@rockcarver/frodo-lib 0.12.3 → 0.12.5-0

package/esm/ops/JourneyOps.mjs

@@ -5,6 +5,7 @@ import { convertBase64TextToArray, getTypedFilename, saveJsonToFile, getRealmStr
 import { getRealmManagedUser, replaceAll } from './utils/OpsUtils';
 import storage from '../storage/SessionStorage';
 import { getNode, putNode, deleteNode, getNodeTypes, getNodesByType } from '../api/NodeApi';
+import { isCloudOnlyNode, isCustomNode, isPremiumNode } from './NodeOps';
 import { getTrees, getTree, putTree, deleteTree } from '../api/TreeApi';
 import { getEmailTemplate, putEmailTemplate } from '../api/EmailTemplateApi';
 import { getScript } from '../api/ScriptApi';
@@ -1128,19 +1129,16 @@ export async function importJourneysFromFiles(options) {
   importAllJourneys(allJourneysData.trees, options);
 }
 /**
- * Describe a tree
- * @param {Object} journeyData tree
- * @returns {Object} an object describing the tree
+ * Describe a journey
+ * @param {SingleJourneyExportTemplate} journeyData journey export object
  */
 
 export function describeJourney(journeyData) {
-  const treeMap = {};
+  var _journeyData$themes;
+
   const nodeTypeMap = {};
-  const scriptsMap = {};
-  const emailTemplatesMap = {};
-  treeMap['treeName'] = journeyData.tree._id;
 
-  for (const [, nodeData] of Object.entries(journeyData.nodes)) {
+  for (const nodeData of Object.values(journeyData.nodes)) {
     if (nodeTypeMap[nodeData['_type']['_id']]) {
       nodeTypeMap[nodeData['_type']['_id']] += 1;
     } else {
@@ -1148,7 +1146,7 @@ export function describeJourney(journeyData) {
     }
   }
 
-  for (const [, nodeData] of Object.entries(journeyData.innerNodes)) {
+  for (const nodeData of Object.values(journeyData.innerNodes)) {
     if (nodeTypeMap[nodeData['_type']['_id']]) {
       nodeTypeMap[nodeData['_type']['_id']] += 1;
     } else {
@@ -1156,44 +1154,69 @@ export function describeJourney(journeyData) {
     }
   }
 
-  for (const [, scriptData] of Object.entries(journeyData.scripts)) {
-    scriptsMap[scriptData['name']] = scriptData['description'];
-  }
+  printMessage(`\n${journeyData.tree._id}`, 'data');
+  const line = Array(journeyData.tree._id['length']).fill('=').join('');
+  printMessage(line);
 
-  for (const [id, data] of Object.entries(journeyData.emailTemplates)) {
-    emailTemplatesMap[id] = data['displayName'];
+  if (journeyData.tree.description) {
+    printMessage(`\n${journeyData.tree.description}\n`, 'data');
   }
 
-  treeMap['nodeTypes'] = nodeTypeMap;
-  treeMap['scripts'] = scriptsMap;
-  treeMap['emailTemplates'] = emailTemplatesMap;
-  printMessage(`\nJourney: ${treeMap['treeName']}`, 'data');
-  printMessage('========');
   printMessage('\nNodes:', 'data');
 
-  if (Object.entries(treeMap['nodeTypes']).length) {
-    for (const [name, count] of Object.entries(treeMap['nodeTypes'])) {
-      printMessage(`- ${name}: ${count}`, 'data');
+  if (Object.entries(nodeTypeMap).length) {
+    for (const [name, count] of Object.entries(nodeTypeMap)) {
+      printMessage(`- [${String(count)['brightCyan']}] ${name}`, 'data');
+    }
+  }
+
+  if ((_journeyData$themes = journeyData.themes) !== null && _journeyData$themes !== void 0 && _journeyData$themes.length) {
+    printMessage('\nThemes:', 'data');
+
+    for (const themeData of journeyData.themes) {
+      printMessage(`- [${themeData['_id']['brightCyan']}] ${themeData['name']}`, 'data');
     }
   }
 
-  if (Object.entries(treeMap['scripts']).length) {
+  if (Object.entries(journeyData.scripts).length) {
     printMessage('\nScripts:', 'data');
 
-    for (const [name, desc] of Object.entries(treeMap['scripts'])) {
-      printMessage(`- ${name}: ${desc}`, 'data');
+    for (const scriptData of Object.values(journeyData.scripts)) {
+      printMessage(`- [${scriptData['_id'].brightCyan}] ${scriptData['name']}`, 'data');
     }
   }
 
-  if (Object.entries(treeMap['emailTemplates']).length) {
+  if (Object.entries(journeyData.emailTemplates).length) {
     printMessage('\nEmail Templates:', 'data');
 
-    for (const [id] of Object.entries(treeMap['emailTemplates'])) {
-      printMessage(`- ${id}`, 'data');
+    for (const templateData of Object.values(journeyData.emailTemplates)) {
+      printMessage(`- ${templateData['_id'].split('/')[1]}`, 'data');
+    }
+  }
+
+  if (Object.entries(journeyData.socialIdentityProviders).length) {
+    printMessage('\nSocial Identity Providers:', 'data');
+
+    for (const socialIdpData of Object.values(journeyData.socialIdentityProviders)) {
+      printMessage(`- ${socialIdpData['_id']} [${socialIdpData['_type']['_id'].brightCyan}]`, 'data');
+    }
+  }
+
+  if (Object.entries(journeyData.saml2Entities).length) {
+    printMessage('\nSAML2 Entity Providers:', 'data');
+
+    for (const entityProviderData of Object.values(journeyData.saml2Entities)) {
+      printMessage(`- ${entityProviderData['entityId']}`, 'data');
     }
   }
 
-  return treeMap;
+  if (Object.entries(journeyData.circlesOfTrust).length) {
+    printMessage('\nSAML2 Circles Of Trust:', 'data');
+
+    for (const cotData of Object.values(journeyData.circlesOfTrust)) {
+      printMessage(`- ${cotData['_id']}`, 'data');
+    }
+  }
 }
 /**
  * Find all node configuration objects that are no longer referenced by any tree
@@ -1297,93 +1320,82 @@ export async function removeOrphanedNodes(orphanedNodes) {
   stopProgressIndicator(`Removed ${orphanedNodes.length} orphaned nodes.`);
   return errorNodes;
 }
-const OOTB_NODE_TYPES_7 = ['AcceptTermsAndConditionsNode', 'AccountActiveDecisionNode', 'AccountLockoutNode', 'AgentDataStoreDecisionNode', 'AnonymousSessionUpgradeNode', 'AnonymousUserNode', 'AttributeCollectorNode', 'AttributePresentDecisionNode', 'AttributeValueDecisionNode', 'AuthLevelDecisionNode', 'ChoiceCollectorNode', 'ConsentNode', 'CookiePresenceDecisionNode', 'CreateObjectNode', 'CreatePasswordNode', 'DataStoreDecisionNode', 'DeviceGeoFencingNode', 'DeviceLocationMatchNode', 'DeviceMatchNode', 'DeviceProfileCollectorNode', 'DeviceSaveNode', 'DeviceTamperingVerificationNode', 'DisplayUserNameNode', 'EmailSuspendNode', 'EmailTemplateNode', 'IdentifyExistingUserNode', 'IncrementLoginCountNode', 'InnerTreeEvaluatorNode', 'IotAuthenticationNode', 'IotRegistrationNode', 'KbaCreateNode', 'KbaDecisionNode', 'KbaVerifyNode', 'LdapDecisionNode', 'LoginCountDecisionNode', 'MessageNode', 'MetadataNode', 'MeterNode', 'ModifyAuthLevelNode', 'OneTimePasswordCollectorDecisionNode', 'OneTimePasswordGeneratorNode', 'OneTimePasswordSmsSenderNode', 'OneTimePasswordSmtpSenderNode', 'PageNode', 'PasswordCollectorNode', 'PatchObjectNode', 'PersistentCookieDecisionNode', 'PollingWaitNode', 'ProfileCompletenessDecisionNode', 'ProvisionDynamicAccountNode', 'ProvisionIdmAccountNode', 'PushAuthenticationSenderNode', 'PushResultVerifierNode', 'QueryFilterDecisionNode', 'RecoveryCodeCollectorDecisionNode', 'RecoveryCodeDisplayNode', 'RegisterLogoutWebhookNode', 'RemoveSessionPropertiesNode', 'RequiredAttributesDecisionNode', 'RetryLimitDecisionNode', 'ScriptedDecisionNode', 'SelectIdPNode', 'SessionDataNode', 'SetFailureUrlNode', 'SetPersistentCookieNode', 'SetSessionPropertiesNode', 'SetSuccessUrlNode', 'SocialFacebookNode', 'SocialGoogleNode', 'SocialNode', 'SocialOAuthIgnoreProfileNode', 'SocialOpenIdConnectNode', 'SocialProviderHandlerNode', 'TermsAndConditionsDecisionNode', 'TimeSinceDecisionNode', 'TimerStartNode', 'TimerStopNode', 'UsernameCollectorNode', 'ValidatedPasswordNode', 'ValidatedUsernameNode', 'WebAuthnAuthenticationNode', 'WebAuthnDeviceStorageNode', 'WebAuthnRegistrationNode', 'ZeroPageLoginNode', 'product-CertificateCollectorNode', 'product-CertificateUserExtractorNode', 'product-CertificateValidationNode', 'product-KerberosNode', 'product-ReCaptchaNode', 'product-Saml2Node', 'product-WriteFederationInformationNode'];
-const OOTB_NODE_TYPES_7_1 = ['PushRegistrationNode', 'GetAuthenticatorAppNode', 'MultiFactorRegistrationOptionsNode', 'OptOutMultiFactorAuthenticationNode'].concat(OOTB_NODE_TYPES_7);
-const OOTB_NODE_TYPES_7_2 = ['OathRegistrationNode', 'OathTokenVerifierNode', 'PassthroughAuthenticationNode', 'ConfigProviderNode', 'DebugNode'].concat(OOTB_NODE_TYPES_7_1);
-const OOTB_NODE_TYPES_6_5 = ['AbstractSocialAuthLoginNode', 'AccountLockoutNode', 'AgentDataStoreDecisionNode', 'AnonymousUserNode', 'AuthLevelDecisionNode', 'ChoiceCollectorNode', 'CookiePresenceDecisionNode', 'CreatePasswordNode', 'DataStoreDecisionNode', 'InnerTreeEvaluatorNode', 'LdapDecisionNode', 'MessageNode', 'MetadataNode', 'MeterNode', 'ModifyAuthLevelNode', 'OneTimePasswordCollectorDecisionNode', 'OneTimePasswordGeneratorNode', 'OneTimePasswordSmsSenderNode', 'OneTimePasswordSmtpSenderNode', 'PageNode', 'PasswordCollectorNode', 'PersistentCookieDecisionNode', 'PollingWaitNode', 'ProvisionDynamicAccountNode', 'ProvisionIdmAccountNode', 'PushAuthenticationSenderNode', 'PushResultVerifierNode', 'RecoveryCodeCollectorDecisionNode', 'RecoveryCodeDisplayNode', 'RegisterLogoutWebhookNode', 'RemoveSessionPropertiesNode', 'RetryLimitDecisionNode', 'ScriptedDecisionNode', 'SessionDataNode', 'SetFailureUrlNode', 'SetPersistentCookieNode', 'SetSessionPropertiesNode', 'SetSuccessUrlNode', 'SocialFacebookNode', 'SocialGoogleNode', 'SocialNode', 'SocialOAuthIgnoreProfileNode', 'SocialOpenIdConnectNode', 'TimerStartNode', 'TimerStopNode', 'UsernameCollectorNode', 'WebAuthnAuthenticationNode', 'WebAuthnRegistrationNode', 'ZeroPageLoginNode'];
-const OOTB_NODE_TYPES_6 = ['AbstractSocialAuthLoginNode', 'AccountLockoutNode', 'AgentDataStoreDecisionNode', 'AnonymousUserNode', 'AuthLevelDecisionNode', 'ChoiceCollectorNode', 'CookiePresenceDecisionNode', 'CreatePasswordNode', 'DataStoreDecisionNode', 'InnerTreeEvaluatorNode', 'LdapDecisionNode', 'MessageNode', 'MetadataNode', 'MeterNode', 'ModifyAuthLevelNode', 'OneTimePasswordCollectorDecisionNode', 'OneTimePasswordGeneratorNode', 'OneTimePasswordSmsSenderNode', 'OneTimePasswordSmtpSenderNode', 'PageNode', 'PasswordCollectorNode', 'PersistentCookieDecisionNode', 'PollingWaitNode', 'ProvisionDynamicAccountNode', 'ProvisionIdmAccountNode', 'PushAuthenticationSenderNode', 'PushResultVerifierNode', 'RecoveryCodeCollectorDecisionNode', 'RecoveryCodeDisplayNode', 'RegisterLogoutWebhookNode', 'RemoveSessionPropertiesNode', 'RetryLimitDecisionNode', 'ScriptedDecisionNode', 'SessionDataNode', 'SetFailureUrlNode', 'SetPersistentCookieNode', 'SetSessionPropertiesNode', 'SetSuccessUrlNode', 'SocialFacebookNode', 'SocialGoogleNode', 'SocialNode', 'SocialOAuthIgnoreProfileNode', 'SocialOpenIdConnectNode', 'TimerStartNode', 'TimerStopNode', 'UsernameCollectorNode', 'WebAuthnAuthenticationNode', 'WebAuthnRegistrationNode', 'ZeroPageLoginNode'];
 /**
  * Analyze if a journey contains any custom nodes considering the detected or the overridden version.
- * @param {Object} journey Journey/tree configuration object
+ * @param {SingleJourneyExportTemplate} journey Journey/tree configuration object
  * @returns {boolean} True if the journey/tree contains any custom nodes, false otherwise.
  */
 
-export async function isCustom(journey) {
-  let ootbNodeTypes = [];
-  const nodeList = journey.nodes;
-
-  switch (storage.session.getAmVersion()) {
-    case '7.1.0':
-      ootbNodeTypes = OOTB_NODE_TYPES_7_1.slice(0);
-      break;
-
-    case '7.2.0':
-      ootbNodeTypes = OOTB_NODE_TYPES_7_2.slice(0);
-      break;
-
-    case '7.0.0':
-    case '7.0.1':
-    case '7.0.2':
-      ootbNodeTypes = OOTB_NODE_TYPES_7.slice(0);
-      break;
-
-    case '6.5.3':
-    case '6.5.2.3':
-    case '6.5.2.2':
-    case '6.5.2.1':
-    case '6.5.2':
-    case '6.5.1':
-    case '6.5.0.2':
-    case '6.5.0.1':
-      ootbNodeTypes = OOTB_NODE_TYPES_6_5.slice(0);
-      break;
-
-    case '6.0.0.7':
-    case '6.0.0.6':
-    case '6.0.0.5':
-    case '6.0.0.4':
-    case '6.0.0.3':
-    case '6.0.0.2':
-    case '6.0.0.1':
-    case '6.0.0':
-      ootbNodeTypes = OOTB_NODE_TYPES_6.slice(0);
-      break;
-
-    default:
+export function isCustomJourney(journey) {
+  const nodeList = Object.values(journey.nodes).concat(Object.values(journey.innerNodes));
+
+  for (const node of nodeList) {
+    if (isCustomNode(node['_type']['_id'])) {
       return true;
+    }
   }
 
-  const results = [];
+  return false;
+}
+/**
+ * Analyze if a journey contains any premium nodes considering the detected or the overridden version.
+ * @param {SingleJourneyExportTemplate} journey Journey/tree configuration object
+ * @returns {boolean} True if the journey/tree contains any custom nodes, false otherwise.
+ */
 
-  for (const node in nodeList) {
-    if ({}.hasOwnProperty.call(nodeList, node)) {
-      if (!ootbNodeTypes.includes(nodeList[node].nodeType)) {
-        return true;
-      }
+export function isPremiumJourney(journey) {
+  const nodeList = Object.values(journey.nodes).concat(Object.values(journey.innerNodes));
 
-      if (containerNodes.includes(nodeList[node].nodeType)) {
-        results.push(await getNode(node, nodeList[node].nodeType));
-      }
+  for (const node of nodeList) {
+    if (isPremiumNode(node['_type']['_id'])) {
+      return true;
     }
   }
 
-  const pageNodes = await Promise.all(results);
-  let custom = false;
+  return false;
+}
+/**
+ * Analyze if a journey contains any cloud-only nodes considering the detected or the overridden version.
+ * @param {SingleJourneyExportTemplate} journey Journey/tree configuration object
+ * @returns {boolean} True if the journey/tree contains any cloud-only nodes, false otherwise.
+ */
 
-  for (const pageNode of pageNodes) {
-    if (pageNode != null) {
-      for (const pnode of pageNode.nodes) {
-        if (!ootbNodeTypes.includes(pnode.nodeType)) {
-          custom = true;
-        }
-      }
-    } else {
-      printMessage(`isCustom ERROR: can't get ${nodeList[pageNode].nodeType} with id ${pageNode} in ${journey._id}`, 'error');
-      custom = false;
+export function isCloudOnlyJourney(journey) {
+  const nodeList = Object.values(journey.nodes).concat(Object.values(journey.innerNodes));
+
+  for (const node of nodeList) {
+    if (isCloudOnlyNode(node['_type']['_id'])) {
+      return true;
     }
   }
 
-  return custom;
+  return false;
+}
+/**
+ * Get a journey's classifications, which can be one or multiple of:
+ * - standard: can run on any instance of a ForgeRock platform
+ * - cloud: utilize nodes, which are exclusively available in the ForgeRock Identity Cloud
+ * - premium: utilizes nodes, which come at a premium
+ * @param {SingleJourneyExportTemplate} journey journey export data
+ * @returns {string[]} an array of one or multiple classifications
+ */
+
+export function getJourneyClassification(journey) {
+  const classifications = [];
+  const premium = isPremiumJourney(journey);
+  const custom = isCustomJourney(journey);
+  const cloud = isCloudOnlyJourney(journey);
+
+  if (custom) {
+    classifications.push('custom');
+  } else if (cloud) {
+    classifications.push('cloud');
+  } else {
+    classifications.push('standard');
+  }
+
+  if (premium) classifications.push('premium');
+  return classifications;
 }
 /**
  * List all the journeys/trees
@@ -1394,39 +1406,47 @@ export async function isCustom(journey) {
 
 export async function listJourneys(long = false, analyze = false) {
   let journeys = [];
+  journeys = await getJourneys();
 
-  try {
-    journeys = (await getTrees()).result;
-  } catch (error) {
-    printMessage(`${error.message}`, 'error');
-    printMessage(error.response.data, 'error');
-  }
+  if (!long && !analyze) {
+    for (const journeyStub of journeys) {
+      printMessage(`${journeyStub['_id']}`, 'data');
+    }
+  } else {
+    if (!analyze) {
+      const table = createTable(['Name', 'Status', 'Tags']);
 
-  journeys.sort((a, b) => a._id.localeCompare(b._id));
-  let customTrees = Array(journeys.length).fill(false);
+      for (const journeyStub of journeys) {
+        var _journeyStub$uiConfig;
 
-  if (analyze) {
-    const results = [];
+        table.push([`${journeyStub._id}`, journeyStub.enabled === false ? 'disabled'['brightRed'] : 'enabled'['brightGreen'], (_journeyStub$uiConfig = journeyStub.uiConfig) !== null && _journeyStub$uiConfig !== void 0 && _journeyStub$uiConfig.categories ? wordwrap(JSON.parse(journeyStub.uiConfig.categories).join(', '), 60) : '']);
+      }
 
-    for (const journey of journeys) {
-      results.push(isCustom(journey));
-    }
+      printMessage(table.toString(), 'data');
+    } else {
+      createProgressIndicator(0, 'Retrieving details of all journeys...', 'indeterminate');
+      const exportPromises = [];
+
+      for (const journeyStub of journeys) {
+        exportPromises.push(exportJourney(journeyStub['_id'], {
+          useStringArrays: false,
+          deps: false,
+          verbose: false
+        }));
+      }
 
-    customTrees = await Promise.all(results);
-  }
+      const journeyExports = await Promise.all(exportPromises);
+      stopProgressIndicator('Retrieved details of all journeys.', 'success');
+      const table = createTable(['Name', 'Status', 'Classification', 'Tags']);
 
-  if (!long) {
-    for (const [i, journey] of journeys.entries()) {
-      printMessage(`${customTrees[i] ? '*' : ''}${journey._id}`, 'data');
-    }
-  } else {
-    const table = createTable(['Name'['brightCyan'], 'Status'['brightCyan'], 'Tags'['brightCyan']]);
+      for (const journeyExport of journeyExports) {
+        var _journeyExport$tree$u;
 
-    for (const [i, journey] of journeys.entries()) {
-      table.push([`${customTrees[i] ? '*'['brightRed'] : ''}${journey._id}`, journey.enabled === false ? 'disabled'['brightRed'] : 'enabled'['brightGreen'], journey.uiConfig && journey.uiConfig.categories ? wordwrap(JSON.parse(journey.uiConfig.categories).join(', '), 60) : '']);
-    }
+        table.push([`${journeyExport.tree._id}`, journeyExport.tree.enabled === false ? 'disabled'['brightRed'] : 'enabled'['brightGreen'], getJourneyClassification(journeyExport).join(', '), (_journeyExport$tree$u = journeyExport.tree.uiConfig) !== null && _journeyExport$tree$u !== void 0 && _journeyExport$tree$u.categories ? wordwrap(JSON.parse(journeyExport.tree.uiConfig.categories).join(', '), 60) : '']);
+      }
 
-    printMessage(table.toString(), 'data');
+      printMessage(table.toString(), 'data');
+    }
   }
 
   return journeys;

package/esm/ops/NodeOps.mjs

@@ -0,0 +1,294 @@
+import _ from 'lodash';
+import storage from '../storage/SessionStorage';
+import { getNode, deleteNode, getNodeTypes, getNodesByType } from '../api/NodeApi';
+import { getTrees } from '../api/TreeApi';
+import { printMessage, createProgressIndicator, updateProgressIndicator, stopProgressIndicator } from './utils/Console';
+import { getProviderByLocationAndId, getProviderMetadata } from '../api/Saml2Api';
+import { encodeBase64Url } from '../api/utils/Base64';
+const containerNodes = ['PageNode', 'CustomPageNode'];
+const scriptedNodes = ['ConfigProviderNode', 'ScriptedDecisionNode', 'ClientScriptNode', 'SocialProviderHandlerNode', 'CustomScriptNode'];
+const emailTemplateNodes = ['EmailSuspendNode', 'EmailTemplateNode'];
+const emptyScriptPlaceholder = '[Empty]';
+/**
+ * Helper to get all SAML2 dependencies for a given node object
+ * @param {Object} nodeObject node object
+ * @param {[Object]} allProviders array of all saml2 providers objects
+ * @param {[Object]} allCirclesOfTrust array of all circle of trust objects
+ * @returns {Promise} a promise that resolves to an object containing a saml2 dependencies
+ */
+
+async function getSaml2NodeDependencies(nodeObject, allProviders, allCirclesOfTrust) {
+  const samlProperties = ['metaAlias', 'idpEntityId'];
+  const saml2EntityPromises = [];
+
+  for (const samlProperty of samlProperties) {
+    // In the following line nodeObject[samlProperty] will look like '/alpha/iSPAzure'.
+    const entityId = samlProperty === 'metaAlias' ? _.last(nodeObject[samlProperty].split('/')) : nodeObject[samlProperty];
+
+    const entity = _.find(allProviders, {
+      entityId
+    });
+
+    if (entity) {
+      try {
+        const providerResponse = await getProviderByLocationAndId(entity.location, entity._id);
+        /**
+         * Adding entityLocation here to the entityResponse because the import tool
+         * needs to know whether the saml2 entity is remote or not (this will be removed
+         * from the config before importing see updateSaml2Entity and createSaml2Entity functions).
+         * Importing a remote saml2 entity is a slightly different request (see createSaml2Entity).
+         */
+
+        providerResponse.entityLocation = entity.location;
+
+        if (entity.location === 'remote') {
+          // get the xml representation of this entity and add it to the entityResponse;
+          const metaDataResponse = await getProviderMetadata(providerResponse.entityId);
+          providerResponse.base64EntityXML = encodeBase64Url(metaDataResponse);
+        }
+
+        saml2EntityPromises.push(providerResponse);
+      } catch (error) {
+        printMessage(error.message, 'error');
+      }
+    }
+  }
+
+  try {
+    const saml2EntitiesPromisesResults = await Promise.all(saml2EntityPromises);
+    const saml2Entities = [];
+
+    for (const saml2Entity of saml2EntitiesPromisesResults) {
+      if (saml2Entity) {
+        saml2Entities.push(saml2Entity);
+      }
+    }
+
+    const samlEntityIds = _.map(saml2Entities, saml2EntityConfig => `${saml2EntityConfig.entityId}|saml2`);
+
+    const circlesOfTrust = _.filter(allCirclesOfTrust, circleOfTrust => {
+      let hasEntityId = false;
+
+      for (const trustedProvider of circleOfTrust.trustedProviders) {
+        if (!hasEntityId && samlEntityIds.includes(trustedProvider)) {
+          hasEntityId = true;
+        }
+      }
+
+      return hasEntityId;
+    });
+
+    const saml2NodeDependencies = {
+      saml2Entities,
+      circlesOfTrust
+    };
+    return saml2NodeDependencies;
+  } catch (error) {
+    printMessage(error.message, 'error');
+    const saml2NodeDependencies = {
+      saml2Entities: [],
+      circlesOfTrust: []
+    };
+    return saml2NodeDependencies;
+  }
+} // export async function getTreeNodes(treeObject) {
+//   const nodeList = Object.entries(treeObject.nodes);
+//   const results = await Promise.allSettled(
+//     nodeList.map(
+//       async ([nodeId, nodeInfo]) => await getNode(nodeId, nodeInfo['nodeType'])
+//     )
+//   );
+//   const nodes = results.filter((r) => r.status === 'fulfilled');
+//   nodes.map((f) => {
+//     return f.status;
+//   });
+//   const failedList = results.filter((r) => r.status === 'rejected');
+//   return nodes;
+// }
+
+/**
+ * Find all node configuration objects that are no longer referenced by any tree
+ * @returns {Promise<unknown[]>} a promise that resolves to an array of orphaned nodes
+ */
+
+
+export async function findOrphanedNodes() {
+  const allNodes = [];
+  const orphanedNodes = [];
+  let types = [];
+  const allJourneys = (await getTrees()).result;
+  let errorMessage = '';
+  const errorTypes = [];
+  createProgressIndicator(undefined, `Counting total nodes...`, 'indeterminate');
+
+  try {
+    types = (await getNodeTypes()).result;
+  } catch (error) {
+    printMessage('Error retrieving all available node types:', 'error');
+    printMessage(error.response.data, 'error');
+    return [];
+  }
+
+  for (const type of types) {
+    try {
+      // eslint-disable-next-line no-await-in-loop, no-loop-func
+      const nodes = (await getNodesByType(type._id)).result;
+
+      for (const node of nodes) {
+        allNodes.push(node);
+        updateProgressIndicator(`${allNodes.length} total nodes${errorMessage}`);
+      }
+    } catch (error) {
+      errorTypes.push(type._id);
+      errorMessage = ` (Skipped type(s): ${errorTypes})`['yellow'];
+      updateProgressIndicator(`${allNodes.length} total nodes${errorMessage}`);
+    }
+  }
+
+  if (errorTypes.length > 0) {
+    stopProgressIndicator(`${allNodes.length} total nodes${errorMessage}`, 'warn');
+  } else {
+    stopProgressIndicator(`${allNodes.length} total nodes`, 'success');
+  }
+
+  createProgressIndicator(undefined, 'Counting active nodes...', 'indeterminate');
+  const activeNodes = [];
+
+  for (const journey of allJourneys) {
+    for (const nodeId in journey.nodes) {
+      if ({}.hasOwnProperty.call(journey.nodes, nodeId)) {
+        activeNodes.push(nodeId);
+        updateProgressIndicator(`${activeNodes.length} active nodes`);
+        const node = journey.nodes[nodeId];
+
+        if (containerNodes.includes(node.nodeType)) {
+          const containerNode = await getNode(nodeId, node.nodeType);
+
+          for (const innerNode of containerNode.nodes) {
+            activeNodes.push(innerNode._id);
+            updateProgressIndicator(`${activeNodes.length} active nodes`);
+          }
+        }
+      }
+    }
+  }
+
+  stopProgressIndicator(`${activeNodes.length} active nodes`, 'success');
+  createProgressIndicator(undefined, 'Calculating orphaned nodes...', 'indeterminate');
+  const diff = allNodes.filter(x => !activeNodes.includes(x._id));
+
+  for (const orphanedNode of diff) {
+    orphanedNodes.push(orphanedNode);
+  }
+
+  stopProgressIndicator(`${orphanedNodes.length} orphaned nodes`, 'success');
+  return orphanedNodes;
+}
+/**
+ * Remove orphaned nodes
+ * @param {[Object]} orphanedNodes Pass in an array of orphaned node configuration objects to remove
+ * @returns {Promise<unknown[]>} a promise that resolves to an array nodes that encountered errors deleting
+ */
+
+export async function removeOrphanedNodes(orphanedNodes) {
+  const errorNodes = [];
+  createProgressIndicator(orphanedNodes.length, 'Removing orphaned nodes...');
+
+  for (const node of orphanedNodes) {
+    updateProgressIndicator(`Removing ${node['_id']}...`);
+
+    try {
+      // eslint-disable-next-line no-await-in-loop
+      await deleteNode(node['_id'], node['_type']['_id']);
+    } catch (deleteError) {
+      errorNodes.push(node);
+      printMessage(` ${deleteError}`, 'error');
+    }
+  }
+
+  stopProgressIndicator(`Removed ${orphanedNodes.length} orphaned nodes.`);
+  return errorNodes;
+}
+const OOTB_NODE_TYPES_7 = ['AcceptTermsAndConditionsNode', 'AccountActiveDecisionNode', 'AccountLockoutNode', 'AgentDataStoreDecisionNode', 'AnonymousSessionUpgradeNode', 'AnonymousUserNode', 'AttributeCollectorNode', 'AttributePresentDecisionNode', 'AttributeValueDecisionNode', 'AuthLevelDecisionNode', 'ChoiceCollectorNode', 'ConsentNode', 'CookiePresenceDecisionNode', 'CreateObjectNode', 'CreatePasswordNode', 'DataStoreDecisionNode', 'DeviceGeoFencingNode', 'DeviceLocationMatchNode', 'DeviceMatchNode', 'DeviceProfileCollectorNode', 'DeviceSaveNode', 'DeviceTamperingVerificationNode', 'DisplayUserNameNode', 'EmailSuspendNode', 'EmailTemplateNode', 'IdentifyExistingUserNode', 'IncrementLoginCountNode', 'InnerTreeEvaluatorNode', 'IotAuthenticationNode', 'IotRegistrationNode', 'KbaCreateNode', 'KbaDecisionNode', 'KbaVerifyNode', 'LdapDecisionNode', 'LoginCountDecisionNode', 'MessageNode', 'MetadataNode', 'MeterNode', 'ModifyAuthLevelNode', 'OneTimePasswordCollectorDecisionNode', 'OneTimePasswordGeneratorNode', 'OneTimePasswordSmsSenderNode', 'OneTimePasswordSmtpSenderNode', 'PageNode', 'PasswordCollectorNode', 'PatchObjectNode', 'PersistentCookieDecisionNode', 'PollingWaitNode', 'ProfileCompletenessDecisionNode', 'ProvisionDynamicAccountNode', 'ProvisionIdmAccountNode', 'PushAuthenticationSenderNode', 'PushResultVerifierNode', 'QueryFilterDecisionNode', 'RecoveryCodeCollectorDecisionNode', 'RecoveryCodeDisplayNode', 'RegisterLogoutWebhookNode', 'RemoveSessionPropertiesNode', 'RequiredAttributesDecisionNode', 'RetryLimitDecisionNode', 'ScriptedDecisionNode', 'SelectIdPNode', 'SessionDataNode', 'SetFailureUrlNode', 'SetPersistentCookieNode', 'SetSessionPropertiesNode', 'SetSuccessUrlNode', 'SocialFacebookNode', 'SocialGoogleNode', 'SocialNode', 'SocialOAuthIgnoreProfileNode', 'SocialOpenIdConnectNode', 'SocialProviderHandlerNode', 'TermsAndConditionsDecisionNode', 'TimeSinceDecisionNode', 'TimerStartNode', 'TimerStopNode', 'UsernameCollectorNode', 'ValidatedPasswordNode', 'ValidatedUsernameNode', 'WebAuthnAuthenticationNode', 'WebAuthnDeviceStorageNode', 'WebAuthnRegistrationNode', 'ZeroPageLoginNode', 'product-CertificateCollectorNode', 'product-CertificateUserExtractorNode', 'product-CertificateValidationNode', 'product-KerberosNode', 'product-ReCaptchaNode', 'product-Saml2Node', 'product-WriteFederationInformationNode'];
+const OOTB_NODE_TYPES_7_1 = ['PushRegistrationNode', 'GetAuthenticatorAppNode', 'MultiFactorRegistrationOptionsNode', 'OptOutMultiFactorAuthenticationNode'].concat(OOTB_NODE_TYPES_7);
+const OOTB_NODE_TYPES_7_2 = ['OathRegistrationNode', 'OathTokenVerifierNode', 'PassthroughAuthenticationNode', 'ConfigProviderNode', 'DebugNode'].concat(OOTB_NODE_TYPES_7_1);
+const OOTB_NODE_TYPES_7_3 = [].concat(OOTB_NODE_TYPES_7_2);
+const OOTB_NODE_TYPES_6_5 = ['AbstractSocialAuthLoginNode', 'AccountLockoutNode', 'AgentDataStoreDecisionNode', 'AnonymousUserNode', 'AuthLevelDecisionNode', 'ChoiceCollectorNode', 'CookiePresenceDecisionNode', 'CreatePasswordNode', 'DataStoreDecisionNode', 'InnerTreeEvaluatorNode', 'LdapDecisionNode', 'MessageNode', 'MetadataNode', 'MeterNode', 'ModifyAuthLevelNode', 'OneTimePasswordCollectorDecisionNode', 'OneTimePasswordGeneratorNode', 'OneTimePasswordSmsSenderNode', 'OneTimePasswordSmtpSenderNode', 'PageNode', 'PasswordCollectorNode', 'PersistentCookieDecisionNode', 'PollingWaitNode', 'ProvisionDynamicAccountNode', 'ProvisionIdmAccountNode', 'PushAuthenticationSenderNode', 'PushResultVerifierNode', 'RecoveryCodeCollectorDecisionNode', 'RecoveryCodeDisplayNode', 'RegisterLogoutWebhookNode', 'RemoveSessionPropertiesNode', 'RetryLimitDecisionNode', 'ScriptedDecisionNode', 'SessionDataNode', 'SetFailureUrlNode', 'SetPersistentCookieNode', 'SetSessionPropertiesNode', 'SetSuccessUrlNode', 'SocialFacebookNode', 'SocialGoogleNode', 'SocialNode', 'SocialOAuthIgnoreProfileNode', 'SocialOpenIdConnectNode', 'TimerStartNode', 'TimerStopNode', 'UsernameCollectorNode', 'WebAuthnAuthenticationNode', 'WebAuthnRegistrationNode', 'ZeroPageLoginNode'];
+const OOTB_NODE_TYPES_6 = ['AbstractSocialAuthLoginNode', 'AccountLockoutNode', 'AgentDataStoreDecisionNode', 'AnonymousUserNode', 'AuthLevelDecisionNode', 'ChoiceCollectorNode', 'CookiePresenceDecisionNode', 'CreatePasswordNode', 'DataStoreDecisionNode', 'InnerTreeEvaluatorNode', 'LdapDecisionNode', 'MessageNode', 'MetadataNode', 'MeterNode', 'ModifyAuthLevelNode', 'OneTimePasswordCollectorDecisionNode', 'OneTimePasswordGeneratorNode', 'OneTimePasswordSmsSenderNode', 'OneTimePasswordSmtpSenderNode', 'PageNode', 'PasswordCollectorNode', 'PersistentCookieDecisionNode', 'PollingWaitNode', 'ProvisionDynamicAccountNode', 'ProvisionIdmAccountNode', 'PushAuthenticationSenderNode', 'PushResultVerifierNode', 'RecoveryCodeCollectorDecisionNode', 'RecoveryCodeDisplayNode', 'RegisterLogoutWebhookNode', 'RemoveSessionPropertiesNode', 'RetryLimitDecisionNode', 'ScriptedDecisionNode', 'SessionDataNode', 'SetFailureUrlNode', 'SetPersistentCookieNode', 'SetSessionPropertiesNode', 'SetSuccessUrlNode', 'SocialFacebookNode', 'SocialGoogleNode', 'SocialNode', 'SocialOAuthIgnoreProfileNode', 'SocialOpenIdConnectNode', 'TimerStartNode', 'TimerStopNode', 'UsernameCollectorNode', 'WebAuthnAuthenticationNode', 'WebAuthnRegistrationNode', 'ZeroPageLoginNode'];
+const CLOUD_ONLY_NODE_TYPES = ['IdentityStoreDecisionNode'];
+const PREMIUM_NODE_TYPES = ['AutonomousAccessSignalNode', 'AutonomousAccessDecisionNode', 'AutonomousAccessResultNode'];
+/**
+ * Analyze if a node is a premium node.
+ * @param {string} nodeType Node type
+ * @returns {boolean} True if the node type is premium, false otherwise.
+ */
+
+export function isPremiumNode(nodeType) {
+  return PREMIUM_NODE_TYPES.includes(nodeType);
+}
+/**
+ * Analyze if a node is a cloud-only node.
+ * @param {string} nodeType Node type
+ * @returns {boolean} True if the node type is cloud-only, false otherwise.
+ */
+
+export function isCloudOnlyNode(nodeType) {
+  return CLOUD_ONLY_NODE_TYPES.includes(nodeType);
+}
+/**
+ * Analyze if a node is custom.
+ * @param {string} nodeType Node type
+ * @returns {boolean} True if the node type is custom, false otherwise.
+ */
+
+export function isCustomNode(nodeType) {
+  let ootbNodeTypes = [];
+
+  switch (storage.session.getAmVersion()) {
+    case '7.1.0':
+      ootbNodeTypes = OOTB_NODE_TYPES_7_1.slice(0);
+      break;
+
+    case '7.2.0':
+      ootbNodeTypes = OOTB_NODE_TYPES_7_2.slice(0);
+      break;
+
+    case '7.3.0':
+      ootbNodeTypes = OOTB_NODE_TYPES_7_3.slice(0);
+      break;
+
+    case '7.0.0':
+    case '7.0.1':
+    case '7.0.2':
+      ootbNodeTypes = OOTB_NODE_TYPES_7.slice(0);
+      break;
+
+    case '6.5.3':
+    case '6.5.2.3':
+    case '6.5.2.2':
+    case '6.5.2.1':
+    case '6.5.2':
+    case '6.5.1':
+    case '6.5.0.2':
+    case '6.5.0.1':
+      ootbNodeTypes = OOTB_NODE_TYPES_6_5.slice(0);
+      break;
+
+    case '6.0.0.7':
+    case '6.0.0.6':
+    case '6.0.0.5':
+    case '6.0.0.4':
+    case '6.0.0.3':
+    case '6.0.0.2':
+    case '6.0.0.1':
+    case '6.0.0':
+      ootbNodeTypes = OOTB_NODE_TYPES_6.slice(0);
+      break;
+
+    default:
+      return true;
+  }
+
+  return !ootbNodeTypes.includes(nodeType) && !isPremiumNode(nodeType) && !isCloudOnlyNode(nodeType);
+}
+//# sourceMappingURL=NodeOps.js.map