@lowdefy/api 0.0.0-experimental-20231123101256

package/dist/routes/auth/callbacks/createSignInCallback.js

@@ -0,0 +1,40 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createCallbackPlugins from './createCallbackPlugins.js';
+function createSignInCallback({ authConfig, plugins }) {
+    const signInCallbackPlugins = createCallbackPlugins({
+        authConfig,
+        plugins,
+        type: 'signIn'
+    });
+    if (signInCallbackPlugins.length === 0) return undefined;
+    async function signInCallback({ account, credentials, email, profile, user }) {
+        let allowSignIn = true;
+        for (const plugin of signInCallbackPlugins){
+            allowSignIn = await plugin.fn({
+                properties: plugin.properties ?? {},
+                account,
+                credentials,
+                email,
+                profile,
+                user
+            });
+            if (allowSignIn === false) break;
+        }
+        return allowSignIn;
+    }
+    return signInCallback;
+}
+export default createSignInCallback;

package/dist/routes/auth/createAdapter.js

@@ -0,0 +1,24 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ function createAdapter({ authConfig, plugins }) {
+    const adapterConfig = authConfig.adapter;
+    if (!adapterConfig) {
+        return undefined;
+    }
+    return plugins.adapters[adapterConfig.type]({
+        properties: adapterConfig.properties
+    });
+}
+export default createAdapter;

package/dist/routes/auth/createLogger.js

@@ -0,0 +1,34 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ function createLogger({ logger }) {
+    return {
+        error: (code, metadata)=>logger.error({
+                code,
+                metadata,
+                event: 'auth_error'
+            }),
+        warn: (code, metadata)=>logger.warn({
+                code,
+                metadata,
+                event: 'auth_warning'
+            }),
+        debug: (code, metadata)=>logger.debug({
+                code,
+                metadata,
+                event: 'auth_debug'
+            })
+    };
+}
+export default createLogger;

package/dist/routes/auth/createProviders.js

@@ -0,0 +1,25 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ // TODO: docs:
+// Callback url to configure with provider will be: {{ protocol }}{{ host }}/api/auth/callback/{{ providerId }}
+// This depends on providerId, which might cause some issues if users copy an example and change the id.
+// We need to allow users to configure ids, since they might have more than one of the same type.
+function createProviders({ authConfig, plugins }) {
+    return authConfig.providers.map((providerConfig)=>plugins.providers[providerConfig.type]({
+            ...providerConfig.properties,
+            id: providerConfig.id
+        }));
+}
+export default createProviders;

package/dist/routes/auth/events/createCreateUserEvent.js

@@ -0,0 +1,41 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createCreateUserEvent({ authConfig, logger, plugins }) {
+    const createUserPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'createUser'
+    });
+    async function createUserEvent({ user }) {
+        logger.info({
+            event: 'auth_create_user',
+            user: {
+                id: user.id,
+                roles: user.roles,
+                sub: user.sub,
+                session_id: user.session_id
+            }
+        });
+        for (const plugin of createUserPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                user
+            });
+        }
+    }
+    return createUserEvent;
+}
+export default createCreateUserEvent;

package/dist/routes/auth/events/createEventPlugins.js

@@ -0,0 +1,21 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ function createEventPlugins({ authConfig, plugins, type }) {
+    return authConfig.events.map((eventConfig)=>({
+            fn: plugins.events[eventConfig.type],
+            properties: eventConfig.properties
+        })).filter((event)=>event.fn.meta.type === type);
+}
+export default createEventPlugins;

package/dist/routes/auth/events/createEvents.js

@@ -0,0 +1,56 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createCreateUserEvent from './createCreateUserEvent.js';
+import createLinkAccountEvent from './createLinkAccountEvent.js';
+import createSessionEvent from './createSessionEvent.js';
+import createSignInEvent from './createSignInEvent.js';
+import createSignOutEvent from './createSignOutEvent.js';
+import createUpdateUserEvent from './createUpdateUserEvent.js';
+function createEvents({ authConfig, logger, plugins }) {
+    const events = {
+        createUser: createCreateUserEvent({
+            authConfig,
+            logger,
+            plugins
+        }),
+        linkAccount: createLinkAccountEvent({
+            authConfig,
+            logger,
+            plugins
+        }),
+        signIn: createSignInEvent({
+            authConfig,
+            logger,
+            plugins
+        }),
+        signOut: createSignOutEvent({
+            authConfig,
+            logger,
+            plugins
+        }),
+        updateUser: createUpdateUserEvent({
+            authConfig,
+            logger,
+            plugins
+        })
+    };
+    const session = createSessionEvent({
+        authConfig,
+        plugins
+    });
+    if (session) events.session = session;
+    return events;
+}
+export default createEvents;

package/dist/routes/auth/events/createLinkAccountEvent.js

@@ -0,0 +1,43 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createLinkAccountEvent({ authConfig, logger, plugins }) {
+    const linkAccountPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'linkAccount'
+    });
+    async function linkAccountEvent({ account, profile, user }) {
+        logger.info({
+            event: 'auth_link_account',
+            user: {
+                id: user.id,
+                roles: user.roles,
+                sub: user.sub,
+                session_id: user.session_id
+            }
+        });
+        for (const plugin of linkAccountPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                account,
+                profile,
+                user
+            });
+        }
+    }
+    return linkAccountEvent;
+}
+export default createLinkAccountEvent;

package/dist/routes/auth/events/createSessionEvent.js

@@ -0,0 +1,34 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createSessionEvent({ authConfig, plugins }) {
+    const sessionPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'session'
+    });
+    if (sessionPlugins.length === 0) return undefined;
+    async function sessionEvent({ session, token }) {
+        for (const plugin of sessionPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                session,
+                token
+            });
+        }
+    }
+    return sessionEvent;
+}
+export default createSessionEvent;

package/dist/routes/auth/events/createSignInEvent.js

@@ -0,0 +1,46 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createSignInEvent({ authConfig, logger, plugins }) {
+    const signInPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'signIn'
+    });
+    async function signInEvent({ account, isNewUser, profile, user }) {
+        logger.info({
+            event: 'auth_sign_in',
+            isNewUser,
+            provider: account?.provider,
+            user: {
+                id: user.id,
+                roles: user.roles,
+                sub: user.sub,
+                session_id: user.session_id
+            }
+        });
+        for (const plugin of signInPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                account,
+                isNewUser,
+                profile,
+                user
+            });
+        }
+    }
+    return signInEvent;
+}
+export default createSignInEvent;

package/dist/routes/auth/events/createSignOutEvent.js

@@ -0,0 +1,43 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createSignOutEvent({ authConfig, logger, plugins }) {
+    const signOutPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'signOut'
+    });
+    async function signOutEvent({ session, token }) {
+        const user = session?.user ?? token;
+        logger.info({
+            event: 'auth_sign_out',
+            user: {
+                id: user.id,
+                roles: user.roles,
+                sub: user.sub,
+                session_id: user.session_id
+            }
+        });
+        for (const plugin of signOutPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                session,
+                token
+            });
+        }
+    }
+    return signOutEvent;
+}
+export default createSignOutEvent;

package/dist/routes/auth/events/createUpdateUserEvent.js

@@ -0,0 +1,41 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createUpdateUserEvent({ authConfig, logger, plugins }) {
+    const updateUserPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'updateUser'
+    });
+    async function updateUserEvent({ user }) {
+        logger.info({
+            event: 'auth_update_user',
+            user: {
+                id: user.id,
+                roles: user.roles,
+                sub: user.sub,
+                session_id: user.session_id
+            }
+        });
+        for (const plugin of updateUserPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                user
+            });
+        }
+    }
+    return updateUserEvent;
+}
+export default createUpdateUserEvent;

package/dist/routes/auth/getNextAuthConfig.js

@@ -0,0 +1,73 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import { ServerParser } from '@lowdefy/operators';
+import { _secret } from '@lowdefy/operators-js/operators/server';
+import createAdapter from './createAdapter.js';
+import createCallbacks from './callbacks/createCallbacks.js';
+import createEvents from './events/createEvents.js';
+import createLogger from './createLogger.js';
+import createProviders from './createProviders.js';
+const nextAuthConfig = {};
+let initialized = false;
+function getNextAuthConfig({ authJson, logger, plugins, secrets }) {
+    if (initialized) return nextAuthConfig;
+    const operatorsParser = new ServerParser({
+        operators: {
+            _secret
+        },
+        payload: {},
+        secrets,
+        user: {}
+    });
+    const { output: authConfig, errors: operatorErrors } = operatorsParser.parse({
+        input: authJson,
+        location: 'auth'
+    });
+    if (operatorErrors.length > 0) {
+        throw new Error(operatorErrors[0]);
+    }
+    nextAuthConfig.adapter = createAdapter({
+        authConfig,
+        logger,
+        plugins
+    });
+    nextAuthConfig.callbacks = createCallbacks({
+        authConfig,
+        logger,
+        plugins
+    });
+    nextAuthConfig.events = createEvents({
+        authConfig,
+        logger,
+        plugins
+    });
+    nextAuthConfig.logger = createLogger({
+        logger
+    });
+    nextAuthConfig.providers = createProviders({
+        authConfig,
+        logger,
+        plugins
+    });
+    nextAuthConfig.debug = authConfig.debug ?? logger?.isLevelEnabled('debug') === true;
+    nextAuthConfig.pages = authConfig.authPages;
+    nextAuthConfig.session = authConfig.session;
+    nextAuthConfig.theme = authConfig.theme;
+    nextAuthConfig.cookies = authConfig?.advanced?.cookies;
+    nextAuthConfig.originalRedirectCallback = nextAuthConfig.callbacks.redirect;
+    initialized = true;
+    return nextAuthConfig;
+}
+export default getNextAuthConfig;

package/dist/routes/page/getPageConfig.js

@@ -0,0 +1,26 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ async function getPageConfig({ authorize, readConfigFile }, { pageId }) {
+    const pageConfig = await readConfigFile(`pages/${pageId}/${pageId}.json`);
+    if (pageConfig && authorize(pageConfig)) {
+        // eslint-disable-next-line no-unused-vars
+        const { auth, ...rest } = pageConfig;
+        return {
+            ...rest
+        };
+    }
+    return null;
+}
+export default getPageConfig;

package/dist/routes/request/authorizeRequest.js

@@ -0,0 +1,32 @@
+/*
+  Copyright 2020-2023 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import { ConfigurationError } from '../../context/errors.js';
+function authorizeRequest({ authorize, logger }, { requestConfig }) {
+    if (!authorize(requestConfig)) {
+        logger.debug({
+            event: 'debug_request_authorize',
+            authorized: false,
+            auth_config: requestConfig.auth
+        });
+        // Throw does not exist error to avoid leaking information that request exists to unauthorized users
+        throw new ConfigurationError(`Request "${requestConfig.requestId}" does not exist.`);
+    }
+    logger.debug({
+        event: 'debug_request_authorize',
+        authorized: true,
+        auth_config: requestConfig.auth
+    });
+}
+export default authorizeRequest;