npm - @budibase/backend-core - Versions diffs - 2.13.51 → 2.13.53 - Mend

@budibase/backend-core 2.13.51 → 2.13.53

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (47) hide show

package/dist/index.js +186 -21
package/dist/index.js.map +4 -4
package/dist/index.js.meta.json +1 -1
package/dist/package.json +4 -4
package/dist/plugins.js.meta.json +1 -1
package/dist/src/cache/generic.d.ts +16 -6
package/dist/src/cache/generic.js +12 -10
package/dist/src/cache/generic.js.map +1 -1
package/dist/src/cache/passwordReset.d.ts +5 -0
package/dist/src/cache/passwordReset.js +13 -2
package/dist/src/cache/passwordReset.js.map +1 -1
package/dist/src/db/couch/DatabaseImpl.d.ts +2 -1
package/dist/src/db/couch/DatabaseImpl.js +3 -1
package/dist/src/db/couch/DatabaseImpl.js.map +1 -1
package/dist/src/db/db.js +2 -1
package/dist/src/db/db.js.map +1 -1
package/dist/src/db/instrumentation.d.ts +27 -0
package/dist/src/db/instrumentation.js +117 -0
package/dist/src/db/instrumentation.js.map +1 -0
package/dist/src/index.d.ts +1 -0
package/dist/src/index.js +2 -1
package/dist/src/index.js.map +1 -1
package/dist/src/logging/pino/logger.js +6 -0
package/dist/src/logging/pino/logger.js.map +1 -1
package/dist/src/security/auth.d.ts +8 -0
package/dist/src/security/auth.js +22 -0
package/dist/src/security/auth.js.map +1 -0
package/dist/src/security/index.d.ts +1 -0
package/dist/src/security/index.js +18 -0
package/dist/src/security/index.js.map +1 -0
package/dist/src/users/db.js +5 -0
package/dist/src/users/db.js.map +1 -1
package/dist/tests/core/utilities/structures/users.js +1 -1
package/dist/tests/core/utilities/structures/users.js.map +1 -1
package/package.json +4 -4
package/src/cache/generic.ts +12 -11
package/src/cache/passwordReset.ts +13 -2
package/src/db/couch/DatabaseImpl.ts +3 -1
package/src/db/db.ts +2 -1
package/src/db/instrumentation.ts +156 -0
package/src/index.ts +1 -0
package/src/logging/pino/logger.ts +6 -0
package/src/security/auth.ts +24 -0
package/src/security/index.ts +1 -0
package/src/security/tests/auth.spec.ts +45 -0
package/src/users/db.ts +8 -1
package/tests/core/utilities/structures/users.ts +1 -1

package/dist/index.js CHANGED Viewed

@@ -2905,6 +2905,123 @@ var init_newid = __esm({
   }
 });
+// src/db/instrumentation.ts
+var import_dd_trace, DDInstrumentedDatabase;
+var init_instrumentation = __esm({
+  "src/db/instrumentation.ts"() {
+    "use strict";
+    import_dd_trace = __toESM(require("dd-trace"));
+    DDInstrumentedDatabase = class {
+      constructor(db) {
+        this.db = db;
+      }
+      get name() {
+        return this.db.name;
+      }
+      exists() {
+        return import_dd_trace.default.trace("db.exists", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.exists();
+        });
+      }
+      checkSetup() {
+        return import_dd_trace.default.trace("db.checkSetup", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.checkSetup();
+        });
+      }
+      get(id) {
+        return import_dd_trace.default.trace("db.get", (span) => {
+          span?.addTags({ db_name: this.name, doc_id: id });
+          return this.db.get(id);
+        });
+      }
+      getMultiple(ids, opts) {
+        return import_dd_trace.default.trace("db.getMultiple", (span) => {
+          span?.addTags({
+            db_name: this.name,
+            num_docs: ids.length,
+            allow_missing: opts?.allowMissing
+          });
+          return this.db.getMultiple(ids, opts);
+        });
+      }
+      remove(id, rev) {
+        return import_dd_trace.default.trace("db.remove", (span) => {
+          span?.addTags({ db_name: this.name, doc_id: id });
+          return this.db.remove(id, rev);
+        });
+      }
+      put(document, opts) {
+        return import_dd_trace.default.trace("db.put", (span) => {
+          span?.addTags({ db_name: this.name, doc_id: document._id });
+          return this.db.put(document, opts);
+        });
+      }
+      bulkDocs(documents) {
+        return import_dd_trace.default.trace("db.bulkDocs", (span) => {
+          span?.addTags({ db_name: this.name, num_docs: documents.length });
+          return this.db.bulkDocs(documents);
+        });
+      }
+      allDocs(params2) {
+        return import_dd_trace.default.trace("db.allDocs", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.allDocs(params2);
+        });
+      }
+      query(viewName, params2) {
+        return import_dd_trace.default.trace("db.query", (span) => {
+          span?.addTags({ db_name: this.name, view_name: viewName });
+          return this.db.query(viewName, params2);
+        });
+      }
+      destroy() {
+        return import_dd_trace.default.trace("db.destroy", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.destroy();
+        });
+      }
+      compact() {
+        return import_dd_trace.default.trace("db.compact", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.compact();
+        });
+      }
+      dump(stream2, opts) {
+        return import_dd_trace.default.trace("db.dump", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.dump(stream2, opts);
+        });
+      }
+      load(...args) {
+        return import_dd_trace.default.trace("db.load", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.load(...args);
+        });
+      }
+      createIndex(...args) {
+        return import_dd_trace.default.trace("db.createIndex", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.createIndex(...args);
+        });
+      }
+      deleteIndex(...args) {
+        return import_dd_trace.default.trace("db.deleteIndex", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.deleteIndex(...args);
+        });
+      }
+      getIndexes(...args) {
+        return import_dd_trace.default.trace("db.getIndexes", (span) => {
+          span?.addTags({ db_name: this.name });
+          return this.db.getIndexes(...args);
+        });
+      }
+    };
+  }
+});
 // src/db/couch/DatabaseImpl.ts
 function buildNano(couchInfo) {
   return (0, import_nano.default)({
@@ -2918,7 +3035,8 @@ function buildNano(couchInfo) {
   });
 }
 function DatabaseWithConnection(dbName, connection, opts) {
-  return new DatabaseImpl(dbName, opts, connection);
+  const db = new DatabaseImpl(dbName, opts, connection);
+  return new DDInstrumentedDatabase(db);
 }
 var import_nano, DatabaseImpl;
 var init_DatabaseImpl = __esm({
@@ -2930,6 +3048,7 @@ var init_DatabaseImpl = __esm({
     init_utils2();
     init_pouchDB();
     init_newid();
+    init_instrumentation();
     DatabaseImpl = class _DatabaseImpl {
       constructor(dbName, opts, connection) {
         this.couchInfo = getCouchInfo();
@@ -3146,7 +3265,7 @@ var init_couch = __esm({
 // src/db/db.ts
 function getDB(dbName, opts) {
-  return new DatabaseImpl(dbName, opts);
+  return new DDInstrumentedDatabase(new DatabaseImpl(dbName, opts));
 }
 async function doWithDB(dbName, cb, opts) {
   const db = getDB(dbName, opts);
@@ -3167,6 +3286,7 @@ var init_db3 = __esm({
   "src/db/db.ts"() {
     "use strict";
     init_couch();
+    init_instrumentation();
   }
 });
@@ -5731,7 +5851,7 @@ var init_system2 = __esm({
 });
 // src/logging/pino/logger.ts
-var import_pino, import_pino_pretty, pinoInstance, isPlainObject2, isError2, isMessage2, getLogParams3, logger;
+var import_pino, import_pino_pretty, import_dd_trace2, import_ext, pinoInstance, isPlainObject2, isError2, isMessage2, getLogParams3, logger;
 var init_logger = __esm({
   "src/logging/pino/logger.ts"() {
     "use strict";
@@ -5740,6 +5860,8 @@ var init_logger = __esm({
     init_environment2();
     init_context2();
     init_correlation2();
+    import_dd_trace2 = __toESM(require("dd-trace"));
+    import_ext = require("dd-trace/ext");
     init_system2();
     if (!environment_default.DISABLE_PINO_LOGGER) {
       let isPlainObject = function(obj) {
@@ -5773,6 +5895,10 @@ var init_logger = __esm({
           identityType: identity?.type,
           correlationId: getId()
         };
+        const span = import_dd_trace2.default.scope().active();
+        if (span) {
+          import_dd_trace2.default.inject(span.context(), import_ext.formats.LOG, contextObject);
+        }
         const mergingObject = {
           err: error,
           pid: process.pid,
@@ -6445,6 +6571,7 @@ __export(src_exports, {
   queue: () => queue_exports,
   redis: () => redis_exports,
   roles: () => roles_exports,
+  security: () => security_exports,
   sessions: () => sessions_exports,
   tenancy: () => tenancy,
   timers: () => timers_exports,
@@ -6598,15 +6725,12 @@ var TTL = /* @__PURE__ */ ((TTL2) => {
   TTL2[TTL2["ONE_DAY"] = 86400] = "ONE_DAY";
   return TTL2;
 })(TTL || {});
-function performExport(funcName) {
-  return (...args) => GENERIC[funcName](...args);
-}
-var keys = performExport("keys");
-var get2 = performExport("get");
-var store = performExport("store");
-var destroy = performExport("delete");
-var withCache = performExport("withCache");
-var bustCache = performExport("bustCache");
+var keys = (...args) => GENERIC.keys(...args);
+var get2 = (...args) => GENERIC.get(...args);
+var store = (...args) => GENERIC.store(...args);
+var destroy = (...args) => GENERIC.delete(...args);
+var withCache = (...args) => GENERIC.withCache(...args);
+var bustCache = (...args) => GENERIC.bustCache(...args);
 // src/cache/user.ts
 var user_exports = {};
@@ -7065,13 +7189,13 @@ function validEmail(value) {
 }
 // src/utils/Duration.ts
-var DurationType = /* @__PURE__ */ ((DurationType4) => {
-  DurationType4["MILLISECONDS"] = "milliseconds";
-  DurationType4["SECONDS"] = "seconds";
-  DurationType4["MINUTES"] = "minutes";
-  DurationType4["HOURS"] = "hours";
-  DurationType4["DAYS"] = "days";
-  return DurationType4;
+var DurationType = /* @__PURE__ */ ((DurationType3) => {
+  DurationType3["MILLISECONDS"] = "milliseconds";
+  DurationType3["SECONDS"] = "seconds";
+  DurationType3["MINUTES"] = "minutes";
+  DurationType3["HOURS"] = "hours";
+  DurationType3["DAYS"] = "days";
+  return DurationType3;
 })(DurationType || {});
 var conversion = {
   milliseconds: 1,
@@ -10387,6 +10511,35 @@ async function getSession(userId, sessionId) {
 // src/users/db.ts
 init_src();
+// src/security/index.ts
+var security_exports = {};
+__export(security_exports, {
+  PASSWORD_MAX_LENGTH: () => PASSWORD_MAX_LENGTH,
+  PASSWORD_MIN_LENGTH: () => PASSWORD_MIN_LENGTH,
+  validatePassword: () => validatePassword
+});
+// src/security/auth.ts
+var PASSWORD_MIN_LENGTH = +(process.env.PASSWORD_MIN_LENGTH || 8);
+var PASSWORD_MAX_LENGTH = +(process.env.PASSWORD_MAX_LENGTH || 512);
+function validatePassword(password) {
+  if (!password || password.length < PASSWORD_MIN_LENGTH) {
+    return {
+      valid: false,
+      error: `Password invalid. Minimum ${PASSWORD_MIN_LENGTH} characters.`
+    };
+  }
+  if (password.length > PASSWORD_MAX_LENGTH) {
+    return {
+      valid: false,
+      error: `Password invalid. Maximum ${PASSWORD_MAX_LENGTH} characters.`
+    };
+  }
+  return { valid: true };
+}
+// src/users/db.ts
 var bulkDeleteProcessing = async (dbUser) => {
   const userId = dbUser._id;
   await users_exports2.removeUser(dbUser);
@@ -10428,6 +10581,10 @@ var UserDB = class _UserDB {
       if (await _UserDB.isPreventPasswordActions(user, account)) {
         throw new HTTPError("Password change is disabled for this user", 400);
       }
+      const passwordValidation = validatePassword(password);
+      if (!passwordValidation.valid) {
+        throw new HTTPError(passwordValidation.error, 400);
+      }
       hashedPassword = opts.hashPassword ? await hash(password) : password;
     } else if (dbUser) {
       hashedPassword = dbUser.password;
@@ -11210,7 +11367,8 @@ var Writethrough = class {
 var passwordReset_exports = {};
 __export(passwordReset_exports, {
   createCode: () => createCode2,
-  getCode: () => getCode2
+  getCode: () => getCode2,
+  invalidateCode: () => invalidateCode
 });
 init_init();
 var TTL_SECONDS2 = Duration.fromHours(1).toSeconds();
@@ -11224,10 +11382,16 @@ async function getCode2(code) {
   const client = await getPasswordResetClient();
   const value = await client.get(code);
   if (!value) {
-    throw "Provided information is not valid, cannot reset password - please try again.";
+    throw new Error(
+      "Provided information is not valid, cannot reset password - please try again."
+    );
   }
   return value;
 }
+async function invalidateCode(code) {
+  const client = await getPasswordResetClient();
+  await client.delete(code);
+}
 // src/configs/configs.ts
 init_context2();
@@ -13657,6 +13821,7 @@ var init8 = (opts = {}) => {
   queue,
   redis,
   roles,
+  security,
   sessions,
   tenancy,
   timers,