npm - @rockcarver/frodo-lib - Versions diffs - 0.16.2-9 → 0.17.0 - Mend

@rockcarver/frodo-lib 0.16.2-9 → 0.17.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (355) hide show

package/CHANGELOG.md +217 -1
package/cjs/api/AgentApi.js +14 -61
package/cjs/api/AgentApi.js.map +1 -1
package/cjs/api/AgentApi.test.js.map +1 -1
package/cjs/api/ApiTypes.js +0 -5
package/cjs/api/ApiTypes.js.map +1 -1
package/cjs/api/AuthenticateApi.js +9 -20
package/cjs/api/AuthenticateApi.js.map +1 -1
package/cjs/api/AuthenticateApi.test.js.map +1 -0
package/cjs/api/BaseApi.js +82 -124
package/cjs/api/BaseApi.js.map +1 -1
package/cjs/api/CirclesOfTrustApi.js +8 -32
package/cjs/api/CirclesOfTrustApi.js.map +1 -1
package/cjs/api/IdmConfigApi.js +9 -34
package/cjs/api/IdmConfigApi.js.map +1 -1
package/cjs/api/LogApi.js +8 -31
package/cjs/api/LogApi.js.map +1 -1
package/cjs/api/ManagedObjectApi.js +34 -31
package/cjs/api/ManagedObjectApi.js.map +1 -1
package/cjs/api/NodeApi.js +10 -41
package/cjs/api/NodeApi.js.map +1 -1
package/cjs/api/NodeApi.test.js.map +1 -1
package/cjs/api/OAuth2ClientApi.js +7 -26
package/cjs/api/OAuth2ClientApi.js.map +1 -1
package/cjs/api/OAuth2OIDCApi.js +28 -34
package/cjs/api/OAuth2OIDCApi.js.map +1 -1
package/cjs/api/OAuth2OIDCApi.test.js.map +1 -0
package/cjs/api/OAuth2ProviderApi.js +5 -15
package/cjs/api/OAuth2ProviderApi.js.map +1 -1
package/cjs/api/RealmApi.js +8 -34
package/cjs/api/RealmApi.js.map +1 -1
package/cjs/api/Saml2Api.js +16 -67
package/cjs/api/Saml2Api.js.map +1 -1
package/cjs/api/ScriptApi.js +8 -30
package/cjs/api/ScriptApi.js.map +1 -1
package/cjs/api/SecretsApi.js +14 -64
package/cjs/api/SecretsApi.js.map +1 -1
package/cjs/api/SecretsApi.test.js.map +1 -1
package/cjs/api/ServerInfoApi.js +6 -21
package/cjs/api/ServerInfoApi.js.map +1 -1
package/cjs/api/ServiceApi.js +49 -47
package/cjs/api/ServiceApi.js.map +1 -1
package/cjs/api/SocialIdentityProvidersApi.js +9 -36
package/cjs/api/SocialIdentityProvidersApi.js.map +1 -1
package/cjs/api/StartupApi.js +5 -24
package/cjs/api/StartupApi.js.map +1 -1
package/cjs/api/StartupApi.test.js.map +1 -1
package/cjs/api/TreeApi.js +8 -30
package/cjs/api/TreeApi.js.map +1 -1
package/cjs/api/TreeApi.test.js.map +1 -1
package/cjs/api/VariablesApi.js +9 -37
package/cjs/api/VariablesApi.js.map +1 -1
package/cjs/api/VariablesApi.test.js.map +1 -1
package/cjs/api/utils/ApiUtils.js +47 -57
package/cjs/api/utils/ApiUtils.js.map +1 -1
package/cjs/api/utils/ApiUtils.test.js.map +1 -1
package/cjs/api/utils/Base64.js +5 -15
package/cjs/api/utils/Base64.js.map +1 -1
package/cjs/ext/axios-curlirize/curlirize.js +2 -9
package/cjs/ext/axios-curlirize/curlirize.js.map +1 -1
package/cjs/ext/axios-curlirize/lib/CurlHelper.js +7 -22
package/cjs/ext/axios-curlirize/lib/CurlHelper.js.map +1 -1
package/cjs/index.js +30 -89
package/cjs/index.js.map +1 -1
package/cjs/ops/AdminOps.js +27 -165
package/cjs/ops/AdminOps.js.map +1 -1
package/cjs/ops/AgentOps.js +2 -159
package/cjs/ops/AgentOps.js.map +1 -1
package/cjs/ops/AgentOps.test.js.map +1 -1
package/cjs/ops/AuthenticateOps.js +265 -226
package/cjs/ops/AuthenticateOps.js.map +1 -1
package/cjs/ops/AuthenticateOps.test.js.map +1 -1
package/cjs/ops/CirclesOfTrustOps.js +13 -91
package/cjs/ops/CirclesOfTrustOps.js.map +1 -1
package/cjs/ops/ConnectionProfileOps.js +220 -136
package/cjs/ops/ConnectionProfileOps.js.map +1 -1
package/cjs/ops/ConnectionProfileOps.test.js.map +1 -1
package/cjs/ops/EmailTemplateOps.js +35 -379
package/cjs/ops/EmailTemplateOps.js.map +1 -1
package/cjs/ops/EmailTemplateOps.test.js.map +1 -1
package/cjs/ops/IdmOps.js +52 -426
package/cjs/ops/IdmOps.js.map +1 -1
package/cjs/ops/IdmOps.test.js.map +1 -1
package/cjs/ops/IdpOps.js +11 -94
package/cjs/ops/IdpOps.js.map +1 -1
package/cjs/ops/IdpOps.test.js.map +1 -1
package/cjs/ops/JoseOps.js +81 -0
package/cjs/ops/JoseOps.js.map +1 -0
package/cjs/ops/JoseOps.test.js.map +1 -0
package/cjs/ops/JourneyOps.js +139 -370
package/cjs/ops/JourneyOps.js.map +1 -1
package/cjs/ops/JourneyOps.test.js.map +1 -1
package/cjs/ops/LogOps.js +14 -47
package/cjs/ops/LogOps.js.map +1 -1
package/cjs/ops/ManagedObjectOps.js +4 -12
package/cjs/ops/ManagedObjectOps.js.map +1 -1
package/cjs/ops/NodeOps.js +9 -67
package/cjs/ops/NodeOps.js.map +1 -1
package/cjs/ops/OAuth2ClientOps.js +10 -40
package/cjs/ops/OAuth2ClientOps.js.map +1 -1
package/cjs/ops/OpsTypes.js +0 -5
package/cjs/ops/OpsTypes.js.map +1 -1
package/cjs/ops/OrganizationOps.js +6 -25
package/cjs/ops/OrganizationOps.js.map +1 -1
package/cjs/ops/RealmOps.js +0 -19
package/cjs/ops/RealmOps.js.map +1 -1
package/cjs/ops/Saml2Ops.js +11 -107
package/cjs/ops/Saml2Ops.js.map +1 -1
package/cjs/ops/Saml2Ops.test.js.map +1 -1
package/cjs/ops/ScriptOps.js +26 -73
package/cjs/ops/ScriptOps.js.map +1 -1
package/cjs/ops/SecretsOps.js +2 -58
package/cjs/ops/SecretsOps.js.map +1 -1
package/cjs/ops/ServiceAccountOps.js +61 -0
package/cjs/ops/ServiceAccountOps.js.map +1 -0
package/cjs/ops/ServiceAccountOps.test.js.map +1 -0
package/cjs/ops/ServiceOps.js +55 -101
package/cjs/ops/ServiceOps.js.map +1 -1
package/cjs/ops/StartupOps.js +2 -23
package/cjs/ops/StartupOps.js.map +1 -1
package/cjs/ops/ThemeOps.js +230 -436
package/cjs/ops/ThemeOps.js.map +1 -1
package/cjs/ops/ThemeOps.test.js.map +1 -0
package/cjs/ops/VariablesOps.js +0 -38
package/cjs/ops/VariablesOps.js.map +1 -1
package/cjs/ops/utils/Console.js +29 -62
package/cjs/ops/utils/Console.js.map +1 -1
package/cjs/ops/utils/DataProtection.js +13 -47
package/cjs/ops/utils/DataProtection.js.map +1 -1
package/cjs/ops/utils/DataProtection.test.js.map +1 -1
package/cjs/ops/utils/ExportImportUtils.js +36 -74
package/cjs/ops/utils/ExportImportUtils.js.map +1 -1
package/cjs/ops/utils/ExportImportUtils.test.js.map +1 -1
package/cjs/ops/utils/OpsUtils.js +27 -43
package/cjs/ops/utils/OpsUtils.js.map +1 -1
package/cjs/ops/utils/OpsUtils.test.js.map +1 -1
package/cjs/ops/utils/ValidationUtils.js +0 -13
package/cjs/ops/utils/ValidationUtils.js.map +1 -1
package/cjs/ops/utils/ValidationUtils.test.js.map +1 -1
package/cjs/ops/utils/Version.js +2 -12
package/cjs/ops/utils/Version.js.map +1 -1
package/cjs/ops/utils/Version.test.js.map +1 -1
package/cjs/ops/utils/Wordwrap.js +1 -2
package/cjs/ops/utils/Wordwrap.js.map +1 -1
package/cjs/ops/utils/Wordwrap.test.js.map +1 -0
package/cjs/shared/State.js +239 -0
package/cjs/shared/State.js.map +1 -0
package/cjs/shared/State.test.js.map +1 -0
package/cjs/storage/StaticStorage.js.map +1 -1
package/cjs/test/mocks/AuthenticateApi/step/default_steps.json +88 -0
package/cjs/test/mocks/ForgeRockApiMockEngine.js +161 -83
package/cjs/test/mocks/ForgeRockApiMockEngine.js.map +1 -1
package/cjs/test/mocks/IdmConfigApi/getConfigEntity/managed.json +4420 -0
package/cjs/test/mocks/OAuth2OIDCApi/accessToken/body.json +6 -0
package/cjs/test/mocks/OAuth2OIDCApi/accessToken/headers.json +19 -0
package/cjs/test/mocks/OAuth2OIDCApi/authorize/headers.json +38 -0
package/cjs/test/mocks/ServerInfoApi/getServerInfo/info.json +25 -0
package/cjs/test/mocks/ServerInfoApi/getServerVersionInfo/version.json +8 -0
package/cjs/utils/AutoSetupPolly.js +79 -0
package/cjs/utils/AutoSetupPolly.js.map +1 -0
package/cjs/utils/SetupJest.js +6 -0
package/cjs/utils/SetupJest.js.map +1 -0
package/cjs/{test/mocks → utils}/snapshotResolve.js +10 -12
package/cjs/utils/snapshotResolve.js.map +1 -0
package/esm/api/AgentApi.mjs +19 -21
package/esm/api/AgentApi.test.mjs +6 -15
package/esm/api/ApiTypes.mjs +0 -5
package/esm/api/AuthenticateApi.mjs +7 -10
package/esm/api/AuthenticateApi.test.mjs +39 -0
package/esm/api/BaseApi.mjs +96 -81
package/esm/api/CirclesOfTrustApi.mjs +9 -12
package/esm/api/IdmConfigApi.mjs +11 -12
package/esm/api/LogApi.mjs +6 -10
package/esm/api/ManagedObjectApi.mjs +23 -8
package/esm/api/NodeApi.mjs +13 -15
package/esm/api/NodeApi.test.mjs +13 -17
package/esm/api/OAuth2ClientApi.mjs +7 -9
package/esm/api/OAuth2OIDCApi.mjs +15 -9
package/esm/api/OAuth2OIDCApi.test.mjs +53 -0
package/esm/api/OAuth2ProviderApi.mjs +3 -5
package/esm/api/RealmApi.mjs +10 -13
package/esm/api/Saml2Api.mjs +25 -29
package/esm/api/ScriptApi.mjs +9 -11
package/esm/api/SecretsApi.mjs +21 -24
package/esm/api/SecretsApi.test.mjs +9 -31
package/esm/api/ServerInfoApi.mjs +5 -9
package/esm/api/ServiceApi.mjs +53 -26
package/esm/api/SocialIdentityProvidersApi.mjs +11 -13
package/esm/api/StartupApi.mjs +5 -10
package/esm/api/StartupApi.test.mjs +4 -7
package/esm/api/TreeApi.mjs +9 -11
package/esm/api/TreeApi.test.mjs +24 -61
package/esm/api/VariablesApi.mjs +11 -13
package/esm/api/VariablesApi.test.mjs +80 -222
package/esm/api/utils/ApiUtils.mjs +45 -48
package/esm/api/utils/ApiUtils.test.mjs +33 -32
package/esm/api/utils/Base64.mjs +5 -9
package/esm/ext/axios-curlirize/curlirize.mjs +2 -7
package/esm/ext/axios-curlirize/lib/CurlHelper.mjs +7 -20
package/esm/index.mjs +23 -13
package/esm/ops/AdminOps.mjs +33 -119
package/esm/ops/AgentOps.mjs +37 -80
package/esm/ops/AgentOps.test.mjs +5 -45
package/esm/ops/AuthenticateOps.mjs +241 -175
package/esm/ops/AuthenticateOps.test.mjs +7 -9
package/esm/ops/CirclesOfTrustOps.mjs +24 -61
package/esm/ops/ConnectionProfileOps.mjs +192 -82
package/esm/ops/ConnectionProfileOps.test.mjs +19 -19
package/esm/ops/EmailTemplateOps.mjs +18 -276
package/esm/ops/EmailTemplateOps.test.mjs +19 -44
package/esm/ops/IdmOps.mjs +30 -327
package/esm/ops/IdmOps.test.mjs +47 -54
package/esm/ops/IdpOps.mjs +21 -59
package/esm/ops/IdpOps.test.mjs +5 -5
package/esm/ops/JoseOps.mjs +41 -0
package/esm/ops/JoseOps.test.mjs +137 -0
package/esm/ops/JourneyOps.mjs +146 -289
package/esm/ops/JourneyOps.test.mjs +29 -27
package/esm/ops/LogOps.mjs +15 -25
package/esm/ops/ManagedObjectOps.mjs +6 -6
package/esm/ops/NodeOps.mjs +9 -47
package/esm/ops/OAuth2ClientOps.mjs +13 -19
package/esm/ops/OpsTypes.mjs +1 -3
package/esm/ops/OrganizationOps.mjs +7 -14
package/esm/ops/RealmOps.mjs +4 -7
package/esm/ops/Saml2Ops.mjs +28 -62
package/esm/ops/Saml2Ops.test.mjs +20 -23
package/esm/ops/ScriptOps.mjs +29 -47
package/esm/ops/SecretsOps.mjs +15 -31
package/esm/ops/ServiceAccountOps.mjs +41 -0
package/esm/ops/ServiceAccountOps.test.mjs +51 -0
package/esm/ops/ServiceOps.mjs +66 -83
package/esm/ops/StartupOps.mjs +4 -13
package/esm/ops/ThemeOps.mjs +189 -298
package/esm/{api/ThemeApi.test.mjs → ops/ThemeOps.test.mjs} +91 -96
package/esm/ops/VariablesOps.mjs +9 -18
package/esm/ops/utils/Console.mjs +28 -46
package/esm/ops/utils/DataProtection.mjs +15 -28
package/esm/ops/utils/DataProtection.test.mjs +8 -8
package/esm/ops/utils/ExportImportUtils.mjs +34 -43
package/esm/ops/utils/ExportImportUtils.test.mjs +20 -18
package/esm/ops/utils/OpsUtils.mjs +27 -21
package/esm/ops/utils/OpsUtils.test.mjs +155 -27
package/esm/ops/utils/ValidationUtils.mjs +0 -9
package/esm/ops/utils/Version.mjs +2 -3
package/esm/ops/utils/Version.test.mjs +0 -2
package/esm/ops/utils/Wordwrap.mjs +1 -1
package/esm/ops/utils/Wordwrap.test.mjs +19 -0
package/esm/shared/State.mjs +164 -0
package/esm/shared/State.test.mjs +249 -0
package/esm/test/mocks/AuthenticateApi/step/default_steps.json +88 -0
package/esm/test/mocks/ForgeRockApiMockEngine.mjs +147 -31
package/esm/test/mocks/IdmConfigApi/getConfigEntity/managed.json +4420 -0
package/esm/test/mocks/OAuth2OIDCApi/accessToken/body.json +6 -0
package/esm/test/mocks/OAuth2OIDCApi/accessToken/headers.json +19 -0
package/esm/test/mocks/OAuth2OIDCApi/authorize/headers.json +38 -0
package/esm/test/mocks/ServerInfoApi/getServerInfo/info.json +25 -0
package/esm/test/mocks/ServerInfoApi/getServerVersionInfo/version.json +8 -0
package/esm/utils/AutoSetupPolly.mjs +72 -0
package/esm/utils/SetupJest.mjs +3 -0
package/esm/{test/mocks → utils}/snapshotResolve.mjs +10 -12
package/package.json +36 -26
package/types/api/AgentApi.d.ts.map +1 -1
package/types/api/ApiTypes.d.ts +15 -16
package/types/api/ApiTypes.d.ts.map +1 -1
package/types/api/AuthenticateApi.d.ts +1 -1
package/types/api/AuthenticateApi.d.ts.map +1 -1
package/types/api/BaseApi.d.ts +2 -0
package/types/api/BaseApi.d.ts.map +1 -1
package/types/api/CirclesOfTrustApi.d.ts.map +1 -1
package/types/api/IdmConfigApi.d.ts.map +1 -1
package/types/api/LogApi.d.ts.map +1 -1
package/types/api/ManagedObjectApi.d.ts +9 -1
package/types/api/ManagedObjectApi.d.ts.map +1 -1
package/types/api/NodeApi.d.ts.map +1 -1
package/types/api/OAuth2ClientApi.d.ts.map +1 -1
package/types/api/OAuth2OIDCApi.d.ts +4 -2
package/types/api/OAuth2OIDCApi.d.ts.map +1 -1
package/types/api/OAuth2ProviderApi.d.ts.map +1 -1
package/types/api/RealmApi.d.ts.map +1 -1
package/types/api/Saml2Api.d.ts.map +1 -1
package/types/api/ScriptApi.d.ts.map +1 -1
package/types/api/SecretsApi.d.ts.map +1 -1
package/types/api/ServerInfoApi.d.ts.map +1 -1
package/types/api/ServiceApi.d.ts +14 -7
package/types/api/ServiceApi.d.ts.map +1 -1
package/types/api/SocialIdentityProvidersApi.d.ts.map +1 -1
package/types/api/StartupApi.d.ts.map +1 -1
package/types/api/TreeApi.d.ts.map +1 -1
package/types/api/VariablesApi.d.ts.map +1 -1
package/types/api/utils/ApiUtils.d.ts +1 -0
package/types/api/utils/ApiUtils.d.ts.map +1 -1
package/types/index.d.ts +11 -5
package/types/index.d.ts.map +1 -1
package/types/ops/AuthenticateOps.d.ts +10 -2
package/types/ops/AuthenticateOps.d.ts.map +1 -1
package/types/ops/ConnectionProfileOps.d.ts +49 -21
package/types/ops/ConnectionProfileOps.d.ts.map +1 -1
package/types/ops/EmailTemplateOps.d.ts +14 -33
package/types/ops/EmailTemplateOps.d.ts.map +1 -1
package/types/ops/IdmOps.d.ts +29 -37
package/types/ops/IdmOps.d.ts.map +1 -1
package/types/ops/JoseOps.d.ts +33 -0
package/types/ops/JoseOps.d.ts.map +1 -0
package/types/ops/JourneyOps.d.ts.map +1 -1
package/types/ops/LogOps.d.ts.map +1 -1
package/types/ops/NodeOps.d.ts.map +1 -1
package/types/ops/OAuth2ClientOps.d.ts.map +1 -1
package/types/ops/OpsTypes.d.ts +1 -1
package/types/ops/OpsTypes.d.ts.map +1 -1
package/types/ops/OrganizationOps.d.ts.map +1 -1
package/types/ops/ScriptOps.d.ts.map +1 -1
package/types/ops/ServiceAccountOps.d.ts +20 -0
package/types/ops/ServiceAccountOps.d.ts.map +1 -0
package/types/ops/ServiceOps.d.ts +18 -10
package/types/ops/ServiceOps.d.ts.map +1 -1
package/types/ops/ThemeOps.d.ts +35 -50
package/types/ops/ThemeOps.d.ts.map +1 -1
package/types/ops/utils/Console.d.ts +1 -1
package/types/ops/utils/Console.d.ts.map +1 -1
package/types/ops/utils/DataProtection.d.ts.map +1 -1
package/types/ops/utils/ExportImportUtils.d.ts +5 -2
package/types/ops/utils/ExportImportUtils.d.ts.map +1 -1
package/types/ops/utils/OpsUtils.d.ts +6 -0
package/types/ops/utils/OpsUtils.d.ts.map +1 -1
package/types/ops/utils/Wordwrap.d.ts.map +1 -1
package/types/shared/State.d.ts +223 -0
package/types/shared/State.d.ts.map +1 -0
package/types/test/mocks/ForgeRockApiMockEngine.d.ts +19 -1
package/types/test/mocks/ForgeRockApiMockEngine.d.ts.map +1 -1
package/types/utils/AutoSetupPolly.d.ts +1 -0
package/types/utils/AutoSetupPolly.d.ts.map +1 -0
package/types/utils/SetupJest.d.ts +1 -0
package/types/utils/SetupJest.d.ts.map +1 -0
package/types/utils/snapshotResolve.d.ts +1 -0
package/types/utils/snapshotResolve.d.ts.map +1 -0
package/cjs/api/EmailTemplateApi.js +0 -73
package/cjs/api/EmailTemplateApi.js.map +0 -1
package/cjs/api/ThemeApi.js +0 -367
package/cjs/api/ThemeApi.js.map +0 -1
package/cjs/api/ThemeApi.test.js.map +0 -1
package/cjs/storage/SessionStorage.js +0 -91
package/cjs/storage/SessionStorage.js.map +0 -1
package/cjs/test/mocks/snapshotResolve.js.map +0 -1
package/esm/api/EmailTemplateApi.mjs +0 -34
package/esm/api/ThemeApi.mjs +0 -271
package/esm/storage/SessionStorage.mjs +0 -79
package/types/api/EmailTemplateApi.d.ts +0 -22
package/types/api/EmailTemplateApi.d.ts.map +0 -1
package/types/api/ThemeApi.d.ts +0 -56
package/types/api/ThemeApi.d.ts.map +0 -1
package/types/storage/SessionStorage.d.ts +0 -71
package/types/storage/SessionStorage.d.ts.map +0 -1
package/types/test/mocks/snapshotResolve.d.ts +0 -1
package/types/test/mocks/snapshotResolve.d.ts.map +0 -1

package/esm/ops/AdminOps.mjs CHANGED Viewed

@@ -10,20 +10,19 @@ import { clientCredentialsGrant } from '../api/OAuth2OIDCApi';
 import { printMessage } from './utils/Console';
 import path from 'path';
 import { fileURLToPath } from 'url';
 const __dirname = path.dirname(fileURLToPath(import.meta.url));
 const OAUTH2_CLIENT = JSON.parse(fs.readFileSync(path.resolve(__dirname, './templates/OAuth2ClientTemplate.json'), 'utf8'));
 const GENERIC_EXTENSION_ATTRIBUTES = JSON.parse(fs.readFileSync(path.resolve(__dirname, './templates/cloud/GenericExtensionAttributesTemplate.json'), 'utf8'));
 const protectedClients = ['ui', 'idm-provisioning'];
 const protectedSubjects = ['amadmin', 'autoid-resource-server'];
-const privilegedScopes = ['am-introspect-all-tokens', 'fr:idm:*', 'fr:idc:esv:*']; // const privilegedUsers = ['openidm-admin'];
+const privilegedScopes = ['am-introspect-all-tokens', 'fr:idm:*', 'fr:idc:esv:*'];
+// const privilegedUsers = ['openidm-admin'];
 const privilegedRoles = ['internal/role/openidm-authorized', 'internal/role/openidm-admin'];
 const adminScopes = ['fr:idm:*', 'fr:idc:esv:*'];
 const adminDefaultScopes = ['fr:idm:*'];
 const adminRoles = ['internal/role/openidm-authorized', 'internal/role/openidm-admin'];
 const autoIdRoles = ['internal/role/platform-provisioning', 'internal/role/openidm-authorized', 'internal/role/openidm-admin'];
 /*
  * List all oauth2 clients, which have a corresponding staticUserMapping
  * in the IDM authentication.json:
@@ -49,7 +48,6 @@ const autoIdRoles = ['internal/role/platform-provisioning', 'internal/role/openi
     }
   }
  */
 export async function listOAuth2CustomClients() {
   let clients = (await getOAuth2Clients()).data.result;
   clients = clients.map(client => client._id).filter(client => !protectedClients.includes(client));
@@ -58,6 +56,7 @@ export async function listOAuth2CustomClients() {
   const adminClients = subjects.filter(subject => clients.includes(subject));
   return adminClients;
 }
 /*
  * List all oauth2 clients, which have the fr:idm:* scope and a
  * corresponding staticUserMapping in the IDM authentication.json
@@ -80,12 +79,10 @@ export async function listOAuth2CustomClients() {
     }
   }
  */
 export async function listOAuth2AdminClients() {
   let clients = (await getOAuth2Clients()).data.result;
   clients = clients.filter(client => {
     let isPrivileged = false;
     if (client.coreOAuth2ClientConfig.scopes) {
       client.coreOAuth2ClientConfig.scopes.forEach(scope => {
         if (privilegedScopes.includes(scope)) {
@@ -93,13 +90,11 @@ export async function listOAuth2AdminClients() {
         }
       });
     }
     return isPrivileged;
   }).map(client => client._id).filter(client => !protectedClients.includes(client));
   const authentication = await getConfigEntity('authentication');
   const subjects = authentication.rsFilter.staticUserMapping.filter(mapping => {
     let isPrivileged = false;
     if (mapping.roles) {
       mapping.roles.forEach(role => {
         if (privilegedRoles.includes(role)) {
@@ -107,12 +102,12 @@ export async function listOAuth2AdminClients() {
         }
       });
     }
     return isPrivileged;
   }).map(mapping => mapping.subject).filter(subject => !protectedSubjects.includes(subject));
   const adminClients = subjects.filter(subject => clients.includes(subject));
   return adminClients;
 }
 /*
  * List all static user mappings that are not oauth2 clients in authentication.json
  * and are assigned admin privileges:
@@ -154,14 +149,12 @@ export async function listOAuth2AdminClients() {
     }
   }
  */
 export async function listNonOAuth2AdminStaticUserMappings(showProtected) {
   let clients = (await getOAuth2Clients()).data.result;
   clients = clients.map(client => client._id).filter(client => !protectedClients.includes(client));
   const authentication = await getConfigEntity('authentication');
   let subjects = authentication.rsFilter.staticUserMapping.filter(mapping => {
     let isPrivileged = false;
     if (mapping.roles) {
       mapping.roles.forEach(role => {
         if (privilegedRoles.includes(role)) {
@@ -169,45 +162,35 @@ export async function listNonOAuth2AdminStaticUserMappings(showProtected) {
         }
       });
     }
     return isPrivileged;
   }).map(mapping => mapping.subject);
   if (!showProtected) {
     subjects = subjects.filter(subject => !protectedSubjects.includes(subject));
   }
   const adminSubjects = subjects.filter(subject => !clients.includes(subject));
   return adminSubjects;
 }
 async function getDynamicClientRegistrationScope() {
   const provider = (await getOAuth2Provider()).data;
   return provider.clientDynamicRegistrationConfig.dynamicClientRegistrationScope;
 }
 async function addAdminScopes(clientId, client) {
   const modClient = client;
   const allAdminScopes = adminScopes.concat([await getDynamicClientRegistrationScope()]);
   let addScopes = [];
   if (modClient.coreOAuth2ClientConfig.scopes && modClient.coreOAuth2ClientConfig.scopes.value) {
     addScopes = allAdminScopes.filter(scope => {
       let add = false;
       if (!modClient.coreOAuth2ClientConfig.scopes.value.includes(scope)) {
         add = true;
       }
       return add;
     });
     modClient.coreOAuth2ClientConfig.scopes.value = modClient.coreOAuth2ClientConfig.scopes.value.concat(addScopes);
   } else {
     modClient.coreOAuth2ClientConfig.scopes.value = allAdminScopes;
   }
   let addDefaultScope = false;
   if (modClient.coreOAuth2ClientConfig.defaultScopes && modClient.coreOAuth2ClientConfig.defaultScopes.value) {
     if (modClient.coreOAuth2ClientConfig.defaultScopes.value.length === 0) {
       addDefaultScope = true;
@@ -216,20 +199,16 @@ async function addAdminScopes(clientId, client) {
       printMessage(`Client "${clientId}" already has default scopes configured, not adding admin default scope.`);
     }
   }
   if (addScopes.length > 0 || addDefaultScope) {
     printMessage(`Adding admin scopes to client "${clientId}"...`);
   } else {
     printMessage(`Client "${clientId}" already has admin scopes.`);
   }
   return modClient;
 }
 function addClientCredentialsGrantType(clientId, client) {
   const modClient = client;
   let modified = false;
   if (modClient.advancedOAuth2ClientConfig.grantTypes && modClient.advancedOAuth2ClientConfig.grantTypes.value) {
     if (!modClient.advancedOAuth2ClientConfig.grantTypes.value.includes('client_credentials')) {
       modified = true;
@@ -238,27 +217,21 @@ function addClientCredentialsGrantType(clientId, client) {
   } else {
     modClient.advancedOAuth2ClientConfig.grantTypes.value = ['client_credentials'];
   }
   modClient.advancedOAuth2ClientConfig.grantTypes.inherited = false;
   if (modified) {
     printMessage(`Adding client credentials grant type to client "${clientId}"...`);
   } else {
     printMessage(`Client "${clientId}" already has client credentials grant type.`);
   }
   return modClient;
 }
 async function addAdminStaticUserMapping(name) {
   let authentication = {};
   try {
     authentication = await getConfigEntity('authentication');
   } catch (error) {
     printMessage(`Error reading IDM authentication configuration: ${error.message}`, 'error');
   }
   let needsAdminMapping = true;
   let addRoles = [];
   const mappings = authentication['rsFilter']['staticUserMapping'].map(mapping => {
@@ -266,22 +239,18 @@ async function addAdminStaticUserMapping(name) {
     if (mapping.subject !== name) {
       return mapping;
     }
     needsAdminMapping = false;
     addRoles = adminRoles.filter(role => {
       let add = false;
       if (!mapping.roles.includes(role)) {
         add = true;
       }
       return add;
     });
     const newMapping = mapping;
     newMapping.roles = newMapping.roles.concat(addRoles);
     return newMapping;
   });
   if (needsAdminMapping) {
     printMessage(`Creating static user mapping for client "${name}"...`);
     mappings.push({
@@ -291,12 +260,9 @@ async function addAdminStaticUserMapping(name) {
       roles: adminRoles
     });
   }
   authentication['rsFilter']['staticUserMapping'] = mappings;
   if (addRoles.length > 0 || needsAdminMapping) {
     printMessage(`Adding admin roles to static user mapping for client "${name}"...`);
     try {
       await putConfigEntity('authentication', authentication);
     } catch (putConfigEntityError) {
@@ -307,6 +273,7 @@ async function addAdminStaticUserMapping(name) {
     printMessage(`Static user mapping for client "${name}" already has admin roles.`);
   }
 }
 /*
  * Add AutoId static user mapping to authentication.json to enable dashboards and other AutoId-based functionality.
   {
@@ -328,8 +295,6 @@ async function addAdminStaticUserMapping(name) {
     }
   }
  */
 export async function addAutoIdStaticUserMapping() {
   const name = 'autoid-resource-server';
   const authentication = await getConfigEntity('authentication');
@@ -340,22 +305,18 @@ export async function addAutoIdStaticUserMapping() {
     if (mapping.subject !== name) {
       return mapping;
     }
     needsAdminMapping = false;
     addRoles = autoIdRoles.filter(role => {
       let add = false;
       if (!mapping.roles.includes(role)) {
         add = true;
       }
       return add;
     });
     const newMapping = mapping;
     newMapping.roles = newMapping.roles.concat(addRoles);
     return newMapping;
   });
   if (needsAdminMapping) {
     printMessage(`Creating static user mapping for AutoId client "${name}"...`);
     mappings.push({
@@ -365,12 +326,9 @@ export async function addAutoIdStaticUserMapping() {
       roles: autoIdRoles
     });
   }
   authentication.rsFilter.staticUserMapping = mappings;
   if (addRoles.length > 0 || needsAdminMapping) {
     printMessage(`Adding required roles to static user mapping for AutoId client "${name}"...`);
     try {
       await putConfigEntity('authentication', authentication);
     } catch (putConfigEntityError) {
@@ -383,73 +341,58 @@ export async function addAutoIdStaticUserMapping() {
 }
 export async function grantOAuth2ClientAdminPrivileges(clientId) {
   let client = (await getOAuth2Client(clientId)).data;
   if (client.coreOAuth2ClientConfig.clientName.value.length === 0) {
     client.coreOAuth2ClientConfig.clientName.value = [clientId];
   }
   if (client.advancedOAuth2ClientConfig.descriptions.value.length === 0 || client.advancedOAuth2ClientConfig.descriptions.value[0].startsWith('Modified by Frodo') || client.advancedOAuth2ClientConfig.descriptions.value[0].startsWith('Created by Frodo')) {
     client.advancedOAuth2ClientConfig.descriptions.value = [`Modified by Frodo on ${new Date().toLocaleString()}`];
   }
   client = await addAdminScopes(clientId, client);
   client = addClientCredentialsGrantType(clientId, client);
   await putOAuth2Client(clientId, client);
   await addAdminStaticUserMapping(clientId);
 }
 async function removeAdminScopes(name, client) {
   const modClient = client;
   const allAdminScopes = adminScopes.concat([await getDynamicClientRegistrationScope()]);
   let finalScopes = [];
   if (modClient.coreOAuth2ClientConfig.scopes && modClient.coreOAuth2ClientConfig.scopes.value) {
     finalScopes = modClient.coreOAuth2ClientConfig.scopes.value.filter(scope => !allAdminScopes.includes(scope));
   }
   if (modClient.coreOAuth2ClientConfig.scopes.value.length > finalScopes.length) {
     printMessage(`Removing admin scopes from client "${name}"...`);
     modClient.coreOAuth2ClientConfig.scopes.value = finalScopes;
   } else {
     printMessage(`Client "${name}" has no admin scopes.`);
   }
   let finalDefaultScopes = [];
   if (modClient.coreOAuth2ClientConfig.defaultScopes && modClient.coreOAuth2ClientConfig.defaultScopes.value) {
     finalDefaultScopes = modClient.coreOAuth2ClientConfig.defaultScopes.value.filter(scope => !adminDefaultScopes.includes(scope));
   }
   if (modClient.coreOAuth2ClientConfig.defaultScopes.value.length > finalDefaultScopes.length) {
     printMessage(`Removing admin default scopes from client "${name}"...`);
     modClient.coreOAuth2ClientConfig.defaultScopes.value = finalDefaultScopes;
   } else {
     printMessage(`Client "${name}" has no admin default scopes.`);
   }
   return modClient;
 }
 function removeClientCredentialsGrantType(clientId, client) {
   const modClient = client;
   let modified = false;
   let finalGrantTypes = [];
   if (modClient.advancedOAuth2ClientConfig.grantTypes && modClient.advancedOAuth2ClientConfig.grantTypes.value) {
     finalGrantTypes = modClient.advancedOAuth2ClientConfig.grantTypes.value.filter(grantType => grantType !== 'client_credentials');
     modified = modClient.advancedOAuth2ClientConfig.grantTypes.value.length > finalGrantTypes.length;
   }
   if (modified) {
     printMessage(`Removing client credentials grant type from client "${clientId}"...`);
     modClient.advancedOAuth2ClientConfig.grantTypes.value = finalGrantTypes;
   } else {
     printMessage(`Client "${clientId}" does not allow client credentials grant type.`);
   }
   return modClient;
 }
 async function removeAdminStaticUserMapping(name) {
   const authentication = await getConfigEntity('authentication');
   let finalRoles = [];
@@ -460,25 +403,20 @@ async function removeAdminStaticUserMapping(name) {
     if (mapping.subject !== name) {
       return mapping;
     }
     finalRoles = mapping.roles.filter(role => !adminRoles.includes(role));
     const newMapping = mapping;
     removeMapping = finalRoles.length === 0; // if there are no more roles left on this mapping, flag it for removal
     modified = mapping.roles.length > finalRoles.length; // if there were roles removed, set modified flag
     newMapping.roles = finalRoles;
     return newMapping;
   }).filter(mapping => mapping.subject !== name || !removeMapping);
   authentication.rsFilter.staticUserMapping = mappings;
   if (modified || removeMapping) {
     if (removeMapping) {
       printMessage(`Removing static user mapping for client "${name}"...`);
     } else {
       printMessage(`Removing admin roles from static user mapping for client "${name}"...`);
     }
     try {
       await putConfigEntity('authentication', authentication);
     } catch (putConfigEntityError) {
@@ -489,18 +427,14 @@ async function removeAdminStaticUserMapping(name) {
     printMessage(`Static user mapping for client "${name}" has no admin roles.`);
   }
 }
 export async function revokeOAuth2ClientAdminPrivileges(clientId) {
   let client = (await getOAuth2Client(clientId)).data;
   if (client.coreOAuth2ClientConfig.clientName.value.length === 0) {
     client.coreOAuth2ClientConfig.clientName.value = [clientId];
   }
   if (client.advancedOAuth2ClientConfig.descriptions.value.length === 0 || client.advancedOAuth2ClientConfig.descriptions.value[0].startsWith('Modified by Frodo') || client.advancedOAuth2ClientConfig.descriptions.value[0].startsWith('Created by Frodo')) {
     client.advancedOAuth2ClientConfig.descriptions.value = [`Modified by Frodo on ${new Date().toLocaleString()}`];
   }
   client = await removeAdminScopes(clientId, client);
   client = removeClientCredentialsGrantType(clientId, client);
   await putOAuth2Client(clientId, client);
@@ -511,7 +445,6 @@ export async function createOAuth2ClientWithAdminPrivileges(clientId, clientSecr
   client.coreOAuth2ClientConfig.userpassword = clientSecret;
   client.coreOAuth2ClientConfig.clientName.value = [clientId];
   client.advancedOAuth2ClientConfig.descriptions.value = [`Created by Frodo on ${new Date().toLocaleString()}`];
   try {
     client = await addAdminScopes(clientId, client);
     await putOAuth2Client(clientId, client);
@@ -523,21 +456,20 @@ export async function createOAuth2ClientWithAdminPrivileges(clientId, clientSecr
 export async function createLongLivedToken(clientId, clientSecret, scope, secret, lifetime) {
   // get oauth2 client
   const client = (await getOAuth2Client(clientId)).data;
-  client.userpassword = clientSecret; // remember current lifetime
-  const rememberedLifetime = client.coreOAuth2ClientConfig.accessTokenLifetime.value || 3600; // set long token lifetime
+  client.userpassword = clientSecret;
+  // remember current lifetime
+  const rememberedLifetime = client.coreOAuth2ClientConfig.accessTokenLifetime.value || 3600;
+  // set long token lifetime
   client.coreOAuth2ClientConfig.accessTokenLifetime.value = lifetime;
   await putOAuth2Client(clientId, client);
   const response = (await clientCredentialsGrant(clientId, clientSecret, scope)).data;
   const expires = new Date().getTime() + 1000 * response.expires_in;
-  response.expires_on = new Date(expires).toLocaleString(); // reset token lifetime
+  response.expires_on = new Date(expires).toLocaleString();
+  // reset token lifetime
   client.coreOAuth2ClientConfig.accessTokenLifetime.value = rememberedLifetime;
-  await putOAuth2Client(clientId, client); // create secret with token as value
+  await putOAuth2Client(clientId, client);
+  // create secret with token as value
   const description = 'Long-lived admin token';
   try {
     await putSecret(secret, response.access_token, description);
     response.secret = secret;
@@ -549,7 +481,6 @@ export async function createLongLivedToken(clientId, clientSecret, scope, secret
       response.secret = newSecret;
     }
   }
   delete response.access_token;
   return response;
 }
@@ -560,16 +491,13 @@ export async function removeStaticUserMapping(subject) {
     // find the subject and flag it
     if (mapping.subject === subject) {
       removeMapping = true;
-    } // ignore mappings for other subjects
+    }
+    // ignore mappings for other subjects
     return mapping.subject !== subject;
   });
   authentication.rsFilter.staticUserMapping = mappings;
   if (removeMapping) {
     printMessage(`Removing static user mapping for subject "${subject}"...`);
     try {
       await putConfigEntity('authentication', authentication);
     } catch (putConfigEntityError) {
@@ -588,12 +516,11 @@ export async function hideGenericExtensionAttributes(includeCustomized, dryRun)
     if (object.name !== getRealmManagedUser()) {
       return object;
     }
     propertyNames.forEach(name => {
       if (isEqualJson(GENERIC_EXTENSION_ATTRIBUTES[name], object.schema.properties[name], ['viewable', 'usageDescription']) || includeCustomized) {
         if (object.schema.properties[name].viewable) {
-          printMessage(`${name}: hide`); // eslint-disable-next-line no-param-reassign
+          printMessage(`${name}: hide`);
+          // eslint-disable-next-line no-param-reassign
           object.schema.properties[name].viewable = false;
         } else {
           printMessage(`${name}: ignore (already hidden)`);
@@ -605,7 +532,6 @@ export async function hideGenericExtensionAttributes(includeCustomized, dryRun)
     return object;
   });
   managed.objects = updatedObjects;
   if (dryRun) {
     printMessage('Dry-run only. Changes are not saved.');
   } else {
@@ -625,12 +551,11 @@ export async function showGenericExtensionAttributes(includeCustomized, dryRun)
     if (object.name !== getRealmManagedUser()) {
       return object;
     }
     propertyNames.forEach(name => {
       if (isEqualJson(GENERIC_EXTENSION_ATTRIBUTES[name], object.schema.properties[name], ['viewable', 'usageDescription']) || includeCustomized) {
         if (!object.schema.properties[name].viewable) {
-          printMessage(`${name}: show`); // eslint-disable-next-line no-param-reassign
+          printMessage(`${name}: show`);
+          // eslint-disable-next-line no-param-reassign
           object.schema.properties[name].viewable = true;
         } else {
           printMessage(`${name}: ignore (already showing)`);
@@ -642,7 +567,6 @@ export async function showGenericExtensionAttributes(includeCustomized, dryRun)
     return object;
   });
   managed.objects = updatedObjects;
   if (dryRun) {
     printMessage('Dry-run only. Changes are not saved.');
   } else {
@@ -654,7 +578,6 @@ export async function showGenericExtensionAttributes(includeCustomized, dryRun)
     }
   }
 }
 async function repairOrgModelUser(dryRun) {
   const managed = await getConfigEntity('managed');
   const RDVPs = ['memberOfOrgIDs'];
@@ -664,12 +587,11 @@ async function repairOrgModelUser(dryRun) {
     if (object.name !== getRealmManagedUser()) {
       return object;
     }
     printMessage(`${object.name}: checking...`);
     RDVPs.forEach(name => {
       if (!object.schema.properties[name].queryConfig.flattenProperties) {
-        printMessage(`- ${name}: repairing - needs flattening`, 'warn'); // eslint-disable-next-line no-param-reassign
+        printMessage(`- ${name}: repairing - needs flattening`, 'warn');
+        // eslint-disable-next-line no-param-reassign
         object.schema.properties[name].queryConfig.flattenProperties = true;
         repairData = true;
       } else {
@@ -679,7 +601,6 @@ async function repairOrgModelUser(dryRun) {
     return object;
   });
   managed.objects = updatedObjects;
   if (!dryRun) {
     try {
       await putConfigEntity('managed', managed);
@@ -688,10 +609,8 @@ async function repairOrgModelUser(dryRun) {
       printMessage(`Error: ${putConfigEntityError}`, 'error');
     }
   }
   return repairData;
 }
 async function repairOrgModelOrg(dryRun) {
   const managed = await getConfigEntity('managed');
   const RDVPs = ['adminIDs', 'ownerIDs', 'parentAdminIDs', 'parentOwnerIDs', 'parentIDs'];
@@ -701,12 +620,11 @@ async function repairOrgModelOrg(dryRun) {
     if (object.name !== getRealmManagedOrganization()) {
       return object;
     }
     printMessage(`${object.name}: checking...`);
     RDVPs.forEach(name => {
       if (!object.schema.properties[name].queryConfig.flattenProperties) {
-        printMessage(`- ${name}: repairing - needs flattening`, 'warn'); // eslint-disable-next-line no-param-reassign
+        printMessage(`- ${name}: repairing - needs flattening`, 'warn');
+        // eslint-disable-next-line no-param-reassign
         object.schema.properties[name].queryConfig.flattenProperties = true;
         repairData = true;
       } else {
@@ -716,7 +634,6 @@ async function repairOrgModelOrg(dryRun) {
     return object;
   });
   managed.objects = updatedObjects;
   if (!dryRun) {
     try {
       await putConfigEntity('managed', managed);
@@ -725,40 +642,37 @@ async function repairOrgModelOrg(dryRun) {
       printMessage(`Error: ${putConfigEntityError}`, 'error');
     }
   }
   return repairData;
 }
 async function repairOrgModelData(dryRun = false) {
-  if (!dryRun) {// const rootOrgs = await findRootOrganizations();
+  if (!dryRun) {
+    // const rootOrgs = await findRootOrganizations();
   }
 }
 async function extendOrgModelPermissins(dryRun = false) {
-  if (!dryRun) {// const rootOrgs = await findRootOrganizations();
+  if (!dryRun) {
+    // const rootOrgs = await findRootOrganizations();
   }
 }
 export async function repairOrgModel(excludeCustomized, extendPermissions, dryRun) {
   let repairData = false;
   repairData = repairData || (await repairOrgModelUser(dryRun));
   repairData = repairData || (await repairOrgModelOrg(dryRun));
-  if (excludeCustomized) {//
+  if (excludeCustomized) {
+    //
   }
   if (repairData) {
     await repairOrgModelData(dryRun);
   }
   if (extendPermissions) {
     await extendOrgModelPermissins(dryRun);
   }
   if (dryRun) {
     printMessage('Dry-run only. Changes are not saved.', 'warn');
   }
-} // suggested by John K.
+}
+// suggested by John K.
 // export async function removeRealmNameFromManagedObjectLabels() {}
 // export async function addRealmNameToManagedObjectLabels() {}
 // export async function cleanUpPostmanArtifacts() {}