meadow-endpoints 2.0.16 → 2.0.18

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "meadow-endpoints",
-  "version": "2.0.16",
+  "version": "2.0.18",
   "description": "Automatic API endpoints for Meadow data.",
   "main": "source/Meadow-Endpoints.js",
   "scripts": {

package/source/Meadow-Authorizers.js

@@ -44,6 +44,14 @@ var MeadowAuthorizers = function()
 			_AuthorizerFunctions[pAuthorizerHash] = fAuthorizer;
 		};
 
+		/**
+		* Get a specific authorizer.
+		*/
+		var getAuthorizer = function(pAuthorizerHash)
+		{
+			return _AuthorizerFunctions[pAuthorizerHash];
+		};
+
 
 		// Map in the default authorizers
 		setAuthorizer('Allow', require(__dirname+'/authorizers/Meadow-Authorizer-Allow.js'));
@@ -175,6 +183,7 @@ var MeadowAuthorizers = function()
 		var tmpNewMeadowAuthorizer = (
 		{
 			setAuthorizer: setAuthorizer,
+			getAuthorizer: getAuthorizer,
 			authorize: authorize,
 			authorizeRequest: authorizeRequest,
 

package/source/Meadow-Endpoints.js

@@ -418,6 +418,17 @@ var MeadowEndpoints = function()
 			return fCallback();
 		};
 
+		var _InvokeSetupCallback;
+		var getInvokeSetupCallback = function()
+		{
+			return _InvokeSetupCallback;
+		};
+
+		var setInvokeSetupCallback = function(fCallback)
+		{
+			_InvokeSetupCallback = fCallback;
+		};
+
 		/**
 		* Invoke a meadow endpoint programmatically
 		*
@@ -470,6 +481,10 @@ var MeadowEndpoints = function()
 					//internal invoke mark as authenticated (because this is not called via webservice)
 					pRequest.EndpointAuthenticated = true;
 
+					if (_InvokeSetupCallback && typeof(_InvokeSetupCallback) == 'function')
+					{
+						_InvokeSetupCallback(pRequest, pResponse, typeof(pOptions) === 'object' && pOptions);
+					}
 					return fStageComplete();
 				},
 				function(fStageComplete)
@@ -514,6 +529,8 @@ var MeadowEndpoints = function()
 			// Expose the DAL
 			DAL: _Meadow,
 
+			getInvokeSetupCallback: getInvokeSetupCallback,
+			setInvokeSetupCallback: setInvokeSetupCallback,
 			invokeEndpoint: invokeEndpoint,
 
 			// Factory
@@ -544,6 +561,18 @@ var MeadowEndpoints = function()
 				enumerable: true
 			});
 
+		/**
+		 * EndpointAuthenticators
+		 *
+		 * @property endpointAuthorizers
+		 * @type object
+		 */
+		Object.defineProperty(tmpNewMeadowEndpointObject, 'endpointAuthorizers',
+			{
+				get: function() { return _Authorizers; },
+				enumerable: true
+			});
+
 		/**
 		 * EndpointAuthenticators
 		 *

package/test/MeadowEndpoints_basic_tests.js

@@ -465,6 +465,28 @@ suite
 					}
 				);
 				test
+				(
+					'read: define a custom authorization behavior',
+					function(fDone)
+					{
+						const defaultAuthorizer = _MeadowEndpoints.endpointAuthorizers.getAuthorizer('Allow');
+						_MeadowEndpoints.endpointAuthorizers.setAuthorizer('Allow', function(req, next) { req.MeadowAuthorization = false; return next(); });
+						_Orator.webServer.get('/CustomHotRodRoute/:IDRecord', _MeadowEndpoints.endpointAuthenticators.Read, _MeadowEndpoints.wireState, _MeadowEndpoints.endpoints.Read);
+						libSuperTest('http://localhost:9080/')
+						.get('CustomHotRodRoute/2')
+						.end(
+							function (pError, pResponse)
+							{
+								_MeadowEndpoints.endpointAuthorizers.setAuthorizer('Allow', defaultAuthorizer);
+								//TODO: it's weird that we don't get an error here for access denied...
+								var tmpResult = JSON.parse(pResponse.text);
+								Expect(tmpResult.Error).to.equal('UNAUTHORIZED ACCESS IS NOT ALLOWED');
+								fDone();
+							}
+						);
+					}
+				);
+				test
 				(
 					'read: define a custom route and get a record with it',
 					function(fDone)
@@ -504,6 +526,32 @@ suite
 					}
 				);
 				test
+				(
+					'read: get a specific record which resolved to Deny authorization, but with a Deny authorizer that just allows',
+					function(fDone)
+					{
+						_Meadow.schemaFull.authorizer.Manager = {};
+						_Meadow.schemaFull.authorizer.Manager.Read = 'Deny';
+						const defaultAuthorizer = _MeadowEndpoints.endpointAuthorizers.getAuthorizer('Deny');
+						_MeadowEndpoints.endpointAuthorizers.setAuthorizer('Deny', function(req, next) { req.MeadowAuthorization = true; return next(); });
+
+						libSuperTest('http://localhost:9080/')
+						.get('1.0/FableTest/2')
+						.end(
+							function (pError, pResponse)
+							{
+								// Reset authorization
+								_Meadow.schemaFull.authorizer.Manager.Read = 'Allow';
+								_MeadowEndpoints.endpointAuthorizers.setAuthorizer('Deny', defaultAuthorizer);
+
+								const responseBody = JSON.parse(pResponse.text);
+								Expect(responseBody.IDAnimal).to.equal(2);
+								fDone();
+							}
+						);
+					}
+				);
+				test
 				(
 					'read: get a specific record with a bad parameter',
 					function(fDone)
@@ -1490,6 +1538,35 @@ suite
 			{
 				var tmpCreatedRecordGUID;
 
+				test
+				(
+					'invoke: setup method is called',
+					function(fDone)
+					{
+						_MockSessionValidUser.UserRoleIndex = 2;
+						let setupCallCount = 0;
+						let passedRequest, passedResponse, passedOriginalRequest;
+						_MeadowEndpoints.setInvokeSetupCallback((req, res, origReq) =>
+						{
+							++setupCallCount;
+							passedRequest = req;
+							passedResponse = res;
+							passedOriginalRequest = origReq;
+						});
+						const originalRequest = {UserSession: _MockSessionValidUser};
+						_MeadowEndpoints.invokeEndpoint('Read', {IDRecord: 2}, originalRequest,
+							function(pError, pResponse)
+							{
+								Expect(setupCallCount).to.equal(1);
+								Expect(passedOriginalRequest).to.equal(originalRequest);
+								Expect(passedRequest).to.be.an('object');
+								Expect(passedResponse).to.be.an('object');
+
+								fDone();
+							}
+						);
+					}
+				);
 				test
 				(
 					'invoke create: create a record',