npm - @friggframework/core - Versions diffs - 2.0.0-next.45 → 2.0.0-next.46 - Mend

@friggframework/core 2.0.0-next.45 → 2.0.0-next.46

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (163) hide show

package/README.md +28 -0
package/application/commands/integration-commands.js +19 -0
package/core/Worker.js +8 -21
package/credential/repositories/credential-repository-mongo.js +14 -8
package/credential/repositories/credential-repository-postgres.js +14 -8
package/credential/repositories/credential-repository.js +3 -8
package/database/MONGODB_TRANSACTION_FIX.md +198 -0
package/database/adapters/lambda-invoker.js +97 -0
package/database/config.js +11 -2
package/database/models/WebsocketConnection.js +11 -10
package/database/prisma.js +63 -3
package/database/repositories/health-check-repository-mongodb.js +3 -0
package/database/repositories/migration-status-repository-s3.js +137 -0
package/database/use-cases/check-database-state-use-case.js +81 -0
package/database/use-cases/check-encryption-health-use-case.js +3 -2
package/database/use-cases/get-database-state-via-worker-use-case.js +61 -0
package/database/use-cases/get-migration-status-use-case.js +93 -0
package/database/use-cases/run-database-migration-use-case.js +137 -0
package/database/use-cases/trigger-database-migration-use-case.js +157 -0
package/database/utils/mongodb-collection-utils.js +91 -0
package/database/utils/mongodb-schema-init.js +106 -0
package/database/utils/prisma-runner.js +400 -0
package/database/utils/prisma-schema-parser.js +182 -0
package/encrypt/Cryptor.js +14 -16
package/generated/prisma-mongodb/client.d.ts +1 -0
package/generated/prisma-mongodb/client.js +4 -0
package/generated/prisma-mongodb/default.d.ts +1 -0
package/generated/prisma-mongodb/default.js +4 -0
package/generated/prisma-mongodb/edge.d.ts +1 -0
package/generated/prisma-mongodb/edge.js +334 -0
package/generated/prisma-mongodb/index-browser.js +316 -0
package/generated/prisma-mongodb/index.d.ts +22897 -0
package/generated/prisma-mongodb/index.js +359 -0
package/generated/prisma-mongodb/package.json +183 -0
package/generated/prisma-mongodb/query-engine-debian-openssl-3.0.x +0 -0
package/generated/prisma-mongodb/query-engine-rhel-openssl-3.0.x +0 -0
package/generated/prisma-mongodb/runtime/binary.d.ts +1 -0
package/generated/prisma-mongodb/runtime/binary.js +289 -0
package/generated/prisma-mongodb/runtime/edge-esm.js +34 -0
package/generated/prisma-mongodb/runtime/edge.js +34 -0
package/generated/prisma-mongodb/runtime/index-browser.d.ts +370 -0
package/generated/prisma-mongodb/runtime/index-browser.js +16 -0
package/generated/prisma-mongodb/runtime/library.d.ts +3977 -0
package/generated/prisma-mongodb/runtime/react-native.js +83 -0
package/generated/prisma-mongodb/runtime/wasm-compiler-edge.js +84 -0
package/generated/prisma-mongodb/runtime/wasm-engine-edge.js +36 -0
package/generated/prisma-mongodb/schema.prisma +362 -0
package/generated/prisma-mongodb/wasm-edge-light-loader.mjs +4 -0
package/generated/prisma-mongodb/wasm-worker-loader.mjs +4 -0
package/generated/prisma-mongodb/wasm.d.ts +1 -0
package/generated/prisma-mongodb/wasm.js +341 -0
package/generated/prisma-postgresql/client.d.ts +1 -0
package/generated/prisma-postgresql/client.js +4 -0
package/generated/prisma-postgresql/default.d.ts +1 -0
package/generated/prisma-postgresql/default.js +4 -0
package/generated/prisma-postgresql/edge.d.ts +1 -0
package/generated/prisma-postgresql/edge.js +356 -0
package/generated/prisma-postgresql/index-browser.js +338 -0
package/generated/prisma-postgresql/index.d.ts +25071 -0
package/generated/prisma-postgresql/index.js +381 -0
package/generated/prisma-postgresql/package.json +183 -0
package/generated/prisma-postgresql/query-engine-debian-openssl-3.0.x +0 -0
package/generated/prisma-postgresql/query-engine-rhel-openssl-3.0.x +0 -0
package/generated/prisma-postgresql/query_engine_bg.js +2 -0
package/generated/prisma-postgresql/query_engine_bg.wasm +0 -0
package/generated/prisma-postgresql/runtime/binary.d.ts +1 -0
package/generated/prisma-postgresql/runtime/binary.js +289 -0
package/generated/prisma-postgresql/runtime/edge-esm.js +34 -0
package/generated/prisma-postgresql/runtime/edge.js +34 -0
package/generated/prisma-postgresql/runtime/index-browser.d.ts +370 -0
package/generated/prisma-postgresql/runtime/index-browser.js +16 -0
package/generated/prisma-postgresql/runtime/library.d.ts +3977 -0
package/generated/prisma-postgresql/runtime/react-native.js +83 -0
package/generated/prisma-postgresql/runtime/wasm-compiler-edge.js +84 -0
package/generated/prisma-postgresql/runtime/wasm-engine-edge.js +36 -0
package/generated/prisma-postgresql/schema.prisma +345 -0
package/generated/prisma-postgresql/wasm-edge-light-loader.mjs +4 -0
package/generated/prisma-postgresql/wasm-worker-loader.mjs +4 -0
package/generated/prisma-postgresql/wasm.d.ts +1 -0
package/generated/prisma-postgresql/wasm.js +363 -0
package/handlers/database-migration-handler.js +227 -0
package/handlers/routers/auth.js +1 -1
package/handlers/routers/db-migration.handler.js +29 -0
package/handlers/routers/db-migration.js +256 -0
package/handlers/routers/health.js +41 -6
package/handlers/routers/integration-webhook-routers.js +2 -2
package/handlers/use-cases/check-integrations-health-use-case.js +22 -10
package/handlers/workers/db-migration.js +352 -0
package/index.js +12 -0
package/integrations/integration-router.js +60 -70
package/integrations/repositories/integration-repository-interface.js +12 -0
package/integrations/repositories/integration-repository-mongo.js +32 -0
package/integrations/repositories/integration-repository-postgres.js +33 -0
package/integrations/repositories/process-repository-postgres.js +2 -2
package/integrations/tests/doubles/test-integration-repository.js +2 -2
package/logs/logger.js +0 -4
package/modules/entity.js +0 -1
package/modules/repositories/module-repository-mongo.js +3 -12
package/modules/repositories/module-repository-postgres.js +0 -11
package/modules/repositories/module-repository.js +1 -12
package/modules/use-cases/get-entity-options-by-id.js +1 -1
package/modules/use-cases/get-module.js +1 -2
package/modules/use-cases/refresh-entity-options.js +1 -1
package/modules/use-cases/test-module-auth.js +1 -1
package/package.json +82 -66
package/prisma-mongodb/schema.prisma +21 -21
package/prisma-postgresql/schema.prisma +15 -15
package/queues/queuer-util.js +24 -21
package/types/core/index.d.ts +2 -2
package/types/module-plugin/index.d.ts +0 -2
package/user/use-cases/authenticate-user.js +127 -0
package/user/use-cases/authenticate-with-shared-secret.js +48 -0
package/user/use-cases/get-user-from-adopter-jwt.js +149 -0
package/user/use-cases/get-user-from-x-frigg-headers.js +106 -0
package/user/user.js +16 -0
package/websocket/repositories/websocket-connection-repository-mongo.js +11 -10
package/websocket/repositories/websocket-connection-repository-postgres.js +11 -10
package/websocket/repositories/websocket-connection-repository.js +11 -10
package/application/commands/integration-commands.test.js +0 -123
package/database/encryption/encryption-integration.test.js +0 -553
package/database/encryption/encryption-schema-registry.test.js +0 -392
package/database/encryption/field-encryption-service.test.js +0 -525
package/database/encryption/mongo-decryption-fix-verification.test.js +0 -348
package/database/encryption/postgres-decryption-fix-verification.test.js +0 -371
package/database/encryption/postgres-relation-decryption.test.js +0 -245
package/database/encryption/prisma-encryption-extension.test.js +0 -439
package/errors/base-error.test.js +0 -32
package/errors/fetch-error.test.js +0 -79
package/errors/halt-error.test.js +0 -11
package/errors/validation-errors.test.js +0 -120
package/handlers/auth-flow.integration.test.js +0 -147
package/handlers/integration-event-dispatcher.test.js +0 -209
package/handlers/routers/health.test.js +0 -210
package/handlers/routers/integration-webhook-routers.test.js +0 -126
package/handlers/webhook-flow.integration.test.js +0 -356
package/handlers/workers/integration-defined-workers.test.js +0 -184
package/integrations/tests/use-cases/create-integration.test.js +0 -131
package/integrations/tests/use-cases/delete-integration-for-user.test.js +0 -150
package/integrations/tests/use-cases/find-integration-context-by-external-entity-id.test.js +0 -92
package/integrations/tests/use-cases/get-integration-for-user.test.js +0 -150
package/integrations/tests/use-cases/get-integration-instance.test.js +0 -176
package/integrations/tests/use-cases/get-integrations-for-user.test.js +0 -176
package/integrations/tests/use-cases/get-possible-integrations.test.js +0 -188
package/integrations/tests/use-cases/update-integration-messages.test.js +0 -142
package/integrations/tests/use-cases/update-integration-status.test.js +0 -103
package/integrations/tests/use-cases/update-integration.test.js +0 -141
package/integrations/use-cases/create-process.test.js +0 -178
package/integrations/use-cases/get-process.test.js +0 -190
package/integrations/use-cases/load-integration-context-full.test.js +0 -329
package/integrations/use-cases/load-integration-context.test.js +0 -114
package/integrations/use-cases/update-process-metrics.test.js +0 -308
package/integrations/use-cases/update-process-state.test.js +0 -256
package/lambda/TimeoutCatcher.test.js +0 -68
package/logs/logger.test.js +0 -76
package/modules/module-hydration.test.js +0 -205
package/modules/requester/requester.test.js +0 -28
package/user/tests/use-cases/create-individual-user.test.js +0 -24
package/user/tests/use-cases/create-organization-user.test.js +0 -28
package/user/tests/use-cases/create-token-for-user-id.test.js +0 -19
package/user/tests/use-cases/get-user-from-bearer-token.test.js +0 -64
package/user/tests/use-cases/login-user.test.js +0 -220
package/user/tests/user-password-encryption-isolation.test.js +0 -237
package/user/tests/user-password-hashing.test.js +0 -235

package/user/use-cases/get-user-from-x-frigg-headers.js ADDED Viewed

@@ -0,0 +1,106 @@
+const Boom = require('@hapi/boom');
+const { User } = require('../user');
+/**
+ * Use case for retrieving or creating a user from x-frigg header identifiers.
+ * Supports backend-to-backend API communication using application user IDs.
+ *
+ * @class GetUserFromXFriggHeaders
+ */
+class GetUserFromXFriggHeaders {
+    /**
+     * Creates a new GetUserFromXFriggHeaders instance.
+     * @param {Object} params - Configuration parameters.
+     * @param {import('../repositories/user-repository-interface').UserRepositoryInterface} params.userRepository - Repository for user data operations.
+     * @param {Object} params.userConfig - The user config in the app definition.
+     */
+    constructor({ userRepository, userConfig }) {
+        this.userRepository = userRepository;
+        this.userConfig = userConfig;
+    }
+    /**
+     * Executes the use case.
+     * @async
+     * @param {string} [appUserId] - The app user ID from x-frigg-appUserId header.
+     * @param {string} [appOrgId] - The app organization ID from x-frigg-appOrgId header.
+     * @returns {Promise<import('../user').User>} The authenticated user object.
+     * @throws {Boom} 400 Bad Request if neither ID is provided or if both IDs are provided but belong to different users.
+     */
+    async execute(appUserId, appOrgId) {
+        // At least one header must be provided
+        if (!appUserId && !appOrgId) {
+            throw Boom.badRequest(
+                'At least one of x-frigg-appUserId or x-frigg-appOrgId headers is required for backend-to-backend authentication'
+            );
+        }
+        // Find users by both IDs if both are provided
+        let individualUserData = null;
+        let organizationUserData = null;
+        if (appUserId && this.userConfig.individualUserRequired !== false) {
+            individualUserData =
+                await this.userRepository.findIndividualUserByAppUserId(
+                    appUserId
+                );
+        }
+        if (appOrgId && this.userConfig.organizationUserRequired) {
+            organizationUserData =
+                await this.userRepository.findOrganizationUserByAppOrgId(
+                    appOrgId
+                );
+        }
+        // VALIDATION: If both IDs provided and both users exist, verify they match
+        if (
+            appUserId &&
+            appOrgId &&
+            individualUserData &&
+            organizationUserData
+        ) {
+            // Check if individual user is linked to the org user
+            const individualOrgId =
+                individualUserData.organizationUser?.toString();
+            const expectedOrgId = organizationUserData.id?.toString();
+            if (individualOrgId !== expectedOrgId) {
+                throw Boom.badRequest(
+                    'User ID mismatch: x-frigg-appUserId and x-frigg-appOrgId refer to different users. ' +
+                        'Provide only one identifier or ensure they belong to the same user.'
+                );
+            }
+        }
+        // Auto-create user if not found
+        if (!individualUserData && !organizationUserData) {
+            if (appUserId) {
+                individualUserData =
+                    await this.userRepository.createIndividualUser({
+                        appUserId,
+                        username: `app-user-${appUserId}`,
+                        email: `${appUserId}@app.local`,
+                    });
+            } else {
+                organizationUserData =
+                    await this.userRepository.createOrganizationUser({
+                        appOrgId,
+                    });
+            }
+        }
+        return new User(
+            individualUserData,
+            organizationUserData,
+            this.userConfig.usePassword,
+            this.userConfig.primary,
+            this.userConfig.individualUserRequired,
+            this.userConfig.organizationUserRequired
+        );
+    }
+}
+module.exports = { GetUserFromXFriggHeaders };

package/user/user.js CHANGED Viewed

@@ -72,6 +72,22 @@ class User {
     getOrganizationUser() {
         return this.organizationUser;
     }
+    /**
+     * Gets the appUserId from the individual user if present.
+     * @returns {string|null} The app user ID or null
+     */
+    getAppUserId() {
+        return this.individualUser?.appUserId || null;
+    }
+    /**
+     * Gets the appOrgId from the organization user if present.
+     * @returns {string|null} The app organization ID or null
+     */
+    getAppOrgId() {
+        return this.organizationUser?.appOrgId || null;
+    }
 }
 module.exports = { User };

package/websocket/repositories/websocket-connection-repository-mongo.js CHANGED Viewed

@@ -1,5 +1,8 @@
 const { prisma } = require('../../database/prisma');
-const AWS = require('aws-sdk');
+const {
+    ApiGatewayManagementApiClient,
+    PostToConnectionCommand,
+} = require('@aws-sdk/client-apigatewaymanagementapi');
 const {
     WebsocketConnectionRepositoryInterface,
 } = require('./websocket-connection-repository-interface');
@@ -74,20 +77,18 @@ class WebsocketConnectionRepositoryMongo extends WebsocketConnectionRepositoryIn
             return connections.map((conn) => ({
                 connectionId: conn.connectionId,
                 send: async (data) => {
-                    const apigwManagementApi = new AWS.ApiGatewayManagementApi({
-                        apiVersion: '2018-11-29',
+                    const apigwManagementApi = new ApiGatewayManagementApiClient({
                         endpoint: process.env.WEBSOCKET_API_ENDPOINT,
                     });
                     try {
-                        await apigwManagementApi
-                            .postToConnection({
-                                ConnectionId: conn.connectionId,
-                                Data: JSON.stringify(data),
-                            })
-                            .promise();
+                        const command = new PostToConnectionCommand({
+                            ConnectionId: conn.connectionId,
+                            Data: JSON.stringify(data),
+                        });
+                        await apigwManagementApi.send(command);
                     } catch (error) {
-                        if (error.statusCode === 410) {
+                        if (error.statusCode === 410 || error.$metadata?.httpStatusCode === 410) {
                             console.log(
                                 `Stale connection ${conn.connectionId}`
                             );

package/websocket/repositories/websocket-connection-repository-postgres.js CHANGED Viewed

@@ -1,5 +1,8 @@
 const { prisma } = require('../../database/prisma');
-const AWS = require('aws-sdk');
+const {
+    ApiGatewayManagementApiClient,
+    PostToConnectionCommand,
+} = require('@aws-sdk/client-apigatewaymanagementapi');
 const {
     WebsocketConnectionRepositoryInterface,
 } = require('./websocket-connection-repository-interface');
@@ -108,20 +111,18 @@ class WebsocketConnectionRepositoryPostgres extends WebsocketConnectionRepositor
             return connections.map((conn) => ({
                 connectionId: conn.connectionId,
                 send: async (data) => {
-                    const apigwManagementApi = new AWS.ApiGatewayManagementApi({
-                        apiVersion: '2018-11-29',
+                    const apigwManagementApi = new ApiGatewayManagementApiClient({
                         endpoint: process.env.WEBSOCKET_API_ENDPOINT,
                     });
                     try {
-                        await apigwManagementApi
-                            .postToConnection({
-                                ConnectionId: conn.connectionId,
-                                Data: JSON.stringify(data),
-                            })
-                            .promise();
+                        const command = new PostToConnectionCommand({
+                            ConnectionId: conn.connectionId,
+                            Data: JSON.stringify(data),
+                        });
+                        await apigwManagementApi.send(command);
                     } catch (error) {
-                        if (error.statusCode === 410) {
+                        if (error.statusCode === 410 || error.$metadata?.httpStatusCode === 410) {
                             console.log(
                                 `Stale connection ${conn.connectionId}`
                             );

package/websocket/repositories/websocket-connection-repository.js CHANGED Viewed

@@ -1,5 +1,8 @@
 const { prisma } = require('../../database/prisma');
-const AWS = require('aws-sdk');
+const {
+    ApiGatewayManagementApiClient,
+    PostToConnectionCommand,
+} = require('@aws-sdk/client-apigatewaymanagementapi');
 const {
     WebsocketConnectionRepositoryInterface,
 } = require('./websocket-connection-repository-interface');
@@ -79,20 +82,18 @@ class WebsocketConnectionRepository extends WebsocketConnectionRepositoryInterfa
             return connections.map((conn) => ({
                 connectionId: conn.connectionId,
                 send: async (data) => {
-                    const apigwManagementApi = new AWS.ApiGatewayManagementApi({
-                        apiVersion: '2018-11-29',
+                    const apigwManagementApi = new ApiGatewayManagementApiClient({
                         endpoint: process.env.WEBSOCKET_API_ENDPOINT,
                     });
                     try {
-                        await apigwManagementApi
-                            .postToConnection({
-                                ConnectionId: conn.connectionId,
-                                Data: JSON.stringify(data),
-                            })
-                            .promise();
+                        const command = new PostToConnectionCommand({
+                            ConnectionId: conn.connectionId,
+                            Data: JSON.stringify(data),
+                        });
+                        await apigwManagementApi.send(command);
                     } catch (error) {
-                        if (error.statusCode === 410) {
+                        if (error.statusCode === 410 || error.$metadata?.httpStatusCode === 410) {
                             console.log(
                                 `Stale connection ${conn.connectionId}`
                             );

package/application/commands/integration-commands.test.js DELETED Viewed

@@ -1,123 +0,0 @@
-jest.mock('../../database/config', () => ({
-    DB_TYPE: 'mongodb',
-    getDatabaseType: jest.fn(() => 'mongodb'),
-    PRISMA_LOG_LEVEL: 'error,warn',
-    PRISMA_QUERY_LOGGING: false,
-}));
-const mockFindExecute = jest.fn();
-jest.mock('../../integrations/use-cases/find-integration-context-by-external-entity-id', () => {
-    return {
-        FindIntegrationContextByExternalEntityIdUseCase: jest
-            .fn()
-            .mockImplementation(() => ({
-                execute: mockFindExecute,
-            })),
-    };
-});
-const {
-    createIntegrationCommands,
-    findIntegrationContextByExternalEntityId,
-} = require('./integration-commands');
-const {
-    FindIntegrationContextByExternalEntityIdUseCase,
-} = require('../../integrations/use-cases/find-integration-context-by-external-entity-id');
-const { DummyIntegration } = require('../../integrations/tests/doubles/dummy-integration-class');
-describe('integration commands', () => {
-    beforeEach(() => {
-        jest.clearAllMocks();
-        mockFindExecute.mockReset();
-    });
-    it('requires an integrationClass when creating commands', () => {
-        expect(() => createIntegrationCommands()).toThrow(
-            'integrationClass is required',
-        );
-    });
-    it('creates use cases with default repositories', () => {
-        createIntegrationCommands({
-            integrationClass: DummyIntegration,
-        });
-        // Verify that the use case is created with default repositories instantiated internally
-        expect(
-            FindIntegrationContextByExternalEntityIdUseCase,
-        ).toHaveBeenCalledWith({
-            integrationRepository: expect.any(Object),
-            moduleRepository: expect.any(Object),
-            loadIntegrationContextUseCase: expect.any(Object),
-        });
-    });
-    it('returns context when findIntegrationContextByExternalEntityId succeeds', async () => {
-        const expectedContext = { record: { id: 'integration-1' } };
-        mockFindExecute.mockResolvedValue({ context: expectedContext });
-        const commands = createIntegrationCommands({
-            integrationClass: DummyIntegration,
-        });
-        const result = await commands.findIntegrationContextByExternalEntityId(
-            'ext-1',
-        );
-        expect(mockFindExecute).toHaveBeenCalledWith({
-            externalEntityId: 'ext-1',
-        });
-        expect(result).toEqual({ context: expectedContext });
-    });
-    it('maps known errors to status codes', async () => {
-        const error = Object.assign(new Error('Entity missing'), {
-            code: 'ENTITY_NOT_FOUND',
-        });
-        mockFindExecute.mockRejectedValue(error);
-        const commands = createIntegrationCommands({
-            integrationClass: DummyIntegration,
-        });
-        const result = await commands.findIntegrationContextByExternalEntityId(
-            'ext-1',
-        );
-        expect(result).toEqual({
-            error: 401,
-            reason: 'Entity missing',
-            code: 'ENTITY_NOT_FOUND',
-        });
-    });
-    it('delegates loadIntegrationContextById to the loader use case', async () => {
-        // This test verifies that the command properly delegates to the use case
-        // We can't easily mock the internal use case, so we'll test the integration
-        const commands = createIntegrationCommands({
-            integrationClass: DummyIntegration,
-        });
-        // The actual use case will be called - this is more of an integration test
-        // For unit testing, we'd need to refactor to allow DI of the use case
-        // But since we've decided to always use default use cases, this is acceptable
-        const result = await commands.loadIntegrationContextById('integration-1');
-        // Result will have error since we don't have a real database
-        expect(result).toHaveProperty('error');
-    });
-    it('exposes a one-off helper for finding integration context by external entity id', async () => {
-        const expectedContext = { record: { id: 'integration-1' } };
-        mockFindExecute.mockResolvedValue({ context: expectedContext });
-        const result = await findIntegrationContextByExternalEntityId({
-            integrationClass: DummyIntegration,
-            externalEntityId: 'ext-2',
-        });
-        expect(mockFindExecute).toHaveBeenCalledWith({
-            externalEntityId: 'ext-2',
-        });
-        expect(result).toEqual({ context: expectedContext });
-    });
-});