npm - n8n - Versions diffs - 0.167.0 → 0.168.2 - Mend

n8n 0.167.0 → 0.168.2

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (258) hide show

package/dist/src/UserManagement/UserManagementHelper.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"UserManagementHelper.js","sourceRoot":"","sources":["../../../src/UserManagement/UserManagementHelper.ts"],"names":[],"mappings":";;;;;;;;;;;;;;AAIA,qCAA0C;AAG1C,0BAAwD;AACxD,qDAA4F;AAG5F,uCAAwC;AACxC,sDAAsD;AAE/C,KAAK,UAAU,gBAAgB,CAAC,UAA2B;IACjE,MAAM,cAAc,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,cAAe,CAAC,aAAa,CAAC;QACzE,KAAK,EAAE,EAAE,QAAQ,EAAE,EAAE,EAAE,EAAE,UAAU,EAAE,EAAE;QACvC,SAAS,EAAE,CAAC,MAAM,EAAE,iBAAiB,CAAC;KACtC,CAAC,CAAC;IAEH,OAAO,cAAc,CAAC,IAAI,CAAC;AAC5B,CAAC;AAPD,4CAOC;AAED,SAAgB,YAAY;IAC3B,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,4BAA4B,CAAC,KAAK,MAAM,CAAC;IACjE,MAAM,IAAI,GAAG,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,iCAAiC,CAAC,CAAC;IAC7D,MAAM,IAAI,GAAG,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,sCAAsC,CAAC,CAAC;IAClE,MAAM,IAAI,GAAG,CAAC,CAAC,MAAM,CAAC,GAAG,CAAC,sCAAsC,CAAC,CAAC;IAElE,OAAO,IAAI,IAAI,IAAI,IAAI,IAAI,IAAI,IAAI,CAAC;AACrC,CAAC;AAPD,oCAOC;AAED,KAAK,UAAU,oBAAoB;IAClC,MAAM,SAAS,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,aAAa,CAAC;QAC1D,KAAK,EAAE;YACN,IAAI,EAAE,OAAO;YACb,KAAK,EAAE,QAAQ;SACf;KACD,CAAC,CAAC;IACH,OAAO,SAAS,CAAC;AAClB,CAAC;AAEM,KAAK,UAAU,gBAAgB;IACrC,MAAM,SAAS,GAAG,MAAM,oBAAoB,EAAE,CAAC;IAE/C,MAAM,KAAK,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,aAAa,CAAC;QACtD,SAAS,EAAE,CAAC,YAAY,CAAC;QACzB,KAAK,EAAE;YACN,UAAU,EAAE,SAAS;SACrB;KACD,CAAC,CAAC;IACH,OAAO,KAAK,CAAC;AACd,CAAC;AAVD,4CAUC;AAKD,SAAgB,kBAAkB;IACjC,MAAM,UAAU,GAAG,MAAM,CAAC,GAAG,CAAC,eAAe,CAAC,IAAI,kCAAiB,EAAE,CAAC;IAEtE,OAAO,UAAU,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC,KAAK,CAAC,CAAC,EAAE,UAAU,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC,CAAC,CAAC,UAAU,CAAC;AAC3F,CAAC;AAJD,gDAIC;AAEM,KAAK,UAAU,oBAAoB;IACzC,MAAM,KAAK,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,IAAI,CAAC,EAAE,KAAK,EAAE,aAAG,CAAC,gBAAM,EAAE,CAAC,EAAE,CAAC,CAAC;IACxE,OAAO,KAAK,CAAC,MAAM,KAAK,CAAC,CAAC;AAC3B,CAAC;AAHD,oDAGC;AAGD,SAAgB,gBAAgB,CAAC,QAAiB;IACjD,IAAI,CAAC,QAAQ,EAAE;QACd,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,uBAAuB,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;KAChF;IAED,MAAM,gBAAgB,GACrB,QAAQ,CAAC,MAAM,GAAG,0BAAmB,IAAI,QAAQ,CAAC,MAAM,GAAG,0BAAmB,CAAC;IAEhF,MAAM,WAAW,GAAG,CAAC,IAAI,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAEzC,MAAM,cAAc,GAAG,CAAC,OAAO,CAAC,IAAI,CAAC,QAAQ,CAAC,CAAC;IAE/C,IAAI,gBAAgB,IAAI,WAAW,IAAI,cAAc,EAAE;QACtD,MAAM,OAAO,GAAa,EAAE,CAAC;QAE7B,IAAI,gBAAgB,EAAE;YACrB,OAAO,CAAC,IAAI,CACX,oBAAoB,0BAAmB,OAAO,0BAAmB,mBAAmB,CACpF,CAAC;SACF;QAED,IAAI,WAAW,EAAE;YAChB,OAAO,CAAC,IAAI,CAAC,0CAA0C,CAAC,CAAC;SACzD;QAED,IAAI,cAAc,EAAE;YACnB,OAAO,CAAC,IAAI,CAAC,oDAAoD,CAAC,CAAC;SACnE;QAED,MAAM,IAAI,kBAAc,CAAC,aAAa,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,EAAE,SAAS,EAAE,GAAG,CAAC,CAAC;KAC1E;IAED,OAAO,QAAQ,CAAC;AACjB,CAAC;AAjCD,4CAiCC;AAKD,SAAgB,YAAY,CAAC,IAAU,EAAE,WAAsB;IAC9D,MAAM,EACL,QAAQ,EACR,kBAAkB,EAClB,4BAA4B,EAC5B,SAAS,EACT,SAAS,KAEN,IAAI,EADJ,aAAa,UACb,IAAI,EAPF,4FAOL,CAAO,CAAC;IACT,IAAI,WAAW,EAAE;QAChB,WAAW,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;YAE3B,OAAO,aAAa,CAAC,GAAG,CAAC,CAAC;QAC3B,CAAC,CAAC,CAAC;KACH;IACD,OAAO,aAAa,CAAC;AACtB,CAAC;AAhBD,oCAgBC;AAEM,KAAK,UAAU,WAAW,CAAC,MAAc;IAC/C,MAAM,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,aAAa,CAAC,MAAM,EAAE;QAC7D,SAAS,EAAE,CAAC,YAAY,CAAC;KACzB,CAAC,CAAC;IACH,OAAO,IAAI,CAAC;AACb,CAAC;AALD,kCAKC;AAEM,KAAK,UAAU,4BAA4B,CACjD,QAAkB,EAClB,MAAc;IAEd,MAAM,aAAa,GAAG,IAAI,GAAG,EAAE,CAAC;IAChC,MAAM,SAAS,GAAG,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,CAAC;IAE9C,SAAS,CAAC,OAAO,CAAC,CAAC,QAAQ,EAAE,EAAE;QAC9B,MAAM,IAAI,GAAG,QAAQ,CAAC,KAAK,CAAC,QAAQ,CAAC,CAAC;QAEtC,IAAI,IAAI,CAAC,WAAW,EAAE;YACrB,MAAM,eAAe,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,WAAW,CAAC,CAAC;YAEtD,eAAe,CAAC,OAAO,CAAC,CAAC,cAAc,EAAE,EAAE;gBAC1C,MAAM,gBAAgB,GAAG,IAAI,CAAC,WAAY,CAAC,cAAc,CAAC,CAAC;gBAK3D,IAAI,CAAC,gBAAgB,CAAC,EAAE,EAAE;oBACzB,MAAM,IAAI,KAAK,CACd,iHAAiH,CACjH,CAAC;iBACF;gBACD,aAAa,CAAC,GAAG,CAAC,gBAAgB,CAAC,EAAE,CAAC,QAAQ,EAAE,CAAC,CAAC;YACnD,CAAC,CAAC,CAAC;SACH;IACF,CAAC,CAAC,CAAC;IAKH,MAAM,GAAG,GAAG,KAAK,CAAC,IAAI,CAAC,aAAa,CAAC,CAAC;IAEtC,IAAI,GAAG,CAAC,MAAM,KAAK,CAAC,EAAE;QAErB,OAAO,IAAI,CAAC;KACZ;IAID,MAAM,IAAI,GAAG,MAAM,WAAW,CAAC,MAAM,CAAC,CAAC;IACvC,IAAI,IAAI,CAAC,UAAU,CAAC,IAAI,KAAK,OAAO,EAAE;QACrC,OAAO,IAAI,CAAC;KACZ;IAGD,MAAM,eAAe,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,iBAAkB,CAAC,KAAK,CAAC;QACrE,KAAK,EAAE;YACN,IAAI,EAAE,EAAE,EAAE,EAAE,MAAM,EAAE;YACpB,WAAW,EAAE,YAAE,CAAC,GAAG,CAAC;SACpB;KACD,CAAC,CAAC;IAKH,IAAI,GAAG,CAAC,MAAM,KAAK,eAAe,EAAE;QACnC,MAAM,IAAI,KAAK,CAAC,yDAAyD,CAAC,CAAC;KAC3E;IACD,OAAO,IAAI,CAAC;AACb,CAAC;AA7DD,oEA6DC;AAKD,SAAgB,cAAc,CAAC,GAAW,EAAE,gBAA0B;IACrE,OAAO,CAAC,CAAC,gBAAgB;SACvB,MAAM,CAAC,OAAO,CAAC;SACf,IAAI,CAAC,CAAC,eAAe,EAAE,EAAE,CAAC,GAAG,CAAC,QAAQ,CAAC,eAAe,CAAC,CAAC,CAAC;AAC5D,CAAC;AAJD,wCAIC;AAKD,SAAgB,aAAa,CAAC,GAAoB,EAAE,YAAoB;IACvE,OAAO,CACN,GAAG,CAAC,MAAM,KAAK,MAAM;QACrB,IAAI,MAAM,CAAC,IAAI,YAAY,mBAAmB,CAAC,CAAC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC;QAC7D,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,CAAC,CAC7B,CAAC;AACH,CAAC;AAND,sCAMC;AAED,SAAgB,sBAAsB,CAAC,OAAwB;IAC9D,OAAO,OAAO,CAAC,IAAI,KAAK,SAAS,CAAC;AACnC,CAAC;AAFD,wDAEC"}

package/dist/src/UserManagement/auth/jwt.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import { Response } from 'express';
+import { JwtToken, JwtPayload } from '../Interfaces';
+import { User } from '../../databases/entities/User';
+export declare function issueJWT(user: User): JwtToken;
+export declare function resolveJwtContent(jwtPayload: JwtPayload): Promise<User>;
+export declare function resolveJwt(token: string): Promise<User>;
+export declare function issueCookie(res: Response, user: User): Promise<void>;

package/dist/src/UserManagement/auth/jwt.js ADDED Viewed

@@ -0,0 +1,57 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.issueCookie = exports.resolveJwt = exports.resolveJwtContent = exports.issueJWT = void 0;
+const jwt = require("jsonwebtoken");
+const crypto_1 = require("crypto");
+const __1 = require("../..");
+const constants_1 = require("../../constants");
+const config = require("../../../config");
+function issueJWT(user) {
+    const { id, email, password } = user;
+    const expiresIn = 7 * 86400000;
+    const payload = {
+        id,
+        email,
+        password: password !== null && password !== void 0 ? password : null,
+    };
+    if (password) {
+        payload.password = crypto_1.createHash('sha256')
+            .update(password.slice(password.length / 2))
+            .digest('hex');
+    }
+    const signedToken = jwt.sign(payload, config.get('userManagement.jwtSecret'), {
+        expiresIn: expiresIn / 1000,
+    });
+    return {
+        token: signedToken,
+        expiresIn,
+    };
+}
+exports.issueJWT = issueJWT;
+async function resolveJwtContent(jwtPayload) {
+    const user = await __1.Db.collections.User.findOne(jwtPayload.id, {
+        relations: ['globalRole'],
+    });
+    let passwordHash = null;
+    if (user === null || user === void 0 ? void 0 : user.password) {
+        passwordHash = crypto_1.createHash('sha256')
+            .update(user.password.slice(user.password.length / 2))
+            .digest('hex');
+    }
+    if (!user || jwtPayload.password !== passwordHash || user.email !== jwtPayload.email) {
+        throw new Error('Invalid token content');
+    }
+    return user;
+}
+exports.resolveJwtContent = resolveJwtContent;
+async function resolveJwt(token) {
+    const jwtPayload = jwt.verify(token, config.get('userManagement.jwtSecret'));
+    return resolveJwtContent(jwtPayload);
+}
+exports.resolveJwt = resolveJwt;
+async function issueCookie(res, user) {
+    const userData = issueJWT(user);
+    res.cookie(constants_1.AUTH_COOKIE_NAME, userData.token, { maxAge: userData.expiresIn, httpOnly: true });
+}
+exports.issueCookie = issueCookie;
+//# sourceMappingURL=jwt.js.map

package/dist/src/UserManagement/auth/jwt.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"jwt.js","sourceRoot":"","sources":["../../../../src/UserManagement/auth/jwt.ts"],"names":[],"mappings":";;;AAGA,oCAAoC;AAEpC,mCAAoC;AACpC,6BAA2B;AAC3B,+CAAmD;AAGnD,0CAA2C;AAE3C,SAAgB,QAAQ,CAAC,IAAU;IAClC,MAAM,EAAE,EAAE,EAAE,KAAK,EAAE,QAAQ,EAAE,GAAG,IAAI,CAAC;IACrC,MAAM,SAAS,GAAG,CAAC,GAAG,QAAQ,CAAC;IAE/B,MAAM,OAAO,GAAe;QAC3B,EAAE;QACF,KAAK;QACL,QAAQ,EAAE,QAAQ,aAAR,QAAQ,cAAR,QAAQ,GAAI,IAAI;KAC1B,CAAC;IAEF,IAAI,QAAQ,EAAE;QACb,OAAO,CAAC,QAAQ,GAAG,mBAAU,CAAC,QAAQ,CAAC;aACrC,MAAM,CAAC,QAAQ,CAAC,KAAK,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;aAC3C,MAAM,CAAC,KAAK,CAAC,CAAC;KAChB;IAED,MAAM,WAAW,GAAG,GAAG,CAAC,IAAI,CAAC,OAAO,EAAE,MAAM,CAAC,GAAG,CAAC,0BAA0B,CAAC,EAAE;QAC7E,SAAS,EAAE,SAAS,GAAG,IAAI;KAC3B,CAAC,CAAC;IAEH,OAAO;QACN,KAAK,EAAE,WAAW;QAClB,SAAS;KACT,CAAC;AACH,CAAC;AAxBD,4BAwBC;AAEM,KAAK,UAAU,iBAAiB,CAAC,UAAsB;IAC7D,MAAM,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,OAAO,CAAC,UAAU,CAAC,EAAE,EAAE;QAC9D,SAAS,EAAE,CAAC,YAAY,CAAC;KACzB,CAAC,CAAC;IAEH,IAAI,YAAY,GAAG,IAAI,CAAC;IACxB,IAAI,IAAI,aAAJ,IAAI,uBAAJ,IAAI,CAAE,QAAQ,EAAE;QACnB,YAAY,GAAG,mBAAU,CAAC,QAAQ,CAAC;aACjC,MAAM,CAAC,IAAI,CAAC,QAAQ,CAAC,KAAK,CAAC,IAAI,CAAC,QAAQ,CAAC,MAAM,GAAG,CAAC,CAAC,CAAC;aACrD,MAAM,CAAC,KAAK,CAAC,CAAC;KAChB;IAED,IAAI,CAAC,IAAI,IAAI,UAAU,CAAC,QAAQ,KAAK,YAAY,IAAI,IAAI,CAAC,KAAK,KAAK,UAAU,CAAC,KAAK,EAAE;QAGrF,MAAM,IAAI,KAAK,CAAC,uBAAuB,CAAC,CAAC;KACzC;IACD,OAAO,IAAI,CAAC;AACb,CAAC;AAlBD,8CAkBC;AAEM,KAAK,UAAU,UAAU,CAAC,KAAa;IAC7C,MAAM,UAAU,GAAG,GAAG,CAAC,MAAM,CAAC,KAAK,EAAE,MAAM,CAAC,GAAG,CAAC,0BAA0B,CAAC,CAAe,CAAC;IAC3F,OAAO,iBAAiB,CAAC,UAAU,CAAC,CAAC;AACtC,CAAC;AAHD,gCAGC;AAEM,KAAK,UAAU,WAAW,CAAC,GAAa,EAAE,IAAU;IAC1D,MAAM,QAAQ,GAAG,QAAQ,CAAC,IAAI,CAAC,CAAC;IAChC,GAAG,CAAC,MAAM,CAAC,4BAAgB,EAAE,QAAQ,CAAC,KAAK,EAAE,EAAE,MAAM,EAAE,QAAQ,CAAC,SAAS,EAAE,QAAQ,EAAE,IAAI,EAAE,CAAC,CAAC;AAC9F,CAAC;AAHD,kCAGC"}

package/dist/src/UserManagement/email/Interfaces.d.ts ADDED Viewed

@@ -0,0 +1,29 @@
+/// <reference types="node" />
+export interface UserManagementMailerImplementation {
+    sendMail: (mailData: MailData) => Promise<SendEmailResult>;
+    verifyConnection: () => Promise<void>;
+}
+export declare type InviteEmailData = {
+    email: string;
+    firstName?: string;
+    lastName?: string;
+    inviteAcceptUrl: string;
+    domain: string;
+};
+export declare type PasswordResetData = {
+    email: string;
+    firstName?: string;
+    lastName?: string;
+    passwordResetUrl: string;
+    domain: string;
+};
+export declare type SendEmailResult = {
+    success: boolean;
+    error?: Error;
+};
+export declare type MailData = {
+    body: string | Buffer;
+    emailRecipients: string | string[];
+    subject: string;
+    textOnly?: string;
+};

package/dist/src/UserManagement/email/Interfaces.js ADDED Viewed

@@ -0,0 +1,3 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+//# sourceMappingURL=Interfaces.js.map

package/dist/src/UserManagement/email/Interfaces.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"Interfaces.js","sourceRoot":"","sources":["../../../../src/UserManagement/email/Interfaces.ts"],"names":[],"mappings":""}

package/dist/src/UserManagement/email/NodeMailer.d.ts ADDED Viewed

@@ -0,0 +1,7 @@
+import { MailData, SendEmailResult, UserManagementMailerImplementation } from './Interfaces';
+export declare class NodeMailer implements UserManagementMailerImplementation {
+    private transport;
+    constructor();
+    verifyConnection(): Promise<void>;
+    sendMail(mailData: MailData): Promise<SendEmailResult>;
+}

package/dist/src/UserManagement/email/NodeMailer.js ADDED Viewed

@@ -0,0 +1,67 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.NodeMailer = void 0;
+const nodemailer_1 = require("nodemailer");
+const n8n_workflow_1 = require("n8n-workflow");
+const config = require("../../../config");
+class NodeMailer {
+    constructor() {
+        this.transport = nodemailer_1.createTransport({
+            host: config.get('userManagement.emails.smtp.host'),
+            port: config.get('userManagement.emails.smtp.port'),
+            secure: config.get('userManagement.emails.smtp.secure'),
+            auth: {
+                user: config.get('userManagement.emails.smtp.auth.user'),
+                pass: config.get('userManagement.emails.smtp.auth.pass'),
+            },
+        });
+    }
+    async verifyConnection() {
+        const host = config.get('userManagement.emails.smtp.host');
+        const user = config.get('userManagement.emails.smtp.auth.user');
+        const pass = config.get('userManagement.emails.smtp.auth.pass');
+        return new Promise((resolve, reject) => {
+            this.transport.verify((error) => {
+                if (!error) {
+                    resolve();
+                    return;
+                }
+                const message = [];
+                if (!host)
+                    message.push('SMTP host not defined (N8N_SMTP_HOST).');
+                if (!user)
+                    message.push('SMTP user not defined (N8N_SMTP_USER).');
+                if (!pass)
+                    message.push('SMTP pass not defined (N8N_SMTP_PASS).');
+                reject(new Error(message.length ? message.join(' ') : error.message));
+            });
+        });
+    }
+    async sendMail(mailData) {
+        let sender = config.get('userManagement.emails.smtp.sender');
+        const user = config.get('userManagement.emails.smtp.auth.user');
+        if (!sender && user.includes('@')) {
+            sender = user;
+        }
+        try {
+            await this.transport.sendMail({
+                from: sender,
+                to: mailData.emailRecipients,
+                subject: mailData.subject,
+                text: mailData.textOnly,
+                html: mailData.body,
+            });
+            n8n_workflow_1.LoggerProxy.verbose(`Email sent successfully to the following recipients: ${mailData.emailRecipients.toString()}`);
+        }
+        catch (error) {
+            n8n_workflow_1.LoggerProxy.error('Failed to send email', { recipients: mailData.emailRecipients, error });
+            return {
+                success: false,
+                error,
+            };
+        }
+        return { success: true };
+    }
+}
+exports.NodeMailer = NodeMailer;
+//# sourceMappingURL=NodeMailer.js.map

package/dist/src/UserManagement/email/NodeMailer.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"NodeMailer.js","sourceRoot":"","sources":["../../../../src/UserManagement/email/NodeMailer.ts"],"names":[],"mappings":";;;AACA,2CAA0D;AAC1D,+CAAqD;AACrD,0CAA2C;AAG3C,MAAa,UAAU;IAGtB;QACC,IAAI,CAAC,SAAS,GAAG,4BAAe,CAAC;YAChC,IAAI,EAAE,MAAM,CAAC,GAAG,CAAC,iCAAiC,CAAC;YACnD,IAAI,EAAE,MAAM,CAAC,GAAG,CAAC,iCAAiC,CAAC;YACnD,MAAM,EAAE,MAAM,CAAC,GAAG,CAAC,mCAAmC,CAAC;YACvD,IAAI,EAAE;gBACL,IAAI,EAAE,MAAM,CAAC,GAAG,CAAC,sCAAsC,CAAC;gBACxD,IAAI,EAAE,MAAM,CAAC,GAAG,CAAC,sCAAsC,CAAC;aACxD;SACD,CAAC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,gBAAgB;QACrB,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,iCAAiC,CAAW,CAAC;QACrE,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,sCAAsC,CAAW,CAAC;QAC1E,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,sCAAsC,CAAW,CAAC;QAE1E,OAAO,IAAI,OAAO,CAAC,CAAC,OAAO,EAAE,MAAM,EAAE,EAAE;YACtC,IAAI,CAAC,SAAS,CAAC,MAAM,CAAC,CAAC,KAAY,EAAE,EAAE;gBACtC,IAAI,CAAC,KAAK,EAAE;oBACX,OAAO,EAAE,CAAC;oBACV,OAAO;iBACP;gBAED,MAAM,OAAO,GAAG,EAAE,CAAC;gBAEnB,IAAI,CAAC,IAAI;oBAAE,OAAO,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;gBAClE,IAAI,CAAC,IAAI;oBAAE,OAAO,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;gBAClE,IAAI,CAAC,IAAI;oBAAE,OAAO,CAAC,IAAI,CAAC,wCAAwC,CAAC,CAAC;gBAElE,MAAM,CAAC,IAAI,KAAK,CAAC,OAAO,CAAC,MAAM,CAAC,CAAC,CAAC,OAAO,CAAC,IAAI,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,KAAK,CAAC,OAAO,CAAC,CAAC,CAAC;YACvE,CAAC,CAAC,CAAC;QACJ,CAAC,CAAC,CAAC;IACJ,CAAC;IAED,KAAK,CAAC,QAAQ,CAAC,QAAkB;QAChC,IAAI,MAAM,GAAG,MAAM,CAAC,GAAG,CAAC,mCAAmC,CAAC,CAAC;QAC7D,MAAM,IAAI,GAAG,MAAM,CAAC,GAAG,CAAC,sCAAsC,CAAW,CAAC;QAE1E,IAAI,CAAC,MAAM,IAAI,IAAI,CAAC,QAAQ,CAAC,GAAG,CAAC,EAAE;YAClC,MAAM,GAAG,IAAI,CAAC;SACd;QAED,IAAI;YACH,MAAM,IAAI,CAAC,SAAS,CAAC,QAAQ,CAAC;gBAC7B,IAAI,EAAE,MAAM;gBACZ,EAAE,EAAE,QAAQ,CAAC,eAAe;gBAC5B,OAAO,EAAE,QAAQ,CAAC,OAAO;gBACzB,IAAI,EAAE,QAAQ,CAAC,QAAQ;gBACvB,IAAI,EAAE,QAAQ,CAAC,IAAI;aACnB,CAAC,CAAC;YACH,0BAAM,CAAC,OAAO,CACb,wDAAwD,QAAQ,CAAC,eAAe,CAAC,QAAQ,EAAE,EAAE,CAC7F,CAAC;SACF;QAAC,OAAO,KAAK,EAAE;YACf,0BAAM,CAAC,KAAK,CAAC,sBAAsB,EAAE,EAAE,UAAU,EAAE,QAAQ,CAAC,eAAe,EAAE,KAAK,EAAE,CAAC,CAAC;YACtF,OAAO;gBACN,OAAO,EAAE,KAAK;gBACd,KAAK;aACL,CAAC;SACF;QAED,OAAO,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IAC1B,CAAC;CACD;AAnED,gCAmEC"}

package/dist/src/UserManagement/email/UserManagementMailer.d.ts ADDED Viewed

@@ -0,0 +1,9 @@
+import { InviteEmailData, PasswordResetData, SendEmailResult } from './Interfaces';
+export declare class UserManagementMailer {
+    private mailer;
+    constructor();
+    verifyConnection(): Promise<void>;
+    invite(inviteEmailData: InviteEmailData): Promise<SendEmailResult>;
+    passwordReset(passwordResetData: PasswordResetData): Promise<SendEmailResult>;
+}
+export declare function getInstance(): Promise<UserManagementMailer>;

package/dist/src/UserManagement/email/UserManagementMailer.js ADDED Viewed

@@ -0,0 +1,77 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.getInstance = exports.UserManagementMailer = void 0;
+const fs_1 = require("fs");
+const path_1 = require("path");
+const __1 = require("../..");
+const config = require("../../../config");
+const NodeMailer_1 = require("./NodeMailer");
+async function getTemplate(configKeyName, defaultFilename) {
+    const templateOverride = (await __1.GenericHelpers.getConfigValue(`userManagement.emails.templates.${configKeyName}`));
+    let template;
+    if (templateOverride && fs_1.existsSync(templateOverride)) {
+        template = fs_1.readFileSync(templateOverride, {
+            encoding: 'utf-8',
+        });
+    }
+    else {
+        template = fs_1.readFileSync(path_1.join(__dirname, `templates/${defaultFilename}`), {
+            encoding: 'utf-8',
+        });
+    }
+    return template;
+}
+function replaceStrings(template, data) {
+    let output = template;
+    const keys = Object.keys(data);
+    keys.forEach((key) => {
+        const regex = new RegExp(`\\{\\{\\s*${key}\\s*\\}\\}`, 'g');
+        output = output.replace(regex, data[key]);
+    });
+    return output;
+}
+class UserManagementMailer {
+    constructor() {
+        if (config.get('userManagement.emails.mode') === 'smtp') {
+            this.mailer = new NodeMailer_1.NodeMailer();
+        }
+    }
+    async verifyConnection() {
+        if (!this.mailer)
+            return Promise.reject();
+        return this.mailer.verifyConnection();
+    }
+    async invite(inviteEmailData) {
+        var _a;
+        let template = await getTemplate('invite', 'invite.html');
+        template = replaceStrings(template, inviteEmailData);
+        const result = await ((_a = this.mailer) === null || _a === void 0 ? void 0 : _a.sendMail({
+            emailRecipients: inviteEmailData.email,
+            subject: 'You have been invited to n8n',
+            body: template,
+        }));
+        return result !== null && result !== void 0 ? result : { success: true };
+    }
+    async passwordReset(passwordResetData) {
+        var _a;
+        let template = await getTemplate('passwordReset', 'passwordReset.html');
+        template = replaceStrings(template, passwordResetData);
+        const result = await ((_a = this.mailer) === null || _a === void 0 ? void 0 : _a.sendMail({
+            emailRecipients: passwordResetData.email,
+            subject: 'n8n password reset',
+            body: template,
+        }));
+        return result !== null && result !== void 0 ? result : { success: true };
+    }
+}
+exports.UserManagementMailer = UserManagementMailer;
+let mailerInstance;
+async function getInstance() {
+    if (mailerInstance === undefined) {
+        mailerInstance = new UserManagementMailer();
+        await mailerInstance.verifyConnection();
+    }
+    return mailerInstance;
+}
+exports.getInstance = getInstance;
+//# sourceMappingURL=UserManagementMailer.js.map

package/dist/src/UserManagement/email/UserManagementMailer.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"UserManagementMailer.js","sourceRoot":"","sources":["../../../../src/UserManagement/email/UserManagementMailer.ts"],"names":[],"mappings":";;;AACA,2BAA8C;AAE9C,+BAAwC;AACxC,6BAAuC;AACvC,0CAA2C;AAO3C,6CAA0C;AAE1C,KAAK,UAAU,WAAW,CAAC,aAAqB,EAAE,eAAuB;IACxE,MAAM,gBAAgB,GAAG,CAAC,MAAM,kBAAc,CAAC,cAAc,CAC5D,mCAAmC,aAAa,EAAE,CAClD,CAAW,CAAC;IAEb,IAAI,QAAQ,CAAC;IACb,IAAI,gBAAgB,IAAI,eAAU,CAAC,gBAAgB,CAAC,EAAE;QACrD,QAAQ,GAAG,iBAAY,CAAC,gBAAgB,EAAE;YACzC,QAAQ,EAAE,OAAO;SACjB,CAAC,CAAC;KACH;SAAM;QACN,QAAQ,GAAG,iBAAY,CAAC,WAAQ,CAAC,SAAS,EAAE,aAAa,eAAe,EAAE,CAAC,EAAE;YAC5E,QAAQ,EAAE,OAAO;SACjB,CAAC,CAAC;KACH;IACD,OAAO,QAAQ,CAAC;AACjB,CAAC;AAED,SAAS,cAAc,CAAC,QAAgB,EAAE,IAAiB;IAC1D,IAAI,MAAM,GAAG,QAAQ,CAAC;IACtB,MAAM,IAAI,GAAG,MAAM,CAAC,IAAI,CAAC,IAAI,CAAC,CAAC;IAC/B,IAAI,CAAC,OAAO,CAAC,CAAC,GAAG,EAAE,EAAE;QACpB,MAAM,KAAK,GAAG,IAAI,MAAM,CAAC,aAAa,GAAG,YAAY,EAAE,GAAG,CAAC,CAAC;QAC5D,MAAM,GAAG,MAAM,CAAC,OAAO,CAAC,KAAK,EAAE,IAAI,CAAC,GAAG,CAAW,CAAC,CAAC;IACrD,CAAC,CAAC,CAAC;IACH,OAAO,MAAM,CAAC;AACf,CAAC;AAED,MAAa,oBAAoB;IAGhC;QAEC,IAAI,MAAM,CAAC,GAAG,CAAC,4BAA4B,CAAC,KAAK,MAAM,EAAE;YACxD,IAAI,CAAC,MAAM,GAAG,IAAI,uBAAU,EAAE,CAAC;SAC/B;IACF,CAAC;IAED,KAAK,CAAC,gBAAgB;QACrB,IAAI,CAAC,IAAI,CAAC,MAAM;YAAE,OAAO,OAAO,CAAC,MAAM,EAAE,CAAC;QAE1C,OAAO,IAAI,CAAC,MAAM,CAAC,gBAAgB,EAAE,CAAC;IACvC,CAAC;IAED,KAAK,CAAC,MAAM,CAAC,eAAgC;;QAC5C,IAAI,QAAQ,GAAG,MAAM,WAAW,CAAC,QAAQ,EAAE,aAAa,CAAC,CAAC;QAC1D,QAAQ,GAAG,cAAc,CAAC,QAAQ,EAAE,eAAe,CAAC,CAAC;QAGrD,MAAM,MAAM,GAAG,MAAM,CAAA,MAAA,IAAI,CAAC,MAAM,0CAAE,QAAQ,CAAC;YAC1C,eAAe,EAAE,eAAe,CAAC,KAAK;YACtC,OAAO,EAAE,8BAA8B;YACvC,IAAI,EAAE,QAAQ;SACd,CAAC,CAAA,CAAC;QAGH,OAAO,MAAM,aAAN,MAAM,cAAN,MAAM,GAAI,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IACpC,CAAC;IAED,KAAK,CAAC,aAAa,CAAC,iBAAoC;;QACvD,IAAI,QAAQ,GAAG,MAAM,WAAW,CAAC,eAAe,EAAE,oBAAoB,CAAC,CAAC;QACxE,QAAQ,GAAG,cAAc,CAAC,QAAQ,EAAE,iBAAiB,CAAC,CAAC;QAGvD,MAAM,MAAM,GAAG,MAAM,CAAA,MAAA,IAAI,CAAC,MAAM,0CAAE,QAAQ,CAAC;YAC1C,eAAe,EAAE,iBAAiB,CAAC,KAAK;YACxC,OAAO,EAAE,oBAAoB;YAC7B,IAAI,EAAE,QAAQ;SACd,CAAC,CAAA,CAAC;QAGH,OAAO,MAAM,aAAN,MAAM,cAAN,MAAM,GAAI,EAAE,OAAO,EAAE,IAAI,EAAE,CAAC;IACpC,CAAC;CACD;AA7CD,oDA6CC;AAED,IAAI,cAAgD,CAAC;AAE9C,KAAK,UAAU,WAAW;IAChC,IAAI,cAAc,KAAK,SAAS,EAAE;QACjC,cAAc,GAAG,IAAI,oBAAoB,EAAE,CAAC;QAC5C,MAAM,cAAc,CAAC,gBAAgB,EAAE,CAAC;KACxC;IACD,OAAO,cAAc,CAAC;AACvB,CAAC;AAND,kCAMC"}

package/dist/src/UserManagement/email/index.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { getInstance, UserManagementMailer } from './UserManagementMailer';
2	+ export { getInstance, UserManagementMailer };

package/dist/src/UserManagement/email/index.js ADDED Viewed

@@ -0,0 +1,7 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.UserManagementMailer = exports.getInstance = void 0;
+const UserManagementMailer_1 = require("./UserManagementMailer");
+Object.defineProperty(exports, "getInstance", { enumerable: true, get: function () { return UserManagementMailer_1.getInstance; } });
+Object.defineProperty(exports, "UserManagementMailer", { enumerable: true, get: function () { return UserManagementMailer_1.UserManagementMailer; } });
+//# sourceMappingURL=index.js.map

package/dist/src/UserManagement/email/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/UserManagement/email/index.ts"],"names":[],"mappings":";;;AACA,iEAA2E;AAElE,4FAFA,kCAAW,OAEA;AAAE,qGAFA,2CAAoB,OAEA"}

package/dist/src/UserManagement/email/templates/instanceSetup.html ADDED Viewed

@@ -0,0 +1,5 @@
+<h1>Hi there!</h1>
+<p>Welcome to n8n, {{firstName}} {{lastName}}</p>
+<p>Your instance is set up!</p>
+<p>Use your email to login: {{email}} and the chosen password.</p>
+<p>Have fun automating!</p>

package/dist/src/UserManagement/email/templates/invite.html ADDED Viewed

@@ -0,0 +1,4 @@
+<p>Hi there,</p>
+<p>You have been invited to join n8n ({{ domain }}).</p>
+<p>To accept, click the following link:</p>
+<p><a href="{{ inviteAcceptUrl }}" target="_blank">{{ inviteAcceptUrl }}</a></p>

package/dist/src/UserManagement/email/templates/passwordReset.html ADDED Viewed

@@ -0,0 +1,5 @@
+<p>Hi {{firstName}},</p>
+<p>Somebody asked to reset your password on n8n ({{ domain }}).</p>
+<p>If it was not you, you can safely ignore this email.</p>
+<p>Click the following link to choose a new password. The link is valid for 2 hours.</p>
+<a href="{{ passwordResetUrl }}">{{ passwordResetUrl }}</a>

package/dist/src/UserManagement/index.d.ts ADDED Viewed

@@ -0,0 +1,4 @@
+import { addRoutes } from './routes';
+export declare const userManagementRouter: {
+    addRoutes: typeof addRoutes;
+};

package/dist/src/UserManagement/index.js ADDED Viewed

@@ -0,0 +1,6 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.userManagementRouter = void 0;
+const routes_1 = require("./routes");
+exports.userManagementRouter = { addRoutes: routes_1.addRoutes };
+//# sourceMappingURL=index.js.map

package/dist/src/UserManagement/index.js.map ADDED Viewed

	@@ -0,0 +1 @@
1	+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../src/UserManagement/index.ts"],"names":[],"mappings":";;;AACA,qCAAqC;AAExB,QAAA,oBAAoB,GAAG,EAAE,SAAS,EAAT,kBAAS,EAAE,CAAC"}

package/dist/src/UserManagement/routes/auth.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { N8nApp } from '../Interfaces';
2	+ export declare function authenticationMethods(this: N8nApp): void;

package/dist/src/UserManagement/routes/auth.js ADDED Viewed

@@ -0,0 +1,74 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.authenticationMethods = void 0;
+const bcryptjs_1 = require("bcryptjs");
+const __1 = require("../..");
+const constants_1 = require("../../constants");
+const jwt_1 = require("../auth/jwt");
+const UserManagementHelper_1 = require("../UserManagementHelper");
+function authenticationMethods() {
+    this.app.post(`/${this.restEndpoint}/login`, __1.ResponseHelper.send(async (req, res) => {
+        if (!req.body.email) {
+            throw new Error('Email is required to log in');
+        }
+        if (!req.body.password) {
+            throw new Error('Password is required to log in');
+        }
+        let user;
+        try {
+            user = await __1.Db.collections.User.findOne({
+                email: req.body.email,
+            }, {
+                relations: ['globalRole'],
+            });
+        }
+        catch (error) {
+            throw new Error('Unable to access database.');
+        }
+        if (!user || !user.password || !(await bcryptjs_1.compare(req.body.password, user.password))) {
+            const error = new Error('Wrong username or password. Do you have caps lock on?');
+            error.httpStatusCode = 401;
+            throw error;
+        }
+        await jwt_1.issueCookie(res, user);
+        return UserManagementHelper_1.sanitizeUser(user);
+    }));
+    this.app.get(`/${this.restEndpoint}/login`, __1.ResponseHelper.send(async (req, res) => {
+        var _a;
+        const cookieContents = (_a = req.cookies) === null || _a === void 0 ? void 0 : _a[constants_1.AUTH_COOKIE_NAME];
+        let user;
+        if (cookieContents) {
+            try {
+                user = await jwt_1.resolveJwt(cookieContents);
+                return UserManagementHelper_1.sanitizeUser(user);
+            }
+            catch (error) {
+                res.clearCookie(constants_1.AUTH_COOKIE_NAME);
+            }
+        }
+        if (await UserManagementHelper_1.isInstanceOwnerSetup()) {
+            const error = new Error('Not logged in');
+            error.httpStatusCode = 401;
+            throw error;
+        }
+        try {
+            user = await __1.Db.collections.User.findOneOrFail({ relations: ['globalRole'] });
+        }
+        catch (error) {
+            throw new Error('No users found in database - did you wipe the users table? Create at least one user.');
+        }
+        if (user.email || user.password) {
+            throw new Error('Invalid database state - user has password set.');
+        }
+        await jwt_1.issueCookie(res, user);
+        return UserManagementHelper_1.sanitizeUser(user);
+    }));
+    this.app.post(`/${this.restEndpoint}/logout`, __1.ResponseHelper.send(async (_, res) => {
+        res.clearCookie(constants_1.AUTH_COOKIE_NAME);
+        return {
+            loggedOut: true,
+        };
+    }));
+}
+exports.authenticationMethods = authenticationMethods;
+//# sourceMappingURL=auth.js.map

package/dist/src/UserManagement/routes/auth.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"auth.js","sourceRoot":"","sources":["../../../../src/UserManagement/routes/auth.ts"],"names":[],"mappings":";;;AAKA,uCAAmC;AAEnC,6BAA2C;AAC3C,+CAAmD;AACnD,qCAAsD;AAEtD,kEAA6E;AAI7E,SAAgB,qBAAqB;IAMpC,IAAI,CAAC,GAAG,CAAC,IAAI,CACZ,IAAI,IAAI,CAAC,YAAY,QAAQ,EAC7B,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAAiB,EAAE,GAAa,EAAuB,EAAE;QACnF,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,KAAK,EAAE;YACpB,MAAM,IAAI,KAAK,CAAC,6BAA6B,CAAC,CAAC;SAC/C;QAED,IAAI,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,EAAE;YACvB,MAAM,IAAI,KAAK,CAAC,gCAAgC,CAAC,CAAC;SAClD;QAED,IAAI,IAAI,CAAC;QACT,IAAI;YACH,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,OAAO,CACxC;gBACC,KAAK,EAAE,GAAG,CAAC,IAAI,CAAC,KAAK;aACrB,EACD;gBACC,SAAS,EAAE,CAAC,YAAY,CAAC;aACzB,CACD,CAAC;SACF;QAAC,OAAO,KAAK,EAAE;YACf,MAAM,IAAI,KAAK,CAAC,4BAA4B,CAAC,CAAC;SAC9C;QACD,IAAI,CAAC,IAAI,IAAI,CAAC,IAAI,CAAC,QAAQ,IAAI,CAAC,CAAC,MAAM,kBAAO,CAAC,GAAG,CAAC,IAAI,CAAC,QAAQ,EAAE,IAAI,CAAC,QAAQ,CAAC,CAAC,EAAE;YAElF,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,uDAAuD,CAAC,CAAC;YAEjF,KAAK,CAAC,cAAc,GAAG,GAAG,CAAC;YAC3B,MAAM,KAAK,CAAC;SACZ;QAED,MAAM,iBAAW,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAE7B,OAAO,mCAAY,CAAC,IAAI,CAAC,CAAC;IAC3B,CAAC,CAAC,CACF,CAAC;IAKF,IAAI,CAAC,GAAG,CAAC,GAAG,CACX,IAAI,IAAI,CAAC,YAAY,QAAQ,EAC7B,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,GAAY,EAAE,GAAa,EAAuB,EAAE;;QAE9E,MAAM,cAAc,GAAG,MAAA,GAAG,CAAC,OAAO,0CAAG,4BAAgB,CAAuB,CAAC;QAE7E,IAAI,IAAU,CAAC;QACf,IAAI,cAAc,EAAE;YAEnB,IAAI;gBACH,IAAI,GAAG,MAAM,gBAAU,CAAC,cAAc,CAAC,CAAC;gBACxC,OAAO,mCAAY,CAAC,IAAI,CAAC,CAAC;aAC1B;YAAC,OAAO,KAAK,EAAE;gBACf,GAAG,CAAC,WAAW,CAAC,4BAAgB,CAAC,CAAC;aAClC;SACD;QAED,IAAI,MAAM,2CAAoB,EAAE,EAAE;YACjC,MAAM,KAAK,GAAG,IAAI,KAAK,CAAC,eAAe,CAAC,CAAC;YAEzC,KAAK,CAAC,cAAc,GAAG,GAAG,CAAC;YAC3B,MAAM,KAAK,CAAC;SACZ;QAED,IAAI;YACH,IAAI,GAAG,MAAM,MAAE,CAAC,WAAW,CAAC,IAAK,CAAC,aAAa,CAAC,EAAE,SAAS,EAAE,CAAC,YAAY,CAAC,EAAE,CAAC,CAAC;SAC/E;QAAC,OAAO,KAAK,EAAE;YACf,MAAM,IAAI,KAAK,CACd,sFAAsF,CACtF,CAAC;SACF;QAED,IAAI,IAAI,CAAC,KAAK,IAAI,IAAI,CAAC,QAAQ,EAAE;YAChC,MAAM,IAAI,KAAK,CAAC,iDAAiD,CAAC,CAAC;SACnE;QAED,MAAM,iBAAW,CAAC,GAAG,EAAE,IAAI,CAAC,CAAC;QAE7B,OAAO,mCAAY,CAAC,IAAI,CAAC,CAAC;IAC3B,CAAC,CAAC,CACF,CAAC;IAOF,IAAI,CAAC,GAAG,CAAC,IAAI,CACZ,IAAI,IAAI,CAAC,YAAY,SAAS,EAC9B,kBAAc,CAAC,IAAI,CAAC,KAAK,EAAE,CAAC,EAAE,GAAa,EAAwB,EAAE;QACpE,GAAG,CAAC,WAAW,CAAC,4BAAgB,CAAC,CAAC;QAClC,OAAO;YACN,SAAS,EAAE,IAAI;SACf,CAAC;IACH,CAAC,CAAC,CACF,CAAC;AACH,CAAC;AAvGD,sDAuGC"}

package/dist/src/UserManagement/routes/index.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { N8nApp } from '../Interfaces';
2	+ export declare function addRoutes(this: N8nApp, ignoredEndpoints: string[], restEndpoint: string): void;

package/dist/src/UserManagement/routes/index.js ADDED Viewed

@@ -0,0 +1,100 @@
+"use strict";
+Object.defineProperty(exports, "__esModule", { value: true });
+exports.addRoutes = void 0;
+const cookieParser = require("cookie-parser");
+const passport = require("passport");
+const passport_jwt_1 = require("passport-jwt");
+const jwt = require("jsonwebtoken");
+const n8n_workflow_1 = require("n8n-workflow");
+const auth_1 = require("./auth");
+const config = require("../../../config");
+const constants_1 = require("../../constants");
+const jwt_1 = require("../auth/jwt");
+const me_1 = require("./me");
+const users_1 = require("./users");
+const passwordReset_1 = require("./passwordReset");
+const owner_1 = require("./owner");
+const UserManagementHelper_1 = require("../UserManagementHelper");
+function addRoutes(ignoredEndpoints, restEndpoint) {
+    this.app.use(cookieParser());
+    const options = {
+        jwtFromRequest: (req) => {
+            var _a, _b;
+            return (_b = (_a = req.cookies) === null || _a === void 0 ? void 0 : _a[constants_1.AUTH_COOKIE_NAME]) !== null && _b !== void 0 ? _b : null;
+        },
+        secretOrKey: config.get('userManagement.jwtSecret'),
+    };
+    passport.use(new passport_jwt_1.Strategy(options, async function validateCookieContents(jwtPayload, done) {
+        try {
+            const user = await jwt_1.resolveJwtContent(jwtPayload);
+            return done(null, user);
+        }
+        catch (error) {
+            n8n_workflow_1.LoggerProxy.debug('Failed to extract user from JWT payload', { jwtPayload });
+            return done(null, false, { message: 'User not found' });
+        }
+    }));
+    this.app.use(passport.initialize());
+    this.app.use((req, res, next) => {
+        if (req.method === 'OPTIONS' ||
+            req.url === '/index.html' ||
+            req.url === '/favicon.ico' ||
+            req.url.startsWith('/css/') ||
+            req.url.startsWith('/js/') ||
+            req.url.startsWith('/fonts/') ||
+            req.url.includes('.svg') ||
+            req.url.startsWith(`/${restEndpoint}/settings`) ||
+            req.url.startsWith(`/${restEndpoint}/login`) ||
+            req.url.startsWith(`/${restEndpoint}/logout`) ||
+            req.url.startsWith(`/${restEndpoint}/resolve-signup-token`) ||
+            UserManagementHelper_1.isPostUsersId(req, restEndpoint) ||
+            req.url.startsWith(`/${restEndpoint}/forgot-password`) ||
+            req.url.startsWith(`/${restEndpoint}/resolve-password-token`) ||
+            req.url.startsWith(`/${restEndpoint}/change-password`) ||
+            UserManagementHelper_1.isAuthExcluded(req.url, ignoredEndpoints)) {
+            return next();
+        }
+        return passport.authenticate('jwt', { session: false })(req, res, next);
+    });
+    this.app.use((req, res, next) => {
+        if (!req.user || (UserManagementHelper_1.isAuthenticatedRequest(req) && req.user.globalRole.name === 'owner')) {
+            next();
+            return;
+        }
+        const postRestrictedUrls = [`/${this.restEndpoint}/users`, `/${this.restEndpoint}/owner`];
+        const getRestrictedUrls = [`/${this.restEndpoint}/users`];
+        const trimmedUrl = req.url.endsWith('/') ? req.url.slice(0, -1) : req.url;
+        if ((req.method === 'POST' && postRestrictedUrls.includes(trimmedUrl)) ||
+            (req.method === 'GET' && getRestrictedUrls.includes(trimmedUrl)) ||
+            (req.method === 'DELETE' &&
+                new RegExp(`/${restEndpoint}/users/[^/]+`, 'gm').test(trimmedUrl)) ||
+            (req.method === 'POST' &&
+                new RegExp(`/${restEndpoint}/users/[^/]+/reinvite`, 'gm').test(trimmedUrl)) ||
+            new RegExp(`/${restEndpoint}/owner/[^/]+`, 'gm').test(trimmedUrl)) {
+            n8n_workflow_1.LoggerProxy.verbose('User attempted to access endpoint without authorization', {
+                endpoint: `${req.method} ${trimmedUrl}`,
+                userId: UserManagementHelper_1.isAuthenticatedRequest(req) ? req.user.id : 'unknown',
+            });
+            res.status(403).json({ status: 'error', message: 'Unauthorized' });
+            return;
+        }
+        next();
+    });
+    this.app.use(async (req, res, next) => {
+        const cookieAuth = options.jwtFromRequest(req);
+        if (cookieAuth && req.user) {
+            const cookieContents = jwt.decode(cookieAuth);
+            if (cookieContents.exp * 1000 - Date.now() < 259200000) {
+                await jwt_1.issueCookie(res, req.user);
+            }
+        }
+        next();
+    });
+    auth_1.authenticationMethods.apply(this);
+    owner_1.ownerNamespace.apply(this);
+    me_1.meNamespace.apply(this);
+    passwordReset_1.passwordResetNamespace.apply(this);
+    users_1.usersNamespace.apply(this);
+}
+exports.addRoutes = addRoutes;
+//# sourceMappingURL=index.js.map

package/dist/src/UserManagement/routes/index.js.map ADDED Viewed

@@ -0,0 +1 @@

+ {"version":3,"file":"index.js","sourceRoot":"","sources":["../../../../src/UserManagement/routes/index.ts"],"names":[],"mappings":";;;AAIA,8CAA+C;AAC/C,qCAAqC;AACrC,+CAAwC;AAExC,oCAAoC;AACpC,+CAAqD;AAGrD,iCAA+C;AAC/C,0CAA2C;AAC3C,+CAAmD;AACnD,qCAA6D;AAC7D,6BAAmC;AACnC,mCAAyC;AACzC,mDAAyD;AAEzD,mCAAyC;AACzC,kEAAgG;AAEhG,SAAgB,SAAS,CAAe,gBAA0B,EAAE,YAAoB;IAEvF,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,YAAY,EAAE,CAAC,CAAC;IAE7B,MAAM,OAAO,GAAG;QACf,cAAc,EAAE,CAAC,GAAY,EAAE,EAAE;;YAEhC,OAAO,MAAC,MAAA,GAAG,CAAC,OAAO,0CAAG,4BAAgB,CAAwB,mCAAI,IAAI,CAAC;QACxE,CAAC;QACD,WAAW,EAAE,MAAM,CAAC,GAAG,CAAC,0BAA0B,CAAW;KAC7D,CAAC;IAEF,QAAQ,CAAC,GAAG,CACX,IAAI,uBAAQ,CAAC,OAAO,EAAE,KAAK,UAAU,sBAAsB,CAAC,UAAsB,EAAE,IAAI;QACvF,IAAI;YACH,MAAM,IAAI,GAAG,MAAM,uBAAiB,CAAC,UAAU,CAAC,CAAC;YACjD,OAAO,IAAI,CAAC,IAAI,EAAE,IAAI,CAAC,CAAC;SACxB;QAAC,OAAO,KAAK,EAAE;YACf,0BAAM,CAAC,KAAK,CAAC,yCAAyC,EAAE,EAAE,UAAU,EAAE,CAAC,CAAC;YACxE,OAAO,IAAI,CAAC,IAAI,EAAE,KAAK,EAAE,EAAE,OAAO,EAAE,gBAAgB,EAAE,CAAC,CAAC;SACxD;IACF,CAAC,CAAC,CACF,CAAC;IAEF,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,UAAU,EAAE,CAAC,CAAC;IAEpC,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,GAAY,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QAChE,IAGC,GAAG,CAAC,MAAM,KAAK,SAAS;YACxB,GAAG,CAAC,GAAG,KAAK,aAAa;YACzB,GAAG,CAAC,GAAG,KAAK,cAAc;YAC1B,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,OAAO,CAAC;YAC3B,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,MAAM,CAAC;YAC1B,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,SAAS,CAAC;YAC7B,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,MAAM,CAAC;YACxB,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,YAAY,WAAW,CAAC;YAC/C,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,YAAY,QAAQ,CAAC;YAC5C,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,YAAY,SAAS,CAAC;YAC7C,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,YAAY,uBAAuB,CAAC;YAC3D,oCAAa,CAAC,GAAG,EAAE,YAAY,CAAC;YAChC,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,YAAY,kBAAkB,CAAC;YACtD,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,YAAY,yBAAyB,CAAC;YAC7D,GAAG,CAAC,GAAG,CAAC,UAAU,CAAC,IAAI,YAAY,kBAAkB,CAAC;YACtD,qCAAc,CAAC,GAAG,CAAC,GAAG,EAAE,gBAAgB,CAAC,EACxC;YACD,OAAO,IAAI,EAAE,CAAC;SACd;QAED,OAAO,QAAQ,CAAC,YAAY,CAAC,KAAK,EAAE,EAAE,OAAO,EAAE,KAAK,EAAE,CAAC,CAAC,GAAG,EAAE,GAAG,EAAE,IAAI,CAAC,CAAC;IACzE,CAAC,CAAC,CAAC;IAEH,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,CAAC,GAAmC,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QAGvF,IAAI,CAAC,GAAG,CAAC,IAAI,IAAI,CAAC,6CAAsB,CAAC,GAAG,CAAC,IAAI,GAAG,CAAC,IAAI,CAAC,UAAU,CAAC,IAAI,KAAK,OAAO,CAAC,EAAE;YACvF,IAAI,EAAE,CAAC;YACP,OAAO;SACP;QAED,MAAM,kBAAkB,GAAG,CAAC,IAAI,IAAI,CAAC,YAAY,QAAQ,EAAE,IAAI,IAAI,CAAC,YAAY,QAAQ,CAAC,CAAC;QAC1F,MAAM,iBAAiB,GAAG,CAAC,IAAI,IAAI,CAAC,YAAY,QAAQ,CAAC,CAAC;QAC1D,MAAM,UAAU,GAAG,GAAG,CAAC,GAAG,CAAC,QAAQ,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,CAAC,CAAC,EAAE,CAAC,CAAC,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,GAAG,CAAC;QAC1E,IACC,CAAC,GAAG,CAAC,MAAM,KAAK,MAAM,IAAI,kBAAkB,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;YAClE,CAAC,GAAG,CAAC,MAAM,KAAK,KAAK,IAAI,iBAAiB,CAAC,QAAQ,CAAC,UAAU,CAAC,CAAC;YAChE,CAAC,GAAG,CAAC,MAAM,KAAK,QAAQ;gBACvB,IAAI,MAAM,CAAC,IAAI,YAAY,cAAc,EAAE,IAAI,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YACnE,CAAC,GAAG,CAAC,MAAM,KAAK,MAAM;gBACrB,IAAI,MAAM,CAAC,IAAI,YAAY,uBAAuB,EAAE,IAAI,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,CAAC;YAC5E,IAAI,MAAM,CAAC,IAAI,YAAY,cAAc,EAAE,IAAI,CAAC,CAAC,IAAI,CAAC,UAAU,CAAC,EAChE;YACD,0BAAM,CAAC,OAAO,CAAC,yDAAyD,EAAE;gBACzE,QAAQ,EAAE,GAAG,GAAG,CAAC,MAAM,IAAI,UAAU,EAAE;gBACvC,MAAM,EAAE,6CAAsB,CAAC,GAAG,CAAC,CAAC,CAAC,CAAC,GAAG,CAAC,IAAI,CAAC,EAAE,CAAC,CAAC,CAAC,SAAS;aAC7D,CAAC,CAAC;YACH,GAAG,CAAC,MAAM,CAAC,GAAG,CAAC,CAAC,IAAI,CAAC,EAAE,MAAM,EAAE,OAAO,EAAE,OAAO,EAAE,cAAc,EAAE,CAAC,CAAC;YACnE,OAAO;SACP;QAED,IAAI,EAAE,CAAC;IACR,CAAC,CAAC,CAAC;IAGH,IAAI,CAAC,GAAG,CAAC,GAAG,CAAC,KAAK,EAAE,GAAyB,EAAE,GAAa,EAAE,IAAkB,EAAE,EAAE;QACnF,MAAM,UAAU,GAAG,OAAO,CAAC,cAAc,CAAC,GAAG,CAAC,CAAC;QAC/C,IAAI,UAAU,IAAI,GAAG,CAAC,IAAI,EAAE;YAC3B,MAAM,cAAc,GAAG,GAAG,CAAC,MAAM,CAAC,UAAU,CAAiC,CAAC;YAC9E,IAAI,cAAc,CAAC,GAAG,GAAG,IAAI,GAAG,IAAI,CAAC,GAAG,EAAE,GAAG,SAAS,EAAE;gBAEvD,MAAM,iBAAW,CAAC,GAAG,EAAE,GAAG,CAAC,IAAI,CAAC,CAAC;aACjC;SACD;QACD,IAAI,EAAE,CAAC;IACR,CAAC,CAAC,CAAC;IAEH,4BAAqB,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAClC,sBAAc,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IAC3B,gBAAW,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACxB,sCAAsB,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;IACnC,sBAAc,CAAC,KAAK,CAAC,IAAI,CAAC,CAAC;AAC5B,CAAC;AAtGD,8BAsGC"}

package/dist/src/UserManagement/routes/me.d.ts ADDED Viewed

	@@ -0,0 +1,2 @@
1	+ import { N8nApp } from '../Interfaces';
2	+ export declare function meNamespace(this: N8nApp): void;