@steedos/accounts 3.0.0-beta.99 → 3.0.0
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/lib/core/index.js +22 -17
- package/lib/core/index.js.map +1 -1
- package/lib/rest-express/endpoints/authorize.js +2 -2
- package/lib/rest-express/endpoints/authorize.js.map +1 -1
- package/lib/rest-express/endpoints/impersonate.js +25 -23
- package/lib/rest-express/endpoints/impersonate.js.map +1 -1
- package/lib/rest-express/endpoints/login.js +95 -93
- package/lib/rest-express/endpoints/login.js.map +1 -1
- package/lib/rest-express/endpoints/logout.js +2 -2
- package/lib/rest-express/endpoints/logout.js.map +1 -1
- package/lib/rest-express/endpoints/oauth/provider-callback.js +35 -33
- package/lib/rest-express/endpoints/oauth/provider-callback.js.map +1 -1
- package/lib/rest-express/endpoints/password/change-password.js +2 -2
- package/lib/rest-express/endpoints/password/change-password.js.map +1 -1
- package/lib/rest-express/endpoints/refresh-access-token.js +25 -23
- package/lib/rest-express/endpoints/refresh-access-token.js.map +1 -1
- package/lib/rest-express/endpoints/service-authenticate.js +76 -74
- package/lib/rest-express/endpoints/service-authenticate.js.map +1 -1
- package/lib/rest-express/endpoints/update-session.js +44 -42
- package/lib/rest-express/endpoints/update-session.js.map +1 -1
- package/lib/rest-express/utils/getClientIp.js +16 -0
- package/lib/rest-express/utils/getClientIp.js.map +1 -0
- package/package.json +7 -8
- package/src/core/index.ts +11 -19
- package/src/rest-express/endpoints/authorize.ts +2 -2
- package/src/rest-express/endpoints/impersonate.ts +30 -31
- package/src/rest-express/endpoints/login.ts +66 -61
- package/src/rest-express/endpoints/logout.ts +2 -2
- package/src/rest-express/endpoints/oauth/provider-callback.ts +45 -38
- package/src/rest-express/endpoints/password/change-password.ts +4 -4
- package/src/rest-express/endpoints/refresh-access-token.ts +23 -24
- package/src/rest-express/endpoints/service-authenticate.ts +87 -68
- package/src/rest-express/endpoints/update-session.ts +50 -42
- package/src/rest-express/utils/getClientIp.ts +25 -0
|
@@ -2,30 +2,32 @@
|
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports.refreshAccessToken = void 0;
|
|
4
4
|
var tslib_1 = require("tslib");
|
|
5
|
-
var
|
|
5
|
+
var getClientIp_1 = require("../utils/getClientIp");
|
|
6
6
|
var get_user_agent_1 = require("../utils/get-user-agent");
|
|
7
7
|
var send_error_1 = require("../utils/send-error");
|
|
8
|
-
var refreshAccessToken = function (accountsServer) {
|
|
9
|
-
|
|
10
|
-
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
});
|
|
8
|
+
var refreshAccessToken = function (accountsServer) {
|
|
9
|
+
return function (req, res) { return tslib_1.__awaiter(void 0, void 0, void 0, function () {
|
|
10
|
+
var _a, accessToken, refreshToken, userAgent, ip, refreshedSession, err_1;
|
|
11
|
+
return tslib_1.__generator(this, function (_b) {
|
|
12
|
+
switch (_b.label) {
|
|
13
|
+
case 0:
|
|
14
|
+
_b.trys.push([0, 2, , 3]);
|
|
15
|
+
_a = req.body, accessToken = _a.accessToken, refreshToken = _a.refreshToken;
|
|
16
|
+
userAgent = (0, get_user_agent_1.getUserAgent)(req);
|
|
17
|
+
ip = (0, getClientIp_1.getClientIp)(req);
|
|
18
|
+
return [4, accountsServer.refreshTokens(accessToken, refreshToken, ip, userAgent)];
|
|
19
|
+
case 1:
|
|
20
|
+
refreshedSession = _b.sent();
|
|
21
|
+
res.json(refreshedSession);
|
|
22
|
+
return [3, 3];
|
|
23
|
+
case 2:
|
|
24
|
+
err_1 = _b.sent();
|
|
25
|
+
(0, send_error_1.sendError)(res, err_1);
|
|
26
|
+
return [3, 3];
|
|
27
|
+
case 3: return [2];
|
|
28
|
+
}
|
|
29
|
+
});
|
|
30
|
+
}); };
|
|
31
|
+
};
|
|
30
32
|
exports.refreshAccessToken = refreshAccessToken;
|
|
31
33
|
//# sourceMappingURL=refresh-access-token.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"refresh-access-token.js","sourceRoot":"","sources":["../../../src/rest-express/endpoints/refresh-access-token.ts"],"names":[],"mappings":";;;;AACA,
|
|
1
|
+
{"version":3,"file":"refresh-access-token.js","sourceRoot":"","sources":["../../../src/rest-express/endpoints/refresh-access-token.ts"],"names":[],"mappings":";;;;AACA,oDAAmD;AAEnD,0DAAuD;AACvD,kDAAgD;AAEzC,IAAM,kBAAkB,GAC7B,UAAC,cAA8B;IAC/B,OAAA,UAAO,GAAoB,EAAE,GAAqB;;;;;;oBAExC,KAAgC,GAAG,CAAC,IAAI,EAAtC,WAAW,iBAAA,EAAE,YAAY,kBAAA,CAAc;oBACzC,SAAS,GAAG,IAAA,6BAAY,EAAC,GAAG,CAAC,CAAC;oBAC9B,EAAE,GAAG,IAAA,yBAAW,EAAC,GAAG,CAAC,CAAC;oBACH,WAAM,cAAc,CAAC,aAAa,CACzD,WAAW,EACX,YAAY,EACZ,EAAE,EACF,SAAS,CACV,EAAA;;oBALK,gBAAgB,GAAG,SAKxB;oBACD,GAAG,CAAC,IAAI,CAAC,gBAAgB,CAAC,CAAC;;;;oBAE3B,IAAA,sBAAS,EAAC,GAAG,EAAE,KAAG,CAAC,CAAC;;;;;SAEvB;AAfD,CAeC,CAAC;AAjBS,QAAA,kBAAkB,sBAiB3B"}
|
|
@@ -2,83 +2,85 @@
|
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports.serviceAuthenticate = void 0;
|
|
4
4
|
var tslib_1 = require("tslib");
|
|
5
|
-
var
|
|
5
|
+
var getClientIp_1 = require("../utils/getClientIp");
|
|
6
6
|
var get_user_agent_1 = require("../utils/get-user-agent");
|
|
7
7
|
var send_error_1 = require("../utils/send-error");
|
|
8
8
|
var steedos_auth_1 = require("../utils/steedos-auth");
|
|
9
9
|
var users_1 = require("../utils/users");
|
|
10
|
-
var serviceAuthenticate = function (accountsServer) {
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
|
|
32
|
-
|
|
33
|
-
|
|
34
|
-
|
|
35
|
-
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
|
|
51
|
-
|
|
52
|
-
|
|
53
|
-
|
|
54
|
-
|
|
55
|
-
|
|
56
|
-
|
|
57
|
-
|
|
58
|
-
|
|
59
|
-
_user[
|
|
60
|
-
|
|
61
|
-
|
|
62
|
-
_user[
|
|
63
|
-
|
|
64
|
-
|
|
65
|
-
_user[
|
|
66
|
-
|
|
67
|
-
|
|
68
|
-
|
|
69
|
-
|
|
70
|
-
|
|
71
|
-
|
|
72
|
-
|
|
73
|
-
|
|
74
|
-
|
|
75
|
-
|
|
76
|
-
|
|
77
|
-
|
|
78
|
-
|
|
79
|
-
|
|
80
|
-
|
|
81
|
-
|
|
82
|
-
});
|
|
10
|
+
var serviceAuthenticate = function (accountsServer) {
|
|
11
|
+
return function (req, res) { return tslib_1.__awaiter(void 0, void 0, void 0, function () {
|
|
12
|
+
var serviceName, userAgent, ip, email, spaceId, services, db_1, loggedInUser, session, validSpaceId, user, authToken, stampedAuthToken, hashedToken, _user, data, err_1;
|
|
13
|
+
return tslib_1.__generator(this, function (_a) {
|
|
14
|
+
switch (_a.label) {
|
|
15
|
+
case 0:
|
|
16
|
+
_a.trys.push([0, 7, , 8]);
|
|
17
|
+
serviceName = req.params.service;
|
|
18
|
+
userAgent = (0, get_user_agent_1.getUserAgent)(req) || "";
|
|
19
|
+
ip = (0, getClientIp_1.getClientIp)(req);
|
|
20
|
+
email = req.body.user.email;
|
|
21
|
+
spaceId = req.body.spaceId;
|
|
22
|
+
services = accountsServer.getServices();
|
|
23
|
+
db_1 = services[serviceName].db;
|
|
24
|
+
if (email && email.indexOf("@") < 0) {
|
|
25
|
+
req.body.user.username = email;
|
|
26
|
+
}
|
|
27
|
+
return [4, accountsServer.loginWithService(serviceName, req.body, {
|
|
28
|
+
ip: ip,
|
|
29
|
+
userAgent: userAgent,
|
|
30
|
+
})];
|
|
31
|
+
case 1:
|
|
32
|
+
loggedInUser = _a.sent();
|
|
33
|
+
return [4, accountsServer.findSessionByAccessToken(loggedInUser.tokens.accessToken)];
|
|
34
|
+
case 2:
|
|
35
|
+
session = _a.sent();
|
|
36
|
+
return [4, (0, users_1.getUserSpace)(session.userId, spaceId)];
|
|
37
|
+
case 3:
|
|
38
|
+
validSpaceId = _a.sent();
|
|
39
|
+
if (validSpaceId) {
|
|
40
|
+
userAgent = "".concat(userAgent, " Space/").concat(validSpaceId);
|
|
41
|
+
db_1.updateSession(loggedInUser.sessionId, {
|
|
42
|
+
ip: ip,
|
|
43
|
+
userAgent: userAgent,
|
|
44
|
+
});
|
|
45
|
+
}
|
|
46
|
+
return [4, db_1.collection.findOne({ _id: session.userId }, { password_expired: 1 })];
|
|
47
|
+
case 4:
|
|
48
|
+
user = _a.sent();
|
|
49
|
+
authToken = null;
|
|
50
|
+
stampedAuthToken = {
|
|
51
|
+
token: session.token,
|
|
52
|
+
when: new Date(),
|
|
53
|
+
};
|
|
54
|
+
authToken = stampedAuthToken.token;
|
|
55
|
+
hashedToken = (0, steedos_auth_1.hashStampedToken)(stampedAuthToken);
|
|
56
|
+
return [4, db_1.collection.findOne({ _id: session.userId }, { services: 1 })];
|
|
57
|
+
case 5:
|
|
58
|
+
_user = _a.sent();
|
|
59
|
+
if (!_user["services"]) {
|
|
60
|
+
_user["services"] = {};
|
|
61
|
+
}
|
|
62
|
+
if (!_user["services"]["resume"]) {
|
|
63
|
+
_user["services"]["resume"] = { loginTokens: [] };
|
|
64
|
+
}
|
|
65
|
+
if (!_user["services"]["resume"]["loginTokens"]) {
|
|
66
|
+
_user["services"]["resume"]["loginTokens"] = [];
|
|
67
|
+
}
|
|
68
|
+
_user["services"]["resume"]["loginTokens"].push(hashedToken);
|
|
69
|
+
data = { services: _user["services"] };
|
|
70
|
+
return [4, db_1.collection.updateOne({ _id: session.userId }, { $set: data })];
|
|
71
|
+
case 6:
|
|
72
|
+
_a.sent();
|
|
73
|
+
(0, steedos_auth_1.setAuthCookies)(req, res, session.userId, authToken, loggedInUser.tokens.accessToken, validSpaceId);
|
|
74
|
+
res.json(loggedInUser);
|
|
75
|
+
return [3, 8];
|
|
76
|
+
case 7:
|
|
77
|
+
err_1 = _a.sent();
|
|
78
|
+
(0, send_error_1.sendError)(res, err_1);
|
|
79
|
+
return [3, 8];
|
|
80
|
+
case 8: return [2];
|
|
81
|
+
}
|
|
82
|
+
});
|
|
83
|
+
}); };
|
|
84
|
+
};
|
|
83
85
|
exports.serviceAuthenticate = serviceAuthenticate;
|
|
84
86
|
//# sourceMappingURL=service-authenticate.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"service-authenticate.js","sourceRoot":"","sources":["../../../src/rest-express/endpoints/service-authenticate.ts"],"names":[],"mappings":";;;;AACA,
|
|
1
|
+
{"version":3,"file":"service-authenticate.js","sourceRoot":"","sources":["../../../src/rest-express/endpoints/service-authenticate.ts"],"names":[],"mappings":";;;;AACA,oDAAmD;AAEnD,0DAAuD;AACvD,kDAAgD;AAChD,sDAAyE;AAGzE,wCAA8C;AAEvC,IAAM,mBAAmB,GAC9B,UAAC,cAA8B;IAC/B,OAAA,UAAO,GAAoB,EAAE,GAAqB;;;;;;oBAExC,WAAW,GAAG,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC;oBACnC,SAAS,GAAG,IAAA,6BAAY,EAAC,GAAG,CAAC,IAAI,EAAE,CAAC;oBAClC,EAAE,GAAG,IAAA,yBAAW,EAAC,GAAG,CAAC,CAAC;oBACtB,KAAK,GAAG,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,KAAK,CAAC;oBAC5B,OAAO,GAAG,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC;oBAC7B,QAAQ,GAAQ,cAAc,CAAC,WAAW,EAAE,CAAC;oBAC7C,OAAK,QAAQ,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC;oBAElC,IAAI,KAAK,IAAI,KAAK,CAAC,OAAO,CAAC,GAAG,CAAC,GAAG,CAAC,EAAE,CAAC;wBACpC,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,GAAG,KAAK,CAAC;oBACjC,CAAC;oBAEyB,WAAM,cAAc,CAAC,gBAAgB,CAC7D,WAAW,EACX,GAAG,CAAC,IAAI,EACR;4BACE,EAAE,IAAA;4BACF,SAAS,WAAA;yBACV,CACF,EAAA;;oBAPK,YAAY,GAAQ,SAOzB;oBAGkB,WAAM,cAAc,CAAC,wBAAwB,CAC9D,YAAY,CAAC,MAAM,CAAC,WAAW,CAChC,EAAA;;oBAFG,OAAO,GAAQ,SAElB;oBAGkB,WAAM,IAAA,oBAAY,EAAC,OAAO,CAAC,MAAM,EAAE,OAAO,CAAC,EAAA;;oBAA1D,YAAY,GAAG,SAA2C;oBAC9D,IAAI,YAAY,EAAE,CAAC;wBACjB,SAAS,GAAG,UAAG,SAAS,oBAAU,YAAY,CAAE,CAAC;wBACjD,IAAE,CAAC,aAAa,CAAC,YAAY,CAAC,SAAS,EAAE;4BACvC,EAAE,IAAA;4BACF,SAAS,WAAA;yBACV,CAAC,CAAC;oBACL,CAAC;oBAGU,WAAM,IAAE,CAAC,UAAU,CAAC,OAAO,CACpC,EAAE,GAAG,EAAE,OAAO,CAAC,MAAM,EAAE,EACvB,EAAE,gBAAgB,EAAE,CAAC,EAAE,CACxB,EAAA;;oBAHG,IAAI,GAAG,SAGV;oBAGG,SAAS,GAAG,IAAI,CAAC;oBACjB,gBAAgB,GAAG;wBACrB,KAAK,EAAE,OAAO,CAAC,KAAK;wBACpB,IAAI,EAAE,IAAI,IAAI,EAAE;qBACjB,CAAC;oBACF,SAAS,GAAG,gBAAgB,CAAC,KAAK,CAAC;oBAC/B,WAAW,GAAG,IAAA,+BAAgB,EAAC,gBAAgB,CAAC,CAAC;oBACzC,WAAM,IAAE,CAAC,UAAU,CAAC,OAAO,CACrC,EAAE,GAAG,EAAE,OAAO,CAAC,MAAM,EAAE,EACvB,EAAE,QAAQ,EAAE,CAAC,EAAE,CAChB,EAAA;;oBAHG,KAAK,GAAG,SAGX;oBACD,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC;wBACvB,KAAK,CAAC,UAAU,CAAC,GAAG,EAAE,CAAC;oBACzB,CAAC;oBACD,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,EAAE,CAAC;wBACjC,KAAK,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,GAAG,EAAE,WAAW,EAAE,EAAE,EAAE,CAAC;oBACpD,CAAC;oBACD,IAAI,CAAC,KAAK,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,CAAC,aAAa,CAAC,EAAE,CAAC;wBAChD,KAAK,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,CAAC,aAAa,CAAC,GAAG,EAAE,CAAC;oBAClD,CAAC;oBACD,KAAK,CAAC,UAAU,CAAC,CAAC,QAAQ,CAAC,CAAC,aAAa,CAAC,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;oBACzD,IAAI,GAAG,EAAE,QAAQ,EAAE,KAAK,CAAC,UAAU,CAAC,EAAE,CAAC;oBAC3C,WAAM,IAAE,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,GAAG,EAAE,OAAO,CAAC,MAAM,EAAE,EAAE,EAAE,IAAI,EAAE,IAAI,EAAE,CAAC,EAAA;;oBAAtE,SAAsE,CAAC;oBAEvE,IAAA,6BAAc,EACZ,GAAG,EACH,GAAG,EACH,OAAO,CAAC,MAAM,EACd,SAAS,EACT,YAAY,CAAC,MAAM,CAAC,WAAW,EAC/B,YAAY,CACb,CAAC;oBAEF,GAAG,CAAC,IAAI,CAAC,YAAY,CAAC,CAAC;;;;oBAEvB,IAAA,sBAAS,EAAC,GAAG,EAAE,KAAG,CAAC,CAAC;;;;;SAEvB;AAlFD,CAkFC,CAAC;AApFS,QAAA,mBAAmB,uBAoF5B"}
|
|
@@ -2,51 +2,53 @@
|
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
3
|
exports.updateSession = void 0;
|
|
4
4
|
var tslib_1 = require("tslib");
|
|
5
|
-
var
|
|
5
|
+
var getClientIp_1 = require("../utils/getClientIp");
|
|
6
6
|
var get_user_agent_1 = require("../utils/get-user-agent");
|
|
7
7
|
var send_error_1 = require("../utils/send-error");
|
|
8
8
|
var steedos_auth_1 = require("../utils/steedos-auth");
|
|
9
9
|
var users_1 = require("../utils/users");
|
|
10
|
-
var updateSession = function (accountsServer) {
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
|
|
32
|
-
|
|
33
|
-
|
|
34
|
-
|
|
35
|
-
|
|
36
|
-
|
|
37
|
-
|
|
38
|
-
|
|
39
|
-
|
|
40
|
-
|
|
41
|
-
|
|
42
|
-
|
|
43
|
-
|
|
44
|
-
|
|
45
|
-
|
|
46
|
-
|
|
47
|
-
|
|
48
|
-
|
|
49
|
-
|
|
50
|
-
});
|
|
10
|
+
var updateSession = function (accountsServer) {
|
|
11
|
+
return function (req, res) { return tslib_1.__awaiter(void 0, void 0, void 0, function () {
|
|
12
|
+
var userId, serviceName, userAgent, ip, services, db_1, spaceId, accessToken, session, validSpaceId, err_1;
|
|
13
|
+
return tslib_1.__generator(this, function (_a) {
|
|
14
|
+
switch (_a.label) {
|
|
15
|
+
case 0:
|
|
16
|
+
_a.trys.push([0, 3, , 4]);
|
|
17
|
+
userId = req.user._id;
|
|
18
|
+
serviceName = req.params.service;
|
|
19
|
+
userAgent = (0, get_user_agent_1.getUserAgent)(req) || "";
|
|
20
|
+
ip = (0, getClientIp_1.getClientIp)(req);
|
|
21
|
+
services = accountsServer.getServices();
|
|
22
|
+
db_1 = services[serviceName].db;
|
|
23
|
+
spaceId = req.body.spaceId;
|
|
24
|
+
accessToken = req.body.accessToken;
|
|
25
|
+
return [4, accountsServer.findSessionByAccessToken(accessToken)];
|
|
26
|
+
case 1:
|
|
27
|
+
session = _a.sent();
|
|
28
|
+
if (!session) {
|
|
29
|
+
throw new Error("Invalid accessToken");
|
|
30
|
+
}
|
|
31
|
+
return [4, (0, users_1.getUserSpace)(userId, spaceId)];
|
|
32
|
+
case 2:
|
|
33
|
+
validSpaceId = _a.sent();
|
|
34
|
+
if (validSpaceId) {
|
|
35
|
+
userAgent = "".concat(userAgent, " Space/").concat(validSpaceId);
|
|
36
|
+
db_1.updateSession(session.id, {
|
|
37
|
+
ip: ip,
|
|
38
|
+
userAgent: userAgent,
|
|
39
|
+
});
|
|
40
|
+
}
|
|
41
|
+
(0, steedos_auth_1.setAuthCookies)(req, res, session.userId, (0, steedos_auth_1.getAuthTokenCookie)(req, res), accessToken, validSpaceId);
|
|
42
|
+
res.json({});
|
|
43
|
+
return [3, 4];
|
|
44
|
+
case 3:
|
|
45
|
+
err_1 = _a.sent();
|
|
46
|
+
(0, send_error_1.sendError)(res, err_1);
|
|
47
|
+
return [3, 4];
|
|
48
|
+
case 4: return [2];
|
|
49
|
+
}
|
|
50
|
+
});
|
|
51
|
+
}); };
|
|
52
|
+
};
|
|
51
53
|
exports.updateSession = updateSession;
|
|
52
54
|
//# sourceMappingURL=update-session.js.map
|
|
@@ -1 +1 @@
|
|
|
1
|
-
{"version":3,"file":"update-session.js","sourceRoot":"","sources":["../../../src/rest-express/endpoints/update-session.ts"],"names":[],"mappings":";;;;AACA,
|
|
1
|
+
{"version":3,"file":"update-session.js","sourceRoot":"","sources":["../../../src/rest-express/endpoints/update-session.ts"],"names":[],"mappings":";;;;AACA,oDAAmD;AAEnD,0DAAuD;AACvD,kDAAgD;AAChD,sDAA2E;AAE3E,wCAA8C;AAGvC,IAAM,aAAa,GACxB,UAAC,cAA8B;IAC/B,OAAA,UAAO,GAAoB,EAAE,GAAqB;;;;;;oBAExC,MAAM,GAAI,GAAW,CAAC,IAAI,CAAC,GAAG,CAAC;oBAC/B,WAAW,GAAG,GAAG,CAAC,MAAM,CAAC,OAAO,CAAC;oBACnC,SAAS,GAAG,IAAA,6BAAY,EAAC,GAAG,CAAC,IAAI,EAAE,CAAC;oBAClC,EAAE,GAAG,IAAA,yBAAW,EAAC,GAAG,CAAC,CAAC;oBACxB,QAAQ,GAAQ,cAAc,CAAC,WAAW,EAAE,CAAC;oBAC7C,OAAK,QAAQ,CAAC,WAAW,CAAC,CAAC,EAAE,CAAC;oBAC5B,OAAO,GAAG,GAAG,CAAC,IAAI,CAAC,OAAO,CAAC;oBAC7B,WAAW,GAAG,GAAG,CAAC,IAAI,CAAC,WAAW,CAAC;oBAErC,WAAM,cAAc,CAAC,wBAAwB,CAAC,WAAW,CAAC,EAAA;;oBADxD,OAAO,GACT,SAA0D;oBAE5D,IAAI,CAAC,OAAO,EAAE,CAAC;wBACb,MAAM,IAAI,KAAK,CAAC,qBAAqB,CAAC,CAAC;oBACzC,CAAC;oBAGkB,WAAM,IAAA,oBAAY,EAAC,MAAM,EAAE,OAAO,CAAC,EAAA;;oBAAlD,YAAY,GAAG,SAAmC;oBACtD,IAAI,YAAY,EAAE,CAAC;wBACjB,SAAS,GAAG,UAAG,SAAS,oBAAU,YAAY,CAAE,CAAC;wBACjD,IAAE,CAAC,aAAa,CAAC,OAAO,CAAC,EAAE,EAAE;4BAC3B,EAAE,IAAA;4BACF,SAAS,WAAA;yBACV,CAAC,CAAC;oBACL,CAAC;oBAGD,IAAA,6BAAc,EACZ,GAAG,EACH,GAAG,EACH,OAAO,CAAC,MAAM,EACd,IAAA,iCAAkB,EAAC,GAAG,EAAE,GAAG,CAAC,EAC5B,WAAW,EACX,YAAY,CACb,CAAC;oBAEF,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC;;;;oBAEb,IAAA,sBAAS,EAAC,GAAG,EAAE,KAAG,CAAC,CAAC;;;;;SAEvB;AAzCD,CAyCC,CAAC;AA3CS,QAAA,aAAa,iBA2CtB"}
|
|
@@ -0,0 +1,16 @@
|
|
|
1
|
+
"use strict";
|
|
2
|
+
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
+
exports.getClientIp = void 0;
|
|
4
|
+
var requestIp = require("request-ip");
|
|
5
|
+
var getClientIp = function (req) {
|
|
6
|
+
var ip = requestIp.getClientIp(req);
|
|
7
|
+
if (ip && ip.startsWith("::ffff:")) {
|
|
8
|
+
ip = ip.substring(7);
|
|
9
|
+
}
|
|
10
|
+
if (ip === "::1") {
|
|
11
|
+
ip = "127.0.0.1";
|
|
12
|
+
}
|
|
13
|
+
return ip;
|
|
14
|
+
};
|
|
15
|
+
exports.getClientIp = getClientIp;
|
|
16
|
+
//# sourceMappingURL=getClientIp.js.map
|
|
@@ -0,0 +1 @@
|
|
|
1
|
+
{"version":3,"file":"getClientIp.js","sourceRoot":"","sources":["../../../src/rest-express/utils/getClientIp.ts"],"names":[],"mappings":";;;AASA,sCAAwC;AAEjC,IAAM,WAAW,GAAG,UAAC,GAAG;IAC7B,IAAI,EAAE,GAAG,SAAS,CAAC,WAAW,CAAC,GAAG,CAAC,CAAC;IAEpC,IAAI,EAAE,IAAI,EAAE,CAAC,UAAU,CAAC,SAAS,CAAC,EAAE,CAAC;QACnC,EAAE,GAAG,EAAE,CAAC,SAAS,CAAC,CAAC,CAAC,CAAC;IACvB,CAAC;IAGD,IAAI,EAAE,KAAK,KAAK,EAAE,CAAC;QACjB,EAAE,GAAG,WAAW,CAAC;IACnB,CAAC;IAED,OAAO,EAAE,CAAC;AACZ,CAAC,CAAC;AAbW,QAAA,WAAW,eAatB"}
|
package/package.json
CHANGED
|
@@ -1,7 +1,6 @@
|
|
|
1
1
|
{
|
|
2
2
|
"name": "@steedos/accounts",
|
|
3
|
-
"
|
|
4
|
-
"version": "3.0.0-beta.99",
|
|
3
|
+
"version": "3.0.0",
|
|
5
4
|
"main": "lib/index.js",
|
|
6
5
|
"files": [
|
|
7
6
|
"/package.json",
|
|
@@ -29,12 +28,12 @@
|
|
|
29
28
|
"@accounts/two-factor": "^0.20.1",
|
|
30
29
|
"@accounts/types": "0.20.1",
|
|
31
30
|
"@babel/runtime": "^7.12.18",
|
|
32
|
-
"@steedos/auth": "3.0.0
|
|
33
|
-
"@steedos/objectql": "3.0.0
|
|
34
|
-
"@steedos/utils": "3.0.0
|
|
31
|
+
"@steedos/auth": "3.0.0",
|
|
32
|
+
"@steedos/objectql": "3.0.0",
|
|
33
|
+
"@steedos/utils": "3.0.0",
|
|
35
34
|
"app-root-path": "^2.2.1",
|
|
36
35
|
"bcryptjs": "^2.4.3",
|
|
37
|
-
"body-parser": "
|
|
36
|
+
"body-parser": "^2.2.1",
|
|
38
37
|
"chalk": "^2.4.2",
|
|
39
38
|
"cookie-parser": "1.4.3",
|
|
40
39
|
"cookies": "^0.8.0",
|
|
@@ -42,7 +41,7 @@
|
|
|
42
41
|
"crypto": "^1.0.1",
|
|
43
42
|
"csurf": "^1.11.0",
|
|
44
43
|
"emittery": "0.11.0",
|
|
45
|
-
"express": "
|
|
44
|
+
"express": "^5.1.0",
|
|
46
45
|
"ismobilejs": "^1.1.1",
|
|
47
46
|
"js-yaml": "^3.14.1",
|
|
48
47
|
"jsonwebtoken": "^8.5.1",
|
|
@@ -60,5 +59,5 @@
|
|
|
60
59
|
"publishConfig": {
|
|
61
60
|
"access": "public"
|
|
62
61
|
},
|
|
63
|
-
"gitHead": "
|
|
62
|
+
"gitHead": "20ea485d800dd4ad0a99c82b26000879c2f85741"
|
|
64
63
|
}
|
package/src/core/index.ts
CHANGED
|
@@ -1,10 +1,10 @@
|
|
|
1
|
-
import { getSteedosConfig } from "@steedos/objectql";
|
|
1
|
+
import { getSteedosConfig, getSteedosSchema } from "@steedos/objectql";
|
|
2
2
|
import { db } from "../db";
|
|
3
3
|
import * as _ from "lodash";
|
|
4
4
|
import chalk from "chalk";
|
|
5
5
|
const clone = require("clone");
|
|
6
6
|
|
|
7
|
-
declare var MailQueue;
|
|
7
|
+
// declare var MailQueue;
|
|
8
8
|
declare var SMSQueue;
|
|
9
9
|
|
|
10
10
|
const config = getSteedosConfig();
|
|
@@ -242,24 +242,16 @@ export const getSteedosService = () => {
|
|
|
242
242
|
|
|
243
243
|
export const sendMail = async (mail: any): Promise<void> => {
|
|
244
244
|
const { to, subject, html } = mail;
|
|
245
|
-
const config = getSteedosConfig().email || {};
|
|
246
|
-
let canSend = canSendEmail();
|
|
247
|
-
//如果没有配置发送邮件服务,则打印log
|
|
248
245
|
console.log(chalk.green(`MAIL: ${to}, ${subject}`));
|
|
249
|
-
|
|
250
|
-
|
|
251
|
-
|
|
252
|
-
|
|
253
|
-
|
|
254
|
-
|
|
255
|
-
|
|
256
|
-
}
|
|
257
|
-
|
|
258
|
-
to: to,
|
|
259
|
-
from: config.from || "华炎魔方",
|
|
260
|
-
subject: subject,
|
|
261
|
-
html: html,
|
|
262
|
-
});
|
|
246
|
+
try {
|
|
247
|
+
const mailOptions = {
|
|
248
|
+
to, // 收件人
|
|
249
|
+
subject, // 主题
|
|
250
|
+
html, // 内容
|
|
251
|
+
};
|
|
252
|
+
await getSteedosSchema().broker.call("@builder6/email.send", mailOptions);
|
|
253
|
+
} catch (e) {
|
|
254
|
+
console.log(e);
|
|
263
255
|
}
|
|
264
256
|
};
|
|
265
257
|
|
|
@@ -5,7 +5,7 @@ import { AccountsServer } from "../../server";
|
|
|
5
5
|
import { sendError } from "../utils/send-error";
|
|
6
6
|
import { setAuthCookies, clearAuthCookies } from "../utils/steedos-auth";
|
|
7
7
|
import { getUserIdByToken } from "@steedos/auth";
|
|
8
|
-
import
|
|
8
|
+
import { getClientIp } from "../utils/getClientIp";
|
|
9
9
|
import { getUserAgent } from "../utils/get-user-agent";
|
|
10
10
|
|
|
11
11
|
const queryString = require("querystring");
|
|
@@ -20,7 +20,7 @@ export const authorize =
|
|
|
20
20
|
const connection = req.query.connection || "steedos";
|
|
21
21
|
const state = req.query.state || "";
|
|
22
22
|
const userAgent = getUserAgent(req);
|
|
23
|
-
const ip =
|
|
23
|
+
const ip = getClientIp(req);
|
|
24
24
|
let query = queryString.stringify(req.query);
|
|
25
25
|
let redirect_uri = req.query.redirect_uri
|
|
26
26
|
? (req.query.redirect_uri as string)
|
|
@@ -1,32 +1,31 @@
|
|
|
1
|
-
import * as express from
|
|
2
|
-
import
|
|
3
|
-
import { AccountsServer } from
|
|
4
|
-
import { LoginUserIdentity } from
|
|
5
|
-
import { getUserAgent } from
|
|
6
|
-
import { sendError } from
|
|
1
|
+
import * as express from "express";
|
|
2
|
+
import { getClientIp } from "../utils/getClientIp";
|
|
3
|
+
import { AccountsServer } from "../../server";
|
|
4
|
+
import { LoginUserIdentity } from "@accounts/types";
|
|
5
|
+
import { getUserAgent } from "../utils/get-user-agent";
|
|
6
|
+
import { sendError } from "../utils/send-error";
|
|
7
7
|
|
|
8
|
-
export const impersonate =
|
|
9
|
-
|
|
10
|
-
res: express.Response
|
|
11
|
-
|
|
12
|
-
|
|
13
|
-
|
|
14
|
-
|
|
15
|
-
|
|
16
|
-
|
|
17
|
-
|
|
18
|
-
|
|
19
|
-
|
|
20
|
-
|
|
21
|
-
|
|
22
|
-
|
|
23
|
-
|
|
24
|
-
|
|
25
|
-
|
|
26
|
-
|
|
27
|
-
|
|
28
|
-
|
|
29
|
-
|
|
30
|
-
|
|
31
|
-
}
|
|
32
|
-
};
|
|
8
|
+
export const impersonate =
|
|
9
|
+
(accountsServer: AccountsServer) =>
|
|
10
|
+
async (req: express.Request, res: express.Response) => {
|
|
11
|
+
try {
|
|
12
|
+
const {
|
|
13
|
+
impersonated,
|
|
14
|
+
accessToken,
|
|
15
|
+
}: {
|
|
16
|
+
accessToken: string;
|
|
17
|
+
impersonated: LoginUserIdentity;
|
|
18
|
+
} = req.body;
|
|
19
|
+
const userAgent = getUserAgent(req);
|
|
20
|
+
const ip = getClientIp(req);
|
|
21
|
+
const impersonateRes = await accountsServer.impersonate(
|
|
22
|
+
accessToken,
|
|
23
|
+
impersonated,
|
|
24
|
+
ip,
|
|
25
|
+
userAgent,
|
|
26
|
+
);
|
|
27
|
+
res.json(impersonateRes);
|
|
28
|
+
} catch (err) {
|
|
29
|
+
sendError(res, err);
|
|
30
|
+
}
|
|
31
|
+
};
|