npm - @flink-app/generic-auth-plugin - Versions diffs - 0.3.0 → 0.3.3 - Mend

@flink-app/generic-auth-plugin 0.3.0 → 0.3.3

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (29) hide show

package/.flink/generatedHandlers.ts +2 -1
package/.flink/generatedRepos.ts +1 -1
package/.flink/schemas/schemas.json +42 -2
package/.flink/schemas/schemas.ts +9 -3
package/.flink/start.ts +1 -1
package/dist/.flink/generatedHandlers.js +1 -1
package/dist/.flink/generatedRepos.js +1 -1
package/dist/.flink/schemas/schemas.d.ts +8 -2
package/dist/.flink/schemas/schemas.json +42 -2
package/dist/.flink/start.js +1 -1
package/dist/src/coreFunctions.js +2 -2
package/dist/src/handlers/Management/GetUserViewByUserid.d.ts +7 -0
package/dist/src/handlers/Management/GetUserViewByUserid.js +80 -0
package/dist/src/handlers/UserProfilePut.js +14 -3
package/dist/src/management.d.ts +6 -0
package/dist/src/management.js +17 -4
package/dist/src/schemas/Management/GetUserViewByUseridReq.d.ts +2 -0
package/dist/src/schemas/Management/GetUserViewByUseridReq.js +2 -0
package/dist/src/schemas/Management/GetUserViewByUseridRes.d.ts +9 -0
package/dist/src/schemas/Management/GetUserViewByUseridRes.js +2 -0
package/package.json +3 -3
package/readme.md +55 -0
package/src/coreFunctions.ts +245 -270
package/src/handlers/Management/GetUserViewByUserid.ts +38 -0
package/src/handlers/UserCreate.ts +43 -55
package/src/handlers/UserProfilePut.ts +8 -2
package/src/management.ts +152 -136
package/src/schemas/Management/GetUserViewByUseridReq.ts +3 -0
package/src/schemas/Management/GetUserViewByUseridRes.ts +4 -0

package/src/coreFunctions.ts CHANGED Viewed

@@ -11,314 +11,289 @@ import { UserPasswordResetCompleteRes } from "./schemas/UserPasswordResetComplet
 import jsonwebtoken from "jsonwebtoken";
-export function getJtwTokenPlugin(
-  secret: string,
-  rolePermissions?: { [role: string]: string[] },
-  passwordPolicy?: RegExp
-) {
-  if (passwordPolicy == undefined) {
-    passwordPolicy = /.{1,}$/;
-  }
-  if (rolePermissions == undefined) {
-    rolePermissions = {};
-  }
-  if (rolePermissions["user"] == null) {
-    rolePermissions["user"] = [];
-  }
-  if (!rolePermissions["user"].includes("authenticated"))
-    rolePermissions["user"].push("authenticated");
-  return jwtAuthPlugin({
-    secret,
-    getUser: (tokenData: any) => {
-      return new Promise<FlinkAuthUser>((res) => {
-        res({
-          username: tokenData.username,
-          _id: tokenData._id,
-        });
-      });
-    },
-    passwordPolicy,
-    rolePermissions,
-  });
+export function getJtwTokenPlugin(secret: string, rolePermissions?: { [role: string]: string[] }, passwordPolicy?: RegExp) {
+    if (passwordPolicy == undefined) {
+        passwordPolicy = /.{1,}$/;
+    }
+    if (rolePermissions == undefined) {
+        rolePermissions = {};
+    }
+    if (rolePermissions["user"] == null) {
+        rolePermissions["user"] = [];
+    }
+    if (!rolePermissions["user"].includes("authenticated")) rolePermissions["user"].push("authenticated");
+    return jwtAuthPlugin({
+        secret,
+        getUser: (tokenData: any) => {
+            return new Promise<FlinkAuthUser>((res) => {
+                res({
+                    username: tokenData.username,
+                    _id: tokenData._id,
+                });
+            });
+        },
+        passwordPolicy,
+        rolePermissions,
+    });
 }
 export async function createUser(
-  repo: FlinkRepo<any, User>,
-  auth: JwtAuthPlugin,
-  username: string,
-  password: string,
-  authentificationMethod: "password" | "sms",
-  roles: string[],
-  profile: UserProfile,
-  createPasswordHashAndSaltMethod?: {
-    (password: string): Promise<{ hash: string; salt: string } | null>;
-  }
+    repo: FlinkRepo<any, User>,
+    auth: JwtAuthPlugin,
+    username: string,
+    password: string,
+    authentificationMethod: "password" | "sms",
+    roles: string[],
+    profile: UserProfile,
+    createPasswordHashAndSaltMethod?: {
+        (password: string): Promise<{ hash: string; salt: string } | null>;
+    }
 ): Promise<UserCreateRes> {
-  if (!roles.includes("user")) roles.push("user");
+    if (!roles.includes("user")) roles.push("user");
-  const existingUser = await repo.getOne({ username: username.toLowerCase() });
-  if (existingUser != null) {
-    return {
-      status: "userExists",
-    };
-  }
-  let userData: Omit<User, "_id"> = {
-    username,
-    roles,
-    profile,
-    authentificationMethod,
-    pushNotificationTokens: [],
-  };
-  if (authentificationMethod == "password") {
-    let passwordAndSalt = null;
-    if (createPasswordHashAndSaltMethod != null) {
-      passwordAndSalt = await createPasswordHashAndSaltMethod(password);
-    } else {
-      passwordAndSalt = await auth.createPasswordHashAndSalt(password);
+    const existingUser = await repo.getOne({ username: username.toLowerCase() });
+    if (existingUser != null) {
+        return {
+            status: "userExists",
+        };
     }
+    let userData: Omit<User, "_id"> = {
+        username: username.toLowerCase(),
+        roles,
+        profile,
+        authentificationMethod,
+        pushNotificationTokens: [],
+    };
-    if (passwordAndSalt == null) {
-      return {
-        status: "passwordError",
-      };
+    if (authentificationMethod == "password") {
+        let passwordAndSalt = null;
+        if (createPasswordHashAndSaltMethod != null) {
+            passwordAndSalt = await createPasswordHashAndSaltMethod(password);
+        } else {
+            passwordAndSalt = await auth.createPasswordHashAndSalt(password);
+        }
+        if (passwordAndSalt == null) {
+            return {
+                status: "passwordError",
+            };
+        }
+        userData.password = passwordAndSalt.hash;
+        userData.salt = passwordAndSalt.salt;
     }
-    userData.password = passwordAndSalt.hash;
-    userData.salt = passwordAndSalt.salt;
-  }
-  const user = await repo.create(userData);
-  const token = await auth.createToken(
-    { username: username.toLowerCase(), _id: user._id },
-    roles
-  );
-  return {
-    status: "success",
-    user: {
-      _id: user._id,
-      token: token,
-      username: username.toLowerCase(),
-    },
-  };
+    const user = await repo.create(userData);
+    const token = await auth.createToken({ username: username.toLowerCase(), _id: user._id }, roles);
+    return {
+        status: "success",
+        user: {
+            _id: user._id,
+            token: token,
+            username: username.toLowerCase(),
+        },
+    };
 }
 export async function loginUser(
-  repo: FlinkRepo<any, User>,
-  auth: JwtAuthPlugin,
-  username: string,
-  password: string | undefined,
-  validatePasswordMethod?: {
-    (password: string, hash: string, salt: string): Promise<boolean>;
-  }
+    repo: FlinkRepo<any, User>,
+    auth: JwtAuthPlugin,
+    username: string,
+    password: string | undefined,
+    validatePasswordMethod?: {
+        (password: string, hash: string, salt: string): Promise<boolean>;
+    }
 ): Promise<UserLoginRes> {
-  const user = await repo.getOne({ username: username.toLowerCase() });
-  if (user == null) {
-    return { status: "failed" };
-  }
-  let valid: boolean = false;
-  if (user.authentificationMethod == "password") {
-    if (password == null) password = "";
-    if (validatePasswordMethod != null) {
-      valid = await validatePasswordMethod(
-        password,
-        <string>user.password,
-        <string>user.salt
-      );
-      //If not valid, try to use default auth
-      if (!valid) {
-        try {
-          valid = await auth.validatePassword(
-            password,
-            <string>user.password,
-            <string>user.salt
-          );
-        } catch (ex) {}
-      }
-    } else {
-      valid = await auth.validatePassword(
-        password,
-        <string>user.password,
-        <string>user.salt
-      );
+    const user = await repo.getOne({ username: username.toLowerCase() });
+    if (user == null) {
+        return { status: "failed" };
     }
-  }
-  if (user.authentificationMethod == "sms") {
-    log.error("SMS login is not yet impleted.");
-    return { status: "failed" };
-  }
-  if (valid) {
-    const token = await auth.createToken(
-      { username: username.toLowerCase(), _id: user._id },
-      user.roles
-    );
-    return {
-      status: "success",
-      user: {
-        _id: user._id,
-        username: user.username,
-        token,
-        profile: user.profile,
-      },
-    };
-  } else {
-    return { status: "failed" };
-  }
+    let valid: boolean = false;
+    if (user.authentificationMethod == "password") {
+        if (password == null) password = "";
+        if (validatePasswordMethod != null) {
+            valid = await validatePasswordMethod(password, <string>user.password, <string>user.salt);
+            //If not valid, try to use default auth
+            if (!valid) {
+                try {
+                    valid = await auth.validatePassword(password, <string>user.password, <string>user.salt);
+                } catch (ex) {}
+            }
+        } else {
+            valid = await auth.validatePassword(password, <string>user.password, <string>user.salt);
+        }
+    }
+    if (user.authentificationMethod == "sms") {
+        log.error("SMS login is not yet impleted.");
+        return { status: "failed" };
+    }
+    if (valid) {
+        const token = await auth.createToken({ username: username.toLowerCase(), _id: user._id }, user.roles);
+        return {
+            status: "success",
+            user: {
+                _id: user._id,
+                username: user.username,
+                token,
+                profile: user.profile,
+            },
+        };
+    } else {
+        return { status: "failed" };
+    }
 }
 export async function changePassword(
-  repo: FlinkRepo<any, User>,
-  auth: JwtAuthPlugin,
-  userId: string,
-  newPassword: string,
-  createPasswordHashAndSaltMethod?: {
-    (password: string): Promise<{ hash: string; salt: string } | null>;
-  }
+    repo: FlinkRepo<any, User>,
+    auth: JwtAuthPlugin,
+    userId: string,
+    newPassword: string,
+    createPasswordHashAndSaltMethod?: {
+        (password: string): Promise<{ hash: string; salt: string } | null>;
+    }
 ): Promise<UserPasswordChangeRes> {
-  const user = await repo.getById(userId);
-  if (user == null) {
-    return { status: "failed" };
-  }
+    const user = await repo.getById(userId);
+    if (user == null) {
+        return { status: "failed" };
+    }
-  if (user.authentificationMethod != "password") {
-    return { status: "failed" };
-  }
+    if (user.authentificationMethod != "password") {
+        return { status: "failed" };
+    }
-  let passwordAndSalt = null;
+    let passwordAndSalt = null;
-  if (createPasswordHashAndSaltMethod == null) {
-    passwordAndSalt = await auth.createPasswordHashAndSalt(newPassword);
-  } else {
-    passwordAndSalt = await createPasswordHashAndSaltMethod(newPassword);
-  }
+    if (createPasswordHashAndSaltMethod == null) {
+        passwordAndSalt = await auth.createPasswordHashAndSalt(newPassword);
+    } else {
+        passwordAndSalt = await createPasswordHashAndSaltMethod(newPassword);
+    }
-  if (passwordAndSalt == null) {
-    return {
-      status: "passwordError",
-    };
-  }
+    if (passwordAndSalt == null) {
+        return {
+            status: "passwordError",
+        };
+    }
-  await repo.updateOne(userId, {
-    password: passwordAndSalt.hash,
-    salt: passwordAndSalt.salt,
-  });
+    await repo.updateOne(userId, {
+        password: passwordAndSalt.hash,
+        salt: passwordAndSalt.salt,
+    });
-  return { status: "success" };
+    return { status: "success" };
 }
 export async function passwordResetStart(
-  repo: FlinkRepo<any, User>,
-  auth: JwtAuthPlugin,
-  jwtSecret: string,
-  username: string,
-  numberOfDigits?: number,
-  lifeTime?: string
+    repo: FlinkRepo<any, User>,
+    auth: JwtAuthPlugin,
+    jwtSecret: string,
+    username: string,
+    numberOfDigits?: number,
+    lifeTime?: string
 ): Promise<UserPasswordResetStartRes> {
-  const user = await repo.getOne({ username: username.toLowerCase() });
-  if (user == null) {
-    return { status: "userNotFound" };
-  }
-  if (user.authentificationMethod != "password") {
-    return { status: "userNotFound" };
-  }
-  if (numberOfDigits == null) numberOfDigits = 6;
-  if (lifeTime == null) lifeTime = "1h";
-  const payload = {
-    type: "passwordReset",
-    username: username.toLocaleLowerCase(),
-  };
-  const code = generate(numberOfDigits);
-  const secret = jwtSecret + ":" + code;
-  const options: jsonwebtoken.SignOptions = {
-    expiresIn: lifeTime,
-  };
-  const token = jsonwebtoken.sign(payload, secret, options);
-  return {
-    status: "success",
-    passwordResetToken: token,
-    code,
-    profile: user.profile,
-  };
-}
+    const user = await repo.getOne({ username: username.toLowerCase() });
+    if (user == null) {
+        return { status: "userNotFound" };
+    }
+    if (user.authentificationMethod != "password") {
+        return { status: "userNotFound" };
+    }
+    if (numberOfDigits == null) numberOfDigits = 6;
+    if (lifeTime == null) lifeTime = "1h";
+    const payload = {
+        type: "passwordReset",
+        username: username.toLocaleLowerCase(),
+    };
+    const code = generate(numberOfDigits);
-export async function passwordResetComplete(
-  repo: FlinkRepo<any, User>,
-  auth: JwtAuthPlugin,
-  jwtSecret: string,
-  passwordResetToken: string,
-  code: string,
-  newPassword: string,
-  createPasswordHashAndSaltMethod?: {
-    (password: string): Promise<{ hash: string; salt: string } | null>;
-  }
-): Promise<UserPasswordResetCompleteRes> {
-  let payload: { type: string; username: string } = { type: "", username: "" };
-  try {
     const secret = jwtSecret + ":" + code;
-    payload = <{ type: string; username: string }>(
-      jsonwebtoken.verify(passwordResetToken, secret)
-    );
-  } catch (ex) {
-    return { status: "invalidCode" };
-  }
-  const user = await repo.getOne({ username: payload.username });
-  if (user == null) {
-    return { status: "userNotFound" };
-  }
-  if (user.authentificationMethod != "password") {
-    return { status: "userNotFound" };
-  }
-  let passwordAndSalt = null;
-  if (createPasswordHashAndSaltMethod == null) {
-    passwordAndSalt = await auth.createPasswordHashAndSalt(newPassword);
-  } else {
-    passwordAndSalt = await createPasswordHashAndSaltMethod(newPassword);
-  }
-  if (passwordAndSalt == null) {
+    const options: jsonwebtoken.SignOptions = {
+        expiresIn: lifeTime,
+    };
+    const token = jsonwebtoken.sign(payload, secret, options);
     return {
-      status: "passwordError",
+        status: "success",
+        passwordResetToken: token,
+        code,
+        profile: user.profile,
     };
-  }
+}
-  await repo.updateOne(user._id, {
-    password: passwordAndSalt.hash,
-    salt: passwordAndSalt.salt,
-  });
+export async function passwordResetComplete(
+    repo: FlinkRepo<any, User>,
+    auth: JwtAuthPlugin,
+    jwtSecret: string,
+    passwordResetToken: string,
+    code: string,
+    newPassword: string,
+    createPasswordHashAndSaltMethod?: {
+        (password: string): Promise<{ hash: string; salt: string } | null>;
+    }
+): Promise<UserPasswordResetCompleteRes> {
+    let payload: { type: string; username: string } = { type: "", username: "" };
+    try {
+        const secret = jwtSecret + ":" + code;
+        payload = <{ type: string; username: string }>jsonwebtoken.verify(passwordResetToken, secret);
+    } catch (ex) {
+        return { status: "invalidCode" };
+    }
+    const user = await repo.getOne({ username: payload.username });
+    if (user == null) {
+        return { status: "userNotFound" };
+    }
+    if (user.authentificationMethod != "password") {
+        return { status: "userNotFound" };
+    }
+    let passwordAndSalt = null;
-  return { status: "success" };
+    if (createPasswordHashAndSaltMethod == null) {
+        passwordAndSalt = await auth.createPasswordHashAndSalt(newPassword);
+    } else {
+        passwordAndSalt = await createPasswordHashAndSaltMethod(newPassword);
+    }
+    if (passwordAndSalt == null) {
+        return {
+            status: "passwordError",
+        };
+    }
+    await repo.updateOne(user._id, {
+        password: passwordAndSalt.hash,
+        salt: passwordAndSalt.salt,
+    });
+    return { status: "success" };
 }
 function generate(n: number): string {
-  var add = 1,
-    max = 12 - add;
+    var add = 1,
+        max = 12 - add;
-  if (n > max) {
-    return generate(max) + generate(n - max);
-  }
+    if (n > max) {
+        return generate(max) + generate(n - max);
+    }
-  max = Math.pow(10, n + add);
-  var min = max / 10;
-  var number = Math.floor(Math.random() * (max - min + 1)) + min;
+    max = Math.pow(10, n + add);
+    var min = max / 10;
+    var number = Math.floor(Math.random() * (max - min + 1)) + min;
-  return ("" + number).substring(add);
+    return ("" + number).substring(add);
 }

package/src/handlers/Management/GetUserViewByUserid.ts ADDED Viewed

@@ -0,0 +1,38 @@
+import { FlinkContext, Handler, HttpMethod, notFound, RouteProps } from "@flink-app/flink";
+import { User } from "../..";
+import { GetManagementUserViewByUseridReq } from "../../schemas/Management/GetUserViewByUseridReq";
+import { GetManagementUserViewByUseridRes } from "../../schemas/Management/GetUserViewByUseridRes";
+const GetManagementUserByUserid: Handler<FlinkContext, GetManagementUserViewByUseridReq, GetManagementUserViewByUseridRes> = async ({ ctx, req, origin }) => {
+    let pluginName = origin || "genericAuthPlugin";
+    let repo = ctx.repos[(<any>ctx.plugins)[pluginName].repoName];
+    const user = await repo.getById(req.params.userid);
+    if (user == null) {
+        return notFound();
+    }
+    const modules = ctx.plugins.managementApi.moduleList.modules as any[];
+    const module = modules.find((p) => p.id == origin);
+    let getData = (user: User): GetManagementUserViewByUseridRes => {
+        let data = {
+            username: user.username,
+        };
+        return {
+            buttons: [],
+            data,
+        };
+    };
+    if (module?.data.userViewGetData != null) {
+        getData = module?.data.userViewGetData as (user: User) => GetManagementUserViewByUseridRes;
+    }
+    return {
+        data: getData(user),
+        status: 200,
+    };
+};
+export default GetManagementUserByUserid;