npm - wabe - Versions diffs - 0.6.9 → 0.6.11 - Mend

wabe 0.6.9 → 0.6.11

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (162) hide show

package/README.md +156 -50
package/bucket/b.txt +1 -0
package/dev/index.ts +215 -0
package/dist/authentication/Session.d.ts +4 -1
package/dist/authentication/interface.d.ts +16 -0
package/dist/cron/index.d.ts +0 -1
package/dist/database/DatabaseController.d.ts +41 -13
package/dist/database/interface.d.ts +1 -0
package/dist/email/DevAdapter.d.ts +0 -1
package/dist/email/interface.d.ts +1 -1
package/dist/graphql/resolvers.d.ts +4 -2
package/dist/hooks/index.d.ts +8 -2
package/dist/index.d.ts +0 -1
package/dist/index.js +32144 -32058
package/dist/schema/Schema.d.ts +2 -1
package/dist/server/index.d.ts +4 -2
package/dist/utils/crypto.d.ts +7 -0
package/dist/utils/helper.d.ts +5 -1
package/generated/schema.graphql +22 -14
package/generated/wabe.ts +4 -4
package/package.json +23 -23
package/src/authentication/OTP.test.ts +69 -0
package/src/authentication/OTP.ts +64 -0
package/src/authentication/Session.test.ts +629 -0
package/src/authentication/Session.ts +493 -0
package/src/authentication/defaultAuthentication.ts +209 -0
package/src/authentication/index.ts +3 -0
package/src/authentication/interface.ts +155 -0
package/src/authentication/oauth/GitHub.test.ts +91 -0
package/src/authentication/oauth/GitHub.ts +121 -0
package/src/authentication/oauth/Google.test.ts +91 -0
package/src/authentication/oauth/Google.ts +101 -0
package/src/authentication/oauth/Oauth2Client.test.ts +219 -0
package/src/authentication/oauth/Oauth2Client.ts +135 -0
package/src/authentication/oauth/index.ts +2 -0
package/src/authentication/oauth/utils.test.ts +33 -0
package/src/authentication/oauth/utils.ts +27 -0
package/src/authentication/providers/EmailOTP.test.ts +127 -0
package/src/authentication/providers/EmailOTP.ts +84 -0
package/src/authentication/providers/EmailPassword.test.ts +176 -0
package/src/authentication/providers/EmailPassword.ts +116 -0
package/src/authentication/providers/EmailPasswordSRP.test.ts +208 -0
package/src/authentication/providers/EmailPasswordSRP.ts +179 -0
package/src/authentication/providers/GitHub.ts +24 -0
package/src/authentication/providers/Google.ts +24 -0
package/src/authentication/providers/OAuth.test.ts +185 -0
package/src/authentication/providers/OAuth.ts +106 -0
package/src/authentication/providers/PhonePassword.test.ts +176 -0
package/src/authentication/providers/PhonePassword.ts +115 -0
package/src/authentication/providers/QRCodeOTP.test.ts +77 -0
package/src/authentication/providers/QRCodeOTP.ts +58 -0
package/src/authentication/providers/index.ts +6 -0
package/src/authentication/resolvers/refreshResolver.test.ts +30 -0
package/src/authentication/resolvers/refreshResolver.ts +19 -0
package/src/authentication/resolvers/signInWithResolver.inte.test.ts +59 -0
package/src/authentication/resolvers/signInWithResolver.test.ts +293 -0
package/src/authentication/resolvers/signInWithResolver.ts +92 -0
package/src/authentication/resolvers/signOutResolver.test.ts +38 -0
package/src/authentication/resolvers/signOutResolver.ts +18 -0
package/src/authentication/resolvers/signUpWithResolver.test.ts +180 -0
package/src/authentication/resolvers/signUpWithResolver.ts +65 -0
package/src/authentication/resolvers/verifyChallenge.test.ts +133 -0
package/src/authentication/resolvers/verifyChallenge.ts +62 -0
package/src/authentication/roles.test.ts +49 -0
package/src/authentication/roles.ts +40 -0
package/src/authentication/utils.test.ts +97 -0
package/src/authentication/utils.ts +39 -0
package/src/cache/InMemoryCache.test.ts +62 -0
package/src/cache/InMemoryCache.ts +45 -0
package/src/cron/index.test.ts +17 -0
package/src/cron/index.ts +43 -0
package/src/database/DatabaseController.test.ts +613 -0
package/src/database/DatabaseController.ts +1007 -0
package/src/database/index.test.ts +1372 -0
package/src/database/index.ts +9 -0
package/src/database/interface.ts +302 -0
package/src/email/DevAdapter.ts +7 -0
package/src/email/EmailController.test.ts +29 -0
package/src/email/EmailController.ts +13 -0
package/src/email/index.ts +2 -0
package/src/email/interface.ts +36 -0
package/src/email/templates/sendOtpCode.ts +120 -0
package/src/file/FileController.ts +28 -0
package/src/file/FileDevAdapter.ts +51 -0
package/src/file/hookDeleteFile.ts +25 -0
package/src/file/hookReadFile.ts +66 -0
package/src/file/hookUploadFile.ts +50 -0
package/src/file/index.test.ts +932 -0
package/src/file/index.ts +2 -0
package/src/file/interface.ts +39 -0
package/src/graphql/GraphQLSchema.test.ts +4408 -0
package/src/graphql/GraphQLSchema.ts +880 -0
package/src/graphql/index.ts +2 -0
package/src/graphql/parseGraphqlSchema.ts +85 -0
package/src/graphql/parser.test.ts +203 -0
package/src/graphql/parser.ts +542 -0
package/src/graphql/pointerAndRelationFunction.ts +191 -0
package/src/graphql/resolvers.ts +442 -0
package/src/graphql/tests/aggregation.test.ts +1115 -0
package/src/graphql/tests/e2e.test.ts +590 -0
package/src/graphql/tests/scalars.test.ts +250 -0
package/src/graphql/types.ts +227 -0
package/src/hooks/HookObject.test.ts +122 -0
package/src/hooks/HookObject.ts +165 -0
package/src/hooks/authentication.ts +67 -0
package/src/hooks/createUser.test.ts +77 -0
package/src/hooks/createUser.ts +10 -0
package/src/hooks/defaultFields.test.ts +176 -0
package/src/hooks/defaultFields.ts +32 -0
package/src/hooks/deleteSession.test.ts +181 -0
package/src/hooks/deleteSession.ts +20 -0
package/src/hooks/hashFieldHook.test.ts +152 -0
package/src/hooks/hashFieldHook.ts +89 -0
package/src/hooks/index.test.ts +258 -0
package/src/hooks/index.ts +414 -0
package/src/hooks/permissions.test.ts +412 -0
package/src/hooks/permissions.ts +93 -0
package/src/hooks/protected.test.ts +551 -0
package/src/hooks/protected.ts +60 -0
package/src/hooks/searchableFields.test.ts +147 -0
package/src/hooks/searchableFields.ts +86 -0
package/src/hooks/session.test.ts +134 -0
package/src/hooks/session.ts +76 -0
package/src/hooks/setEmail.test.ts +216 -0
package/src/hooks/setEmail.ts +33 -0
package/src/hooks/setupAcl.test.ts +618 -0
package/src/hooks/setupAcl.ts +25 -0
package/src/index.ts +9 -0
package/src/schema/Schema.test.ts +482 -0
package/src/schema/Schema.ts +757 -0
package/src/schema/defaultResolvers.ts +93 -0
package/src/schema/index.ts +1 -0
package/src/schema/resolvers/meResolver.test.ts +62 -0
package/src/schema/resolvers/meResolver.ts +10 -0
package/src/schema/resolvers/resetPassword.test.ts +341 -0
package/src/schema/resolvers/resetPassword.ts +63 -0
package/src/schema/resolvers/sendEmail.test.ts +118 -0
package/src/schema/resolvers/sendEmail.ts +21 -0
package/src/schema/resolvers/sendOtpCode.test.ts +141 -0
package/src/schema/resolvers/sendOtpCode.ts +52 -0
package/src/security.test.ts +3434 -0
package/src/server/defaultSessionHandler.test.ts +62 -0
package/src/server/defaultSessionHandler.ts +105 -0
package/src/server/generateCodegen.ts +433 -0
package/src/server/index.test.ts +532 -0
package/src/server/index.ts +334 -0
package/src/server/interface.ts +11 -0
package/src/server/routes/authHandler.ts +169 -0
package/src/server/routes/index.ts +39 -0
package/src/utils/crypto.test.ts +41 -0
package/src/utils/crypto.ts +105 -0
package/src/utils/export.ts +11 -0
package/src/utils/helper.ts +204 -0
package/src/utils/index.test.ts +11 -0
package/src/utils/index.ts +189 -0
package/src/utils/preload.ts +8 -0
package/src/utils/testHelper.ts +116 -0
package/tsconfig.json +32 -0
package/bunfig.toml +0 -4
package/dist/ai/index.d.ts +0 -1
package/dist/ai/interface.d.ts +0 -9
/package/dist/server/{defaultHandlers.d.ts → defaultSessionHandler.d.ts} +0 -0

package/src/hooks/setupAcl.test.ts ADDED Viewed

@@ -0,0 +1,618 @@
+import { describe, beforeAll, afterAll, it, expect, afterEach, mock } from 'bun:test'
+import { gql, type GraphQLClient } from 'graphql-request'
+import {
+	getAnonymousClient,
+	getGraphqlClient,
+	getUserClient,
+	type DevWabeTypes,
+} from '../utils/helper'
+import { setupTests, closeTests } from '../utils/testHelper'
+import type { Wabe } from '../server'
+const createUserAndUpdateRole = async ({
+	anonymousClient,
+	rootClient,
+	roleName,
+	port,
+}: {
+	port: number
+	anonymousClient: GraphQLClient
+	rootClient: GraphQLClient
+	roleName: string
+}) => {
+	const res = await anonymousClient.request<any>(graphql.signUpWith, {
+		input: {
+			authentication: {
+				emailPassword: {
+					email: 'email@test.fr',
+					password: 'password',
+				},
+			},
+		},
+	})
+	const resOfRoles = await rootClient.request<any>(gql`
+			query getRoles {
+					roles(where: {name: {equalTo: "${roleName}"}}) {
+			    edges {
+		    			node {
+		     			 	id
+		    			}
+		  			}
+					}
+			}
+		`)
+	const roleId = resOfRoles.roles.edges[0].node.id
+	await rootClient.request<any>(gql`
+			mutation updateUser {
+			  updateUser(input: {id: "${res.signUpWith.id}", fields: {role: {link: "${roleId}"}}}) {
+		  			user {
+		    			id
+		  			}
+					}
+			}
+		`)
+	const userClient = getUserClient(port, {
+		accessToken: res.signUpWith.accessToken,
+	})
+	return {
+		userClient,
+		roleId,
+		userId: res.signUpWith.id,
+		accessToken: res.signUpWith.accessToken,
+		refreshToken: res.signUpWith.refreshToken,
+	}
+}
+const getRoleNameFromId = async (roleId: string, rootClient: GraphQLClient) => {
+	const resOfRoles = await rootClient.request<any>(gql`
+			query getRoles {
+					roles(where: {id: {equalTo: "${roleId}"}}) {
+			    edges {
+		    			node {
+		     			 	name
+		    			}
+		  			}
+					}
+			}
+		`)
+	return resOfRoles.roles.edges[0].node.name
+}
+describe('setupAcl', () => {
+	let wabe: Wabe<DevWabeTypes>
+	let port: number
+	let anonymousClient: GraphQLClient
+	let rootClient: GraphQLClient
+	const mockCallback = mock(() => {})
+	beforeAll(async () => {
+		const setup = await setupTests([
+			{
+				name: 'SetupACL',
+				fields: {
+					test: {
+						type: 'String',
+					},
+				},
+				permissions: {
+					create: {
+						requireAuthentication: false,
+					},
+					acl: async (hookObject) => {
+						await hookObject.addACL('users', {
+							userId: hookObject.context.user?.id || '',
+							read: true,
+							write: true,
+						})
+						await hookObject.addACL('roles', {
+							// @ts-expect-error
+							role: 'Client',
+							read: true,
+							write: true,
+						})
+					},
+				},
+			},
+			{
+				name: 'SetupACL2',
+				fields: {
+					test: {
+						type: 'String',
+					},
+				},
+				permissions: {
+					create: {
+						requireAuthentication: false,
+					},
+				},
+			},
+			{
+				name: 'SetupACL3',
+				fields: {
+					test: {
+						type: 'String',
+					},
+				},
+				permissions: {
+					create: {
+						requireAuthentication: false,
+					},
+					acl: async (hookObject) => {
+						await hookObject.addACL('users', null)
+						await hookObject.addACL('roles', null)
+					},
+				},
+			},
+			{
+				name: 'SetupACL4',
+				fields: {
+					test: {
+						type: 'String',
+					},
+				},
+				permissions: {
+					create: {
+						requireAuthentication: false,
+					},
+					acl: mockCallback,
+				},
+			},
+			{
+				name: 'SetupACL5',
+				fields: {
+					test: {
+						type: 'String',
+					},
+				},
+				permissions: {
+					create: {
+						requireAuthentication: false,
+					},
+					acl: async (hookObject) => {
+						await hookObject.addACL('users', null)
+						await hookObject.addACL('roles', {
+							// @ts-expect-error
+							role: 'Client',
+							read: true,
+							write: false,
+						})
+						await hookObject.addACL('roles', {
+							// @ts-expect-error
+							role: 'Client2',
+							read: false,
+							write: true,
+						})
+					},
+				},
+			},
+			{
+				name: 'SetupACL6',
+				fields: {
+					test: {
+						type: 'String',
+					},
+				},
+				permissions: {
+					create: {
+						requireAuthentication: false,
+					},
+					acl: async (hookObject) => {
+						await hookObject.addACL('users', {
+							userId: hookObject.context.user?.id || '',
+							read: true,
+							write: true,
+						})
+						await hookObject.addACL('roles', {
+							// @ts-expect-error
+							role: 'Client',
+							read: true,
+							write: true,
+						})
+					},
+				},
+			},
+			{
+				name: 'SetupACL7',
+				fields: {
+					test: {
+						type: 'String',
+					},
+				},
+				permissions: {
+					create: {
+						requireAuthentication: false,
+					},
+					acl: async (hookObject) => {
+						await hookObject.addACL('users', {
+							userId: hookObject.context.user?.id || '',
+							read: true,
+							write: true,
+						})
+						await hookObject.addACL('roles', {
+							// @ts-expect-error
+							role: 'Client',
+							read: true,
+							write: true,
+						})
+					},
+				},
+			},
+			{
+				name: 'SetupACL8',
+				fields: {
+					test: {
+						type: 'String',
+					},
+				},
+				permissions: {
+					create: {
+						requireAuthentication: false,
+					},
+					read: {
+						requireAuthentication: false,
+					},
+					acl: async (hookObject) => {
+						await hookObject.addACL('users', {
+							userId: hookObject.context.user?.id || '',
+							read: true,
+							write: true,
+						})
+						await hookObject.addACL('roles', {
+							// @ts-expect-error
+							role: 'Client',
+							read: true,
+							write: true,
+						})
+					},
+				},
+			},
+		])
+		wabe = setup.wabe
+		port = setup.port
+		anonymousClient = getAnonymousClient(port)
+		rootClient = getGraphqlClient(port)
+	})
+	afterAll(async () => {
+		await closeTests(wabe)
+	})
+	afterEach(async () => {
+		await rootClient.request<any>(graphql.deleteUsers)
+	})
+	it('should not access to an object created with anonymous client when only user that create the object can access to it with ACL', async () => {
+		await anonymousClient.request<any>(gql`
+			mutation createUser {
+				createUser(input: { fields: { name: "test" } }) {
+					user {
+						id
+						acl {
+							users {
+								userId
+							}
+						}
+					}
+				}
+			}
+		`)
+		const res = await rootClient.request<any>(gql`
+			query users {
+				users(where: { name: { equalTo: "test" } }) {
+					edges {
+						node {
+							id
+							acl {
+								users {
+									userId
+								}
+							}
+						}
+					}
+				}
+			}
+		`)
+		expect(res.users.edges[0].node.acl).not.toBeNull()
+	})
+	it('should add acl object with to owner (with role client2) is authenticated (on read)', async () => {
+		const { userClient, userId } = await createUserAndUpdateRole({
+			anonymousClient,
+			port,
+			roleName: 'Client2',
+			rootClient,
+		})
+		const setupResult = await userClient.request<any>(gql`
+			mutation createSetupACL8 {
+				createSetupACL8(input: { fields: { test: "test" } }) {
+					setupACL8 {
+						id
+						acl {
+							users {
+								userId
+								read
+								write
+							}
+							roles {
+								roleId
+								read
+								write
+							}
+						}
+					}
+				}
+			}
+		`)
+		const res = await rootClient.request<any>(gql`
+          query setupACL8 {
+              setupACL8(id: "${setupResult.createSetupACL8.setupACL8.id}") {
+                id
+                acl {
+                  users {
+                    userId
+                    read
+                    write
+                  }
+                  roles {
+                    roleId
+                    read
+                    write
+                  }
+                }
+              }
+            }
+          `)
+		// User
+		expect(res.setupACL8.acl.users[0].userId).toEqual(userId)
+		expect(res.setupACL8.acl.users[0].read).toEqual(true)
+		expect(res.setupACL8.acl.users[0].write).toEqual(true)
+		// Role
+		expect(await getRoleNameFromId(res.setupACL8.acl.roles[0].roleId, rootClient)).toEqual('Client')
+		expect(res.setupACL8.acl.roles[0].read).toEqual(true)
+		expect(res.setupACL8.acl.roles[0].write).toEqual(true)
+	})
+	it('should not update acl object if the acl function is not present in permissions in the class', async () => {
+		const res = await rootClient.request<any>(gql`
+			mutation createSetupACL2 {
+				createSetupACL2(input: { fields: { test: "test" } }) {
+					setupACL2 {
+						id
+						acl {
+							users {
+								userId
+								read
+								write
+							}
+							roles {
+								roleId
+								read
+								write
+							}
+						}
+					}
+				}
+			}
+		`)
+		expect(res.createSetupACL2.setupACL2.acl).toBeNull()
+	})
+	it('should set read and write to false if the null value is provided for users and roles', async () => {
+		await rootClient.request<any>(gql`
+			mutation createSetupACL3 {
+				createSetupACL3(input: { fields: { test: "test" } }) {
+					setupACL3 {
+						id
+					}
+				}
+			}
+		`)
+		const res = await rootClient.request<any>(gql`
+			query setupACL3s {
+				setupACL3s {
+					edges {
+						node {
+							id
+							acl {
+								users {
+									userId
+									read
+									write
+								}
+								roles {
+									roleId
+									read
+									write
+								}
+							}
+						}
+					}
+				}
+			}
+		`)
+		// User
+		expect(res.setupACL3s.edges[0].node.acl.users).toHaveLength(0)
+		// Role
+		expect(res.setupACL3s.edges[0].node.acl.roles).toHaveLength(0)
+	})
+	it('should call acl function if provided', async () => {
+		await rootClient.request<any>(gql`
+			mutation createSetupACL4 {
+				createSetupACL4(input: { fields: { test: "test" } }) {
+					setupACL4 {
+						id
+					}
+				}
+			}
+		`)
+		expect(mockCallback).toHaveBeenCalledTimes(1)
+	})
+	it('should get different role id for read and write if roles are different', async () => {
+		const setupResult = await rootClient.request<any>(gql`
+			mutation createSetupACL5 {
+				createSetupACL5(input: { fields: { test: "test" } }) {
+					setupACL5 {
+						id
+						acl {
+							users {
+								userId
+								read
+								write
+							}
+							roles {
+								roleId
+								read
+								write
+							}
+						}
+					}
+				}
+			}
+		`)
+		const res = await rootClient.request<any>(gql`
+          query setupACL5 {
+              setupACL5(id: "${setupResult.createSetupACL5.setupACL5.id}") {
+                id
+                acl {
+                  users {
+                    userId
+                    read
+                    write
+                  }
+                  roles {
+                    roleId
+                    read
+                    write
+                  }
+                }
+              }
+            }
+          `)
+		expect(res.setupACL5.acl.users).toHaveLength(0)
+		// Role
+		expect(await getRoleNameFromId(res.setupACL5.acl.roles[0].roleId, rootClient)).toEqual('Client')
+		expect(await getRoleNameFromId(res.setupACL5.acl.roles[1].roleId, rootClient)).toEqual(
+			'Client2',
+		)
+	})
+	it('should not setup acl if the acl field is already provided in the creation', async () => {
+		await rootClient.request<any>(gql`
+			mutation createSetupACL6 {
+				createSetupACL6(
+					input: {
+						fields: {
+							test: "test"
+							acl: {
+								users: [{ userId: "test", read: true, write: true }]
+								roles: [{ roleId: "test", read: true, write: true }]
+							}
+						}
+					}
+				) {
+					setupACL6 {
+						id
+						acl {
+							users {
+								userId
+								read
+								write
+							}
+							roles {
+								roleId
+								read
+								write
+							}
+						}
+					}
+				}
+			}
+		`)
+		const res = await rootClient.request<any>(gql`
+			query setupACLs {
+				setupACL6s {
+					edges {
+						node {
+							id
+							acl {
+								users {
+									userId
+									read
+									write
+								}
+								roles {
+									roleId
+									read
+									write
+								}
+							}
+						}
+					}
+				}
+			}
+		`)
+		expect(res.setupACL6s.edges[0].node.acl).toEqual({
+			users: [{ userId: 'test', read: true, write: true }],
+			roles: [{ roleId: 'test', read: true, write: true }],
+		})
+	})
+})
+const graphql = {
+	deleteUsers: gql`
+		mutation deleteUser {
+			deleteUsers(
+				input: { where: { authentication: { emailPassword: { email: { equalTo: "email@test.fr" } } } } }
+			) {
+				edges {
+					node {
+						id
+					}
+				}
+			}
+		}
+	`,
+	signUpWith: gql`
+		mutation signUpWith($input: SignUpWithInput!) {
+			signUpWith(input: $input) {
+				id
+				accessToken
+				refreshToken
+			}
+		}
+	`,
+}

package/src/hooks/setupAcl.ts ADDED Viewed

@@ -0,0 +1,25 @@
+import type { HookObject } from './HookObject'
+const setupAcl = async (hookObject: HookObject<any, any>) => {
+	const schemaPermissionsObject = hookObject.context.wabe.config.schema?.classes?.find(
+		(c) => c.name === hookObject.className,
+	)?.permissions
+	if (!schemaPermissionsObject) return
+	const { acl } = schemaPermissionsObject
+	if (hookObject.isFieldUpdated('acl') || !acl) return
+	if (acl) await acl(hookObject)
+}
+export const defaultSetupAclBeforeCreate = async (hookObject: HookObject<any, any>) => {
+	// ACL on user need an update mutation not upsertNewData
+	if (hookObject.className === 'User') return
+	await setupAcl(hookObject)
+}
+export const defaultSetupAclOnUserAfterCreate = async (hookObject: HookObject<any, any>) =>
+	setupAcl(hookObject)

package/src/index.ts ADDED Viewed

@@ -0,0 +1,9 @@
+export * from './server'
+export * from './hooks'
+export * from './schema'
+export * from './database'
+export * from './authentication'
+export * from './file'
+export * from './email'
+export * from './utils/export'
+export * from './cron'