npm - @tomei/sso - Versions diffs - 0.54.1 → 0.55.0 - Mend

@tomei/sso 0.54.1 → 0.55.0

Files changed (144) hide show

package/.commitlintrc.json +22 -22
package/.gitlab-ci.yml +16 -16
package/.husky/commit-msg +15 -15
package/.husky/pre-commit +7 -7
package/.prettierrc +4 -4
package/Jenkinsfile +57 -57
package/README.md +23 -23
package/__tests__/unit/components/group/group.spec.ts +79 -79
package/__tests__/unit/components/group-object-privilege/group-object-privilege.spec.ts +88 -88
package/__tests__/unit/components/group-privilege/group-privilege.spec.ts +68 -68
package/__tests__/unit/components/group-reporting-user/group-reporting-user.spec.ts +66 -66
package/__tests__/unit/components/group-system-access/group-system-access.spec.ts +83 -83
package/__tests__/unit/components/login-user/l.spec.ts +746 -746
package/__tests__/unit/components/login-user/login.spec.ts +1164 -1164
package/__tests__/unit/components/password-hash/password-hash.service.spec.ts +31 -31
package/__tests__/unit/components/system/system.spec.ts +254 -254
package/__tests__/unit/components/system-privilege/system-privilege.spec.ts +83 -83
package/__tests__/unit/components/user-group/user-group.spec.ts +86 -86
package/__tests__/unit/components/user-object-privilege/user-object-privilege.spec.ts +78 -78
package/__tests__/unit/components/user-privilege/user-privilege.spec.ts +72 -72
package/__tests__/unit/components/user-system-access/user-system-access.spec.ts +89 -89
package/__tests__/unit/redis-client/redis.service.spec.ts +23 -23
package/__tests__/unit/session/session.service.spec.ts +47 -47
package/__tests__/unit/system-privilege/system-privilage.spec.ts +91 -91
package/coverage/clover.xml +1452 -1452
package/coverage/coverage-final.json +47 -47
package/coverage/lcov-report/base.css +224 -224
package/coverage/lcov-report/block-navigation.js +87 -87
package/coverage/lcov-report/components/group/group.repository.ts.html +117 -117
package/coverage/lcov-report/components/group/group.ts.html +327 -327
package/coverage/lcov-report/components/group/index.html +130 -130
package/coverage/lcov-report/components/group-object-privilege/group-object-privilege.repository.ts.html +117 -117
package/coverage/lcov-report/components/group-object-privilege/group-object-privilege.ts.html +321 -321
package/coverage/lcov-report/components/group-object-privilege/index.html +130 -130
package/coverage/lcov-report/components/group-privilege/group-privilege.repository.ts.html +117 -117
package/coverage/lcov-report/components/group-privilege/group-privilege.ts.html +303 -303
package/coverage/lcov-report/components/group-privilege/index.html +130 -130
package/coverage/lcov-report/components/group-reporting-user/group-reporting-user.repository.ts.html +117 -117
package/coverage/lcov-report/components/group-reporting-user/group-reporting-user.ts.html +327 -327
package/coverage/lcov-report/components/group-reporting-user/index.html +130 -130
package/coverage/lcov-report/components/group-system-access/group-system-access.repository.ts.html +117 -117
package/coverage/lcov-report/components/group-system-access/group-system-access.ts.html +309 -309
package/coverage/lcov-report/components/group-system-access/index.html +130 -130
package/coverage/lcov-report/components/login-history/index.html +115 -115
package/coverage/lcov-report/components/login-history/login-history.repository.ts.html +117 -117
package/coverage/lcov-report/components/login-user/index.html +130 -130
package/coverage/lcov-report/components/login-user/login-user.ts.html +5007 -5007
package/coverage/lcov-report/components/login-user/user.repository.ts.html +117 -117
package/coverage/lcov-report/components/password-hash/index.html +115 -115
package/coverage/lcov-report/components/password-hash/password-hash.service.ts.html +126 -126
package/coverage/lcov-report/components/system/index.html +130 -130
package/coverage/lcov-report/components/system/system.repository.ts.html +117 -117
package/coverage/lcov-report/components/system/system.ts.html +909 -909
package/coverage/lcov-report/components/system-privilege/index.html +130 -130
package/coverage/lcov-report/components/system-privilege/system-privilege.repository.ts.html +120 -120
package/coverage/lcov-report/components/system-privilege/system-privilege.ts.html +390 -390
package/coverage/lcov-report/components/user-group/index.html +130 -130
package/coverage/lcov-report/components/user-group/user-group.repository.ts.html +117 -117
package/coverage/lcov-report/components/user-group/user-group.ts.html +354 -354
package/coverage/lcov-report/components/user-object-privilege/index.html +130 -130
package/coverage/lcov-report/components/user-object-privilege/user-object-privilege.repository.ts.html +117 -117
package/coverage/lcov-report/components/user-object-privilege/user-object-privilege.ts.html +312 -312
package/coverage/lcov-report/components/user-privilege/index.html +130 -130
package/coverage/lcov-report/components/user-privilege/user-privilege.repository.ts.html +117 -117
package/coverage/lcov-report/components/user-privilege/user-privilege.ts.html +306 -306
package/coverage/lcov-report/components/user-system-access/index.html +130 -130
package/coverage/lcov-report/components/user-system-access/user-system-access.repository.ts.html +117 -117
package/coverage/lcov-report/components/user-system-access/user-system-access.ts.html +312 -312
package/coverage/lcov-report/enum/group-type.enum.ts.html +108 -108
package/coverage/lcov-report/enum/index.html +160 -160
package/coverage/lcov-report/enum/index.ts.html +93 -93
package/coverage/lcov-report/enum/user-status.enum.ts.html +105 -105
package/coverage/lcov-report/enum/yn.enum.ts.html +96 -96
package/coverage/lcov-report/index.html +370 -370
package/coverage/lcov-report/models/group-object-privilege.entity.ts.html +333 -333
package/coverage/lcov-report/models/group-privilege.entity.ts.html +315 -315
package/coverage/lcov-report/models/group-reporting-user.entity.ts.html +339 -339
package/coverage/lcov-report/models/group-system-access.entity.ts.html +324 -324
package/coverage/lcov-report/models/group.entity.ts.html +435 -435
package/coverage/lcov-report/models/index.html +310 -310
package/coverage/lcov-report/models/login-history.entity.ts.html +252 -252
package/coverage/lcov-report/models/staff.entity.ts.html +411 -411
package/coverage/lcov-report/models/system-privilege.entity.ts.html +354 -354
package/coverage/lcov-report/models/system.entity.ts.html +423 -423
package/coverage/lcov-report/models/user-group.entity.ts.html +354 -354
package/coverage/lcov-report/models/user-object-privilege.entity.ts.html +330 -330
package/coverage/lcov-report/models/user-privilege.entity.ts.html +315 -315
package/coverage/lcov-report/models/user-system-access.entity.ts.html +315 -315
package/coverage/lcov-report/models/user.entity.ts.html +522 -522
package/coverage/lcov-report/prettify.css +1 -1
package/coverage/lcov-report/prettify.js +2 -2
package/coverage/lcov-report/redis-client/index.html +115 -115
package/coverage/lcov-report/redis-client/redis.service.ts.html +240 -240
package/coverage/lcov-report/session/index.html +115 -115
package/coverage/lcov-report/session/session.service.ts.html +246 -246
package/coverage/lcov-report/sorter.js +196 -196
package/coverage/lcov.info +2490 -2490
package/coverage/test-report.xml +128 -128
package/create-sso-user.sql +39 -39
package/dist/__tests__/unit/components/group-privilege/group-privilege.test.d.ts +1 -0
package/dist/__tests__/unit/components/group-privilege/group-privilege.test.js +71 -0
package/dist/__tests__/unit/components/group-privilege/group-privilege.test.js.map +1 -0
package/dist/__tests__/unit/components/login-user/login-user.spec.d.ts +0 -0
package/dist/__tests__/unit/components/login-user/login-user.spec.js +6 -0
package/dist/__tests__/unit/components/login-user/login-user.spec.js.map +1 -0
package/dist/src/components/login-user/interfaces/user-info.interface.d.ts +2 -0
package/dist/src/components/login-user/login-user.js +2 -0
package/dist/src/components/login-user/login-user.js.map +1 -1
package/dist/src/components/login-user/user.d.ts +7 -0
package/dist/src/components/login-user/user.js +116 -1
package/dist/src/components/login-user/user.js.map +1 -1
package/dist/src/models/user.entity.d.ts +2 -0
package/dist/src/models/user.entity.js +13 -0
package/dist/src/models/user.entity.js.map +1 -1
package/dist/tsconfig.tsbuildinfo +1 -1
package/eslint.config.mjs +58 -58
package/jest.config.js +14 -14
package/migrations/20240314080602-create-user-table.js +124 -124
package/migrations/20240314080603-create-user-group-table.js +85 -85
package/migrations/20240314080604-create-user-user-group-table.js +55 -55
package/migrations/20240314080605-create-login-history-table.js +53 -53
package/migrations/20240527064925-create-system-table.js +78 -78
package/migrations/20240527064926-create-system-privilege-table.js +71 -71
package/migrations/20240527065342-create-group-table.js +93 -93
package/migrations/20240527065633-create-group-reporting-user-table.js +76 -76
package/migrations/20240528011551-create-group-system-access-table.js +72 -72
package/migrations/20240528023018-user-system-access-table.js +75 -75
package/migrations/20240528032229-user-privilege-table.js +76 -76
package/migrations/20240528063003-create-group-privilege-table.js +76 -76
package/migrations/20240528063051-create-group-object-privilege-table.js +84 -84
package/migrations/20240528063107-create-user-object-privilege-table.js +84 -84
package/migrations/20240528063108-create-api-key-table.js +85 -85
package/migrations/20241104104802-create-building-table.js +95 -95
package/migrations/20250108091132-add-area-manager-user-id-to-building-table.js +14 -14
package/migrations/20250108091133-add-passcode-to-user-table.js +36 -0
package/package.json +90 -90
package/sampledotenv +7 -7
package/sonar-project.properties +22 -22
package/src/components/login-user/interfaces/user-info.interface.ts +2 -0
package/src/components/login-user/login-user.ts +2 -0
package/src/components/login-user/user.ts +147 -1
package/src/models/user.entity.ts +11 -0
package/tsconfig.build.json +5 -5
package/tsconfig.json +23 -23

package/src/components/login-user/user.ts CHANGED Viewed

@@ -51,6 +51,8 @@ export class User extends UserBase {
   private _LastFailedLoginAt: Date;
   private _LastPasswordChangedAt: Date;
   private _NeedToChangePasswordYN: YN;
+  private _PasscodeHash: string;
+  private _PasscodeUpdatedAt: Date;
   private _CreatedById: number;
   private _CreatedAt: Date;
   private _UpdatedById: number;
@@ -227,6 +229,22 @@ export class User extends UserBase {
     this._UpdatedAt = value;
   }
+  get PasscodeHash(): string {
+    return this._PasscodeHash;
+  }
+  private set PasscodeHash(value: string) {
+    this._PasscodeHash = value;
+  }
+  get PasscodeUpdatedAt(): Date {
+    return this._PasscodeUpdatedAt;
+  }
+  private set PasscodeUpdatedAt(value: Date) {
+    this._PasscodeUpdatedAt = value;
+  }
   async getDetails(): Promise<{
     FullName: string;
     UserName: string;
@@ -278,6 +296,8 @@ export class User extends UserBase {
       this.LastFailedLoginAt = userInfo.LastFailedLoginAt;
       this.LastPasswordChangedAt = userInfo.LastPasswordChangedAt;
       this.NeedToChangePasswordYN = userInfo.NeedToChangePasswordYN;
+      this.PasscodeHash = userInfo.PasscodeHash;
+      this.PasscodeUpdatedAt = userInfo.PasscodeUpdatedAt;
       this.CreatedById = userInfo.CreatedById;
       this.CreatedAt = userInfo.CreatedAt;
       this.UpdatedById = userInfo.UpdatedById;
@@ -332,6 +352,8 @@ export class User extends UserBase {
           LastFailedLoginAt: user.LastFailedLoginAt,
           LastPasswordChangedAt: user.LastPasswordChangedAt,
           NeedToChangePasswordYN: user.NeedToChangePasswordYN,
+          PasscodeHash: user.PasscodeHash,
+          PasscodeUpdatedAt: user.PasscodeUpdatedAt,
           CreatedById: user.CreatedById,
           CreatedAt: user.CreatedAt,
           UpdatedById: user.UpdatedById,
@@ -394,6 +416,8 @@ export class User extends UserBase {
           LastFailedLoginAt: user.LastFailedLoginAt,
           LastPasswordChangedAt: user.LastPasswordChangedAt,
           NeedToChangePasswordYN: user.NeedToChangePasswordYN,
+          PasscodeHash: user.PasscodeHash,
+          PasscodeUpdatedAt: user.PasscodeUpdatedAt,
           CreatedById: user.CreatedById,
           CreatedAt: user.CreatedAt,
           UpdatedById: user.UpdatedById,
@@ -486,6 +510,8 @@ export class User extends UserBase {
             LastFailedLoginAt: user.LastFailedLoginAt,
             LastPasswordChangedAt: user.LastPasswordChangedAt,
             NeedToChangePasswordYN: user.NeedToChangePasswordYN,
+            PasscodeHash: user.PasscodeHash,
+            PasscodeUpdatedAt: user.PasscodeUpdatedAt,
             CreatedById: user.CreatedById,
             CreatedAt: user.CreatedAt,
             UpdatedById: user.UpdatedById,
@@ -575,6 +601,7 @@ export class User extends UserBase {
         }
       } catch (error) {
         await this.incrementFailedLoginAttemptCount(dbTransaction);
+        throw new Error('Invalid credentials.');
       }
       // 2.1:  Call alertNewLogin to check whether the ip used is new ip and alert the user if it's new.
@@ -735,7 +762,7 @@ export class User extends UserBase {
         const userGroups = await User._UserGroupRepo.findAll({
           where: {
             UserId: userId,
-            InheritGroupAccessYN: 'Y',
+            InheritGroupSystemAccessYN: 'Y',
             Status: 'Active',
           },
           include: [
@@ -1508,6 +1535,8 @@ export class User extends UserBase {
         LastPasswordChangedAt: null,
         DefaultPasswordChangedYN: YN.No,
         NeedToChangePasswordYN: YN.Yes,
+        PasscodeHash: null,
+        PasscodeUpdatedAt: null,
         CreatedById: loginUser.UserId,
         CreatedAt: new Date(),
         UpdatedById: loginUser.UserId,
@@ -2583,6 +2612,8 @@ export class User extends UserBase {
       LastFailedLoginAt: user.LastFailedLoginAt,
       LastPasswordChangedAt: user.LastPasswordChangedAt,
       NeedToChangePasswordYN: user.NeedToChangePasswordYN,
+      PasscodeHash: user.PasscodeHash,
+      PasscodeUpdatedAt: user.PasscodeUpdatedAt,
       CreatedById: user.CreatedById,
       CreatedAt: user.CreatedAt,
       UpdatedById: user.UpdatedById,
@@ -2707,6 +2738,8 @@ export class User extends UserBase {
         LastFailedLoginAt: user.LastFailedLoginAt,
         LastPasswordChangedAt: user.LastPasswordChangedAt,
         NeedToChangePasswordYN: user.NeedToChangePasswordYN,
+        PasscodeHash: user.PasscodeHash,
+        PasscodeUpdatedAt: user.PasscodeUpdatedAt,
         CreatedById: user.CreatedById,
         CreatedAt: user.CreatedAt,
         UpdatedById: user.UpdatedById,
@@ -2722,4 +2755,117 @@ export class User extends UserBase {
       throw error;
     }
   }
+  async updatePasscode(loginUser: User, passcode: string, dbTransaction: any) {
+    try {
+      // Part 1: Validate Passcode
+      // Make sure passcode is numeric and 6 digit length, if not throw new ClassError by passing:
+      // ClassName: “User”
+      // MessageCode: “UserErrMsg0X”
+      // Message: “Passcode must be 6-digit number.”
+      if (!/^\d{6}$/.test(passcode)) {
+        throw new ClassError(
+          'User',
+          'UserErrMsg0X',
+          'Passcode must be 6-digit number.',
+        );
+      }
+      // Part 2: Hash Passcode
+      // Instantiate new PasswordHashService and hash the Params.passcode.
+      const passwordHashService = new PasswordHashService();
+      const passcodeHash = await passwordHashService.hashPassword(passcode);
+      // Part 3: Update User Record
+      // Call _repo update method to update:
+      // PasscodeHash: hash from Part 2
+      // PasscodeUpdatedAt: new Date()
+      // where: UserId: loginUser.ObjectId
+      const entityValueBefore: IUserAttr = {
+        UserId: this.UserId,
+        UserName: this.UserName,
+        FullName: this.FullName,
+        IDNo: this.IDNo,
+        IDType: this.IDType,
+        ContactNo: this.ContactNo,
+        Email: this.Email,
+        Password: this.Password,
+        Status: this.Status,
+        DefaultPasswordChangedYN: this.DefaultPasswordChangedYN,
+        FirstLoginAt: this.FirstLoginAt,
+        LastLoginAt: this.LastLoginAt,
+        MFAEnabled: this.MFAEnabled,
+        MFAConfig: this.MFAConfig,
+        RecoveryEmail: this.RecoveryEmail,
+        FailedLoginAttemptCount: this.FailedLoginAttemptCount,
+        LastFailedLoginAt: this.LastFailedLoginAt,
+        LastPasswordChangedAt: this.LastPasswordChangedAt,
+        NeedToChangePasswordYN: this.NeedToChangePasswordYN,
+        CreatedById: this.CreatedById,
+        CreatedAt: this.CreatedAt,
+        UpdatedById: this.UpdatedById,
+        UpdatedAt: this.UpdatedAt,
+        PasscodeHash: this.PasscodeHash,
+        PasscodeUpdatedAt: this.PasscodeUpdatedAt,
+      };
+      this.PasscodeHash = passcodeHash;
+      this.PasscodeUpdatedAt = new Date();
+      const entityValueAfter: IUserAttr = {
+        UserId: this.UserId,
+        UserName: this.UserName,
+        FullName: this.FullName,
+        IDNo: this.IDNo,
+        IDType: this.IDType,
+        ContactNo: this.ContactNo,
+        Email: this.Email,
+        Password: this.Password,
+        Status: this.Status,
+        DefaultPasswordChangedYN: this.DefaultPasswordChangedYN,
+        FirstLoginAt: this.FirstLoginAt,
+        LastLoginAt: this.LastLoginAt,
+        MFAEnabled: this.MFAEnabled,
+        MFAConfig: this.MFAConfig,
+        RecoveryEmail: this.RecoveryEmail,
+        FailedLoginAttemptCount: this.FailedLoginAttemptCount,
+        LastFailedLoginAt: this.LastFailedLoginAt,
+        LastPasswordChangedAt: this.LastPasswordChangedAt,
+        NeedToChangePasswordYN: this.NeedToChangePasswordYN,
+        CreatedById: this.CreatedById,
+        CreatedAt: this.CreatedAt,
+        UpdatedById: this.UpdatedById,
+        UpdatedAt: this.UpdatedAt,
+        PasscodeHash: this.PasscodeHash,
+        PasscodeUpdatedAt: this.PasscodeUpdatedAt,
+      };
+      await User._Repository.update(
+        {
+          PasscodeHash: this.PasscodeHash,
+          PasscodeUpdatedAt: this.PasscodeUpdatedAt,
+        },
+        {
+          where: {
+            UserId: this.UserId,
+          },
+          transaction: dbTransaction,
+        },
+      );
+      // Record update activity using Activity class create method.
+      const activity = new Activity();
+      activity.ActivityId = activity.createId();
+      activity.Action = ActionEnum.UPDATE;
+      activity.Description = 'Update Passcode';
+      activity.EntityType = 'LoginUser';
+      activity.EntityId = this.UserId.toString();
+      activity.EntityValueBefore = JSON.stringify(entityValueBefore);
+      activity.EntityValueAfter = JSON.stringify(entityValueAfter);
+      await activity.create(loginUser.ObjectId, dbTransaction);
+    } catch (error) {
+      throw error;
+    }
+  }
 }

package/src/models/user.entity.ts CHANGED Viewed

@@ -135,6 +135,17 @@ export default class User extends Model {
   })
   NeedToChangePasswordYN: YN;
+  @Column({
+    allowNull: true,
+    type: DataType.STRING,
+  })
+  PasscodeHash: string;
+  @Column({
+    type: DataType.DATE,
+  })
+  PasscodeUpdatedAt: Date;
   @ForeignKey(() => User)
   @Column({
     type: DataType.INTEGER,

package/tsconfig.build.json CHANGED Viewed

@@ -1,6 +1,6 @@
-{
-  "extends": "./tsconfig.json",
-  "include": ["**/*.ts"],
-  "exclude": ["node_modules", "__tests__", "dist", "**/*spec.ts"]
-}
+{
+  "extends": "./tsconfig.json",
+  "include": ["**/*.ts"],
+  "exclude": ["node_modules", "__tests__", "dist", "**/*spec.ts"]
+}

package/tsconfig.json CHANGED Viewed

@@ -1,24 +1,24 @@
-{
-  "compilerOptions": {
-    "module": "commonjs",
-    "declaration": true,
-    "removeComments": true,
-    "emitDecoratorMetadata": true,
-    "experimentalDecorators": true,
-    "allowSyntheticDefaultImports": true,
-    "moduleResolution": "node",
-    "target": "es6",
-    "sourceMap": true,
-    "outDir": "./dist",
-    "baseUrl": "./src",
-    "rootDir": "./",
-    "incremental": true,
-    "skipLibCheck": true,
-    "noImplicitAny": false,
-    "strictBindCallApply": false,
-    "forceConsistentCasingInFileNames": false,
-    "noFallthroughCasesInSwitch": false,
-    "strictNullChecks": false,
-  },
-  "exclude": ["node_modules", "dist"]
+{
+  "compilerOptions": {
+    "module": "commonjs",
+    "declaration": true,
+    "removeComments": true,
+    "emitDecoratorMetadata": true,
+    "experimentalDecorators": true,
+    "allowSyntheticDefaultImports": true,
+    "moduleResolution": "node",
+    "target": "es6",
+    "sourceMap": true,
+    "outDir": "./dist",
+    "baseUrl": "./src",
+    "rootDir": "./",
+    "incremental": true,
+    "skipLibCheck": true,
+    "noImplicitAny": false,
+    "strictBindCallApply": false,
+    "forceConsistentCasingInFileNames": false,
+    "noFallthroughCasesInSwitch": false,
+    "strictNullChecks": false,
+  },
+  "exclude": ["node_modules", "dist"]
 }