kuzzle 2.36.0 → 2.37.0

package/bin/start-kuzzle-server

@@ -21,46 +21,49 @@
  * limitations under the License.
  */
 
-'use strict';
+"use strict";
 
 /* eslint-disable no-console */
 
-const fs = require('fs');
+const fs = require("fs");
 
-const yargs = require('yargs');
+const yargs = require("yargs");
 
-const { Backend } = require('../index');
+const { Backend } = require("../index");
 
-function loadJson (path) {
-  if (! path) {
+function loadJson(path) {
+  if (!path) {
     return {};
   }
 
-  return JSON.parse(fs.readFileSync(path, 'utf8'));
+  return JSON.parse(fs.readFileSync(path, "utf8"));
 }
 
-async function startKuzzle (options = {}) {
-  const app = new Backend('kuzzle');
+async function startKuzzle(options = {}) {
+  const app = new Backend("kuzzle");
 
   if (options.enablePlugins) {
     const additionalPlugins = options.enablePlugins
       .trim()
-      .split(',')
-      .map(x => x.trim().replace(/(^")|("$)/g, ''));
+      .split(",")
+      .map((x) => x.trim().replace(/(^")|("$)/g, ""));
 
     for (const additionalPlugin of additionalPlugins) {
       const PluginClass = require(`../plugins/available/${additionalPlugin}`);
-      const manifest = require(`../plugins/available/${additionalPlugin}/manifest.json`);
+      const manifest = require(
+        `../plugins/available/${additionalPlugin}/manifest.json`,
+      );
       const plugin = new PluginClass();
 
       try {
-        plugin.version = require(`../plugins/available/${additionalPlugin}/package.json`).version;
-      }
-      catch (e) {
+        plugin.version = require(
+          `../plugins/available/${additionalPlugin}/package.json`,
+        ).version;
+      } catch (e) {
         // ignore
       }
 
-      app.plugin.use(plugin, { name: manifest.name, manifest });
+      app.plugin.use(plugin, { manifest, name: manifest.name });
     }
   }
 
@@ -74,36 +77,43 @@ async function startKuzzle (options = {}) {
 
   app.vault.file = options.secretsFile;
 
-  app.version = '1.0.0';
+  app.version = "1.0.0";
 
   await app.start();
 
   const { total: admins } = await app.sdk.security.searchUsers({
-    query: { term: { profileIds: 'admin' } }
+    query: { term: { profileIds: "admin" } },
   });
 
   if (admins.length === 0) {
-    console.log('[!] [WARNING] There is no administrator user yet: everyone has administrator rights.');
-    console.log('[ℹ]  You can use the CLI or the admin console to create the first administrator user.');
-    console.log('    For more information: https://docs.kuzzle.io/core/2/guides/essentials/security/');
+    console.log(
+      "[!] [WARNING] There is no administrator user yet: everyone has administrator rights.",
+    );
+    console.log(
+      "[ℹ]  You can use the CLI or the admin console to create the first administrator user.",
+    );
+    console.log(
+      "    For more information: https://docs.kuzzle.io/core/2/guides/essentials/security/",
+    );
   }
 }
 
 const options = yargs
-  .usage('start-kuzzle-server [options]')
-  .describe('fixtures', 'Import data from file')
-  .describe('mappings', 'Apply mappings from file')
-  .describe('securities', 'Import roles, profiles and users from file')
-  .describe('vault-key', 'Vault key used to decrypt secrets')
-  .describe('secrets-file', 'Output file to write decrypted secrets')
-  .describe('enable-plugins', 'Enable plugins from "plugins/available" directory')
-  .argv;
+  .usage("start-kuzzle-server [options]")
+  .describe("fixtures", "Import data from file")
+  .describe("mappings", "Apply mappings from file")
+  .describe("securities", "Import roles, profiles and users from file")
+  .describe("vault-key", "Vault key used to decrypt secrets")
+  .describe("secrets-file", "Output file to write decrypted secrets")
+  .describe(
+    "enable-plugins",
+    'Enable plugins from "plugins/available" directory',
+  ).argv;
 
 const run = async () => {
   try {
     await startKuzzle(options);
-  }
-  catch (error) {
+  } catch (error) {
     console.error(`[x] [ERROR] ${error.stack}`);
     process.exit(1);
   }

package/check-node-version.js

@@ -0,0 +1,17 @@
+/* eslint-disable no-console */
+
+"use strict";
+
+const semver = require("semver");
+const { engines } = require("./package.json");
+
+const version = engines.node;
+const nodeVersion = process.version;
+
+if (!semver.satisfies(nodeVersion, version)) {
+  console.error(
+    "\x1b[31m%s\x1b[0m",
+    `Required node version ${version} not satisfied with current version ${nodeVersion}`,
+  );
+  process.exit(1);
+}

package/lib/api/controllers/authController.js

@@ -48,7 +48,7 @@ exports.AuthController = void 0;
  * limitations under the License.
  */
 const http_1 = require("http");
-const cookie_1 = __importDefault(require("cookie"));
+const Cookie = __importStar(require("cookie"));
 const bluebird_1 = __importDefault(require("bluebird"));
 const lodash_1 = require("lodash");
 const errors_1 = require("../../kerror/errors");
@@ -212,7 +212,7 @@ class AuthController extends baseController_1.NativeController {
             request.getBoolean("cookieAuth")) {
             request.response.configure({
                 headers: {
-                    "Set-Cookie": cookie_1.default.serialize("authToken", null, {
+                    "Set-Cookie": Cookie.serialize("authToken", null, {
                         httpOnly: true,
                         path: "/",
                         sameSite: "strict",
@@ -235,7 +235,7 @@ class AuthController extends baseController_1.NativeController {
             // or that the version of kuzzle doesn't support the feature Browser Cookie as Authentication Token
             request.response.configure({
                 headers: {
-                    "Set-Cookie": cookie_1.default.serialize("authToken", token.jwt, {
+                    "Set-Cookie": Cookie.serialize("authToken", token.jwt, {
                         expires: new Date(token.expiresAt),
                         httpOnly: true,
                         path: "/",

package/lib/core/network/protocols/mqttProtocol.js

@@ -40,7 +40,7 @@ class MqttProtocol extends Protocol {
     super("mqtt");
 
     // eslint-disable-next-line new-cap
-    this.aedes = new Aedes.Server();
+    this.aedes = new Aedes();
     this.server = net.createServer(this.aedes.handle);
 
     this.connections = new Map();

package/lib/core/security/profileRepository.d.ts

@@ -1,4 +1,3 @@
-/// <reference types="lodash" />
 import { JSONObject } from "kuzzle-sdk";
 import { Profile } from "../../model/security/profile";
 import { ObjectRepository } from "../shared/ObjectRepository";

package/lib/core/security/tokenRepository.js

@@ -54,12 +54,9 @@ const kerror = __importStar(require("../../kerror"));
 const errors_1 = require("../../kerror/errors");
 const token_1 = require("../../model/security/token");
 const apiKey_1 = __importDefault(require("../../model/storage/apiKey"));
-const debug_1 = __importDefault(require("../../util/debug"));
 const ObjectRepository_1 = require("../shared/ObjectRepository");
 const crypto_1 = require("../../util/crypto");
 const securityError = kerror.wrap("security", "token");
-const debug = (0, debug_1.default)("kuzzle:bootstrap:tokens");
-const BOOTSTRAP_DONE_KEY = "token/bootstrap";
 class TokenRepository extends ObjectRepository_1.ObjectRepository {
     constructor(opts = {}) {
         super();
@@ -186,8 +183,8 @@ class TokenRepository extends ObjectRepository_1.ObjectRepository {
         const parsedExpiresIn = parseTimespan(expiresIn);
         const maxTTL = type === "apiKey"
             ? global.kuzzle.config.security.apiKey.maxTTL
-            : global.kuzzle.config.security.authToken.maxTTL ??
-                global.kuzzle.config.security.jwt.maxTTL;
+            : (global.kuzzle.config.security.authToken.maxTTL ??
+                global.kuzzle.config.security.jwt.maxTTL);
         if (!bypassMaxTTL &&
             maxTTL > -1 &&
             (parsedExpiresIn > maxTTL || parsedExpiresIn === -1)) {

package/lib/kuzzle/kuzzle.js

@@ -53,7 +53,6 @@ const json_stable_stringify_1 = __importDefault(require("json-stable-stringify")
 const koncorde_1 = require("koncorde");
 const lodash_1 = __importDefault(require("lodash"));
 const murmurhash_1 = __importDefault(require("murmurhash"));
-const node_segfault_handler_1 = __importDefault(require("node-segfault-handler"));
 const package_json_1 = require("../../package.json");
 const funnel_1 = __importDefault(require("../api/funnel"));
 const openapi_1 = require("../api/openapi");
@@ -566,7 +565,6 @@ class Kuzzle extends KuzzleEventEmitter_1.default {
                 this.shutdown();
             });
         }
-        node_segfault_handler_1.default.registerHandler();
     }
     async dumpAndExit(suffix) {
         if (this.config.dump.enabled) {

package/lib/types/config/SecurityConfiguration.d.ts

@@ -1,4 +1,5 @@
 /// <reference types="node" />
+/// <reference types="node" />
 import { JSONObject } from "../../../index";
 import { RoleDefinition, ProfileDefinition } from "../index";
 export type SecurityConfiguration = {

package/lib/types/events/EventProtocol.d.ts

@@ -1,4 +1,5 @@
 /// <reference types="node" />
+/// <reference types="node" />
 import { JSONObject, PipeEventHandler } from "../../../";
 import { ClientConnection } from "../ClientConnection";
 import { HttpMessage } from "../HttpMessage";

package/lib/util/bufferedPassThrough.d.ts

@@ -1,5 +1,6 @@
 /// <reference types="node" />
 /// <reference types="node" />
+/// <reference types="node" />
 import stream from "stream";
 type Encoding = BufferEncoding | "buffer";
 type ChunkData = Buffer | string;

package/package.json

@@ -1,10 +1,11 @@
 {
   "name": "kuzzle",
   "author": "The Kuzzle Team <support@kuzzle.io>",
-  "version": "2.36.0",
+  "version": "2.37.0",
   "description": "Kuzzle is an open-source solution that handles all the data management through a secured API, with a large choice of protocols.",
   "bin": "bin/start-kuzzle-server",
   "scripts": {
+    "preinstall": "node ./check-node-version.js",
     "build": "tsc",
     "clean": "touch index.ts && npm run build | grep TSFILE | cut -d' ' -f 2 | xargs rm",
     "cucumber": "cucumber.js --fail-fast",
@@ -21,113 +22,115 @@
     "test:functional:websocket": "KUZZLE_PROTOCOL=websocket cucumber-js --profile websocket",
     "test:functional": "npm run test:functional:http && npm run test:functional:websocket && npm run test:functional:jest",
     "test:lint": "eslint ./lib ./test ./bin ./features ./plugins/available/functional-test-plugin",
-    "test:unit": "DEBUG= npx --node-arg=--trace-warnings mocha --exit",
+    "test:unit": "npx mocha --exit",
     "test": "npm run clean && npm run --silent test:lint && npm run build && npm run test:unit:coverage && npm run test:functional"
   },
   "directories": {
     "lib": "lib"
   },
   "dependencies": {
-    "aedes": "0.46.3",
+    "aedes": "0.51.3",
     "bluebird": "3.7.2",
-    "cli-color": "2.0.3",
-    "cookie": "0.6.0",
-    "debug": "4.3.4",
+    "cli-color": "2.0.4",
+    "cookie": "1.0.2",
+    "debug": "4.4.0",
     "denque": "2.1.0",
     "didyoumean": "1.2.2",
     "dumpme": "1.0.3",
     "eventemitter3": "5.0.1",
-    "inquirer": "9.2.12",
-    "ioredis": "5.3.2",
+    "inquirer": "12.3.0",
+    "ioredis": "5.4.2",
     "js-yaml": "4.1.0",
-    "json-stable-stringify": "1.1.0",
+    "json-stable-stringify": "1.2.1",
     "json2yaml": "1.1.0",
     "jsonwebtoken": "9.0.2",
-    "koncorde": "4.3.0",
+    "koncorde": "4.4.0",
     "kuzzle-plugin-auth-passport-local": "6.4.1",
     "kuzzle-plugin-logger": "3.0.3",
-    "kuzzle-sdk": "^7.13.0",
-    "kuzzle-vault": "2.0.4",
+    "kuzzle-sdk": "^7.14.0",
+    "kuzzle-vault": "2.1.0",
     "lodash": "4.17.21",
     "long": "5.2.3",
-    "moment": "2.29.4",
+    "moment": "2.30.1",
     "ms": "2.1.3",
-    "murmurhash": "^2.0.1",
+    "murmurhash": "2.0.1",
     "ndjson": "2.0.0",
-    "node-segfault-handler": "1.4.2",
     "passport": "0.7.0",
-    "protobufjs": "7.2.5",
+    "protobufjs": "7.4.0",
     "rc": "1.2.8",
     "sdk-es7": "npm:@elastic/elasticsearch@7.13.0",
-    "sdk-es8": "npm:@elastic/elasticsearch@8.12.1",
-    "semver": "7.6.0",
+    "sdk-es8": "npm:@elastic/elasticsearch@8.17.0",
+    "semver": "7.6.3",
     "sorted-array": "2.0.4",
-    "uuid": "9.0.1",
-    "uWebSockets.js": "https://github.com/uNetworking/uWebSockets.js/archive/refs/tags/v20.34.0.tar.gz",
-    "validator": "13.11.0",
-    "winston": "3.11.0",
-    "winston-elasticsearch": "0.17.4",
-    "winston-syslog": "2.7.0",
-    "winston-transport": "4.6.0",
+    "uuid": "11.0.4",
+    "uWebSockets.js": "https://github.com/uNetworking/uWebSockets.js/archive/refs/tags/v20.51.0.tar.gz",
+    "validator": "13.12.0",
+    "winston": "3.17.0",
+    "winston-elasticsearch": "0.19.0",
+    "winston-syslog": "2.7.1",
+    "winston-transport": "4.9.0",
     "yargs": "17.7.2",
-    "zeromq": "6.0.0-beta.6"
+    "zeromq": "6.3.0"
   },
   "repository": {
     "type": "git",
     "url": "git://github.com/kuzzleio/kuzzle.git"
   },
   "devDependencies": {
-    "@commitlint/cli": "^17.6.7",
-    "@commitlint/config-conventional": "^17.6.7",
+    "@commitlint/cli": "19.6.1",
+    "@commitlint/config-conventional": "19.6.0",
     "@jest/globals": "29.7.0",
-    "@semantic-release/changelog": "^6.0.3",
-    "@semantic-release/commit-analyzer": "^10.0.1",
-    "@semantic-release/git": "^10.0.1",
-    "@semantic-release/release-notes-generator": "^11.0.4",
-    "@types/bluebird": "^3.5.42",
-    "@types/cookie": "^0.6.0",
-    "@types/jest": "29.5.10",
+    "@semantic-release/changelog": "6.0.3",
+    "@semantic-release/commit-analyzer": "13.0.1",
+    "@semantic-release/git": "10.0.1",
+    "@semantic-release/release-notes-generator": "14.0.3",
+    "@types/bluebird": "3.5.42",
+    "@types/cookie": "1.0.0",
+    "@types/jest": "29.5.14",
     "@types/js-yaml": "4.0.9",
-    "@types/lodash": "4.14.202",
-    "async": "3.2.5",
-    "chokidar": "3.5.3",
-    "cucumber": "6.0.5",
-    "cz-conventional-changelog": "^3.3.0",
+    "@types/lodash": "4.17.14",
+    "@types/mocha": "^10.0.10",
+    "async": "3.2.6",
+    "chokidar": "4.0.3",
+    "cucumber": "6.0.7",
+    "cz-conventional-changelog": "3.3.0",
     "ergol": "1.0.2",
-    "eslint-plugin-kuzzle": "0.0.12",
+    "eslint-plugin-kuzzle": "0.0.13",
     "jest": "29.7.0",
-    "mocha": "10.2.0",
+    "mocha": "11.0.1",
     "mock-require": "3.0.3",
-    "mqtt": "5.3.0",
-    "nyc": "15.1.0",
+    "mqtt": "5.10.3",
+    "nyc": "17.1.0",
     "request": "2.88.2",
     "request-promise": "4.2.6",
     "rewire": "5.0.0",
-    "semantic-release-config-kuzzle": "^1.0.0",
-    "semantic-release-slack-bot": "^4.0.2",
+    "semantic-release-config-kuzzle": "1.0.0",
+    "semantic-release-slack-bot": "4.0.2",
     "should": "13.2.3",
     "should-sinon": "0.0.6",
-    "sinon": "14.0.2",
+    "sinon": "19.0.2",
     "strip-json-comments": "https://github.com/sindresorhus/strip-json-comments/archive/refs/tags/v3.1.1.tar.gz",
-    "ts-jest": "29.1.1",
-    "ts-node": "10.9.1",
+    "ts-jest": "29.2.5",
+    "ts-node": "10.9.2",
     "typescript": "5.3.2",
-    "yaml": "2.3.4"
+    "yaml": "2.7.0"
   },
   "engines": {
-    "node": ">= 12.13.0"
+    "node": ">=18.0.0 <23.0.0"
   },
+  "engineStrict": true,
   "license": "Apache-2.0",
   "files": [
-    "lib/**/*.js",
+    "check-node-version.js",
+    "index.d.ts",
+    "index.js",
     "lib/**/*.d.ts",
+    "lib/**/*.js",
     "lib/**/*.json",
     "lib/**/*.proto",
     "lib/**/*.yaml",
-    "package.json",
-    "index.js",
-    "index.d.ts",
     "LICENSE.md",
+    "package.json",
     "README.md"
   ]
 }