@magda/acs-cmd 2.3.3 → 3.0.0-alpha.0

package/bin/acs-cmd-create-operation.js

@@ -0,0 +1,112 @@
+#!/usr/bin/env node
+
+// ../../node_modules/@magda/esm-utils/dist/esmUtils.js
+import { createRequire } from "module";
+function callsites() {
+  const _prepareStackTrace = Error.prepareStackTrace;
+  try {
+    let result = [];
+    Error.prepareStackTrace = (_, callSites) => {
+      const callSitesWithoutCurrent = callSites.slice(1);
+      result = callSitesWithoutCurrent;
+      return callSitesWithoutCurrent;
+    };
+    new Error().stack;
+    return result;
+  } finally {
+    Error.prepareStackTrace = _prepareStackTrace;
+  }
+}
+function callerCallsite({ depth = 0 } = {}) {
+  const callers = [];
+  const callerFileSet = /* @__PURE__ */ new Set();
+  for (const callsite of callsites()) {
+    const fileName = callsite.getFileName();
+    const hasReceiver = callsite.getTypeName() !== null && fileName !== null;
+    if (!callerFileSet.has(fileName)) {
+      callerFileSet.add(fileName);
+      callers.unshift(callsite);
+    }
+    if (hasReceiver) {
+      return callers[depth];
+    }
+  }
+}
+function callerpath({ depth = 0 } = {}) {
+  const callsite = callerCallsite({ depth });
+  return callsite && callsite.getFileName();
+}
+function require2(id) {
+  const requireFrom = createRequire(callerpath({ depth: 1 }));
+  return requireFrom(id);
+}
+
+// ../../scripts/acs-cmd/acs-cmd-create-operation.js
+import { program } from "commander";
+import chalk from "chalk";
+
+// ../../scripts/db/getDBPool.js
+import pg from "pg";
+
+// ../../scripts/db/getDBConfig.js
+function getDBConfig() {
+  const {
+    POSTGRES_HOST: host,
+    POSTGRES_DB: database,
+    POSTGRES_USER: user,
+    POSTGRES_PASSWORD: password,
+    POSTGRES_PORT: port
+  } = process.env;
+  return {
+    host: host ? host : "localhost",
+    database: database ? database : "auth",
+    port: port ? port : 5432,
+    user: user ? user : "postgres",
+    password: password ? password : ""
+  };
+}
+
+// ../../scripts/db/getDBPool.js
+var pool = new pg.Pool(getDBConfig());
+pool.on("error", function(err, client) {
+  console.error("DB Pool Error: ", err.message, err.stack);
+});
+function getDBPool() {
+  return pool;
+}
+var getDBPool_default = getDBPool;
+
+// ../../scripts/acs-cmd/acs-cmd-create-operation.js
+var pkg = require2("../package.json");
+var pool2 = getDBPool_default();
+program.version(pkg.version).description(`A tool for creating operations. Version: ${pkg.version}`).option("<permission>", "Permission name").option("<uri>", "Operation uri").option("<name>", "Operation name").option("<description>", "Operation description").action(async (permissionName, uri, name, description) => {
+  try {
+    await pool2.query("BEGIN TRANSACTION");
+    const permissionResult = await pool2.query(
+      `SELECT id FROM permissions WHERE name = $1`,
+      [permissionName]
+    );
+    if (permissionResult.rows.length === 0) {
+      console.log(
+        chalk.red("No permission found with name " + permissionName)
+      );
+      process.exit(1);
+    }
+    const permissionId = permissionResult.rows[0].id;
+    const operationResult = await pool2.query(
+      `INSERT INTO operations (uri, name, description) VALUES ($1, $2, $3) RETURNING id`,
+      [uri, name, description]
+    );
+    const operationId = operationResult.rows[0].id;
+    await pool2.query(
+      `INSERT INTO permission_operations (permission_id, operation_id) VALUES ($1, $2)`,
+      [permissionId, operationId]
+    );
+    await pool2.query("COMMIT");
+    console.log(chalk.green("Operation Completed!"));
+  } catch (e) {
+    await pool2.query("ROLLBACK");
+    console.error(chalk.red(`Error: ${e}`));
+  }
+  process.exit(0);
+}).parse(process.argv);

package/bin/acs-cmd-create-permission.js

@@ -0,0 +1,93 @@
+#!/usr/bin/env node
+
+// ../../node_modules/@magda/esm-utils/dist/esmUtils.js
+import { createRequire } from "module";
+function callsites() {
+  const _prepareStackTrace = Error.prepareStackTrace;
+  try {
+    let result = [];
+    Error.prepareStackTrace = (_, callSites) => {
+      const callSitesWithoutCurrent = callSites.slice(1);
+      result = callSitesWithoutCurrent;
+      return callSitesWithoutCurrent;
+    };
+    new Error().stack;
+    return result;
+  } finally {
+    Error.prepareStackTrace = _prepareStackTrace;
+  }
+}
+function callerCallsite({ depth = 0 } = {}) {
+  const callers = [];
+  const callerFileSet = /* @__PURE__ */ new Set();
+  for (const callsite of callsites()) {
+    const fileName = callsite.getFileName();
+    const hasReceiver = callsite.getTypeName() !== null && fileName !== null;
+    if (!callerFileSet.has(fileName)) {
+      callerFileSet.add(fileName);
+      callers.unshift(callsite);
+    }
+    if (hasReceiver) {
+      return callers[depth];
+    }
+  }
+}
+function callerpath({ depth = 0 } = {}) {
+  const callsite = callerCallsite({ depth });
+  return callsite && callsite.getFileName();
+}
+function require2(id) {
+  const requireFrom = createRequire(callerpath({ depth: 1 }));
+  return requireFrom(id);
+}
+
+// ../../scripts/acs-cmd/acs-cmd-create-permission.js
+import { program } from "commander";
+import chalk from "chalk";
+
+// ../../scripts/db/getDBPool.js
+import pg from "pg";
+
+// ../../scripts/db/getDBConfig.js
+function getDBConfig() {
+  const {
+    POSTGRES_HOST: host,
+    POSTGRES_DB: database,
+    POSTGRES_USER: user,
+    POSTGRES_PASSWORD: password,
+    POSTGRES_PORT: port
+  } = process.env;
+  return {
+    host: host ? host : "localhost",
+    database: database ? database : "auth",
+    port: port ? port : 5432,
+    user: user ? user : "postgres",
+    password: password ? password : ""
+  };
+}
+
+// ../../scripts/db/getDBPool.js
+var pool = new pg.Pool(getDBConfig());
+pool.on("error", function(err, client) {
+  console.error("DB Pool Error: ", err.message, err.stack);
+});
+function getDBPool() {
+  return pool;
+}
+var getDBPool_default = getDBPool;
+
+// ../../scripts/acs-cmd/acs-cmd-create-permission.js
+var pkg = require2("../package.json");
+var pool2 = getDBPool_default();
+program.version(pkg.version).description(`A tool for creating permissions. Version: ${pkg.version}`).option("<name>", "Permission name").option("<description>", "Permission description").action(async (name, description) => {
+  try {
+    await pool2.query(
+      `INSERT INTO permissions (name, description) VALUES ($1, $2)`,
+      [name, description]
+    );
+    console.log(chalk.green("Operation Completed!"));
+  } catch (e) {
+    console.error(chalk.red(`Error: ${e}`));
+  }
+  process.exit(0);
+}).parse(process.argv);

package/bin/acs-cmd-create.js

@@ -0,0 +1,62 @@
+#!/usr/bin/env node
+
+// ../../node_modules/@magda/esm-utils/dist/esmUtils.js
+import { createRequire } from "module";
+function callsites() {
+  const _prepareStackTrace = Error.prepareStackTrace;
+  try {
+    let result = [];
+    Error.prepareStackTrace = (_, callSites) => {
+      const callSitesWithoutCurrent = callSites.slice(1);
+      result = callSitesWithoutCurrent;
+      return callSitesWithoutCurrent;
+    };
+    new Error().stack;
+    return result;
+  } finally {
+    Error.prepareStackTrace = _prepareStackTrace;
+  }
+}
+function callerCallsite({ depth = 0 } = {}) {
+  const callers = [];
+  const callerFileSet = /* @__PURE__ */ new Set();
+  for (const callsite of callsites()) {
+    const fileName = callsite.getFileName();
+    const hasReceiver = callsite.getTypeName() !== null && fileName !== null;
+    if (!callerFileSet.has(fileName)) {
+      callerFileSet.add(fileName);
+      callers.unshift(callsite);
+    }
+    if (hasReceiver) {
+      return callers[depth];
+    }
+  }
+}
+function callerpath({ depth = 0 } = {}) {
+  const callsite = callerCallsite({ depth });
+  return callsite && callsite.getFileName();
+}
+function require2(id) {
+  const requireFrom = createRequire(callerpath({ depth: 1 }));
+  return requireFrom(id);
+}
+
+// ../../scripts/acs-cmd/acs-cmd-create.js
+import { program } from "commander";
+import chalk from "chalk";
+var pkg = require2("../package.json");
+program.version(pkg.version).description(
+  `A tool for creating magda access control data. Version: ${pkg.version}`
+).command("permission", "Create permission").command("operation", "Create operation").on("command:*", function(cmds) {
+  if (["permission", "operation"].indexOf(cmds[0]) === -1) {
+    console.error(
+      chalk.red(
+        `Invalid command: ${program.args.join(
+          " "
+        )}
+See --help for a list of available commands.`
+      )
+    );
+    process.exit(1);
+  }
+}).parse(process.argv);

package/bin/acs-cmd-jwt.js

@@ -0,0 +1,80 @@
+#!/usr/bin/env node
+
+// ../../node_modules/@magda/esm-utils/dist/esmUtils.js
+import { createRequire } from "module";
+function callsites() {
+  const _prepareStackTrace = Error.prepareStackTrace;
+  try {
+    let result = [];
+    Error.prepareStackTrace = (_, callSites) => {
+      const callSitesWithoutCurrent = callSites.slice(1);
+      result = callSitesWithoutCurrent;
+      return callSitesWithoutCurrent;
+    };
+    new Error().stack;
+    return result;
+  } finally {
+    Error.prepareStackTrace = _prepareStackTrace;
+  }
+}
+function callerCallsite({ depth = 0 } = {}) {
+  const callers = [];
+  const callerFileSet = /* @__PURE__ */ new Set();
+  for (const callsite of callsites()) {
+    const fileName = callsite.getFileName();
+    const hasReceiver = callsite.getTypeName() !== null && fileName !== null;
+    if (!callerFileSet.has(fileName)) {
+      callerFileSet.add(fileName);
+      callers.unshift(callsite);
+    }
+    if (hasReceiver) {
+      return callers[depth];
+    }
+  }
+}
+function callerpath({ depth = 0 } = {}) {
+  const callsite = callerCallsite({ depth });
+  return callsite && callsite.getFileName();
+}
+function require2(id) {
+  const requireFrom = createRequire(callerpath({ depth: 1 }));
+  return requireFrom(id);
+}
+
+// ../../scripts/acs-cmd/acs-cmd-jwt.js
+import { program } from "commander";
+import chalk from "chalk";
+
+// ../../magda-typescript-common/dist/session/buildJwt.js
+import jwt from "jsonwebtoken";
+function buildJwt(jwtSecret, userId, session = {}) {
+  return jwt.sign({ userId, session }, jwtSecret);
+}
+
+// ../../scripts/acs-cmd/acs-cmd-jwt.js
+var pkg = require2("../package.json");
+var DEFAULT_JWT_SECRET = "squirrel";
+program.description(
+  `calculate JWT token (only for testing purpose). Version: ${pkg.version}`
+).option("<userId>", "User ID").option(
+  "[jwtSecret]",
+  "Optional JWT secret. Default value: `" + DEFAULT_JWT_SECRET + "`"
+).version(pkg.version).action(async (userId, jwtSecret) => {
+  try {
+    if (process.argv.slice(2).length < 1) {
+      program.help();
+    }
+    console.log(`JWT token for user ${userId} is: `);
+    console.log(
+      chalk.yellow(
+        buildJwt(
+          typeof jwtSecret === "string" ? jwtSecret : DEFAULT_JWT_SECRET,
+          userId
+        )
+      )
+    );
+  } catch (e) {
+    console.error(chalk.red(`Error: ${e}`));
+  }
+  process.exit(0);
+}).parse(process.argv);

package/bin/acs-cmd-list-permissions.js

@@ -0,0 +1,139 @@
+#!/usr/bin/env node
+
+// ../../node_modules/@magda/esm-utils/dist/esmUtils.js
+import { createRequire } from "module";
+function callsites() {
+  const _prepareStackTrace = Error.prepareStackTrace;
+  try {
+    let result = [];
+    Error.prepareStackTrace = (_, callSites) => {
+      const callSitesWithoutCurrent = callSites.slice(1);
+      result = callSitesWithoutCurrent;
+      return callSitesWithoutCurrent;
+    };
+    new Error().stack;
+    return result;
+  } finally {
+    Error.prepareStackTrace = _prepareStackTrace;
+  }
+}
+function callerCallsite({ depth = 0 } = {}) {
+  const callers = [];
+  const callerFileSet = /* @__PURE__ */ new Set();
+  for (const callsite of callsites()) {
+    const fileName = callsite.getFileName();
+    const hasReceiver = callsite.getTypeName() !== null && fileName !== null;
+    if (!callerFileSet.has(fileName)) {
+      callerFileSet.add(fileName);
+      callers.unshift(callsite);
+    }
+    if (hasReceiver) {
+      return callers[depth];
+    }
+  }
+}
+function callerpath({ depth = 0 } = {}) {
+  const callsite = callerCallsite({ depth });
+  return callsite && callsite.getFileName();
+}
+function require2(id) {
+  const requireFrom = createRequire(callerpath({ depth: 1 }));
+  return requireFrom(id);
+}
+
+// ../../scripts/acs-cmd/acs-cmd-list-permissions.js
+import { program } from "commander";
+import chalk from "chalk";
+
+// ../../scripts/db/getDBPool.js
+import pg from "pg";
+
+// ../../scripts/db/getDBConfig.js
+function getDBConfig() {
+  const {
+    POSTGRES_HOST: host,
+    POSTGRES_DB: database,
+    POSTGRES_USER: user,
+    POSTGRES_PASSWORD: password,
+    POSTGRES_PORT: port
+  } = process.env;
+  return {
+    host: host ? host : "localhost",
+    database: database ? database : "auth",
+    port: port ? port : 5432,
+    user: user ? user : "postgres",
+    password: password ? password : ""
+  };
+}
+
+// ../../scripts/db/getDBPool.js
+var pool = new pg.Pool(getDBConfig());
+pool.on("error", function(err, client) {
+  console.error("DB Pool Error: ", err.message, err.stack);
+});
+function getDBPool() {
+  return pool;
+}
+var getDBPool_default = getDBPool;
+
+// ../../scripts/acs-cmd/acs-cmd-list-permissions.js
+import { table } from "table";
+var pkg = require2("../package.json");
+var pool2 = getDBPool_default();
+program.description("List all permissions").version(pkg.version).action(async () => {
+  try {
+    const selectFields = ["id", "name", "description"];
+    const result = await pool2.query(
+      `SELECT ${selectFields.join(", ")} FROM permissions`
+    );
+    if (!result || !result.rows || !result.rows.length) {
+      throw new Error("Cannot find any records!");
+    }
+    const data = [["ID", "Name", "Description", "Operations"]];
+    const options = {
+      columns: {
+        0: {
+          width: 36
+        },
+        1: {
+          width: 10
+        },
+        2: {
+          width: 11
+        },
+        3: {
+          width: 10
+        },
+        4: {
+          width: 10
+        },
+        5: {
+          width: 10
+        }
+      }
+    };
+    for (let i = 0; i < result.rows.length; i++) {
+      const res = result.rows[i];
+      const operations = await getOperationsByPermissionId(res["id"]);
+      data.push(
+        selectFields.map((k) => res[k]).concat([operations.map((op) => op.uri).join("\n")])
+      );
+    }
+    console.log(table(data, options));
+  } catch (e) {
+    console.error(chalk.red(`Error: ${e}`));
+  }
+  process.exit(0);
+}).parse(process.argv);
+async function getOperationsByPermissionId(permissionId) {
+  const result = await pool2.query(
+    `SELECT op.* 
+        FROM permission_operations AS pop
+        LEFT JOIN operations op ON op.id = pop.operation_id
+        WHERE pop.permission_id = $1`,
+    [permissionId]
+  );
+  if (!result || !result.rows || !result.rows.length)
+    return [];
+  return result.rows;
+}

package/bin/acs-cmd-list-resources.js

@@ -0,0 +1,111 @@
+#!/usr/bin/env node
+
+// ../../node_modules/@magda/esm-utils/dist/esmUtils.js
+import { createRequire } from "module";
+function callsites() {
+  const _prepareStackTrace = Error.prepareStackTrace;
+  try {
+    let result = [];
+    Error.prepareStackTrace = (_, callSites) => {
+      const callSitesWithoutCurrent = callSites.slice(1);
+      result = callSitesWithoutCurrent;
+      return callSitesWithoutCurrent;
+    };
+    new Error().stack;
+    return result;
+  } finally {
+    Error.prepareStackTrace = _prepareStackTrace;
+  }
+}
+function callerCallsite({ depth = 0 } = {}) {
+  const callers = [];
+  const callerFileSet = /* @__PURE__ */ new Set();
+  for (const callsite of callsites()) {
+    const fileName = callsite.getFileName();
+    const hasReceiver = callsite.getTypeName() !== null && fileName !== null;
+    if (!callerFileSet.has(fileName)) {
+      callerFileSet.add(fileName);
+      callers.unshift(callsite);
+    }
+    if (hasReceiver) {
+      return callers[depth];
+    }
+  }
+}
+function callerpath({ depth = 0 } = {}) {
+  const callsite = callerCallsite({ depth });
+  return callsite && callsite.getFileName();
+}
+function require2(id) {
+  const requireFrom = createRequire(callerpath({ depth: 1 }));
+  return requireFrom(id);
+}
+
+// ../../scripts/acs-cmd/acs-cmd-list-resources.js
+import { program } from "commander";
+import chalk from "chalk";
+
+// ../../scripts/db/getDBPool.js
+import pg from "pg";
+
+// ../../scripts/db/getDBConfig.js
+function getDBConfig() {
+  const {
+    POSTGRES_HOST: host,
+    POSTGRES_DB: database,
+    POSTGRES_USER: user,
+    POSTGRES_PASSWORD: password,
+    POSTGRES_PORT: port
+  } = process.env;
+  return {
+    host: host ? host : "localhost",
+    database: database ? database : "auth",
+    port: port ? port : 5432,
+    user: user ? user : "postgres",
+    password: password ? password : ""
+  };
+}
+
+// ../../scripts/db/getDBPool.js
+var pool = new pg.Pool(getDBConfig());
+pool.on("error", function(err, client) {
+  console.error("DB Pool Error: ", err.message, err.stack);
+});
+function getDBPool() {
+  return pool;
+}
+var getDBPool_default = getDBPool;
+
+// ../../scripts/acs-cmd/acs-cmd-list-resources.js
+import { table } from "table";
+var pkg = require2("../package.json");
+var pool2 = getDBPool_default();
+program.description("List all resources").version(pkg.version).action(async () => {
+  try {
+    const result = await pool2.query(`SELECT * FROM resources`);
+    if (!result || !result.rows || !result.rows.length) {
+      throw new Error("Cannot find any records!");
+    }
+    const data = [["URI", "Name", "Description", "Operations"]];
+    for (let i = 0; i < result.rows.length; i++) {
+      const res = result.rows[i];
+      res["operations"] = await getOperationsByResourceId(res["id"]);
+      res["operations"] = res["operations"].map((op) => op.uri).join("\n");
+      delete res["id"];
+      data.push(Object.values(res));
+    }
+    console.log(table(data));
+  } catch (e) {
+    console.error(chalk.red(`Error: ${e}`));
+  }
+  process.exit(0);
+}).parse(process.argv);
+async function getOperationsByResourceId(resourceId) {
+  const result = await pool2.query(
+    `SELECT * FROM operations WHERE resource_id = $1`,
+    [resourceId]
+  );
+  if (!result || !result.rows || !result.rows.length)
+    return [];
+  return result.rows;
+}