@flowerforce/flowerbase 1.7.6-beta.0 → 1.7.6-beta.10

package/dist/utils/initializer/mongodbCSFLE.js

@@ -0,0 +1,131 @@
+"use strict";
+var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) {
+    function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); }
+    return new (P || (P = Promise))(function (resolve, reject) {
+        function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } }
+        function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } }
+        function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); }
+        step((generator = generator.apply(thisArg, _arguments || [])).next());
+    });
+};
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.setupMongoDbCSFLE = exports.buildSchemaMap = void 0;
+const mongodb_1 = require("mongodb");
+const constants_1 = require("../../constants");
+function ensureUniqueKeyAltNameIndex(db, config) {
+    return __awaiter(this, void 0, void 0, function* () {
+        yield db.collection(config.keyVaultCollection).createIndex({ keyAltNames: 1 }, {
+            unique: true,
+            partialFilterExpression: { keyAltNames: { $exists: true } },
+        });
+    });
+}
+/**
+ * Ensure provided KMS Providers DEK keys exist in the key vault. If not, they are created.
+ */
+function ensureDataEncryptionKeys(clientEncryption, keyVaultDb, config) {
+    return __awaiter(this, void 0, void 0, function* () {
+        const keys = [];
+        for (const kmsProvider of config.kmsProviders) {
+            const existingKey = yield keyVaultDb.collection(config.keyVaultCollection).findOne({
+                keyAltNames: kmsProvider.keyAlias,
+            });
+            if ((existingKey === null || existingKey === void 0 ? void 0 : existingKey._id) instanceof mongodb_1.Binary) {
+                keys.push({ dataKeyId: existingKey._id, dataKeyAlias: kmsProvider.keyAlias });
+                continue;
+            }
+            const dataKeyId = yield clientEncryption.createDataKey(kmsProvider.provider, {
+                masterKey: "masterKey" in kmsProvider ? kmsProvider.masterKey : undefined,
+                keyAltNames: [kmsProvider.keyAlias],
+            });
+            console.log(`[MongoDB Encryption] Created new key with alias ${kmsProvider.keyAlias}`);
+            keys.push({ dataKeyId, dataKeyAlias: kmsProvider.keyAlias });
+        }
+        return keys;
+    });
+}
+/**
+ * Recursively resolve key aliases in an encryption schema to their corresponding key IDs.
+ */
+const resolveKeyAliases = (schema, dataKeys) => {
+    var _a, _b;
+    if ("encrypt" in schema) {
+        if (!schema.encrypt.keyAlias) {
+            return schema;
+        }
+        const keyId = (_a = dataKeys.find(k => k.dataKeyAlias === schema.encrypt.keyAlias)) === null || _a === void 0 ? void 0 : _a.dataKeyId;
+        if (!keyId) {
+            throw new Error(`Key with alias ${schema.encrypt.keyAlias} could not be found in the Key Vault.`);
+        }
+        return {
+            encrypt: {
+                bsonType: schema.encrypt.bsonType,
+                algorithm: schema.encrypt.algorithm,
+                keyId: [keyId]
+            }
+        };
+    }
+    const mappedSchema = {
+        bsonType: "object",
+        properties: Object.entries(schema.properties).reduce((acc, [property, config]) => {
+            acc[property] = resolveKeyAliases(config, dataKeys);
+            return acc;
+        }, {})
+    };
+    if (schema.encryptMetadata) {
+        const keyId = (_b = dataKeys.find(k => k.dataKeyAlias === schema.encryptMetadata.keyAlias)) === null || _b === void 0 ? void 0 : _b.dataKeyId;
+        if (!keyId) {
+            throw new Error(`Key with alias ${schema.encryptMetadata.keyAlias} could not be found in the Key Vault.`);
+        }
+        mappedSchema.encryptMetadata = { keyId: [keyId] };
+    }
+    return mappedSchema;
+};
+const buildSchemaMap = (schemas, dataKeys) => {
+    return Object.entries(schemas).reduce((acc, [key, schema]) => {
+        acc[key] = resolveKeyAliases(schema, dataKeys);
+        return acc;
+    }, {});
+};
+exports.buildSchemaMap = buildSchemaMap;
+/**
+ * Setup MongoDB Client-Side Field Level Encryption (CSFLE).
+ * @see https://www.mongodb.com/docs/manual/core/csfle
+ */
+const setupMongoDbCSFLE = (config) => __awaiter(void 0, void 0, void 0, function* () {
+    var _a, _b;
+    if (config.kmsProviders.length === 0) {
+        throw new Error('At least one KMS Provider is required when using MongoDB encryption');
+    }
+    const requiredConfig = {
+        kmsProviders: config.kmsProviders,
+        keyVaultDb: (_a = config.keyVaultDb) !== null && _a !== void 0 ? _a : constants_1.DEFAULT_CONFIG.MONGODB_ENCRYPTION_CONFIG.keyVaultDb,
+        keyVaultCollection: (_b = config.keyVaultDb) !== null && _b !== void 0 ? _b : constants_1.DEFAULT_CONFIG.MONGODB_ENCRYPTION_CONFIG.keyVaultCollection,
+    };
+    const kmsProviders = requiredConfig.kmsProviders.reduce((acc, { provider, config }) => (Object.assign(Object.assign({}, acc), { [provider]: config })), {});
+    const keyVaultNamespace = `${requiredConfig.keyVaultDb}.${requiredConfig.keyVaultCollection}`;
+    const keyVaultClient = new mongodb_1.MongoClient(config.mongodbUrl, {
+        maxPoolSize: 1,
+        autoEncryption: {
+            keyVaultNamespace,
+            kmsProviders,
+            extraOptions: config.extraOptions
+        }
+    });
+    yield keyVaultClient.connect();
+    const keyVaultDb = keyVaultClient.db(requiredConfig.keyVaultDb);
+    yield ensureUniqueKeyAltNameIndex(keyVaultDb, requiredConfig);
+    const clientEncryption = new mongodb_1.ClientEncryption(keyVaultClient, {
+        keyVaultNamespace,
+        kmsProviders,
+    });
+    const dataKeys = yield ensureDataEncryptionKeys(clientEncryption, keyVaultDb, requiredConfig);
+    yield keyVaultClient.close();
+    return {
+        keyVaultNamespace,
+        kmsProviders,
+        schemaMap: config.schemas ? (0, exports.buildSchemaMap)(config.schemas, dataKeys) : undefined,
+        extraOptions: config.extraOptions
+    };
+});
+exports.setupMongoDbCSFLE = setupMongoDbCSFLE;

package/dist/utils/initializer/registerPlugins.d.ts

@@ -1,6 +1,8 @@
 import { FastifyInstance } from 'fastify';
 import { CorsConfig } from '../../';
 import { Functions } from '../../features/functions/interface';
+import { EncryptionSchemas } from '../../features/encryption/interface';
+import { MongoDbEncryptionConfig } from './mongodbCSFLE';
 type RegisterFunction = FastifyInstance['register'];
 type RegisterPluginsParams = {
     register: RegisterFunction;
@@ -8,6 +10,8 @@ type RegisterPluginsParams = {
     jwtSecret: string;
     functionsList: Functions;
     corsConfig?: CorsConfig;
+    encryptionSchemas?: EncryptionSchemas;
+    mongodbEncryptionConfig?: MongoDbEncryptionConfig;
 };
 /**
  * > Used to register all plugins
@@ -16,6 +20,6 @@ type RegisterPluginsParams = {
  * @param jwtSecret -> connection jwt
  * @tested
  */
-export declare const registerPlugins: ({ register, mongodbUrl, jwtSecret, functionsList, corsConfig }: RegisterPluginsParams) => Promise<void>;
+export declare const registerPlugins: ({ register, mongodbUrl, jwtSecret, functionsList, corsConfig, mongodbEncryptionConfig, encryptionSchemas }: RegisterPluginsParams) => Promise<void>;
 export {};
 //# sourceMappingURL=registerPlugins.d.ts.map

package/dist/utils/initializer/registerPlugins.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"registerPlugins.d.ts","sourceRoot":"","sources":["../../../src/utils/initializer/registerPlugins.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,eAAe,EAAE,MAAM,SAAS,CAAA;AAEzC,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAA;AAOnC,OAAO,EAAE,SAAS,EAAE,MAAM,oCAAoC,CAAA;AAG9D,KAAK,gBAAgB,GAAG,eAAe,CAAC,UAAU,CAAC,CAAA;AAGnD,KAAK,qBAAqB,GAAG;IAC3B,QAAQ,EAAE,gBAAgB,CAAA;IAC1B,UAAU,EAAE,MAAM,CAAA;IAClB,SAAS,EAAE,MAAM,CAAA;IACjB,aAAa,EAAE,SAAS,CAAA;IACxB,UAAU,CAAC,EAAE,UAAU,CAAA;CACxB,CAAA;AAQD;;;;;;GAMG;AACH,eAAO,MAAM,eAAe,GAAU,gEAMnC,qBAAqB,kBAsBvB,CAAA"}
+{"version":3,"file":"registerPlugins.d.ts","sourceRoot":"","sources":["../../../src/utils/initializer/registerPlugins.ts"],"names":[],"mappings":"AAEA,OAAO,EAAE,eAAe,EAAE,MAAM,SAAS,CAAA;AAEzC,OAAO,EAAE,UAAU,EAAE,MAAM,QAAQ,CAAA;AAOnC,OAAO,EAAE,SAAS,EAAE,MAAM,oCAAoC,CAAA;AAC9D,OAAO,EAAE,iBAAiB,EAAE,MAAM,qCAAqC,CAAA;AAEvE,OAAO,EAAqB,uBAAuB,EAAE,MAAM,gBAAgB,CAAA;AAE3E,KAAK,gBAAgB,GAAG,eAAe,CAAC,UAAU,CAAC,CAAA;AAGnD,KAAK,qBAAqB,GAAG;IAC3B,QAAQ,EAAE,gBAAgB,CAAA;IAC1B,UAAU,EAAE,MAAM,CAAA;IAClB,SAAS,EAAE,MAAM,CAAA;IACjB,aAAa,EAAE,SAAS,CAAA;IACxB,UAAU,CAAC,EAAE,UAAU,CAAA;IACvB,iBAAiB,CAAC,EAAE,iBAAiB,CAAA;IACrC,uBAAuB,CAAC,EAAE,uBAAuB,CAAA;CAClD,CAAA;AAQD;;;;;;GAMG;AACH,eAAO,MAAM,eAAe,GAAU,4GAQnC,qBAAqB,kBAwBvB,CAAA"}

package/dist/utils/initializer/registerPlugins.js

@@ -23,6 +23,7 @@ const controller_3 = require("../../auth/providers/custom-function/controller");
 const controller_4 = require("../../auth/providers/local-userpass/controller");
 const constants_1 = require("../../constants");
 const plugin_1 = __importDefault(require("../../monitoring/plugin"));
+const mongodbCSFLE_1 = require("./mongodbCSFLE");
 /**
  * > Used to register all plugins
  * @param register -> the fastify register method
@@ -30,13 +31,15 @@ const plugin_1 = __importDefault(require("../../monitoring/plugin"));
  * @param jwtSecret -> connection jwt
  * @tested
  */
-const registerPlugins = (_a) => __awaiter(void 0, [_a], void 0, function* ({ register, mongodbUrl, jwtSecret, functionsList, corsConfig }) {
+const registerPlugins = (_a) => __awaiter(void 0, [_a], void 0, function* ({ register, mongodbUrl, jwtSecret, functionsList, corsConfig, mongodbEncryptionConfig, encryptionSchemas }) {
     try {
         const registersConfig = yield getRegisterConfig({
             mongodbUrl,
             jwtSecret,
             corsConfig,
-            functionsList
+            functionsList,
+            mongodbEncryptionConfig,
+            encryptionSchemas
         });
         registersConfig.forEach(({ plugin, options, pluginName }) => {
             try {
@@ -61,11 +64,14 @@ exports.registerPlugins = registerPlugins;
  * @param jwtSecret -> connection jwt
  * @testable
  */
-const getRegisterConfig = (_a) => __awaiter(void 0, [_a], void 0, function* ({ mongodbUrl, jwtSecret, corsConfig }) {
+const getRegisterConfig = (_a) => __awaiter(void 0, [_a], void 0, function* ({ mongodbUrl, jwtSecret, corsConfig, encryptionSchemas, mongodbEncryptionConfig, }) {
     const corsOptions = corsConfig !== null && corsConfig !== void 0 ? corsConfig : {
         origin: '*',
         methods: ['POST', 'GET']
     };
+    const autoEncryption = mongodbEncryptionConfig
+        ? yield (0, mongodbCSFLE_1.setupMongoDbCSFLE)(Object.assign({ mongodbUrl, schemas: encryptionSchemas }, mongodbEncryptionConfig))
+        : undefined;
     const baseConfig = [
         {
             pluginName: 'cors',
@@ -76,8 +82,24 @@ const getRegisterConfig = (_a) => __awaiter(void 0, [_a], void 0, function* ({ m
             pluginName: 'fastifyMongodb',
             plugin: mongodb_1.default,
             options: {
+                url: mongodbUrl,
                 forceClose: true,
-                url: mongodbUrl
+                autoEncryption
+            }
+        },
+        /**
+         * When auto-encryption is active, add another MongoDB client with bypass for change streams.
+         * The $changeStream operator does not support automatic encryption, only decryption.
+         * @see https://www.mongodb.com/docs/manual/core/csfle/reference/supported-operations
+         */
+        autoEncryption && {
+            pluginName: 'fastifyMongodb',
+            plugin: mongodb_1.default,
+            options: {
+                name: "changestream",
+                url: mongodbUrl,
+                forceClose: true,
+                autoEncryption: Object.assign(Object.assign({}, autoEncryption), { bypassAutoEncryption: true })
             }
         },
         {
@@ -133,5 +155,5 @@ const getRegisterConfig = (_a) => __awaiter(void 0, [_a], void 0, function* ({ m
             options: { basePath: '/monit' }
         });
     }
-    return baseConfig;
+    return baseConfig.filter(Boolean);
 });

package/dist/utils/roles/helpers.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../../src/utils/roles/helpers.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAA;AAClD,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAA;AAgBrD,eAAO,MAAM,kBAAkB,GAC7B,QAAQ,cAAc,CAAC,QAAQ,CAAC,EAChC,aAAa,oBAAoB,EACjC,OAAO,cAAc,CAAC,MAAM,CAAC,KAC5B,OAAO,CAAC,OAAO,CAiBjB,CAAA"}
+{"version":3,"file":"helpers.d.ts","sourceRoot":"","sources":["../../../src/utils/roles/helpers.ts"],"names":[],"mappings":"AAKA,OAAO,EAAE,oBAAoB,EAAE,MAAM,aAAa,CAAA;AAClD,OAAO,EAAE,cAAc,EAAE,MAAM,sBAAsB,CAAA;AAkBrD,eAAO,MAAM,kBAAkB,GAC7B,QAAQ,cAAc,CAAC,QAAQ,CAAC,EAChC,aAAa,oBAAoB,EACjC,OAAO,cAAc,CAAC,MAAM,CAAC,KAC5B,OAAO,CAAC,OAAO,CAoBjB,CAAA"}

package/dist/utils/roles/helpers.js

@@ -30,13 +30,16 @@ const normalizeUserRole = (user) => {
     const customRole = typeof candidate.custom_data === 'object' && candidate.custom_data !== null
         ? candidate.custom_data.role
         : undefined;
-    return typeof customRole === 'string' ? Object.assign(Object.assign({}, candidate), { role: customRole }) : user;
+    return typeof customRole === 'string'
+        ? Object.assign(Object.assign({}, candidate), { role: customRole })
+        : user;
 };
 const evaluateExpression = (params, expression, user) => __awaiter(void 0, void 0, void 0, function* () {
+    var _a;
     if (!expression || typeof expression === 'boolean')
         return !!expression;
     const normalizedUser = normalizeUserRole(user);
-    const value = Object.assign(Object.assign(Object.assign({}, params.expansions), params.cursor), { '%%user': normalizedUser, '%%true': true });
+    const value = Object.assign(Object.assign(Object.assign({}, params.expansions), params.cursor), { '%%root': params.cursor, '%%prevRoot': (_a = params.expansions) === null || _a === void 0 ? void 0 : _a['%%prevRoot'], '%%user': normalizedUser, '%%true': true, '%%false': false });
     const conditions = (0, rules_1.expandQuery)(expression, value);
     const complexCondition = Object.entries(conditions).find(([key]) => functionsConditions.includes(key));
     return complexCondition
@@ -61,7 +64,7 @@ const evaluateComplexExpression = (condition, params, user) => __awaiter(void 0,
     const response = yield (0, context_1.GenerateContext)({
         args: expandedArguments,
         app,
-        rules: state_1.StateManager.select("rules"),
+        rules: state_1.StateManager.select('rules'),
         user: normalizedUser,
         currentFunction,
         functionName: name,

package/dist/utils/roles/machines/fieldPermissions.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"fieldPermissions.d.ts","sourceRoot":"","sources":["../../../../src/utils/roles/machines/fieldPermissions.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAElC,OAAO,EAGL,IAAI,EACL,MAAM,cAAc,CAAA;AACrB,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAA;AA4C5C,eAAO,MAAM,0BAA0B,GAAI,OAAO,IAAI,YACN,CAAA;AAEhD,eAAO,MAAM,gCAAgC,GAC3C,SAAS,IAAI,CAAC,cAAc,EAAE,QAAQ,GAAG,MAAM,GAAG,MAAM,CAAC,EACzD,MAAM,MAAM,GAAG,OAAO,EACtB,UAAU;IACR,YAAY,CAAC,EAAE,OAAO,CAAA;CACvB,KACA,OAAO,CAAC,QAAQ,CAyBlB,CAAA"}
+{"version":3,"file":"fieldPermissions.d.ts","sourceRoot":"","sources":["../../../../src/utils/roles/machines/fieldPermissions.ts"],"names":[],"mappings":"AAAA,OAAO,EAAE,QAAQ,EAAE,MAAM,SAAS,CAAA;AAElC,OAAO,EAGL,IAAI,EACL,MAAM,cAAc,CAAA;AACrB,OAAO,EAAE,cAAc,EAAE,MAAM,aAAa,CAAA;AA0C5C,eAAO,MAAM,0BAA0B,GAAI,OAAO,IAAI,YACN,CAAA;AAEhD,eAAO,MAAM,gCAAgC,GAC3C,SAAS,IAAI,CAAC,cAAc,EAAE,QAAQ,GAAG,MAAM,GAAG,MAAM,CAAC,EACzD,MAAM,MAAM,GAAG,OAAO,EACtB,UAAU;IACR,YAAY,CAAC,EAAE,OAAO,CAAA;CACvB,KACA,OAAO,CAAC,QAAQ,CAoClB,CAAA"}

package/dist/utils/roles/machines/fieldPermissions.js

@@ -26,12 +26,9 @@ const getAdditionalFieldPermission = (additionalFields, fieldName) => {
     return undefined;
 };
 const canReadField = (context, permission) => __awaiter(void 0, void 0, void 0, function* () {
-    if (!permission)
-        return false;
-    const read = yield (0, helpers_1.evaluateExpression)(context.params, permission.read, context.user);
-    if (read)
-        return true;
-    return yield (0, helpers_1.evaluateExpression)(context.params, permission.write, context.user);
+    if (!permission || typeof permission.read === 'undefined')
+        return undefined;
+    return yield (0, helpers_1.evaluateExpression)(context.params, permission.read, context.user);
 });
 const canWriteField = (context, permission) => __awaiter(void 0, void 0, void 0, function* () {
     if (!permission)
@@ -49,14 +46,26 @@ const filterDocumentByFieldPermissions = (context, mode, options) => __awaiter(v
     const fields = (_b = context.role.fields) !== null && _b !== void 0 ? _b : {};
     const additionalFields = context.role.additional_fields;
     for (const [key, value] of Object.entries(source)) {
+        if (mode === 'read' && key === '_id') {
+            document[key] = value;
+            continue;
+        }
         const fieldPermission = fields[key];
         const permission = fieldPermission !== null && fieldPermission !== void 0 ? fieldPermission : getAdditionalFieldPermission(additionalFields, key);
         let allowed = (options === null || options === void 0 ? void 0 : options.defaultAllow) === true;
         if (permission) {
-            allowed =
-                mode === 'read'
-                    ? yield canReadField(context, permission)
-                    : yield canWriteField(context, permission);
+            if (mode === 'read') {
+                const readAllowed = yield canReadField(context, permission);
+                if (typeof readAllowed !== 'undefined') {
+                    allowed = readAllowed;
+                }
+                else if (!allowed && typeof permission.write !== 'undefined') {
+                    allowed = yield canWriteField(context, permission);
+                }
+            }
+            else {
+                allowed = yield canWriteField(context, permission);
+            }
         }
         if (allowed) {
             document[key] = value;

package/dist/utils/rules-matcher/interface.d.ts

@@ -311,6 +311,7 @@ export type Operators = {
      * @returns
      */
     $regex: OperatorsFunction;
+    '%exists': OperatorsFunction;
     '%stringToOid': OperatorsFunction;
     '%oidToString': OperatorsFunction;
 };
@@ -331,6 +332,7 @@ export declare enum RulesOperators {
     $all = "$all",
     $size = "$size",
     $regex = "$regex",
+    '%exists' = "%exists",
     '%stringToOid' = "%stringToOid",
     '%oidToString' = "%oidToString"
 }

package/dist/utils/rules-matcher/interface.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"interface.d.ts","sourceRoot":"","sources":["../../../src/utils/rules-matcher/interface.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,EAAE,GAAG,KAAK,OAAO,CAAA;AAE7C,MAAM,MAAM,iBAAiB,GAAG;IAC9B,EAAE,EAAE,MAAM,SAAS,CAAA;IACnB,KAAK,EAAE,GAAG,CAAA;IACV,GAAG,CAAC,EAAE,GAAG,CAAA;CACV,CAAA;AAED,MAAM,WAAW,iBAAiB;IAChC;;;;;;;OAOG;IACH,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,KAAK,OAAO,CAAA;IAC/B;;;;;;;;;OASG;IACH,IAAI,EAAE,CACJ,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAC1B,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACzB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KAC1B;QACH,KAAK,EAAE,OAAO,CAAA;QACd,IAAI,EAAE,MAAM,CAAA;KACb,CAAA;IACD;;;;;;;;;OASG;IACH,MAAM,EAAE,CACN,KAAK,EAAE,WAAW,CAAC,GAAG,CAAC,EACvB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACzB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KACzB,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB;;;;;;OAMG;IACH,MAAM,EAAE,WAAW,CAAA;IACnB;;;;;;OAMG;IACH,SAAS,EAAE,WAAW,CAAA;IACtB;;;;;;OAMG;IACH,QAAQ,EAAE,WAAW,CAAA;IACrB;;;;;;OAMG;IACH,UAAU,EAAE,WAAW,CAAA;IACvB;;;;;;OAMG;IACH,QAAQ,EAAE,WAAW,CAAA;IACrB;;;;;;OAMG;IACH,qBAAqB,EAAE,CAAC,KAAK,EAAE,WAAW,GAAG,SAAS,GAAG,MAAM,KAAK,iBAAiB,CAAA;IACrF;;;;;;OAMG;IACH,SAAS,EAAE,CAAC,KAAK,EAAE,GAAG,KAAK,MAAM,GAAG,IAAI,CAAA;IACxC;;;;;;OAMG;IACH,cAAc,EAAE,CAAC,KAAK,EAAE,GAAG,KAAK,iBAAiB,CAAA;IACjD;;;;;;;OAOG;IACH,OAAO,EAAE,CAAC,KAAK,EAAE,GAAG,KAAK,OAAO,CAAA;IAChC;;;;;;OAMG;IACH,UAAU,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC,CAAA;IACrC;;;;;;;;OAQG;IACH,OAAO,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,KAAK,MAAM,CAAA;IAClD;;;;;;;OAOG;IACH,WAAW,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,KAAK,MAAM,CAAA;IACpC;;;;;;;;OAQG;IACH,SAAS,EAAE,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACvC,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC,EACrB,IAAI,EAAE,CAAC,EACP,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KAC1B,OAAO,CAAA;IACZ;;;;;;;OAOG;IACH,OAAO,EAAE,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACrC,KAAK,CAAC,EAAE,CAAC,EACT,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KAC1B,MAAM,EAAE,GAAG,IAAI,CAAA;CACrB;AAED,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,GAAG,KAAK,OAAO,CAAA;AAElF,MAAM,MAAM,SAAS,GAAG;IACtB;;;;;;;;OAQG;IACH,OAAO,EAAE,iBAAiB,CAAA;IAC1B;;;;;;;OAOG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;OAOG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;OAOG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;OAOG;IACH,IAAI,EAAE,iBAAiB,CAAA;IACvB;;;;;;;OAOG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;OAOG;IACH,IAAI,EAAE,iBAAiB,CAAA;IACvB;;;;;;;OAOG;IACH,MAAM,EAAE,iBAAiB,CAAA;IACzB;;;;;;;OAOG;IACH,OAAO,EAAE,iBAAiB,CAAA;IAC1B;;;;;;;OAOG;IACH,MAAM,EAAE,iBAAiB,CAAA;IACzB;;;;;;;OAOG;IACH,OAAO,EAAE,iBAAiB,CAAA;IAE1B;;;;;;;;OAQG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;;OAQG;IACH,IAAI,EAAE,iBAAiB,CAAA;IACvB;;;;;;;;OAQG;IACH,IAAI,EAAE,iBAAiB,CAAA;IACvB;;;;;;;OAOG;IACH,KAAK,EAAE,iBAAiB,CAAA;IACxB;;;;;;;;;OASG;IACH,MAAM,EAAE,iBAAiB,CAAA;IACzB,cAAc,EAAE,iBAAiB,CAAA;IACjC,cAAc,EAAE,iBAAiB,CAAA;CAClC,CAAA;AAED,oBAAY,cAAc;IACxB,OAAO,YAAY;IACnB,GAAG,QAAQ;IACX,GAAG,QAAQ;IACX,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,MAAM,WAAW;IACjB,OAAO,YAAY;IACnB,MAAM,WAAW;IACjB,OAAO,YAAY;IACnB,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,IAAI,SAAS;IACb,KAAK,UAAU;IACf,MAAM,WAAW;IACjB,cAAc,iBAAiB;IAC/B,cAAc,iBAAiB;CAChC;AAED,MAAM,MAAM,qBAAqB,CAAC,CAAC,IAAI,OAAO,CAAC;KAC5C,GAAG,IAAI,MAAM,CAAC,GAAG,OAAO,CAAC;SACvB,CAAC,IAAI,MAAM,OAAO,cAAc,GAAG,CAAC,CAAC,GAAG,CAAC;KAC3C,CAAC;CACH,CAAC,CAAA;AAEF,MAAM,MAAM,eAAe,CAAC,CAAC,IAAI;IAAE,eAAe,CAAC,EAAE,OAAO,CAAA;CAAE,GAAG,CAAC,CAAA;AAElE,oBAAY,UAAU;IACpB,IAAI,SAAS;IACb,GAAG,QAAQ;CACZ;AAED,MAAM,MAAM,WAAW,CAAC,CAAC,IACrB,eAAe,CAAC,CAAC,CAAC,GAClB;KACG,CAAC,IAAI,MAAM,OAAO,UAAU,GACzB,KAAK,CAAC,qBAAqB,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,GAChD,KAAK,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC;CAC3C,GACD,KAAK,CAAC,OAAO,CAAC,qBAAqB,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC,CAAA"}
+{"version":3,"file":"interface.d.ts","sourceRoot":"","sources":["../../../src/utils/rules-matcher/interface.ts"],"names":[],"mappings":"AAAA,MAAM,MAAM,WAAW,GAAG,CAAC,CAAC,EAAE,GAAG,KAAK,OAAO,CAAA;AAE7C,MAAM,MAAM,iBAAiB,GAAG;IAC9B,EAAE,EAAE,MAAM,SAAS,CAAA;IACnB,KAAK,EAAE,GAAG,CAAA;IACV,GAAG,CAAC,EAAE,GAAG,CAAA;CACV,CAAA;AAED,MAAM,WAAW,iBAAiB;IAChC;;;;;;;OAOG;IACH,QAAQ,EAAE,CAAC,CAAC,EAAE,EAAE,EAAE,CAAC,KAAK,OAAO,CAAA;IAC/B;;;;;;;;;OASG;IACH,IAAI,EAAE,CACJ,KAAK,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EAC1B,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACzB,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KAC1B;QACH,KAAK,EAAE,OAAO,CAAA;QACd,IAAI,EAAE,MAAM,CAAA;KACb,CAAA;IACD;;;;;;;;;OASG;IACH,MAAM,EAAE,CACN,KAAK,EAAE,WAAW,CAAC,GAAG,CAAC,EACvB,IAAI,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACzB,OAAO,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KACzB,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,CAAA;IACxB;;;;;;OAMG;IACH,MAAM,EAAE,WAAW,CAAA;IACnB;;;;;;OAMG;IACH,SAAS,EAAE,WAAW,CAAA;IACtB;;;;;;OAMG;IACH,QAAQ,EAAE,WAAW,CAAA;IACrB;;;;;;OAMG;IACH,UAAU,EAAE,WAAW,CAAA;IACvB;;;;;;OAMG;IACH,QAAQ,EAAE,WAAW,CAAA;IACrB;;;;;;OAMG;IACH,qBAAqB,EAAE,CAAC,KAAK,EAAE,WAAW,GAAG,SAAS,GAAG,MAAM,KAAK,iBAAiB,CAAA;IACrF;;;;;;OAMG;IACH,SAAS,EAAE,CAAC,KAAK,EAAE,GAAG,KAAK,MAAM,GAAG,IAAI,CAAA;IACxC;;;;;;OAMG;IACH,cAAc,EAAE,CAAC,KAAK,EAAE,GAAG,KAAK,iBAAiB,CAAA;IACjD;;;;;;;OAOG;IACH,OAAO,EAAE,CAAC,KAAK,EAAE,GAAG,KAAK,OAAO,CAAA;IAChC;;;;;;OAMG;IACH,UAAU,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,KAAK,KAAK,CAAC,CAAC,CAAC,CAAA;IACrC;;;;;;;;OAQG;IACH,OAAO,EAAE,CAAC,IAAI,EAAE,MAAM,EAAE,MAAM,CAAC,EAAE,MAAM,KAAK,MAAM,CAAA;IAClD;;;;;;;OAOG;IACH,WAAW,EAAE,CAAC,CAAC,EAAE,KAAK,EAAE,CAAC,KAAK,MAAM,CAAA;IACpC;;;;;;;;OAQG;IACH,SAAS,EAAE,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACvC,KAAK,EAAE,WAAW,CAAC,CAAC,CAAC,EACrB,IAAI,EAAE,CAAC,EACP,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KAC1B,OAAO,CAAA;IACZ;;;;;;;OAOG;IACH,OAAO,EAAE,CAAC,CAAC,SAAS,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,EACrC,KAAK,CAAC,EAAE,CAAC,EACT,OAAO,CAAC,EAAE,MAAM,CAAC,MAAM,EAAE,GAAG,CAAC,KAC1B,MAAM,EAAE,GAAG,IAAI,CAAA;CACrB;AAED,MAAM,MAAM,iBAAiB,GAAG,CAAC,CAAC,EAAE,GAAG,EAAE,CAAC,EAAE,GAAG,EAAE,GAAG,CAAC,EAAE,GAAG,EAAE,IAAI,CAAC,EAAE,GAAG,KAAK,OAAO,CAAA;AAElF,MAAM,MAAM,SAAS,GAAG;IACtB;;;;;;;;OAQG;IACH,OAAO,EAAE,iBAAiB,CAAA;IAC1B;;;;;;;OAOG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;OAOG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;OAOG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;OAOG;IACH,IAAI,EAAE,iBAAiB,CAAA;IACvB;;;;;;;OAOG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;OAOG;IACH,IAAI,EAAE,iBAAiB,CAAA;IACvB;;;;;;;OAOG;IACH,MAAM,EAAE,iBAAiB,CAAA;IACzB;;;;;;;OAOG;IACH,OAAO,EAAE,iBAAiB,CAAA;IAC1B;;;;;;;OAOG;IACH,MAAM,EAAE,iBAAiB,CAAA;IACzB;;;;;;;OAOG;IACH,OAAO,EAAE,iBAAiB,CAAA;IAE1B;;;;;;;;OAQG;IACH,GAAG,EAAE,iBAAiB,CAAA;IACtB;;;;;;;;OAQG;IACH,IAAI,EAAE,iBAAiB,CAAA;IACvB;;;;;;;;OAQG;IACH,IAAI,EAAE,iBAAiB,CAAA;IACvB;;;;;;;OAOG;IACH,KAAK,EAAE,iBAAiB,CAAA;IACxB;;;;;;;;;OASG;IACH,MAAM,EAAE,iBAAiB,CAAA;IACzB,SAAS,EAAE,iBAAiB,CAAA;IAC5B,cAAc,EAAE,iBAAiB,CAAA;IACjC,cAAc,EAAE,iBAAiB,CAAA;CAClC,CAAA;AAED,oBAAY,cAAc;IACxB,OAAO,YAAY;IACnB,GAAG,QAAQ;IACX,GAAG,QAAQ;IACX,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,MAAM,WAAW;IACjB,OAAO,YAAY;IACnB,MAAM,WAAW;IACjB,OAAO,YAAY;IACnB,GAAG,QAAQ;IACX,IAAI,SAAS;IACb,IAAI,SAAS;IACb,KAAK,UAAU;IACf,MAAM,WAAW;IACjB,SAAS,YAAY;IACrB,cAAc,iBAAiB;IAC/B,cAAc,iBAAiB;CAChC;AAED,MAAM,MAAM,qBAAqB,CAAC,CAAC,IAAI,OAAO,CAAC;KAC5C,GAAG,IAAI,MAAM,CAAC,GAAG,OAAO,CAAC;SACvB,CAAC,IAAI,MAAM,OAAO,cAAc,GAAG,CAAC,CAAC,GAAG,CAAC;KAC3C,CAAC;CACH,CAAC,CAAA;AAEF,MAAM,MAAM,eAAe,CAAC,CAAC,IAAI;IAAE,eAAe,CAAC,EAAE,OAAO,CAAA;CAAE,GAAG,CAAC,CAAA;AAElE,oBAAY,UAAU;IACpB,IAAI,SAAS;IACb,GAAG,QAAQ;CACZ;AAED,MAAM,MAAM,WAAW,CAAC,CAAC,IACrB,eAAe,CAAC,CAAC,CAAC,GAClB;KACG,CAAC,IAAI,MAAM,OAAO,UAAU,GACzB,KAAK,CAAC,qBAAqB,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC,GAChD,KAAK,CAAC,WAAW,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,CAAC;CAC3C,GACD,KAAK,CAAC,OAAO,CAAC,qBAAqB,CAAC,eAAe,CAAC,CAAC,CAAC,CAAC,EAAE,SAAS,CAAC,CAAC,CAAA"}

package/dist/utils/rules-matcher/interface.js

@@ -19,6 +19,7 @@ var RulesOperators;
     RulesOperators["$all"] = "$all";
     RulesOperators["$size"] = "$size";
     RulesOperators["$regex"] = "$regex";
+    RulesOperators["%exists"] = "%exists";
     RulesOperators["%stringToOid"] = "%stringToOid";
     RulesOperators["%oidToString"] = "%oidToString";
 })(RulesOperators || (exports.RulesOperators = RulesOperators = {}));

package/dist/utils/rules-matcher/utils.d.ts.map

@@ -1 +1 @@
-{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/utils/rules-matcher/utils.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,SAAS,EAAE,iBAAiB,EAAe,MAAM,aAAa,CAAA;AAsDvE;;GAEG;AACH,QAAA,MAAM,iBAAiB,EAAE,iBAsNxB,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,SAAS,EAAE,SAoDvB,CAAA;AAID,eAAe,iBAAiB,CAAA"}
+{"version":3,"file":"utils.d.ts","sourceRoot":"","sources":["../../../src/utils/rules-matcher/utils.ts"],"names":[],"mappings":"AAGA,OAAO,EAAE,SAAS,EAAE,iBAAiB,EAAe,MAAM,aAAa,CAAA;AAmEvE;;GAEG;AACH,QAAA,MAAM,iBAAiB,EAAE,iBAoNxB,CAAA;AAED;;GAEG;AACH,eAAO,MAAM,SAAS,EAAE,SAyDvB,CAAA;AAID,eAAe,iBAAiB,CAAA"}

package/dist/utils/rules-matcher/utils.js

@@ -23,7 +23,8 @@ const toObjectIdHex = (value) => {
         return null;
     }
     const maybeObjectId = value;
-    if (maybeObjectId._bsontype === 'ObjectId' && typeof maybeObjectId.toHexString === 'function') {
+    if (maybeObjectId._bsontype === 'ObjectId' &&
+        typeof maybeObjectId.toHexString === 'function') {
         const hex = maybeObjectId.toHexString();
         return HEX_24_REGEXP.test(hex) ? hex.toLowerCase() : null;
     }
@@ -41,7 +42,16 @@ const includesWithSemanticEquality = (value, candidate) => rulesMatcherUtils
     .forceArray(candidate)
     .some((item) => rulesMatcherUtils
     .forceArray(value)
-    .some((sourceItem) => rulesMatcherUtils.forceArray(item).some((candidateItem) => areSemanticallyEqual(sourceItem, candidateItem))));
+    .some((sourceItem) => rulesMatcherUtils
+    .forceArray(item)
+    .some((candidateItem) => areSemanticallyEqual(sourceItem, candidateItem))));
+const resolveRefPath = (data, refPath, prefix) => {
+    const exactMatch = (0, get_1.default)(data, refPath, undefined);
+    if (exactMatch !== undefined) {
+        return exactMatch;
+    }
+    return (0, get_1.default)(data, rulesMatcherUtils.getPath(refPath, prefix), undefined);
+};
 /**
  * Defines a utility object named rulesMatcherUtils, which contains various helper functions used for processing rules and data in a rule-matching context.
  */
@@ -60,7 +70,7 @@ const rulesMatcherUtils = {
         const { name } = (0, get_1.default)(valueBlock, [path], {}) || {};
         const { op, value, opt } = rulesMatcherUtils.getDefaultRule(valueBlock[path]);
         const valueRef = value && String(value).indexOf('$ref:') === 0
-            ? (0, get_1.default)(data, rulesMatcherUtils.getPath(value.replace('$ref:', ''), prefix), undefined)
+            ? resolveRefPath(data, value.replace('$ref:', ''), prefix)
             : value;
         if (!exports.operators[op]) {
             throw new Error(`Error missing operator:${op}`);
@@ -82,7 +92,9 @@ const rulesMatcherUtils = {
         const res = rulesMatcherUtils.getPath(path, prefix);
         const { value } = rulesMatcherUtils.getDefaultRule(valueBlock[path]);
         if (value && String(value).indexOf('$ref:') === 0) {
-            keys[rulesMatcherUtils.getPath(value.replace('$ref:', ''), prefix)] = true;
+            const refPath = value.replace('$ref:', '');
+            keys[refPath] = true;
+            keys[rulesMatcherUtils.getPath(refPath, prefix)] = true;
         }
         return (keys[res] = true);
     },
@@ -221,6 +233,7 @@ const rulesMatcherUtils = {
  */
 exports.operators = {
     $exists: (a, b) => !rulesMatcherUtils.isEmpty(a) === b,
+    '%exists': (a, b) => !rulesMatcherUtils.isEmpty(a) === b,
     $eq: (a, b) => areSemanticallyEqual(a, b),
     $ne: (a, b) => !areSemanticallyEqual(a, b),
     $gt: (a, b) => rulesMatcherUtils.forceNumber(a) > parseFloat(b),
@@ -233,9 +246,13 @@ exports.operators = {
     $strLte: (a, b) => String(a || '').length <= parseFloat(b),
     $in: (a, b) => includesWithSemanticEquality(a, b),
     $nin: (a, b) => !includesWithSemanticEquality(a, b),
-    $all: (a, b) => rulesMatcherUtils.forceArray(b).every((candidate) => rulesMatcherUtils
+    $all: (a, b) => rulesMatcherUtils
+        .forceArray(b)
+        .every((candidate) => rulesMatcherUtils
         .forceArray(a)
-        .some((value) => rulesMatcherUtils.forceArray(candidate).some((item) => areSemanticallyEqual(value, item)))),
+        .some((value) => rulesMatcherUtils
+        .forceArray(candidate)
+        .some((item) => areSemanticallyEqual(value, item)))),
     $size: (a, b) => Array.isArray(a) && a.length === parseFloat(b),
     $regex: (a, b, opt) => rulesMatcherUtils
         .forceArray(b)

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@flowerforce/flowerbase",
-  "version": "1.7.6-beta.0",
+  "version": "1.7.6-beta.10",
   "description": "",
   "main": "dist/index.js",
   "types": "dist/index.d.ts",
@@ -14,7 +14,8 @@
   "scripts": {
     "test": "npx jest",
     "build": "rm -rf dist/ && tsc",
-    "start": "node dist/src/index.ts"
+    "start": "node dist/src/index.ts",
+    "tsc:noemit": "tsc --noEmit"
   },
   "keywords": [],
   "author": "",
@@ -30,6 +31,7 @@
     "@fastify/swagger-ui": "^5.2.3",
     "@fastify/websocket": "^11.2.0",
     "bson": "^6.8.0",
+    "codemirror": "^5.65.16",
     "dotenv": "^16.4.7",
     "fastify": "^5.0.0",
     "fastify-plugin": "^5.0.1",

package/src/auth/providers/anon-user/controller.ts

@@ -50,6 +50,7 @@ export async function anonUserController(app: FastifyInstance) {
         email: anonEmail,
         status: 'confirmed',
         createdAt: now,
+        lastLoginAt: now,
         custom_data: {},
         identities: [
           {

package/src/auth/providers/custom-function/controller.ts

@@ -32,10 +32,7 @@ export async function customFunctionController(app: FastifyInstance) {
   app.post<LoginDto>(
     AUTH_ENDPOINTS.LOGIN,
     {
-      schema: LOGIN_SCHEMA,
-      errorHandler: (_error, _request, reply) => {
-        reply.code(500).send({ message: 'Internal Server Error' })
-      }
+      schema: LOGIN_SCHEMA
     },
     async function (req, reply) {
       const customFunctionProvider = AUTH_CONFIG.authProviders?.['custom-function']
@@ -82,6 +79,7 @@ export async function customFunctionController(app: FastifyInstance) {
         }
       }) as CustomFunctionAuthResult
 
+
       if (!authResult.id) {
         reply.code(401).send({ message: 'Unauthorized' })
         return
@@ -130,25 +128,26 @@ export async function customFunctionController(app: FastifyInstance) {
           ...(user || {})
         }
       }
-
+      const now = new Date()
       const refreshToken = this.createRefreshToken(currentUserData)
       const refreshTokenHash = hashToken(refreshToken)
       await authDb.collection(refreshTokensCollection).insertOne({
         userId: authUser._id,
         tokenHash: refreshTokenHash,
-        createdAt: new Date(),
+        createdAt: now,
         expiresAt: new Date(Date.now() + refreshTokenTtlMs),
         revokedAt: null
       })
-      const accessToken = this.createAccessToken(currentUserData)
-
-      const responsePayload = {
-        access_token: accessToken,
+      await authDb.collection(authCollection!).updateOne(
+        { _id: authUser._id },
+        { $set: { lastLoginAt: now } }
+      )
+      return {
+        access_token: this.createAccessToken(currentUserData),
         refresh_token: refreshToken,
         device_id: '',
         user_id: authUser._id.toString()
       }
-      reply.code(200).send(responsePayload)
     }
   )