mosquito-transport 1.6.2 → 1.6.3

package/README.md

@@ -888,10 +888,10 @@ export const install = {
 };
 ```
 
-<!-- ## Platform using MosquitoTransport in production
-- [Heavenya - christian events](https://heavenya.com)
-- [Inspire - christian audio](https://inspire.com)
-- [ExamJoint - learn, study and prepare for exam](https://examjoint.com) -->
+## Platform using MosquitoTransport in production
+- [ExamJoint - learn, study and prepare for exam](https://examjoint.com)
+<!-- - [Heavenya - christian events](https://heavenya.com)
+- [Inspire - christian audio](https://inspire.com) -->
 
 ## Contributing
 

package/lib/helpers/values.js

@@ -86,7 +86,7 @@ export const ERRORS = {
     ACCOUNT_NO_PASSWORD: simplifyError('incorrect_password', 'The provided password for this account is incorrect'),
     UID_ALREADY_EXISTS: uid => simplifyError('uid_already_exists', `This userId (${uid}) for this account has already been taken`),
     ACCOUNT_DISABLED: simplifyError('account_disabled', 'You cannot sign into this account because it has been disabled'),
-    TOKEN_MISMATCH: simplifyError('token_mismatch', 'The accessToken and refreshToken are not meant for eachother'),
+    TOKEN_MISMATCH: simplifyError('token_mismatch', 'The accessToken and refreshToken are not meant for each other'),
     ENTITY_MISMATCH: simplifyError('entity_mismatch', 'This accessToken does not belong to the provided refreshToken'),
     TOKEN_USER_NOT_FOUND: simplifyError('token_user_not_found', 'The user that owns this token was not found on our database records'),
     TOKEN_ACCOUNT_DISABLED: simplifyError('token_account_disabled', 'You cannot refresh token for this account because it has been disabled'),
@@ -105,5 +105,6 @@ export const ERRORS = {
     // apis
     ENCRYPTION_REQUIRED: simplifyError('encryption_required', 'All request sent to this endpoint must be encrypted'),
     UNAUTHORIZED_ACCESS: simplifyError('unauthorize_access', 'Only authorized users can access this request'),
-    UNVERIFIED_EMAIL: simplifyError('unverified_email', 'User email is not verified, Please verify and try again')
+    UNVERIFIED_EMAIL: simplifyError('unverified_email', 'User email is not verified, Please verify and try again'),
+    DISABLED_AUTH_ACCESS: simplifyError('disabled_auth', 'This request does not accept disabled auth')
 };

package/lib/index.d.ts

@@ -26,7 +26,12 @@ interface PureHttpRequest extends express.Request {
 }
 
 interface StorageRulesSnapshot {
-
+    headers?: IncomingHttpHeaders;
+    auth?: JWTAuthData | undefined;
+    endpoint: 'serveFile' | '_uploadFile' | '_deleteFile' | '_deleteFolder';
+    prescription: {
+        path: string;
+    }
 }
 
 type WriteScope = 'setOne' | 'setMany' | 'updateOne' | 'updateMany' | 'mergeOne' | 'mergeMany' | 'deleteOne' | 'deleteMany' | 'replaceOne' | 'putOne';
@@ -653,7 +658,7 @@ interface MosquitoHttpOptions {
      */
     enforceUser?: boolean;
     /**
-     * admits all request that doesn't have a token or have a token that is valid
+     * admits request that doesn't have a token or have a token that is valid
      */
     validateUser?: boolean;
     /**
@@ -664,8 +669,16 @@ interface MosquitoHttpOptions {
      * disable all internal adds-on such as token validation, end-to-end encryption
      * 
      * this is basically identical to calling `MtInstance.express.use((req, res, next)=> { })`
+     * 
+     * @default false
      */
     rawEntry?: boolean;
+    /**
+     * `true` to accept disabled token
+     * 
+     * @default false
+     */
+    allowDisabledAuth?: boolean;
 }
 
 interface DatabaseListenerOption {

package/lib/index.js

@@ -792,6 +792,8 @@ export default class MosquitoTransportServer {
 
                     if (authToken && (enforceUser || options?.validateUser)) {
                         auth = await validateJWT(authToken, this.projectName);
+                        if (!options?.allowDisabledAuth && auth.disabled)
+                            throw ERRORS.DISABLED_AUTH_ACCESS;
                     } else if (enforceUser) throw ERRORS.UNAUTHORIZED_ACCESS;
 
                     if (options?.enforceVerifiedUser && !auth?.emailVerified)
@@ -1013,12 +1015,12 @@ export default class MosquitoTransportServer {
         if (typeof uid !== 'string' || !uid.trim()) throw 'uid requires a string value';
 
         const updateSet = Object.fromEntries(
-            Object.entries(metadata).map(([k, v]) =>
+            Object.entries(claims).map(([k, v]) =>
                 v !== undefined && [`claims.${k}`, v]
             ).filter(v => v)
         );
         const updateUnset = Object.fromEntries(
-            Object.entries(metadata).map(([k, v]) =>
+            Object.entries(claims).map(([k, v]) =>
                 v === undefined && [`claims.${k}`, true]
             ).filter(v => v)
         );

package/lib/products/auth/email_auth.js

@@ -195,7 +195,7 @@ export const refreshToken = async ({ token, refToken }, projectName) => {
         entityOf: refAuth.tokenID
     };
 
-    if (disabled) throw ERRORS.TOKEN_ACCOUNT_DISABLED;
+    // if (disabled) throw ERRORS.TOKEN_ACCOUNT_DISABLED;
 
     const tokenx = await signJWT({ ...tokenData }, projectName);
 

package/lib/products/storage/index.js

@@ -1,5 +1,5 @@
 import express from "express";
-import { niceTry, normalizeRoute } from "../../helpers/utils";
+import { encodeBinary, niceTry, normalizeRoute } from "../../helpers/utils";
 import { Scoped } from "../../helpers/variables";
 import { validateJWT } from "../auth/tokenizer";
 import { EngineRoutes, ERRORS, one_mb, STORAGE_DIRS, STORAGE_ROUTE } from "../../helpers/values";
@@ -22,14 +22,17 @@ export const storageRouteName = [
     _deleteFolder
 ];
 
-export const storageRoutes = ({ projectName, externalAddress, logger, maxUploadBufferSize = one_mb * 1024, ddosMap, internals }) => storageRouteName.map(route =>
+export const storageRoutes = ({ projectName, externalAddress, logger, maxUploadBufferSize = one_mb * 1024, ddosMap, internals, enforceE2E_Encryption }) => [
+    ...enforceE2E_Encryption ? [] : storageRouteName.map(v => ({ mroute: v, route: v })),
+    ...storageRouteName.map(v => ({ mroute: `e2e/${encodeBinary(v)}`, route: v, ugly: true }))
+].map(({ route, mroute }) =>
     express.Router({ caseSensitive: true })[
         {
             [_uploadFile]: 'post',
             [_deleteFile]: 'delete',
             [_deleteFolder]: 'delete'
         }[route] || 'get'
-    ](`/${route}`, async (req, res) => {
+    ](`/${mroute}`, async (req, res) => {
         const hasLogger = logger.includes('all') || logger.includes('storage'),
             now = Date.now();
 
@@ -58,7 +61,6 @@ export const storageRoutes = ({ projectName, externalAddress, logger, maxUploadB
                 const rulesObj = {
                     headers: { ...req.headers },
                     ...resolvedAuth ? { auth: { ...resolvedAuth, token: authToken } } : {},
-                    request: req,
                     endpoint: route,
                     prescription: {
                         path: path || destination

package/package.json

@@ -1,6 +1,6 @@
 {
   "name": "mosquito-transport",
-  "version": "1.6.2",
+  "version": "1.6.3",
   "description": "MosquitoTransport is a powerful tool that helps persist and synchronize data between your MongoDB database and frontend applications",
   "main": "lib/index.js",
   "type": "module",
@@ -40,7 +40,7 @@
     "buffer": "^6.0.3",
     "compression": "^1.7.4",
     "cors": "^2.8.5",
-    "entity-serializer": "^1.0.1",
+    "entity-serializer": "^1.0.2",
     "express": "^4.18.2",
     "google-auth-library": "^8.8.0",
     "guard-object": "^1.1.3",