@lowdefy/api 4.0.0-alpha.1 → 4.0.0-alpha.12

package/dist/{routes/rootConfig/getHome.js → auth/callbacks/createCallbackPlugins.js}

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -12,14 +12,12 @@
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
-*/ import findHome from './findHome.js';
-import getMenus from './menus/getMenus.js';
-async function getHome(context) {
-    // TODO: We can optimise here as we don't need to read menus if homepageId is configured
-    // but not sure if it is worth the added complexity
-    const menus = await getMenus(context);
-    return findHome(context, {
-        menus
-    });
+*/ function createCallbackPlugins({ authConfig , plugins , type  }) {
+    return authConfig.callbacks.map((callbackConfig)=>({
+            fn: plugins.callbacks[callbackConfig.type],
+            properties: callbackConfig.properties
+        })
+    ).filter((callback)=>callback.fn.meta.type === type
+    );
 }
-export default getHome;
+export default createCallbackPlugins;

package/dist/auth/callbacks/createCallbacks.js

@@ -0,0 +1,43 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createJWTCallback from './createJWTCallback.js';
+import createRedirectCallback from './createRedirectCallback.js';
+import createSessionCallback from './createSessionCallback.js';
+import createSignInCallback from './createSignInCallback.js';
+function createCallbacks({ authConfig , plugins  }) {
+    const callbacks = {
+        session: createSessionCallback({
+            authConfig,
+            plugins
+        })
+    };
+    const jwt = createJWTCallback({
+        authConfig,
+        plugins
+    });
+    if (jwt) callbacks.jwt = jwt;
+    const redirect = createRedirectCallback({
+        authConfig,
+        plugins
+    });
+    if (redirect) callbacks.redirect = redirect;
+    const signIn = createSignInCallback({
+        authConfig,
+        plugins
+    });
+    if (signIn) callbacks.signIn = signIn;
+    return callbacks;
+}
+export default createCallbacks;

package/dist/auth/callbacks/createJWTCallback.js

@@ -0,0 +1,38 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createCallbackPlugins from './createCallbackPlugins.js';
+function createJWTCallback({ authConfig , plugins  }) {
+    const jwtCallbackPlugins = createCallbackPlugins({
+        authConfig,
+        plugins,
+        type: 'jwt'
+    });
+    if (jwtCallbackPlugins.length === 0) return undefined;
+    async function jwtCallback({ token , user , account , profile , isNewUser  }) {
+        for (const plugin of jwtCallbackPlugins){
+            token = await plugin.fn({
+                properties: plugin.properties ?? {},
+                account,
+                isNewUser,
+                profile,
+                token,
+                user
+            });
+        }
+        return token;
+    }
+    return jwtCallback;
+}
+export default createJWTCallback;

package/dist/auth/callbacks/createRedirectCallback.js

@@ -0,0 +1,36 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createCallbackPlugins from './createCallbackPlugins.js';
+function createRedirectCallback({ authConfig , plugins  }) {
+    const redirectCallbackPlugins = createCallbackPlugins({
+        authConfig,
+        plugins,
+        type: 'redirect'
+    });
+    if (redirectCallbackPlugins.length === 0) return undefined;
+    if (redirectCallbackPlugins.length !== 1) {
+        throw new Error('More than one auth redirect callbacks are configured. Only one is allowed.');
+    }
+    const [plugin] = redirectCallbackPlugins;
+    async function redirectCallback({ url , baseUrl  }) {
+        return plugin.fn({
+            properties: plugin.properties ?? {},
+            baseUrl,
+            url
+        });
+    }
+    return redirectCallback;
+}
+export default createRedirectCallback;

package/dist/auth/callbacks/createSessionCallback.js

@@ -0,0 +1,38 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createCallbackPlugins from './createCallbackPlugins.js';
+function createSessionCallback({ authConfig , plugins  }) {
+    const sessionCallbackPlugins = createCallbackPlugins({
+        authConfig,
+        plugins,
+        type: 'session'
+    });
+    async function sessionCallback({ session , token , user  }) {
+        if (token) {
+            session.user.sub = token.sub;
+        }
+        for (const plugin of sessionCallbackPlugins){
+            session = await plugin.fn({
+                properties: plugin.properties ?? {},
+                session,
+                token,
+                user
+            });
+        }
+        return session;
+    }
+    return sessionCallback;
+}
+export default createSessionCallback;

package/dist/auth/callbacks/createSignInCallback.js

@@ -0,0 +1,40 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createCallbackPlugins from './createCallbackPlugins.js';
+function createSignInCallback({ authConfig , plugins  }) {
+    const signInCallbackPlugins = createCallbackPlugins({
+        authConfig,
+        plugins,
+        type: 'signIn'
+    });
+    if (signInCallbackPlugins.length === 0) return undefined;
+    async function signInCallback({ account , credentials , email , profile , user  }) {
+        let allowSignIn = true;
+        for (const plugin of signInCallbackPlugins){
+            allowSignIn = await plugin.fn({
+                properties: plugin.properties ?? {},
+                account,
+                credentials,
+                email,
+                profile,
+                user
+            });
+            if (allowSignIn === false) break;
+        }
+        return allowSignIn;
+    }
+    return signInCallback;
+}
+export default createSignInCallback;

package/dist/auth/createProviders.js

@@ -0,0 +1,26 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ // TODO: docs:
+// Callback url to configure with provider will be: {{ protocol }}{{ host }}/api/auth/callback/{{ providerId }}
+// This depends on providerId, which might cause some issues if users copy an example and change the id.
+// We need to allow users to configure ids, since they might have more than one of the same type.
+function createProviders({ authConfig , plugins  }) {
+    return authConfig.providers.map((providerConfig)=>plugins.providers[providerConfig.type]({
+            ...providerConfig.properties,
+            id: providerConfig.id
+        })
+    );
+}
+export default createProviders;

package/dist/auth/events/createCreateUserEvent.js

@@ -0,0 +1,33 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createCreateUserEvent({ authConfig , plugins  }) {
+    const createUserPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'createUser'
+    });
+    if (createUserPlugins.length === 0) return undefined;
+    async function createUserEvent({ user  }) {
+        for (const plugin of createUserPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                user
+            });
+        }
+    }
+    return createUserEvent;
+}
+export default createCreateUserEvent;

package/dist/auth/events/createEventPlugins.js

@@ -0,0 +1,23 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ function createEventPlugins({ authConfig , plugins , type  }) {
+    return authConfig.events.map((eventConfig)=>({
+            fn: plugins.events[eventConfig.type],
+            properties: eventConfig.properties
+        })
+    ).filter((event)=>event.fn.meta.type === type
+    );
+}
+export default createEventPlugins;

package/dist/auth/events/createEvents.js

@@ -0,0 +1,55 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createCreateUserEvent from './createCreateUserEvent.js';
+import createLinkAccountEvent from './createLinkAccountEvent.js';
+import createSessionEvent from './createSessionEvent.js';
+import createSignInEvent from './createSignInEvent.js';
+import createSignOutEvent from './createSignOutEvent.js';
+import createUpdateUserEvent from './createUpdateUserEvent.js';
+function createEvents({ authConfig , plugins  }) {
+    const events = {};
+    const createUser = createCreateUserEvent({
+        authConfig,
+        plugins
+    });
+    if (createUser) events.createUser = createUser;
+    const linkAccount = createLinkAccountEvent({
+        authConfig,
+        plugins
+    });
+    if (linkAccount) events.linkAccount = linkAccount;
+    const session = createSessionEvent({
+        authConfig,
+        plugins
+    });
+    if (session) events.session = session;
+    const signIn = createSignInEvent({
+        authConfig,
+        plugins
+    });
+    if (signIn) events.signIn = signIn;
+    const signOut = createSignOutEvent({
+        authConfig,
+        plugins
+    });
+    if (signOut) events.signOut = signOut;
+    const updateUser = createUpdateUserEvent({
+        authConfig,
+        plugins
+    });
+    if (updateUser) events.updateUser = updateUser;
+    return events;
+}
+export default createEvents;

package/dist/auth/events/createLinkAccountEvent.js

@@ -0,0 +1,34 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createLinkAccountEvent({ authConfig , plugins  }) {
+    const linkAccountPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'linkAccount'
+    });
+    if (linkAccountPlugins.length === 0) return undefined;
+    async function linkAccountEvent({ account , user  }) {
+        for (const plugin of linkAccountPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                account,
+                user
+            });
+        }
+    }
+    return linkAccountEvent;
+}
+export default createLinkAccountEvent;

package/dist/auth/events/createSessionEvent.js

@@ -0,0 +1,34 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createSessionEvent({ authConfig , plugins  }) {
+    const sessionPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'session'
+    });
+    if (sessionPlugins.length === 0) return undefined;
+    async function sessionEvent({ session , token  }) {
+        for (const plugin of sessionPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                session,
+                token
+            });
+        }
+    }
+    return sessionEvent;
+}
+export default createSessionEvent;

package/dist/auth/events/createSignInEvent.js

@@ -0,0 +1,36 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createSignInEvent({ authConfig , plugins  }) {
+    const signInPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'signIn'
+    });
+    if (signInPlugins.length === 0) return undefined;
+    async function signInEvent({ account , isNewUser , profile , user  }) {
+        for (const plugin of signInPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                account,
+                isNewUser,
+                profile,
+                user
+            });
+        }
+    }
+    return signInEvent;
+}
+export default createSignInEvent;

package/dist/auth/events/createSignOutEvent.js

@@ -0,0 +1,34 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createSignOutEvent({ authConfig , plugins  }) {
+    const signInPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'signOut'
+    });
+    if (signInPlugins.length === 0) return undefined;
+    async function signInEvent({ session , token  }) {
+        for (const plugin of signInPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                session,
+                token
+            });
+        }
+    }
+    return signInEvent;
+}
+export default createSignOutEvent;

package/dist/auth/events/createUpdateUserEvent.js

@@ -0,0 +1,33 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import createEventPlugins from './createEventPlugins.js';
+function createUpdateUserEvent({ authConfig , plugins  }) {
+    const updateUserPlugins = createEventPlugins({
+        authConfig,
+        plugins,
+        type: 'updateUser'
+    });
+    if (updateUserPlugins.length === 0) return undefined;
+    async function updateUserEvent({ user  }) {
+        for (const plugin of updateUserPlugins){
+            await plugin.fn({
+                properties: plugin.properties ?? {},
+                user
+            });
+        }
+    }
+    return updateUserEvent;
+}
+export default createUpdateUserEvent;

package/dist/auth/getNextAuthConfig.js

@@ -0,0 +1,58 @@
+/*
+  Copyright 2020-2022 Lowdefy, Inc
+
+  Licensed under the Apache License, Version 2.0 (the "License");
+  you may not use this file except in compliance with the License.
+  You may obtain a copy of the License at
+
+      http://www.apache.org/licenses/LICENSE-2.0
+
+  Unless required by applicable law or agreed to in writing, software
+  distributed under the License is distributed on an "AS IS" BASIS,
+  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
+  See the License for the specific language governing permissions and
+  limitations under the License.
+*/ import { NodeParser } from '@lowdefy/operators';
+import { getSecretsFromEnv } from '@lowdefy/node-utils';
+import { _secret } from '@lowdefy/operators-js/operators/server';
+import createCallbacks from './callbacks/createCallbacks.js';
+import createEvents from './events/createEvents.js';
+import createProviders from './createProviders.js';
+const nextAuthConfig = {};
+let initialized = false;
+function getNextAuthConfig({ authJson , plugins  }) {
+    if (initialized) return nextAuthConfig;
+    const secrets = getSecretsFromEnv();
+    const operatorsParser = new NodeParser({
+        operators: {
+            _secret
+        },
+        payload: {},
+        secrets,
+        user: {}
+    });
+    const { output: authConfig , errors: operatorErrors  } = operatorsParser.parse({
+        input: authJson,
+        location: 'auth'
+    });
+    if (operatorErrors.length > 0) {
+        throw new Error(operatorErrors[0]);
+    }
+    nextAuthConfig.callbacks = createCallbacks({
+        authConfig,
+        plugins
+    });
+    nextAuthConfig.events = createEvents({
+        authConfig,
+        plugins
+    });
+    nextAuthConfig.providers = createProviders({
+        authConfig,
+        plugins
+    });
+    nextAuthConfig.session = authConfig.session;
+    nextAuthConfig.theme = authConfig.theme;
+    initialized = true;
+    return nextAuthConfig;
+}
+export default getNextAuthConfig;

package/dist/context/createApiContext.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -12,21 +12,24 @@
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
-*/ import createReadConfigFile from './readConfigFile.js';
-async function createApiContext({ buildDirectory , connections , logger , secrets  }) {
+*/ import createAuthorize from './createAuthorize.js';
+import createReadConfigFile from './createReadConfigFile.js';
+async function createApiContext({ buildDirectory , connections , logger , operators , secrets , session ,  }) {
     const readConfigFile = createReadConfigFile({
         buildDirectory
     });
     const config = await readConfigFile('config.json');
     return {
-        authenticated: false,
-        authorize: ()=>true
-        ,
+        authorize: createAuthorize({
+            session
+        }),
         config,
         connections,
         logger,
+        operators,
         readConfigFile,
-        secrets
+        secrets,
+        user: session?.user
     };
 }
 export default createApiContext;

package/dist/context/createAuthorize.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -13,7 +13,11 @@
   See the License for the specific language governing permissions and
   limitations under the License.
 */ import { ServerError } from '../context/errors.js';
-function createAuthorize({ authenticated =false , roles =[]  }) {
+function createAuthorize({ session  }) {
+    // Next-auth getSession provides a session object if the user is authenticated
+    // else session will be null
+    const authenticated = !!session;
+    const roles = session?.user?.roles ?? [];
     function authorize({ auth  }) {
         if (auth.public === true) return true;
         if (auth.public === false) {

package/dist/context/{readConfigFile.js → createReadConfigFile.js}

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/context/errors.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -19,26 +19,26 @@
     }
 };
 let ConfigurationError = class ConfigurationError extends Error {
-    constructor(message1){
-        super(message1);
+    constructor(message){
+        super(message);
         this.name = 'ConfigurationError';
     }
 };
 let RequestError = class RequestError extends Error {
-    constructor(message2){
-        super(message2);
+    constructor(message){
+        super(message);
         this.name = 'RequestError';
     }
 };
 let ServerError = class ServerError extends Error {
-    constructor(message3){
-        super(message3);
+    constructor(message){
+        super(message);
         this.name = 'ServerError';
     }
 };
 let TokenExpiredError = class TokenExpiredError extends Error {
-    constructor(message4){
-        super(message4);
+    constructor(message){
+        super(message);
         this.name = 'TokenExpiredError';
     }
 };

package/dist/index.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -14,8 +14,9 @@
   limitations under the License.
 */ import callRequest from './routes/request/callRequest.js';
 import createApiContext from './context/createApiContext.js';
-import getHome from './routes/rootConfig/getHome.js';
+import getHomeAndMenus from './routes/rootConfig/getHomeAndMenus.js';
+import getNextAuthConfig from './auth/getNextAuthConfig.js';
 import getPageConfig from './routes/page/getPageConfig.js';
 import getRootConfig from './routes/rootConfig/getRootConfig.js';
 import { AuthenticationError, ConfigurationError, RequestError, ServerError, TokenExpiredError } from './context/errors.js';
-export { callRequest, createApiContext, getHome, getPageConfig, getRootConfig, AuthenticationError, ConfigurationError, RequestError, ServerError, TokenExpiredError };
+export { AuthenticationError, callRequest, ConfigurationError, createApiContext, getHomeAndMenus, getNextAuthConfig, getPageConfig, getRootConfig, RequestError, ServerError, TokenExpiredError };

package/dist/routes/page/getPageConfig.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -14,7 +14,10 @@
   limitations under the License.
 */ async function getPageConfig({ authorize , readConfigFile  }, { pageId  }) {
     const pageConfig = await readConfigFile(`pages/${pageId}/${pageId}.json`);
-    if (pageConfig && authorize(pageConfig)) return pageConfig;
+    if (pageConfig && authorize(pageConfig)) {
+        delete pageConfig.auth;
+        return pageConfig;
+    }
     return null;
 }
 export default getPageConfig;

package/dist/routes/request/authorizeRequest.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/request/callRequest.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -50,7 +50,7 @@ async function callRequest(context, { pageId , payload , requestId  }) {
         connection,
         requestConfig
     });
-    const { connectionProperties , requestProperties  } = await evaluateOperators(context, {
+    const { connectionProperties , requestProperties  } = evaluateOperators(context, {
         connectionConfig,
         payload: serializer.deserialize(payload),
         requestConfig

package/dist/routes/request/callRequestResolver.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/request/checkConnectionRead.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/request/checkConnectionWrite.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/request/evaluateOperators.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -12,40 +12,32 @@
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
-*/ // import { NodeParser } from '@lowdefy/operators';
-// import { RequestError } from '../../context/errors.js';
-// async function evaluateOperators({ secrets, user }, { connectionConfig, payload, requestConfig }) {
-//   const operatorsParser = new NodeParser({
-//     payload,
-//     secrets,
-//     user,
-//   });
-//   await operatorsParser.init();
-//   const { output: connectionProperties, errors: connectionErrors } = operatorsParser.parse({
-//     input: connectionConfig.properties || {},
-//     location: connectionConfig.connectionId,
-//   });
-//   if (connectionErrors.length > 0) {
-//     throw new RequestError(connectionErrors[0]);
-//   }
-//   const { output: requestProperties, errors: requestErrors } = operatorsParser.parse({
-//     input: requestConfig.properties || {},
-//     location: requestConfig.requestId,
-//   });
-//   if (requestErrors.length > 0) {
-//     throw new RequestError(requestErrors[0]);
-//   }
-//   return {
-//     connectionProperties,
-//     requestProperties,
-//   };
-// }
-async function evaluateOperators({ secrets , user  }, { connectionConfig , payload , requestConfig  }) {
+*/ import { NodeParser } from '@lowdefy/operators';
+import { RequestError } from '../../context/errors.js';
+function evaluateOperators({ operators , secrets , user  }, { connectionConfig , payload , requestConfig  }) {
+    const operatorsParser = new NodeParser({
+        operators,
+        payload,
+        secrets,
+        user
+    });
+    const { output: connectionProperties , errors: connectionErrors  } = operatorsParser.parse({
+        input: connectionConfig.properties || {},
+        location: connectionConfig.connectionId
+    });
+    if (connectionErrors.length > 0) {
+        throw new RequestError(connectionErrors[0]);
+    }
+    const { output: requestProperties , errors: requestErrors  } = operatorsParser.parse({
+        input: requestConfig.properties || {},
+        location: requestConfig.requestId
+    });
+    if (requestErrors.length > 0) {
+        throw new RequestError(requestErrors[0]);
+    }
     return {
-        connectionProperties: connectionConfig.properties || {
-        },
-        requestProperties: requestConfig.properties || {
-        }
+        connectionProperties,
+        requestProperties
     };
 }
 export default evaluateOperators;

package/dist/routes/request/getConnection.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/request/getConnectionConfig.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/request/getRequestConfig.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/request/getRequestResolver.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/request/validateSchemas.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/rootConfig/{findHome.js → getHomeAndMenus.js}

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -13,11 +13,17 @@
   See the License for the specific language governing permissions and
   limitations under the License.
 */ import { get } from '@lowdefy/helpers';
-function findHome({ config  }, { menus  }) {
-    if (get(config, 'homePageId')) {
+import getMenus from './menus/getMenus.js';
+async function getHomeAndMenus(context) {
+    const menus = await getMenus(context);
+    const homePageId = get(context.config, 'homePageId');
+    if (homePageId) {
         return {
-            pageId: config.homePageId,
-            configured: true
+            home: {
+                configured: true,
+                pageId: homePageId
+            },
+            menus
         };
     }
     let defaultMenu = menus.find((menu)=>menu.menuId === 'default'
@@ -41,8 +47,11 @@ function findHome({ config  }, { menus  }) {
         });
     }
     return {
-        pageId,
-        configured: false
+        home: {
+            configured: false,
+            pageId
+        },
+        menus
     };
 }
-export default findHome;
+export default getHomeAndMenus;

package/dist/routes/rootConfig/getLowdefyGlobal.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -14,7 +14,6 @@
   limitations under the License.
 */ async function getLowdefyGlobal({ readConfigFile  }) {
     const lowdefyGlobal = await readConfigFile('global.json');
-    return lowdefyGlobal || {
-    };
+    return lowdefyGlobal || {};
 }
 export default getLowdefyGlobal;

package/dist/routes/rootConfig/getRootConfig.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -12,19 +12,15 @@
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
-*/ import findHome from './findHome.js';
+*/ import getHomeAndMenus from './getHomeAndMenus.js';
 import getLowdefyGlobal from './getLowdefyGlobal.js';
-import getMenus from './menus/getMenus.js';
 async function getRootConfig(context) {
-    const [lowdefyGlobal, menus] = await Promise.all([
+    const [lowdefyGlobal, { home , menus  }] = await Promise.all([
         getLowdefyGlobal(context),
-        getMenus(context)
+        getHomeAndMenus(context), 
     ]);
     return {
-        authenticated: context.authenticated,
-        home: findHome(context, {
-            menus
-        }),
+        home,
         lowdefyGlobal,
         menus
     };

package/dist/routes/rootConfig/menus/filterMenuList.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.

package/dist/routes/rootConfig/menus/filterMenus.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -13,7 +13,7 @@
   See the License for the specific language governing permissions and
   limitations under the License.
 */ import { get } from '@lowdefy/helpers';
-import filterMenuList from './filterMenuList';
+import filterMenuList from './filterMenuList.js';
 function filterMenus(context, { menus  }) {
     return menus.map((menu)=>{
         return {

package/dist/routes/rootConfig/menus/getMenus.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -12,7 +12,7 @@
   WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
   See the License for the specific language governing permissions and
   limitations under the License.
-*/ import filterMenus from './filterMenus';
+*/ import filterMenus from './filterMenus.js';
 async function getMenus(context) {
     const unfilteredMenus = await context.readConfigFile('menus.json');
     return filterMenus(context, {

package/dist/test/testContext.js

@@ -1,5 +1,5 @@
 /*
-  Copyright 2020-2021 Lowdefy, Inc
+  Copyright 2020-2022 Lowdefy, Inc
 
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
@@ -13,38 +13,29 @@
   See the License for the specific language governing permissions and
   limitations under the License.
 */ import createAuthorize from '../context/createAuthorize.js';
-function testContext({ config ={
-} , connections ={
-} , headers ={
-} , host ='host' , logger ={
-    debug: ()=>{
-    },
-    error: ()=>{
-    },
-    info: ()=>{
-    },
-    warn: ()=>{
-    }
-} , readConfigFile , roles , secrets ={
-} , setHeader , user , protocol ='https' ,  } = {
-}) {
-    const authenticated = user && !!user.sub;
+function testContext({ config ={} , connections ={} , headers ={} , host ='host' , logger ={
+    debug: ()=>{},
+    error: ()=>{},
+    info: ()=>{},
+    warn: ()=>{}
+} , operators ={
+    _test: ()=>'test'
+} , readConfigFile , secrets ={} , setHeader , session , protocol ='https' ,  } = {}) {
     return {
-        authenticated,
         authorize: createAuthorize({
-            authenticated,
-            roles
+            session
         }),
         config,
         connections,
         headers,
         host,
         logger,
+        operators,
         protocol,
         readConfigFile,
         secrets,
         setHeader,
-        user
+        user: session?.user
     };
 }
 export default testContext;

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "@lowdefy/api",
-  "version": "4.0.0-alpha.1",
+  "version": "4.0.0-alpha.12",
   "licence": "Apache-2.0",
   "description": "",
   "homepage": "https://lowdefy.com",
@@ -38,23 +38,25 @@
     "clean": "rm -rf dist",
     "prepare": "yarn build",
     "swc": "swc src --out-dir dist --config-file ../../.swcrc --delete-dir-on-start",
-    "test": "jest --coverage"
+    "test": "yarn node --experimental-vm-modules $(yarn bin jest)"
   },
   "dependencies": {
-    "@lowdefy/ajv": "4.0.0-alpha.1",
-    "@lowdefy/helpers": "4.0.0-alpha.1",
-    "@lowdefy/node-utils": "4.0.0-alpha.1",
-    "@lowdefy/nunjucks": "4.0.0-alpha.1",
-    "@lowdefy/operators": "4.0.0-alpha.1"
+    "@lowdefy/ajv": "4.0.0-alpha.12",
+    "@lowdefy/helpers": "4.0.0-alpha.12",
+    "@lowdefy/node-utils": "4.0.0-alpha.12",
+    "@lowdefy/nunjucks": "4.0.0-alpha.12",
+    "@lowdefy/operators": "4.0.0-alpha.12"
   },
   "devDependencies": {
-    "@swc/cli": "0.1.52",
-    "@swc/core": "1.2.112",
-    "@swc/jest": "0.2.9",
-    "jest": "27.3.1"
+    "@jest/globals": "27.5.1",
+    "@lowdefy/operators-js": "4.0.0-alpha.12",
+    "@swc/cli": "0.1.55",
+    "@swc/core": "1.2.135",
+    "@swc/jest": "0.2.17",
+    "jest": "27.5.1"
   },
   "publishConfig": {
     "access": "public"
   },
-  "gitHead": "c97a8fa6b5a641e7d50df09f5601a9c586eeb65a"
+  "gitHead": "41b6138a81bee7da362dad06345bc9f87b2c2133"
 }

package/dist/context/createContext.js

@@ -1,46 +0,0 @@
-/*
-  Copyright 2020-2021 Lowdefy, Inc
-
-  Licensed under the Apache License, Version 2.0 (the "License");
-  you may not use this file except in compliance with the License.
-  You may obtain a copy of the License at
-
-      http://www.apache.org/licenses/LICENSE-2.0
-
-  Unless required by applicable law or agreed to in writing, software
-  distributed under the License is distributed on an "AS IS" BASIS,
-  WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
-  See the License for the specific language governing permissions and
-  limitations under the License.
-*/ import createAuthorize from './createAuthorize.js';
-import createReadConfigFile from './readConfigFile.js';
-import verifyAuthorizationHeader from './verifyAuthorizationHeader.js';
-async function createContext({ buildDirectory , connections , secrets  }) {
-    const readConfigFile = createReadConfigFile({
-        buildDirectory
-    });
-    const config = await readConfigFile('config.json');
-    function contextFn({ headers , host , logger , protocol , setHeader  }) {
-        const context = {
-            config,
-            connections,
-            headers,
-            host,
-            logger,
-            protocol,
-            readConfigFile,
-            secrets,
-            setHeader
-        };
-        const { authenticated , user , roles  } = verifyAuthorizationHeader(context);
-        context.authorize = createAuthorize({
-            authenticated,
-            roles
-        });
-        context.authenticated = authenticated;
-        context.user = user;
-        return context;
-    }
-    return contextFn;
-}
-export default createContext;