@telia-ace/alliance-portal 1.0.6-next.1 → 1.0.6-next.3
This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.
- package/CHANGELOG.md +13 -0
- package/dist/app.module.js +0 -2
- package/dist/config.js +1 -54
- package/dist/index.js +12 -0
- package/package.json +1 -1
package/CHANGELOG.md
CHANGED
|
@@ -1,5 +1,18 @@
|
|
|
1
1
|
# @telia-ace/alliance-portal
|
|
2
2
|
|
|
3
|
+
## 1.0.6-next.3
|
|
4
|
+
|
|
5
|
+
### Patch Changes
|
|
6
|
+
|
|
7
|
+
- e8eda01: Fix issue with user session cookie being too large.
|
|
8
|
+
|
|
9
|
+
## 1.0.6-next.2
|
|
10
|
+
|
|
11
|
+
### Patch Changes
|
|
12
|
+
|
|
13
|
+
- ba13c59: Use `.env` files for configuration during development instead of JS/TS modules.
|
|
14
|
+
- ba13c59: Set user as `system-admin` if user claims include ACE Enterprise Admin group/role.
|
|
15
|
+
|
|
3
16
|
## 1.0.6-next.1
|
|
4
17
|
|
|
5
18
|
### Patch Changes
|
package/dist/app.module.js
CHANGED
|
@@ -12,7 +12,6 @@ const common_1 = require("@nestjs/common");
|
|
|
12
12
|
const config_1 = require("@nestjs/config");
|
|
13
13
|
const alliance_internal_node_utilities_1 = require("@telia-ace/alliance-internal-node-utilities");
|
|
14
14
|
const app_controller_1 = require("./app.controller");
|
|
15
|
-
const config_2 = require("./config");
|
|
16
15
|
let AppModule = exports.AppModule = class AppModule {
|
|
17
16
|
};
|
|
18
17
|
exports.AppModule = AppModule = __decorate([
|
|
@@ -21,7 +20,6 @@ exports.AppModule = AppModule = __decorate([
|
|
|
21
20
|
imports: [
|
|
22
21
|
config_1.ConfigModule.forRoot({
|
|
23
22
|
isGlobal: true,
|
|
24
|
-
load: [config_2.configuration],
|
|
25
23
|
}),
|
|
26
24
|
alliance_internal_node_utilities_1.LoggerModule.forRoot(),
|
|
27
25
|
axios_1.HttpModule,
|
package/dist/config.js
CHANGED
|
@@ -1,7 +1,6 @@
|
|
|
1
1
|
"use strict";
|
|
2
2
|
Object.defineProperty(exports, "__esModule", { value: true });
|
|
3
|
-
exports.
|
|
4
|
-
const alliance_internal_node_utilities_1 = require("@telia-ace/alliance-internal-node-utilities");
|
|
3
|
+
exports.ConfigKeys = void 0;
|
|
5
4
|
var ConfigKeys;
|
|
6
5
|
(function (ConfigKeys) {
|
|
7
6
|
ConfigKeys["AuthScopes"] = "AUTH_SCOPES";
|
|
@@ -13,55 +12,3 @@ var ConfigKeys;
|
|
|
13
12
|
ConfigKeys["WebprovisionsDistributionUrl"] = "WEBPROVISIONS_DISTRIBUTION_URL";
|
|
14
13
|
ConfigKeys["WebprovisionsDistributionCookiePolicyUrl"] = "WEBPROVISIONS_DISTRIBUTION_COOKIE_POLICY_URL";
|
|
15
14
|
})(ConfigKeys || (exports.ConfigKeys = ConfigKeys = {}));
|
|
16
|
-
function configuration() {
|
|
17
|
-
return {
|
|
18
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.AuthCookieName]: process.env[alliance_internal_node_utilities_1.SharedConfigKeys.AuthCookieName],
|
|
19
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.AuthCookieSecret]: process.env[alliance_internal_node_utilities_1.SharedConfigKeys.AuthCookieSecret],
|
|
20
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.AuthAuthority]: process.env[alliance_internal_node_utilities_1.SharedConfigKeys.AuthAuthority],
|
|
21
|
-
[ConfigKeys.AuthScopes]: process.env[ConfigKeys.AuthScopes],
|
|
22
|
-
[ConfigKeys.AuthClientSecret]: process.env[ConfigKeys.AuthClientSecret],
|
|
23
|
-
[ConfigKeys.AuthClientId]: process.env[ConfigKeys.AuthClientId],
|
|
24
|
-
[ConfigKeys.AuthResponseType]: process.env[ConfigKeys.AuthResponseType],
|
|
25
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.ServicePort]: process.env[alliance_internal_node_utilities_1.SharedConfigKeys.ServicePort],
|
|
26
|
-
[ConfigKeys.ServiceBaseUrl]: process.env[ConfigKeys.ServiceBaseUrl],
|
|
27
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.ServiceLogLevel]: process.env[alliance_internal_node_utilities_1.SharedConfigKeys.ServiceLogLevel],
|
|
28
|
-
[ConfigKeys.WebprovisionsTag]: process.env[ConfigKeys.WebprovisionsTag],
|
|
29
|
-
[ConfigKeys.WebprovisionsDistributionUrl]: process.env[ConfigKeys.WebprovisionsDistributionUrl],
|
|
30
|
-
[ConfigKeys.WebprovisionsDistributionCookiePolicyUrl]: process.env[ConfigKeys.WebprovisionsDistributionCookiePolicyUrl],
|
|
31
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.JwtPrivateKey]: process.env[alliance_internal_node_utilities_1.SharedConfigKeys.JwtPrivateKey],
|
|
32
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.DbEndpoint]: process.env[alliance_internal_node_utilities_1.SharedConfigKeys.DbEndpoint],
|
|
33
|
-
};
|
|
34
|
-
}
|
|
35
|
-
exports.configuration = configuration;
|
|
36
|
-
// ACE KNOWLEDGE AD
|
|
37
|
-
const auth = {
|
|
38
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.AuthAuthority]: 'https://humanyb2c.b2clogin.com/humanyb2c.onmicrosoft.com/B2C_1_Alliance.Test/v2.0',
|
|
39
|
-
[ConfigKeys.AuthClientSecret]: 'z6r7Q~Snpk7NRPSdi1XrKrf~.GVw~AWb3pxYj',
|
|
40
|
-
[ConfigKeys.AuthClientId]: 'fa9f111b-006e-4633-a7ea-2db825ba898d',
|
|
41
|
-
[ConfigKeys.AuthScopes]: 'openid',
|
|
42
|
-
[ConfigKeys.AuthResponseType]: 'id_token',
|
|
43
|
-
};
|
|
44
|
-
// ACE AUTH PLATFORM
|
|
45
|
-
// const auth = {
|
|
46
|
-
// [SharedConfigKeys.AuthAuthority]: 'https://auth.acedev.teliacompany.net/realms/ace',
|
|
47
|
-
// [ConfigKeys.AuthClientSecret]: '3x1GEvmAdq42CfkgHKi3GJJnzaOKUEYT',
|
|
48
|
-
// [ConfigKeys.AuthClientId]: 'ace-alliance',
|
|
49
|
-
// [ConfigKeys.AuthScopes]: 'openid',
|
|
50
|
-
// [ConfigKeys.AuthResponseType]: 'code',
|
|
51
|
-
// };
|
|
52
|
-
function localConfiguration() {
|
|
53
|
-
return {
|
|
54
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.AuthCookieName]: 'alliance-auth',
|
|
55
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.AuthCookieSecret]: 'zlLZBlk7wt8lypP5lA4D',
|
|
56
|
-
...auth,
|
|
57
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.ServicePort]: 3000,
|
|
58
|
-
[ConfigKeys.ServiceBaseUrl]: 'http://localhost:{{port}}',
|
|
59
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.ServiceLogLevel]: 'trace',
|
|
60
|
-
[ConfigKeys.WebprovisionsTag]: 'dev',
|
|
61
|
-
[ConfigKeys.WebprovisionsDistributionUrl]: 'https://embed.webprovisions.io/p/alliance-portal',
|
|
62
|
-
[ConfigKeys.WebprovisionsDistributionCookiePolicyUrl]: 'https://embed.webprovisions.io/p/alliance-portal/cookie-policy.html',
|
|
63
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.JwtPrivateKey]: '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',
|
|
64
|
-
[alliance_internal_node_utilities_1.SharedConfigKeys.DbEndpoint]: 'http://localhost:3002/graphql',
|
|
65
|
-
};
|
|
66
|
-
}
|
|
67
|
-
exports.localConfiguration = localConfiguration;
|
package/dist/index.js
CHANGED
|
@@ -32,6 +32,7 @@ async function startPortal() {
|
|
|
32
32
|
displayName: claims.name || 'Empty displayName',
|
|
33
33
|
email: claims.email || claims.emails[0] || 'Empty email',
|
|
34
34
|
objectId: claims.sub || claims.oid,
|
|
35
|
+
type: hasEnterpriseAdminRole(claims) ? 'system-admin' : 'user',
|
|
35
36
|
};
|
|
36
37
|
logger.trace({
|
|
37
38
|
msg: 'decoded JWT and mapped claims to user, getting or creating user in database',
|
|
@@ -46,9 +47,20 @@ async function startPortal() {
|
|
|
46
47
|
logger.trace({ msg: 'added user to database, if it did not already exist' });
|
|
47
48
|
}
|
|
48
49
|
catch { }
|
|
50
|
+
// FUTURE TODO: Implement some external storage for sessions, such as redis
|
|
51
|
+
// Temporary - With this the stored session cookie gets too big
|
|
52
|
+
// @ts-ignore
|
|
53
|
+
delete session.access_token;
|
|
49
54
|
return session;
|
|
50
55
|
},
|
|
51
56
|
}));
|
|
52
57
|
await app.listen(configService.getOrThrow(alliance_internal_node_utilities_1.SharedConfigKeys.ServicePort));
|
|
53
58
|
}
|
|
59
|
+
function hasEnterpriseAdminRole(claims) {
|
|
60
|
+
if (!claims.groups) {
|
|
61
|
+
return false;
|
|
62
|
+
}
|
|
63
|
+
const aceEnterpriseAdminRoleId = 'PROD_ACE_Enterprise_Admins';
|
|
64
|
+
return claims.groups.includes(aceEnterpriseAdminRoleId);
|
|
65
|
+
}
|
|
54
66
|
startPortal();
|