npm - @canmingir/link-express - Versions diffs - 1.6.10 → 1.7.0 - Mend

@canmingir/link-express 1.6.10 → 1.7.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (56) hide show

package/.eslintrc.ts +29 -0
package/index.ts +2 -0
package/package.json +55 -12
package/{prepare.js → prepare.ts} +1 -1
package/src/{authorization.js → authorization.ts} +31 -9
package/src/config.ts +112 -0
package/src/dynamodb.ts +24 -0
package/src/{error.js → error.ts} +30 -11
package/src/express.ts +66 -0
package/src/lib/{settings.js → settings.ts} +16 -4
package/src/lib/test.ts +68 -0
package/src/logger.ts +36 -0
package/src/metrics/{dbMetrics.js → dbMetrics.ts} +37 -14
package/src/models/Organization.model.ts +27 -0
package/src/models/Permission.model.ts +48 -0
package/src/models/Project.model.ts +50 -0
package/src/models/Settings.model.ts +31 -0
package/src/models/{index.js → index.ts} +8 -8
package/src/platform.ts +55 -0
package/src/postgres.ts +309 -0
package/src/routes/index.ts +8 -0
package/src/routes/metrics.ts +13 -0
package/src/routes/oauth.ts +267 -0
package/src/routes/{organizations.js → organizations.ts} +10 -8
package/src/routes/{permissions.js → permissions.ts} +8 -6
package/src/routes/{projects.js → projects.ts} +22 -16
package/src/routes/settings.ts +31 -0
package/src/schemas/{Organization.js → Organization.ts} +2 -2
package/src/schemas/{Permission.js → Permission.ts} +2 -2
package/src/schemas/{Project.js → Project.ts} +2 -2
package/src/schemas/index.ts +5 -0
package/src/sequelize.ts +13 -0
package/src/{test.js → test.ts} +11 -13
package/src/types/Organization.ts +9 -0
package/src/types/Permission.ts +13 -0
package/src/types/Project.ts +14 -0
package/src/types/index.ts +5 -0
package/tsconfig.json +32 -0
package/.eslintrc.js +0 -20
package/index.js +0 -1
package/src/config.js +0 -21
package/src/dynamodb.js +0 -18
package/src/express.js +0 -58
package/src/lib/test.js +0 -69
package/src/models/Organization.js +0 -17
package/src/models/Permission.js +0 -33
package/src/models/Project.js +0 -37
package/src/models/Settings.js +0 -21
package/src/openapi.js +0 -40
package/src/platform.js +0 -46
package/src/postgres.js +0 -308
package/src/routes/index.js +0 -15
package/src/routes/metrics.js +0 -12
package/src/routes/oauth.js +0 -213
package/src/routes/settings.js +0 -25
package/src/schemas/index.js +0 -5

package/src/routes/oauth.js DELETED Viewed

@@ -1,213 +0,0 @@
-const Joi = require("joi");
-const router = require("express").Router();
-const jwt = require("jsonwebtoken");
-const axios = require("axios");
-const config = require("../config");
-const { AuthenticationError, AuthorizationError } = require("../error");
-const Permission = require("../models/Permission");
-const { project } = config();
-router.post("/", async (req, res) => {
-  let { appId, projectId, code, refreshToken, redirectUri, provider } =
-    Joi.attempt(
-      req.body,
-      Joi.object({
-        appId: Joi.string().required(),
-        projectId: Joi.string().optional(),
-        code: Joi.string().optional(),
-        refreshToken: Joi.string().optional(),
-        redirectUri: Joi.string().optional(),
-        provider: Joi.string().required(),
-      })
-        .required()
-        .options({ stripUnknown: true })
-    );
-  if (!code && !refreshToken) {
-    return res.status(400).send("Missing OAuth Code and Refresh Token");
-  }
-  const providerConfig = project.oauth.providers[provider];
-  if (!providerConfig) {
-    return res.status(400).send("Unsupported OAuth provider");
-  }
-  let accessTokenForAPI;
-  let newRefreshToken = refreshToken;
-  if (code && redirectUri) {
-    const params = new URLSearchParams();
-    params.append("grant_type", "authorization_code");
-    params.append("client_id", providerConfig.clientId);
-    params.append(
-      "client_secret",
-      process.env[`${provider.toUpperCase()}_CLIENT_SECRET`]
-    );
-    params.append("code", code);
-    params.append("redirect_uri", redirectUri);
-    const tokenResponse = await axios.post(
-      providerConfig.tokenUrl,
-      params.toString(),
-      {
-        headers: {
-          "Content-Type": "application/x-www-form-urlencoded",
-          Accept: "application/json",
-        },
-        timeout: 10000,
-      }
-    );
-    if (tokenResponse.data.error) {
-      throw new AuthorizationError(
-        tokenResponse.data.error_description || tokenResponse.data.error
-      );
-    }
-    if (!tokenResponse.data.access_token) {
-      throw new AuthenticationError(
-        "No access token received from OAuth provider"
-      );
-    }
-    accessTokenForAPI = tokenResponse.data.access_token;
-    newRefreshToken =
-      tokenResponse.data.refresh_token || tokenResponse.data.access_token;
-  } else {
-    accessTokenForAPI = refreshToken;
-  }
-  let userResponse = await axios.get(providerConfig.userUrl, {
-    headers: {
-      Authorization: `Bearer ${accessTokenForAPI}`,
-      Accept: "application/json",
-    },
-    timeout: 10000,
-  });
-  console.log("User info response:", userResponse.data);
-  let userId;
-  const identifierField = providerConfig.userIdentifier;
-  if (userResponse.data[identifierField]) {
-    userId = userResponse.data[identifierField].toString();
-  } else if (userResponse.data[project.oauth.jwt.identifier]) {
-    userId = userResponse.data[project.oauth.jwt.identifier].toString();
-  } else {
-    console.error("User identifier extraction failed:", {
-      availableFields: Object.keys(userResponse.data),
-      expectedField: identifierField,
-      fallbackField: project.oauth.jwt.identifier,
-    });
-    throw new Error(
-      `Cannot find user identifier in ${provider} OAuth response`
-    );
-  }
-  let accessToken;
-  if (projectId) {
-    const permissions = await Permission.findAll({
-      where: { userId, projectId, appId },
-    });
-    if (!permissions.length) {
-      accessToken = jwt.sign(
-        {
-          sub: userId,
-          iss: "nuc",
-          aid: appId,
-          provider: provider,
-          iat: Math.floor(Date.now() / 1000),
-        },
-        process.env.JWT_SECRET,
-        { expiresIn: "12h" }
-      );
-    } else {
-      accessToken = jwt.sign(
-        {
-          sub: userId,
-          iss: "nuc",
-          aud: projectId,
-          oid: permissions[0].organizationId,
-          aid: appId,
-          rls: permissions.map((permission) => permission.role),
-          provider: provider,
-          iat: Math.floor(Date.now() / 1000),
-        },
-        process.env.JWT_SECRET,
-        { expiresIn: "12h" }
-      );
-    }
-  } else {
-    accessToken = jwt.sign(
-      {
-        sub: userId,
-        iss: "nuc",
-        aid: appId,
-        provider: provider,
-        iat: Math.floor(Date.now() / 1000),
-      },
-      process.env.JWT_SECRET,
-      { expiresIn: "12h" }
-    );
-  }
-  res.status(200).json({
-    accessToken,
-    refreshToken: newRefreshToken,
-  });
-});
-router.get("/user", async (req, res) => {
-  const authHeader = req.headers.authorization;
-  const refreshTokenHeader = req.headers["x-refresh-token"];
-  if (!authHeader || !authHeader.startsWith("Bearer ")) {
-    return res.status(401).end();
-  }
-  if (!refreshTokenHeader) {
-    return res.status(400).send("Missing refresh token");
-  }
-  const token = authHeader.split(" ")[1];
-  const decoded = jwt.verify(token, process.env.JWT_SECRET);
-  const userId = decoded.sub;
-  const provider = decoded.provider;
-  if (!userId || !provider) {
-    return res.status(401).end();
-  }
-  const providerConfig = project.oauth.providers[provider];
-  if (!providerConfig) {
-    return res.status(400).send("Unsupported OAuth provider");
-  }
-  const userResponse = await axios.get(providerConfig.userUrl, {
-    headers: {
-      Authorization: `Bearer ${refreshTokenHeader}`,
-      Accept: "application/json",
-    },
-    timeout: 10000,
-  });
-  const userFieldMapping = providerConfig.userFields;
-  const userDetails = {
-    id: userId,
-    provider: provider,
-    name: userResponse.data[userFieldMapping.name] || null,
-    displayName: userResponse.data[userFieldMapping.displayName] || null,
-    avatarUrl: userResponse.data[userFieldMapping.avatarUrl] || null,
-    email: userResponse.data[userFieldMapping.email] || null,
-  };
-  res.status(200).json({
-    user: userDetails,
-  });
-});
-module.exports = router;

package/src/routes/settings.js DELETED Viewed

@@ -1,25 +0,0 @@
-const express = require("express");
-const router = express.Router({ mergeParams: true });
-const settings = require("../lib/settings");
-const { AuthorizationError } = require("../error");
-router.get("/", async (req, res) => {
-  if (req.params.projectId !== req.session.projectId) {
-    throw new AuthorizationError();
-  }
-  const setting = await settings.get(req.session, req.params);
-  res.json(setting);
-});
-router.patch("/", async (req, res) => {
-  if (req.params.projectId !== req.session.projectId) {
-    throw new AuthorizationError();
-  }
-  await settings.upsert(req.session, req.body, req.params);
-  res.end();
-});
-module.exports = router;

package/src/schemas/index.js DELETED Viewed

@@ -1,5 +0,0 @@
-const Permission = require("./Permission");
-const Organization = require("./Organization");
-const Project = require("./Project");
-module.exports = { Permission, Organization, Project };