/syncGroups.d.ts

@@ -0,0 +1,24 @@
+import type { Directory, IGroups, Group, IRequestHandler, DirectorySyncRequest, EventCallback, IDirectoryProvider } from '../../typings';
+interface SyncGroupsParams {
+    groupController: IGroups;
+    provider: IDirectoryProvider;
+    requestHandler: IRequestHandler;
+    callback: EventCallback;
+    directory: Directory;
+}
+type HandleRequestParams = Pick<DirectorySyncRequest, 'method' | 'body' | 'resourceId'>;
+export declare class SyncGroups {
+    private groupController;
+    private provider;
+    private requestHandler;
+    private callback;
+    private directory;
+    constructor({ directory, groupController, callback, requestHandler, provider }: SyncGroupsParams);
+    sync(): Promise<void>;
+    getAllExistingGroups(): Promise<Group[]>;
+    createGroup(group: Group): Promise<void>;
+    updateGroup(group: Group): Promise<void>;
+    deleteGroups(groups: Group[]): Promise<void>;
+    handleRequest(payload: HandleRequestParams): Promise<void>;
+}
+export {};

package/dist/src/directory-sync/non-scim/syncGroups.js

@@ -0,0 +1,120 @@
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+import { compareAndFindDeletedGroups, isGroupUpdated, toGroupSCIMPayload } from './utils';
+export class SyncGroups {
+    constructor({ directory, groupController, callback, requestHandler, provider }) {
+        this.groupController = groupController;
+        this.provider = provider;
+        this.requestHandler = requestHandler;
+        this.callback = callback;
+        this.directory = directory;
+    }
+    sync() {
+        return __awaiter(this, void 0, void 0, function* () {
+            const groupsFromProvider = [];
+            let nextPageOption = null;
+            do {
+                const { data: groups, metadata } = yield this.provider.getGroups(this.directory, nextPageOption);
+                if (!groups || groups.length === 0) {
+                    break;
+                }
+                // Create or update groups
+                for (const group of groups) {
+                    const { data: existingGroup } = yield this.groupController
+                        .setTenantAndProduct(this.directory.tenant, this.directory.product)
+                        .get(group.id);
+                    if (!existingGroup) {
+                        yield this.createGroup(group);
+                    }
+                    else if (isGroupUpdated(existingGroup, group, this.provider.groupFieldsToExcludeWhenCompare)) {
+                        yield this.updateGroup(group);
+                    }
+                }
+                // Store groups to compare and delete later
+                groupsFromProvider.push(...groups);
+                nextPageOption = metadata;
+            } while (nextPageOption && nextPageOption.hasNextPage);
+            // Delete users that are not in the directory anymore
+            const existingGroups = yield this.getAllExistingGroups();
+            const groupsToDelete = compareAndFindDeletedGroups(existingGroups, groupsFromProvider);
+            yield this.deleteGroups(groupsToDelete);
+        });
+    }
+    // Get all the existing groups from the Jackson store
+    getAllExistingGroups() {
+        return __awaiter(this, void 0, void 0, function* () {
+            const existingGroups = [];
+            const pageLimit = 500;
+            let pageOffset = 0;
+            while (true) {
+                const { data: groups } = yield this.groupController
+                    .setTenantAndProduct(this.directory.tenant, this.directory.product)
+                    .getAll({
+                    directoryId: this.directory.id,
+                    pageOffset,
+                    pageLimit,
+                });
+                if (!groups || groups.length === 0) {
+                    break;
+                }
+                existingGroups.push(...groups);
+                if (groups.length < pageLimit) {
+                    break;
+                }
+                pageOffset += pageLimit;
+            }
+            return existingGroups;
+        });
+    }
+    createGroup(group) {
+        return __awaiter(this, void 0, void 0, function* () {
+            yield this.handleRequest({
+                method: 'POST',
+                body: toGroupSCIMPayload(group),
+                resourceId: undefined,
+            });
+        });
+    }
+    updateGroup(group) {
+        return __awaiter(this, void 0, void 0, function* () {
+            yield this.handleRequest({
+                method: 'PUT',
+                body: toGroupSCIMPayload(group),
+                resourceId: group.id,
+            });
+        });
+    }
+    deleteGroups(groups) {
+        return __awaiter(this, void 0, void 0, function* () {
+            for (const group of groups) {
+                yield this.handleRequest({
+                    method: 'DELETE',
+                    body: toGroupSCIMPayload(group),
+                    resourceId: group.id,
+                });
+            }
+        });
+    }
+    handleRequest(payload) {
+        return __awaiter(this, void 0, void 0, function* () {
+            const request = {
+                query: {},
+                body: payload.body,
+                resourceType: 'groups',
+                method: payload.method,
+                directoryId: this.directory.id,
+                apiSecret: this.directory.scim.secret,
+                resourceId: payload.resourceId,
+            };
+            yield this.requestHandler.handle(request, this.callback);
+        });
+    }
+}
+//# sourceMappingURL=syncGroups.js.map

package/dist/src/directory-sync/non-scim/syncGroups.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"syncGroups.js","sourceRoot":"","sources":["../../../../src/directory-sync/non-scim/syncGroups.ts"],"names":[],"mappings":";;;;;;;;;AAUA,OAAO,EAAE,2BAA2B,EAAE,cAAc,EAAE,kBAAkB,EAAE,MAAM,SAAS,CAAC;AAY1F,MAAM,OAAO,UAAU;IAOrB,YAAY,EAAE,SAAS,EAAE,eAAe,EAAE,QAAQ,EAAE,cAAc,EAAE,QAAQ,EAAoB;QAC9F,IAAI,CAAC,eAAe,GAAG,eAAe,CAAC;QACvC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,cAAc,GAAG,cAAc,CAAC;QACrC,IAAI,CAAC,QAAQ,GAAG,QAAQ,CAAC;QACzB,IAAI,CAAC,SAAS,GAAG,SAAS,CAAC;IAC7B,CAAC;IAEK,IAAI;;YACR,MAAM,kBAAkB,GAAY,EAAE,CAAC;YACvC,IAAI,cAAc,GAA4B,IAAI,CAAC;YAEnD,GAAG,CAAC;gBACF,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,QAAQ,EAAE,GAAG,MAAM,IAAI,CAAC,QAAQ,CAAC,SAAS,CAAC,IAAI,CAAC,SAAS,EAAE,cAAc,CAAC,CAAC;gBAEjG,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBACnC,MAAM;gBACR,CAAC;gBAED,0BAA0B;gBAC1B,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;oBAC3B,MAAM,EAAE,IAAI,EAAE,aAAa,EAAE,GAAG,MAAM,IAAI,CAAC,eAAe;yBACvD,mBAAmB,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;yBAClE,GAAG,CAAC,KAAK,CAAC,EAAE,CAAC,CAAC;oBAEjB,IAAI,CAAC,aAAa,EAAE,CAAC;wBACnB,MAAM,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;oBAChC,CAAC;yBAAM,IAAI,cAAc,CAAC,aAAa,EAAE,KAAK,EAAE,IAAI,CAAC,QAAQ,CAAC,+BAA+B,CAAC,EAAE,CAAC;wBAC/F,MAAM,IAAI,CAAC,WAAW,CAAC,KAAK,CAAC,CAAC;oBAChC,CAAC;gBACH,CAAC;gBAED,2CAA2C;gBAC3C,kBAAkB,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,CAAC;gBAEnC,cAAc,GAAG,QAAQ,CAAC;YAC5B,CAAC,QAAQ,cAAc,IAAI,cAAc,CAAC,WAAW,EAAE;YAEvD,qDAAqD;YACrD,MAAM,cAAc,GAAG,MAAM,IAAI,CAAC,oBAAoB,EAAE,CAAC;YACzD,MAAM,cAAc,GAAG,2BAA2B,CAAC,cAAc,EAAE,kBAAkB,CAAC,CAAC;YAEvF,MAAM,IAAI,CAAC,YAAY,CAAC,cAAc,CAAC,CAAC;QAC1C,CAAC;KAAA;IAED,qDAAqD;IAC/C,oBAAoB;;YACxB,MAAM,cAAc,GAAY,EAAE,CAAC;YACnC,MAAM,SAAS,GAAG,GAAG,CAAC;YACtB,IAAI,UAAU,GAAG,CAAC,CAAC;YAEnB,OAAO,IAAe,EAAE,CAAC;gBACvB,MAAM,EAAE,IAAI,EAAE,MAAM,EAAE,GAAG,MAAM,IAAI,CAAC,eAAe;qBAChD,mBAAmB,CAAC,IAAI,CAAC,SAAS,CAAC,MAAM,EAAE,IAAI,CAAC,SAAS,CAAC,OAAO,CAAC;qBAClE,MAAM,CAAC;oBACN,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE;oBAC9B,UAAU;oBACV,SAAS;iBACV,CAAC,CAAC;gBAEL,IAAI,CAAC,MAAM,IAAI,MAAM,CAAC,MAAM,KAAK,CAAC,EAAE,CAAC;oBACnC,MAAM;gBACR,CAAC;gBAED,cAAc,CAAC,IAAI,CAAC,GAAG,MAAM,CAAC,CAAC;gBAE/B,IAAI,MAAM,CAAC,MAAM,GAAG,SAAS,EAAE,CAAC;oBAC9B,MAAM;gBACR,CAAC;gBAED,UAAU,IAAI,SAAS,CAAC;YAC1B,CAAC;YAED,OAAO,cAAc,CAAC;QACxB,CAAC;KAAA;IAEK,WAAW,CAAC,KAAY;;YAC5B,MAAM,IAAI,CAAC,aAAa,CAAC;gBACvB,MAAM,EAAE,MAAM;gBACd,IAAI,EAAE,kBAAkB,CAAC,KAAK,CAAC;gBAC/B,UAAU,EAAE,SAAS;aACtB,CAAC,CAAC;QACL,CAAC;KAAA;IAEK,WAAW,CAAC,KAAY;;YAC5B,MAAM,IAAI,CAAC,aAAa,CAAC;gBACvB,MAAM,EAAE,KAAK;gBACb,IAAI,EAAE,kBAAkB,CAAC,KAAK,CAAC;gBAC/B,UAAU,EAAE,KAAK,CAAC,EAAE;aACrB,CAAC,CAAC;QACL,CAAC;KAAA;IAEK,YAAY,CAAC,MAAe;;YAChC,KAAK,MAAM,KAAK,IAAI,MAAM,EAAE,CAAC;gBAC3B,MAAM,IAAI,CAAC,aAAa,CAAC;oBACvB,MAAM,EAAE,QAAQ;oBAChB,IAAI,EAAE,kBAAkB,CAAC,KAAK,CAAC;oBAC/B,UAAU,EAAE,KAAK,CAAC,EAAE;iBACrB,CAAC,CAAC;YACL,CAAC;QACH,CAAC;KAAA;IAEK,aAAa,CAAC,OAA4B;;YAC9C,MAAM,OAAO,GAAyB;gBACpC,KAAK,EAAE,EAAE;gBACT,IAAI,EAAE,OAAO,CAAC,IAAI;gBAClB,YAAY,EAAE,QAAQ;gBACtB,MAAM,EAAE,OAAO,CAAC,MAAM;gBACtB,WAAW,EAAE,IAAI,CAAC,SAAS,CAAC,EAAE;gBAC9B,SAAS,EAAE,IAAI,CAAC,SAAS,CAAC,IAAI,CAAC,MAAM;gBACrC,UAAU,EAAE,OAAO,CAAC,UAAU;aAC/B,CAAC;YAEF,MAAM,IAAI,CAAC,cAAc,CAAC,MAAM,CAAC,OAAO,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC;QAC3D,CAAC;KAAA;CACF"}

package/dist/src/directory-sync/non-scim/syncUsers.d.ts

@@ -0,0 +1,24 @@
+import type { Directory, User, IUsers, IRequestHandler, DirectorySyncRequest, EventCallback, IDirectoryProvider } from '../../typings';
+interface SyncUserParams {
+    directory: Directory;
+    userController: IUsers;
+    callback: EventCallback;
+    provider: IDirectoryProvider;
+    requestHandler: IRequestHandler;
+}
+type HandleRequestParams = Pick<DirectorySyncRequest, 'method' | 'body' | 'resourceId'>;
+export declare class SyncUsers {
+    private directory;
+    private userController;
+    private callback;
+    private provider;
+    private requestHandler;
+    constructor({ directory, userController, callback, provider, requestHandler }: SyncUserParams);
+    sync(): Promise<void>;
+    getAllExistingUsers(): Promise<User[]>;
+    createUser(user: User): Promise<void>;
+    updateUser(user: User): Promise<void>;
+    deleteUsers(users: User[]): Promise<void>;
+    handleRequest(payload: HandleRequestParams): Promise<void>;
+}
+export {};