npm - mbkauthe - Versions diffs - 1.0.25 → 1.1.0 - Mend

mbkauthe 1.0.25 → 1.1.0

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (5) hide show

package/README.md CHANGED Viewed

@@ -32,12 +32,18 @@
 ## Features
-- **Session Management**: Secure session handling using `express-session` and `connect-pg-simple`.
-- **Role-Based Access Control**: Validate user roles and permissions with ease.
-- **Two-Factor Authentication (2FA)**: Optional 2FA support for enhanced security.
-- **reCAPTCHA Integration**: Protect login endpoints with Google reCAPTCHA.
-- **Cookie Management**: Configurable cookie expiration and domain settings.
-- **PostgreSQL Integration**: Uses a connection pool for efficient database interactions.
+- **Session Management:** Simplifies session handling with secure session restoration and expiration mechanisms.
+- **User Authentication:** Provides robust authentication, including support for username/password and Two-Factor Authentication (2FA).
+- **Role-Based Access Control (RBAC):** Enables fine-grained access control by validating user roles and permissions.
+- **Integration with PostgreSQL:** Seamlessly integrates with PostgreSQL for user and session data storage.
+- **reCAPTCHA Verification:** Adds an extra layer of security with reCAPTCHA support to prevent automated attacks.
+- **Middleware Functions:** Includes reusable middleware for session validation, role checking, and user authentication.
+- **API Endpoints:** Offers a set of RESTful APIs for login, logout, session termination, and package information retrieval.
+- **Environment Configuration:** Supports flexible configuration through .env files for deployment-specific settings.
+- **Demo Account:** Provides a demo account for hands-on exploration of the authentication system.
+- **Database Schema:** Predefined database structure for user, session, and 2FA data management.
+- **Extensibility:** Designed to be easily integrated into existing Node.js applications.
+- **Secure Cookies:** Ensures secure session handling with cookie expiration and domain-specific settings
 ## Installation
@@ -87,7 +93,7 @@ mbkautheVar='{
     "IS_DEPLOYED": "true",
     "LOGIN_DB": "postgres://username:password@host:port/database",
     "MBKAUTH_TWO_FA_ENABLE": "false",
-    "COOKIE_EXPIRE_TIME": "1",
+    "COOKIE_EXPIRE_TIME": 2,
     "DOMAIN": "yourdomain.com"
 }'
 ```

package/docs/db.md CHANGED Viewed

@@ -34,7 +34,6 @@
       "Active" BOOLEAN NOT NULL DEFAULT true,
       "HaveMailAccount" BOOLEAN NOT NULL DEFAULT false,
       "SessionId" TEXT,
-      "GuestRole" JSONB DEFAULT '{"allowPages": [""], "NotallowPages": [""]}'::jsonb
       "AllowedApps" JSONB DEFAULT '["mbkauthe"]'::jsonb
   );
   ```

package/lib/info.js ADDED Viewed

@@ -0,0 +1,185 @@
+import express from "express";
+import fetch from 'node-fetch';
+import { createRequire } from "module";
+const require = createRequire(import.meta.url);
+const packageJson = require("../package.json");
+import fs from "fs";
+import path from "path";
+import dotenv from "dotenv";
+dotenv.config();
+const mbkautheVar = JSON.parse(process.env.mbkautheVar);
+const router = express.Router();
+// Return package.json data of mbkauthe
+router.get("/mbkauthe/package", async (_, res) => {
+  try {
+    const response = await fetch("https://mbkauthe.mbktechstudio.com/mbkauthe/package");
+    const latestPackageData = await response.json();
+    res.status(200).send(`
+        <html>
+          <head>
+            <title>Package Information</title>
+          </head>
+          <body>
+            <h1>Package Information</h1>
+            <p><strong>Current Version:</strong> ${JSON.stringify(packageJson, null, 2)}</p>
+            <p><strong>Latest Version:</strong> ${JSON.stringify(latestPackageData, null, 2)}</p>
+          </body>
+        </html>
+      `);
+  } catch (err) {
+    res.status(200).send(`
+        <html>
+          <head>
+            <title>Package Information</title>
+          </head>
+          <body>
+            <h1>Package Information</h1>
+            <p><strong>Current Version:</strong>  ${JSON.stringify(packageJson, null, 2)}</p>
+            <p><strong>Latest Version:</strong> Failed to fetch latest package data, Erro:${err.message}</p>
+          </body>
+        </html>
+      `);
+  }
+});
+// Return version number of mbkauthe
+router.get(["/mbkauthe/version", "/mbkauthe/v"], async (_, res) => {
+  try {
+    const response = await fetch("https://raw.githubusercontent.com/MIbnEKhalid/mbkauthe/refs/heads/main/package.json");
+    const latestPackageData = await response.json();
+    res.status(200).send(`
+        <html>
+          <head>
+            <title>Version Information</title>
+          </head>
+          <body>
+            <h1>Package Information</h1>
+            <p><strong>Current Version:</strong> ${JSON.stringify(packageJson.version, null, 2)}</p>
+            <p><strong>Latest Version:</strong> ${JSON.stringify(latestPackageData.version, null, 2)}</p>
+          </body>
+        </html>
+      `);
+  } catch (err) {
+    res.status(200).send(`
+        <html>
+          <head>
+            <title>Package Information</title>
+          </head>
+          <body>
+            <h1>Package Information</h1>
+            <p><strong>Current Version:</strong>  ${JSON.stringify(packageJson.version, null, 2)}</p>
+            <p><strong>Latest Version:</strong> Failed to fetch latest package data, Erro:${err.message}</p>
+          </body>
+        </html>
+      `);
+  }
+});
+// Return package-lock.json data of mbkauthe from project the package is installed in
+router.get("/mbkauthe/package-lock", (_, res) => {
+  console.log("Request for package-lock.json received");
+  const packageLockPath = path.resolve(process.cwd(), "package-lock.json");
+  fs.readFile(packageLockPath, "utf8", (err, data) => {
+    if (err) {
+      console.error("Error reading package-lock.json:", err);
+      return res.status(500).json({ success: false, message: "Failed to read package-lock.json" });
+    }
+    try {
+      const packageLock = JSON.parse(data);
+      const mbkautheData = {
+        name: 'mbkauthe',
+        version: packageLock.packages['node_modules/mbkauthe'].version,
+        resolved: packageLock.packages['node_modules/mbkauthe'].resolved,
+        integrity: packageLock.packages['node_modules/mbkauthe'].integrity,
+        license: packageLock.packages['node_modules/mbkauthe'].license,
+        dependencies: packageLock.packages['node_modules/mbkauthe'].dependencies
+      };
+      const rootDependency = packageLock.packages[''].dependencies.mbkauthe;
+      console.log('mbkauthe package data:', mbkautheData);
+      console.log('Root dependency version:', rootDependency);
+      res.status(200).json({ mbkautheData, rootDependency });
+    } catch (parseError) {
+      console.error("Error parsing package-lock.json:", parseError);
+      res.status(500).json({ success: false, message: "Failed to parse package-lock.json" });
+    }
+  });
+});
+// Return version number of mbkauthe
+router.get(["/mbkauthe", "/mbkauthe/info", "/mbkauthe/i"], async (_, res) => {
+  try {
+    res.status(200).send(`
+        <html>
+        <head>
+          <title>Version and Configuration Information</title>
+          <style>
+          body {
+            font-family: Arial, sans-serif;
+            line-height: 1.6;
+            margin: 20px;
+          }
+          h1 {
+            color: #333;
+          }
+          p {
+            margin: 5px 0;
+          }
+          a {
+            display: block;
+            margin: 10px 0;
+            color: #007BFF;
+            text-decoration: none;
+          }
+          a:hover {
+            text-decoration: underline;
+          }
+          .info-section {
+            margin-bottom: 20px;
+          }
+          </style>
+        </head>
+        <body>
+          <h1>Version and Configuration Information</h1>
+          <div class="info-section">
+          <h2>Current Version</h2>
+          <p><strong>Version:</strong> ${JSON.stringify(packageJson.version, null, 2)}</p>
+          </div>
+          <div class="info-section">
+          <h2>Configuration Information</h2>
+          <p><strong>APP_NAME:</strong> ${mbkautheVar.APP_NAME}</p>
+          <p><strong>RECAPTCHA_Enabled:</strong> ${mbkautheVar.RECAPTCHA_Enabled}</p>
+          <p><strong>MBKAUTH_TWO_FA_ENABLE:</strong> ${mbkautheVar.MBKAUTH_TWO_FA_ENABLE}</p>
+          <p><strong>COOKIE_EXPIRE_TIME:</strong> ${mbkautheVar.COOKIE_EXPIRE_TIME} Days</p>
+          <p><strong>IS_DEPLOYED:</strong> ${mbkautheVar.IS_DEPLOYED}</p>
+          <p><strong>DOMAIN:</strong> ${mbkautheVar.DOMAIN}</p>
+          </div>
+          <div class="info-section">
+          <h2>Useful Links</h2>
+          <a href="/mbkauthe/package">View mbkauthe package.json</a>
+          <a href="/mbkauthe/package-lock">View mbkauthe version info from installed project package-lock.json</a>
+          <a href="/mbkauthe/version">View Current and Latest Package Version</a>
+          </div>
+        </body>
+        </html>
+      `);
+  } catch (err) {
+    console.error("Error fetching version information:", err);
+    res.status(500).send(`
+        <html>
+          <head>
+            <title>Error</title>
+          </head>
+          <body>
+            <h1>Error</h1>
+            <p>Failed to fetch version information. Please try again later.</p>
+          </body>
+        </html>
+      `);
+  }
+});
+export default router;

package/lib/main.js CHANGED Viewed

@@ -1,4 +1,4 @@
-import express, { json } from "express";
+import express from "express";
 import crypto from "crypto";
 import session from "express-session";
 import pgSession from "connect-pg-simple";
@@ -9,12 +9,7 @@ import fetch from 'node-fetch';
 import cookieParser from "cookie-parser";
 import bcrypt from 'bcrypt';
 import rateLimit from 'express-rate-limit';
-import { createRequire } from "module";
-const require = createRequire(import.meta.url);
-const packageJson = require("../package.json");
-import fs from "fs";
-import path from "path";
+import mbkautheinfo from "./info.js";
 import dotenv from "dotenv";
 dotenv.config();
@@ -33,7 +28,7 @@ router.use((req, res, next) => {
   }
   next();
 });
+router.use(mbkautheinfo);
 router.use(express.json());
 router.use(express.urlencoded({ extended: true }));
 router.use(cookieParser());
@@ -48,36 +43,6 @@ const LoginLimit = rateLimit({
   }
 });
-router.use((req, res, next) => {
-  // Don't allow embedding in iframes
-  res.setHeader('X-Frame-Options', 'DENY');
-  // Prevent MIME type sniffing
-  res.setHeader('X-Content-Type-Options', 'nosniff');
-  // Enable XSS protection
-  res.setHeader('X-XSS-Protection', '1; mode=block');
-  // Referrer policy
-  res.setHeader('Referrer-Policy', 'strict-origin-when-cross-origin');
-  // Content Security Policy
-  const csp = [
-    "default-src 'self'",
-    "script-src 'self' 'unsafe-inline' https://www.google.com https://www.gstatic.com",
-    "style-src 'self' 'unsafe-inline'",
-    "img-src 'self' data:",
-    "connect-src 'self' https://www.google.com",
-    "frame-src https://www.google.com",
-    "form-action 'self'"
-  ].join('; ');
-  res.setHeader('Content-Security-Policy', csp);
-  next();
-});
 // Configure session with proper domain settings for cross-subdomain sharing
 const sessionConfig = {
   store: new PgSession({
@@ -353,100 +318,4 @@ router.post("/mbkauthe/api/logout", async (req, res) => {
   }
 });
-// Return package.json data of mbkauthe
-router.get("/mbkauthe/package", async (_, res) => {
-  try {
-    const response = await fetch("https://mbkauthe.mbktechstudio.com/mbkauthe/package");
-    const latestPackageData = await response.json();
-    res.status(200).send(`
-      <html>
-        <head>
-          <title>Package Information</title>
-        </head>
-        <body>
-          <h1>Package Information</h1>
-          <p><strong>Current Version:</strong> ${JSON.stringify(packageJson, null, 2)}</p>
-          <p><strong>Latest Version:</strong> ${JSON.stringify(latestPackageData, null, 2)}</p>
-        </body>
-      </html>
-    `);
-  } catch (err) {
-    res.status(200).send(`
-      <html>
-        <head>
-          <title>Package Information</title>
-        </head>
-        <body>
-          <h1>Package Information</h1>
-          <p><strong>Current Version:</strong>  ${JSON.stringify(packageJson, null, 2)}</p>
-          <p><strong>Latest Version:</strong> Failed to fetch latest package data, Erro:${err.message}</p>
-        </body>
-      </html>
-    `);
-  }
-});
-// Return version number of mbkauthe
-router.get(["/mbkauthe/version", "/mbkauthe/v"], async(_, res) => {
-  try {
-    const response = await fetch("https://mbkauthe.mbktechstudio.com/mbkauthe/version");
-    const latestPackageData = await response.json();
-    res.status(200).send(`
-      <html>
-        <head>
-          <title>Version Information</title>
-        </head>
-        <body>
-          <h1>Package Information</h1>
-          <p><strong>Current Version:</strong> ${JSON.stringify(packageJson.version, null, 2)}</p>
-          <p><strong>Latest Version:</strong> ${JSON.stringify(latestPackageData, null, 2)}</p>
-        </body>
-      </html>
-    `);
-  } catch (err) {
-    res.status(200).send(`
-      <html>
-        <head>
-          <title>Package Information</title>
-        </head>
-        <body>
-          <h1>Package Information</h1>
-          <p><strong>Current Version:</strong>  ${JSON.stringify(packageJson.version, null, 2)}</p>
-          <p><strong>Latest Version:</strong> Failed to fetch latest package data, Erro:${err.message}</p>
-        </body>
-      </html>
-    `);
-  }
-});
-// Return package-lock.json data of mbkauthe from project the package is installed in
-router.get("/mbkauthe/package-lock", (_, res) => {
-  console.log("Request for package-lock.json received");
-  const packageLockPath = path.resolve(process.cwd(), "package-lock.json");
-  fs.readFile(packageLockPath, "utf8", (err, data) => {
-    if (err) {
-      console.error("Error reading package-lock.json:", err);
-      return res.status(500).json({ success: false, message: "Failed to read package-lock.json" });
-    }
-    try {
-      const packageLock = JSON.parse(data);
-      const mbkautheData = {
-        name: 'mbkauthe',
-        version: packageLock.packages['node_modules/mbkauthe'].version,
-        resolved: packageLock.packages['node_modules/mbkauthe'].resolved,
-        integrity: packageLock.packages['node_modules/mbkauthe'].integrity,
-        license: packageLock.packages['node_modules/mbkauthe'].license,
-        dependencies: packageLock.packages['node_modules/mbkauthe'].dependencies
-      };
-      const rootDependency = packageLock.packages[''].dependencies.mbkauthe;
-      console.log('mbkauthe package data:', mbkautheData);
-      console.log('Root dependency version:', rootDependency);
-      res.status(200).json({ mbkautheData, rootDependency });
-    } catch (parseError) {
-      console.error("Error parsing package-lock.json:", parseError);
-      res.status(500).json({ success: false, message: "Failed to parse package-lock.json" });
-    }
-  });
-});
 export default router;

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "mbkauthe",
-  "version": "1.0.25",
+  "version": "1.1.0",
   "description": "MBKTechStudio's reusable authentication system for Node.js applications.",
   "main": "index.js",
   "type": "module",