@fraym/auth 0.4.0 → 0.5.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
Files changed (14) hide show
  1. package/README.md +13 -0
  2. package/dist/cmd/auth.js +17 -3
  3. package/dist/config/config.d.ts +2 -0
  4. package/dist/config/config.js +7 -1
  5. package/dist/index.d.ts +0 -1
  6. package/dist/index.js +0 -1
  7. package/dist/management/client.js +7 -7
  8. package/dist/management/createScope.d.ts +2 -2
  9. package/dist/management/createScope.js +10 -11
  10. package/dist/management/deleteScope.d.ts +2 -2
  11. package/dist/management/deleteScope.js +10 -11
  12. package/dist/management/getScopes.d.ts +2 -2
  13. package/dist/management/getScopes.js +11 -10
  14. package/package.json +1 -1
package/README.md CHANGED
@@ -21,6 +21,11 @@ Use the `auth` cli command to automatically apply your permissions to the auth s
21
21
 
22
22
  You can specify the address (and port) of the auth service instance you use in the `AUTH_SERVER_ADDRESS` env variable (default: `127.0.0.1:9000`).
23
23
 
24
+ In case of scopes api you need to configure the HTTP api:
25
+
26
+ - `AUTH_HTTP_SERVER_ADDRESS`: Http api url of the auth service (default: `http://127.0.0.1`)
27
+ - `AUTH_HTTP_API_TOKEN`: The value of that token has to match the token configured in the auth service
28
+
24
29
  The needed schema for auth is a simple enum containing all your permissions. Example:
25
30
 
26
31
  ```graphql
@@ -36,6 +41,8 @@ Use a `.env` file or env variables to configure cte clients and the command:
36
41
 
37
42
  ```env
38
43
  AUTH_SERVER_ADDRESS=127.0.0.1:9000
44
+ AUTH_HTTP_SERVER_ADDRESS=http://127.0.0.1
45
+ AUTH_HTTP_API_TOKEN=
39
46
  ```
40
47
 
41
48
  ## JWT functions
@@ -100,6 +107,8 @@ The `clientId` paramenter is optional. If none is given the default client will
100
107
  const scopes = await managementClient.getScopes();
101
108
  ```
102
109
 
110
+ Note: you need to configure `AUTH_HTTP_SERVER_ADDRESS` and `AUTH_HTTP_API_TOKEN` to use this function.
111
+
103
112
  ## Create a scope (permission)
104
113
 
105
114
  The `clientId` paramenter is optional. If none is given the default client will be used.
@@ -108,6 +117,8 @@ The `clientId` paramenter is optional. If none is given the default client will
108
117
  await managementClient.createScope("PERMISSION_NAME");
109
118
  ```
110
119
 
120
+ Note: you need to configure `AUTH_HTTP_SERVER_ADDRESS` and `AUTH_HTTP_API_TOKEN` to use this function.
121
+
111
122
  ## Delete a scope (permission)
112
123
 
113
124
  The `clientId` paramenter is optional. If none is given the default client will be used.
@@ -116,6 +127,8 @@ The `clientId` paramenter is optional. If none is given the default client will
116
127
  await managementClient.deleteScope("PERMISSION_NAME");
117
128
  ```
118
129
 
130
+ Note: you need to configure `AUTH_HTTP_SERVER_ADDRESS` and `AUTH_HTTP_API_TOKEN` to use this function.
131
+
119
132
  ## Get all roles
120
133
 
121
134
  ```typescript
package/dist/cmd/auth.js CHANGED
@@ -17,21 +17,31 @@ const run = async () => {
17
17
  .config({
18
18
  schemaGlob: "./src/**/*.graphql",
19
19
  serverAddress: "127.0.0.1:9000",
20
+ httpServerAddress: "http://127.0.0.1",
21
+ httpApiToken: "",
20
22
  })
21
23
  .pkgConf("auth").argv;
22
24
  let schemaGlob = argv.schemaGlob;
23
25
  let serverAddress = argv.serverAddress;
26
+ let httpServerAddress = argv.httpServerAddress;
27
+ let httpApiToken = argv.httpApiToken;
24
28
  if (process.env.AUTH_SCHEMA_GLOB) {
25
29
  schemaGlob = process.env.AUTH_SCHEMA_GLOB;
26
30
  }
27
31
  if (process.env.AUTH_SERVER_ADDRESS) {
28
32
  serverAddress = process.env.AUTH_SERVER_ADDRESS;
29
33
  }
34
+ if (process.env.AUTH_HTTP_SERVER_ADDRESS) {
35
+ httpServerAddress = process.env.AUTH_HTTP_SERVER_ADDRESS;
36
+ }
37
+ if (process.env.AUTH_HTTP_API_TOKEN) {
38
+ httpApiToken = process.env.AUTH_HTTP_API_TOKEN;
39
+ }
30
40
  const schema = await (0, load_1.loadSchema)(`${schemaGlob}`, {
31
41
  loaders: [new graphql_file_loader_1.GraphQLFileLoader()],
32
42
  });
33
43
  const permissions = getSchemaPermissions(schema);
34
- await migratePermissions(permissions, serverAddress);
44
+ await migratePermissions(permissions, serverAddress, httpServerAddress, httpApiToken);
35
45
  };
36
46
  const getSchemaPermissions = (schema) => {
37
47
  const permissions = [];
@@ -50,8 +60,12 @@ const getSchemaPermissions = (schema) => {
50
60
  });
51
61
  return permissions;
52
62
  };
53
- const migratePermissions = async (permissions, serverAddress) => {
54
- const managementClient = await (0, client_1.newManagementClient)({ serverAddress });
63
+ const migratePermissions = async (permissions, serverAddress, httpServerAddress, httpApiToken) => {
64
+ const managementClient = await (0, client_1.newManagementClient)({
65
+ serverAddress,
66
+ httpServerAddress,
67
+ httpApiToken,
68
+ });
55
69
  const existingPermissions = (await managementClient.getScopes()).filter(permission => !permission.startsWith("FRAYM_"));
56
70
  console.log("existingPermissions", existingPermissions);
57
71
  const permissionsToCreate = permissions.filter(permission => !existingPermissions.includes(permission));
package/dist/config/config.d.ts CHANGED
@@ -1,5 +1,7 @@
1
1
  export interface ClientConfig {
2
2
  serverAddress: string;
3
+ httpServerAddress: string;
4
+ httpApiToken: string;
3
5
  keepaliveInterval?: number;
4
6
  keepaliveTimeout?: number;
5
7
  }
package/dist/config/config.js CHANGED
@@ -3,9 +3,11 @@ Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.useConfigDefaults = exports.getEnvConfig = void 0;
4
4
  const dotenv_1 = require("dotenv");
5
5
  const getEnvConfig = () => {
6
- var _a;
6
+ var _a, _b, _c;
7
7
  (0, dotenv_1.config)();
8
8
  const serverAddress = (_a = process.env.AUTH_SERVER_ADDRESS) !== null && _a !== void 0 ? _a : "";
9
+ const httpServerAddress = (_b = process.env.AUTH_HTTP_SERVER_ADDRESS) !== null && _b !== void 0 ? _b : "";
10
+ const httpApiToken = (_c = process.env.AUTH_HTTP_API_TOKEN) !== null && _c !== void 0 ? _c : "";
9
11
  let keepaliveInterval;
10
12
  let keepaliveTimeout;
11
13
  const keepaliveIntervalString = process.env.AUTH_CONNECTION_KEEPALIVE_INTERVAL;
@@ -18,6 +20,8 @@ const getEnvConfig = () => {
18
20
  }
19
21
  return {
20
22
  serverAddress,
23
+ httpServerAddress,
24
+ httpApiToken,
21
25
  keepaliveInterval,
22
26
  keepaliveTimeout,
23
27
  };
@@ -30,6 +34,8 @@ const useConfigDefaults = (config) => {
30
34
  }
31
35
  return {
32
36
  serverAddress: config.serverAddress,
37
+ httpServerAddress: config.httpServerAddress,
38
+ httpApiToken: config.httpApiToken,
33
39
  keepaliveTimeout: (_a = config.keepaliveTimeout) !== null && _a !== void 0 ? _a : 3 * 1000,
34
40
  keepaliveInterval: (_b = config.keepaliveInterval) !== null && _b !== void 0 ? _b : 40 * 1000,
35
41
  };
package/dist/index.d.ts CHANGED
@@ -1,3 +1,2 @@
1
1
  export * from "./management/client";
2
2
  export { ClientConfig } from "./config/config";
3
- export * from "./util/token";
package/dist/index.js CHANGED
@@ -15,4 +15,3 @@ var __exportStar = (this && this.__exportStar) || function(m, exports) {
15
15
  };
16
16
  Object.defineProperty(exports, "__esModule", { value: true });
17
17
  __exportStar(require("./management/client"), exports);
18
- __exportStar(require("./util/token"), exports);
package/dist/management/client.js CHANGED
@@ -15,20 +15,20 @@ const getUsers_1 = require("./getUsers");
15
15
  const updateUser_1 = require("./updateUser");
16
16
  const upsertRole_1 = require("./upsertRole");
17
17
  const newManagementClient = async (config) => {
18
- config = (0, config_1.useConfigDefaults)(config);
19
- const serviceClient = new auth_proto_1.ManagementServiceClient(config.serverAddress, grpc_js_1.credentials.createInsecure(), {
20
- "grpc.keepalive_time_ms": config.keepaliveInterval,
21
- "grpc.keepalive_timeout_ms": config.keepaliveTimeout,
18
+ const currentConfig = (0, config_1.useConfigDefaults)(config);
19
+ const serviceClient = new auth_proto_1.ManagementServiceClient(currentConfig.serverAddress, grpc_js_1.credentials.createInsecure(), {
20
+ "grpc.keepalive_time_ms": currentConfig.keepaliveInterval,
21
+ "grpc.keepalive_timeout_ms": currentConfig.keepaliveTimeout,
22
22
  "grpc.keepalive_permit_without_calls": 1,
23
23
  });
24
24
  const createScope = async (name, clientId = "") => {
25
- await (0, createScope_1.createNewScope)(name, clientId, serviceClient);
25
+ await (0, createScope_1.createNewScope)(name, clientId, currentConfig);
26
26
  };
27
27
  const deleteScope = async (name, clientId = "") => {
28
- await (0, deleteScope_1.deleteExistingScope)(name, clientId, serviceClient);
28
+ await (0, deleteScope_1.deleteExistingScope)(name, clientId, currentConfig);
29
29
  };
30
30
  const getScopes = async (clientId = "") => {
31
- return await (0, getScopes_1.getAllScopes)(clientId, serviceClient);
31
+ return await (0, getScopes_1.getAllScopes)(clientId, currentConfig);
32
32
  };
33
33
  const upsertRole = async (tenantId, allowedScopes, id = "") => {
34
34
  return await (0, upsertRole_1.createOrUpdateRole)(tenantId, id, allowedScopes, serviceClient);
package/dist/management/createScope.d.ts CHANGED
@@ -1,2 +1,2 @@
1
- import { ManagementServiceClient } from "@fraym/auth-proto";
2
- export declare const createNewScope: (name: string, clientId: string, serviceClient: ManagementServiceClient) => Promise<void>;
1
+ import { ClientConfig } from "config/config";
2
+ export declare const createNewScope: (name: string, clientId: string, config: ClientConfig) => Promise<void>;
package/dist/management/createScope.js CHANGED
@@ -1,18 +1,17 @@
1
1
  "use strict";
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.createNewScope = void 0;
4
- const createNewScope = async (name, clientId, serviceClient) => {
5
- return new Promise((resolve, reject) => {
6
- serviceClient.createScope({
7
- name,
4
+ const createNewScope = async (name, clientId, config) => {
5
+ await fetch(`${config.httpServerAddress}/management/scopes`, {
6
+ method: "POST",
7
+ headers: {
8
+ Authorization: `Bearer ${config.httpApiToken}`,
9
+ "Content-Type": "application/json",
10
+ },
11
+ body: JSON.stringify({
8
12
  clientId,
9
- }, error => {
10
- if (error) {
11
- reject(error.message);
12
- return;
13
- }
14
- resolve();
15
- });
13
+ name,
14
+ }),
16
15
  });
17
16
  };
18
17
  exports.createNewScope = createNewScope;
package/dist/management/deleteScope.d.ts CHANGED
@@ -1,2 +1,2 @@
1
- import { ManagementServiceClient } from "@fraym/auth-proto";
2
- export declare const deleteExistingScope: (name: string, clientId: string, serviceClient: ManagementServiceClient) => Promise<void>;
1
+ import { ClientConfig } from "config/config";
2
+ export declare const deleteExistingScope: (name: string, clientId: string, config: ClientConfig) => Promise<void>;
package/dist/management/deleteScope.js CHANGED
@@ -1,18 +1,17 @@
1
1
  "use strict";
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.deleteExistingScope = void 0;
4
- const deleteExistingScope = async (name, clientId, serviceClient) => {
5
- return new Promise((resolve, reject) => {
6
- serviceClient.deleteScope({
7
- name,
4
+ const deleteExistingScope = async (name, clientId, config) => {
5
+ await fetch(`${config.httpServerAddress}/management/scopes`, {
6
+ method: "DELETE",
7
+ headers: {
8
+ Authorization: `Bearer ${config.httpApiToken}`,
9
+ "Content-Type": "application/json",
10
+ },
11
+ body: JSON.stringify({
8
12
  clientId,
9
- }, error => {
10
- if (error) {
11
- reject(error.message);
12
- return;
13
- }
14
- resolve();
15
- });
13
+ name,
14
+ }),
16
15
  });
17
16
  };
18
17
  exports.deleteExistingScope = deleteExistingScope;
package/dist/management/getScopes.d.ts CHANGED
@@ -1,2 +1,2 @@
1
- import { ManagementServiceClient } from "@fraym/auth-proto";
2
- export declare const getAllScopes: (clientId: string, serviceClient: ManagementServiceClient) => Promise<string[]>;
1
+ import { ClientConfig } from "config/config";
2
+ export declare const getAllScopes: (clientId: string, config: ClientConfig) => Promise<string[]>;
package/dist/management/getScopes.js CHANGED
@@ -1,17 +1,18 @@
1
1
  "use strict";
2
2
  Object.defineProperty(exports, "__esModule", { value: true });
3
3
  exports.getAllScopes = void 0;
4
- const getAllScopes = async (clientId, serviceClient) => {
5
- return new Promise((resolve, reject) => {
6
- serviceClient.getScopes({
4
+ const getAllScopes = async (clientId, config) => {
5
+ const response = await fetch(`${config.httpServerAddress}/management/scopes/list`, {
6
+ method: "POST",
7
+ headers: {
8
+ Authorization: `Bearer ${config.httpApiToken}`,
9
+ "Content-Type": "application/json",
10
+ },
11
+ body: JSON.stringify({
7
12
  clientId,
8
- }, (error, response) => {
9
- if (error) {
10
- reject(error.message);
11
- return;
12
- }
13
- resolve(response.scopes);
14
- });
13
+ }),
15
14
  });
15
+ const data = await response.json();
16
+ return data.scopes;
16
17
  };
17
18
  exports.getAllScopes = getAllScopes;
package/package.json CHANGED
@@ -1,6 +1,6 @@
1
1
  {
2
2
  "name": "@fraym/auth",
3
- "version": "0.4.0",
3
+ "version": "0.5.0",
4
4
  "license": "UNLICENSED",
5
5
  "homepage": "https://github.com/fraym/auth-nodejs",
6
6
  "repository": {