npm - @budibase/backend-core - Versions diffs - 2.9.19 → 2.9.21-alpha.0 - Mend

@budibase/backend-core 2.9.19 → 2.9.21-alpha.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (250) hide show

package/dist/index.js +266 -324
package/dist/index.js.map +4 -4
package/dist/index.js.meta.json +1 -1
package/dist/package.json +19 -4
package/dist/plugins.js +1 -1
package/dist/plugins.js.map +1 -1
package/dist/plugins.js.meta.json +1 -1
package/dist/src/security/permissions.d.ts +1 -1
package/dist/tests.js +222 -260
package/dist/tests.js.map +4 -4
package/dist/tests.js.meta.json +1 -1
package/package.json +19 -4
package/dist/tsconfig.build.tsbuildinfo +0 -1
package/src/accounts/accounts.ts +0 -82
package/src/accounts/api.ts +0 -59
package/src/accounts/index.ts +0 -1
package/src/auth/auth.ts +0 -208
package/src/auth/index.ts +0 -1
package/src/auth/tests/auth.spec.ts +0 -14
package/src/blacklist/blacklist.ts +0 -54
package/src/blacklist/index.ts +0 -1
package/src/blacklist/tests/blacklist.spec.ts +0 -46
package/src/cache/appMetadata.ts +0 -88
package/src/cache/base/index.ts +0 -92
package/src/cache/generic.ts +0 -30
package/src/cache/index.ts +0 -5
package/src/cache/tests/writethrough.spec.ts +0 -138
package/src/cache/user.ts +0 -69
package/src/cache/writethrough.ts +0 -133
package/src/configs/configs.ts +0 -257
package/src/configs/index.ts +0 -1
package/src/configs/tests/configs.spec.ts +0 -184
package/src/constants/db.ts +0 -63
package/src/constants/index.ts +0 -2
package/src/constants/misc.ts +0 -50
package/src/context/Context.ts +0 -14
package/src/context/identity.ts +0 -58
package/src/context/index.ts +0 -3
package/src/context/mainContext.ts +0 -310
package/src/context/tests/index.spec.ts +0 -147
package/src/context/types.ts +0 -11
package/src/db/Replication.ts +0 -84
package/src/db/constants.ts +0 -10
package/src/db/couch/DatabaseImpl.ts +0 -238
package/src/db/couch/connections.ts +0 -77
package/src/db/couch/index.ts +0 -5
package/src/db/couch/pouchDB.ts +0 -97
package/src/db/couch/pouchDump.ts +0 -0
package/src/db/couch/utils.ts +0 -50
package/src/db/db.ts +0 -39
package/src/db/errors.ts +0 -14
package/src/db/index.ts +0 -12
package/src/db/lucene.ts +0 -732
package/src/db/searchIndexes/index.ts +0 -1
package/src/db/searchIndexes/searchIndexes.ts +0 -62
package/src/db/tests/index.spec.js +0 -25
package/src/db/tests/lucene.spec.ts +0 -298
package/src/db/tests/pouch.spec.js +0 -62
package/src/db/tests/utils.spec.ts +0 -63
package/src/db/utils.ts +0 -207
package/src/db/views.ts +0 -241
package/src/docIds/conversions.ts +0 -59
package/src/docIds/ids.ts +0 -113
package/src/docIds/index.ts +0 -2
package/src/docIds/newid.ts +0 -5
package/src/docIds/params.ts +0 -174
package/src/docUpdates/index.ts +0 -29
package/src/environment.ts +0 -201
package/src/errors/errors.ts +0 -119
package/src/errors/index.ts +0 -1
package/src/events/analytics.ts +0 -6
package/src/events/asyncEvents/index.ts +0 -2
package/src/events/asyncEvents/publisher.ts +0 -12
package/src/events/asyncEvents/queue.ts +0 -22
package/src/events/backfill.ts +0 -183
package/src/events/documentId.ts +0 -56
package/src/events/events.ts +0 -40
package/src/events/identification.ts +0 -310
package/src/events/index.ts +0 -14
package/src/events/processors/AnalyticsProcessor.ts +0 -64
package/src/events/processors/AuditLogsProcessor.ts +0 -93
package/src/events/processors/LoggingProcessor.ts +0 -37
package/src/events/processors/Processors.ts +0 -52
package/src/events/processors/async/DocumentUpdateProcessor.ts +0 -43
package/src/events/processors/index.ts +0 -19
package/src/events/processors/posthog/PosthogProcessor.ts +0 -118
package/src/events/processors/posthog/index.ts +0 -2
package/src/events/processors/posthog/rateLimiting.ts +0 -106
package/src/events/processors/posthog/tests/PosthogProcessor.spec.ts +0 -168
package/src/events/processors/types.ts +0 -1
package/src/events/publishers/account.ts +0 -35
package/src/events/publishers/app.ts +0 -155
package/src/events/publishers/auditLog.ts +0 -26
package/src/events/publishers/auth.ts +0 -73
package/src/events/publishers/automation.ts +0 -110
package/src/events/publishers/backfill.ts +0 -74
package/src/events/publishers/backup.ts +0 -42
package/src/events/publishers/datasource.ts +0 -48
package/src/events/publishers/email.ts +0 -17
package/src/events/publishers/environmentVariable.ts +0 -38
package/src/events/publishers/group.ts +0 -99
package/src/events/publishers/index.ts +0 -24
package/src/events/publishers/installation.ts +0 -38
package/src/events/publishers/layout.ts +0 -26
package/src/events/publishers/license.ts +0 -84
package/src/events/publishers/org.ts +0 -37
package/src/events/publishers/plugin.ts +0 -47
package/src/events/publishers/query.ts +0 -88
package/src/events/publishers/role.ts +0 -62
package/src/events/publishers/rows.ts +0 -29
package/src/events/publishers/screen.ts +0 -36
package/src/events/publishers/serve.ts +0 -43
package/src/events/publishers/table.ts +0 -70
package/src/events/publishers/user.ts +0 -202
package/src/events/publishers/view.ts +0 -107
package/src/featureFlags/index.ts +0 -77
package/src/featureFlags/tests/featureFlags.spec.ts +0 -85
package/src/helpers.ts +0 -9
package/src/index.ts +0 -53
package/src/installation.ts +0 -107
package/src/logging/alerts.ts +0 -26
package/src/logging/correlation/correlation.ts +0 -13
package/src/logging/correlation/index.ts +0 -1
package/src/logging/correlation/middleware.ts +0 -17
package/src/logging/index.ts +0 -4
package/src/logging/pino/logger.ts +0 -232
package/src/logging/pino/middleware.ts +0 -45
package/src/logging/system.ts +0 -81
package/src/logging/tests/system.spec.ts +0 -61
package/src/middleware/adminOnly.ts +0 -9
package/src/middleware/auditLog.ts +0 -6
package/src/middleware/authenticated.ts +0 -193
package/src/middleware/builderOnly.ts +0 -20
package/src/middleware/builderOrAdmin.ts +0 -20
package/src/middleware/csrf.ts +0 -81
package/src/middleware/errorHandling.ts +0 -29
package/src/middleware/index.ts +0 -21
package/src/middleware/internalApi.ts +0 -23
package/src/middleware/joi-validator.ts +0 -45
package/src/middleware/matchers.ts +0 -47
package/src/middleware/passport/datasource/google.ts +0 -95
package/src/middleware/passport/local.ts +0 -54
package/src/middleware/passport/sso/google.ts +0 -77
package/src/middleware/passport/sso/oidc.ts +0 -154
package/src/middleware/passport/sso/sso.ts +0 -165
package/src/middleware/passport/sso/tests/google.spec.ts +0 -67
package/src/middleware/passport/sso/tests/oidc.spec.ts +0 -152
package/src/middleware/passport/sso/tests/sso.spec.ts +0 -197
package/src/middleware/passport/utils.ts +0 -38
package/src/middleware/querystringToBody.ts +0 -28
package/src/middleware/tenancy.ts +0 -36
package/src/middleware/tests/builder.spec.ts +0 -180
package/src/middleware/tests/matchers.spec.ts +0 -134
package/src/migrations/definitions.ts +0 -40
package/src/migrations/index.ts +0 -2
package/src/migrations/migrations.ts +0 -191
package/src/migrations/tests/__snapshots__/migrations.spec.ts.snap +0 -11
package/src/migrations/tests/migrations.spec.ts +0 -64
package/src/objectStore/buckets/app.ts +0 -40
package/src/objectStore/buckets/global.ts +0 -29
package/src/objectStore/buckets/index.ts +0 -3
package/src/objectStore/buckets/plugins.ts +0 -71
package/src/objectStore/buckets/tests/app.spec.ts +0 -171
package/src/objectStore/buckets/tests/global.spec.ts +0 -74
package/src/objectStore/buckets/tests/plugins.spec.ts +0 -111
package/src/objectStore/cloudfront.ts +0 -41
package/src/objectStore/index.ts +0 -3
package/src/objectStore/objectStore.ts +0 -440
package/src/objectStore/utils.ts +0 -27
package/src/platform/index.ts +0 -3
package/src/platform/platformDb.ts +0 -6
package/src/platform/tenants.ts +0 -101
package/src/platform/tests/tenants.spec.ts +0 -26
package/src/platform/users.ts +0 -90
package/src/plugin/index.ts +0 -1
package/src/plugin/tests/validation.spec.ts +0 -83
package/src/plugin/utils.ts +0 -156
package/src/queue/constants.ts +0 -6
package/src/queue/inMemoryQueue.ts +0 -141
package/src/queue/index.ts +0 -2
package/src/queue/listeners.ts +0 -195
package/src/queue/queue.ts +0 -54
package/src/redis/index.ts +0 -6
package/src/redis/init.ts +0 -86
package/src/redis/redis.ts +0 -308
package/src/redis/redlockImpl.ts +0 -139
package/src/redis/utils.ts +0 -117
package/src/security/encryption.ts +0 -179
package/src/security/permissions.ts +0 -159
package/src/security/roles.ts +0 -420
package/src/security/sessions.ts +0 -120
package/src/security/tests/encryption.spec.ts +0 -31
package/src/security/tests/permissions.spec.ts +0 -145
package/src/security/tests/sessions.spec.ts +0 -12
package/src/tenancy/db.ts +0 -6
package/src/tenancy/index.ts +0 -2
package/src/tenancy/tenancy.ts +0 -140
package/src/tenancy/tests/tenancy.spec.ts +0 -184
package/src/timers/index.ts +0 -1
package/src/timers/timers.ts +0 -22
package/src/users/db.ts +0 -460
package/src/users/events.ts +0 -176
package/src/users/index.ts +0 -4
package/src/users/lookup.ts +0 -102
package/src/users/users.ts +0 -276
package/src/users/utils.ts +0 -55
package/src/utils/hashing.ts +0 -14
package/src/utils/index.ts +0 -3
package/src/utils/stringUtils.ts +0 -8
package/src/utils/tests/utils.spec.ts +0 -191
package/src/utils/utils.ts +0 -239
package/tests/core/logging.ts +0 -34
package/tests/core/utilities/index.ts +0 -6
package/tests/core/utilities/jestUtils.ts +0 -30
package/tests/core/utilities/mocks/alerts.ts +0 -3
package/tests/core/utilities/mocks/date.ts +0 -2
package/tests/core/utilities/mocks/events.ts +0 -131
package/tests/core/utilities/mocks/fetch.ts +0 -17
package/tests/core/utilities/mocks/index.ts +0 -10
package/tests/core/utilities/mocks/licenses.ts +0 -107
package/tests/core/utilities/mocks/posthog.ts +0 -7
package/tests/core/utilities/structures/Chance.ts +0 -20
package/tests/core/utilities/structures/accounts.ts +0 -115
package/tests/core/utilities/structures/apps.ts +0 -21
package/tests/core/utilities/structures/common.ts +0 -7
package/tests/core/utilities/structures/db.ts +0 -12
package/tests/core/utilities/structures/documents/index.ts +0 -1
package/tests/core/utilities/structures/documents/platform/index.ts +0 -1
package/tests/core/utilities/structures/documents/platform/installation.ts +0 -12
package/tests/core/utilities/structures/generator.ts +0 -2
package/tests/core/utilities/structures/index.ts +0 -15
package/tests/core/utilities/structures/koa.ts +0 -16
package/tests/core/utilities/structures/licenses.ts +0 -167
package/tests/core/utilities/structures/plugins.ts +0 -19
package/tests/core/utilities/structures/quotas.ts +0 -67
package/tests/core/utilities/structures/scim.ts +0 -80
package/tests/core/utilities/structures/shared.ts +0 -19
package/tests/core/utilities/structures/sso.ts +0 -119
package/tests/core/utilities/structures/tenants.ts +0 -5
package/tests/core/utilities/structures/userGroups.ts +0 -10
package/tests/core/utilities/structures/users.ts +0 -73
package/tests/core/utilities/testContainerUtils.ts +0 -98
package/tests/core/utilities/utils/index.ts +0 -1
package/tests/core/utilities/utils/time.ts +0 -3
package/tests/extra/DBTestConfiguration.ts +0 -36
package/tests/extra/index.ts +0 -2
package/tests/extra/testEnv.ts +0 -95
package/tests/index.ts +0 -1
package/tests/jestEnv.ts +0 -6
package/tests/jestSetup.ts +0 -28

package/src/middleware/passport/sso/sso.ts DELETED Viewed

@@ -1,165 +0,0 @@
-import { generateGlobalUserID } from "../../../db"
-import { authError } from "../utils"
-import * as users from "../../../users"
-import * as context from "../../../context"
-import fetch from "node-fetch"
-import {
-  SaveSSOUserFunction,
-  SaveUserOpts,
-  SSOAuthDetails,
-  SSOUser,
-  User,
-} from "@budibase/types"
-// no-op function for user save
-// - this allows datasource auth and access token refresh to work correctly
-// - prefer no-op over an optional argument to ensure function is provided to login flows
-export const ssoSaveUserNoOp: SaveSSOUserFunction = (
-  user: SSOUser,
-  opts: SaveUserOpts
-) => Promise.resolve(user)
-/**
- * Common authentication logic for third parties. e.g. OAuth, OIDC.
- */
-export async function authenticate(
-  details: SSOAuthDetails,
-  requireLocalAccount: boolean = true,
-  done: any,
-  saveUserFn: SaveSSOUserFunction
-) {
-  if (!saveUserFn) {
-    throw new Error("Save user function must be provided")
-  }
-  if (!details.userId) {
-    return authError(done, "sso user id required")
-  }
-  if (!details.email) {
-    return authError(done, "sso user email required")
-  }
-  // use the third party id
-  const userId = generateGlobalUserID(details.userId)
-  let dbUser: User | undefined
-  // try to load by id
-  try {
-    dbUser = await users.getById(userId)
-  } catch (err: any) {
-    // abort when not 404 error
-    if (!err.status || err.status !== 404) {
-      return authError(
-        done,
-        "Unexpected error when retrieving existing user",
-        err
-      )
-    }
-  }
-  // fallback to loading by email
-  if (!dbUser) {
-    dbUser = await users.getGlobalUserByEmail(details.email)
-  }
-  // exit early if there is still no user and auto creation is disabled
-  if (!dbUser && requireLocalAccount) {
-    return authError(
-      done,
-      "Email does not yet exist. You must set up your local budibase account first."
-    )
-  }
-  // first time creation
-  if (!dbUser) {
-    // setup a blank user using the third party id
-    dbUser = {
-      _id: userId,
-      email: details.email,
-      roles: {},
-      tenantId: context.getTenantId(),
-    }
-  }
-  let ssoUser = await syncUser(dbUser, details)
-  // never prompt for password reset
-  ssoUser.forceResetPassword = false
-  try {
-    // don't try to re-save any existing password
-    delete ssoUser.password
-    // create or sync the user
-    ssoUser = (await saveUserFn(ssoUser, {
-      hashPassword: false,
-      requirePassword: false,
-    })) as SSOUser
-  } catch (err: any) {
-    return authError(done, "Error saving user", err)
-  }
-  return done(null, ssoUser)
-}
-async function getProfilePictureUrl(user: User, details: SSOAuthDetails) {
-  const pictureUrl = details.profile?._json.picture
-  if (pictureUrl) {
-    const response = await fetch(pictureUrl)
-    if (response.status === 200) {
-      const type = response.headers.get("content-type") as string
-      if (type.startsWith("image/")) {
-        return pictureUrl
-      }
-    }
-  }
-}
-/**
- * @returns a user that has been sync'd with third party information
- */
-async function syncUser(user: User, details: SSOAuthDetails): Promise<SSOUser> {
-  let firstName
-  let lastName
-  let pictureUrl
-  let oauth2
-  let thirdPartyProfile
-  if (details.profile) {
-    const profile = details.profile
-    if (profile.name) {
-      const name = profile.name
-      // first name
-      if (name.givenName) {
-        firstName = name.givenName
-      }
-      // last name
-      if (name.familyName) {
-        lastName = name.familyName
-      }
-    }
-    pictureUrl = await getProfilePictureUrl(user, details)
-    thirdPartyProfile = {
-      ...profile._json,
-    }
-  }
-  // oauth tokens for future use
-  if (details.oauth2) {
-    oauth2 = {
-      ...details.oauth2,
-    }
-  }
-  return {
-    ...user,
-    provider: details.provider,
-    providerType: details.providerType,
-    firstName,
-    lastName,
-    thirdPartyProfile,
-    pictureUrl,
-    oauth2,
-  }
-}

package/src/middleware/passport/sso/tests/google.spec.ts DELETED Viewed

@@ -1,67 +0,0 @@
-import { generator, structures } from "../../../../../tests"
-import { SSOProviderType } from "@budibase/types"
-jest.mock("passport-google-oauth")
-const mockStrategy = require("passport-google-oauth").OAuth2Strategy
-jest.mock("../sso")
-import * as _sso from "../sso"
-const sso = jest.mocked(_sso)
-const mockSaveUserFn = jest.fn()
-const mockDone = jest.fn()
-import * as google from "../google"
-describe("google", () => {
-  describe("strategyFactory", () => {
-    const googleConfig = structures.sso.googleConfig()
-    const callbackUrl = generator.url()
-    it("should create successfully create a google strategy", async () => {
-      await google.strategyFactory(googleConfig, callbackUrl, mockSaveUserFn)
-      const expectedOptions = {
-        clientID: googleConfig.clientID,
-        clientSecret: googleConfig.clientSecret,
-        callbackURL: callbackUrl,
-      }
-      expect(mockStrategy).toHaveBeenCalledWith(
-        expectedOptions,
-        expect.anything()
-      )
-    })
-  })
-  describe("authenticate", () => {
-    const details = structures.sso.authDetails()
-    details.provider = "google"
-    details.providerType = SSOProviderType.GOOGLE
-    const profile = details.profile!
-    profile.provider = "google"
-    beforeEach(() => {
-      jest.clearAllMocks()
-    })
-    it("delegates authentication to third party common", async () => {
-      const authenticate = await google.buildVerifyFn(mockSaveUserFn)
-      await authenticate(
-        details.oauth2.accessToken,
-        details.oauth2.refreshToken!,
-        profile,
-        mockDone
-      )
-      expect(sso.authenticate).toHaveBeenCalledWith(
-        details,
-        true,
-        mockDone,
-        mockSaveUserFn
-      )
-    })
-  })
-})

package/src/middleware/passport/sso/tests/oidc.spec.ts DELETED Viewed

@@ -1,152 +0,0 @@
-import { generator, mocks, structures } from "../../../../../tests"
-import {
-  JwtClaims,
-  OIDCInnerConfig,
-  SSOAuthDetails,
-  SSOProviderType,
-} from "@budibase/types"
-import * as _sso from "../sso"
-import * as oidc from "../oidc"
-jest.mock("@techpass/passport-openidconnect")
-const mockStrategy = require("@techpass/passport-openidconnect").Strategy
-jest.mock("../sso")
-const sso = jest.mocked(_sso)
-const mockSaveUser = jest.fn()
-const mockDone = jest.fn()
-describe("oidc", () => {
-  const callbackUrl = generator.url()
-  const oidcConfig: OIDCInnerConfig = structures.sso.oidcConfig()
-  const wellKnownConfig = structures.sso.oidcWellKnownConfig()
-  function mockRetrieveWellKnownConfig() {
-    // mock the request to retrieve the oidc configuration
-    mocks.fetch.mockReturnValue({
-      ok: true,
-      json: () => wellKnownConfig,
-    })
-  }
-  beforeEach(() => {
-    mockRetrieveWellKnownConfig()
-  })
-  describe("strategyFactory", () => {
-    it("should create successfully create an oidc strategy", async () => {
-      const strategyConfiguration = await oidc.fetchStrategyConfig(
-        oidcConfig,
-        callbackUrl
-      )
-      await oidc.strategyFactory(strategyConfiguration, mockSaveUser)
-      expect(mocks.fetch).toHaveBeenCalledWith(oidcConfig.configUrl)
-      const expectedOptions = {
-        issuer: wellKnownConfig.issuer,
-        authorizationURL: wellKnownConfig.authorization_endpoint,
-        tokenURL: wellKnownConfig.token_endpoint,
-        userInfoURL: wellKnownConfig.userinfo_endpoint,
-        clientID: oidcConfig.clientID,
-        clientSecret: oidcConfig.clientSecret,
-        callbackURL: callbackUrl,
-      }
-      expect(mockStrategy).toHaveBeenCalledWith(
-        expectedOptions,
-        expect.anything()
-      )
-    })
-  })
-  describe("authenticate", () => {
-    const details: SSOAuthDetails = structures.sso.authDetails()
-    details.providerType = SSOProviderType.OIDC
-    const profile = details.profile!
-    const issuer = profile.provider
-    const sub = generator.string()
-    const idToken = generator.string()
-    const params = {}
-    let authenticateFn: any
-    let jwtClaims: JwtClaims
-    beforeEach(async () => {
-      jest.clearAllMocks()
-      authenticateFn = await oidc.buildVerifyFn(mockSaveUser)
-    })
-    async function authenticate() {
-      await authenticateFn(
-        issuer,
-        sub,
-        profile,
-        jwtClaims,
-        details.oauth2.accessToken,
-        details.oauth2.refreshToken,
-        idToken,
-        params,
-        mockDone
-      )
-    }
-    it("passes auth details to sso module", async () => {
-      await authenticate()
-      expect(sso.authenticate).toHaveBeenCalledWith(
-        details,
-        false,
-        mockDone,
-        mockSaveUser
-      )
-    })
-    it("uses JWT email to get email", async () => {
-      delete profile._json.email
-      jwtClaims = {
-        email: details.email,
-      }
-      await authenticate()
-      expect(sso.authenticate).toHaveBeenCalledWith(
-        details,
-        false,
-        mockDone,
-        mockSaveUser
-      )
-    })
-    it("uses JWT username to get email", async () => {
-      delete profile._json.email
-      jwtClaims = {
-        email: details.email,
-      }
-      await authenticate()
-      expect(sso.authenticate).toHaveBeenCalledWith(
-        details,
-        false,
-        mockDone,
-        mockSaveUser
-      )
-    })
-    it("uses JWT invalid username to get email", async () => {
-      delete profile._json.email
-      jwtClaims = {
-        preferred_username: "invalidUsername",
-      }
-      await expect(authenticate()).rejects.toThrow(
-        "Could not determine user email from profile"
-      )
-    })
-  })
-})

package/src/middleware/passport/sso/tests/sso.spec.ts DELETED Viewed

@@ -1,197 +0,0 @@
-import { structures, mocks } from "../../../../../tests"
-import { testEnv } from "../../../../../tests/extra"
-import { SSOAuthDetails, User } from "@budibase/types"
-import { HTTPError } from "../../../../errors"
-import * as sso from "../sso"
-import * as context from "../../../../context"
-const mockDone = jest.fn()
-const mockSaveUser = jest.fn()
-jest.mock("../../../../users")
-import * as _users from "../../../../users"
-const users = jest.mocked(_users)
-const getErrorMessage = () => {
-  return mockDone.mock.calls[0][2].message
-}
-describe("sso", () => {
-  describe("authenticate", () => {
-    beforeEach(() => {
-      jest.clearAllMocks()
-      testEnv.singleTenant()
-    })
-    describe("validation", () => {
-      const testValidation = async (
-        details: SSOAuthDetails,
-        message: string
-      ) => {
-        await sso.authenticate(details, false, mockDone, mockSaveUser)
-        expect(mockDone.mock.calls.length).toBe(1)
-        expect(getErrorMessage()).toContain(message)
-      }
-      it("user id fails", async () => {
-        const details = structures.sso.authDetails()
-        details.userId = undefined!
-        await testValidation(details, "sso user id required")
-      })
-      it("email fails", async () => {
-        const details = structures.sso.authDetails()
-        details.email = undefined!
-        await testValidation(details, "sso user email required")
-      })
-    })
-    function mockGetProfilePicture() {
-      mocks.fetch.mockReturnValueOnce(
-        Promise.resolve({
-          status: 200,
-          headers: { get: () => "image/" },
-        })
-      )
-    }
-    describe("when the user doesn't exist", () => {
-      let user: User
-      let details: SSOAuthDetails
-      beforeEach(() => {
-        users.getById.mockImplementationOnce(() => {
-          throw new HTTPError("", 404)
-        })
-        mockGetProfilePicture()
-        user = structures.users.user()
-        delete user._rev
-        delete user._id
-        details = structures.sso.authDetails(user)
-        details.userId = structures.uuid()
-      })
-      describe("when a local account is required", () => {
-        it("returns an error message", async () => {
-          const details = structures.sso.authDetails()
-          await sso.authenticate(details, true, mockDone, mockSaveUser)
-          expect(mockDone.mock.calls.length).toBe(1)
-          expect(getErrorMessage()).toContain(
-            "Email does not yet exist. You must set up your local budibase account first."
-          )
-        })
-      })
-      describe("when a local account isn't required", () => {
-        it("creates and authenticates the user", async () => {
-          const ssoUser = structures.users.ssoUser({ user, details })
-          mockSaveUser.mockReturnValueOnce(ssoUser)
-          await sso.authenticate(details, false, mockDone, mockSaveUser)
-          // default roles for new user
-          ssoUser.roles = {}
-          // modified external id to match user format
-          ssoUser._id = "us_" + details.userId
-          // new sso user won't have a password
-          delete ssoUser.password
-          // new user isn't saved with rev
-          delete ssoUser._rev
-          // tenant id added
-          ssoUser.tenantId = context.getTenantId()
-          expect(mockSaveUser).toBeCalledWith(ssoUser, {
-            hashPassword: false,
-            requirePassword: false,
-          })
-          expect(mockDone).toBeCalledWith(null, ssoUser)
-        })
-      })
-    })
-    describe("when the user exists", () => {
-      let existingUser: User
-      let details: SSOAuthDetails
-      beforeEach(() => {
-        existingUser = structures.users.user()
-        existingUser._id = structures.uuid()
-        details = structures.sso.authDetails(existingUser)
-        mockGetProfilePicture()
-      })
-      describe("exists by email", () => {
-        beforeEach(() => {
-          users.getById.mockImplementationOnce(() => {
-            throw new HTTPError("", 404)
-          })
-          users.getGlobalUserByEmail.mockReturnValueOnce(
-            Promise.resolve(existingUser)
-          )
-        })
-        it("syncs and authenticates the user", async () => {
-          const ssoUser = structures.users.ssoUser({
-            user: existingUser,
-            details,
-          })
-          mockSaveUser.mockReturnValueOnce(ssoUser)
-          await sso.authenticate(details, true, mockDone, mockSaveUser)
-          // roles preserved
-          ssoUser.roles = existingUser.roles
-          // existing id preserved
-          ssoUser._id = existingUser._id
-          expect(mockSaveUser).toBeCalledWith(ssoUser, {
-            hashPassword: false,
-            requirePassword: false,
-          })
-          expect(mockDone).toBeCalledWith(null, ssoUser)
-        })
-      })
-      describe("exists by id", () => {
-        beforeEach(() => {
-          users.getById.mockReturnValueOnce(Promise.resolve(existingUser))
-        })
-        it("syncs and authenticates the user", async () => {
-          const ssoUser = structures.users.ssoUser({
-            user: existingUser,
-            details,
-          })
-          mockSaveUser.mockReturnValueOnce(ssoUser)
-          await sso.authenticate(details, true, mockDone, mockSaveUser)
-          // roles preserved
-          ssoUser.roles = existingUser.roles
-          // existing id preserved
-          ssoUser._id = existingUser._id
-          expect(mockSaveUser).toBeCalledWith(ssoUser, {
-            hashPassword: false,
-            requirePassword: false,
-          })
-          expect(mockDone).toBeCalledWith(null, ssoUser)
-        })
-      })
-    })
-  })
-})

package/src/middleware/passport/utils.ts DELETED Viewed

@@ -1,38 +0,0 @@
-import { getTenantId, isMultiTenant } from "../../context"
-import * as configs from "../../configs"
-import { ConfigType, GoogleInnerConfig } from "@budibase/types"
-/**
- * Utility to handle authentication errors.
- *
- * @param {*} done The passport callback.
- * @param {*} message Message that will be returned in the response body
- * @param {*} err (Optional) error that will be logged
- */
-export function authError(done: Function, message: string, err?: any) {
-  return done(
-    err,
-    null, // never return a user
-    { message: message }
-  )
-}
-export async function ssoCallbackUrl(
-  type: ConfigType,
-  config?: GoogleInnerConfig
-) {
-  // incase there is a callback URL from before
-  if (config && (config as GoogleInnerConfig).callbackURL) {
-    return (config as GoogleInnerConfig).callbackURL as string
-  }
-  const settingsConfig = await configs.getSettingsConfig()
-  let callbackUrl = `/api/global/auth`
-  if (isMultiTenant()) {
-    callbackUrl += `/${getTenantId()}`
-  }
-  callbackUrl += `/${type}/callback`
-  return `${settingsConfig.platformUrl}${callbackUrl}`
-}

package/src/middleware/querystringToBody.ts DELETED Viewed

@@ -1,28 +0,0 @@
-import { Ctx } from "@budibase/types"
-/**
- * Expects a standard "query" query string property which is the JSON body
- * of the request, which has to be sent via query string due to the requirement
- * of making an endpoint a GET request e.g. downloading a file stream.
- */
-export default function (ctx: Ctx, next: any) {
-  const queryString = ctx.request.query?.query as string | undefined
-  if (ctx.request.method.toLowerCase() !== "get") {
-    ctx.throw(
-      500,
-      "Query to download middleware can only be used for get requests."
-    )
-  }
-  if (!queryString) {
-    return next()
-  }
-  const decoded = decodeURIComponent(queryString)
-  let json
-  try {
-    json = JSON.parse(decoded)
-  } catch (err) {
-    return next()
-  }
-  ctx.request.body = json
-  return next()
-}

package/src/middleware/tenancy.ts DELETED Viewed

@@ -1,36 +0,0 @@
-import { doInTenant } from "../context"
-import { getTenantIDFromCtx } from "../tenancy"
-import { buildMatcherRegex, matches } from "./matchers"
-import { Header } from "../constants"
-import {
-  BBContext,
-  EndpointMatcher,
-  GetTenantIdOptions,
-  TenantResolutionStrategy,
-} from "@budibase/types"
-export default function (
-  allowQueryStringPatterns: EndpointMatcher[],
-  noTenancyPatterns: EndpointMatcher[],
-  opts: { noTenancyRequired?: boolean } = { noTenancyRequired: false }
-) {
-  const allowQsOptions = buildMatcherRegex(allowQueryStringPatterns)
-  const noTenancyOptions = buildMatcherRegex(noTenancyPatterns)
-  return async function (ctx: BBContext | any, next: any) {
-    const allowNoTenant =
-      opts.noTenancyRequired || !!matches(ctx, noTenancyOptions)
-    const tenantOpts: GetTenantIdOptions = {
-      allowNoTenant,
-    }
-    const allowQs = !!matches(ctx, allowQsOptions)
-    if (!allowQs) {
-      tenantOpts.excludeStrategies = [TenantResolutionStrategy.QUERY]
-    }
-    const tenantId = getTenantIDFromCtx(ctx, tenantOpts)
-    ctx.set(Header.TENANT_ID, tenantId as string)
-    return doInTenant(tenantId, next)
-  }
-}