authorizer/server/resolvers/env.go

package resolvers

import (
	"context"
	"fmt"
	"strings"

	log "github.com/sirupsen/logrus"

	"github.com/authorizerdev/authorizer/server/constants"
	"github.com/authorizerdev/authorizer/server/graph/model"
	"github.com/authorizerdev/authorizer/server/memorystore"
	"github.com/authorizerdev/authorizer/server/refs"
	"github.com/authorizerdev/authorizer/server/token"
	"github.com/authorizerdev/authorizer/server/utils"
)

// EnvResolver is a resolver for config query
// This is admin only query
func EnvResolver(ctx context.Context) (*model.Env, error) {
	res := &model.Env{}

	gc, err := utils.GinContextFromContext(ctx)
	if err != nil {
		log.Debug("Failed to get GinContext: ", err)
		return res, err
	}

	if !token.IsSuperAdmin(gc) {
		log.Debug("Not logged in as super admin.")
		return res, fmt.Errorf("unauthorized")
	}

	// get clone of store
	store, err := memorystore.Provider.GetEnvStore()
	if err != nil {
		log.Debug("Failed to get env store: ", err)
		return res, err
	}

	if val, ok := store[constants.EnvKeyAccessTokenExpiryTime]; ok {
		res.AccessTokenExpiryTime = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyAdminSecret]; ok {
		res.AdminSecret = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyClientID]; ok {
		res.ClientID = val.(string)
	}
	if val, ok := store[constants.EnvKeyClientSecret]; ok {
		res.ClientSecret = val.(string)
	}
	if val, ok := store[constants.EnvKeyDatabaseURL]; ok {
		res.DatabaseURL = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyDatabaseName]; ok {
		res.DatabaseName = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyDatabaseType]; ok {
		res.DatabaseType = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyDatabaseUsername]; ok {
		res.DatabaseUsername = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyDatabasePassword]; ok {
		res.DatabasePassword = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyDatabaseHost]; ok {
		res.DatabaseHost = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyDatabasePort]; ok {
		res.DatabasePort = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyCustomAccessTokenScript]; ok {
		res.CustomAccessTokenScript = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeySmtpHost]; ok {
		res.SMTPHost = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeySmtpPort]; ok {
		res.SMTPPort = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeySmtpUsername]; ok {
		res.SMTPUsername = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeySmtpPassword]; ok {
		res.SMTPPassword = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeySenderEmail]; ok {
		res.SenderEmail = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyJwtType]; ok {
		res.JwtType = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyJwtSecret]; ok {
		res.JwtSecret = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyJwtRoleClaim]; ok {
		res.JwtRoleClaim = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyJwtPublicKey]; ok {
		res.JwtPublicKey = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyJwtPrivateKey]; ok {
		res.JwtPrivateKey = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyAppURL]; ok {
		res.AppURL = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyRedisURL]; ok {
		res.RedisURL = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyResetPasswordURL]; ok {
		res.ResetPasswordURL = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyGoogleClientID]; ok {
		res.GoogleClientID = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyGoogleClientSecret]; ok {
		res.GoogleClientSecret = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyFacebookClientID]; ok {
		res.FacebookClientID = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyFacebookClientSecret]; ok {
		res.FacebookClientSecret = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyGithubClientID]; ok {
		res.GithubClientID = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyGithubClientSecret]; ok {
		res.GithubClientSecret = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyLinkedInClientID]; ok {
		res.LinkedinClientID = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyLinkedInClientSecret]; ok {
		res.LinkedinClientSecret = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyAppleClientID]; ok {
		res.AppleClientID = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyAppleClientSecret]; ok {
		res.AppleClientSecret = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyOrganizationName]; ok {
		res.OrganizationName = refs.NewStringRef(val.(string))
	}
	if val, ok := store[constants.EnvKeyOrganizationLogo]; ok {
		res.OrganizationLogo = refs.NewStringRef(val.(string))
	}

	// string slice vars
	res.AllowedOrigins = strings.Split(store[constants.EnvKeyAllowedOrigins].(string), ",")
	res.Roles = strings.Split(store[constants.EnvKeyRoles].(string), ",")
	res.DefaultRoles = strings.Split(store[constants.EnvKeyDefaultRoles].(string), ",")
	// since protected role is optional default split gives array with empty string
	protectedRoles := strings.Split(store[constants.EnvKeyProtectedRoles].(string), ",")
	res.ProtectedRoles = []string{}
	for _, role := range protectedRoles {
		if strings.Trim(role, " ") != "" {
			res.ProtectedRoles = append(res.ProtectedRoles, strings.Trim(role, " "))
		}
	}

	// bool vars
	res.DisableEmailVerification = store[constants.EnvKeyDisableEmailVerification].(bool)
	res.DisableBasicAuthentication = store[constants.EnvKeyDisableBasicAuthentication].(bool)
	res.DisableMagicLinkLogin = store[constants.EnvKeyDisableMagicLinkLogin].(bool)
	res.DisableLoginPage = store[constants.EnvKeyDisableLoginPage].(bool)
	res.DisableSignUp = store[constants.EnvKeyDisableSignUp].(bool)
	res.DisableStrongPassword = store[constants.EnvKeyDisableStrongPassword].(bool)

	return res, nil
}
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`package resolvers`

			`import (`
			`"context"`
			`"fmt"`
fix: env saving 2022-05-31 07:41:54 +00:00			`"strings"`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00
feat: add loggging to all resolvers 2022-05-24 07:12:29 +00:00			`log "github.com/sirupsen/logrus"`

feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`"github.com/authorizerdev/authorizer/server/constants"`
			`"github.com/authorizerdev/authorizer/server/graph/model"`
fix: memory store upgrade in resolvers 2022-05-30 03:49:55 +00:00			`"github.com/authorizerdev/authorizer/server/memorystore"`
fix: refs 2022-07-15 16:41:08 +00:00			`"github.com/authorizerdev/authorizer/server/refs"`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`"github.com/authorizerdev/authorizer/server/token"`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`"github.com/authorizerdev/authorizer/server/utils"`
			`)`

fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`// EnvResolver is a resolver for config query`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// This is admin only query`
fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`func EnvResolver(ctx context.Context) (*model.Env, error) {`
fix: env saving 2022-05-31 07:41:54 +00:00			`res := &model.Env{}`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00
feat: add loggging to all resolvers 2022-05-24 07:12:29 +00:00			`gc, err := utils.GinContextFromContext(ctx)`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`if err != nil {`
fix: format logs 2022-05-25 07:00:22 +00:00			`log.Debug("Failed to get GinContext: ", err)`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`return res, err`
			`}`

Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`if !token.IsSuperAdmin(gc) {`
feat: add loggging to all resolvers 2022-05-24 07:12:29 +00:00			`log.Debug("Not logged in as super admin.")`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`return res, fmt.Errorf("unauthorized")`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// get clone of store`
fix: memory store upgrade in resolvers 2022-05-30 03:49:55 +00:00			`store, err := memorystore.Provider.GetEnvStore()`
			`if err != nil {`
			`log.Debug("Failed to get env store: ", err)`
			`return res, err`
			`}`
fix: env saving 2022-05-31 07:41:54 +00:00
			`if val, ok := store[constants.EnvKeyAccessTokenExpiryTime]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.AccessTokenExpiryTime = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyAdminSecret]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.AdminSecret = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyClientID]; ok {`
			`res.ClientID = val.(string)`
			`}`
			`if val, ok := store[constants.EnvKeyClientSecret]; ok {`
			`res.ClientSecret = val.(string)`
			`}`
			`if val, ok := store[constants.EnvKeyDatabaseURL]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.DatabaseURL = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyDatabaseName]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.DatabaseName = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyDatabaseType]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.DatabaseType = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyDatabaseUsername]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.DatabaseUsername = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyDatabasePassword]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.DatabasePassword = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyDatabaseHost]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.DatabaseHost = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyDatabasePort]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.DatabasePort = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyCustomAccessTokenScript]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.CustomAccessTokenScript = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeySmtpHost]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.SMTPHost = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeySmtpPort]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.SMTPPort = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeySmtpUsername]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.SMTPUsername = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeySmtpPassword]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.SMTPPassword = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeySenderEmail]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.SenderEmail = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyJwtType]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.JwtType = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyJwtSecret]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.JwtSecret = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyJwtRoleClaim]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.JwtRoleClaim = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyJwtPublicKey]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.JwtPublicKey = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyJwtPrivateKey]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.JwtPrivateKey = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyAppURL]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.AppURL = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyRedisURL]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.RedisURL = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyResetPasswordURL]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.ResetPasswordURL = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyGoogleClientID]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.GoogleClientID = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyGoogleClientSecret]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.GoogleClientSecret = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyFacebookClientID]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.FacebookClientID = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyFacebookClientSecret]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.FacebookClientSecret = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyGithubClientID]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.GithubClientID = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyGithubClientSecret]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.GithubClientSecret = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
feat: add linkedin login 2022-06-06 16:38:32 +00:00			`if val, ok := store[constants.EnvKeyLinkedInClientID]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.LinkedinClientID = refs.NewStringRef(val.(string))`
feat: add linkedin login 2022-06-06 16:38:32 +00:00			`}`
			`if val, ok := store[constants.EnvKeyLinkedInClientSecret]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.LinkedinClientSecret = refs.NewStringRef(val.(string))`
feat: add linkedin login 2022-06-06 16:38:32 +00:00			`}`
feat: add base for apple login 2022-06-12 09:19:48 +00:00			`if val, ok := store[constants.EnvKeyAppleClientID]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.AppleClientID = refs.NewStringRef(val.(string))`
feat: add base for apple login 2022-06-12 09:19:48 +00:00			`}`
			`if val, ok := store[constants.EnvKeyAppleClientSecret]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.AppleClientSecret = refs.NewStringRef(val.(string))`
feat: add base for apple login 2022-06-12 09:19:48 +00:00			`}`
fix: env saving 2022-05-31 07:41:54 +00:00			`if val, ok := store[constants.EnvKeyOrganizationName]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.OrganizationName = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
			`if val, ok := store[constants.EnvKeyOrganizationLogo]; ok {`
fix: refs 2022-07-15 16:41:08 +00:00			`res.OrganizationLogo = refs.NewStringRef(val.(string))`
fix: env saving 2022-05-31 07:41:54 +00:00			`}`
fix: memory store upgrade in resolvers 2022-05-30 03:49:55 +00:00
			`// string slice vars`
fix: env saving 2022-05-31 07:41:54 +00:00			`res.AllowedOrigins = strings.Split(store[constants.EnvKeyAllowedOrigins].(string), ",")`
			`res.Roles = strings.Split(store[constants.EnvKeyRoles].(string), ",")`
			`res.DefaultRoles = strings.Split(store[constants.EnvKeyDefaultRoles].(string), ",")`
fix: dashboard roles 2022-06-07 02:00:01 +00:00			`// since protected role is optional default split gives array with empty string`
			`protectedRoles := strings.Split(store[constants.EnvKeyProtectedRoles].(string), ",")`
			`res.ProtectedRoles = []string{}`
			`for _, role := range protectedRoles {`
			`if strings.Trim(role, " ") != "" {`
			`res.ProtectedRoles = append(res.ProtectedRoles, strings.Trim(role, " "))`
			`}`
			`}`
fix: memory store upgrade in resolvers 2022-05-30 03:49:55 +00:00
			`// bool vars`
fix: env saving 2022-05-31 07:41:54 +00:00			`res.DisableEmailVerification = store[constants.EnvKeyDisableEmailVerification].(bool)`
			`res.DisableBasicAuthentication = store[constants.EnvKeyDisableBasicAuthentication].(bool)`
			`res.DisableMagicLinkLogin = store[constants.EnvKeyDisableMagicLinkLogin].(bool)`
			`res.DisableLoginPage = store[constants.EnvKeyDisableLoginPage].(bool)`
			`res.DisableSignUp = store[constants.EnvKeyDisableSignUp].(bool)`
feat: add ability to disable strong password 2022-06-18 10:01:57 +00:00			`res.DisableStrongPassword = store[constants.EnvKeyDisableStrongPassword].(bool)`
fix: default access token expiry time 2022-03-25 14:59:00 +00:00
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`return res, nil`
			`}`