npm - @things-factory/auth-base - Versions diffs - 9.0.0-beta.4 → 9.0.0-beta.47 - Mend

@things-factory/auth-base 9.0.0-beta.4 → 9.0.0-beta.47

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (355) hide show

package/dist-server/errors/index.js CHANGED Viewed

@@ -1,6 +1,6 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 const tslib_1 = require("tslib");
-tslib_1.__exportStar(require("./auth-error"), exports);
-tslib_1.__exportStar(require("./user-domain-not-match-error"), exports);
+tslib_1.__exportStar(require("./auth-error.js"), exports);
+tslib_1.__exportStar(require("./user-domain-not-match-error.js"), exports);
 //# sourceMappingURL=index.js.map

package/dist-server/errors/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../server/errors/index.ts"],"names":[],"mappings":";;;AAAA,~~uDAA4B~~;~~AAC5B~~,~~wEAA6C~~","sourcesContent":["export * from './auth-error'\nexport * from './user-domain-not-match-error'\n"]}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../server/errors/index.ts"],"names":[],"mappings":";;;AAAA,0DAA+B;AAC/B,2EAAgD","sourcesContent":["export * from './auth-error.js'\nexport * from './user-domain-not-match-error.js'\n"]}

package/dist-server/errors/user-domain-not-match-error.d.ts CHANGED Viewed

@@ -1,4 +1,4 @@
-import { AuthError } from './auth-error';
+import { AuthError } from './auth-error.js';
 export declare class DomainError extends AuthError {
     static get ERROR_CODES(): any;
     domains: any;

package/dist-server/errors/user-domain-not-match-error.js CHANGED Viewed

@@ -1,18 +1,18 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.DomainError = void 0;
-const error_code_1 = require("../constants/error-code");
-const auth_error_1 = require("./auth-error");
-class DomainError extends auth_error_1.AuthError {
+const error_code_js_1 = require("../constants/error-code.js");
+const auth_error_js_1 = require("./auth-error.js");
+class DomainError extends auth_error_js_1.AuthError {
     static get ERROR_CODES() {
         return {
-            UNAVAILABLE_DOMAIN: error_code_1.UNAVAILABLE_DOMAIN,
-            NO_AVAILABLE_DOMAIN: error_code_1.NO_AVAILABLE_DOMAIN,
-            NO_SELECTED_DOMAIN: error_code_1.NO_SELECTED_DOMAIN,
-            REDIRECT_TO_DEFAULT_DOMAIN: error_code_1.REDIRECT_TO_DEFAULT_DOMAIN
+            UNAVAILABLE_DOMAIN: error_code_js_1.UNAVAILABLE_DOMAIN,
+            NO_AVAILABLE_DOMAIN: error_code_js_1.NO_AVAILABLE_DOMAIN,
+            NO_SELECTED_DOMAIN: error_code_js_1.NO_SELECTED_DOMAIN,
+            REDIRECT_TO_DEFAULT_DOMAIN: error_code_js_1.REDIRECT_TO_DEFAULT_DOMAIN
         };
     }
-    constructor({ errorCode = error_code_1.UNAVAILABLE_DOMAIN, domains }) {
+    constructor({ errorCode = error_code_js_1.UNAVAILABLE_DOMAIN, domains }) {
         super({
             errorCode
         });

package/dist-server/errors/user-domain-not-match-error.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"user-domain-not-match-error.js","sourceRoot":"","sources":["../../server/errors/user-domain-not-match-error.ts"],"names":[],"mappings":";;;AAAA,~~wDAKgC~~;~~AAChC~~,~~6CAAwC~~;~~AAExC~~,MAAa,WAAY,SAAQ,~~sBAAS~~;IACxC,MAAM,KAAK,WAAW;QACpB,OAAO;YACL,kBAAkB,EAAlB~~,+BAAkB~~;YAClB,mBAAmB,EAAnB,~~gCAAmB~~;YACnB,kBAAkB,EAAlB~~,+BAAkB~~;YAClB,0BAA0B,EAA1B,~~uCAA0B~~;SAC3B,CAAA;IACH,CAAC;IAID,YAAY,EAAE,SAAS,GAAG~~,+BAAkB~~,EAAE,OAAO,EAAE;QACrD,KAAK,CAAC;YACJ,SAAS;SACV,CAAC,CAAA;QAEF,IAAI,CAAC,IAAI,GAAG,uBAAuB,CAAA;QACnC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAA;IACxB,CAAC;CACF;AApBD,kCAoBC","sourcesContent":["import {\n NO_AVAILABLE_DOMAIN,\n NO_SELECTED_DOMAIN,\n REDIRECT_TO_DEFAULT_DOMAIN,\n UNAVAILABLE_DOMAIN\n} from '../constants/error-code'\nimport { AuthError } from './auth-error'\n\nexport class DomainError extends AuthError {\n static get ERROR_CODES(): any {\n return {\n UNAVAILABLE_DOMAIN,\n NO_AVAILABLE_DOMAIN,\n NO_SELECTED_DOMAIN,\n REDIRECT_TO_DEFAULT_DOMAIN\n }\n }\n\n domains: any\n\n constructor({ errorCode = UNAVAILABLE_DOMAIN, domains }) {\n super({\n errorCode\n })\n\n this.name = 'user-domain-not-match'\n this.domains = domains\n }\n}\n"]}
1	+ {"version":3,"file":"user-domain-not-match-error.js","sourceRoot":"","sources":["../../server/errors/user-domain-not-match-error.ts"],"names":[],"mappings":";;;AAAA,8DAKmC;AACnC,mDAA2C;AAE3C,MAAa,WAAY,SAAQ,yBAAS;IACxC,MAAM,KAAK,WAAW;QACpB,OAAO;YACL,kBAAkB,EAAlB,kCAAkB;YAClB,mBAAmB,EAAnB,mCAAmB;YACnB,kBAAkB,EAAlB,kCAAkB;YAClB,0BAA0B,EAA1B,0CAA0B;SAC3B,CAAA;IACH,CAAC;IAID,YAAY,EAAE,SAAS,GAAG,kCAAkB,EAAE,OAAO,EAAE;QACrD,KAAK,CAAC;YACJ,SAAS;SACV,CAAC,CAAA;QAEF,IAAI,CAAC,IAAI,GAAG,uBAAuB,CAAA;QACnC,IAAI,CAAC,OAAO,GAAG,OAAO,CAAA;IACxB,CAAC;CACF;AApBD,kCAoBC","sourcesContent":["import {\n NO_AVAILABLE_DOMAIN,\n NO_SELECTED_DOMAIN,\n REDIRECT_TO_DEFAULT_DOMAIN,\n UNAVAILABLE_DOMAIN\n} from '../constants/error-code.js'\nimport { AuthError } from './auth-error.js'\n\nexport class DomainError extends AuthError {\n static get ERROR_CODES(): any {\n return {\n UNAVAILABLE_DOMAIN,\n NO_AVAILABLE_DOMAIN,\n NO_SELECTED_DOMAIN,\n REDIRECT_TO_DEFAULT_DOMAIN\n }\n }\n\n domains: any\n\n constructor({ errorCode = UNAVAILABLE_DOMAIN, domains }) {\n super({\n errorCode\n })\n\n this.name = 'user-domain-not-match'\n this.domains = domains\n }\n}\n"]}

package/dist-server/index.d.ts CHANGED Viewed

@@ -1,16 +1,16 @@
-import './routes';
-export * from './service';
-export * from './migrations';
-export * from './middlewares';
-export * from './routes';
-export * from './router';
-export * from './utils/get-domain-users';
-export * from './utils/get-user-domains';
-export * from './utils/get-secret';
-export * from './utils/check-user-belongs-domain';
-export * from './utils/access-token-cookie';
-export * from './utils/encrypt-state';
-export * from './utils/check-permission';
-export * from './utils/check-user-has-role';
-export * from './errors';
-export * from './types';
+import './routes.js';
+export * from './service/index.js';
+export * from './migrations/index.js';
+export * from './middlewares/index.js';
+export * from './router/index.js';
+export * from './routes.js';
+export * from './utils/get-domain-users.js';
+export * from './utils/get-user-domains.js';
+export * from './utils/get-secret.js';
+export * from './utils/check-user-belongs-domain.js';
+export * from './utils/access-token-cookie.js';
+export * from './utils/encrypt-state.js';
+export * from './utils/check-permission.js';
+export * from './utils/check-user-has-role.js';
+export * from './errors/index.js';
+export * from './types.js';

package/dist-server/index.js CHANGED Viewed

@@ -2,26 +2,26 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 const tslib_1 = require("tslib");
 const shell_1 = require("@things-factory/shell");
-const privilege_1 = require("./service/privilege/privilege");
-require("./routes");
-tslib_1.__exportStar(require("./service"), exports);
-tslib_1.__exportStar(require("./migrations"), exports);
-tslib_1.__exportStar(require("./middlewares"), exports);
-tslib_1.__exportStar(require("./routes"), exports);
-tslib_1.__exportStar(require("./router"), exports);
-tslib_1.__exportStar(require("./utils/get-domain-users"), exports);
-tslib_1.__exportStar(require("./utils/get-user-domains"), exports);
-tslib_1.__exportStar(require("./utils/get-secret"), exports);
-tslib_1.__exportStar(require("./utils/check-user-belongs-domain"), exports);
-tslib_1.__exportStar(require("./utils/access-token-cookie"), exports);
-tslib_1.__exportStar(require("./utils/encrypt-state"), exports);
-tslib_1.__exportStar(require("./utils/check-permission"), exports);
-tslib_1.__exportStar(require("./utils/check-user-has-role"), exports);
-tslib_1.__exportStar(require("./errors"), exports);
-tslib_1.__exportStar(require("./types"), exports);
+const privilege_js_1 = require("./service/privilege/privilege.js");
+require("./routes.js");
+tslib_1.__exportStar(require("./service/index.js"), exports);
+tslib_1.__exportStar(require("./migrations/index.js"), exports);
+tslib_1.__exportStar(require("./middlewares/index.js"), exports);
+tslib_1.__exportStar(require("./router/index.js"), exports);
+tslib_1.__exportStar(require("./routes.js"), exports);
+tslib_1.__exportStar(require("./utils/get-domain-users.js"), exports);
+tslib_1.__exportStar(require("./utils/get-user-domains.js"), exports);
+tslib_1.__exportStar(require("./utils/get-secret.js"), exports);
+tslib_1.__exportStar(require("./utils/check-user-belongs-domain.js"), exports);
+tslib_1.__exportStar(require("./utils/access-token-cookie.js"), exports);
+tslib_1.__exportStar(require("./utils/encrypt-state.js"), exports);
+tslib_1.__exportStar(require("./utils/check-permission.js"), exports);
+tslib_1.__exportStar(require("./utils/check-user-has-role.js"), exports);
+tslib_1.__exportStar(require("./errors/index.js"), exports);
+tslib_1.__exportStar(require("./types.js"), exports);
 process.on('bootstrap-module-start', async ({ app, config, client }) => {
     const privileges = process['PRIVILEGES'];
-    const privilegeRepository = (0, shell_1.getRepository)(privilege_1.Privilege);
+    const privilegeRepository = (0, shell_1.getRepository)(privilege_js_1.Privilege);
     for (const [category, name] of Object.values(privileges)) {
         if (0 == (await privilegeRepository.count({ where: { category, name } }))) {
             await privilegeRepository.save({ category, name });

package/dist-server/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../server/index.ts"],"names":[],"mappings":";;;AAAA,iDAAqD;AACrD,~~6DAAyD~~;~~AAEzD~~,~~oBAAiB~~;~~AAEjB~~,~~oDAAyB~~;~~AACzB~~,~~uDAA4B~~;~~AAE5B~~,~~wDAA6B~~;~~AAC7B~~,~~mDAAwB~~;~~AACxB~~,~~mDAAwB~~;~~AAExB~~,~~mEAAwC~~;~~AACxC~~,~~mEAAwC;AACxC,6DAAkC;AAClC,4EAAiD;AACjD,~~sEAA2C;AAC3C,gEAAqC;AACrC,mEAAwC;AACxC,sEAA2C;~~AAE3C~~,~~mDAAwB~~;~~AAExB~~,~~kDAAuB~~;~~AAEvB~~,OAAO,CAAC,EAAE,CAAC,wBAA+B,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAO,EAAE,EAAE;IACjF,MAAM,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC,CAAA;IACxC,MAAM,mBAAmB,GAAG,IAAA,qBAAa,EAAC,~~qBAAS~~,CAAC,CAAA;IAEpD,KAAK,MAAM,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,UAA8B,CAAC,EAAE,CAAC;QAC7E,IAAI,CAAC,IAAI,CAAC,MAAM,mBAAmB,CAAC,KAAK,CAAC,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC;YAC1E,MAAM,mBAAmB,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAA;QACpD,CAAC;IACH,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,2EAA2E,CAAC,CAAA;AAC1F,CAAC,CAAC,CAAA","sourcesContent":["import { getRepository } from '@things-factory/shell'\nimport { Privilege } from './service/privilege/privilege'\n\nimport './routes'\n\nexport * from './service'\nexport * from './migrations'\n\nexport * from './middlewares'\nexport * from './~~routes~~'\nexport * from './~~router~~'\n\nexport * from './utils/get-domain-users'\nexport * from './utils/get-user-domains'\nexport * from './utils/get-secret'\nexport * from './utils/check-user-belongs-domain'\nexport * from './utils/access-token-cookie'\nexport * from './utils/encrypt-state'\nexport * from './utils/check-permission'\nexport * from './utils/check-user-has-role'\n\nexport * from './errors'\n\nexport * from './types'\n\nprocess.on('bootstrap-module-start' as any, async ({ app, config, client }: any) => {\n const privileges = process['PRIVILEGES']\n const privilegeRepository = getRepository(Privilege)\n\n for (const [category, name] of Object.values(privileges as [string, string])) {\n if (0 == (await privilegeRepository.count({ where: { category, name } }))) {\n await privilegeRepository.save({ category, name })\n }\n }\n\n console.log('[auth-base:bootstrap] Synchronization for privilege master has just done.')\n})\n"]}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../server/index.ts"],"names":[],"mappings":";;;AAAA,iDAAqD;AACrD,mEAA4D;AAE5D,uBAAoB;AAEpB,6DAAkC;AAClC,gEAAqC;AAErC,iEAAsC;AACtC,4DAAiC;AACjC,sDAA2B;AAE3B,sEAA2C;AAC3C,sEAA2C;AAC3C,gEAAqC;AACrC,+EAAoD;AACpD,yEAA8C;AAC9C,mEAAwC;AACxC,sEAA2C;AAC3C,yEAA8C;AAE9C,4DAAiC;AAEjC,qDAA0B;AAE1B,OAAO,CAAC,EAAE,CAAC,wBAA+B,EAAE,KAAK,EAAE,EAAE,GAAG,EAAE,MAAM,EAAE,MAAM,EAAO,EAAE,EAAE;IACjF,MAAM,UAAU,GAAG,OAAO,CAAC,YAAY,CAAC,CAAA;IACxC,MAAM,mBAAmB,GAAG,IAAA,qBAAa,EAAC,wBAAS,CAAC,CAAA;IAEpD,KAAK,MAAM,CAAC,QAAQ,EAAE,IAAI,CAAC,IAAI,MAAM,CAAC,MAAM,CAAC,UAA8B,CAAC,EAAE,CAAC;QAC7E,IAAI,CAAC,IAAI,CAAC,MAAM,mBAAmB,CAAC,KAAK,CAAC,EAAE,KAAK,EAAE,EAAE,QAAQ,EAAE,IAAI,EAAE,EAAE,CAAC,CAAC,EAAE,CAAC;YAC1E,MAAM,mBAAmB,CAAC,IAAI,CAAC,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAA;QACpD,CAAC;IACH,CAAC;IAED,OAAO,CAAC,GAAG,CAAC,2EAA2E,CAAC,CAAA;AAC1F,CAAC,CAAC,CAAA","sourcesContent":["import { getRepository } from '@things-factory/shell'\nimport { Privilege } from './service/privilege/privilege.js'\n\nimport './routes.js'\n\nexport * from './service/index.js'\nexport * from './migrations/index.js'\n\nexport * from './middlewares/index.js'\nexport * from './router/index.js'\nexport * from './routes.js'\n\nexport * from './utils/get-domain-users.js'\nexport * from './utils/get-user-domains.js'\nexport * from './utils/get-secret.js'\nexport * from './utils/check-user-belongs-domain.js'\nexport * from './utils/access-token-cookie.js'\nexport * from './utils/encrypt-state.js'\nexport * from './utils/check-permission.js'\nexport * from './utils/check-user-has-role.js'\n\nexport * from './errors/index.js'\n\nexport * from './types.js'\n\nprocess.on('bootstrap-module-start' as any, async ({ app, config, client }: any) => {\n const privileges = process['PRIVILEGES']\n const privilegeRepository = getRepository(Privilege)\n\n for (const [category, name] of Object.values(privileges as [string, string])) {\n if (0 == (await privilegeRepository.count({ where: { category, name } }))) {\n await privilegeRepository.save({ category, name })\n }\n }\n\n console.log('[auth-base:bootstrap] Synchronization for privilege master has just done.')\n})\n"]}

package/dist-server/middlewares/authenticate-401-middleware.js CHANGED Viewed

@@ -2,9 +2,9 @@
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.authenticate401Middleware = authenticate401Middleware;
 const env_1 = require("@things-factory/env");
-const error_code_1 = require("../constants/error-code");
-const auth_error_1 = require("../errors/auth-error");
-const accepts_1 = require("../utils/accepts");
+const error_code_js_1 = require("../constants/error-code.js");
+const auth_error_js_1 = require("../errors/auth-error.js");
+const accepts_js_1 = require("../utils/accepts.js");
 const disableUserSignupProcess = env_1.config.get('disableUserSignupProcess', false);
 const disableUserFavoredLanguage = env_1.config.get('i18n/disableUserFavoredLanguage', false);
 const languages = env_1.config.get('i18n/languages', false);
@@ -14,7 +14,7 @@ async function authenticate401Middleware(context, next) {
     }
     catch (err) {
         var message;
-        if (err instanceof auth_error_1.AuthError) {
+        if (err instanceof auth_error_js_1.AuthError) {
             message = (context.t && context.t(`error.${err.errorCode}`, err.detail || {})) || err.errorCode;
         }
         else {
@@ -32,21 +32,21 @@ async function authenticate401Middleware(context, next) {
          */
         const { method, header, path, originalUrl } = context;
         if (method == 'POST' && path.startsWith('/graphql')) {
-            if (err.errorCode == error_code_1.SUBDOMAIN_NOTFOUND) {
+            if (err.errorCode == error_code_js_1.SUBDOMAIN_NOTFOUND) {
                 context.status = 403;
             }
             return;
         }
-        if (!(0, accepts_1.accepts)(header.accept, ['text/html', '*/*'])) {
+        if (!(0, accepts_js_1.accepts)(header.accept, ['text/html', '*/*'])) {
             return;
         }
         const { redirect_to } = context.query;
         const { redirectTo = redirect_to || originalUrl } = context.request.body || {};
         switch (err.errorCode) {
-            case error_code_1.SUBDOMAIN_NOTFOUND:
+            case error_code_js_1.SUBDOMAIN_NOTFOUND:
                 context.redirect(`/auth/checkin?redirect_to=${encodeURIComponent(redirectTo)}`);
                 break;
-            case error_code_1.USER_LOCKED:
+            case error_code_js_1.USER_LOCKED:
                 return await context.render('auth-page', {
                     pageElement: 'auth-activate',
                     elementScript: '/auth/activate.js',
@@ -56,7 +56,7 @@ async function authenticate401Middleware(context, next) {
                         disableUserFavoredLanguage,
                         languages })
                 });
-            case error_code_1.USER_NOT_ACTIVATED:
+            case error_code_js_1.USER_NOT_ACTIVATED:
                 return await context.render('auth-page', {
                     pageElement: 'auth-activate',
                     elementScript: '/auth/activate.js',
@@ -66,7 +66,7 @@ async function authenticate401Middleware(context, next) {
                         disableUserFavoredLanguage,
                         languages })
                 });
-            case error_code_1.USER_DUPLICATED:
+            case error_code_js_1.USER_DUPLICATED:
                 return await context.render('auth-page', {
                     pageElement: 'auth-signup',
                     elementScript: '/auth/signup.js',
@@ -80,7 +80,7 @@ async function authenticate401Middleware(context, next) {
                 return await context.render('auth-page', {
                     pageElement: 'auth-signin',
                     elementScript: '/auth/signin.js',
-                    data: Object.assign(Object.assign({}, err.detail), { message: err instanceof auth_error_1.AuthError ? message : '', redirectTo,
+                    data: Object.assign(Object.assign({}, err.detail), { message: err instanceof auth_error_js_1.AuthError ? message : '', redirectTo,
                         disableUserSignupProcess,
                         disableUserFavoredLanguage,
                         languages })

package/dist-server/middlewares/authenticate-401-middleware.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"authenticate-401-middleware.js","sourceRoot":"","sources":["../../server/middlewares/authenticate-401-middleware.ts"],"names":[],"mappings":";;AAUA,8DAuGC;AAjHD,6CAA4C;AAE5C,~~wDAA8G~~;~~AAC9G~~,~~qDAAgD~~;~~AAChD~~,~~8CAA0C~~;~~AAE1C~~,MAAM,wBAAwB,GAAG,YAAM,CAAC,GAAG,CAAC,0BAA0B,EAAE,KAAK,CAAC,CAAA;AAC9E,MAAM,0BAA0B,GAAG,YAAM,CAAC,GAAG,CAAC,iCAAiC,EAAE,KAAK,CAAC,CAAA;AACvF,MAAM,SAAS,GAAG,YAAM,CAAC,GAAG,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAA;AAE9C,KAAK,UAAU,yBAAyB,CAAC,OAAO,EAAE,IAAI;IAC3D,IAAI,CAAC;QACH,MAAM,IAAI,EAAE,CAAA;IACd,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,OAAO,CAAA;QAEX,IAAI,GAAG,YAAY,~~sBAAS~~,EAAE,CAAC;YAC7B,OAAO,GAAG,CAAC,OAAO,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,CAAC,SAAS,GAAG,CAAC,SAAS,EAAE,EAAE,GAAG,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,IAAI,GAAG,CAAC,SAAS,CAAA;QACjG,CAAC;aAAM,CAAC;YACN,IAAI,CAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,MAAM,MAAK,GAAG,EAAE,CAAC;gBACxB,MAAM,GAAG,CAAA;YACX,CAAC;YAED,OAAO,GAAG,GAAG,CAAC,OAAO,CAAA;QACvB,CAAC;QAED,OAAO,CAAC,MAAM,GAAG,GAAG,CAAA;QACpB,OAAO,CAAC,IAAI,GAAG,OAAO,CAAA;QAEtB;;;;WAIG;QAEH,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,WAAW,EAAE,GAAG,OAAO,CAAA;QAErD,IAAI,MAAM,IAAI,MAAM,IAAI,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YACpD,IAAI,GAAG,CAAC,SAAS,IAAI~~,+BAAkB~~,EAAE,CAAC;gBACxC,OAAO,CAAC,MAAM,GAAG,GAAG,CAAA;YACtB,CAAC;YACD,OAAM;QACR,CAAC;QAED,IAAI,CAAC,IAAA,~~iBAAO~~,EAAC,MAAM,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,EAAE,CAAC;YAClD,OAAM;QACR,CAAC;QAED,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;QACrC,MAAM,EAAE,UAAU,GAAG,WAAW,IAAI,WAAW,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,IAAI,EAAE,CAAA;QAE9E,QAAQ,GAAG,CAAC,SAAS,EAAE,CAAC;YACtB,KAAK~~,+BAAkB~~;gBACrB,OAAO,CAAC,QAAQ,CAAC,6BAA6B,kBAAkB,CAAC,UAAU,CAAC,EAAE,CAAC,CAAA;gBAC/E,MAAK;YAEP,KAAK,~~wBAAW~~;gBACd,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,eAAe;oBAC5B,aAAa,EAAE,mBAAmB;oBAClC,IAAI,kCACC,GAAG,CAAC,MAAM,KACb,OAAO;wBACP,UAAU;wBACV,wBAAwB;wBACxB,0BAA0B;wBAC1B,SAAS,GACV;iBACF,CAAC,CAAA;YAEJ,KAAK~~,+BAAkB~~;gBACrB,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,eAAe;oBAC5B,aAAa,EAAE,mBAAmB;oBAClC,IAAI,kCACC,GAAG,CAAC,MAAM,KACb,OAAO;wBACP,UAAU;wBACV,wBAAwB;wBACxB,0BAA0B;wBAC1B,SAAS,GACV;iBACF,CAAC,CAAA;YAEJ,KAAK~~,4BAAe~~;gBAClB,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,aAAa;oBAC1B,aAAa,EAAE,iBAAiB;oBAChC,IAAI,kCACC,GAAG,CAAC,MAAM,KACb,OAAO;wBACP,UAAU;wBACV,wBAAwB;wBACxB,0BAA0B;wBAC1B,SAAS,GACV;iBACF,CAAC,CAAA;YAEJ;gBACE,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,aAAa;oBAC1B,aAAa,EAAE,iBAAiB;oBAChC,IAAI,kCACC,GAAG,CAAC,MAAM,KACb,OAAO,EAAE,GAAG,YAAY,~~sBAAS~~,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAChD,UAAU;wBACV,wBAAwB;wBACxB,0BAA0B;wBAC1B,SAAS,GACV;iBACF,CAAC,CAAA;QACN,CAAC;IACH,CAAC;AACH,CAAC","sourcesContent":["import { config } from '@things-factory/env'\n\nimport { SUBDOMAIN_NOTFOUND, USER_DUPLICATED, USER_LOCKED, USER_NOT_ACTIVATED } from '../constants/error-code'\nimport { AuthError } from '../errors/auth-error'\nimport { accepts } from '../utils/accepts'\n\nconst disableUserSignupProcess = config.get('disableUserSignupProcess', false)\nconst disableUserFavoredLanguage = config.get('i18n/disableUserFavoredLanguage', false)\nconst languages = config.get('i18n/languages', false)\n\nexport async function authenticate401Middleware(context, next) {\n try {\n await next()\n } catch (err) {\n var message\n\n if (err instanceof AuthError) {\n message = (context.t && context.t(`error.${err.errorCode}`, err.detail \|\| {})) \|\| err.errorCode\n } else {\n if (err?.status !== 401) {\n throw err\n }\n\n message = err.message\n }\n\n context.status = 401\n context.body = message\n\n /\n 클라이언트 라우팅을 위한 ApiHistoryFallback의 상황과,\n * 서버라우팅의 상황에서 발생하는 던져지는 401 에러인 경우에는\n * error code에 맞춰서 적절하게 rewriting 되도록 한다.\n /\n\n const { method, header, path, originalUrl } = context\n\n if (method == 'POST' && path.startsWith('/graphql')) {\n if (err.errorCode == SUBDOMAIN_NOTFOUND) {\n context.status = 403\n }\n return\n }\n\n if (!accepts(header.accept, ['text/html', '/*'])) {\n return\n }\n\n const { redirect_to } = context.query\n const { redirectTo = redirect_to \|\| originalUrl } = context.request.body \|\| {}\n\n switch (err.errorCode) {\n case SUBDOMAIN_NOTFOUND:\n context.redirect(`/auth/checkin?redirect_to=${encodeURIComponent(redirectTo)}`)\n break\n\n case USER_LOCKED:\n return await context.render('auth-page', {\n pageElement: 'auth-activate',\n elementScript: '/auth/activate.js',\n data: {\n ...err.detail,\n message,\n redirectTo,\n disableUserSignupProcess,\n disableUserFavoredLanguage,\n languages\n }\n })\n\n case USER_NOT_ACTIVATED:\n return await context.render('auth-page', {\n pageElement: 'auth-activate',\n elementScript: '/auth/activate.js',\n data: {\n ...err.detail,\n message,\n redirectTo,\n disableUserSignupProcess,\n disableUserFavoredLanguage,\n languages\n }\n })\n\n case USER_DUPLICATED:\n return await context.render('auth-page', {\n pageElement: 'auth-signup',\n elementScript: '/auth/signup.js',\n data: {\n ...err.detail,\n message,\n redirectTo,\n disableUserSignupProcess,\n disableUserFavoredLanguage,\n languages\n }\n })\n\n default:\n return await context.render('auth-page', {\n pageElement: 'auth-signin',\n elementScript: '/auth/signin.js',\n data: {\n ...err.detail,\n message: err instanceof AuthError ? message : '',\n redirectTo,\n disableUserSignupProcess,\n disableUserFavoredLanguage,\n languages\n }\n })\n }\n }\n}\n"]}
1	+ {"version":3,"file":"authenticate-401-middleware.js","sourceRoot":"","sources":["../../server/middlewares/authenticate-401-middleware.ts"],"names":[],"mappings":";;AAUA,8DAuGC;AAjHD,6CAA4C;AAE5C,8DAAiH;AACjH,2DAAmD;AACnD,oDAA6C;AAE7C,MAAM,wBAAwB,GAAG,YAAM,CAAC,GAAG,CAAC,0BAA0B,EAAE,KAAK,CAAC,CAAA;AAC9E,MAAM,0BAA0B,GAAG,YAAM,CAAC,GAAG,CAAC,iCAAiC,EAAE,KAAK,CAAC,CAAA;AACvF,MAAM,SAAS,GAAG,YAAM,CAAC,GAAG,CAAC,gBAAgB,EAAE,KAAK,CAAC,CAAA;AAE9C,KAAK,UAAU,yBAAyB,CAAC,OAAO,EAAE,IAAI;IAC3D,IAAI,CAAC;QACH,MAAM,IAAI,EAAE,CAAA;IACd,CAAC;IAAC,OAAO,GAAG,EAAE,CAAC;QACb,IAAI,OAAO,CAAA;QAEX,IAAI,GAAG,YAAY,yBAAS,EAAE,CAAC;YAC7B,OAAO,GAAG,CAAC,OAAO,CAAC,CAAC,IAAI,OAAO,CAAC,CAAC,CAAC,SAAS,GAAG,CAAC,SAAS,EAAE,EAAE,GAAG,CAAC,MAAM,IAAI,EAAE,CAAC,CAAC,IAAI,GAAG,CAAC,SAAS,CAAA;QACjG,CAAC;aAAM,CAAC;YACN,IAAI,CAAA,GAAG,aAAH,GAAG,uBAAH,GAAG,CAAE,MAAM,MAAK,GAAG,EAAE,CAAC;gBACxB,MAAM,GAAG,CAAA;YACX,CAAC;YAED,OAAO,GAAG,GAAG,CAAC,OAAO,CAAA;QACvB,CAAC;QAED,OAAO,CAAC,MAAM,GAAG,GAAG,CAAA;QACpB,OAAO,CAAC,IAAI,GAAG,OAAO,CAAA;QAEtB;;;;WAIG;QAEH,MAAM,EAAE,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,WAAW,EAAE,GAAG,OAAO,CAAA;QAErD,IAAI,MAAM,IAAI,MAAM,IAAI,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;YACpD,IAAI,GAAG,CAAC,SAAS,IAAI,kCAAkB,EAAE,CAAC;gBACxC,OAAO,CAAC,MAAM,GAAG,GAAG,CAAA;YACtB,CAAC;YACD,OAAM;QACR,CAAC;QAED,IAAI,CAAC,IAAA,oBAAO,EAAC,MAAM,CAAC,MAAM,EAAE,CAAC,WAAW,EAAE,KAAK,CAAC,CAAC,EAAE,CAAC;YAClD,OAAM;QACR,CAAC;QAED,MAAM,EAAE,WAAW,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;QACrC,MAAM,EAAE,UAAU,GAAG,WAAW,IAAI,WAAW,EAAE,GAAG,OAAO,CAAC,OAAO,CAAC,IAAI,IAAI,EAAE,CAAA;QAE9E,QAAQ,GAAG,CAAC,SAAS,EAAE,CAAC;YACtB,KAAK,kCAAkB;gBACrB,OAAO,CAAC,QAAQ,CAAC,6BAA6B,kBAAkB,CAAC,UAAU,CAAC,EAAE,CAAC,CAAA;gBAC/E,MAAK;YAEP,KAAK,2BAAW;gBACd,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,eAAe;oBAC5B,aAAa,EAAE,mBAAmB;oBAClC,IAAI,kCACC,GAAG,CAAC,MAAM,KACb,OAAO;wBACP,UAAU;wBACV,wBAAwB;wBACxB,0BAA0B;wBAC1B,SAAS,GACV;iBACF,CAAC,CAAA;YAEJ,KAAK,kCAAkB;gBACrB,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,eAAe;oBAC5B,aAAa,EAAE,mBAAmB;oBAClC,IAAI,kCACC,GAAG,CAAC,MAAM,KACb,OAAO;wBACP,UAAU;wBACV,wBAAwB;wBACxB,0BAA0B;wBAC1B,SAAS,GACV;iBACF,CAAC,CAAA;YAEJ,KAAK,+BAAe;gBAClB,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,aAAa;oBAC1B,aAAa,EAAE,iBAAiB;oBAChC,IAAI,kCACC,GAAG,CAAC,MAAM,KACb,OAAO;wBACP,UAAU;wBACV,wBAAwB;wBACxB,0BAA0B;wBAC1B,SAAS,GACV;iBACF,CAAC,CAAA;YAEJ;gBACE,OAAO,MAAM,OAAO,CAAC,MAAM,CAAC,WAAW,EAAE;oBACvC,WAAW,EAAE,aAAa;oBAC1B,aAAa,EAAE,iBAAiB;oBAChC,IAAI,kCACC,GAAG,CAAC,MAAM,KACb,OAAO,EAAE,GAAG,YAAY,yBAAS,CAAC,CAAC,CAAC,OAAO,CAAC,CAAC,CAAC,EAAE,EAChD,UAAU;wBACV,wBAAwB;wBACxB,0BAA0B;wBAC1B,SAAS,GACV;iBACF,CAAC,CAAA;QACN,CAAC;IACH,CAAC;AACH,CAAC","sourcesContent":["import { config } from '@things-factory/env'\n\nimport { SUBDOMAIN_NOTFOUND, USER_DUPLICATED, USER_LOCKED, USER_NOT_ACTIVATED } from '../constants/error-code.js'\nimport { AuthError } from '../errors/auth-error.js'\nimport { accepts } from '../utils/accepts.js'\n\nconst disableUserSignupProcess = config.get('disableUserSignupProcess', false)\nconst disableUserFavoredLanguage = config.get('i18n/disableUserFavoredLanguage', false)\nconst languages = config.get('i18n/languages', false)\n\nexport async function authenticate401Middleware(context, next) {\n try {\n await next()\n } catch (err) {\n var message\n\n if (err instanceof AuthError) {\n message = (context.t && context.t(`error.${err.errorCode}`, err.detail \|\| {})) \|\| err.errorCode\n } else {\n if (err?.status !== 401) {\n throw err\n }\n\n message = err.message\n }\n\n context.status = 401\n context.body = message\n\n /\n 클라이언트 라우팅을 위한 ApiHistoryFallback의 상황과,\n * 서버라우팅의 상황에서 발생하는 던져지는 401 에러인 경우에는\n * error code에 맞춰서 적절하게 rewriting 되도록 한다.\n /\n\n const { method, header, path, originalUrl } = context\n\n if (method == 'POST' && path.startsWith('/graphql')) {\n if (err.errorCode == SUBDOMAIN_NOTFOUND) {\n context.status = 403\n }\n return\n }\n\n if (!accepts(header.accept, ['text/html', '/*'])) {\n return\n }\n\n const { redirect_to } = context.query\n const { redirectTo = redirect_to \|\| originalUrl } = context.request.body \|\| {}\n\n switch (err.errorCode) {\n case SUBDOMAIN_NOTFOUND:\n context.redirect(`/auth/checkin?redirect_to=${encodeURIComponent(redirectTo)}`)\n break\n\n case USER_LOCKED:\n return await context.render('auth-page', {\n pageElement: 'auth-activate',\n elementScript: '/auth/activate.js',\n data: {\n ...err.detail,\n message,\n redirectTo,\n disableUserSignupProcess,\n disableUserFavoredLanguage,\n languages\n }\n })\n\n case USER_NOT_ACTIVATED:\n return await context.render('auth-page', {\n pageElement: 'auth-activate',\n elementScript: '/auth/activate.js',\n data: {\n ...err.detail,\n message,\n redirectTo,\n disableUserSignupProcess,\n disableUserFavoredLanguage,\n languages\n }\n })\n\n case USER_DUPLICATED:\n return await context.render('auth-page', {\n pageElement: 'auth-signup',\n elementScript: '/auth/signup.js',\n data: {\n ...err.detail,\n message,\n redirectTo,\n disableUserSignupProcess,\n disableUserFavoredLanguage,\n languages\n }\n })\n\n default:\n return await context.render('auth-page', {\n pageElement: 'auth-signin',\n elementScript: '/auth/signin.js',\n data: {\n ...err.detail,\n message: err instanceof AuthError ? message : '',\n redirectTo,\n disableUserSignupProcess,\n disableUserFavoredLanguage,\n languages\n }\n })\n }\n }\n}\n"]}

package/dist-server/middlewares/bypass-signin-middleware.d.ts ADDED Viewed

	@@ -0,0 +1 @@
1	+ export declare function bypassSigninMiddleware(context: any, next: any): Promise<void>;

package/dist-server/middlewares/bypass-signin-middleware.js ADDED Viewed

@@ -0,0 +1,20 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.bypassSigninMiddleware = bypassSigninMiddleware;
+const shell_1 = require("@things-factory/shell");
+const user_js_1 = require("../service/user/user.js");
+const access_token_cookie_js_1 = require("../utils/access-token-cookie.js");
+async function bypassSigninMiddleware(context, next) {
+    const systemDomain = await (0, shell_1.getRepository)(shell_1.Domain).findOne({
+        where: { systemFlag: true }
+    });
+    const admin = await (0, shell_1.getRepository)(user_js_1.User).findOne({
+        where: { id: systemDomain.owner },
+        relations: ['domains']
+    });
+    context.state.user = admin;
+    const token = await admin.sign();
+    (0, access_token_cookie_js_1.setAccessTokenCookie)(context, token);
+    await next();
+}
+//# sourceMappingURL=bypass-signin-middleware.js.map

package/dist-server/middlewares/bypass-signin-middleware.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"bypass-signin-middleware.js","sourceRoot":"","sources":["../../server/middlewares/bypass-signin-middleware.ts"],"names":[],"mappings":";;AAKA,wDAgBC;AArBD,iDAA6D;AAE7D,qDAA8C;AAC9C,4EAAsE;AAE/D,KAAK,UAAU,sBAAsB,CAAC,OAAO,EAAE,IAAI;IACxD,MAAM,YAAY,GAAG,MAAM,IAAA,qBAAa,EAAC,cAAM,CAAC,CAAC,OAAO,CAAC;QACvD,KAAK,EAAE,EAAE,UAAU,EAAE,IAAI,EAAE;KAC5B,CAAC,CAAA;IAEF,MAAM,KAAK,GAAG,MAAM,IAAA,qBAAa,EAAC,cAAI,CAAC,CAAC,OAAO,CAAC;QAC9C,KAAK,EAAE,EAAE,EAAE,EAAE,YAAY,CAAC,KAAK,EAAE;QACjC,SAAS,EAAE,CAAC,SAAS,CAAC;KACvB,CAAC,CAAA;IAEF,OAAO,CAAC,KAAK,CAAC,IAAI,GAAG,KAAK,CAAA;IAE1B,MAAM,KAAK,GAAG,MAAM,KAAK,CAAC,IAAI,EAAE,CAAA;IAChC,IAAA,6CAAoB,EAAC,OAAO,EAAE,KAAK,CAAC,CAAA;IAEpC,MAAM,IAAI,EAAE,CAAA;AACd,CAAC","sourcesContent":["import { Domain, getRepository } from '@things-factory/shell'\n\nimport { User } from '../service/user/user.js'\nimport { setAccessTokenCookie } from '../utils/access-token-cookie.js'\n\nexport async function bypassSigninMiddleware(context, next) {\n const systemDomain = await getRepository(Domain).findOne({\n where: { systemFlag: true }\n })\n\n const admin = await getRepository(User).findOne({\n where: { id: systemDomain.owner },\n relations: ['domains']\n })\n\n context.state.user = admin\n\n const token = await admin.sign()\n setAccessTokenCookie(context, token)\n\n await next()\n}\n"]}

package/dist-server/middlewares/domain-authenticate-middleware.d.ts CHANGED Viewed

@@ -1,5 +1,5 @@
 import { Domain } from '@things-factory/shell';
-import { User } from '../service/user/user';
+import { User } from '../service/user/user.js';
 declare global {
     namespace NodeJS {
         interface Process {

package/dist-server/middlewares/domain-authenticate-middleware.js CHANGED Viewed

@@ -1,14 +1,10 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.domainAuthenticateMiddleware = domainAuthenticateMiddleware;
-const env_1 = require("@things-factory/env");
 const shell_1 = require("@things-factory/shell");
-const auth_error_1 = require("../errors/auth-error");
-const user_1 = require("../service/user/user");
-const get_user_domains_1 = require("../utils/get-user-domains");
-const useVirtualHostBasedDomain = !!env_1.config.get('useVirtualHostBasedDomain');
-const fixed = env_1.config.get('subdomain');
-const subdomainOffset = env_1.config.getNumber('subdomainOffset', 2);
+const auth_error_js_1 = require("../errors/auth-error.js");
+const user_js_1 = require("../service/user/user.js");
+const get_user_domains_js_1 = require("../utils/get-user-domains.js");
 process.domainOwnerGranted = async (domain, user) => {
     return user && domain && domain.owner === user.id;
 };
@@ -17,7 +13,7 @@ process.superUserGranted = async (domain, user) => {
         return false;
     }
     if (!user.domains.length) {
-        user = await (0, shell_1.getRepository)(user_1.User).findOne({
+        user = await (0, shell_1.getRepository)(user_js_1.User).findOne({
             where: { id: user.id },
             relations: ['domains']
         });
@@ -44,17 +40,17 @@ async function domainAuthenticateMiddleware(context, next) {
     // 1. 현재 subdomain 이 결정되지 않은 경우.
     // - checkin로 이동한다.
     if (!subdomain) {
-        throw new auth_error_1.AuthError({
-            errorCode: auth_error_1.AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND
+        throw new auth_error_js_1.AuthError({
+            errorCode: auth_error_js_1.AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND
         });
     }
     // 2. 현재 subdomain 이 결정된 경우.
-    const userDomains = await (0, get_user_domains_1.getUserDomains)(user);
+    const userDomains = await (0, get_user_domains_js_1.getUserDomains)(user);
     if (userDomains.find(domain => domain.subdomain == subdomain) || (await process.superUserGranted(domain, user))) {
         return await next();
     }
-    throw new auth_error_1.AuthError({
-        errorCode: auth_error_1.AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND
+    throw new auth_error_js_1.AuthError({
+        errorCode: auth_error_js_1.AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND
     });
 }
 //# sourceMappingURL=domain-authenticate-middleware.js.map

package/dist-server/middlewares/domain-authenticate-middleware.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"domain-authenticate-middleware.js","sourceRoot":"","sources":["../../server/middlewares/domain-authenticate-middleware.ts"],"names":[],"mappings":";;~~AAsDA~~,oEAuBC;~~AA7ED~~,~~6CAA4C;AAC5C,~~iDAA6D;AAE7D,~~qDAAgD~~;~~AAChD,+CAA2C;AAC3C~~,~~gEAA0D~~;~~AAE1D~~,~~MAAM,yBAAyB,GAAG,CAAC,CAAC,YAAM,CAAC,GAAG,CAAC,2BAA2B,CAAC,CAAA~~;~~AAC3E~~,~~MAAM,KAAK,GAAG,YAAM,CAAC,GAAG,CAAC,WAAW,CAAC,CAAA;AACrC,MAAM,eAAe,GAAG,YAAM,CAAC,SAAS,CAAC,iBAAiB,EAAE,CAAC,CAAC,CAAA;AAW9D,~~OAAO,CAAC,kBAAkB,GAAG,KAAK,EAAE,MAAc,EAAE,IAAU,EAAoB,EAAE;IAClF,OAAO,IAAI,IAAI,MAAM,IAAI,MAAM,CAAC,KAAK,KAAK,IAAI,CAAC,EAAE,CAAA;AACnD,CAAC,CAAA;AAED,OAAO,CAAC,gBAAgB,GAAG,KAAK,EAAE,MAAc,EAAE,IAAU,EAAoB,EAAE;IAChF,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,KAAK,CAAA;IACd,CAAC;IAED,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;QACzB,IAAI,GAAG,MAAM,IAAA,qBAAa,EAAC,~~WAAI~~,CAAC,CAAC,OAAO,CAAC;YACvC,KAAK,EAAE,EAAE,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE;YACtB,SAAS,EAAE,CAAC,SAAS,CAAC;SACvB,CAAC,CAAA;IACJ,CAAC;IAED,MAAM,YAAY,GAAW,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAc,EAAE,EAAE,CAAC,MAAM,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAA;IACjG,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,OAAO,KAAK,CAAA;IACd,CAAC;IAED,OAAO,YAAY,CAAC,KAAK,KAAK,IAAI,CAAC,EAAE,CAAA;AACvC,CAAC,CAAA;AAED;;;;;;;;GAQG;AAEI,KAAK,UAAU,4BAA4B,CAAC,OAAY,EAAE,IAAS;IACxE,MAAM,EAAE,CAAC,EAAE,GAAG,OAAO,CAAA;IACrB,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;IAEtC,MAAM,SAAS,GAAW,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,SAAS,CAAA;IAE3C,gCAAgC;IAChC,mBAAmB;IACnB,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,~~sBAAS~~,CAAC;YAClB,SAAS,EAAE,~~sBAAS~~,CAAC,WAAW,CAAC,kBAAkB;SACpD,CAAC,CAAA;IACJ,CAAC;IAED,4BAA4B;IAC5B,MAAM,WAAW,GAAsB,MAAM,IAAA,~~iCAAc~~,EAAC,IAAI,CAAC,CAAA;IACjE,IAAI,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,SAAS,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,OAAO,CAAC,gBAAgB,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC,EAAE,CAAC;QAChH,OAAO,MAAM,IAAI,EAAE,CAAA;IACrB,CAAC;IAED,MAAM,IAAI,~~sBAAS~~,CAAC;QAClB,SAAS,EAAE,~~sBAAS~~,CAAC,WAAW,CAAC,kBAAkB;KACpD,CAAC,CAAA;AACJ,CAAC","sourcesContent":["import { ~~config } from '@things-factory/env'\nimport {~~ Domain, getRepository } from '@things-factory/shell'\n\nimport { AuthError } from '../errors/auth-error'\nimport { User } from '../service/user/user'\nimport { getUserDomains } from '../utils/get-user-domains~~'\n\nconst useVirtualHostBasedDomain = !!config~~.~~get(~~'~~useVirtualHostBasedDomain')~~\~~nconst fixed = config.get('subdomain')\nconst subdomainOffset = config.getNumber('subdomainOffset', 2)\~~n\ndeclare global {\n namespace NodeJS {\n interface Process {\n domainOwnerGranted: (domain: Domain, user: User) => Promise<boolean>\n superUserGranted: (domain: Domain, user: User) => Promise<boolean>\n }\n }\n}\n\nprocess.domainOwnerGranted = async (domain: Domain, user: User): Promise<boolean> => {\n return user && domain && domain.owner === user.id\n}\n\nprocess.superUserGranted = async (domain: Domain, user: User): Promise<boolean> => {\n if (!user) {\n return false\n }\n\n if (!user.domains.length) {\n user = await getRepository(User).findOne({\n where: { id: user.id },\n relations: ['domains']\n })\n }\n\n const systemDomain: Domain = user.domains.find((domain: Domain) => domain.subdomain === 'system')\n if (!systemDomain) {\n return false\n }\n\n return systemDomain.owner === user.id\n}\n\n/\n 현재 subdomain 과 user의 domain list와의 비교를 통해서,\n * 인증 성공 또는 인증 에러를 발생시킬 것인지를 결정한다.\n * 1. 현재 subdomain 이 결정되지 않은 경우.\n * - checkin로 이동한다.\n * 2. superUser 판단\n * 3. 현재 subdomain 이 결정된 경우.\n * - user의 domains 리스트에 해당 subdomain이 없다면, 인증 오류를 발생한다.\n */\n\nexport async function domainAuthenticateMiddleware(context: any, next: any) {\n const { t } = context\n const { domain, user } = context.state\n\n const subdomain: string = domain?.subdomain\n\n // 1. 현재 subdomain 이 결정되지 않은 경우.\n // - checkin로 이동한다.\n if (!subdomain) {\n throw new AuthError({\n errorCode: AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND\n })\n }\n\n // 2. 현재 subdomain 이 결정된 경우.\n const userDomains: Partial<Domain>[] = await getUserDomains(user)\n if (userDomains.find(domain => domain.subdomain == subdomain) \|\| (await process.superUserGranted(domain, user))) {\n return await next()\n }\n\n throw new AuthError({\n errorCode: AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND\n })\n}\n"]}
1	+ {"version":3,"file":"domain-authenticate-middleware.js","sourceRoot":"","sources":["../../server/middlewares/domain-authenticate-middleware.ts"],"names":[],"mappings":";;AAiDA,oEAuBC;AAxED,iDAA6D;AAE7D,2DAAmD;AACnD,qDAA8C;AAC9C,sEAA6D;AAW7D,OAAO,CAAC,kBAAkB,GAAG,KAAK,EAAE,MAAc,EAAE,IAAU,EAAoB,EAAE;IAClF,OAAO,IAAI,IAAI,MAAM,IAAI,MAAM,CAAC,KAAK,KAAK,IAAI,CAAC,EAAE,CAAA;AACnD,CAAC,CAAA;AAED,OAAO,CAAC,gBAAgB,GAAG,KAAK,EAAE,MAAc,EAAE,IAAU,EAAoB,EAAE;IAChF,IAAI,CAAC,IAAI,EAAE,CAAC;QACV,OAAO,KAAK,CAAA;IACd,CAAC;IAED,IAAI,CAAC,IAAI,CAAC,OAAO,CAAC,MAAM,EAAE,CAAC;QACzB,IAAI,GAAG,MAAM,IAAA,qBAAa,EAAC,cAAI,CAAC,CAAC,OAAO,CAAC;YACvC,KAAK,EAAE,EAAE,EAAE,EAAE,IAAI,CAAC,EAAE,EAAE;YACtB,SAAS,EAAE,CAAC,SAAS,CAAC;SACvB,CAAC,CAAA;IACJ,CAAC;IAED,MAAM,YAAY,GAAW,IAAI,CAAC,OAAO,CAAC,IAAI,CAAC,CAAC,MAAc,EAAE,EAAE,CAAC,MAAM,CAAC,SAAS,KAAK,QAAQ,CAAC,CAAA;IACjG,IAAI,CAAC,YAAY,EAAE,CAAC;QAClB,OAAO,KAAK,CAAA;IACd,CAAC;IAED,OAAO,YAAY,CAAC,KAAK,KAAK,IAAI,CAAC,EAAE,CAAA;AACvC,CAAC,CAAA;AAED;;;;;;;;GAQG;AAEI,KAAK,UAAU,4BAA4B,CAAC,OAAY,EAAE,IAAS;IACxE,MAAM,EAAE,CAAC,EAAE,GAAG,OAAO,CAAA;IACrB,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAC,KAAK,CAAA;IAEtC,MAAM,SAAS,GAAW,MAAM,aAAN,MAAM,uBAAN,MAAM,CAAE,SAAS,CAAA;IAE3C,gCAAgC;IAChC,mBAAmB;IACnB,IAAI,CAAC,SAAS,EAAE,CAAC;QACf,MAAM,IAAI,yBAAS,CAAC;YAClB,SAAS,EAAE,yBAAS,CAAC,WAAW,CAAC,kBAAkB;SACpD,CAAC,CAAA;IACJ,CAAC;IAED,4BAA4B;IAC5B,MAAM,WAAW,GAAsB,MAAM,IAAA,oCAAc,EAAC,IAAI,CAAC,CAAA;IACjE,IAAI,WAAW,CAAC,IAAI,CAAC,MAAM,CAAC,EAAE,CAAC,MAAM,CAAC,SAAS,IAAI,SAAS,CAAC,IAAI,CAAC,MAAM,OAAO,CAAC,gBAAgB,CAAC,MAAM,EAAE,IAAI,CAAC,CAAC,EAAE,CAAC;QAChH,OAAO,MAAM,IAAI,EAAE,CAAA;IACrB,CAAC;IAED,MAAM,IAAI,yBAAS,CAAC;QAClB,SAAS,EAAE,yBAAS,CAAC,WAAW,CAAC,kBAAkB;KACpD,CAAC,CAAA;AACJ,CAAC","sourcesContent":["import { Domain, getRepository } from '@things-factory/shell'\n\nimport { AuthError } from '../errors/auth-error.js'\nimport { User } from '../service/user/user.js'\nimport { getUserDomains } from '../utils/get-user-domains.js'\n\ndeclare global {\n namespace NodeJS {\n interface Process {\n domainOwnerGranted: (domain: Domain, user: User) => Promise<boolean>\n superUserGranted: (domain: Domain, user: User) => Promise<boolean>\n }\n }\n}\n\nprocess.domainOwnerGranted = async (domain: Domain, user: User): Promise<boolean> => {\n return user && domain && domain.owner === user.id\n}\n\nprocess.superUserGranted = async (domain: Domain, user: User): Promise<boolean> => {\n if (!user) {\n return false\n }\n\n if (!user.domains.length) {\n user = await getRepository(User).findOne({\n where: { id: user.id },\n relations: ['domains']\n })\n }\n\n const systemDomain: Domain = user.domains.find((domain: Domain) => domain.subdomain === 'system')\n if (!systemDomain) {\n return false\n }\n\n return systemDomain.owner === user.id\n}\n\n/\n 현재 subdomain 과 user의 domain list와의 비교를 통해서,\n * 인증 성공 또는 인증 에러를 발생시킬 것인지를 결정한다.\n * 1. 현재 subdomain 이 결정되지 않은 경우.\n * - checkin로 이동한다.\n * 2. superUser 판단\n * 3. 현재 subdomain 이 결정된 경우.\n * - user의 domains 리스트에 해당 subdomain이 없다면, 인증 오류를 발생한다.\n */\n\nexport async function domainAuthenticateMiddleware(context: any, next: any) {\n const { t } = context\n const { domain, user } = context.state\n\n const subdomain: string = domain?.subdomain\n\n // 1. 현재 subdomain 이 결정되지 않은 경우.\n // - checkin로 이동한다.\n if (!subdomain) {\n throw new AuthError({\n errorCode: AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND\n })\n }\n\n // 2. 현재 subdomain 이 결정된 경우.\n const userDomains: Partial<Domain>[] = await getUserDomains(user)\n if (userDomains.find(domain => domain.subdomain == subdomain) \|\| (await process.superUserGranted(domain, user))) {\n return await next()\n }\n\n throw new AuthError({\n errorCode: AuthError.ERROR_CODES.SUBDOMAIN_NOTFOUND\n })\n}\n"]}

package/dist-server/middlewares/graphql-authenticate-middleware.js CHANGED Viewed

@@ -1,13 +1,13 @@
 "use strict";
 Object.defineProperty(exports, "__esModule", { value: true });
 exports.graphqlAuthenticateMiddleware = graphqlAuthenticateMiddleware;
-const domain_authenticate_middleware_1 = require("./domain-authenticate-middleware");
-const jwt_authenticate_middleware_1 = require("./jwt-authenticate-middleware");
+const domain_authenticate_middleware_js_1 = require("./domain-authenticate-middleware.js");
+const jwt_authenticate_middleware_js_1 = require("./jwt-authenticate-middleware.js");
 async function graphqlAuthenticateMiddleware(context, next) {
     const { method, path } = context;
     if (method == 'POST' && path.startsWith('/graphql')) {
-        await (0, jwt_authenticate_middleware_1.jwtAuthenticateMiddleware)(context, () => { });
-        await (0, domain_authenticate_middleware_1.domainAuthenticateMiddleware)(context, () => { });
+        await (0, jwt_authenticate_middleware_js_1.jwtAuthenticateMiddleware)(context, () => { });
+        await (0, domain_authenticate_middleware_js_1.domainAuthenticateMiddleware)(context, () => { });
     }
     await next();
 }

package/dist-server/middlewares/graphql-authenticate-middleware.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"graphql-authenticate-middleware.js","sourceRoot":"","sources":["../../server/middlewares/graphql-authenticate-middleware.ts"],"names":[],"mappings":";;AAGA,sEASC;AAZD,~~qFAA+E~~;~~AAC/E,+EAAyE~~;~~AAElE~~,KAAK,UAAU,6BAA6B,CAAC,OAAO,EAAE,IAAI;IAC/D,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAA;IAEhC,IAAI,MAAM,IAAI,MAAM,IAAI,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACpD,MAAM,IAAA,~~uDAAyB~~,EAAC,OAAO,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;QAClD,MAAM,IAAA,~~6DAA4B~~,EAAC,OAAO,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;IACvD,CAAC;IAED,MAAM,IAAI,EAAE,CAAA;AACd,CAAC","sourcesContent":["import { domainAuthenticateMiddleware } from './domain-authenticate-middleware'\nimport { jwtAuthenticateMiddleware } from './jwt-authenticate-middleware'\n\nexport async function graphqlAuthenticateMiddleware(context, next) {\n const { method, path } = context\n\n if (method == 'POST' && path.startsWith('/graphql')) {\n await jwtAuthenticateMiddleware(context, () => {})\n await domainAuthenticateMiddleware(context, () => {})\n }\n\n await next()\n}\n"]}
1	+ {"version":3,"file":"graphql-authenticate-middleware.js","sourceRoot":"","sources":["../../server/middlewares/graphql-authenticate-middleware.ts"],"names":[],"mappings":";;AAGA,sEASC;AAZD,2FAAkF;AAClF,qFAA4E;AAErE,KAAK,UAAU,6BAA6B,CAAC,OAAO,EAAE,IAAI;IAC/D,MAAM,EAAE,MAAM,EAAE,IAAI,EAAE,GAAG,OAAO,CAAA;IAEhC,IAAI,MAAM,IAAI,MAAM,IAAI,IAAI,CAAC,UAAU,CAAC,UAAU,CAAC,EAAE,CAAC;QACpD,MAAM,IAAA,0DAAyB,EAAC,OAAO,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;QAClD,MAAM,IAAA,gEAA4B,EAAC,OAAO,EAAE,GAAG,EAAE,GAAE,CAAC,CAAC,CAAA;IACvD,CAAC;IAED,MAAM,IAAI,EAAE,CAAA;AACd,CAAC","sourcesContent":["import { domainAuthenticateMiddleware } from './domain-authenticate-middleware.js'\nimport { jwtAuthenticateMiddleware } from './jwt-authenticate-middleware.js'\n\nexport async function graphqlAuthenticateMiddleware(context, next) {\n const { method, path } = context\n\n if (method == 'POST' && path.startsWith('/graphql')) {\n await jwtAuthenticateMiddleware(context, () => {})\n await domainAuthenticateMiddleware(context, () => {})\n }\n\n await next()\n}\n"]}

package/dist-server/middlewares/index.d.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 export declare function initMiddlewares(app: any): void;
-export * from './jwt-authenticate-middleware';
-export * from './domain-authenticate-middleware';
-export * from './signin-middleware';
-export * from './webauthn-middleware';
-export * from './authenticate-401-middleware';
+export * from './jwt-authenticate-middleware.js';
+export * from './domain-authenticate-middleware.js';
+export * from './signin-middleware.js';
+export * from './webauthn-middleware.js';
+export * from './authenticate-401-middleware.js';

package/dist-server/middlewares/index.js CHANGED Viewed

@@ -5,20 +5,25 @@ const tslib_1 = require("tslib");
 const koa_session_1 = tslib_1.__importDefault(require("koa-session"));
 const koa_passport_1 = tslib_1.__importDefault(require("koa-passport"));
 const env_1 = require("@things-factory/env");
-const get_secret_1 = require("../utils/get-secret");
-const authenticate_401_middleware_1 = require("./authenticate-401-middleware");
-const domain_authenticate_middleware_1 = require("./domain-authenticate-middleware");
-const graphql_authenticate_middleware_1 = require("./graphql-authenticate-middleware");
-const jwt_authenticate_middleware_1 = require("./jwt-authenticate-middleware");
-const user_1 = require("../service/user/user");
-const max_age_1 = require("../constants/max-age");
-const accessTokenCookieKey = env_1.config.get('accessTokenCookieKey', 'access_token');
+const get_secret_js_1 = require("../utils/get-secret.js");
+const authenticate_401_middleware_js_1 = require("./authenticate-401-middleware.js");
+const domain_authenticate_middleware_js_1 = require("./domain-authenticate-middleware.js");
+const graphql_authenticate_middleware_js_1 = require("./graphql-authenticate-middleware.js");
+const jwt_authenticate_middleware_js_1 = require("./jwt-authenticate-middleware.js");
+const bypass_signin_middleware_js_1 = require("./bypass-signin-middleware.js");
+const user_js_1 = require("../service/user/user.js");
+const max_age_js_1 = require("../constants/max-age.js");
+const bypassUserSigninProcess = env_1.config.get('bypassUserSigninProcess', false);
 function initMiddlewares(app) {
+    if (bypassUserSigninProcess) {
+        app.use(bypass_signin_middleware_js_1.bypassSigninMiddleware);
+        return;
+    }
     /* oauth2orize-koa 에서 oauth 트랜잭션 관리를 위해서 session을 사용함. */
-    app.keys = [get_secret_1.SECRET];
+    app.keys = [get_secret_js_1.SECRET];
     app.use((0, koa_session_1.default)({
         key: 'tfsession',
-        maxAge: max_age_1.MAX_AGE,
+        maxAge: max_age_js_1.MAX_AGE,
         overwrite: true,
         httpOnly: true,
         signed: true,
@@ -29,26 +34,26 @@ function initMiddlewares(app) {
         done(null, profile);
     });
     koa_passport_1.default.deserializeUser(async (profile, done) => {
-        done(null, await user_1.User.checkAuth(profile));
+        done(null, await user_js_1.User.checkAuth(profile));
     });
     /* passport initialize */
     app.use(koa_passport_1.default.initialize());
     /* passport use session - for oauth transaction */
     app.use(koa_passport_1.default.session());
     /* authentication error handling */
-    app.use(authenticate_401_middleware_1.authenticate401Middleware);
+    app.use(authenticate_401_middleware_js_1.authenticate401Middleware);
     /*
      * post:graphql 에 대해서는 graphqlAuthenticationMiddleware를 적용한다.
      * graphql app을 router에 적용하지 못하기 때문임.
      */
-    app.use(graphql_authenticate_middleware_1.graphqlAuthenticateMiddleware);
+    app.use(graphql_authenticate_middleware_js_1.graphqlAuthenticateMiddleware);
 }
 process.on('bootstrap-module-subscription', (app, subscriptionMiddleware) => {
-    subscriptionMiddleware.push(jwt_authenticate_middleware_1.jwtAuthenticateMiddleware, domain_authenticate_middleware_1.domainAuthenticateMiddleware);
+    subscriptionMiddleware.push(jwt_authenticate_middleware_js_1.jwtAuthenticateMiddleware, domain_authenticate_middleware_js_1.domainAuthenticateMiddleware);
 });
-tslib_1.__exportStar(require("./jwt-authenticate-middleware"), exports);
-tslib_1.__exportStar(require("./domain-authenticate-middleware"), exports);
-tslib_1.__exportStar(require("./signin-middleware"), exports);
-tslib_1.__exportStar(require("./webauthn-middleware"), exports);
-tslib_1.__exportStar(require("./authenticate-401-middleware"), exports);
+tslib_1.__exportStar(require("./jwt-authenticate-middleware.js"), exports);
+tslib_1.__exportStar(require("./domain-authenticate-middleware.js"), exports);
+tslib_1.__exportStar(require("./signin-middleware.js"), exports);
+tslib_1.__exportStar(require("./webauthn-middleware.js"), exports);
+tslib_1.__exportStar(require("./authenticate-401-middleware.js"), exports);
 //# sourceMappingURL=index.js.map

package/dist-server/middlewares/index.js.map CHANGED Viewed

	@@ -1 +1 @@
1	- {"version":3,"file":"index.js","sourceRoot":"","sources":["../../server/middlewares/index.ts"],"names":[],"mappings":";;~~AAgBA~~,~~0CAwCC~~;;~~AAxDD~~,sEAAiC;AACjC,wEAAmC;AAEnC,6CAA4C;AAC5C,~~oDAA4C~~;~~AAE5C,+EAAyE~~;~~AACzE~~,~~qFAA+E~~;~~AAC/E~~,~~uFAAiF~~;~~AACjF,+EAAyE~~;~~AAEzE~~,+~~CAA2C~~;~~AAC3C~~,~~kDAA8C~~;~~AAE9C~~,MAAM,~~oBAAoB~~,GAAG,YAAM,CAAC,GAAG,CAAC,~~sBAAsB~~,EAAE,~~cAAc~~,CAAC,CAAA;~~AAE/E~~,SAAgB,eAAe,CAAC,GAAQ;IACtC,yDAAyD;IACzD,GAAG,CAAC,IAAI,GAAG,CAAC,~~mBAAM~~,CAAC,CAAA;IACnB,GAAG,CAAC,GAAG,CACL,IAAA,qBAAO,EACL;QACE,GAAG,EAAE,WAAW;QAChB,MAAM,EAAE,~~iBAAO~~;QACf,SAAS,EAAE,IAAI;QACf,QAAQ,EAAE,IAAI;QACd,MAAM,EAAE,IAAI;QACZ,OAAO,EAAE,KAAK;QACd,KAAK,EAAE,KAAK;KACb,EACD,GAAG,CACJ,CACF,CAAA;IAED,sBAAQ,CAAC,aAAa,CAAC,CAAC,OAAO,EAAE,IAAI,EAAE,EAAE;QACvC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;IACrB,CAAC,CAAC,CAAA;IAEF,sBAAQ,CAAC,eAAe,CAAC,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE;QAC/C,IAAI,CAAC,IAAI,EAAE,MAAM,~~WAAI~~,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAA;IAC3C,CAAC,CAAC,CAAA;IAEF,yBAAyB;IACzB,GAAG,CAAC,GAAG,CAAC,sBAAQ,CAAC,UAAU,EAAE,CAAC,CAAA;IAE9B,kDAAkD;IAClD,GAAG,CAAC,GAAG,CAAC,sBAAQ,CAAC,OAAO,EAAE,CAAC,CAAA;IAE3B,mCAAmC;IACnC,GAAG,CAAC,GAAG,CAAC,~~uDAAyB~~,CAAC,CAAA;IAElC;;;OAGG;IACH,GAAG,CAAC,GAAG,CAAC~~,+DAA6B~~,CAAC,CAAA;AACxC,CAAC;AAED,OAAO,CAAC,EAAE,CAAC,+BAAsC,EAAE,CAAC,GAAG,EAAE,sBAAsB,EAAE,EAAE;IACjF,sBAAsB,CAAC,IAAI,CAAC,~~uDAAyB~~,EAAE,~~6DAA4B~~,CAAC,CAAA;AACtF,CAAC,CAAC,CAAA;AAEF,~~wEAA6C;AAC7C,~~2EAAgD;AAChD,~~8DAAmC~~;~~AACnC~~,~~gEAAqC~~;~~AACrC~~,~~wEAA6C~~","sourcesContent":["import session from 'koa-session'\nimport passport from 'koa-passport'\n\nimport { config } from '@things-factory/env'\nimport { SECRET } from '../utils/get-secret'\n\nimport { authenticate401Middleware } from './authenticate-401-middleware'\nimport { domainAuthenticateMiddleware } from './domain-authenticate-middleware'\nimport { graphqlAuthenticateMiddleware } from './graphql-authenticate-middleware'\nimport { jwtAuthenticateMiddleware } from './jwt-authenticate-middleware'\n\nimport { User } from '../service/user/user'\nimport { MAX_AGE } from '../constants/max-age'\n\nconst ~~accessTokenCookieKey~~ = config.get('~~accessTokenCookieKey~~', ~~'access_token'~~)\n\nexport function initMiddlewares(app: any) {\n /* oauth2orize-koa 에서 oauth 트랜잭션 관리를 위해서 session을 사용함. /\n app.keys = [SECRET]\n app.use(\n session(\n {\n key: 'tfsession',\n maxAge: MAX_AGE,\n overwrite: true,\n httpOnly: true,\n signed: true,\n rolling: false,\n renew: false\n },\n app\n )\n )\n\n passport.serializeUser((profile, done) => {\n done(null, profile)\n })\n\n passport.deserializeUser(async (profile, done) => {\n done(null, await User.checkAuth(profile))\n })\n\n / passport initialize /\n app.use(passport.initialize())\n\n / passport use session - for oauth transaction /\n app.use(passport.session())\n\n / authentication error handling /\n app.use(authenticate401Middleware)\n\n /\n * post:graphql 에 대해서는 graphqlAuthenticationMiddleware를 적용한다.\n * graphql app을 router에 적용하지 못하기 때문임.\n /\n app.use(graphqlAuthenticateMiddleware)\n}\n\nprocess.on('bootstrap-module-subscription' as any, (app, subscriptionMiddleware) => {\n subscriptionMiddleware.push(jwtAuthenticateMiddleware, domainAuthenticateMiddleware)\n})\n\nexport from './jwt-authenticate-middleware'\nexport * from './domain-authenticate-middleware'\nexport * from './signin-middleware'\nexport * from './webauthn-middleware'\nexport * from './authenticate-401-middleware'\n"]}
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../server/middlewares/index.ts"],"names":[],"mappings":";;AAiBA,0CA6CC;;AA9DD,sEAAiC;AACjC,wEAAmC;AAEnC,6CAA4C;AAC5C,0DAA+C;AAE/C,qFAA4E;AAC5E,2FAAkF;AAClF,6FAAoF;AACpF,qFAA4E;AAC5E,+EAAsE;AAEtE,qDAA8C;AAC9C,wDAAiD;AAEjD,MAAM,uBAAuB,GAAG,YAAM,CAAC,GAAG,CAAC,yBAAyB,EAAE,KAAK,CAAC,CAAA;AAE5E,SAAgB,eAAe,CAAC,GAAQ;IACtC,IAAI,uBAAuB,EAAE,CAAC;QAC5B,GAAG,CAAC,GAAG,CAAC,oDAAsB,CAAC,CAAA;QAC/B,OAAM;IACR,CAAC;IAED,yDAAyD;IACzD,GAAG,CAAC,IAAI,GAAG,CAAC,sBAAM,CAAC,CAAA;IACnB,GAAG,CAAC,GAAG,CACL,IAAA,qBAAO,EACL;QACE,GAAG,EAAE,WAAW;QAChB,MAAM,EAAE,oBAAO;QACf,SAAS,EAAE,IAAI;QACf,QAAQ,EAAE,IAAI;QACd,MAAM,EAAE,IAAI;QACZ,OAAO,EAAE,KAAK;QACd,KAAK,EAAE,KAAK;KACb,EACD,GAAG,CACJ,CACF,CAAA;IAED,sBAAQ,CAAC,aAAa,CAAC,CAAC,OAAO,EAAE,IAAI,EAAE,EAAE;QACvC,IAAI,CAAC,IAAI,EAAE,OAAO,CAAC,CAAA;IACrB,CAAC,CAAC,CAAA;IAEF,sBAAQ,CAAC,eAAe,CAAC,KAAK,EAAE,OAAO,EAAE,IAAI,EAAE,EAAE;QAC/C,IAAI,CAAC,IAAI,EAAE,MAAM,cAAI,CAAC,SAAS,CAAC,OAAO,CAAC,CAAC,CAAA;IAC3C,CAAC,CAAC,CAAA;IAEF,yBAAyB;IACzB,GAAG,CAAC,GAAG,CAAC,sBAAQ,CAAC,UAAU,EAAE,CAAC,CAAA;IAE9B,kDAAkD;IAClD,GAAG,CAAC,GAAG,CAAC,sBAAQ,CAAC,OAAO,EAAE,CAAC,CAAA;IAE3B,mCAAmC;IACnC,GAAG,CAAC,GAAG,CAAC,0DAAyB,CAAC,CAAA;IAElC;;;OAGG;IACH,GAAG,CAAC,GAAG,CAAC,kEAA6B,CAAC,CAAA;AACxC,CAAC;AAED,OAAO,CAAC,EAAE,CAAC,+BAAsC,EAAE,CAAC,GAAG,EAAE,sBAAsB,EAAE,EAAE;IACjF,sBAAsB,CAAC,IAAI,CAAC,0DAAyB,EAAE,gEAA4B,CAAC,CAAA;AACtF,CAAC,CAAC,CAAA;AAEF,2EAAgD;AAChD,8EAAmD;AACnD,iEAAsC;AACtC,mEAAwC;AACxC,2EAAgD","sourcesContent":["import session from 'koa-session'\nimport passport from 'koa-passport'\n\nimport { config } from '@things-factory/env'\nimport { SECRET } from '../utils/get-secret.js'\n\nimport { authenticate401Middleware } from './authenticate-401-middleware.js'\nimport { domainAuthenticateMiddleware } from './domain-authenticate-middleware.js'\nimport { graphqlAuthenticateMiddleware } from './graphql-authenticate-middleware.js'\nimport { jwtAuthenticateMiddleware } from './jwt-authenticate-middleware.js'\nimport { bypassSigninMiddleware } from './bypass-signin-middleware.js'\n\nimport { User } from '../service/user/user.js'\nimport { MAX_AGE } from '../constants/max-age.js'\n\nconst bypassUserSigninProcess = config.get('bypassUserSigninProcess', false)\n\nexport function initMiddlewares(app: any) {\n if (bypassUserSigninProcess) {\n app.use(bypassSigninMiddleware)\n return\n }\n\n /* oauth2orize-koa 에서 oauth 트랜잭션 관리를 위해서 session을 사용함. /\n app.keys = [SECRET]\n app.use(\n session(\n {\n key: 'tfsession',\n maxAge: MAX_AGE,\n overwrite: true,\n httpOnly: true,\n signed: true,\n rolling: false,\n renew: false\n },\n app\n )\n )\n\n passport.serializeUser((profile, done) => {\n done(null, profile)\n })\n\n passport.deserializeUser(async (profile, done) => {\n done(null, await User.checkAuth(profile))\n })\n\n / passport initialize /\n app.use(passport.initialize())\n\n / passport use session - for oauth transaction /\n app.use(passport.session())\n\n / authentication error handling /\n app.use(authenticate401Middleware)\n\n /\n * post:graphql 에 대해서는 graphqlAuthenticationMiddleware를 적용한다.\n * graphql app을 router에 적용하지 못하기 때문임.\n /\n app.use(graphqlAuthenticateMiddleware)\n}\n\nprocess.on('bootstrap-module-subscription' as any, (app, subscriptionMiddleware) => {\n subscriptionMiddleware.push(jwtAuthenticateMiddleware, domainAuthenticateMiddleware)\n})\n\nexport from './jwt-authenticate-middleware.js'\nexport * from './domain-authenticate-middleware.js'\nexport * from './signin-middleware.js'\nexport * from './webauthn-middleware.js'\nexport * from './authenticate-401-middleware.js'\n"]}

package/dist-server/middlewares/jwt-authenticate-middleware.js CHANGED Viewed

@@ -5,15 +5,15 @@ const tslib_1 = require("tslib");
 const koa_passport_1 = tslib_1.__importDefault(require("koa-passport"));
 const passport_jwt_1 = require("passport-jwt");
 const env_1 = require("@things-factory/env");
-const make_verification_token_1 = require("../controllers/utils/make-verification-token");
-const save_verification_token_1 = require("../controllers/utils/save-verification-token");
-const user_1 = require("../service/user/user");
-const verification_token_1 = require("../service/verification-token/verification-token");
-const access_token_cookie_1 = require("../utils/access-token-cookie");
-const get_secret_1 = require("../utils/get-secret");
+const make_verification_token_js_1 = require("../controllers/utils/make-verification-token.js");
+const save_verification_token_js_1 = require("../controllers/utils/save-verification-token.js");
+const user_js_1 = require("../service/user/user.js");
+const verification_token_js_1 = require("../service/verification-token/verification-token.js");
+const access_token_cookie_js_1 = require("../utils/access-token-cookie.js");
+const get_secret_js_1 = require("../utils/get-secret.js");
 const sessionExpiryPolicy = env_1.config.get('session/expiryPolicy', 'fixed');
 koa_passport_1.default.use(new passport_jwt_1.Strategy({
-    secretOrKey: get_secret_1.SECRET,
+    secretOrKey: get_secret_js_1.SECRET,
     passReqToCallback: true,
     jwtFromRequest: passport_jwt_1.ExtractJwt.fromExtractors([
         passport_jwt_1.ExtractJwt.fromAuthHeaderAsBearerToken(),
@@ -23,7 +23,7 @@ koa_passport_1.default.use(new passport_jwt_1.Strategy({
         passport_jwt_1.ExtractJwt.fromBodyField('access_token'),
         req => {
             var token = null;
-            token = (0, access_token_cookie_1.getAccessTokenCookie)(req === null || req === void 0 ? void 0 : req.ctx);
+            token = (0, access_token_cookie_js_1.getAccessTokenCookie)(req === null || req === void 0 ? void 0 : req.ctx);
             return token;
         }
     ])
@@ -44,16 +44,16 @@ async function jwtAuthenticateMiddleware(context, next) {
     return await koa_passport_1.default.authenticate('jwt', { session: false }, async (err, decoded, info) => {
         if (err || !decoded) {
             const e = (context.state.error = err || info);
-            (0, access_token_cookie_1.clearAccessTokenCookie)(context);
+            (0, access_token_cookie_js_1.clearAccessTokenCookie)(context);
             context.throw(401, e.message);
         }
         else {
-            const userEntity = await user_1.User.checkAuth(decoded);
-            if (userEntity.status === user_1.UserStatus.PWD_RESET_REQUIRED) {
+            const userEntity = await user_js_1.User.checkAuth(decoded);
+            if (userEntity.status === user_js_1.UserStatus.PWD_RESET_REQUIRED) {
                 try {
-                    const token = (0, make_verification_token_1.makeVerificationToken)();
-                    await (0, save_verification_token_1.saveVerificationToken)(userEntity.id, token, verification_token_1.VerificationTokenType.PASSWORD_RESET);
-                    (0, access_token_cookie_1.clearAccessTokenCookie)(context);
+                    const token = (0, make_verification_token_js_1.makeVerificationToken)();
+                    await (0, save_verification_token_js_1.saveVerificationToken)(userEntity.id, token, verification_token_js_1.VerificationTokenType.PASSWORD_RESET);
+                    (0, access_token_cookie_js_1.clearAccessTokenCookie)(context);
                     context.redirect(`/auth/reset-password?token=${token}`);
                 }
                 catch (e) {
@@ -66,7 +66,7 @@ async function jwtAuthenticateMiddleware(context, next) {
                 if (sessionExpiryPolicy == 'rolling') {
                     /* To renew the expiry time on each request, a token is issued and the session is updated. */
                     const token = await userEntity.sign();
-                    (0, access_token_cookie_1.setAccessTokenCookie)(context, token);
+                    (0, access_token_cookie_js_1.setAccessTokenCookie)(context, token);
                 }
                 await next();
             }