beech-api 3.2.11 → 3.4.0

package/index.js

@@ -0,0 +1,3 @@
+module.exports = {
+  User: require('./packages/lib/beech')
+}

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "beech-api",
-  "version": "3.2.11",
+  "version": "3.4.0",
   "description": "Command line interface for rapid Beech API development",
   "keywords": [
     "beech-api",
@@ -30,13 +30,32 @@
   },
   "dependencies": {
     "fs": "0.0.1-security",
+    "jsonwebtoken": "^8.5.1",
     "log-update": "^4.0.0",
+    "md5": "^2.3.0",
     "mkdirp": "^0.5.1",
     "node-cmd": "^3.0.0",
-    "path": "^0.12.7"
+    "passport": "^0.4.1",
+    "passport-facebook": "^3.0.0",
+    "passport-google-oauth": "^2.0.0",
+    "passport-jwt": "^4.0.0",
+    "passport-local": "^1.0.0",
+    "passport-oauth": "^1.0.0",
+    "path": "^0.12.7",
+    "cookie-parser": "1.4.3",
+    "cors": "^2.8.1",
+    "express": "4.16.3",
+    "express-session": "^1.17.1",
+    "express-validator": "2.21.0",
+    "module-alias": "^2.2.2",
+    "mysql": "^2.18.1",
+    "sequelize": "^5.21.6",
+    "walk": "^2.3.14",
+    "app-root-path": "^3.0.0"
   },
   "devDependencies": {
-    "jest": "^25.2.7"
+    "jest": "^25.2.7",
+    "sequelize-cli": "^5.5.1"
   },
   "jest": {
     "prdFile": "./node_modules/beech-api/packages/cli/core/test/utils.js",

package/packages/cli/bin/beech.js

@@ -49,6 +49,7 @@ class Beech {
                 .then(this.copy.bind(this, tmpDotSequelizercFile, pasteDotSequelizercFile))
                 .then(this.copy.bind(this, tmpGloablConfigFile, pasteGloablConfigFile))
                 .then(this.copy.bind(this, tmpGitignoreFile, pasteGitignoreFile))
+                .then(this.generateKeyConfigFile.bind(this, this.argument))
                 .then(this.installPackage.bind(this, this.argument))
                 .then(logUpdate("\n Processing  The `" + this.argument + "` application is creating...\n"))
                 .catch((err) => {
@@ -99,7 +100,7 @@ class Beech {
   }
 
   successfully() {
-    logUpdate('\n Passed  The project has been successfully created.\n\n  $ cd ' + this.argument + '\n  $ npm run start or yarn start');
+    logUpdate('\n Passed  The project has been successfully created.\n\n  $ cd ' + this.argument + '\n  $ npm start or yarn start');
   }
 
   async contentReplace(pathFile, textCondition) {
@@ -174,6 +175,58 @@ class Beech {
     });
   }
 
+  appKeyGenerator(length) {
+    return new Promise((resolve, reject) => {
+      try {
+        let md5 = require("md5");
+        let secret = require(__dirname + "/../../lib/salt").salt;
+        let result = '';
+        let characters = 'ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789';
+        let charactersLength = characters.length;
+        for ( var i = 0; i < length; i++ ) {
+          result += characters.charAt(Math.floor(Math.random() * charactersLength));
+        }
+        resolve(md5(result + secret));
+      } catch (error) {
+        reject(error);
+      }
+    });
+  }
+
+  generateKeyConfigFile(pjName) {
+    return new Promise((resolve, reject) => {
+      try {
+        this.fs.readFile(pjName + "/app.config.js", 'utf8', (err, data) => {
+          if (err) {
+            throw err;
+          } else {
+            // edit or add property
+            let buffer = Buffer.from(data);
+            let buf2str = buffer.toString();
+            let buf2json = JSON.parse(JSON.stringify(buf2str));
+            let buf2eval = eval(buf2json);
+            let oldSecret = buf2eval.main_config.app_secret;
+            // generate new key secret
+            this.appKeyGenerator(8).then(newAppSecret => {
+              // content replace
+              let text = data.replace(new RegExp(oldSecret, 'g'), newAppSecret);
+              // writing the file
+              this.fs.writeFile(pjName + "/app.config.js", text, 'utf8', (err) => {
+                if (err) {
+                  throw err;
+                } else {
+                  resolve("\n Passed  App secret it's new generated.");
+                }
+              });              
+            });
+          }
+        });
+      } catch (error) {
+        reject(error);
+      }
+    });
+  }
+
   help() {
     return new Promise((resolve, reject) => {
       try {

package/packages/cli/core/auth/Credentials.js

@@ -0,0 +1,23 @@
+const passport = require('passport');
+module.exports = {
+  credentials: (req, res, next) => {
+    return passport.authenticate("jwt", {
+      session: false
+    }, (err, user, info) => {
+      if (err) {
+        console.log(err, info);
+        return next(err);
+      }
+      if (!user) {
+        return res.status(401).json({
+          code: 401,
+          status: 'error',
+          error: 'UNAUTHORIZED_USER'
+        });
+      }
+      // Forward user information to the next middleware
+      req.user = user;
+      next();
+    })(req, res, next);
+  }
+}

package/packages/cli/core/auth/Passport.js

@@ -0,0 +1,204 @@
+const appRoot = require("app-root-path");
+const fs = require("fs");
+const passport_config_file = appRoot + "/passport.config.js";
+const md5 = require("md5");
+const secret = require("../../../lib/salt").salt;
+
+module.exports = {
+  init() {
+    try {
+      if (fs.existsSync(passport_config_file)) {
+        var passport = require("passport"),
+            LocalStrategy = require("passport-local").Strategy,
+            GoogleStrategy = require("passport-google-oauth").OAuth2Strategy,
+            FacebookStrategy = require('passport-facebook').Strategy;
+        var passportJWT = require("passport-jwt"),
+            JWTStrategy = passportJWT.Strategy,
+            ExtractJWT = passportJWT.ExtractJwt;
+        const auth = require("./Credentials");
+        var passport_config = require(passport_config_file);
+        if (passport_config.jwt_allow) {
+          global.Credentials = auth.credentials;
+        } else {
+          global.Credentials = [];
+          return;
+        }
+      } else {
+        global.Credentials = [];
+        return;
+      }
+      // declare constant
+      let passportUsernameField = passport_config.model.username_field || "username";
+      let passportPasswordField = passport_config.model.password_field || "password";
+      let passportTable = passport_config.model.table || "users";
+      let passportFields = (passport_config.model.fields.length) ? passport_config.model.fields : ["id", "name", "email"];
+      // passport initial with token (encoder)
+      passport.use(new LocalStrategy({
+        usernameField: passportUsernameField,
+        passwordField: passportPasswordField
+      }, (username, password, done) => {
+        let pool = eval("mysql." + passport_config.model.name);
+        if (pool) {
+          pool.query("SELECT " + passportFields + " FROM ?? WHERE ?? = ? AND ?? = ?", [
+            passportTable,
+            passportUsernameField,
+            username,
+            passportPasswordField,
+            md5(password + secret)
+          ], (err, result) => {
+            if (err) {
+              return done(err);
+            } else {
+              return done(null, JSON.parse(JSON.stringify(result[0] || null)));
+            }
+          });
+        } else {
+          return done(null, null, true);
+        }
+      }));
+      // passport jwt payload (decoder)
+      passport.use(new JWTStrategy({
+        jwtFromRequest: ExtractJWT.fromAuthHeaderAsBearerToken(),
+        secretOrKey: passport_config.secret
+      }, (jwtPayload, done) => {
+        let pool = eval("mysql." + passport_config.model.name);
+        if (pool) {
+          pool.query("SELECT " + passportFields + " FROM ?? WHERE id = ?", [
+            passportTable,
+            jwtPayload.id
+          ], (err, result) => {
+            if (err) {
+              return done(err);
+            } else {
+              return done(null, JSON.parse(JSON.stringify(result[0] || null)));
+            }
+          });
+        } else {
+          return done(null, null, true);
+        }
+      }));
+      
+      // declare head authentication enpoint for all strategy
+      let auth_endpoint = (passport_config.auth_endpoint) ? (passport_config.auth_endpoint[0] === "/" ? passport_config.auth_endpoint : "/" + passport_config.auth_endpoint) : "/authentication";      
+      
+      /**
+       * Passport Google Strategy
+       * 
+       */
+      let google_callback_endpoint = (passport_config.strategy.google.callback_endpoint) ? (passport_config.strategy.google.callback_endpoint[0] === "/" ? passport_config.strategy.google.callback_endpoint : "/" + passport_config.strategy.google.callback_endpoint) : "/google/callback";
+      passport.use(new GoogleStrategy({
+        clientID: passport_config.strategy.google.client_id,
+        clientSecret: passport_config.strategy.google.client_secret,
+        callbackURL:  auth_endpoint + google_callback_endpoint
+      }, (accessToken, refreshToken, profile, done) => {
+        // find google user
+        let googleIdField = (passport_config.strategy.google.google_id_field) ? passport_config.strategy.google.google_id_field : "google_id";
+        this.findOrCreate(passport_config, "google", passportFields, passportTable, accessToken, refreshToken, profile, googleIdField, (err, res, dbFailed) => {
+          if (err) {
+            return done(err);
+          } else {
+            return done(err, res, dbFailed);
+          }
+        });
+      }));
+      
+      /**
+       * Passport Facebook Strategy
+       * 
+       */
+       let facebook_callback_endpoint = (passport_config.strategy.facebook.callback_endpoint) ? (passport_config.strategy.facebook.callback_endpoint[0] === "/" ? passport_config.strategy.facebook.callback_endpoint : "/" + passport_config.strategy.facebook.callback_endpoint) : "/facebook/callback";
+       passport.use(new FacebookStrategy({
+        clientID: passport_config.strategy.facebook.app_id,
+        clientSecret: passport_config.strategy.facebook.app_secret,
+        callbackURL: auth_endpoint + facebook_callback_endpoint
+      }, (accessToken, refreshToken, profile, done) => {
+
+        console.log(accessToken, refreshToken, profile);
+
+        // fix somthing went wrong
+
+
+        //return
+        
+        // find facebook user
+        let faecbookIdField = (passport_config.strategy.facebook.google_id_field) ? passport_config.strategy.facebook.facebook_id_field : "facebook_id";
+        this.findOrCreate(passport_config, "facebook", passportFields, passportTable, accessToken, refreshToken, profile, faecbookIdField, (err, res, dbFailed) => {
+          if (err) {
+            return done(err);
+          } else {
+            return done(err, res, dbFailed);
+          }
+        });
+      }
+    ));
+    } catch (error) {
+      throw error;
+    }
+  },
+  findOrCreate(passport_config, strategy_name, passportFields, passportTable, accessToken, refreshToken, profile, googleIdField, cb) {
+    let pool = eval("mysql." + passport_config.model.name);
+    if (pool) {
+      pool.query("SELECT " + passportFields + " FROM ?? WHERE ?? = ?", [
+        passportTable,
+        googleIdField,
+        profile.id
+      ], (err, result) => {
+        if (err) {
+          cb(err);
+        } else {
+          // declare data response
+          let data = {};
+          // check strategy name for store
+          if (strategy_name == "google") {
+            if (!result[0]) { // find not found and create
+              // filter fields
+              let fields = [].concat.apply([], [
+                (passport_config.strategy.google.profile_fields.name) ? passport_config.strategy.google.profile_fields.name : null,
+                (passport_config.strategy.google.profile_fields.email) ? passport_config.strategy.google.profile_fields.email : null,
+                (passport_config.strategy.google.profile_fields.photos) ? passport_config.strategy.google.profile_fields.photos : null,
+                (passport_config.strategy.google.profile_fields.locate) ? passport_config.strategy.google.profile_fields.locate : null
+              ].filter((el) => el != null));
+              // fileter values
+              let values = [].concat.apply([], [
+                (passport_config.strategy.google.profile_fields.name) ? profile.displayName : null,
+                (passport_config.strategy.google.profile_fields.email) ? profile.emails[0].value : null,
+                (passport_config.strategy.google.profile_fields.photos) ? profile.photos[0].value : null,
+                (passport_config.strategy.google.profile_fields.locate) ? profile._json.locale : null
+              ].filter((el) => el != null));
+              // Store google profile
+              pool.query("INSERT INTO ??(??,??,??,??) VALUES(?,?,?,?)", [
+                passportTable,
+                passport_config.model.username_field || "username",
+                passport_config.model.password_field || "password",
+                googleIdField,
+                fields,
+                profile.emails[0].value.split("@")[0],
+                md5(profile.id + secret),
+                profile.id,
+                values
+              ], (err, result) => {
+                data.result = result;
+                data.google = profile;
+                cb(err, data);
+              });
+            } else { // find found
+              let users = {};
+              users.google = profile;
+              users.google.accessToken = accessToken;
+              users.google.refreshToken = refreshToken;
+              users.user = result[0];
+              cb(err, users);
+            }
+          } else if (strategy_name == "facebook") {
+
+            console.log(result)
+
+          }
+        }
+      });          
+    } else {
+      cb(null, null, true);
+    }
+  }
+
+}

package/packages/cli/core/configure/app.config.js

@@ -1,11 +1,11 @@
 module.exports = {
   /**
-   * Server configuration
+   * Service configuration
    * 
-   * @exports app_port  Listening start server
-   * @exports app_host  Server http host
-   * @exports client_host Production host
-   * @exports app_secret  App secret using the API
+   * @exports app_port : Listening for start service
+   * @exports app_host : Server http localhost
+   * @exports client_host : Production http client host
+   * @exports app_secret : App secret key for request with endpoints
    * 
    */
   main_config: {
@@ -15,20 +15,23 @@ module.exports = {
     app_secret: ["2cc118cd91b52ff99e3c005ddced76fb"]
   },
 
+  // Add-on it's work when enable. You can enable add-on by run CMD `$ beech add-on init`.
+  addOn: true,
+
   /**
    * Database configuration (mutiple connection) currenty support for MySQL
    * 
-   * @exports name meaning The Connection name
-   * @exports host meaning The Host address
-   * @exports username meaning The Host username connection
-   * @exports password meaning Host The password connection
-   * @exports database  meaning The database name
-   * @exports port meaning The sql port (default 3306)
-   * @exports charset meaning The character encoding
-   * @exports isConnect meaning The sql connection flag (boolean)
+   * @exports name : The Connection name
+   * @exports host : The Host address
+   * @exports username : The Host username connection
+   * @exports password : Host The password connection
+   * @exports database  : The database name
+   * @exports port : The sql port (default 3306)
+   * @exports charset : The character encoding
+   * @exports is_connect : The sql connection flag (boolean)
    * 
    */
-  mySqlConfig: [
+  mysql_config: [
     {
       name: "default_db",
       host: "127.0.0.1",
@@ -37,7 +40,7 @@ module.exports = {
       database: "example1_db",
       port: "3306",
       charset: "utf8",
-      isConnect: false
+      is_connect: false
     },
     {
       name: "second_db",
@@ -47,7 +50,7 @@ module.exports = {
       database: "example2_db",
       port: "3306",
       charset: "utf8",
-      isConnect: false
+      is_connect: false
     }
   ]
 };

package/packages/cli/core/configure/passport.config.js

@@ -0,0 +1,84 @@
+module.exports = {
+  // Allow using jwt
+  jwt_allow: true,
+
+  // Custom authenticaiton endpoint, default `/authentication`
+  auth_endpoint: "",
+
+  // Assign your jwt secret key
+  secret: "your_jwt_secret",
+
+  // Set token expiry time (seconds), default expired in 24 hr.
+  token_expired: 86400,
+
+  model: {
+    // Main mysql connection same name inside `app.config.js` file
+    name: "default_db",
+    // The user table name for store your authenticate, default table `users`
+    table: "",
+    // The fields for authenticate, default fields: `username` and `password`
+    username_field: "",
+    password_field: "",
+    // Show JWT fields, default show fields: ["id", "name", "email"]
+    fields: []
+  },
+
+  // Allow using with app_secret requset
+  app_secret_allow: true,
+
+  // Official strategy
+  strategy: {
+    /**
+     * The Client Id and Client Secret needed to authenticate with Google can be set up from the Google Developers Console (https://console.developers.google.com/)
+     * You may also need to enable Google+ API in the developer console, otherwise user profile data may not be fetched. 
+     * Now Google supports authentication with oAuth 2.0.
+     * 
+     */
+    google: {
+      // Allow using google strategy
+      allow: true,
+      // Google ID fields, default field: `google_id`
+      google_id_field: "",
+      // User profile fields, default fields: `name`, `email`, `photos`, `locate`
+      profile_fields: {
+        name: "name",
+        email: "email",
+        photos: "profile_url",
+        locate: "" // If not storing set to null
+      },
+      // Google development Credentials OAuth 2.0 Client IDs
+      client_id: GOOGLE_CLIENT_ID,
+      client_secret: GOOGLE_CLIENT_SECRET,
+      // Callback endpoint default `/google/callback`
+      callback_endpoint: ""
+    },
+
+    /**
+     * The Facebook strategy allows users to log in to a web application using their Facebook account. Internally, Facebook authentication works using OAuth 2.0.
+     * Support for Facebook is implemented by the passport-facebook (https://github.com/jaredhanson/passport-facebook) module.
+     * 
+     * In order to use Facebook authentication, you must first create an app at Facebook Developers. (https://developers.facebook.com/apps) When created, an app is assigned an App ID and App Secret.
+     * Your application must also implement a redirect URL, to which Facebook will redirect users after they have approved access for your application.
+     * 
+     */
+    facebook: {
+      // Allow using facebook strategy
+      allow: true,
+      // Facebook ID fields, default field: `facebook_id`
+      facebook_id_field: "",
+      // User profile fields, default fields: `name`, `email`, `photos`, `locate`
+      profile_fields: {
+        name: "name",
+        email: "email",
+        photos: "profile_url",
+        locate: "" // If not storing set to null
+      },
+      // Facebook development Credentials OAuth 2.0
+      app_id: FACEBOOK_APP_ID,
+      app_secret: FACEBOOK_APP_SECRET,
+      // Callback endpoint default `/facebook/callback`
+      callback_endpoint: ""
+    },
+
+  }
+}

package/packages/cli/core/databases/mysql.connection.js

@@ -2,9 +2,16 @@ exports.mySqlConnection = () => {
   return new Promise((resolve, reject) => {
     try {
       global.mysql = {};
+      var headDbShow = true;
       // loop database connection
-      _config_.mySqlConfig.map((val, index) => {
-        if (val.isConnect) {
+      _config_.mysql_config.map((val, index) => {
+        if (val.is_connect) {
+          // show only one text db connnections
+          if (headDbShow) {
+            console.log('\n Passed  Database is connected at:');
+            headDbShow = false;
+          }
+          // db connection config
           let connection = _mysql_.createConnection({
             host: val.host,
             user: val.username,
@@ -13,12 +20,13 @@ exports.mySqlConnection = () => {
             charset: val.charset,
             port: val.port
           })
+          // db connecting
           connection.connect((err) => {
             if (!err) {
               mysql[val.name] = connection;
-              console.log(' Passed  Database is connected at [' + val.name, '->', connection.config.database + ':' + connection.config.port + ']');
+              console.log(' - ' + val.name, '->', connection.config.database + ':' + connection.config.port + '');
               // checking for resolve
-              if ((index + 1) == _config_.mySqlConfig.length) {
+              if ((index + 1) == _config_.mysql_config.length) {
                 resolve(true);
               }
             } else {
@@ -28,7 +36,7 @@ exports.mySqlConnection = () => {
           })
         } else {
           // checking for resolve
-          if ((index + 1) == _config_.mySqlConfig.length) {
+          if ((index + 1) == _config_.mysql_config.length) {
             resolve(true);
           }
         }

package/packages/cli/core/generator/add-on

@@ -0,0 +1,9 @@
+//const Users = require("@/models/Users");
+
+exports.init = () => {
+
+  //Users.findAll().then(console.log)
+
+  console.log("Add-on is work!")
+
+}

package/packages/cli/core/generator/endpoints

@@ -3,7 +3,7 @@ exports.init = () => {
   // Initiate with basic request currently support GET, POST, PUT, PATCH and DELETE
 
   /@GET/
-	endpoint.get('{{endpoint}}', (req, res) => {
+	endpoint.get('{{endpoint}}', Credentials, (req, res) => {
     // basic get method
 		let data = {};
     data.code = 200;
@@ -13,7 +13,7 @@ exports.init = () => {
 	});
 
   /@POST/
-  endpoint.post('{{endpoint}}', (req, res) => {
+  endpoint.post('{{endpoint}}', Credentials, (req, res) => {
     /**
      * @param Integer id
      *
@@ -28,7 +28,7 @@ exports.init = () => {
   });
 
   /@PUT/
-  endpoint.put('{{endpoint}}/:id', (req, res) => {
+  endpoint.put('{{endpoint}}/:id', Credentials, (req, res) => {
     /**
      * @param Integer id
      *
@@ -43,7 +43,7 @@ exports.init = () => {
   });
 
   /@PATCH/
-  endpoint.patch('{{endpoint}}/:id', (req, res) => {
+  endpoint.patch('{{endpoint}}/:id', Credentials, (req, res) => {
     /**
      * @param Integer id
      *
@@ -58,7 +58,7 @@ exports.init = () => {
   });
 
   /@DELETE/
-  endpoint.delete('{{endpoint}}/:id', (req, res) => {
+  endpoint.delete('{{endpoint}}/:id', Credentials, (req, res) => {
     /**
      * @param Integer id
      *

package/packages/cli/core/generator/help

@@ -12,3 +12,6 @@ The following commands are available:
                                   You might using <special> `--require=Model1,Model2,..`
                                   for require model file(s) in generate processing
   $ beech make <model> --model    Create a new models file
+  $ beech passport init           Initialize authentication with passport-jwt
+  $ beech add-on init             Initialize add-on file
+