npm - kuzzle - Versions diffs - 2.19.12 → 2.20.1 - Mend

kuzzle 2.19.12 → 2.20.1

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (33) hide show

package/index.d.ts +1 -1
package/index.js +1 -1
package/lib/api/controllers/authController.d.ts +164 -0
package/lib/api/controllers/authController.js +469 -654
package/lib/api/controllers/baseController.d.ts +74 -0
package/lib/api/controllers/baseController.js +169 -221
package/lib/api/controllers/documentController.js +6 -8
package/lib/api/funnel.js +4 -1
package/lib/api/httpRoutes.js +6 -0
package/lib/api/openapi/openApiGenerator.js +2 -2
package/lib/api/request/kuzzleRequest.d.ts +3 -1
package/lib/api/request/kuzzleRequest.js +32 -0
package/lib/core/backend/backendController.js +2 -2
package/lib/core/backend/backendPlugin.js +2 -2
package/lib/core/network/protocols/httpwsProtocol.js +0 -12
package/lib/core/plugin/pluginRepository.js +1 -1
package/lib/core/plugin/pluginsManager.js +1 -1
package/lib/core/security/index.js +1 -1
package/lib/core/security/profileRepository.d.ts +14 -4
package/lib/core/security/profileRepository.js +2 -2
package/lib/core/security/roleRepository.js +1 -1
package/lib/core/security/tokenRepository.d.ts +73 -0
package/lib/core/security/tokenRepository.js +359 -460
package/lib/core/security/userRepository.js +1 -1
package/lib/core/shared/repository.d.ts +178 -0
package/lib/core/shared/repository.js +365 -450
package/lib/kerror/codes/7-security.json +6 -0
package/lib/model/security/token.d.ts +2 -0
package/lib/model/security/token.js +1 -0
package/lib/service/storage/elasticsearch.js +4 -0
package/lib/util/{inflector.d.ts → Inflector.d.ts} +5 -0
package/lib/util/{inflector.js → Inflector.js} +12 -1
package/package.json +11 -4

package/lib/core/network/protocols/httpwsProtocol.js CHANGED Viewed

@@ -83,14 +83,11 @@ const HTTP_ALLOWED_CONTENT_TYPES = [
 ];
 const HTTP_SKIPPED_HEADERS = ["content-length", "set-cookie"];
 const HTTP_HEADER_CONNECTION = Buffer.from("Connection");
-const HTTP_HEADER_CONTENT_LENGTH = Buffer.from("Content-Length");
 const HTTP_HEADER_ACCESS_CONTROL_ALLOW_ORIGIN = Buffer.from(
   "Access-Control-Allow-Origin"
 );
 const HTTP_HEADER_SET_COOKIE = Buffer.from("Set-Cookie");
 const HTTP_HEADER_VARY = Buffer.from("Vary");
-const HTTP_HEADER_TRANSFER_ENCODING = Buffer.from("Transfer-Encoding");
-const CHUNKED = Buffer.from("chunked");
 const WILDCARD = Buffer.from("*");
 const ORIGIN = Buffer.from("Origin");
 const X_KUZZLE_REQUEST_ID = Buffer.from("X-Kuzzle-Request-Id");
@@ -782,15 +779,6 @@ class HttpWsProtocol extends Protocol {
     // Send Headers in one go
     response.cork(() => {
       this.httpWriteRequestHeaders(request, response, message);
-      if (streamSizeFixed) {
-        response.writeHeader(
-          HTTP_HEADER_CONTENT_LENGTH,
-          Buffer.from(httpStream.totalBytes.toString())
-        );
-      } else {
-        response.writeHeader(HTTP_HEADER_TRANSFER_ENCODING, CHUNKED);
-      }
     });
     httpStream.stream.on("data", (chunk) => {

package/lib/core/plugin/pluginRepository.js CHANGED Viewed

@@ -24,7 +24,7 @@
 const { merge } = require("lodash");
 const { NotFoundError } = require("../../kerror/errors");
-const Repository = require("../shared/repository");
+const { Repository } = require("../shared/repository");
 const cacheDbEnum = require("../cache/cacheDbEnum");
 class PluginRepository extends Repository {

package/lib/core/plugin/pluginsManager.js CHANGED Viewed

@@ -30,7 +30,7 @@ const _ = require("lodash");
 const kerror = require("../../kerror");
 const didYouMean = require("../../util/didYouMean");
-const { Inflector } = require("../../util/inflector");
+const { Inflector } = require("../../util/Inflector");
 const debug = require("../../util/debug")("kuzzle:plugins");
 const { KuzzleError } = require("../../kerror/errors");
 const { has, get, isPlainObject } = require("../../util/safeObject");

package/lib/core/security/index.js CHANGED Viewed

@@ -23,7 +23,7 @@
 const RoleRepository = require("./roleRepository");
 const { ProfileRepository } = require("./profileRepository");
-const TokenRepository = require("./tokenRepository");
+const { TokenRepository } = require("./tokenRepository");
 const UserRepository = require("./userRepository");
 const SecurityLoader = require("./securityLoader");

package/lib/core/security/profileRepository.d.ts CHANGED Viewed

@@ -1,6 +1,6 @@
 /// <reference types="lodash" />
 import { Profile } from "../../model/security/profile";
-import Repository from "../shared/repository";
+import { Repository } from "../shared/repository";
 import { JSONObject } from "kuzzle-sdk";
 /** @internal */
 type CreateOrReplaceOptions = {
@@ -27,7 +27,7 @@ type UpdateOptions = {
  * @class ProfileRepository
  * @extends Repository
  */
-export declare class ProfileRepository extends Repository {
+export declare class ProfileRepository extends Repository<Profile> {
     private module;
     private profiles;
     /**
@@ -170,7 +170,17 @@ export declare class ProfileRepository extends Repository {
     private optimizePolicy;
     toDTO(dto: Profile): Promise<JSONObject>;
     deleteFromDatabase(id: string, options: JSONObject): Promise<any>;
-    search(searchBody: JSONObject, options: JSONObject): Promise<any>;
-    scroll(id: string, ttl: number): Promise<any>;
+    search(searchBody: JSONObject, options: JSONObject): Promise<{
+        aggregations: any;
+        hits: any[];
+        scrollId: any;
+        total: any;
+    }>;
+    scroll(id: string, ttl: number): Promise<{
+        aggregations: any;
+        hits: any[];
+        scrollId: any;
+        total: any;
+    }>;
 }
 export {};

package/lib/core/security/profileRepository.js CHANGED Viewed

@@ -50,14 +50,14 @@ exports.ProfileRepository = void 0;
 const lodash_1 = require("lodash");
 const bluebird_1 = __importDefault(require("bluebird"));
 const profile_1 = require("../../model/security/profile");
-const repository_1 = __importDefault(require("../shared/repository"));
+const repository_1 = require("../shared/repository");
 const kerror = __importStar(require("../../kerror"));
 const cacheDbEnum_1 = __importDefault(require("../cache/cacheDbEnum"));
 /**
  * @class ProfileRepository
  * @extends Repository
  */
-class ProfileRepository extends repository_1.default {
+class ProfileRepository extends repository_1.Repository {
     /**
      * @constructor
      */

package/lib/core/security/roleRepository.js CHANGED Viewed

@@ -25,7 +25,7 @@ const Bluebird = require("bluebird");
 const kuzzleStateEnum = require("../../kuzzle/kuzzleStateEnum");
 const { Role } = require("../../model/security/role");
-const Repository = require("../shared/repository");
+const { Repository } = require("../shared/repository");
 const kerror = require("../../kerror");
 const didYouMean = require("../../util/didYouMean");
 const cacheDbEnum = require("../cache/cacheDbEnum");

package/lib/core/security/tokenRepository.d.ts ADDED Viewed

@@ -0,0 +1,73 @@
+import { JSONObject } from "kuzzle-sdk";
+import { Token } from "../../model/security/token";
+import { Repository } from "../shared/repository";
+import { User } from "../../model/security/user";
+export declare class TokenRepository extends Repository<Token> {
+    private tokenGracePeriod;
+    private anonymousToken;
+    constructor(opts?: JSONObject);
+    init(): Promise<void>;
+    /**
+     * Expires the given token immediately
+     */
+    expire(token: Token): Promise<void>;
+    /**
+     * We allow a grace period before expiring the token to allow
+     * queued requests to execute, but we mark the token as "refreshed" to forbid
+     * any refreshes on that token, to prevent token bombing
+     *
+     * @param user
+     * @param requestToken
+     * @param expiresIn - new token expiration delay
+     */
+    refresh(user: User, token: Token, expiresIn: string): Promise<Token>;
+    /**
+     * @param user
+     * @param options - { algorithm, expiresIn, bypassMaxTTL (false), type (authToken) }
+     *
+     * @returns {Promise.<Object>} { _id, jwt, userId, ttl, expiresAt }
+     */
+    generateToken(user: User, { algorithm, expiresIn, bypassMaxTTL, type, singleUse, }?: {
+        algorithm?: string;
+        expiresIn?: string;
+        bypassMaxTTL?: boolean;
+        type?: string;
+        singleUse?: boolean;
+    }): Promise<Token>;
+    /**
+     * Persists a token in the cache
+     *
+     * @param encodedToken - Encoded token
+     * @param userId - User ID
+     * @param ttl - TTL in ms (-1 for infinite duration)
+     */
+    persistForUser(encodedToken: string, userId: string, { ttl, singleUse, }: {
+        ttl: number;
+        singleUse: boolean;
+    }): Promise<Token>;
+    verifyToken(token: string): Promise<Token>;
+    removeTokenPrefix(token: string): string;
+    loadForUser(userId: string, encodedToken: string): Promise<Token>;
+    hydrate(userToken: any, data: any): Promise<any>;
+    serializeToDatabase(token: any): any;
+    /**
+     * Deletes tokens affiliated to the provided user identifier
+     */
+    deleteByKuid(kuid: string, { keepApiKeys }?: {
+        keepApiKeys?: boolean;
+    }): Promise<void>;
+    /**
+     * Loads authentication token from API key into Redis
+     */
+    private loadApiKeys;
+    /**
+     * The repository main class refreshes automatically the TTL
+     * of accessed entries, letting only unaccessed entries expire
+     *
+     * But tokens' TTL must remain the same than their expiration time,
+     * refreshing a token entry has no meaning.
+     *
+     * So we need to override the TTL auto-refresh function to disable it
+     */
+    refreshCacheTTL(): void;
+}