npm - @budibase/backend-core - Versions diffs - 2.9.19 → 2.9.20 - Mend

@budibase/backend-core 2.9.19 → 2.9.20

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (241) hide show

package/dist/package.json +19 -4
package/dist/src/security/permissions.d.ts +1 -1
package/package.json +19 -4
package/dist/tsconfig.build.tsbuildinfo +0 -1
package/src/accounts/accounts.ts +0 -82
package/src/accounts/api.ts +0 -59
package/src/accounts/index.ts +0 -1
package/src/auth/auth.ts +0 -208
package/src/auth/index.ts +0 -1
package/src/auth/tests/auth.spec.ts +0 -14
package/src/blacklist/blacklist.ts +0 -54
package/src/blacklist/index.ts +0 -1
package/src/blacklist/tests/blacklist.spec.ts +0 -46
package/src/cache/appMetadata.ts +0 -88
package/src/cache/base/index.ts +0 -92
package/src/cache/generic.ts +0 -30
package/src/cache/index.ts +0 -5
package/src/cache/tests/writethrough.spec.ts +0 -138
package/src/cache/user.ts +0 -69
package/src/cache/writethrough.ts +0 -133
package/src/configs/configs.ts +0 -257
package/src/configs/index.ts +0 -1
package/src/configs/tests/configs.spec.ts +0 -184
package/src/constants/db.ts +0 -63
package/src/constants/index.ts +0 -2
package/src/constants/misc.ts +0 -50
package/src/context/Context.ts +0 -14
package/src/context/identity.ts +0 -58
package/src/context/index.ts +0 -3
package/src/context/mainContext.ts +0 -310
package/src/context/tests/index.spec.ts +0 -147
package/src/context/types.ts +0 -11
package/src/db/Replication.ts +0 -84
package/src/db/constants.ts +0 -10
package/src/db/couch/DatabaseImpl.ts +0 -238
package/src/db/couch/connections.ts +0 -77
package/src/db/couch/index.ts +0 -5
package/src/db/couch/pouchDB.ts +0 -97
package/src/db/couch/pouchDump.ts +0 -0
package/src/db/couch/utils.ts +0 -50
package/src/db/db.ts +0 -39
package/src/db/errors.ts +0 -14
package/src/db/index.ts +0 -12
package/src/db/lucene.ts +0 -732
package/src/db/searchIndexes/index.ts +0 -1
package/src/db/searchIndexes/searchIndexes.ts +0 -62
package/src/db/tests/index.spec.js +0 -25
package/src/db/tests/lucene.spec.ts +0 -298
package/src/db/tests/pouch.spec.js +0 -62
package/src/db/tests/utils.spec.ts +0 -63
package/src/db/utils.ts +0 -207
package/src/db/views.ts +0 -241
package/src/docIds/conversions.ts +0 -59
package/src/docIds/ids.ts +0 -113
package/src/docIds/index.ts +0 -2
package/src/docIds/newid.ts +0 -5
package/src/docIds/params.ts +0 -174
package/src/docUpdates/index.ts +0 -29
package/src/environment.ts +0 -201
package/src/errors/errors.ts +0 -119
package/src/errors/index.ts +0 -1
package/src/events/analytics.ts +0 -6
package/src/events/asyncEvents/index.ts +0 -2
package/src/events/asyncEvents/publisher.ts +0 -12
package/src/events/asyncEvents/queue.ts +0 -22
package/src/events/backfill.ts +0 -183
package/src/events/documentId.ts +0 -56
package/src/events/events.ts +0 -40
package/src/events/identification.ts +0 -310
package/src/events/index.ts +0 -14
package/src/events/processors/AnalyticsProcessor.ts +0 -64
package/src/events/processors/AuditLogsProcessor.ts +0 -93
package/src/events/processors/LoggingProcessor.ts +0 -37
package/src/events/processors/Processors.ts +0 -52
package/src/events/processors/async/DocumentUpdateProcessor.ts +0 -43
package/src/events/processors/index.ts +0 -19
package/src/events/processors/posthog/PosthogProcessor.ts +0 -118
package/src/events/processors/posthog/index.ts +0 -2
package/src/events/processors/posthog/rateLimiting.ts +0 -106
package/src/events/processors/posthog/tests/PosthogProcessor.spec.ts +0 -168
package/src/events/processors/types.ts +0 -1
package/src/events/publishers/account.ts +0 -35
package/src/events/publishers/app.ts +0 -155
package/src/events/publishers/auditLog.ts +0 -26
package/src/events/publishers/auth.ts +0 -73
package/src/events/publishers/automation.ts +0 -110
package/src/events/publishers/backfill.ts +0 -74
package/src/events/publishers/backup.ts +0 -42
package/src/events/publishers/datasource.ts +0 -48
package/src/events/publishers/email.ts +0 -17
package/src/events/publishers/environmentVariable.ts +0 -38
package/src/events/publishers/group.ts +0 -99
package/src/events/publishers/index.ts +0 -24
package/src/events/publishers/installation.ts +0 -38
package/src/events/publishers/layout.ts +0 -26
package/src/events/publishers/license.ts +0 -84
package/src/events/publishers/org.ts +0 -37
package/src/events/publishers/plugin.ts +0 -47
package/src/events/publishers/query.ts +0 -88
package/src/events/publishers/role.ts +0 -62
package/src/events/publishers/rows.ts +0 -29
package/src/events/publishers/screen.ts +0 -36
package/src/events/publishers/serve.ts +0 -43
package/src/events/publishers/table.ts +0 -70
package/src/events/publishers/user.ts +0 -202
package/src/events/publishers/view.ts +0 -107
package/src/featureFlags/index.ts +0 -77
package/src/featureFlags/tests/featureFlags.spec.ts +0 -85
package/src/helpers.ts +0 -9
package/src/index.ts +0 -53
package/src/installation.ts +0 -107
package/src/logging/alerts.ts +0 -26
package/src/logging/correlation/correlation.ts +0 -13
package/src/logging/correlation/index.ts +0 -1
package/src/logging/correlation/middleware.ts +0 -17
package/src/logging/index.ts +0 -4
package/src/logging/pino/logger.ts +0 -232
package/src/logging/pino/middleware.ts +0 -45
package/src/logging/system.ts +0 -81
package/src/logging/tests/system.spec.ts +0 -61
package/src/middleware/adminOnly.ts +0 -9
package/src/middleware/auditLog.ts +0 -6
package/src/middleware/authenticated.ts +0 -193
package/src/middleware/builderOnly.ts +0 -20
package/src/middleware/builderOrAdmin.ts +0 -20
package/src/middleware/csrf.ts +0 -81
package/src/middleware/errorHandling.ts +0 -29
package/src/middleware/index.ts +0 -21
package/src/middleware/internalApi.ts +0 -23
package/src/middleware/joi-validator.ts +0 -45
package/src/middleware/matchers.ts +0 -47
package/src/middleware/passport/datasource/google.ts +0 -95
package/src/middleware/passport/local.ts +0 -54
package/src/middleware/passport/sso/google.ts +0 -77
package/src/middleware/passport/sso/oidc.ts +0 -154
package/src/middleware/passport/sso/sso.ts +0 -165
package/src/middleware/passport/sso/tests/google.spec.ts +0 -67
package/src/middleware/passport/sso/tests/oidc.spec.ts +0 -152
package/src/middleware/passport/sso/tests/sso.spec.ts +0 -197
package/src/middleware/passport/utils.ts +0 -38
package/src/middleware/querystringToBody.ts +0 -28
package/src/middleware/tenancy.ts +0 -36
package/src/middleware/tests/builder.spec.ts +0 -180
package/src/middleware/tests/matchers.spec.ts +0 -134
package/src/migrations/definitions.ts +0 -40
package/src/migrations/index.ts +0 -2
package/src/migrations/migrations.ts +0 -191
package/src/migrations/tests/__snapshots__/migrations.spec.ts.snap +0 -11
package/src/migrations/tests/migrations.spec.ts +0 -64
package/src/objectStore/buckets/app.ts +0 -40
package/src/objectStore/buckets/global.ts +0 -29
package/src/objectStore/buckets/index.ts +0 -3
package/src/objectStore/buckets/plugins.ts +0 -71
package/src/objectStore/buckets/tests/app.spec.ts +0 -171
package/src/objectStore/buckets/tests/global.spec.ts +0 -74
package/src/objectStore/buckets/tests/plugins.spec.ts +0 -111
package/src/objectStore/cloudfront.ts +0 -41
package/src/objectStore/index.ts +0 -3
package/src/objectStore/objectStore.ts +0 -440
package/src/objectStore/utils.ts +0 -27
package/src/platform/index.ts +0 -3
package/src/platform/platformDb.ts +0 -6
package/src/platform/tenants.ts +0 -101
package/src/platform/tests/tenants.spec.ts +0 -26
package/src/platform/users.ts +0 -90
package/src/plugin/index.ts +0 -1
package/src/plugin/tests/validation.spec.ts +0 -83
package/src/plugin/utils.ts +0 -156
package/src/queue/constants.ts +0 -6
package/src/queue/inMemoryQueue.ts +0 -141
package/src/queue/index.ts +0 -2
package/src/queue/listeners.ts +0 -195
package/src/queue/queue.ts +0 -54
package/src/redis/index.ts +0 -6
package/src/redis/init.ts +0 -86
package/src/redis/redis.ts +0 -308
package/src/redis/redlockImpl.ts +0 -139
package/src/redis/utils.ts +0 -117
package/src/security/encryption.ts +0 -179
package/src/security/permissions.ts +0 -159
package/src/security/roles.ts +0 -420
package/src/security/sessions.ts +0 -120
package/src/security/tests/encryption.spec.ts +0 -31
package/src/security/tests/permissions.spec.ts +0 -145
package/src/security/tests/sessions.spec.ts +0 -12
package/src/tenancy/db.ts +0 -6
package/src/tenancy/index.ts +0 -2
package/src/tenancy/tenancy.ts +0 -140
package/src/tenancy/tests/tenancy.spec.ts +0 -184
package/src/timers/index.ts +0 -1
package/src/timers/timers.ts +0 -22
package/src/users/db.ts +0 -460
package/src/users/events.ts +0 -176
package/src/users/index.ts +0 -4
package/src/users/lookup.ts +0 -102
package/src/users/users.ts +0 -276
package/src/users/utils.ts +0 -55
package/src/utils/hashing.ts +0 -14
package/src/utils/index.ts +0 -3
package/src/utils/stringUtils.ts +0 -8
package/src/utils/tests/utils.spec.ts +0 -191
package/src/utils/utils.ts +0 -239
package/tests/core/logging.ts +0 -34
package/tests/core/utilities/index.ts +0 -6
package/tests/core/utilities/jestUtils.ts +0 -30
package/tests/core/utilities/mocks/alerts.ts +0 -3
package/tests/core/utilities/mocks/date.ts +0 -2
package/tests/core/utilities/mocks/events.ts +0 -131
package/tests/core/utilities/mocks/fetch.ts +0 -17
package/tests/core/utilities/mocks/index.ts +0 -10
package/tests/core/utilities/mocks/licenses.ts +0 -107
package/tests/core/utilities/mocks/posthog.ts +0 -7
package/tests/core/utilities/structures/Chance.ts +0 -20
package/tests/core/utilities/structures/accounts.ts +0 -115
package/tests/core/utilities/structures/apps.ts +0 -21
package/tests/core/utilities/structures/common.ts +0 -7
package/tests/core/utilities/structures/db.ts +0 -12
package/tests/core/utilities/structures/documents/index.ts +0 -1
package/tests/core/utilities/structures/documents/platform/index.ts +0 -1
package/tests/core/utilities/structures/documents/platform/installation.ts +0 -12
package/tests/core/utilities/structures/generator.ts +0 -2
package/tests/core/utilities/structures/index.ts +0 -15
package/tests/core/utilities/structures/koa.ts +0 -16
package/tests/core/utilities/structures/licenses.ts +0 -167
package/tests/core/utilities/structures/plugins.ts +0 -19
package/tests/core/utilities/structures/quotas.ts +0 -67
package/tests/core/utilities/structures/scim.ts +0 -80
package/tests/core/utilities/structures/shared.ts +0 -19
package/tests/core/utilities/structures/sso.ts +0 -119
package/tests/core/utilities/structures/tenants.ts +0 -5
package/tests/core/utilities/structures/userGroups.ts +0 -10
package/tests/core/utilities/structures/users.ts +0 -73
package/tests/core/utilities/testContainerUtils.ts +0 -98
package/tests/core/utilities/utils/index.ts +0 -1
package/tests/core/utilities/utils/time.ts +0 -3
package/tests/extra/DBTestConfiguration.ts +0 -36
package/tests/extra/index.ts +0 -2
package/tests/extra/testEnv.ts +0 -95
package/tests/index.ts +0 -1
package/tests/jestEnv.ts +0 -6
package/tests/jestSetup.ts +0 -28

package/src/security/encryption.ts DELETED Viewed

@@ -1,179 +0,0 @@
-import crypto from "crypto"
-import fs from "fs"
-import zlib from "zlib"
-import env from "../environment"
-import { join } from "path"
-const ALGO = "aes-256-ctr"
-const SEPARATOR = "-"
-const ITERATIONS = 10000
-const STRETCH_LENGTH = 32
-const SALT_LENGTH = 16
-const IV_LENGTH = 16
-export enum SecretOption {
-  API = "api",
-  ENCRYPTION = "encryption",
-}
-export function getSecret(secretOption: SecretOption): string {
-  let secret, secretName
-  switch (secretOption) {
-    case SecretOption.ENCRYPTION:
-      secret = env.ENCRYPTION_KEY
-      secretName = "ENCRYPTION_KEY"
-      break
-    case SecretOption.API:
-    default:
-      secret = env.API_ENCRYPTION_KEY
-      secretName = "API_ENCRYPTION_KEY"
-      break
-  }
-  if (!secret) {
-    throw new Error(`Secret "${secretName}" has not been set in environment.`)
-  }
-  return secret
-}
-function stretchString(secret: string, salt: Buffer) {
-  return crypto.pbkdf2Sync(secret, salt, ITERATIONS, STRETCH_LENGTH, "sha512")
-}
-export function encrypt(
-  input: string,
-  secretOption: SecretOption = SecretOption.API
-) {
-  const salt = crypto.randomBytes(SALT_LENGTH)
-  const stretched = stretchString(getSecret(secretOption), salt)
-  const cipher = crypto.createCipheriv(ALGO, stretched, salt)
-  const base = cipher.update(input)
-  const final = cipher.final()
-  const encrypted = Buffer.concat([base, final]).toString("hex")
-  return `${salt.toString("hex")}${SEPARATOR}${encrypted}`
-}
-export function decrypt(
-  input: string,
-  secretOption: SecretOption = SecretOption.API
-) {
-  const [salt, encrypted] = input.split(SEPARATOR)
-  const saltBuffer = Buffer.from(salt, "hex")
-  const stretched = stretchString(getSecret(secretOption), saltBuffer)
-  const decipher = crypto.createDecipheriv(ALGO, stretched, saltBuffer)
-  const base = decipher.update(Buffer.from(encrypted, "hex"))
-  const final = decipher.final()
-  return Buffer.concat([base, final]).toString()
-}
-export async function encryptFile(
-  { dir, filename }: { dir: string; filename: string },
-  secret: string
-) {
-  const outputFileName = `${filename}.enc`
-  const filePath = join(dir, filename)
-  const inputFile = fs.createReadStream(filePath)
-  const outputFile = fs.createWriteStream(join(dir, outputFileName))
-  const salt = crypto.randomBytes(SALT_LENGTH)
-  const iv = crypto.randomBytes(IV_LENGTH)
-  const stretched = stretchString(secret, salt)
-  const cipher = crypto.createCipheriv(ALGO, stretched, iv)
-  outputFile.write(salt)
-  outputFile.write(iv)
-  inputFile.pipe(zlib.createGzip()).pipe(cipher).pipe(outputFile)
-  return new Promise<{ filename: string; dir: string }>(r => {
-    outputFile.on("finish", () => {
-      r({
-        filename: outputFileName,
-        dir,
-      })
-    })
-  })
-}
-async function getSaltAndIV(path: string) {
-  const fileStream = fs.createReadStream(path)
-  const salt = await readBytes(fileStream, SALT_LENGTH)
-  const iv = await readBytes(fileStream, IV_LENGTH)
-  fileStream.close()
-  return { salt, iv }
-}
-export async function decryptFile(
-  inputPath: string,
-  outputPath: string,
-  secret: string
-) {
-  const { salt, iv } = await getSaltAndIV(inputPath)
-  const inputFile = fs.createReadStream(inputPath, {
-    start: SALT_LENGTH + IV_LENGTH,
-  })
-  const outputFile = fs.createWriteStream(outputPath)
-  const stretched = stretchString(secret, salt)
-  const decipher = crypto.createDecipheriv(ALGO, stretched, iv)
-  const unzip = zlib.createGunzip()
-  inputFile.pipe(decipher).pipe(unzip).pipe(outputFile)
-  return new Promise<void>((res, rej) => {
-    outputFile.on("finish", () => {
-      outputFile.close()
-      res()
-    })
-    inputFile.on("error", e => {
-      outputFile.close()
-      rej(e)
-    })
-    decipher.on("error", e => {
-      outputFile.close()
-      rej(e)
-    })
-    unzip.on("error", e => {
-      outputFile.close()
-      rej(e)
-    })
-    outputFile.on("error", e => {
-      outputFile.close()
-      rej(e)
-    })
-  })
-}
-function readBytes(stream: fs.ReadStream, length: number) {
-  return new Promise<Buffer>((resolve, reject) => {
-    let bytesRead = 0
-    const data: Buffer[] = []
-    stream.on("readable", () => {
-      let chunk
-      while ((chunk = stream.read(length - bytesRead)) !== null) {
-        data.push(chunk)
-        bytesRead += chunk.length
-      }
-      resolve(Buffer.concat(data))
-    })
-    stream.on("end", () => {
-      reject(new Error("Insufficient data in the stream."))
-    })
-    stream.on("error", error => {
-      reject(error)
-    })
-  })
-}

package/src/security/permissions.ts DELETED Viewed

@@ -1,159 +0,0 @@
-import { PermissionType, PermissionLevel } from "@budibase/types"
-export { PermissionType, PermissionLevel } from "@budibase/types"
-import flatten from "lodash/flatten"
-import cloneDeep from "lodash/fp/cloneDeep"
-export type RoleHierarchy = {
-  permissionId: string
-}[]
-export class Permission {
-  type: PermissionType
-  level: PermissionLevel
-  constructor(type: PermissionType, level: PermissionLevel) {
-    this.type = type
-    this.level = level
-  }
-}
-export function levelToNumber(perm: PermissionLevel) {
-  switch (perm) {
-    // not everything has execute privileges
-    case PermissionLevel.EXECUTE:
-      return 0
-    case PermissionLevel.READ:
-      return 1
-    case PermissionLevel.WRITE:
-      return 2
-    case PermissionLevel.ADMIN:
-      return 3
-    default:
-      return -1
-  }
-}
-/**
- * Given the specified permission level for the user return the levels they are allowed to carry out.
- * @param {string} userPermLevel The permission level of the user.
- * @return {string[]} All the permission levels this user is allowed to carry out.
- */
-export function getAllowedLevels(userPermLevel: PermissionLevel): string[] {
-  switch (userPermLevel) {
-    case PermissionLevel.EXECUTE:
-      return [PermissionLevel.EXECUTE]
-    case PermissionLevel.READ:
-      return [PermissionLevel.EXECUTE, PermissionLevel.READ]
-    case PermissionLevel.WRITE:
-    case PermissionLevel.ADMIN:
-      return [
-        PermissionLevel.EXECUTE,
-        PermissionLevel.READ,
-        PermissionLevel.WRITE,
-      ]
-    default:
-      return []
-  }
-}
-export enum BuiltinPermissionID {
-  PUBLIC = "public",
-  READ_ONLY = "read_only",
-  WRITE = "write",
-  ADMIN = "admin",
-  POWER = "power",
-}
-export const BUILTIN_PERMISSIONS = {
-  PUBLIC: {
-    _id: BuiltinPermissionID.PUBLIC,
-    name: "Public",
-    permissions: [
-      new Permission(PermissionType.WEBHOOK, PermissionLevel.EXECUTE),
-    ],
-  },
-  READ_ONLY: {
-    _id: BuiltinPermissionID.READ_ONLY,
-    name: "Read only",
-    permissions: [
-      new Permission(PermissionType.QUERY, PermissionLevel.READ),
-      new Permission(PermissionType.TABLE, PermissionLevel.READ),
-      new Permission(PermissionType.VIEW, PermissionLevel.READ),
-    ],
-  },
-  WRITE: {
-    _id: BuiltinPermissionID.WRITE,
-    name: "Read/Write",
-    permissions: [
-      new Permission(PermissionType.QUERY, PermissionLevel.WRITE),
-      new Permission(PermissionType.TABLE, PermissionLevel.WRITE),
-      new Permission(PermissionType.VIEW, PermissionLevel.READ),
-      new Permission(PermissionType.AUTOMATION, PermissionLevel.EXECUTE),
-    ],
-  },
-  POWER: {
-    _id: BuiltinPermissionID.POWER,
-    name: "Power",
-    permissions: [
-      new Permission(PermissionType.TABLE, PermissionLevel.WRITE),
-      new Permission(PermissionType.USER, PermissionLevel.READ),
-      new Permission(PermissionType.AUTOMATION, PermissionLevel.EXECUTE),
-      new Permission(PermissionType.VIEW, PermissionLevel.READ),
-      new Permission(PermissionType.WEBHOOK, PermissionLevel.READ),
-    ],
-  },
-  ADMIN: {
-    _id: BuiltinPermissionID.ADMIN,
-    name: "Admin",
-    permissions: [
-      new Permission(PermissionType.TABLE, PermissionLevel.ADMIN),
-      new Permission(PermissionType.USER, PermissionLevel.ADMIN),
-      new Permission(PermissionType.AUTOMATION, PermissionLevel.ADMIN),
-      new Permission(PermissionType.VIEW, PermissionLevel.ADMIN),
-      new Permission(PermissionType.WEBHOOK, PermissionLevel.READ),
-      new Permission(PermissionType.QUERY, PermissionLevel.ADMIN),
-    ],
-  },
-}
-export function getBuiltinPermissions() {
-  return cloneDeep(BUILTIN_PERMISSIONS)
-}
-export function getBuiltinPermissionByID(id: string) {
-  const perms = Object.values(BUILTIN_PERMISSIONS)
-  return perms.find(perm => perm._id === id)
-}
-export function doesHaveBasePermission(
-  permType: PermissionType,
-  permLevel: PermissionLevel,
-  rolesHierarchy: RoleHierarchy
-) {
-  const basePermissions = [
-    ...new Set(rolesHierarchy.map(role => role.permissionId)),
-  ]
-  const builtins = Object.values(BUILTIN_PERMISSIONS)
-  let permissions = flatten(
-    builtins
-      .filter(builtin => basePermissions.indexOf(builtin._id) !== -1)
-      .map(builtin => builtin.permissions)
-  )
-  for (let permission of permissions) {
-    if (
-      permission.type === permType &&
-      getAllowedLevels(permission.level).indexOf(permLevel) !== -1
-    ) {
-      return true
-    }
-  }
-  return false
-}
-export function isPermissionLevelHigherThanRead(level: PermissionLevel) {
-  return levelToNumber(level) > 1
-}
-// utility as a lot of things need simply the builder permission
-export const BUILDER = PermissionType.BUILDER
-export const GLOBAL_BUILDER = PermissionType.GLOBAL_BUILDER