Compare commits
13 Commits
feat/user-
...
1.1.21.bet
| Author | SHA1 | Date | |
|---|---|---|---|
|
c716638725 | ||
|
|
252cd1fa2d | ||
|
|
7c2693b086 | ||
|
|
eaa10ec5bc | ||
|
|
253128ca0c | ||
|
|
cddfe1e088 | ||
|
|
8e655bcb5b | ||
|
|
9a411e673c | ||
|
|
346c8e5a47 | ||
|
|
3cd99fe5f6 | ||
|
|
2bd92d6028 | ||
|
|
ff805e3ef2 | ||
|
|
0115128ee7 |
@@ -6,5 +6,4 @@ SMTP_HOST=smtp.mailtrap.io
|
|||||||
SMTP_PORT=2525
|
SMTP_PORT=2525
|
||||||
SMTP_USERNAME=test
|
SMTP_USERNAME=test
|
||||||
SMTP_PASSWORD=test
|
SMTP_PASSWORD=test
|
||||||
SENDER_EMAIL="info@authorizer.dev"
|
SENDER_EMAIL="info@authorizer.dev"
|
||||||
AWS_REGION=ap-south-1
|
|
||||||
8
Makefile
8
Makefile
@@ -23,20 +23,14 @@ test-arangodb:
|
|||||||
docker run -d --name authorizer_arangodb -p 8529:8529 -e ARANGO_NO_AUTH=1 arangodb/arangodb:3.8.4
|
docker run -d --name authorizer_arangodb -p 8529:8529 -e ARANGO_NO_AUTH=1 arangodb/arangodb:3.8.4
|
||||||
cd server && go clean --testcache && TEST_DBS="arangodb" go test -p 1 -v ./test
|
cd server && go clean --testcache && TEST_DBS="arangodb" go test -p 1 -v ./test
|
||||||
docker rm -vf authorizer_arangodb
|
docker rm -vf authorizer_arangodb
|
||||||
test-dynamodb:
|
|
||||||
docker run -d --name dynamodb-local-test -p 8000:8000 amazon/dynamodb-local:latest
|
|
||||||
cd server && go clean --testcache && TEST_DBS="dynamodb" go test -p 1 -v ./test
|
|
||||||
docker rm -vf dynamodb-local-test
|
|
||||||
test-all-db:
|
test-all-db:
|
||||||
rm -rf server/test/test.db && rm -rf test.db
|
rm -rf server/test/test.db && rm -rf test.db
|
||||||
docker run -d --name authorizer_scylla_db -p 9042:9042 scylladb/scylla
|
docker run -d --name authorizer_scylla_db -p 9042:9042 scylladb/scylla
|
||||||
docker run -d --name authorizer_mongodb_db -p 27017:27017 mongo:4.4.15
|
docker run -d --name authorizer_mongodb_db -p 27017:27017 mongo:4.4.15
|
||||||
docker run -d --name authorizer_arangodb -p 8529:8529 -e ARANGO_NO_AUTH=1 arangodb/arangodb:3.8.4
|
docker run -d --name authorizer_arangodb -p 8529:8529 -e ARANGO_NO_AUTH=1 arangodb/arangodb:3.8.4
|
||||||
docker run -d --name dynamodb-local-test -p 8000:8000 amazon/dynamodb-local:latest
|
cd server && go clean --testcache && TEST_DBS="sqlite,mongodb,arangodb,scylladb" go test -p 1 -v ./test
|
||||||
cd server && go clean --testcache && TEST_DBS="sqlite,mongodb,arangodb,scylladb,dynamodb" go test -p 1 -v ./test
|
|
||||||
docker rm -vf authorizer_scylla_db
|
docker rm -vf authorizer_scylla_db
|
||||||
docker rm -vf authorizer_mongodb_db
|
docker rm -vf authorizer_mongodb_db
|
||||||
docker rm -vf authorizer_arangodb
|
docker rm -vf authorizer_arangodb
|
||||||
docker rm -vf dynamodb-local-test
|
|
||||||
generate:
|
generate:
|
||||||
cd server && go run github.com/99designs/gqlgen generate && go mod tidy
|
cd server && go run github.com/99designs/gqlgen generate && go mod tidy
|
||||||
|
|||||||
@@ -1,263 +1,250 @@
|
|||||||
import React, { useState } from 'react';
|
import React from 'react';
|
||||||
import {
|
import {
|
||||||
Button,
|
Button,
|
||||||
Center,
|
Center,
|
||||||
Flex,
|
Flex,
|
||||||
MenuItem,
|
MenuItem,
|
||||||
Modal,
|
Modal,
|
||||||
ModalBody,
|
ModalBody,
|
||||||
ModalCloseButton,
|
ModalCloseButton,
|
||||||
ModalContent,
|
ModalContent,
|
||||||
ModalFooter,
|
ModalFooter,
|
||||||
ModalHeader,
|
ModalHeader,
|
||||||
ModalOverlay,
|
ModalOverlay,
|
||||||
Stack,
|
Stack,
|
||||||
useDisclosure,
|
useDisclosure,
|
||||||
Text,
|
Text,
|
||||||
useToast,
|
useToast,
|
||||||
} from '@chakra-ui/react';
|
} from '@chakra-ui/react';
|
||||||
import { useClient } from 'urql';
|
import { useClient } from 'urql';
|
||||||
import { FaSave } from 'react-icons/fa';
|
import { FaSave } from 'react-icons/fa';
|
||||||
import InputField from './InputField';
|
import InputField from './InputField';
|
||||||
import {
|
import {
|
||||||
DateInputType,
|
ArrayInputType,
|
||||||
MultiSelectInputType,
|
DateInputType,
|
||||||
SelectInputType,
|
SelectInputType,
|
||||||
TextInputType,
|
TextInputType,
|
||||||
} from '../constants';
|
} from '../constants';
|
||||||
import { getObjectDiff } from '../utils';
|
import { getObjectDiff } from '../utils';
|
||||||
import { UpdateUser } from '../graphql/mutation';
|
import { UpdateUser } from '../graphql/mutation';
|
||||||
import { GetAvailableRolesQuery } from '../graphql/queries';
|
|
||||||
|
|
||||||
const GenderTypes = {
|
const GenderTypes = {
|
||||||
Undisclosed: null,
|
Undisclosed: null,
|
||||||
Male: 'Male',
|
Male: 'Male',
|
||||||
Female: 'Female',
|
Female: 'Female',
|
||||||
};
|
};
|
||||||
|
|
||||||
interface userDataTypes {
|
interface userDataTypes {
|
||||||
id: string;
|
id: string;
|
||||||
email: string;
|
email: string;
|
||||||
given_name: string;
|
given_name: string;
|
||||||
family_name: string;
|
family_name: string;
|
||||||
middle_name: string;
|
middle_name: string;
|
||||||
nickname: string;
|
nickname: string;
|
||||||
gender: string;
|
gender: string;
|
||||||
birthdate: string;
|
birthdate: string;
|
||||||
phone_number: string;
|
phone_number: string;
|
||||||
picture: string;
|
picture: string;
|
||||||
roles: [string] | [];
|
roles: [string] | [];
|
||||||
}
|
}
|
||||||
|
|
||||||
const EditUserModal = ({
|
const EditUserModal = ({
|
||||||
user,
|
user,
|
||||||
updateUserList,
|
updateUserList,
|
||||||
}: {
|
}: {
|
||||||
user: userDataTypes;
|
user: userDataTypes;
|
||||||
updateUserList: Function;
|
updateUserList: Function;
|
||||||
}) => {
|
}) => {
|
||||||
const client = useClient();
|
const client = useClient();
|
||||||
const toast = useToast();
|
const toast = useToast();
|
||||||
const [availableRoles, setAvailableRoles] = useState<string[]>([]);
|
const { isOpen, onOpen, onClose } = useDisclosure();
|
||||||
const { isOpen, onOpen, onClose } = useDisclosure();
|
const [userData, setUserData] = React.useState<userDataTypes>({
|
||||||
const [userData, setUserData] = useState<userDataTypes>({
|
id: '',
|
||||||
id: '',
|
email: '',
|
||||||
email: '',
|
given_name: '',
|
||||||
given_name: '',
|
family_name: '',
|
||||||
family_name: '',
|
middle_name: '',
|
||||||
middle_name: '',
|
nickname: '',
|
||||||
nickname: '',
|
gender: '',
|
||||||
gender: '',
|
birthdate: '',
|
||||||
birthdate: '',
|
phone_number: '',
|
||||||
phone_number: '',
|
picture: '',
|
||||||
picture: '',
|
roles: [],
|
||||||
roles: [],
|
});
|
||||||
});
|
React.useEffect(() => {
|
||||||
React.useEffect(() => {
|
setUserData(user);
|
||||||
setUserData(user);
|
}, []);
|
||||||
fetchAvailableRoles();
|
const saveHandler = async () => {
|
||||||
}, []);
|
const diff = getObjectDiff(user, userData);
|
||||||
const fetchAvailableRoles = async () => {
|
const updatedUserData = diff.reduce(
|
||||||
const res = await client.query(GetAvailableRolesQuery).toPromise();
|
(acc: any, property: string) => ({
|
||||||
if (res.data?._env?.ROLES && res.data?._env?.PROTECTED_ROLES) {
|
...acc,
|
||||||
setAvailableRoles([
|
// @ts-ignore
|
||||||
...res.data._env.ROLES,
|
[property]: userData[property],
|
||||||
...res.data._env.PROTECTED_ROLES,
|
}),
|
||||||
]);
|
{},
|
||||||
}
|
);
|
||||||
};
|
const res = await client
|
||||||
const saveHandler = async () => {
|
.mutation(UpdateUser, { params: { ...updatedUserData, id: userData.id } })
|
||||||
const diff = getObjectDiff(user, userData);
|
.toPromise();
|
||||||
const updatedUserData = diff.reduce(
|
if (res.error) {
|
||||||
(acc: any, property: string) => ({
|
toast({
|
||||||
...acc,
|
title: 'User data update failed',
|
||||||
// @ts-ignore
|
isClosable: true,
|
||||||
[property]: userData[property],
|
status: 'error',
|
||||||
}),
|
position: 'bottom-right',
|
||||||
{},
|
});
|
||||||
);
|
} else if (res.data?._update_user?.id) {
|
||||||
const res = await client
|
toast({
|
||||||
.mutation(UpdateUser, { params: { ...updatedUserData, id: userData.id } })
|
title: 'User data update successful',
|
||||||
.toPromise();
|
isClosable: true,
|
||||||
if (res.error) {
|
status: 'success',
|
||||||
toast({
|
position: 'bottom-right',
|
||||||
title: 'User data update failed',
|
});
|
||||||
isClosable: true,
|
}
|
||||||
status: 'error',
|
onClose();
|
||||||
position: 'bottom-right',
|
updateUserList();
|
||||||
});
|
};
|
||||||
} else if (res.data?._update_user?.id) {
|
return (
|
||||||
toast({
|
<>
|
||||||
title: 'User data update successful',
|
<MenuItem onClick={onOpen}>Edit User Details</MenuItem>
|
||||||
isClosable: true,
|
<Modal isOpen={isOpen} onClose={onClose}>
|
||||||
status: 'success',
|
<ModalOverlay />
|
||||||
position: 'bottom-right',
|
<ModalContent>
|
||||||
});
|
<ModalHeader>Edit User Details</ModalHeader>
|
||||||
}
|
<ModalCloseButton />
|
||||||
onClose();
|
<ModalBody>
|
||||||
updateUserList();
|
<Stack>
|
||||||
};
|
<Flex>
|
||||||
return (
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
<>
|
<Text fontSize="sm">Given Name:</Text>
|
||||||
<MenuItem onClick={onOpen}>Edit User Details</MenuItem>
|
</Flex>
|
||||||
<Modal isOpen={isOpen} onClose={onClose}>
|
<Center w="70%">
|
||||||
<ModalOverlay />
|
<InputField
|
||||||
<ModalContent>
|
variables={userData}
|
||||||
<ModalHeader>Edit User Details</ModalHeader>
|
setVariables={setUserData}
|
||||||
<ModalCloseButton />
|
inputType={TextInputType.GIVEN_NAME}
|
||||||
<ModalBody>
|
/>
|
||||||
<Stack>
|
</Center>
|
||||||
<Flex>
|
</Flex>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
<Flex>
|
||||||
<Text fontSize="sm">Given Name:</Text>
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
</Flex>
|
<Text fontSize="sm">Middle Name:</Text>
|
||||||
<Center w="70%">
|
</Flex>
|
||||||
<InputField
|
<Center w="70%">
|
||||||
variables={userData}
|
<InputField
|
||||||
setVariables={setUserData}
|
variables={userData}
|
||||||
inputType={TextInputType.GIVEN_NAME}
|
setVariables={setUserData}
|
||||||
/>
|
inputType={TextInputType.MIDDLE_NAME}
|
||||||
</Center>
|
/>
|
||||||
</Flex>
|
</Center>
|
||||||
<Flex>
|
</Flex>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
<Flex>
|
||||||
<Text fontSize="sm">Middle Name:</Text>
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
</Flex>
|
<Text fontSize="sm">Family Name:</Text>
|
||||||
<Center w="70%">
|
</Flex>
|
||||||
<InputField
|
<Center w="70%">
|
||||||
variables={userData}
|
<InputField
|
||||||
setVariables={setUserData}
|
variables={userData}
|
||||||
inputType={TextInputType.MIDDLE_NAME}
|
setVariables={setUserData}
|
||||||
/>
|
inputType={TextInputType.FAMILY_NAME}
|
||||||
</Center>
|
/>
|
||||||
</Flex>
|
</Center>
|
||||||
<Flex>
|
</Flex>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
<Flex>
|
||||||
<Text fontSize="sm">Family Name:</Text>
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
</Flex>
|
<Text fontSize="sm">Birth Date:</Text>
|
||||||
<Center w="70%">
|
</Flex>
|
||||||
<InputField
|
<Center w="70%">
|
||||||
variables={userData}
|
<InputField
|
||||||
setVariables={setUserData}
|
variables={userData}
|
||||||
inputType={TextInputType.FAMILY_NAME}
|
setVariables={setUserData}
|
||||||
/>
|
inputType={DateInputType.BIRTHDATE}
|
||||||
</Center>
|
/>
|
||||||
</Flex>
|
</Center>
|
||||||
<Flex>
|
</Flex>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
<Flex>
|
||||||
<Text fontSize="sm">Birth Date:</Text>
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
</Flex>
|
<Text fontSize="sm">Nickname:</Text>
|
||||||
<Center w="70%">
|
</Flex>
|
||||||
<InputField
|
<Center w="70%">
|
||||||
variables={userData}
|
<InputField
|
||||||
setVariables={setUserData}
|
variables={userData}
|
||||||
inputType={DateInputType.BIRTHDATE}
|
setVariables={setUserData}
|
||||||
/>
|
inputType={TextInputType.NICKNAME}
|
||||||
</Center>
|
/>
|
||||||
</Flex>
|
</Center>
|
||||||
<Flex>
|
</Flex>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
<Flex>
|
||||||
<Text fontSize="sm">Nickname:</Text>
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
</Flex>
|
<Text fontSize="sm">Gender:</Text>
|
||||||
<Center w="70%">
|
</Flex>
|
||||||
<InputField
|
<Center w="70%">
|
||||||
variables={userData}
|
<InputField
|
||||||
setVariables={setUserData}
|
variables={userData}
|
||||||
inputType={TextInputType.NICKNAME}
|
setVariables={setUserData}
|
||||||
/>
|
inputType={SelectInputType.GENDER}
|
||||||
</Center>
|
value={userData.gender}
|
||||||
</Flex>
|
options={GenderTypes}
|
||||||
<Flex>
|
/>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
</Center>
|
||||||
<Text fontSize="sm">Gender:</Text>
|
</Flex>
|
||||||
</Flex>
|
<Flex>
|
||||||
<Center w="70%">
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
<InputField
|
<Text fontSize="sm">Phone Number:</Text>
|
||||||
variables={userData}
|
</Flex>
|
||||||
setVariables={setUserData}
|
<Center w="70%">
|
||||||
inputType={SelectInputType.GENDER}
|
<InputField
|
||||||
value={userData.gender}
|
variables={userData}
|
||||||
options={GenderTypes}
|
setVariables={setUserData}
|
||||||
/>
|
inputType={TextInputType.PHONE_NUMBER}
|
||||||
</Center>
|
/>
|
||||||
</Flex>
|
</Center>
|
||||||
<Flex>
|
</Flex>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
<Flex>
|
||||||
<Text fontSize="sm">Phone Number:</Text>
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
</Flex>
|
<Text fontSize="sm">Picture:</Text>
|
||||||
<Center w="70%">
|
</Flex>
|
||||||
<InputField
|
<Center w="70%">
|
||||||
variables={userData}
|
<InputField
|
||||||
setVariables={setUserData}
|
variables={userData}
|
||||||
inputType={TextInputType.PHONE_NUMBER}
|
setVariables={setUserData}
|
||||||
/>
|
inputType={TextInputType.PICTURE}
|
||||||
</Center>
|
/>
|
||||||
</Flex>
|
</Center>
|
||||||
<Flex>
|
</Flex>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
<Flex>
|
||||||
<Text fontSize="sm">Picture:</Text>
|
<Flex w="30%" justifyContent="start" alignItems="center">
|
||||||
</Flex>
|
<Text fontSize="sm">Roles:</Text>
|
||||||
<Center w="70%">
|
</Flex>
|
||||||
<InputField
|
<Center w="70%">
|
||||||
variables={userData}
|
<InputField
|
||||||
setVariables={setUserData}
|
variables={userData}
|
||||||
inputType={TextInputType.PICTURE}
|
setVariables={setUserData}
|
||||||
/>
|
inputType={ArrayInputType.USER_ROLES}
|
||||||
</Center>
|
/>
|
||||||
</Flex>
|
</Center>
|
||||||
<Flex>
|
</Flex>
|
||||||
<Flex w="30%" justifyContent="start" alignItems="center">
|
</Stack>
|
||||||
<Text fontSize="sm">Roles:</Text>
|
</ModalBody>
|
||||||
</Flex>
|
|
||||||
<Center w="70%">
|
|
||||||
<InputField
|
|
||||||
variables={userData}
|
|
||||||
setVariables={setUserData}
|
|
||||||
availableRoles={availableRoles}
|
|
||||||
inputType={MultiSelectInputType.USER_ROLES}
|
|
||||||
/>
|
|
||||||
</Center>
|
|
||||||
</Flex>
|
|
||||||
</Stack>
|
|
||||||
</ModalBody>
|
|
||||||
|
|
||||||
<ModalFooter>
|
<ModalFooter>
|
||||||
<Button
|
<Button
|
||||||
leftIcon={<FaSave />}
|
leftIcon={<FaSave />}
|
||||||
colorScheme="blue"
|
colorScheme="blue"
|
||||||
variant="solid"
|
variant="solid"
|
||||||
onClick={saveHandler}
|
onClick={saveHandler}
|
||||||
isDisabled={false}
|
isDisabled={false}
|
||||||
>
|
>
|
||||||
<Center h="100%" pt="5%">
|
<Center h="100%" pt="5%">
|
||||||
Save
|
Save
|
||||||
</Center>
|
</Center>
|
||||||
</Button>
|
</Button>
|
||||||
</ModalFooter>
|
</ModalFooter>
|
||||||
</ModalContent>
|
</ModalContent>
|
||||||
</Modal>
|
</Modal>
|
||||||
</>
|
</>
|
||||||
);
|
);
|
||||||
};
|
};
|
||||||
|
|
||||||
export default EditUserModal;
|
export default EditUserModal;
|
||||||
|
|||||||
@@ -1,432 +1,340 @@
|
|||||||
import React, { useState } from 'react';
|
import React from 'react';
|
||||||
import {
|
import {
|
||||||
Box,
|
Box,
|
||||||
Flex,
|
Flex,
|
||||||
Input,
|
Input,
|
||||||
Center,
|
Center,
|
||||||
InputGroup,
|
InputGroup,
|
||||||
InputRightElement,
|
InputRightElement,
|
||||||
Tag,
|
Tag,
|
||||||
TagLabel,
|
TagLabel,
|
||||||
TagRightIcon,
|
TagRightIcon,
|
||||||
Select,
|
Select,
|
||||||
Textarea,
|
Textarea,
|
||||||
Switch,
|
Switch,
|
||||||
Text,
|
Text,
|
||||||
MenuButton,
|
|
||||||
MenuList,
|
|
||||||
MenuItemOption,
|
|
||||||
MenuOptionGroup,
|
|
||||||
Button,
|
|
||||||
Menu,
|
|
||||||
} from '@chakra-ui/react';
|
} from '@chakra-ui/react';
|
||||||
import {
|
import {
|
||||||
FaRegClone,
|
FaRegClone,
|
||||||
FaRegEye,
|
FaRegEye,
|
||||||
FaRegEyeSlash,
|
FaRegEyeSlash,
|
||||||
FaPlus,
|
FaPlus,
|
||||||
FaTimes,
|
FaTimes,
|
||||||
FaAngleDown,
|
|
||||||
} from 'react-icons/fa';
|
} from 'react-icons/fa';
|
||||||
import {
|
import {
|
||||||
ArrayInputOperations,
|
ArrayInputOperations,
|
||||||
ArrayInputType,
|
ArrayInputType,
|
||||||
SelectInputType,
|
SelectInputType,
|
||||||
HiddenInputType,
|
HiddenInputType,
|
||||||
TextInputType,
|
TextInputType,
|
||||||
TextAreaInputType,
|
TextAreaInputType,
|
||||||
SwitchInputType,
|
SwitchInputType,
|
||||||
DateInputType,
|
DateInputType,
|
||||||
MultiSelectInputType,
|
|
||||||
} from '../constants';
|
} from '../constants';
|
||||||
import { copyTextToClipboard } from '../utils';
|
import { copyTextToClipboard } from '../utils';
|
||||||
|
|
||||||
const InputField = ({
|
const InputField = ({
|
||||||
inputType,
|
inputType,
|
||||||
variables,
|
variables,
|
||||||
setVariables,
|
setVariables,
|
||||||
fieldVisibility,
|
fieldVisibility,
|
||||||
setFieldVisibility,
|
setFieldVisibility,
|
||||||
availableRoles,
|
...downshiftProps
|
||||||
...downshiftProps
|
|
||||||
}: any) => {
|
}: any) => {
|
||||||
const props = {
|
const props = {
|
||||||
size: 'sm',
|
size: 'sm',
|
||||||
...downshiftProps,
|
...downshiftProps,
|
||||||
};
|
};
|
||||||
const [availableUserRoles, setAvailableUserRoles] =
|
const [inputFieldVisibility, setInputFieldVisibility] = React.useState<
|
||||||
useState<string[]>(availableRoles);
|
Record<string, boolean>
|
||||||
const [inputFieldVisibility, setInputFieldVisibility] = useState<
|
>({
|
||||||
Record<string, boolean>
|
ROLES: false,
|
||||||
>({
|
DEFAULT_ROLES: false,
|
||||||
ROLES: false,
|
PROTECTED_ROLES: false,
|
||||||
DEFAULT_ROLES: false,
|
ALLOWED_ORIGINS: false,
|
||||||
PROTECTED_ROLES: false,
|
roles: false,
|
||||||
ALLOWED_ORIGINS: false,
|
});
|
||||||
roles: false,
|
const [inputData, setInputData] = React.useState<Record<string, string>>({
|
||||||
});
|
ROLES: '',
|
||||||
const [inputData, setInputData] = useState<Record<string, string>>({
|
DEFAULT_ROLES: '',
|
||||||
ROLES: '',
|
PROTECTED_ROLES: '',
|
||||||
DEFAULT_ROLES: '',
|
ALLOWED_ORIGINS: '',
|
||||||
PROTECTED_ROLES: '',
|
roles: '',
|
||||||
ALLOWED_ORIGINS: '',
|
});
|
||||||
roles: '',
|
const updateInputHandler = (
|
||||||
});
|
type: string,
|
||||||
const updateInputHandler = (
|
operation: any,
|
||||||
type: string,
|
role: string = '',
|
||||||
operation: any,
|
) => {
|
||||||
role: string = '',
|
if (operation === ArrayInputOperations.APPEND) {
|
||||||
) => {
|
if (inputData[type] !== '') {
|
||||||
if (operation === ArrayInputOperations.APPEND) {
|
setVariables({
|
||||||
if (inputData[type] !== '') {
|
...variables,
|
||||||
setVariables({
|
[type]: [...variables[type], inputData[type]],
|
||||||
...variables,
|
});
|
||||||
[type]: [...variables[type], inputData[type]],
|
setInputData({ ...inputData, [type]: '' });
|
||||||
});
|
}
|
||||||
setInputData({ ...inputData, [type]: '' });
|
setInputFieldVisibility({ ...inputFieldVisibility, [type]: false });
|
||||||
}
|
}
|
||||||
setInputFieldVisibility({ ...inputFieldVisibility, [type]: false });
|
if (operation === ArrayInputOperations.REMOVE) {
|
||||||
}
|
let updatedEnvVars = variables[type].filter(
|
||||||
if (operation === ArrayInputOperations.REMOVE) {
|
(item: string) => item !== role,
|
||||||
let updatedEnvVars = variables[type].filter(
|
);
|
||||||
(item: string) => item !== role,
|
setVariables({
|
||||||
);
|
...variables,
|
||||||
setVariables({
|
[type]: updatedEnvVars,
|
||||||
...variables,
|
});
|
||||||
[type]: updatedEnvVars,
|
}
|
||||||
});
|
};
|
||||||
}
|
if (Object.values(TextInputType).includes(inputType)) {
|
||||||
};
|
return (
|
||||||
if (Object.values(TextInputType).includes(inputType)) {
|
<InputGroup size="sm">
|
||||||
return (
|
<Input
|
||||||
<InputGroup size="sm">
|
{...props}
|
||||||
<Input
|
value={variables[inputType] ? variables[inputType] : ''}
|
||||||
{...props}
|
onChange={(
|
||||||
value={variables[inputType] ? variables[inputType] : ''}
|
event: Event & {
|
||||||
onChange={(
|
target: HTMLInputElement;
|
||||||
event: Event & {
|
},
|
||||||
target: HTMLInputElement;
|
) =>
|
||||||
},
|
setVariables({
|
||||||
) =>
|
...variables,
|
||||||
setVariables({
|
[inputType]: event.target.value,
|
||||||
...variables,
|
})
|
||||||
[inputType]: event.target.value,
|
}
|
||||||
})
|
/>
|
||||||
}
|
<InputRightElement
|
||||||
/>
|
children={<FaRegClone color="#bfbfbf" />}
|
||||||
<InputRightElement
|
cursor="pointer"
|
||||||
children={<FaRegClone color="#bfbfbf" />}
|
onClick={() => copyTextToClipboard(variables[inputType])}
|
||||||
cursor="pointer"
|
/>
|
||||||
onClick={() => copyTextToClipboard(variables[inputType])}
|
</InputGroup>
|
||||||
/>
|
);
|
||||||
</InputGroup>
|
}
|
||||||
);
|
if (Object.values(HiddenInputType).includes(inputType)) {
|
||||||
}
|
return (
|
||||||
if (Object.values(HiddenInputType).includes(inputType)) {
|
<InputGroup size="sm">
|
||||||
return (
|
<Input
|
||||||
<InputGroup size="sm">
|
{...props}
|
||||||
<Input
|
value={variables[inputType] ?? ''}
|
||||||
{...props}
|
onChange={(
|
||||||
value={variables[inputType] || ''}
|
event: Event & {
|
||||||
onChange={(
|
target: HTMLInputElement;
|
||||||
event: Event & {
|
},
|
||||||
target: HTMLInputElement;
|
) =>
|
||||||
},
|
setVariables({
|
||||||
) =>
|
...variables,
|
||||||
setVariables({
|
[inputType]: event.target.value,
|
||||||
...variables,
|
})
|
||||||
[inputType]: event.target.value,
|
}
|
||||||
})
|
type={!fieldVisibility[inputType] ? 'password' : 'text'}
|
||||||
}
|
/>
|
||||||
type={!fieldVisibility[inputType] ? 'password' : 'text'}
|
<InputRightElement
|
||||||
/>
|
right="15px"
|
||||||
<InputRightElement
|
children={
|
||||||
right="15px"
|
<Flex>
|
||||||
children={
|
{fieldVisibility[inputType] ? (
|
||||||
<Flex>
|
<Center
|
||||||
{fieldVisibility[inputType] ? (
|
w="25px"
|
||||||
<Center
|
margin="0 1.5%"
|
||||||
w="25px"
|
cursor="pointer"
|
||||||
margin="0 1.5%"
|
onClick={() =>
|
||||||
cursor="pointer"
|
setFieldVisibility({
|
||||||
onClick={() =>
|
...fieldVisibility,
|
||||||
setFieldVisibility({
|
[inputType]: false,
|
||||||
...fieldVisibility,
|
})
|
||||||
[inputType]: false,
|
}
|
||||||
})
|
>
|
||||||
}
|
<FaRegEyeSlash color="#bfbfbf" />
|
||||||
>
|
</Center>
|
||||||
<FaRegEyeSlash color="#bfbfbf" />
|
) : (
|
||||||
</Center>
|
<Center
|
||||||
) : (
|
w="25px"
|
||||||
<Center
|
margin="0 1.5%"
|
||||||
w="25px"
|
cursor="pointer"
|
||||||
margin="0 1.5%"
|
onClick={() =>
|
||||||
cursor="pointer"
|
setFieldVisibility({
|
||||||
onClick={() =>
|
...fieldVisibility,
|
||||||
setFieldVisibility({
|
[inputType]: true,
|
||||||
...fieldVisibility,
|
})
|
||||||
[inputType]: true,
|
}
|
||||||
})
|
>
|
||||||
}
|
<FaRegEye color="#bfbfbf" />
|
||||||
>
|
</Center>
|
||||||
<FaRegEye color="#bfbfbf" />
|
)}
|
||||||
</Center>
|
<Center
|
||||||
)}
|
w="25px"
|
||||||
<Center
|
margin="0 1.5%"
|
||||||
w="25px"
|
cursor="pointer"
|
||||||
margin="0 1.5%"
|
onClick={() => copyTextToClipboard(variables[inputType])}
|
||||||
cursor="pointer"
|
>
|
||||||
onClick={() => copyTextToClipboard(variables[inputType])}
|
<FaRegClone color="#bfbfbf" />
|
||||||
>
|
</Center>
|
||||||
<FaRegClone color="#bfbfbf" />
|
</Flex>
|
||||||
</Center>
|
}
|
||||||
</Flex>
|
/>
|
||||||
}
|
</InputGroup>
|
||||||
/>
|
);
|
||||||
</InputGroup>
|
}
|
||||||
);
|
if (Object.values(ArrayInputType).includes(inputType)) {
|
||||||
}
|
return (
|
||||||
if (Object.values(ArrayInputType).includes(inputType)) {
|
<Flex
|
||||||
return (
|
border="1px solid #e2e8f0"
|
||||||
<Flex
|
w="100%"
|
||||||
border="1px solid #e2e8f0"
|
borderRadius={5}
|
||||||
w="100%"
|
paddingTop="0.5%"
|
||||||
borderRadius={5}
|
overflowX={variables[inputType].length > 3 ? 'scroll' : 'hidden'}
|
||||||
paddingTop="0.5%"
|
overflowY="hidden"
|
||||||
overflowX={variables[inputType].length > 3 ? 'scroll' : 'hidden'}
|
justifyContent="start"
|
||||||
overflowY="hidden"
|
alignItems="center"
|
||||||
justifyContent="start"
|
>
|
||||||
alignItems="center"
|
{variables[inputType].map((role: string, index: number) => (
|
||||||
>
|
<Box key={index} margin="0.5%" role="group">
|
||||||
{variables[inputType].map((role: string, index: number) => (
|
<Tag
|
||||||
<Box key={index} margin="0.5%" role="group">
|
size="sm"
|
||||||
<Tag
|
variant="outline"
|
||||||
size="sm"
|
colorScheme="gray"
|
||||||
variant="outline"
|
minW="fit-content"
|
||||||
colorScheme="gray"
|
>
|
||||||
minW="fit-content"
|
<TagLabel cursor="default">{role}</TagLabel>
|
||||||
>
|
<TagRightIcon
|
||||||
<TagLabel cursor="default">{role}</TagLabel>
|
boxSize="12px"
|
||||||
<TagRightIcon
|
as={FaTimes}
|
||||||
boxSize="12px"
|
display="none"
|
||||||
as={FaTimes}
|
cursor="pointer"
|
||||||
display="none"
|
_groupHover={{ display: 'block' }}
|
||||||
cursor="pointer"
|
onClick={() =>
|
||||||
_groupHover={{ display: 'block' }}
|
updateInputHandler(
|
||||||
onClick={() =>
|
inputType,
|
||||||
updateInputHandler(
|
ArrayInputOperations.REMOVE,
|
||||||
inputType,
|
role,
|
||||||
ArrayInputOperations.REMOVE,
|
)
|
||||||
role,
|
}
|
||||||
)
|
/>
|
||||||
}
|
</Tag>
|
||||||
/>
|
</Box>
|
||||||
</Tag>
|
))}
|
||||||
</Box>
|
{inputFieldVisibility[inputType] ? (
|
||||||
))}
|
<Box ml="1%" mb="0.75%">
|
||||||
{inputFieldVisibility[inputType] ? (
|
<Input
|
||||||
<Box ml="1%" mb="0.75%">
|
type="text"
|
||||||
<Input
|
size="xs"
|
||||||
type="text"
|
minW="150px"
|
||||||
size="xs"
|
placeholder="add a new value"
|
||||||
minW="150px"
|
value={inputData[inputType] ?? ''}
|
||||||
placeholder="add a new value"
|
onChange={(e: any) => {
|
||||||
value={inputData[inputType] || ''}
|
setInputData({ ...inputData, [inputType]: e.target.value });
|
||||||
onChange={(e: any) => {
|
}}
|
||||||
setInputData({ ...inputData, [inputType]: e.target.value });
|
onBlur={() =>
|
||||||
}}
|
updateInputHandler(inputType, ArrayInputOperations.APPEND)
|
||||||
onBlur={() =>
|
}
|
||||||
updateInputHandler(inputType, ArrayInputOperations.APPEND)
|
onKeyPress={(event) => {
|
||||||
}
|
if (event.key === 'Enter') {
|
||||||
onKeyPress={(event) => {
|
updateInputHandler(inputType, ArrayInputOperations.APPEND);
|
||||||
if (event.key === 'Enter') {
|
}
|
||||||
updateInputHandler(inputType, ArrayInputOperations.APPEND);
|
}}
|
||||||
}
|
/>
|
||||||
}}
|
</Box>
|
||||||
/>
|
) : (
|
||||||
</Box>
|
<Box
|
||||||
) : (
|
marginLeft="0.5%"
|
||||||
<Box
|
cursor="pointer"
|
||||||
marginLeft="0.5%"
|
onClick={() =>
|
||||||
cursor="pointer"
|
setInputFieldVisibility({
|
||||||
onClick={() =>
|
...inputFieldVisibility,
|
||||||
setInputFieldVisibility({
|
[inputType]: true,
|
||||||
...inputFieldVisibility,
|
})
|
||||||
[inputType]: true,
|
}
|
||||||
})
|
>
|
||||||
}
|
<Tag
|
||||||
>
|
size="sm"
|
||||||
<Tag
|
variant="outline"
|
||||||
size="sm"
|
colorScheme="gray"
|
||||||
variant="outline"
|
minW="fit-content"
|
||||||
colorScheme="gray"
|
>
|
||||||
minW="fit-content"
|
<FaPlus />
|
||||||
>
|
</Tag>
|
||||||
<FaPlus />
|
</Box>
|
||||||
</Tag>
|
)}
|
||||||
</Box>
|
</Flex>
|
||||||
)}
|
);
|
||||||
</Flex>
|
}
|
||||||
);
|
if (Object.values(SelectInputType).includes(inputType)) {
|
||||||
}
|
const { options, ...rest } = props;
|
||||||
if (Object.values(SelectInputType).includes(inputType)) {
|
return (
|
||||||
const { options, ...rest } = props;
|
<Select
|
||||||
return (
|
size="sm"
|
||||||
<Select
|
{...rest}
|
||||||
size="sm"
|
value={variables[inputType] ? variables[inputType] : ''}
|
||||||
{...rest}
|
onChange={(e) =>
|
||||||
value={variables[inputType] ? variables[inputType] : ''}
|
setVariables({ ...variables, [inputType]: e.target.value })
|
||||||
onChange={(e) =>
|
}
|
||||||
setVariables({ ...variables, [inputType]: e.target.value })
|
>
|
||||||
}
|
{Object.entries(options).map(([key, value]: any) => (
|
||||||
>
|
<option value={value} key={key}>
|
||||||
{Object.entries(options).map(([key, value]: any) => (
|
{key}
|
||||||
<option value={value} key={key}>
|
</option>
|
||||||
{key}
|
))}
|
||||||
</option>
|
</Select>
|
||||||
))}
|
);
|
||||||
</Select>
|
}
|
||||||
);
|
if (Object.values(TextAreaInputType).includes(inputType)) {
|
||||||
}
|
return (
|
||||||
if (Object.values(MultiSelectInputType).includes(inputType)) {
|
<Textarea
|
||||||
return (
|
{...props}
|
||||||
<Flex w="100%" style={{ position: 'relative' }}>
|
size="lg"
|
||||||
<Flex
|
fontSize={14}
|
||||||
border="1px solid #e2e8f0"
|
value={variables[inputType] ? variables[inputType] : ''}
|
||||||
w="100%"
|
onChange={(
|
||||||
borderRadius="var(--chakra-radii-sm)"
|
event: Event & {
|
||||||
p="1% 0 0 2.5%"
|
target: HTMLInputElement;
|
||||||
overflowX={variables[inputType].length > 3 ? 'scroll' : 'hidden'}
|
},
|
||||||
overflowY="hidden"
|
) =>
|
||||||
justifyContent="space-between"
|
setVariables({
|
||||||
alignItems="center"
|
...variables,
|
||||||
>
|
[inputType]: event.target.value,
|
||||||
<Flex justifyContent="start" alignItems="center" w="100%" wrap="wrap">
|
})
|
||||||
{variables[inputType].map((role: string, index: number) => (
|
}
|
||||||
<Box key={index} margin="0.5%" role="group">
|
/>
|
||||||
<Tag
|
);
|
||||||
size="sm"
|
}
|
||||||
variant="outline"
|
if (Object.values(SwitchInputType).includes(inputType)) {
|
||||||
colorScheme="gray"
|
return (
|
||||||
minW="fit-content"
|
<Flex w="25%" justifyContent="space-between">
|
||||||
>
|
<Text h="75%" fontWeight="bold" marginRight="2">
|
||||||
<TagLabel cursor="default">{role}</TagLabel>
|
Off
|
||||||
<TagRightIcon
|
</Text>
|
||||||
boxSize="12px"
|
<Switch
|
||||||
as={FaTimes}
|
size="md"
|
||||||
display="none"
|
isChecked={variables[inputType]}
|
||||||
cursor="pointer"
|
onChange={() => {
|
||||||
_groupHover={{ display: 'block' }}
|
setVariables({
|
||||||
onClick={() =>
|
...variables,
|
||||||
updateInputHandler(
|
[inputType]: !variables[inputType],
|
||||||
inputType,
|
});
|
||||||
ArrayInputOperations.REMOVE,
|
}}
|
||||||
role,
|
/>
|
||||||
)
|
<Text h="75%" fontWeight="bold" marginLeft="2">
|
||||||
}
|
On
|
||||||
/>
|
</Text>
|
||||||
</Tag>
|
</Flex>
|
||||||
</Box>
|
);
|
||||||
))}
|
}
|
||||||
</Flex>
|
if (Object.values(DateInputType).includes(inputType)) {
|
||||||
<Menu matchWidth={true}>
|
return (
|
||||||
<MenuButton px="10px" py="7.5px">
|
<Flex border="1px solid #e2e8f0" w="100%" h="33px" padding="1%">
|
||||||
<FaAngleDown />
|
<input
|
||||||
</MenuButton>
|
type="date"
|
||||||
<MenuList
|
style={{ width: '100%', paddingLeft: '2.5%' }}
|
||||||
position="absolute"
|
value={variables[inputType] ? variables[inputType] : ''}
|
||||||
top="0"
|
onChange={(e) =>
|
||||||
right="0"
|
setVariables({ ...variables, [inputType]: e.target.value })
|
||||||
zIndex="10"
|
}
|
||||||
maxH="150"
|
/>
|
||||||
overflowX="scroll"
|
</Flex>
|
||||||
>
|
);
|
||||||
<MenuOptionGroup
|
}
|
||||||
title={undefined}
|
return null;
|
||||||
value={variables[inputType]}
|
|
||||||
type="checkbox"
|
|
||||||
onChange={(values: string[] | string) => {
|
|
||||||
setVariables({
|
|
||||||
...variables,
|
|
||||||
[inputType]: values,
|
|
||||||
});
|
|
||||||
}}
|
|
||||||
>
|
|
||||||
{availableUserRoles.map((role) => {
|
|
||||||
return (
|
|
||||||
<MenuItemOption
|
|
||||||
key={`multiselect-menu-${role}`}
|
|
||||||
value={role}
|
|
||||||
>
|
|
||||||
{role}
|
|
||||||
</MenuItemOption>
|
|
||||||
);
|
|
||||||
})}
|
|
||||||
</MenuOptionGroup>
|
|
||||||
</MenuList>
|
|
||||||
</Menu>
|
|
||||||
</Flex>
|
|
||||||
</Flex>
|
|
||||||
);
|
|
||||||
}
|
|
||||||
if (Object.values(TextAreaInputType).includes(inputType)) {
|
|
||||||
return (
|
|
||||||
<Textarea
|
|
||||||
{...props}
|
|
||||||
size="lg"
|
|
||||||
fontSize={14}
|
|
||||||
value={variables[inputType] ? variables[inputType] : ''}
|
|
||||||
onChange={(
|
|
||||||
event: Event & {
|
|
||||||
target: HTMLInputElement;
|
|
||||||
},
|
|
||||||
) =>
|
|
||||||
setVariables({
|
|
||||||
...variables,
|
|
||||||
[inputType]: event.target.value,
|
|
||||||
})
|
|
||||||
}
|
|
||||||
/>
|
|
||||||
);
|
|
||||||
}
|
|
||||||
if (Object.values(SwitchInputType).includes(inputType)) {
|
|
||||||
return (
|
|
||||||
<Flex w="25%" justifyContent="space-between">
|
|
||||||
<Text h="75%" fontWeight="bold" marginRight="2">
|
|
||||||
Off
|
|
||||||
</Text>
|
|
||||||
<Switch
|
|
||||||
size="md"
|
|
||||||
isChecked={variables[inputType]}
|
|
||||||
onChange={() => {
|
|
||||||
setVariables({
|
|
||||||
...variables,
|
|
||||||
[inputType]: !variables[inputType],
|
|
||||||
});
|
|
||||||
}}
|
|
||||||
/>
|
|
||||||
<Text h="75%" fontWeight="bold" marginLeft="2">
|
|
||||||
On
|
|
||||||
</Text>
|
|
||||||
</Flex>
|
|
||||||
);
|
|
||||||
}
|
|
||||||
if (Object.values(DateInputType).includes(inputType)) {
|
|
||||||
return (
|
|
||||||
<Flex border="1px solid #e2e8f0" w="100%" h="33px" padding="1%">
|
|
||||||
<input
|
|
||||||
type="date"
|
|
||||||
style={{ width: '100%', paddingLeft: '2.5%' }}
|
|
||||||
value={variables[inputType] ? variables[inputType] : ''}
|
|
||||||
onChange={(e) =>
|
|
||||||
setVariables({ ...variables, [inputType]: e.target.value })
|
|
||||||
}
|
|
||||||
/>
|
|
||||||
</Flex>
|
|
||||||
);
|
|
||||||
}
|
|
||||||
return null;
|
|
||||||
};
|
};
|
||||||
|
|
||||||
export default InputField;
|
export default InputField;
|
||||||
|
|||||||
@@ -1,312 +1,309 @@
|
|||||||
export const LOGO_URL =
|
export const LOGO_URL =
|
||||||
'https://user-images.githubusercontent.com/6964334/147834043-fc384cab-e7ca-40f8-9663-38fc25fd5f3a.png';
|
'https://user-images.githubusercontent.com/6964334/147834043-fc384cab-e7ca-40f8-9663-38fc25fd5f3a.png';
|
||||||
|
|
||||||
export const TextInputType = {
|
export const TextInputType = {
|
||||||
ACCESS_TOKEN_EXPIRY_TIME: 'ACCESS_TOKEN_EXPIRY_TIME',
|
ACCESS_TOKEN_EXPIRY_TIME: 'ACCESS_TOKEN_EXPIRY_TIME',
|
||||||
CLIENT_ID: 'CLIENT_ID',
|
CLIENT_ID: 'CLIENT_ID',
|
||||||
GOOGLE_CLIENT_ID: 'GOOGLE_CLIENT_ID',
|
GOOGLE_CLIENT_ID: 'GOOGLE_CLIENT_ID',
|
||||||
GITHUB_CLIENT_ID: 'GITHUB_CLIENT_ID',
|
GITHUB_CLIENT_ID: 'GITHUB_CLIENT_ID',
|
||||||
FACEBOOK_CLIENT_ID: 'FACEBOOK_CLIENT_ID',
|
FACEBOOK_CLIENT_ID: 'FACEBOOK_CLIENT_ID',
|
||||||
LINKEDIN_CLIENT_ID: 'LINKEDIN_CLIENT_ID',
|
LINKEDIN_CLIENT_ID: 'LINKEDIN_CLIENT_ID',
|
||||||
APPLE_CLIENT_ID: 'APPLE_CLIENT_ID',
|
APPLE_CLIENT_ID: 'APPLE_CLIENT_ID',
|
||||||
TWITTER_CLIENT_ID: 'TWITTER_CLIENT_ID',
|
TWITTER_CLIENT_ID: 'TWITTER_CLIENT_ID',
|
||||||
JWT_ROLE_CLAIM: 'JWT_ROLE_CLAIM',
|
JWT_ROLE_CLAIM: 'JWT_ROLE_CLAIM',
|
||||||
REDIS_URL: 'REDIS_URL',
|
REDIS_URL: 'REDIS_URL',
|
||||||
SMTP_HOST: 'SMTP_HOST',
|
SMTP_HOST: 'SMTP_HOST',
|
||||||
SMTP_PORT: 'SMTP_PORT',
|
SMTP_PORT: 'SMTP_PORT',
|
||||||
SMTP_USERNAME: 'SMTP_USERNAME',
|
SMTP_USERNAME: 'SMTP_USERNAME',
|
||||||
SENDER_EMAIL: 'SENDER_EMAIL',
|
SENDER_EMAIL: 'SENDER_EMAIL',
|
||||||
ORGANIZATION_NAME: 'ORGANIZATION_NAME',
|
ORGANIZATION_NAME: 'ORGANIZATION_NAME',
|
||||||
ORGANIZATION_LOGO: 'ORGANIZATION_LOGO',
|
ORGANIZATION_LOGO: 'ORGANIZATION_LOGO',
|
||||||
DATABASE_NAME: 'DATABASE_NAME',
|
DATABASE_NAME: 'DATABASE_NAME',
|
||||||
DATABASE_TYPE: 'DATABASE_TYPE',
|
DATABASE_TYPE: 'DATABASE_TYPE',
|
||||||
DATABASE_URL: 'DATABASE_URL',
|
DATABASE_URL: 'DATABASE_URL',
|
||||||
GIVEN_NAME: 'given_name',
|
GIVEN_NAME: 'given_name',
|
||||||
MIDDLE_NAME: 'middle_name',
|
MIDDLE_NAME: 'middle_name',
|
||||||
FAMILY_NAME: 'family_name',
|
FAMILY_NAME: 'family_name',
|
||||||
NICKNAME: 'nickname',
|
NICKNAME: 'nickname',
|
||||||
PHONE_NUMBER: 'phone_number',
|
PHONE_NUMBER: 'phone_number',
|
||||||
PICTURE: 'picture',
|
PICTURE: 'picture',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const HiddenInputType = {
|
export const HiddenInputType = {
|
||||||
CLIENT_SECRET: 'CLIENT_SECRET',
|
CLIENT_SECRET: 'CLIENT_SECRET',
|
||||||
GOOGLE_CLIENT_SECRET: 'GOOGLE_CLIENT_SECRET',
|
GOOGLE_CLIENT_SECRET: 'GOOGLE_CLIENT_SECRET',
|
||||||
GITHUB_CLIENT_SECRET: 'GITHUB_CLIENT_SECRET',
|
GITHUB_CLIENT_SECRET: 'GITHUB_CLIENT_SECRET',
|
||||||
FACEBOOK_CLIENT_SECRET: 'FACEBOOK_CLIENT_SECRET',
|
FACEBOOK_CLIENT_SECRET: 'FACEBOOK_CLIENT_SECRET',
|
||||||
LINKEDIN_CLIENT_SECRET: 'LINKEDIN_CLIENT_SECRET',
|
LINKEDIN_CLIENT_SECRET: 'LINKEDIN_CLIENT_SECRET',
|
||||||
APPLE_CLIENT_SECRET: 'APPLE_CLIENT_SECRET',
|
APPLE_CLIENT_SECRET: 'APPLE_CLIENT_SECRET',
|
||||||
TWITTER_CLIENT_SECRET: 'TWITTER_CLIENT_SECRET',
|
TWITTER_CLIENT_SECRET: 'TWITTER_CLIENT_SECRET',
|
||||||
JWT_SECRET: 'JWT_SECRET',
|
JWT_SECRET: 'JWT_SECRET',
|
||||||
SMTP_PASSWORD: 'SMTP_PASSWORD',
|
SMTP_PASSWORD: 'SMTP_PASSWORD',
|
||||||
ADMIN_SECRET: 'ADMIN_SECRET',
|
ADMIN_SECRET: 'ADMIN_SECRET',
|
||||||
OLD_ADMIN_SECRET: 'OLD_ADMIN_SECRET',
|
OLD_ADMIN_SECRET: 'OLD_ADMIN_SECRET',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const ArrayInputType = {
|
export const ArrayInputType = {
|
||||||
ROLES: 'ROLES',
|
ROLES: 'ROLES',
|
||||||
DEFAULT_ROLES: 'DEFAULT_ROLES',
|
DEFAULT_ROLES: 'DEFAULT_ROLES',
|
||||||
PROTECTED_ROLES: 'PROTECTED_ROLES',
|
PROTECTED_ROLES: 'PROTECTED_ROLES',
|
||||||
ALLOWED_ORIGINS: 'ALLOWED_ORIGINS',
|
ALLOWED_ORIGINS: 'ALLOWED_ORIGINS',
|
||||||
|
USER_ROLES: 'roles',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const SelectInputType = {
|
export const SelectInputType = {
|
||||||
JWT_TYPE: 'JWT_TYPE',
|
JWT_TYPE: 'JWT_TYPE',
|
||||||
GENDER: 'gender',
|
GENDER: 'gender',
|
||||||
};
|
|
||||||
|
|
||||||
export const MultiSelectInputType = {
|
|
||||||
USER_ROLES: 'roles',
|
|
||||||
};
|
};
|
||||||
|
|
||||||
export const TextAreaInputType = {
|
export const TextAreaInputType = {
|
||||||
CUSTOM_ACCESS_TOKEN_SCRIPT: 'CUSTOM_ACCESS_TOKEN_SCRIPT',
|
CUSTOM_ACCESS_TOKEN_SCRIPT: 'CUSTOM_ACCESS_TOKEN_SCRIPT',
|
||||||
JWT_PRIVATE_KEY: 'JWT_PRIVATE_KEY',
|
JWT_PRIVATE_KEY: 'JWT_PRIVATE_KEY',
|
||||||
JWT_PUBLIC_KEY: 'JWT_PUBLIC_KEY',
|
JWT_PUBLIC_KEY: 'JWT_PUBLIC_KEY',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const SwitchInputType = {
|
export const SwitchInputType = {
|
||||||
APP_COOKIE_SECURE: 'APP_COOKIE_SECURE',
|
APP_COOKIE_SECURE: 'APP_COOKIE_SECURE',
|
||||||
ADMIN_COOKIE_SECURE: 'ADMIN_COOKIE_SECURE',
|
ADMIN_COOKIE_SECURE: 'ADMIN_COOKIE_SECURE',
|
||||||
DISABLE_LOGIN_PAGE: 'DISABLE_LOGIN_PAGE',
|
DISABLE_LOGIN_PAGE: 'DISABLE_LOGIN_PAGE',
|
||||||
DISABLE_MAGIC_LINK_LOGIN: 'DISABLE_MAGIC_LINK_LOGIN',
|
DISABLE_MAGIC_LINK_LOGIN: 'DISABLE_MAGIC_LINK_LOGIN',
|
||||||
DISABLE_EMAIL_VERIFICATION: 'DISABLE_EMAIL_VERIFICATION',
|
DISABLE_EMAIL_VERIFICATION: 'DISABLE_EMAIL_VERIFICATION',
|
||||||
DISABLE_BASIC_AUTHENTICATION: 'DISABLE_BASIC_AUTHENTICATION',
|
DISABLE_BASIC_AUTHENTICATION: 'DISABLE_BASIC_AUTHENTICATION',
|
||||||
DISABLE_SIGN_UP: 'DISABLE_SIGN_UP',
|
DISABLE_SIGN_UP: 'DISABLE_SIGN_UP',
|
||||||
DISABLE_REDIS_FOR_ENV: 'DISABLE_REDIS_FOR_ENV',
|
DISABLE_REDIS_FOR_ENV: 'DISABLE_REDIS_FOR_ENV',
|
||||||
DISABLE_STRONG_PASSWORD: 'DISABLE_STRONG_PASSWORD',
|
DISABLE_STRONG_PASSWORD: 'DISABLE_STRONG_PASSWORD',
|
||||||
DISABLE_MULTI_FACTOR_AUTHENTICATION: 'DISABLE_MULTI_FACTOR_AUTHENTICATION',
|
DISABLE_MULTI_FACTOR_AUTHENTICATION: 'DISABLE_MULTI_FACTOR_AUTHENTICATION',
|
||||||
ENFORCE_MULTI_FACTOR_AUTHENTICATION: 'ENFORCE_MULTI_FACTOR_AUTHENTICATION',
|
ENFORCE_MULTI_FACTOR_AUTHENTICATION: 'ENFORCE_MULTI_FACTOR_AUTHENTICATION',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const DateInputType = {
|
export const DateInputType = {
|
||||||
BIRTHDATE: 'birthdate',
|
BIRTHDATE: 'birthdate',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const ArrayInputOperations = {
|
export const ArrayInputOperations = {
|
||||||
APPEND: 'APPEND',
|
APPEND: 'APPEND',
|
||||||
REMOVE: 'REMOVE',
|
REMOVE: 'REMOVE',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const HMACEncryptionType = {
|
export const HMACEncryptionType = {
|
||||||
HS256: 'HS256',
|
HS256: 'HS256',
|
||||||
HS384: 'HS384',
|
HS384: 'HS384',
|
||||||
HS512: 'HS512',
|
HS512: 'HS512',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const RSAEncryptionType = {
|
export const RSAEncryptionType = {
|
||||||
RS256: 'RS256',
|
RS256: 'RS256',
|
||||||
RS384: 'RS384',
|
RS384: 'RS384',
|
||||||
RS512: 'RS512',
|
RS512: 'RS512',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const ECDSAEncryptionType = {
|
export const ECDSAEncryptionType = {
|
||||||
ES256: 'ES256',
|
ES256: 'ES256',
|
||||||
ES384: 'ES384',
|
ES384: 'ES384',
|
||||||
ES512: 'ES512',
|
ES512: 'ES512',
|
||||||
};
|
};
|
||||||
|
|
||||||
export interface envVarTypes {
|
export interface envVarTypes {
|
||||||
GOOGLE_CLIENT_ID: string;
|
GOOGLE_CLIENT_ID: string;
|
||||||
GOOGLE_CLIENT_SECRET: string;
|
GOOGLE_CLIENT_SECRET: string;
|
||||||
GITHUB_CLIENT_ID: string;
|
GITHUB_CLIENT_ID: string;
|
||||||
GITHUB_CLIENT_SECRET: string;
|
GITHUB_CLIENT_SECRET: string;
|
||||||
FACEBOOK_CLIENT_ID: string;
|
FACEBOOK_CLIENT_ID: string;
|
||||||
FACEBOOK_CLIENT_SECRET: string;
|
FACEBOOK_CLIENT_SECRET: string;
|
||||||
LINKEDIN_CLIENT_ID: string;
|
LINKEDIN_CLIENT_ID: string;
|
||||||
LINKEDIN_CLIENT_SECRET: string;
|
LINKEDIN_CLIENT_SECRET: string;
|
||||||
APPLE_CLIENT_ID: string;
|
APPLE_CLIENT_ID: string;
|
||||||
APPLE_CLIENT_SECRET: string;
|
APPLE_CLIENT_SECRET: string;
|
||||||
TWITTER_CLIENT_ID: string;
|
TWITTER_CLIENT_ID: string;
|
||||||
TWITTER_CLIENT_SECRET: string;
|
TWITTER_CLIENT_SECRET: string;
|
||||||
ROLES: [string] | [];
|
ROLES: [string] | [];
|
||||||
DEFAULT_ROLES: [string] | [];
|
DEFAULT_ROLES: [string] | [];
|
||||||
PROTECTED_ROLES: [string] | [];
|
PROTECTED_ROLES: [string] | [];
|
||||||
JWT_TYPE: string;
|
JWT_TYPE: string;
|
||||||
JWT_SECRET: string;
|
JWT_SECRET: string;
|
||||||
JWT_ROLE_CLAIM: string;
|
JWT_ROLE_CLAIM: string;
|
||||||
JWT_PRIVATE_KEY: string;
|
JWT_PRIVATE_KEY: string;
|
||||||
JWT_PUBLIC_KEY: string;
|
JWT_PUBLIC_KEY: string;
|
||||||
REDIS_URL: string;
|
REDIS_URL: string;
|
||||||
SMTP_HOST: string;
|
SMTP_HOST: string;
|
||||||
SMTP_PORT: string;
|
SMTP_PORT: string;
|
||||||
SMTP_USERNAME: string;
|
SMTP_USERNAME: string;
|
||||||
SMTP_PASSWORD: string;
|
SMTP_PASSWORD: string;
|
||||||
SENDER_EMAIL: string;
|
SENDER_EMAIL: string;
|
||||||
ALLOWED_ORIGINS: [string] | [];
|
ALLOWED_ORIGINS: [string] | [];
|
||||||
ORGANIZATION_NAME: string;
|
ORGANIZATION_NAME: string;
|
||||||
ORGANIZATION_LOGO: string;
|
ORGANIZATION_LOGO: string;
|
||||||
CUSTOM_ACCESS_TOKEN_SCRIPT: string;
|
CUSTOM_ACCESS_TOKEN_SCRIPT: string;
|
||||||
ADMIN_SECRET: string;
|
ADMIN_SECRET: string;
|
||||||
APP_COOKIE_SECURE: boolean;
|
APP_COOKIE_SECURE: boolean;
|
||||||
ADMIN_COOKIE_SECURE: boolean;
|
ADMIN_COOKIE_SECURE: boolean;
|
||||||
DISABLE_LOGIN_PAGE: boolean;
|
DISABLE_LOGIN_PAGE: boolean;
|
||||||
DISABLE_MAGIC_LINK_LOGIN: boolean;
|
DISABLE_MAGIC_LINK_LOGIN: boolean;
|
||||||
DISABLE_EMAIL_VERIFICATION: boolean;
|
DISABLE_EMAIL_VERIFICATION: boolean;
|
||||||
DISABLE_BASIC_AUTHENTICATION: boolean;
|
DISABLE_BASIC_AUTHENTICATION: boolean;
|
||||||
DISABLE_SIGN_UP: boolean;
|
DISABLE_SIGN_UP: boolean;
|
||||||
DISABLE_STRONG_PASSWORD: boolean;
|
DISABLE_STRONG_PASSWORD: boolean;
|
||||||
OLD_ADMIN_SECRET: string;
|
OLD_ADMIN_SECRET: string;
|
||||||
DATABASE_NAME: string;
|
DATABASE_NAME: string;
|
||||||
DATABASE_TYPE: string;
|
DATABASE_TYPE: string;
|
||||||
DATABASE_URL: string;
|
DATABASE_URL: string;
|
||||||
ACCESS_TOKEN_EXPIRY_TIME: string;
|
ACCESS_TOKEN_EXPIRY_TIME: string;
|
||||||
DISABLE_MULTI_FACTOR_AUTHENTICATION: boolean;
|
DISABLE_MULTI_FACTOR_AUTHENTICATION: boolean;
|
||||||
ENFORCE_MULTI_FACTOR_AUTHENTICATION: boolean;
|
ENFORCE_MULTI_FACTOR_AUTHENTICATION: boolean;
|
||||||
}
|
}
|
||||||
|
|
||||||
export const envSubViews = {
|
export const envSubViews = {
|
||||||
INSTANCE_INFO: 'instance-info',
|
INSTANCE_INFO: 'instance-info',
|
||||||
ROLES: 'roles',
|
ROLES: 'roles',
|
||||||
JWT_CONFIG: 'jwt-config',
|
JWT_CONFIG: 'jwt-config',
|
||||||
SESSION_STORAGE: 'session-storage',
|
SESSION_STORAGE: 'session-storage',
|
||||||
EMAIL_CONFIG: 'email-config',
|
EMAIL_CONFIG: 'email-config',
|
||||||
WHITELIST_VARIABLES: 'whitelist-variables',
|
WHITELIST_VARIABLES: 'whitelist-variables',
|
||||||
ORGANIZATION_INFO: 'organization-info',
|
ORGANIZATION_INFO: 'organization-info',
|
||||||
ACCESS_TOKEN: 'access-token',
|
ACCESS_TOKEN: 'access-token',
|
||||||
FEATURES: 'features',
|
FEATURES: 'features',
|
||||||
ADMIN_SECRET: 'admin-secret',
|
ADMIN_SECRET: 'admin-secret',
|
||||||
DB_CRED: 'db-cred',
|
DB_CRED: 'db-cred',
|
||||||
};
|
};
|
||||||
|
|
||||||
export enum WebhookInputDataFields {
|
export enum WebhookInputDataFields {
|
||||||
ID = 'id',
|
ID = 'id',
|
||||||
EVENT_NAME = 'event_name',
|
EVENT_NAME = 'event_name',
|
||||||
ENDPOINT = 'endpoint',
|
ENDPOINT = 'endpoint',
|
||||||
ENABLED = 'enabled',
|
ENABLED = 'enabled',
|
||||||
HEADERS = 'headers',
|
HEADERS = 'headers',
|
||||||
}
|
}
|
||||||
|
|
||||||
export enum EmailTemplateInputDataFields {
|
export enum EmailTemplateInputDataFields {
|
||||||
ID = 'id',
|
ID = 'id',
|
||||||
EVENT_NAME = 'event_name',
|
EVENT_NAME = 'event_name',
|
||||||
SUBJECT = 'subject',
|
SUBJECT = 'subject',
|
||||||
CREATED_AT = 'created_at',
|
CREATED_AT = 'created_at',
|
||||||
TEMPLATE = 'template',
|
TEMPLATE = 'template',
|
||||||
DESIGN = 'design',
|
DESIGN = 'design',
|
||||||
}
|
}
|
||||||
|
|
||||||
export enum WebhookInputHeaderFields {
|
export enum WebhookInputHeaderFields {
|
||||||
KEY = 'key',
|
KEY = 'key',
|
||||||
VALUE = 'value',
|
VALUE = 'value',
|
||||||
}
|
}
|
||||||
|
|
||||||
export enum UpdateModalViews {
|
export enum UpdateModalViews {
|
||||||
ADD = 'add',
|
ADD = 'add',
|
||||||
Edit = 'edit',
|
Edit = 'edit',
|
||||||
}
|
}
|
||||||
|
|
||||||
export const pageLimits: number[] = [5, 10, 15];
|
export const pageLimits: number[] = [5, 10, 15];
|
||||||
|
|
||||||
export const webhookEventNames = {
|
export const webhookEventNames = {
|
||||||
'User signup': 'user.signup',
|
'User signup': 'user.signup',
|
||||||
'User created': 'user.created',
|
'User created': 'user.created',
|
||||||
'User login': 'user.login',
|
'User login': 'user.login',
|
||||||
'User deleted': 'user.deleted',
|
'User deleted': 'user.deleted',
|
||||||
'User access enabled': 'user.access_enabled',
|
'User access enabled': 'user.access_enabled',
|
||||||
'User access revoked': 'user.access_revoked',
|
'User access revoked': 'user.access_revoked',
|
||||||
};
|
};
|
||||||
|
|
||||||
export const emailTemplateEventNames = {
|
export const emailTemplateEventNames = {
|
||||||
Signup: 'basic_auth_signup',
|
Signup: 'basic_auth_signup',
|
||||||
'Magic Link Login': 'magic_link_login',
|
'Magic Link Login': 'magic_link_login',
|
||||||
'Update Email': 'update_email',
|
'Update Email': 'update_email',
|
||||||
'Forgot Password': 'forgot_password',
|
'Forgot Password': 'forgot_password',
|
||||||
'Verify Otp': 'verify_otp',
|
'Verify Otp': 'verify_otp',
|
||||||
'Invite member': 'invite_member',
|
'Invite member': 'invite_member',
|
||||||
};
|
};
|
||||||
|
|
||||||
export enum webhookVerifiedStatus {
|
export enum webhookVerifiedStatus {
|
||||||
VERIFIED = 'verified',
|
VERIFIED = 'verified',
|
||||||
NOT_VERIFIED = 'not_verified',
|
NOT_VERIFIED = 'not_verified',
|
||||||
PENDING = 'verification_pending',
|
PENDING = 'verification_pending',
|
||||||
}
|
}
|
||||||
|
|
||||||
export const emailTemplateVariables = {
|
export const emailTemplateVariables = {
|
||||||
'user.id': {
|
'user.id': {
|
||||||
description: `User identifier`,
|
description: `User identifier`,
|
||||||
value: '{.user.id}}',
|
value: '{.user.id}}',
|
||||||
},
|
},
|
||||||
'user.email': {
|
'user.email': {
|
||||||
description: 'User email address',
|
description: 'User email address',
|
||||||
value: '{.user.email}}',
|
value: '{.user.email}}',
|
||||||
},
|
},
|
||||||
'user.given_name': {
|
'user.given_name': {
|
||||||
description: `User first name`,
|
description: `User first name`,
|
||||||
value: '{.user.given_name}}',
|
value: '{.user.given_name}}',
|
||||||
},
|
},
|
||||||
'user.family_name': {
|
'user.family_name': {
|
||||||
description: `User last name`,
|
description: `User last name`,
|
||||||
value: '{.user.family_name}}',
|
value: '{.user.family_name}}',
|
||||||
},
|
},
|
||||||
'user.middle_name': {
|
'user.middle_name': {
|
||||||
description: `Middle name of user`,
|
description: `Middle name of user`,
|
||||||
value: '{.user.middle_name}}',
|
value: '{.user.middle_name}}',
|
||||||
},
|
},
|
||||||
'user.nickname': {
|
'user.nickname': {
|
||||||
description: `Nick name of user`,
|
description: `Nick name of user`,
|
||||||
value: '{.user.nickname}}',
|
value: '{.user.nickname}}',
|
||||||
},
|
},
|
||||||
'user.preferred_username': {
|
'user.preferred_username': {
|
||||||
description: `Username, by default it is email`,
|
description: `Username, by default it is email`,
|
||||||
value: '{.user.preferred_username}}',
|
value: '{.user.preferred_username}}',
|
||||||
},
|
},
|
||||||
'user.signup_methods': {
|
'user.signup_methods': {
|
||||||
description: `Comma separated list of methods using which user has signed up`,
|
description: `Comma separated list of methods using which user has signed up`,
|
||||||
value: '{.user.signup_methods}}',
|
value: '{.user.signup_methods}}',
|
||||||
},
|
},
|
||||||
'user.email_verified': {
|
'user.email_verified': {
|
||||||
description: `Whether email is verified or not`,
|
description: `Whether email is verified or not`,
|
||||||
value: '{.user.email_verified}}',
|
value: '{.user.email_verified}}',
|
||||||
},
|
},
|
||||||
'user.picture': {
|
'user.picture': {
|
||||||
description: `URL of the user profile picture`,
|
description: `URL of the user profile picture`,
|
||||||
value: '{.user.picture}}',
|
value: '{.user.picture}}',
|
||||||
},
|
},
|
||||||
'user.roles': {
|
'user.roles': {
|
||||||
description: `Comma separated list of roles assigned to user`,
|
description: `Comma separated list of roles assigned to user`,
|
||||||
value: '{.user.roles}}',
|
value: '{.user.roles}}',
|
||||||
},
|
},
|
||||||
'user.gender': {
|
'user.gender': {
|
||||||
description: `Gender of user`,
|
description: `Gender of user`,
|
||||||
value: '{.user.gender}}',
|
value: '{.user.gender}}',
|
||||||
},
|
},
|
||||||
'user.birthdate': {
|
'user.birthdate': {
|
||||||
description: `BirthDate of user`,
|
description: `BirthDate of user`,
|
||||||
value: '{.user.birthdate}}',
|
value: '{.user.birthdate}}',
|
||||||
},
|
},
|
||||||
'user.phone_number': {
|
'user.phone_number': {
|
||||||
description: `Phone number of user`,
|
description: `Phone number of user`,
|
||||||
value: '{.user.phone_number}}',
|
value: '{.user.phone_number}}',
|
||||||
},
|
},
|
||||||
'user.phone_number_verified': {
|
'user.phone_number_verified': {
|
||||||
description: `Whether phone number is verified or not`,
|
description: `Whether phone number is verified or not`,
|
||||||
value: '{.user.phone_number_verified}}',
|
value: '{.user.phone_number_verified}}',
|
||||||
},
|
},
|
||||||
'user.created_at': {
|
'user.created_at': {
|
||||||
description: `User created at time`,
|
description: `User created at time`,
|
||||||
value: '{.user.created_at}}',
|
value: '{.user.created_at}}',
|
||||||
},
|
},
|
||||||
'user.updated_at': {
|
'user.updated_at': {
|
||||||
description: `Last updated time at user`,
|
description: `Last updated time at user`,
|
||||||
value: '{.user.updated_at}}',
|
value: '{.user.updated_at}}',
|
||||||
},
|
},
|
||||||
'organization.name': {
|
'organization.name': {
|
||||||
description: `Organization name`,
|
description: `Organization name`,
|
||||||
value: '{.organization.name}}',
|
value: '{.organization.name}}',
|
||||||
},
|
},
|
||||||
'organization.logo': {
|
'organization.logo': {
|
||||||
description: `Organization logo`,
|
description: `Organization logo`,
|
||||||
value: '{.organization.logo}}',
|
value: '{.organization.logo}}',
|
||||||
},
|
},
|
||||||
verification_url: {
|
verification_url: {
|
||||||
description: `Verification URL in case of events other than verify otp`,
|
description: `Verification URL in case of events other than verify otp`,
|
||||||
value: '{.verification_url}}',
|
value: '{.verification_url}}',
|
||||||
},
|
},
|
||||||
otp: {
|
otp: {
|
||||||
description: `OTP sent during login with Multi factor authentication`,
|
description: `OTP sent during login with Multi factor authentication`,
|
||||||
value: '{.otp}}',
|
value: '{.otp}}',
|
||||||
},
|
},
|
||||||
};
|
};
|
||||||
|
|
||||||
export const webhookPayloadExample: string = `{
|
export const webhookPayloadExample: string = `{
|
||||||
|
|||||||
@@ -169,12 +169,3 @@ export const WebhookLogsQuery = `
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
`;
|
`;
|
||||||
|
|
||||||
export const GetAvailableRolesQuery = `
|
|
||||||
query {
|
|
||||||
_env {
|
|
||||||
ROLES
|
|
||||||
PROTECTED_ROLES
|
|
||||||
}
|
|
||||||
}
|
|
||||||
`;
|
|
||||||
|
|||||||
@@ -25,6 +25,4 @@ const (
|
|||||||
DbTypeCockroachDB = "cockroachdb"
|
DbTypeCockroachDB = "cockroachdb"
|
||||||
// DbTypePlanetScaleDB is the planetscale database type
|
// DbTypePlanetScaleDB is the planetscale database type
|
||||||
DbTypePlanetScaleDB = "planetscale"
|
DbTypePlanetScaleDB = "planetscale"
|
||||||
// DbTypeDynamoDB is the Dynamo database type
|
|
||||||
DbTypeDynamoDB = "dynamodb"
|
|
||||||
)
|
)
|
||||||
|
|||||||
@@ -21,12 +21,6 @@ const (
|
|||||||
EnvKeyDatabaseType = "DATABASE_TYPE"
|
EnvKeyDatabaseType = "DATABASE_TYPE"
|
||||||
// EnvKeyDatabaseURL key for env variable DATABASE_URL
|
// EnvKeyDatabaseURL key for env variable DATABASE_URL
|
||||||
EnvKeyDatabaseURL = "DATABASE_URL"
|
EnvKeyDatabaseURL = "DATABASE_URL"
|
||||||
// EnvAwsRegion key for env variable AWS REGION
|
|
||||||
EnvAwsRegion = "AWS_REGION"
|
|
||||||
// EnvAwsAccessKeyID key for env variable AWS_ACCESS_KEY_ID
|
|
||||||
EnvAwsAccessKeyID = "AWS_ACCESS_KEY_ID"
|
|
||||||
// EnvAwsAccessKey key for env variable AWS_SECRET_ACCESS_KEY
|
|
||||||
EnvAwsSecretAccessKey = "AWS_SECRET_ACCESS_KEY"
|
|
||||||
// EnvKeyDatabaseName key for env variable DATABASE_NAME
|
// EnvKeyDatabaseName key for env variable DATABASE_NAME
|
||||||
EnvKeyDatabaseName = "DATABASE_NAME"
|
EnvKeyDatabaseName = "DATABASE_NAME"
|
||||||
// EnvKeyDatabaseUsername key for env variable DATABASE_USERNAME
|
// EnvKeyDatabaseUsername key for env variable DATABASE_USERNAME
|
||||||
|
|||||||
19
server/constants/oauth2.go
Normal file
19
server/constants/oauth2.go
Normal file
@@ -0,0 +1,19 @@
|
|||||||
|
package constants
|
||||||
|
|
||||||
|
const (
|
||||||
|
// - query: for Authorization Code grant. 302 Found triggers redirect.
|
||||||
|
ResponseModeQuery = "query"
|
||||||
|
// - fragment: for Implicit grant. 302 Found triggers redirect.
|
||||||
|
ResponseModeFragment = "fragment"
|
||||||
|
// - form_post: 200 OK with response parameters embedded in an HTML form as hidden parameters.
|
||||||
|
ResponseModeFormPost = "form_post"
|
||||||
|
// - web_message: For Silent Authentication. Uses HTML5 web messaging.
|
||||||
|
ResponseModeWebMessage = "web_message"
|
||||||
|
|
||||||
|
// For the Authorization Code grant, use response_type=code to include the authorization code.
|
||||||
|
ResponseTypeCode = "code"
|
||||||
|
// For the Implicit grant, use response_type=token to include an access token.
|
||||||
|
ResponseTypeToken = "token"
|
||||||
|
// For the Implicit grant of id_token, use response_type=id_token to include an identifier token.
|
||||||
|
ResponseTypeIDToken = "id_token"
|
||||||
|
)
|
||||||
@@ -7,7 +7,6 @@ import (
|
|||||||
"github.com/authorizerdev/authorizer/server/db/providers"
|
"github.com/authorizerdev/authorizer/server/db/providers"
|
||||||
"github.com/authorizerdev/authorizer/server/db/providers/arangodb"
|
"github.com/authorizerdev/authorizer/server/db/providers/arangodb"
|
||||||
"github.com/authorizerdev/authorizer/server/db/providers/cassandradb"
|
"github.com/authorizerdev/authorizer/server/db/providers/cassandradb"
|
||||||
"github.com/authorizerdev/authorizer/server/db/providers/dynamodb"
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/providers/mongodb"
|
"github.com/authorizerdev/authorizer/server/db/providers/mongodb"
|
||||||
"github.com/authorizerdev/authorizer/server/db/providers/sql"
|
"github.com/authorizerdev/authorizer/server/db/providers/sql"
|
||||||
"github.com/authorizerdev/authorizer/server/memorystore"
|
"github.com/authorizerdev/authorizer/server/memorystore"
|
||||||
@@ -21,11 +20,10 @@ func InitDB() error {
|
|||||||
|
|
||||||
envs := memorystore.RequiredEnvStoreObj.GetRequiredEnv()
|
envs := memorystore.RequiredEnvStoreObj.GetRequiredEnv()
|
||||||
|
|
||||||
isSQL := envs.DatabaseType != constants.DbTypeArangodb && envs.DatabaseType != constants.DbTypeMongodb && envs.DatabaseType != constants.DbTypeCassandraDB && envs.DatabaseType != constants.DbTypeScyllaDB && envs.DatabaseType != constants.DbTypeDynamoDB
|
isSQL := envs.DatabaseType != constants.DbTypeArangodb && envs.DatabaseType != constants.DbTypeMongodb && envs.DatabaseType != constants.DbTypeCassandraDB && envs.DatabaseType != constants.DbTypeScyllaDB
|
||||||
isArangoDB := envs.DatabaseType == constants.DbTypeArangodb
|
isArangoDB := envs.DatabaseType == constants.DbTypeArangodb
|
||||||
isMongoDB := envs.DatabaseType == constants.DbTypeMongodb
|
isMongoDB := envs.DatabaseType == constants.DbTypeMongodb
|
||||||
isCassandra := envs.DatabaseType == constants.DbTypeCassandraDB || envs.DatabaseType == constants.DbTypeScyllaDB
|
isCassandra := envs.DatabaseType == constants.DbTypeCassandraDB || envs.DatabaseType == constants.DbTypeScyllaDB
|
||||||
isDynamoDB := envs.DatabaseType == constants.DbTypeDynamoDB
|
|
||||||
|
|
||||||
if isSQL {
|
if isSQL {
|
||||||
log.Info("Initializing SQL Driver for: ", envs.DatabaseType)
|
log.Info("Initializing SQL Driver for: ", envs.DatabaseType)
|
||||||
@@ -63,14 +61,5 @@ func InitDB() error {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
if isDynamoDB {
|
|
||||||
log.Info("Initializing DynamoDB Driver for: ", envs.DatabaseType)
|
|
||||||
Provider, err = dynamodb.NewProvider()
|
|
||||||
if err != nil {
|
|
||||||
log.Fatal("Failed to initialize DynamoDB driver: ", err)
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
return nil
|
return nil
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -9,14 +9,14 @@ import (
|
|||||||
|
|
||||||
// EmailTemplate model for database
|
// EmailTemplate model for database
|
||||||
type EmailTemplate struct {
|
type EmailTemplate struct {
|
||||||
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty" dynamo:"key,omitempty"` // for arangodb
|
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty"` // for arangodb
|
||||||
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id" dynamo:"id,hash"`
|
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id"`
|
||||||
EventName string `gorm:"unique" json:"event_name" bson:"event_name" cql:"event_name" dynamo:"event_name" index:"event_name,hash"`
|
EventName string `gorm:"unique" json:"event_name" bson:"event_name" cql:"event_name"`
|
||||||
Subject string `json:"subject" bson:"subject" cql:"subject" dynamo:"subject"`
|
Subject string `json:"subject" bson:"subject" cql:"subject"`
|
||||||
Template string `json:"template" bson:"template" cql:"template" dynamo:"template"`
|
Template string `json:"template" bson:"template" cql:"template"`
|
||||||
Design string `json:"design" bson:"design" cql:"design" dynamo:"design"`
|
Design string `json:"design" bson:"design" cql:"design"`
|
||||||
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at" dynamo:"created_at"`
|
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at"`
|
||||||
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at" dynamo:"updated_at"`
|
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at"`
|
||||||
}
|
}
|
||||||
|
|
||||||
// AsAPIEmailTemplate to return email template as graphql response object
|
// AsAPIEmailTemplate to return email template as graphql response object
|
||||||
|
|||||||
@@ -4,10 +4,10 @@ package models
|
|||||||
|
|
||||||
// Env model for db
|
// Env model for db
|
||||||
type Env struct {
|
type Env struct {
|
||||||
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty" dynamo:"key,omitempty"` // for arangodb
|
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty"` // for arangodb
|
||||||
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id" dynamo:"id,hash"`
|
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id"`
|
||||||
EnvData string `json:"env" bson:"env" cql:"env" dynamo:"env"`
|
EnvData string `json:"env" bson:"env" cql:"env"`
|
||||||
Hash string `json:"hash" bson:"hash" cql:"hash" dynamo:"hash"`
|
Hash string `json:"hash" bson:"hash" cql:"hash"`
|
||||||
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at" dynamo:"updated_at"`
|
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at"`
|
||||||
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at" dynamo:"created_at"`
|
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at"`
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -2,15 +2,11 @@ package models
|
|||||||
|
|
||||||
// OTP model for database
|
// OTP model for database
|
||||||
type OTP struct {
|
type OTP struct {
|
||||||
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty" dynamo:"key,omitempty"` // for arangodb
|
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty"` // for arangodb
|
||||||
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id" dynamo:"id,hash"`
|
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id"`
|
||||||
Email string `gorm:"unique" json:"email" bson:"email" cql:"email" dynamo:"email" index:"email,hash"`
|
Email string `gorm:"unique" json:"email" bson:"email" cql:"email"`
|
||||||
Otp string `json:"otp" bson:"otp" cql:"otp" dynamo:"otp"`
|
Otp string `json:"otp" bson:"otp" cql:"otp"`
|
||||||
ExpiresAt int64 `json:"expires_at" bson:"expires_at" cql:"expires_at" dynamo:"expires_at"`
|
ExpiresAt int64 `json:"expires_at" bson:"expires_at" cql:"expires_at"`
|
||||||
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at" dynamo:"created_at"`
|
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at"`
|
||||||
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at" dynamo:"updated_at"`
|
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at"`
|
||||||
}
|
|
||||||
|
|
||||||
type Paging struct {
|
|
||||||
ID string `json:"id,omitempty" dynamo:"id,hash"`
|
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -4,11 +4,11 @@ package models
|
|||||||
|
|
||||||
// Session model for db
|
// Session model for db
|
||||||
type Session struct {
|
type Session struct {
|
||||||
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty" dynamo:"key,omitempty"` // for arangodb
|
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty"` // for arangodb
|
||||||
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id" dynamo:"id,hash"`
|
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id"`
|
||||||
UserID string `gorm:"type:char(36)" json:"user_id" bson:"user_id" cql:"user_id" dynamo:"user_id" index:"user_id,hash"`
|
UserID string `gorm:"type:char(36)" json:"user_id" bson:"user_id" cql:"user_id"`
|
||||||
UserAgent string `json:"user_agent" bson:"user_agent" cql:"user_agent" dynamo:"user_agent"`
|
UserAgent string `json:"user_agent" bson:"user_agent" cql:"user_agent"`
|
||||||
IP string `json:"ip" bson:"ip" cql:"ip" dynamo:"ip"`
|
IP string `json:"ip" bson:"ip" cql:"ip"`
|
||||||
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at" dynamo:"created_at"`
|
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at"`
|
||||||
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at" dynamo:"updated_at"`
|
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at"`
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -12,27 +12,27 @@ import (
|
|||||||
|
|
||||||
// User model for db
|
// User model for db
|
||||||
type User struct {
|
type User struct {
|
||||||
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty" dynamo:"key,omitempty"` // for arangodb
|
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty"` // for arangodb
|
||||||
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id" dynamo:"id,hash"`
|
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id"`
|
||||||
|
|
||||||
Email string `gorm:"unique" json:"email" bson:"email" cql:"email" dynamo:"email" index:"email,hash"`
|
Email string `gorm:"unique" json:"email" bson:"email" cql:"email"`
|
||||||
EmailVerifiedAt *int64 `json:"email_verified_at" bson:"email_verified_at" cql:"email_verified_at" dynamo:"email_verified_at"`
|
EmailVerifiedAt *int64 `json:"email_verified_at" bson:"email_verified_at" cql:"email_verified_at"`
|
||||||
Password *string `json:"password" bson:"password" cql:"password" dynamo:"password"`
|
Password *string `json:"password" bson:"password" cql:"password"`
|
||||||
SignupMethods string `json:"signup_methods" bson:"signup_methods" cql:"signup_methods" dynamo:"signup_methods"`
|
SignupMethods string `json:"signup_methods" bson:"signup_methods" cql:"signup_methods"`
|
||||||
GivenName *string `json:"given_name" bson:"given_name" cql:"given_name" dynamo:"given_name"`
|
GivenName *string `json:"given_name" bson:"given_name" cql:"given_name"`
|
||||||
FamilyName *string `json:"family_name" bson:"family_name" cql:"family_name" dynamo:"family_name"`
|
FamilyName *string `json:"family_name" bson:"family_name" cql:"family_name"`
|
||||||
MiddleName *string `json:"middle_name" bson:"middle_name" cql:"middle_name" dynamo:"middle_name"`
|
MiddleName *string `json:"middle_name" bson:"middle_name" cql:"middle_name"`
|
||||||
Nickname *string `json:"nickname" bson:"nickname" cql:"nickname" dynamo:"nickname"`
|
Nickname *string `json:"nickname" bson:"nickname" cql:"nickname"`
|
||||||
Gender *string `json:"gender" bson:"gender" cql:"gender" dynamo:"gender"`
|
Gender *string `json:"gender" bson:"gender" cql:"gender"`
|
||||||
Birthdate *string `json:"birthdate" bson:"birthdate" cql:"birthdate" dynamo:"birthdate"`
|
Birthdate *string `json:"birthdate" bson:"birthdate" cql:"birthdate"`
|
||||||
PhoneNumber *string `gorm:"unique" json:"phone_number" bson:"phone_number" cql:"phone_number" dynamo:"phone_number"`
|
PhoneNumber *string `gorm:"unique" json:"phone_number" bson:"phone_number" cql:"phone_number"`
|
||||||
PhoneNumberVerifiedAt *int64 `json:"phone_number_verified_at" bson:"phone_number_verified_at" cql:"phone_number_verified_at" dynamo:"phone_number_verified_at"`
|
PhoneNumberVerifiedAt *int64 `json:"phone_number_verified_at" bson:"phone_number_verified_at" cql:"phone_number_verified_at"`
|
||||||
Picture *string `json:"picture" bson:"picture" cql:"picture" dynamo:"picture"`
|
Picture *string `json:"picture" bson:"picture" cql:"picture"`
|
||||||
Roles string `json:"roles" bson:"roles" cql:"roles" dynamo:"roles"`
|
Roles string `json:"roles" bson:"roles" cql:"roles"`
|
||||||
RevokedTimestamp *int64 `json:"revoked_timestamp" bson:"revoked_timestamp" cql:"revoked_timestamp" dynamo:"revoked_timestamp"`
|
RevokedTimestamp *int64 `json:"revoked_timestamp" bson:"revoked_timestamp" cql:"revoked_timestamp"`
|
||||||
IsMultiFactorAuthEnabled *bool `json:"is_multi_factor_auth_enabled" bson:"is_multi_factor_auth_enabled" cql:"is_multi_factor_auth_enabled" dynamo:"is_multi_factor_auth_enabled"`
|
IsMultiFactorAuthEnabled *bool `json:"is_multi_factor_auth_enabled" bson:"is_multi_factor_auth_enabled" cql:"is_multi_factor_auth_enabled"`
|
||||||
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at" dynamo:"updated_at"`
|
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at"`
|
||||||
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at" dynamo:"created_at"`
|
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at"`
|
||||||
}
|
}
|
||||||
|
|
||||||
func (user *User) AsAPIUser() *model.User {
|
func (user *User) AsAPIUser() *model.User {
|
||||||
|
|||||||
@@ -11,16 +11,16 @@ import (
|
|||||||
|
|
||||||
// VerificationRequest model for db
|
// VerificationRequest model for db
|
||||||
type VerificationRequest struct {
|
type VerificationRequest struct {
|
||||||
Key string `json:"_key,omitempty" bson:"_key" cql:"_key,omitempty" dynamo:"key,omitempty"` // for arangodb
|
Key string `json:"_key,omitempty" bson:"_key" cql:"_key,omitempty"` // for arangodb
|
||||||
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id" dynamo:"id,hash"`
|
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id"`
|
||||||
Token string `json:"token" bson:"token" cql:"jwt_token" dynamo:"token" index:"token,hash"`
|
Token string `json:"token" bson:"token" cql:"jwt_token"` // token is reserved keyword in cassandra
|
||||||
Identifier string `gorm:"uniqueIndex:idx_email_identifier;type:varchar(64)" json:"identifier" bson:"identifier" cql:"identifier" dynamo:"identifier"`
|
Identifier string `gorm:"uniqueIndex:idx_email_identifier;type:varchar(64)" json:"identifier" bson:"identifier" cql:"identifier"`
|
||||||
ExpiresAt int64 `json:"expires_at" bson:"expires_at" cql:"expires_at" dynamo:"expires_at"`
|
ExpiresAt int64 `json:"expires_at" bson:"expires_at" cql:"expires_at"`
|
||||||
Email string `gorm:"uniqueIndex:idx_email_identifier;type:varchar(256)" json:"email" bson:"email" cql:"email" dynamo:"email"`
|
Email string `gorm:"uniqueIndex:idx_email_identifier;type:varchar(256)" json:"email" bson:"email" cql:"email"`
|
||||||
Nonce string `json:"nonce" bson:"nonce" cql:"nonce" dynamo:"nonce"`
|
Nonce string `json:"nonce" bson:"nonce" cql:"nonce"`
|
||||||
RedirectURI string `json:"redirect_uri" bson:"redirect_uri" cql:"redirect_uri" dynamo:"redirect_uri"`
|
RedirectURI string `json:"redirect_uri" bson:"redirect_uri" cql:"redirect_uri"`
|
||||||
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at" dynamo:"created_at"`
|
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at"`
|
||||||
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at" dynamo:"updated_at"`
|
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at"`
|
||||||
}
|
}
|
||||||
|
|
||||||
func (v *VerificationRequest) AsAPIVerificationRequest() *model.VerificationRequest {
|
func (v *VerificationRequest) AsAPIVerificationRequest() *model.VerificationRequest {
|
||||||
|
|||||||
@@ -12,14 +12,14 @@ import (
|
|||||||
|
|
||||||
// Webhook model for db
|
// Webhook model for db
|
||||||
type Webhook struct {
|
type Webhook struct {
|
||||||
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty" dynamo:"key,omitempty"` // for arangodb
|
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty"` // for arangodb
|
||||||
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id" dynamo:"id,hash"`
|
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id"`
|
||||||
EventName string `gorm:"unique" json:"event_name" bson:"event_name" cql:"event_name" dynamo:"event_name" index:"event_name,hash"`
|
EventName string `gorm:"unique" json:"event_name" bson:"event_name" cql:"event_name"`
|
||||||
EndPoint string `json:"endpoint" bson:"endpoint" cql:"endpoint" dynamo:"endpoint"`
|
EndPoint string `json:"endpoint" bson:"endpoint" cql:"endpoint"`
|
||||||
Headers string `json:"headers" bson:"headers" cql:"headers" dynamo:"headers"`
|
Headers string `json:"headers" bson:"headers" cql:"headers"`
|
||||||
Enabled bool `json:"enabled" bson:"enabled" cql:"enabled" dynamo:"enabled"`
|
Enabled bool `json:"enabled" bson:"enabled" cql:"enabled"`
|
||||||
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at" dynamo:"created_at"`
|
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at"`
|
||||||
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at" dynamo:"updated_at"`
|
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at"`
|
||||||
}
|
}
|
||||||
|
|
||||||
// AsAPIWebhook to return webhook as graphql response object
|
// AsAPIWebhook to return webhook as graphql response object
|
||||||
|
|||||||
@@ -11,14 +11,14 @@ import (
|
|||||||
|
|
||||||
// WebhookLog model for db
|
// WebhookLog model for db
|
||||||
type WebhookLog struct {
|
type WebhookLog struct {
|
||||||
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty" dynamo:"key,omitempty"` // for arangodb
|
Key string `json:"_key,omitempty" bson:"_key,omitempty" cql:"_key,omitempty"` // for arangodb
|
||||||
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id" dynamo:"id,hash"`
|
ID string `gorm:"primaryKey;type:char(36)" json:"_id" bson:"_id" cql:"id"`
|
||||||
HttpStatus int64 `json:"http_status" bson:"http_status" cql:"http_status" dynamo:"http_status"`
|
HttpStatus int64 `json:"http_status" bson:"http_status" cql:"http_status"`
|
||||||
Response string `json:"response" bson:"response" cql:"response" dynamo:"response"`
|
Response string `json:"response" bson:"response" cql:"response"`
|
||||||
Request string `json:"request" bson:"request" cql:"request" dynamo:"request"`
|
Request string `json:"request" bson:"request" cql:"request"`
|
||||||
WebhookID string `gorm:"type:char(36)" json:"webhook_id" bson:"webhook_id" cql:"webhook_id" dynamo:"webhook_id" index:"webhook_id,hash"`
|
WebhookID string `gorm:"type:char(36)" json:"webhook_id" bson:"webhook_id" cql:"webhook_id"`
|
||||||
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at" dynamo:"created_at"`
|
CreatedAt int64 `json:"created_at" bson:"created_at" cql:"created_at"`
|
||||||
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at" dynamo:"updated_at"`
|
UpdatedAt int64 `json:"updated_at" bson:"updated_at" cql:"updated_at"`
|
||||||
}
|
}
|
||||||
|
|
||||||
// AsAPIWebhookLog to return webhook log as graphql response object
|
// AsAPIWebhookLog to return webhook log as graphql response object
|
||||||
|
|||||||
@@ -1,121 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"context"
|
|
||||||
"errors"
|
|
||||||
"time"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/authorizerdev/authorizer/server/graph/model"
|
|
||||||
"github.com/google/uuid"
|
|
||||||
"github.com/guregu/dynamo"
|
|
||||||
)
|
|
||||||
|
|
||||||
// AddEmailTemplate to add EmailTemplate
|
|
||||||
func (p *provider) AddEmailTemplate(ctx context.Context, emailTemplate models.EmailTemplate) (*model.EmailTemplate, error) {
|
|
||||||
collection := p.db.Table(models.Collections.EmailTemplate)
|
|
||||||
if emailTemplate.ID == "" {
|
|
||||||
emailTemplate.ID = uuid.New().String()
|
|
||||||
}
|
|
||||||
|
|
||||||
emailTemplate.Key = emailTemplate.ID
|
|
||||||
emailTemplate.CreatedAt = time.Now().Unix()
|
|
||||||
emailTemplate.UpdatedAt = time.Now().Unix()
|
|
||||||
err := collection.Put(emailTemplate).RunWithContext(ctx)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return emailTemplate.AsAPIEmailTemplate(), err
|
|
||||||
}
|
|
||||||
|
|
||||||
return emailTemplate.AsAPIEmailTemplate(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// UpdateEmailTemplate to update EmailTemplate
|
|
||||||
func (p *provider) UpdateEmailTemplate(ctx context.Context, emailTemplate models.EmailTemplate) (*model.EmailTemplate, error) {
|
|
||||||
collection := p.db.Table(models.Collections.EmailTemplate)
|
|
||||||
emailTemplate.UpdatedAt = time.Now().Unix()
|
|
||||||
err := UpdateByHashKey(collection, "id", emailTemplate.ID, emailTemplate)
|
|
||||||
if err != nil {
|
|
||||||
return emailTemplate.AsAPIEmailTemplate(), err
|
|
||||||
}
|
|
||||||
return emailTemplate.AsAPIEmailTemplate(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// ListEmailTemplates to list EmailTemplate
|
|
||||||
func (p *provider) ListEmailTemplate(ctx context.Context, pagination model.Pagination) (*model.EmailTemplates, error) {
|
|
||||||
|
|
||||||
var emailTemplate models.EmailTemplate
|
|
||||||
var iter dynamo.PagingIter
|
|
||||||
var lastEval dynamo.PagingKey
|
|
||||||
var iteration int64 = 0
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.EmailTemplate)
|
|
||||||
emailTemplates := []*model.EmailTemplate{}
|
|
||||||
paginationClone := pagination
|
|
||||||
scanner := collection.Scan()
|
|
||||||
count, err := scanner.Count()
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
|
|
||||||
for (paginationClone.Offset + paginationClone.Limit) > iteration {
|
|
||||||
iter = scanner.StartFrom(lastEval).Limit(paginationClone.Limit).Iter()
|
|
||||||
for iter.NextWithContext(ctx, &emailTemplate) {
|
|
||||||
if paginationClone.Offset == iteration {
|
|
||||||
emailTemplates = append(emailTemplates, emailTemplate.AsAPIEmailTemplate())
|
|
||||||
}
|
|
||||||
}
|
|
||||||
lastEval = iter.LastEvaluatedKey()
|
|
||||||
iteration += paginationClone.Limit
|
|
||||||
}
|
|
||||||
|
|
||||||
paginationClone.Total = count
|
|
||||||
|
|
||||||
return &model.EmailTemplates{
|
|
||||||
Pagination: &paginationClone,
|
|
||||||
EmailTemplates: emailTemplates,
|
|
||||||
}, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetEmailTemplateByID to get EmailTemplate by id
|
|
||||||
func (p *provider) GetEmailTemplateByID(ctx context.Context, emailTemplateID string) (*model.EmailTemplate, error) {
|
|
||||||
collection := p.db.Table(models.Collections.EmailTemplate)
|
|
||||||
var emailTemplate models.EmailTemplate
|
|
||||||
err := collection.Get("id", emailTemplateID).OneWithContext(ctx, &emailTemplate)
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
return emailTemplate.AsAPIEmailTemplate(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetEmailTemplateByEventName to get EmailTemplate by event_name
|
|
||||||
func (p *provider) GetEmailTemplateByEventName(ctx context.Context, eventName string) (*model.EmailTemplate, error) {
|
|
||||||
collection := p.db.Table(models.Collections.EmailTemplate)
|
|
||||||
var emailTemplates []models.EmailTemplate
|
|
||||||
var emailTemplate models.EmailTemplate
|
|
||||||
|
|
||||||
err := collection.Scan().Index("event_name").Filter("'event_name' = ?", eventName).Limit(1).AllWithContext(ctx, &emailTemplates)
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
if len(emailTemplates) > 0 {
|
|
||||||
emailTemplate = emailTemplates[0]
|
|
||||||
return emailTemplate.AsAPIEmailTemplate(), nil
|
|
||||||
} else {
|
|
||||||
return nil, errors.New("no record found")
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
// DeleteEmailTemplate to delete EmailTemplate
|
|
||||||
func (p *provider) DeleteEmailTemplate(ctx context.Context, emailTemplate *model.EmailTemplate) error {
|
|
||||||
collection := p.db.Table(models.Collections.EmailTemplate)
|
|
||||||
err := collection.Delete("id", emailTemplate.ID).RunWithContext(ctx)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
@@ -1,72 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"context"
|
|
||||||
"errors"
|
|
||||||
"fmt"
|
|
||||||
"time"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/google/uuid"
|
|
||||||
)
|
|
||||||
|
|
||||||
// AddEnv to save environment information in database
|
|
||||||
func (p *provider) AddEnv(ctx context.Context, env models.Env) (models.Env, error) {
|
|
||||||
collection := p.db.Table(models.Collections.Env)
|
|
||||||
|
|
||||||
if env.ID == "" {
|
|
||||||
env.ID = uuid.New().String()
|
|
||||||
}
|
|
||||||
|
|
||||||
env.Key = env.ID
|
|
||||||
|
|
||||||
env.CreatedAt = time.Now().Unix()
|
|
||||||
env.UpdatedAt = time.Now().Unix()
|
|
||||||
|
|
||||||
err := collection.Put(env).RunWithContext(ctx)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return env, err
|
|
||||||
}
|
|
||||||
|
|
||||||
return env, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// UpdateEnv to update environment information in database
|
|
||||||
func (p *provider) UpdateEnv(ctx context.Context, env models.Env) (models.Env, error) {
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.Env)
|
|
||||||
env.UpdatedAt = time.Now().Unix()
|
|
||||||
|
|
||||||
err := UpdateByHashKey(collection, "id", env.ID, env)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return env, err
|
|
||||||
}
|
|
||||||
return env, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetEnv to get environment information from database
|
|
||||||
func (p *provider) GetEnv(ctx context.Context) (models.Env, error) {
|
|
||||||
var env models.Env
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.Env)
|
|
||||||
// As there is no Findone supported.
|
|
||||||
iter := collection.Scan().Limit(1).Iter()
|
|
||||||
|
|
||||||
for iter.NextWithContext(ctx, &env) {
|
|
||||||
if env.ID == "" {
|
|
||||||
return env, errors.New("no documets found")
|
|
||||||
} else {
|
|
||||||
return env, nil
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
err := iter.Err()
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return env, fmt.Errorf("config not found")
|
|
||||||
}
|
|
||||||
|
|
||||||
return env, nil
|
|
||||||
}
|
|
||||||
@@ -1,80 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"context"
|
|
||||||
"errors"
|
|
||||||
"time"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/google/uuid"
|
|
||||||
)
|
|
||||||
|
|
||||||
// UpsertOTP to add or update otp
|
|
||||||
func (p *provider) UpsertOTP(ctx context.Context, otpParam *models.OTP) (*models.OTP, error) {
|
|
||||||
otp, _ := p.GetOTPByEmail(ctx, otpParam.Email)
|
|
||||||
shouldCreate := false
|
|
||||||
if otp == nil {
|
|
||||||
id := uuid.NewString()
|
|
||||||
otp = &models.OTP{
|
|
||||||
ID: id,
|
|
||||||
Key: id,
|
|
||||||
Otp: otpParam.Otp,
|
|
||||||
Email: otpParam.Email,
|
|
||||||
ExpiresAt: otpParam.ExpiresAt,
|
|
||||||
CreatedAt: time.Now().Unix(),
|
|
||||||
}
|
|
||||||
shouldCreate = true
|
|
||||||
} else {
|
|
||||||
otp.Otp = otpParam.Otp
|
|
||||||
otp.ExpiresAt = otpParam.ExpiresAt
|
|
||||||
}
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.OTP)
|
|
||||||
otp.UpdatedAt = time.Now().Unix()
|
|
||||||
|
|
||||||
var err error
|
|
||||||
if shouldCreate {
|
|
||||||
err = collection.Put(otp).RunWithContext(ctx)
|
|
||||||
} else {
|
|
||||||
err = UpdateByHashKey(collection, "id", otp.ID, otp)
|
|
||||||
}
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
|
|
||||||
return otp, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetOTPByEmail to get otp for a given email address
|
|
||||||
func (p *provider) GetOTPByEmail(ctx context.Context, emailAddress string) (*models.OTP, error) {
|
|
||||||
var otps []models.OTP
|
|
||||||
var otp models.OTP
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.OTP)
|
|
||||||
|
|
||||||
err := collection.Scan().Index("email").Filter("'email' = ?", emailAddress).Limit(1).AllWithContext(ctx, &otps)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
if len(otps) > 0 {
|
|
||||||
otp = otps[0]
|
|
||||||
return &otp, nil
|
|
||||||
} else {
|
|
||||||
return nil, errors.New("no docuemnt found")
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
// DeleteOTP to delete otp
|
|
||||||
func (p *provider) DeleteOTP(ctx context.Context, otp *models.OTP) error {
|
|
||||||
collection := p.db.Table(models.Collections.OTP)
|
|
||||||
|
|
||||||
if otp.ID != "" {
|
|
||||||
err := collection.Delete("id", otp.ID).RunWithContext(ctx)
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
@@ -1,62 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"github.com/aws/aws-sdk-go/aws"
|
|
||||||
"github.com/aws/aws-sdk-go/aws/credentials"
|
|
||||||
"github.com/aws/aws-sdk-go/aws/session"
|
|
||||||
"github.com/guregu/dynamo"
|
|
||||||
log "github.com/sirupsen/logrus"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/constants"
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/authorizerdev/authorizer/server/memorystore"
|
|
||||||
)
|
|
||||||
|
|
||||||
type provider struct {
|
|
||||||
db *dynamo.DB
|
|
||||||
}
|
|
||||||
|
|
||||||
// NewProvider returns a new Dynamo provider
|
|
||||||
func NewProvider() (*provider, error) {
|
|
||||||
dbURL := memorystore.RequiredEnvStoreObj.GetRequiredEnv().DatabaseURL
|
|
||||||
awsRegion := memorystore.RequiredEnvStoreObj.GetRequiredEnv().AwsRegion
|
|
||||||
awsAccessKeyID := memorystore.RequiredEnvStoreObj.GetRequiredEnv().AwsAccessKeyID
|
|
||||||
awsSecretAccessKey := memorystore.RequiredEnvStoreObj.GetRequiredEnv().AwsSecretAccessKey
|
|
||||||
|
|
||||||
config := aws.Config{
|
|
||||||
MaxRetries: aws.Int(3),
|
|
||||||
CredentialsChainVerboseErrors: aws.Bool(true), // for full error logs
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
if awsRegion != "" {
|
|
||||||
config.Region = aws.String(awsRegion)
|
|
||||||
}
|
|
||||||
|
|
||||||
// custom awsAccessKeyID, awsSecretAccessKey took first priority, if not then fetch config from aws credentials
|
|
||||||
if awsAccessKeyID != "" && awsSecretAccessKey != "" {
|
|
||||||
config.Credentials = credentials.NewStaticCredentials(awsAccessKeyID, awsSecretAccessKey, "")
|
|
||||||
} else if dbURL != "" {
|
|
||||||
// static config in case of testing or local-setup
|
|
||||||
config.Credentials = credentials.NewStaticCredentials("key", "key", "")
|
|
||||||
config.Endpoint = aws.String(dbURL)
|
|
||||||
} else {
|
|
||||||
log.Debugf("%s or %s or %s not found. Trying to load default credentials from aws config", constants.EnvAwsRegion, constants.EnvAwsAccessKeyID, constants.EnvAwsSecretAccessKey)
|
|
||||||
}
|
|
||||||
|
|
||||||
session := session.Must(session.NewSession(&config))
|
|
||||||
db := dynamo.New(session)
|
|
||||||
|
|
||||||
db.CreateTable(models.Collections.User, models.User{}).Wait()
|
|
||||||
db.CreateTable(models.Collections.Session, models.Session{}).Wait()
|
|
||||||
db.CreateTable(models.Collections.EmailTemplate, models.EmailTemplate{}).Wait()
|
|
||||||
db.CreateTable(models.Collections.Env, models.Env{}).Wait()
|
|
||||||
db.CreateTable(models.Collections.OTP, models.OTP{}).Wait()
|
|
||||||
db.CreateTable(models.Collections.VerificationRequest, models.VerificationRequest{}).Wait()
|
|
||||||
db.CreateTable(models.Collections.Webhook, models.Webhook{}).Wait()
|
|
||||||
db.CreateTable(models.Collections.WebhookLog, models.WebhookLog{}).Wait()
|
|
||||||
|
|
||||||
return &provider{
|
|
||||||
db: db,
|
|
||||||
}, nil
|
|
||||||
}
|
|
||||||
@@ -1,28 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"context"
|
|
||||||
"time"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/google/uuid"
|
|
||||||
)
|
|
||||||
|
|
||||||
// AddSession to save session information in database
|
|
||||||
func (p *provider) AddSession(ctx context.Context, session models.Session) error {
|
|
||||||
collection := p.db.Table(models.Collections.Session)
|
|
||||||
|
|
||||||
if session.ID == "" {
|
|
||||||
session.ID = uuid.New().String()
|
|
||||||
}
|
|
||||||
|
|
||||||
session.CreatedAt = time.Now().Unix()
|
|
||||||
session.UpdatedAt = time.Now().Unix()
|
|
||||||
err := collection.Put(session).RunWithContext(ctx)
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
|
|
||||||
// DeleteSession to delete session information from database
|
|
||||||
func (p *provider) DeleteSession(ctx context.Context, userId string) error {
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
@@ -1,46 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"github.com/aws/aws-sdk-go/service/dynamodb/dynamodbattribute"
|
|
||||||
"github.com/guregu/dynamo"
|
|
||||||
)
|
|
||||||
|
|
||||||
// As updpate all item not supported so set manually via Set and SetNullable for empty field
|
|
||||||
func UpdateByHashKey(table dynamo.Table, hashKey string, hashValue string, item interface{}) error {
|
|
||||||
existingValue, err := dynamo.MarshalItem(item)
|
|
||||||
var i interface{}
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
|
|
||||||
nullableValue, err := dynamodbattribute.MarshalMap(item)
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
|
|
||||||
u := table.Update(hashKey, hashValue)
|
|
||||||
for k, v := range existingValue {
|
|
||||||
if k == hashKey {
|
|
||||||
continue
|
|
||||||
}
|
|
||||||
u = u.Set(k, v)
|
|
||||||
}
|
|
||||||
|
|
||||||
for k, v := range nullableValue {
|
|
||||||
if k == hashKey {
|
|
||||||
continue
|
|
||||||
}
|
|
||||||
dynamodbattribute.Unmarshal(v, &i)
|
|
||||||
if i == nil {
|
|
||||||
u = u.SetNullable(k, v)
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
err = u.Run()
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
@@ -1,195 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"context"
|
|
||||||
"errors"
|
|
||||||
"time"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/constants"
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/authorizerdev/authorizer/server/graph/model"
|
|
||||||
"github.com/authorizerdev/authorizer/server/memorystore"
|
|
||||||
"github.com/google/uuid"
|
|
||||||
"github.com/guregu/dynamo"
|
|
||||||
log "github.com/sirupsen/logrus"
|
|
||||||
)
|
|
||||||
|
|
||||||
// AddUser to save user information in database
|
|
||||||
func (p *provider) AddUser(ctx context.Context, user models.User) (models.User, error) {
|
|
||||||
collection := p.db.Table(models.Collections.User)
|
|
||||||
|
|
||||||
if user.ID == "" {
|
|
||||||
user.ID = uuid.New().String()
|
|
||||||
}
|
|
||||||
|
|
||||||
if user.Roles == "" {
|
|
||||||
defaultRoles, err := memorystore.Provider.GetStringStoreEnvVariable(constants.EnvKeyDefaultRoles)
|
|
||||||
if err != nil {
|
|
||||||
return user, err
|
|
||||||
}
|
|
||||||
user.Roles = defaultRoles
|
|
||||||
}
|
|
||||||
|
|
||||||
user.CreatedAt = time.Now().Unix()
|
|
||||||
user.UpdatedAt = time.Now().Unix()
|
|
||||||
|
|
||||||
err := collection.Put(user).RunWithContext(ctx)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return user, err
|
|
||||||
}
|
|
||||||
return user, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// UpdateUser to update user information in database
|
|
||||||
func (p *provider) UpdateUser(ctx context.Context, user models.User) (models.User, error) {
|
|
||||||
collection := p.db.Table(models.Collections.User)
|
|
||||||
|
|
||||||
if user.ID != "" {
|
|
||||||
|
|
||||||
user.UpdatedAt = time.Now().Unix()
|
|
||||||
|
|
||||||
err := UpdateByHashKey(collection, "id", user.ID, user)
|
|
||||||
if err != nil {
|
|
||||||
return user, err
|
|
||||||
}
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return user, err
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
return user, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// DeleteUser to delete user information from database
|
|
||||||
func (p *provider) DeleteUser(ctx context.Context, user models.User) error {
|
|
||||||
collection := p.db.Table(models.Collections.User)
|
|
||||||
sessionCollection := p.db.Table(models.Collections.Session)
|
|
||||||
|
|
||||||
if user.ID != "" {
|
|
||||||
err := collection.Delete("id", user.ID).Run()
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
|
|
||||||
_, err = sessionCollection.Batch("id").Write().Delete(dynamo.Keys{"user_id", user.ID}).RunWithContext(ctx)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
}
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// ListUsers to get list of users from database
|
|
||||||
func (p *provider) ListUsers(ctx context.Context, pagination model.Pagination) (*model.Users, error) {
|
|
||||||
var user models.User
|
|
||||||
var lastEval dynamo.PagingKey
|
|
||||||
var iter dynamo.PagingIter
|
|
||||||
var iteration int64 = 0
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.User)
|
|
||||||
users := []*model.User{}
|
|
||||||
|
|
||||||
paginationClone := pagination
|
|
||||||
scanner := collection.Scan()
|
|
||||||
count, err := scanner.Count()
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
|
|
||||||
for (paginationClone.Offset + paginationClone.Limit) > iteration {
|
|
||||||
iter = scanner.StartFrom(lastEval).Limit(paginationClone.Limit).Iter()
|
|
||||||
for iter.NextWithContext(ctx, &user) {
|
|
||||||
if paginationClone.Offset == iteration {
|
|
||||||
users = append(users, user.AsAPIUser())
|
|
||||||
}
|
|
||||||
}
|
|
||||||
lastEval = iter.LastEvaluatedKey()
|
|
||||||
iteration += paginationClone.Limit
|
|
||||||
}
|
|
||||||
|
|
||||||
err = iter.Err()
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
|
|
||||||
paginationClone.Total = count
|
|
||||||
|
|
||||||
return &model.Users{
|
|
||||||
Pagination: &paginationClone,
|
|
||||||
Users: users,
|
|
||||||
}, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetUserByEmail to get user information from database using email address
|
|
||||||
func (p *provider) GetUserByEmail(ctx context.Context, email string) (models.User, error) {
|
|
||||||
var users []models.User
|
|
||||||
var user models.User
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.User)
|
|
||||||
err := collection.Scan().Index("email").Filter("'email' = ?", email).AllWithContext(ctx, &users)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return user, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
if len(users) > 0 {
|
|
||||||
user = users[0]
|
|
||||||
return user, nil
|
|
||||||
} else {
|
|
||||||
return user, errors.New("no record found")
|
|
||||||
}
|
|
||||||
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetUserByID to get user information from database using user ID
|
|
||||||
func (p *provider) GetUserByID(ctx context.Context, id string) (models.User, error) {
|
|
||||||
collection := p.db.Table(models.Collections.User)
|
|
||||||
var user models.User
|
|
||||||
err := collection.Get("id", id).OneWithContext(ctx, &user)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
if user.Email == "" {
|
|
||||||
return user, errors.New("no documets found")
|
|
||||||
} else {
|
|
||||||
return user, nil
|
|
||||||
}
|
|
||||||
}
|
|
||||||
return user, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// UpdateUsers to update multiple users, with parameters of user IDs slice
|
|
||||||
// If ids set to nil / empty all the users will be updated
|
|
||||||
func (p *provider) UpdateUsers(ctx context.Context, data map[string]interface{}, ids []string) error {
|
|
||||||
// set updated_at time for all users
|
|
||||||
userCollection := p.db.Table(models.Collections.User)
|
|
||||||
var allUsers []models.User
|
|
||||||
var res int64 = 0
|
|
||||||
var err error
|
|
||||||
if len(ids) > 0 {
|
|
||||||
for _, v := range ids {
|
|
||||||
err = UpdateByHashKey(userCollection, "id", v, data)
|
|
||||||
}
|
|
||||||
} else {
|
|
||||||
// as there is no facility to update all doc - https://docs.aws.amazon.com/amazondynamodb/latest/developerguide/SQLtoNoSQL.UpdateData.html
|
|
||||||
userCollection.Scan().All(&allUsers)
|
|
||||||
|
|
||||||
for _, user := range allUsers {
|
|
||||||
err = UpdateByHashKey(userCollection, "id", user.ID, data)
|
|
||||||
if err == nil {
|
|
||||||
res = res + 1
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
} else {
|
|
||||||
log.Info("Updated users: ", res)
|
|
||||||
}
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
@@ -1,116 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"context"
|
|
||||||
"time"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/authorizerdev/authorizer/server/graph/model"
|
|
||||||
"github.com/google/uuid"
|
|
||||||
"github.com/guregu/dynamo"
|
|
||||||
)
|
|
||||||
|
|
||||||
// AddVerification to save verification request in database
|
|
||||||
func (p *provider) AddVerificationRequest(ctx context.Context, verificationRequest models.VerificationRequest) (models.VerificationRequest, error) {
|
|
||||||
collection := p.db.Table(models.Collections.VerificationRequest)
|
|
||||||
|
|
||||||
if verificationRequest.ID == "" {
|
|
||||||
verificationRequest.ID = uuid.New().String()
|
|
||||||
verificationRequest.CreatedAt = time.Now().Unix()
|
|
||||||
verificationRequest.UpdatedAt = time.Now().Unix()
|
|
||||||
err := collection.Put(verificationRequest).RunWithContext(ctx)
|
|
||||||
if err != nil {
|
|
||||||
return verificationRequest, err
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
return verificationRequest, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetVerificationRequestByToken to get verification request from database using token
|
|
||||||
func (p *provider) GetVerificationRequestByToken(ctx context.Context, token string) (models.VerificationRequest, error) {
|
|
||||||
collection := p.db.Table(models.Collections.VerificationRequest)
|
|
||||||
var verificationRequest models.VerificationRequest
|
|
||||||
|
|
||||||
iter := collection.Scan().Filter("'token' = ?", token).Iter()
|
|
||||||
for iter.NextWithContext(ctx, &verificationRequest) {
|
|
||||||
return verificationRequest, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
err := iter.Err()
|
|
||||||
if err != nil {
|
|
||||||
return verificationRequest, err
|
|
||||||
}
|
|
||||||
return verificationRequest, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetVerificationRequestByEmail to get verification request by email from database
|
|
||||||
func (p *provider) GetVerificationRequestByEmail(ctx context.Context, email string, identifier string) (models.VerificationRequest, error) {
|
|
||||||
var verificationRequest models.VerificationRequest
|
|
||||||
collection := p.db.Table(models.Collections.VerificationRequest)
|
|
||||||
iter := collection.Scan().Filter("'email' = ?", email).Filter("'identifier' = ?", identifier).Iter()
|
|
||||||
for iter.NextWithContext(ctx, &verificationRequest) {
|
|
||||||
return verificationRequest, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
err := iter.Err()
|
|
||||||
if err != nil {
|
|
||||||
return verificationRequest, err
|
|
||||||
}
|
|
||||||
return verificationRequest, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// ListVerificationRequests to get list of verification requests from database
|
|
||||||
func (p *provider) ListVerificationRequests(ctx context.Context, pagination model.Pagination) (*model.VerificationRequests, error) {
|
|
||||||
verificationRequests := []*model.VerificationRequest{}
|
|
||||||
var verificationRequest models.VerificationRequest
|
|
||||||
var lastEval dynamo.PagingKey
|
|
||||||
var iter dynamo.PagingIter
|
|
||||||
var iteration int64 = 0
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.VerificationRequest)
|
|
||||||
paginationClone := pagination
|
|
||||||
|
|
||||||
scanner := collection.Scan()
|
|
||||||
count, err := scanner.Count()
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
|
|
||||||
for (paginationClone.Offset + paginationClone.Limit) > iteration {
|
|
||||||
iter = scanner.StartFrom(lastEval).Limit(paginationClone.Limit).Iter()
|
|
||||||
for iter.NextWithContext(ctx, &verificationRequest) {
|
|
||||||
if paginationClone.Offset == iteration {
|
|
||||||
verificationRequests = append(verificationRequests, verificationRequest.AsAPIVerificationRequest())
|
|
||||||
}
|
|
||||||
}
|
|
||||||
err = iter.Err()
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
lastEval = iter.LastEvaluatedKey()
|
|
||||||
iteration += paginationClone.Limit
|
|
||||||
}
|
|
||||||
|
|
||||||
paginationClone.Total = count
|
|
||||||
|
|
||||||
return &model.VerificationRequests{
|
|
||||||
VerificationRequests: verificationRequests,
|
|
||||||
Pagination: &paginationClone,
|
|
||||||
}, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// DeleteVerificationRequest to delete verification request from database
|
|
||||||
func (p *provider) DeleteVerificationRequest(ctx context.Context, verificationRequest models.VerificationRequest) error {
|
|
||||||
collection := p.db.Table(models.Collections.VerificationRequest)
|
|
||||||
|
|
||||||
if verificationRequest.ID != "" {
|
|
||||||
err := collection.Delete("id", verificationRequest.ID).RunWithContext(ctx)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
}
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
@@ -1,148 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"context"
|
|
||||||
"errors"
|
|
||||||
"time"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/authorizerdev/authorizer/server/graph/model"
|
|
||||||
"github.com/google/uuid"
|
|
||||||
"github.com/guregu/dynamo"
|
|
||||||
)
|
|
||||||
|
|
||||||
// AddWebhook to add webhook
|
|
||||||
func (p *provider) AddWebhook(ctx context.Context, webhook models.Webhook) (*model.Webhook, error) {
|
|
||||||
collection := p.db.Table(models.Collections.Webhook)
|
|
||||||
|
|
||||||
if webhook.ID == "" {
|
|
||||||
webhook.ID = uuid.New().String()
|
|
||||||
}
|
|
||||||
|
|
||||||
webhook.Key = webhook.ID
|
|
||||||
webhook.CreatedAt = time.Now().Unix()
|
|
||||||
webhook.UpdatedAt = time.Now().Unix()
|
|
||||||
|
|
||||||
err := collection.Put(webhook).RunWithContext(ctx)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
return webhook.AsAPIWebhook(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// UpdateWebhook to update webhook
|
|
||||||
func (p *provider) UpdateWebhook(ctx context.Context, webhook models.Webhook) (*model.Webhook, error) {
|
|
||||||
collection := p.db.Table(models.Collections.Webhook)
|
|
||||||
|
|
||||||
webhook.UpdatedAt = time.Now().Unix()
|
|
||||||
err := UpdateByHashKey(collection, "id", webhook.ID, webhook)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
return webhook.AsAPIWebhook(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// ListWebhooks to list webhook
|
|
||||||
func (p *provider) ListWebhook(ctx context.Context, pagination model.Pagination) (*model.Webhooks, error) {
|
|
||||||
webhooks := []*model.Webhook{}
|
|
||||||
var webhook models.Webhook
|
|
||||||
var lastEval dynamo.PagingKey
|
|
||||||
var iter dynamo.PagingIter
|
|
||||||
var iteration int64 = 0
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.Webhook)
|
|
||||||
paginationClone := pagination
|
|
||||||
scanner := collection.Scan()
|
|
||||||
count, err := scanner.Count()
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
|
|
||||||
for (paginationClone.Offset + paginationClone.Limit) > iteration {
|
|
||||||
iter = scanner.StartFrom(lastEval).Limit(paginationClone.Limit).Iter()
|
|
||||||
for iter.NextWithContext(ctx, &webhook) {
|
|
||||||
if paginationClone.Offset == iteration {
|
|
||||||
webhooks = append(webhooks, webhook.AsAPIWebhook())
|
|
||||||
}
|
|
||||||
}
|
|
||||||
err = iter.Err()
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
lastEval = iter.LastEvaluatedKey()
|
|
||||||
iteration += paginationClone.Limit
|
|
||||||
}
|
|
||||||
|
|
||||||
paginationClone.Total = count
|
|
||||||
|
|
||||||
return &model.Webhooks{
|
|
||||||
Pagination: &paginationClone,
|
|
||||||
Webhooks: webhooks,
|
|
||||||
}, nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetWebhookByID to get webhook by id
|
|
||||||
func (p *provider) GetWebhookByID(ctx context.Context, webhookID string) (*model.Webhook, error) {
|
|
||||||
collection := p.db.Table(models.Collections.Webhook)
|
|
||||||
var webhook models.Webhook
|
|
||||||
|
|
||||||
err := collection.Get("id", webhookID).OneWithContext(ctx, &webhook)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
|
|
||||||
if webhook.ID == "" {
|
|
||||||
return webhook.AsAPIWebhook(), errors.New("no documets found")
|
|
||||||
}
|
|
||||||
|
|
||||||
return webhook.AsAPIWebhook(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// GetWebhookByEventName to get webhook by event_name
|
|
||||||
func (p *provider) GetWebhookByEventName(ctx context.Context, eventName string) (*model.Webhook, error) {
|
|
||||||
var webhook models.Webhook
|
|
||||||
collection := p.db.Table(models.Collections.Webhook)
|
|
||||||
|
|
||||||
iter := collection.Scan().Index("event_name").Filter("'event_name' = ?", eventName).Iter()
|
|
||||||
|
|
||||||
for iter.NextWithContext(ctx, &webhook) {
|
|
||||||
return webhook.AsAPIWebhook(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
err := iter.Err()
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return webhook.AsAPIWebhook(), err
|
|
||||||
}
|
|
||||||
return webhook.AsAPIWebhook(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// DeleteWebhook to delete webhook
|
|
||||||
func (p *provider) DeleteWebhook(ctx context.Context, webhook *model.Webhook) error {
|
|
||||||
// Also delete webhook logs for given webhook id
|
|
||||||
if webhook.ID != "" {
|
|
||||||
webhookCollection := p.db.Table(models.Collections.Webhook)
|
|
||||||
pagination := model.Pagination{}
|
|
||||||
webhookLogCollection := p.db.Table(models.Collections.WebhookLog)
|
|
||||||
err := webhookCollection.Delete("id", webhook.ID).RunWithContext(ctx)
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
webhookLogs, errIs := p.ListWebhookLogs(ctx, pagination, webhook.ID)
|
|
||||||
|
|
||||||
for _, webhookLog := range webhookLogs.WebhookLogs {
|
|
||||||
err = webhookLogCollection.Delete("id", webhookLog.ID).RunWithContext(ctx)
|
|
||||||
if err != nil {
|
|
||||||
return err
|
|
||||||
}
|
|
||||||
}
|
|
||||||
if errIs != nil {
|
|
||||||
return errIs
|
|
||||||
}
|
|
||||||
}
|
|
||||||
return nil
|
|
||||||
}
|
|
||||||
@@ -1,78 +0,0 @@
|
|||||||
package dynamodb
|
|
||||||
|
|
||||||
import (
|
|
||||||
"context"
|
|
||||||
"time"
|
|
||||||
|
|
||||||
"github.com/authorizerdev/authorizer/server/db/models"
|
|
||||||
"github.com/authorizerdev/authorizer/server/graph/model"
|
|
||||||
"github.com/google/uuid"
|
|
||||||
"github.com/guregu/dynamo"
|
|
||||||
)
|
|
||||||
|
|
||||||
// AddWebhookLog to add webhook log
|
|
||||||
func (p *provider) AddWebhookLog(ctx context.Context, webhookLog models.WebhookLog) (*model.WebhookLog, error) {
|
|
||||||
collection := p.db.Table(models.Collections.WebhookLog)
|
|
||||||
|
|
||||||
if webhookLog.ID == "" {
|
|
||||||
webhookLog.ID = uuid.New().String()
|
|
||||||
}
|
|
||||||
|
|
||||||
webhookLog.Key = webhookLog.ID
|
|
||||||
webhookLog.CreatedAt = time.Now().Unix()
|
|
||||||
webhookLog.UpdatedAt = time.Now().Unix()
|
|
||||||
err := collection.Put(webhookLog).RunWithContext(ctx)
|
|
||||||
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
return webhookLog.AsAPIWebhookLog(), nil
|
|
||||||
}
|
|
||||||
|
|
||||||
// ListWebhookLogs to list webhook logs
|
|
||||||
func (p *provider) ListWebhookLogs(ctx context.Context, pagination model.Pagination, webhookID string) (*model.WebhookLogs, error) {
|
|
||||||
webhookLogs := []*model.WebhookLog{}
|
|
||||||
var webhookLog models.WebhookLog
|
|
||||||
var lastEval dynamo.PagingKey
|
|
||||||
var iter dynamo.PagingIter
|
|
||||||
var iteration int64 = 0
|
|
||||||
var err error
|
|
||||||
var count int64
|
|
||||||
|
|
||||||
collection := p.db.Table(models.Collections.WebhookLog)
|
|
||||||
paginationClone := pagination
|
|
||||||
scanner := collection.Scan()
|
|
||||||
|
|
||||||
if webhookID != "" {
|
|
||||||
iter = scanner.Index("webhook_id").Filter("'webhook_id' = ?", webhookID).Iter()
|
|
||||||
for iter.NextWithContext(ctx, &webhookLog) {
|
|
||||||
webhookLogs = append(webhookLogs, webhookLog.AsAPIWebhookLog())
|
|
||||||
}
|
|
||||||
err = iter.Err()
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
} else {
|
|
||||||
for (paginationClone.Offset + paginationClone.Limit) > iteration {
|
|
||||||
iter = scanner.StartFrom(lastEval).Limit(paginationClone.Limit).Iter()
|
|
||||||
for iter.NextWithContext(ctx, &webhookLog) {
|
|
||||||
if paginationClone.Offset == iteration {
|
|
||||||
webhookLogs = append(webhookLogs, webhookLog.AsAPIWebhookLog())
|
|
||||||
}
|
|
||||||
}
|
|
||||||
err = iter.Err()
|
|
||||||
if err != nil {
|
|
||||||
return nil, err
|
|
||||||
}
|
|
||||||
lastEval = iter.LastEvaluatedKey()
|
|
||||||
iteration += paginationClone.Limit
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
paginationClone.Total = count
|
|
||||||
// paginationClone.Cursor = iter.LastEvaluatedKey()
|
|
||||||
return &model.WebhookLogs{
|
|
||||||
Pagination: &paginationClone,
|
|
||||||
WebhookLogs: webhookLogs,
|
|
||||||
}, nil
|
|
||||||
}
|
|
||||||
@@ -1,7 +1,6 @@
|
|||||||
package sql
|
package sql
|
||||||
|
|
||||||
import (
|
import (
|
||||||
"fmt"
|
|
||||||
"log"
|
"log"
|
||||||
"os"
|
"os"
|
||||||
"time"
|
"time"
|
||||||
@@ -22,16 +21,6 @@ type provider struct {
|
|||||||
db *gorm.DB
|
db *gorm.DB
|
||||||
}
|
}
|
||||||
|
|
||||||
const (
|
|
||||||
phoneNumberIndexName = "UQ_phone_number"
|
|
||||||
phoneNumberColumnName = "phone_number"
|
|
||||||
)
|
|
||||||
|
|
||||||
type indexInfo struct {
|
|
||||||
IndexName string `json:"index_name"`
|
|
||||||
ColumnName string `json:"column_name"`
|
|
||||||
}
|
|
||||||
|
|
||||||
// NewProvider returns a new SQL provider
|
// NewProvider returns a new SQL provider
|
||||||
func NewProvider() (*provider, error) {
|
func NewProvider() (*provider, error) {
|
||||||
var sqlDB *gorm.DB
|
var sqlDB *gorm.DB
|
||||||
@@ -76,32 +65,6 @@ func NewProvider() (*provider, error) {
|
|||||||
if err != nil {
|
if err != nil {
|
||||||
return nil, err
|
return nil, err
|
||||||
}
|
}
|
||||||
|
|
||||||
// unique constraint on phone number does not work with multiple null values for sqlserver
|
|
||||||
// for more information check https://stackoverflow.com/a/767702
|
|
||||||
if dbType == constants.DbTypeSqlserver {
|
|
||||||
var indexInfos []indexInfo
|
|
||||||
// remove index on phone number if present with different name
|
|
||||||
res := sqlDB.Raw("SELECT i.name AS index_name, i.type_desc AS index_algorithm, CASE i.is_unique WHEN 1 THEN 'TRUE' ELSE 'FALSE' END AS is_unique, ac.Name AS column_name FROM sys.tables AS t INNER JOIN sys.indexes AS i ON t.object_id = i.object_id INNER JOIN sys.index_columns AS ic ON ic.object_id = i.object_id AND ic.index_id = i.index_id INNER JOIN sys.all_columns AS ac ON ic.object_id = ac.object_id AND ic.column_id = ac.column_id WHERE t.name = 'authorizer_users' AND SCHEMA_NAME(t.schema_id) = 'dbo';").Scan(&indexInfos)
|
|
||||||
if res.Error != nil {
|
|
||||||
return nil, res.Error
|
|
||||||
}
|
|
||||||
|
|
||||||
for _, val := range indexInfos {
|
|
||||||
if val.ColumnName == phoneNumberColumnName && val.IndexName != phoneNumberIndexName {
|
|
||||||
// drop index & create new
|
|
||||||
if res := sqlDB.Exec(fmt.Sprintf(`ALTER TABLE authorizer_users DROP CONSTRAINT "%s";`, val.IndexName)); res.Error != nil {
|
|
||||||
return nil, res.Error
|
|
||||||
}
|
|
||||||
|
|
||||||
// create index
|
|
||||||
if res := sqlDB.Exec(fmt.Sprintf("CREATE UNIQUE NONCLUSTERED INDEX %s ON authorizer_users(phone_number) WHERE phone_number IS NOT NULL;", phoneNumberIndexName)); res.Error != nil {
|
|
||||||
return nil, res.Error
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
}
|
|
||||||
|
|
||||||
return &provider{
|
return &provider{
|
||||||
db: sqlDB,
|
db: sqlDB,
|
||||||
}, nil
|
}, nil
|
||||||
|
|||||||
24
server/env/env.go
vendored
24
server/env/env.go
vendored
@@ -77,9 +77,6 @@ func InitAllEnv() error {
|
|||||||
osResetPasswordURL := os.Getenv(constants.EnvKeyResetPasswordURL)
|
osResetPasswordURL := os.Getenv(constants.EnvKeyResetPasswordURL)
|
||||||
osOrganizationName := os.Getenv(constants.EnvKeyOrganizationName)
|
osOrganizationName := os.Getenv(constants.EnvKeyOrganizationName)
|
||||||
osOrganizationLogo := os.Getenv(constants.EnvKeyOrganizationLogo)
|
osOrganizationLogo := os.Getenv(constants.EnvKeyOrganizationLogo)
|
||||||
osAwsRegion := os.Getenv(constants.EnvAwsRegion)
|
|
||||||
osAwsAccessKey := os.Getenv(constants.EnvAwsAccessKeyID)
|
|
||||||
osAwsSecretKey := os.Getenv(constants.EnvAwsSecretAccessKey)
|
|
||||||
|
|
||||||
// os bool vars
|
// os bool vars
|
||||||
osAppCookieSecure := os.Getenv(constants.EnvKeyAppCookieSecure)
|
osAppCookieSecure := os.Getenv(constants.EnvKeyAppCookieSecure)
|
||||||
@@ -122,27 +119,6 @@ func InitAllEnv() error {
|
|||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|
||||||
if val, ok := envData[constants.EnvAwsRegion]; !ok || val == "" {
|
|
||||||
envData[constants.EnvAwsRegion] = osAwsRegion
|
|
||||||
}
|
|
||||||
if osAwsRegion != "" && envData[constants.EnvAwsRegion] != osAwsRegion {
|
|
||||||
envData[constants.EnvAwsRegion] = osAwsRegion
|
|
||||||
}
|
|
||||||
|
|
||||||
if val, ok := envData[constants.EnvAwsAccessKeyID]; !ok || val == "" {
|
|
||||||
envData[constants.EnvAwsAccessKeyID] = osAwsAccessKey
|
|
||||||
}
|
|
||||||
if osAwsAccessKey != "" && envData[constants.EnvAwsAccessKeyID] != osAwsRegion {
|
|
||||||
envData[constants.EnvAwsAccessKeyID] = osAwsAccessKey
|
|
||||||
}
|
|
||||||
|
|
||||||
if val, ok := envData[constants.EnvAwsSecretAccessKey]; !ok || val == "" {
|
|
||||||
envData[constants.EnvAwsSecretAccessKey] = osAwsSecretKey
|
|
||||||
}
|
|
||||||
if osAwsSecretKey != "" && envData[constants.EnvAwsSecretAccessKey] != osAwsRegion {
|
|
||||||
envData[constants.EnvAwsSecretAccessKey] = osAwsSecretKey
|
|
||||||
}
|
|
||||||
|
|
||||||
if val, ok := envData[constants.EnvKeyAppURL]; !ok || val == "" {
|
if val, ok := envData[constants.EnvKeyAppURL]; !ok || val == "" {
|
||||||
envData[constants.EnvKeyAppURL] = osAppURL
|
envData[constants.EnvKeyAppURL] = osAppURL
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -5,7 +5,6 @@ go 1.16
|
|||||||
require (
|
require (
|
||||||
github.com/99designs/gqlgen v0.17.20
|
github.com/99designs/gqlgen v0.17.20
|
||||||
github.com/arangodb/go-driver v1.2.1
|
github.com/arangodb/go-driver v1.2.1
|
||||||
github.com/aws/aws-sdk-go v1.44.109
|
|
||||||
github.com/coreos/go-oidc/v3 v3.1.0
|
github.com/coreos/go-oidc/v3 v3.1.0
|
||||||
github.com/gin-gonic/gin v1.8.1
|
github.com/gin-gonic/gin v1.8.1
|
||||||
github.com/go-playground/validator/v10 v10.11.1 // indirect
|
github.com/go-playground/validator/v10 v10.11.1 // indirect
|
||||||
@@ -15,7 +14,6 @@ require (
|
|||||||
github.com/golang-jwt/jwt v3.2.2+incompatible
|
github.com/golang-jwt/jwt v3.2.2+incompatible
|
||||||
github.com/golang/protobuf v1.5.2 // indirect
|
github.com/golang/protobuf v1.5.2 // indirect
|
||||||
github.com/google/uuid v1.3.0
|
github.com/google/uuid v1.3.0
|
||||||
github.com/guregu/dynamo v1.16.0
|
|
||||||
github.com/joho/godotenv v1.3.0
|
github.com/joho/godotenv v1.3.0
|
||||||
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
|
github.com/modern-go/concurrent v0.0.0-20180306012644-bacd9c7ef1dd // indirect
|
||||||
github.com/pelletier/go-toml/v2 v2.0.5 // indirect
|
github.com/pelletier/go-toml/v2 v2.0.5 // indirect
|
||||||
|
|||||||
@@ -49,15 +49,10 @@ github.com/arangodb/go-velocypack v0.0.0-20200318135517-5af53c29c67e h1:Xg+hGrY2
|
|||||||
github.com/arangodb/go-velocypack v0.0.0-20200318135517-5af53c29c67e/go.mod h1:mq7Shfa/CaixoDxiyAAc5jZ6CVBAyPaNQCGS7mkj4Ho=
|
github.com/arangodb/go-velocypack v0.0.0-20200318135517-5af53c29c67e/go.mod h1:mq7Shfa/CaixoDxiyAAc5jZ6CVBAyPaNQCGS7mkj4Ho=
|
||||||
github.com/arbovm/levenshtein v0.0.0-20160628152529-48b4e1c0c4d0 h1:jfIu9sQUG6Ig+0+Ap1h4unLjW6YQJpKZVmUzxsD4E/Q=
|
github.com/arbovm/levenshtein v0.0.0-20160628152529-48b4e1c0c4d0 h1:jfIu9sQUG6Ig+0+Ap1h4unLjW6YQJpKZVmUzxsD4E/Q=
|
||||||
github.com/arbovm/levenshtein v0.0.0-20160628152529-48b4e1c0c4d0/go.mod h1:t2tdKJDJF9BV14lnkjHmOQgcvEKgtqs5a1N3LNdJhGE=
|
github.com/arbovm/levenshtein v0.0.0-20160628152529-48b4e1c0c4d0/go.mod h1:t2tdKJDJF9BV14lnkjHmOQgcvEKgtqs5a1N3LNdJhGE=
|
||||||
github.com/aws/aws-sdk-go v1.42.47/go.mod h1:OGr6lGMAKGlG9CVrYnWYDKIyb829c6EVBRjxqjmPepc=
|
|
||||||
github.com/aws/aws-sdk-go v1.44.109 h1:+Na5JPeS0kiEHoBp5Umcuuf+IDqXqD0lXnM920E31YI=
|
|
||||||
github.com/aws/aws-sdk-go v1.44.109/go.mod h1:y4AeaBuwd2Lk+GepC1E9v0qOiTws0MIWAX4oIKwKHZo=
|
|
||||||
github.com/bitly/go-hostpool v0.0.0-20171023180738-a3a6125de932 h1:mXoPYz/Ul5HYEDvkta6I8/rnYM5gSdSV2tJ6XbZuEtY=
|
github.com/bitly/go-hostpool v0.0.0-20171023180738-a3a6125de932 h1:mXoPYz/Ul5HYEDvkta6I8/rnYM5gSdSV2tJ6XbZuEtY=
|
||||||
github.com/bitly/go-hostpool v0.0.0-20171023180738-a3a6125de932/go.mod h1:NOuUCSz6Q9T7+igc/hlvDOUdtWKryOrtFyIVABv/p7k=
|
github.com/bitly/go-hostpool v0.0.0-20171023180738-a3a6125de932/go.mod h1:NOuUCSz6Q9T7+igc/hlvDOUdtWKryOrtFyIVABv/p7k=
|
||||||
github.com/bmizerany/assert v0.0.0-20160611221934-b7ed37b82869 h1:DDGfHa7BWjL4YnC6+E63dPcxHo2sUxDIu8g3QgEJdRY=
|
github.com/bmizerany/assert v0.0.0-20160611221934-b7ed37b82869 h1:DDGfHa7BWjL4YnC6+E63dPcxHo2sUxDIu8g3QgEJdRY=
|
||||||
github.com/bmizerany/assert v0.0.0-20160611221934-b7ed37b82869/go.mod h1:Ekp36dRnpXw/yCqJaO+ZrUyxD+3VXMFFr56k5XYrpB4=
|
github.com/bmizerany/assert v0.0.0-20160611221934-b7ed37b82869/go.mod h1:Ekp36dRnpXw/yCqJaO+ZrUyxD+3VXMFFr56k5XYrpB4=
|
||||||
github.com/cenkalti/backoff/v4 v4.1.2 h1:6Yo7N8UP2K6LWZnW94DLVSSrbobcWdVzAYOisuDPIFo=
|
|
||||||
github.com/cenkalti/backoff/v4 v4.1.2/go.mod h1:scbssz8iZGpm3xbr14ovlUdkxfGXNInqkPWOWmG2CLw=
|
|
||||||
github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
|
github.com/census-instrumentation/opencensus-proto v0.2.1/go.mod h1:f6KPmirojxKA12rnyqOA5BBL4O983OfeGPqjHWSTneU=
|
||||||
github.com/cespare/xxhash/v2 v2.1.1 h1:6MnRN8NT7+YBpUIWxHtefFZOKTAPgGjpQSxqLNn0+qY=
|
github.com/cespare/xxhash/v2 v2.1.1 h1:6MnRN8NT7+YBpUIWxHtefFZOKTAPgGjpQSxqLNn0+qY=
|
||||||
github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
|
github.com/cespare/xxhash/v2 v2.1.1/go.mod h1:VGX0DQ3Q6kWi7AoAeZDth3/j3BFtOZR5XLFGgcrjCOs=
|
||||||
@@ -125,8 +120,6 @@ github.com/gocql/gocql v1.2.0 h1:TZhsCd7fRuye4VyHr3WCvWwIQaZUmjsqnSIXK9FcVCE=
|
|||||||
github.com/gocql/gocql v1.2.0/go.mod h1:3gM2c4D3AnkISwBxGnMMsS8Oy4y2lhbPRsH4xnJrHG8=
|
github.com/gocql/gocql v1.2.0/go.mod h1:3gM2c4D3AnkISwBxGnMMsS8Oy4y2lhbPRsH4xnJrHG8=
|
||||||
github.com/gofrs/uuid v4.0.0+incompatible h1:1SD/1F5pU8p29ybwgQSwpQk+mwdRrXCYuPhW6m+TnJw=
|
github.com/gofrs/uuid v4.0.0+incompatible h1:1SD/1F5pU8p29ybwgQSwpQk+mwdRrXCYuPhW6m+TnJw=
|
||||||
github.com/gofrs/uuid v4.0.0+incompatible/go.mod h1:b2aQJv3Z4Fp6yNu3cdSllBxTCLRxnplIgP/c0N/04lM=
|
github.com/gofrs/uuid v4.0.0+incompatible/go.mod h1:b2aQJv3Z4Fp6yNu3cdSllBxTCLRxnplIgP/c0N/04lM=
|
||||||
github.com/gofrs/uuid v4.2.0+incompatible h1:yyYWMnhkhrKwwr8gAOcOCYxOOscHgDS9yZgBrnJfGa0=
|
|
||||||
github.com/gofrs/uuid v4.2.0+incompatible/go.mod h1:b2aQJv3Z4Fp6yNu3cdSllBxTCLRxnplIgP/c0N/04lM=
|
|
||||||
github.com/golang-jwt/jwt v3.2.2+incompatible h1:IfV12K8xAKAnZqdXVzCZ+TOjboZ2keLg81eXfW3O+oY=
|
github.com/golang-jwt/jwt v3.2.2+incompatible h1:IfV12K8xAKAnZqdXVzCZ+TOjboZ2keLg81eXfW3O+oY=
|
||||||
github.com/golang-jwt/jwt v3.2.2+incompatible/go.mod h1:8pz2t5EyA70fFQQSrl6XZXzqecmYZeUEB8OUGHkxJ+I=
|
github.com/golang-jwt/jwt v3.2.2+incompatible/go.mod h1:8pz2t5EyA70fFQQSrl6XZXzqecmYZeUEB8OUGHkxJ+I=
|
||||||
github.com/golang-sql/civil v0.0.0-20190719163853-cb61b32ac6fe h1:lXe2qZdvpiX5WZkZR4hgp4KJVfY3nMkvmwbVkpv1rVY=
|
github.com/golang-sql/civil v0.0.0-20190719163853-cb61b32ac6fe h1:lXe2qZdvpiX5WZkZR4hgp4KJVfY3nMkvmwbVkpv1rVY=
|
||||||
@@ -192,8 +185,6 @@ github.com/googleapis/gax-go/v2 v2.0.4/go.mod h1:0Wqv26UfaUD9n4G6kQubkQ+KchISgw+
|
|||||||
github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
|
github.com/googleapis/gax-go/v2 v2.0.5/go.mod h1:DWXyrwAJ9X0FpwwEdw+IPEYBICEFu5mhpdKc/us6bOk=
|
||||||
github.com/gorilla/websocket v1.5.0 h1:PPwGk2jz7EePpoHN/+ClbZu8SPxiqlu12wZP/3sWmnc=
|
github.com/gorilla/websocket v1.5.0 h1:PPwGk2jz7EePpoHN/+ClbZu8SPxiqlu12wZP/3sWmnc=
|
||||||
github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
|
github.com/gorilla/websocket v1.5.0/go.mod h1:YR8l580nyteQvAITg2hZ9XVh4b55+EU/adAjf1fMHhE=
|
||||||
github.com/guregu/dynamo v1.16.0 h1:gmI8oi1VHwYQtq7+RPBeOiSssVLgxH/Az2t+NtDtL2c=
|
|
||||||
github.com/guregu/dynamo v1.16.0/go.mod h1:W2Gqcf3MtkrS+Q6fHPGAmRtT0Dyq+TGrqfqrUC9+R/c=
|
|
||||||
github.com/hailocab/go-hostpool v0.0.0-20160125115350-e80d13ce29ed h1:5upAirOpQc1Q53c0bnx2ufif5kANL7bfZWcc6VJWJd8=
|
github.com/hailocab/go-hostpool v0.0.0-20160125115350-e80d13ce29ed h1:5upAirOpQc1Q53c0bnx2ufif5kANL7bfZWcc6VJWJd8=
|
||||||
github.com/hailocab/go-hostpool v0.0.0-20160125115350-e80d13ce29ed/go.mod h1:tMWxXQ9wFIaZeTI9F+hmhFiGpFmhOHzyShyFUhRm0H4=
|
github.com/hailocab/go-hostpool v0.0.0-20160125115350-e80d13ce29ed/go.mod h1:tMWxXQ9wFIaZeTI9F+hmhFiGpFmhOHzyShyFUhRm0H4=
|
||||||
github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
|
github.com/hashicorp/golang-lru v0.5.0/go.mod h1:/m3WP610KZHVQ1SGc6re/UDhFvYD7pJ4Ao+sR/qLZy8=
|
||||||
@@ -256,9 +247,6 @@ github.com/jinzhu/inflection v1.0.0/go.mod h1:h+uFLlag+Qp1Va5pdKtLDYj+kHp5pxUVkr
|
|||||||
github.com/jinzhu/now v1.1.2/go.mod h1:d3SSVoowX0Lcu0IBviAWJpolVfI5UJVZZ7cO71lE/z8=
|
github.com/jinzhu/now v1.1.2/go.mod h1:d3SSVoowX0Lcu0IBviAWJpolVfI5UJVZZ7cO71lE/z8=
|
||||||
github.com/jinzhu/now v1.1.3 h1:PlHq1bSCSZL9K0wUhbm2pGLoTWs2GwVhsP6emvGV/ZI=
|
github.com/jinzhu/now v1.1.3 h1:PlHq1bSCSZL9K0wUhbm2pGLoTWs2GwVhsP6emvGV/ZI=
|
||||||
github.com/jinzhu/now v1.1.3/go.mod h1:d3SSVoowX0Lcu0IBviAWJpolVfI5UJVZZ7cO71lE/z8=
|
github.com/jinzhu/now v1.1.3/go.mod h1:d3SSVoowX0Lcu0IBviAWJpolVfI5UJVZZ7cO71lE/z8=
|
||||||
github.com/jmespath/go-jmespath v0.4.0 h1:BEgLn5cpjn8UN1mAw4NjwDrS35OdebyEtFe+9YPoQUg=
|
|
||||||
github.com/jmespath/go-jmespath v0.4.0/go.mod h1:T8mJZnbsbmF+m6zOOFylbeCJqk5+pHWvzYPziyZiYoo=
|
|
||||||
github.com/jmespath/go-jmespath/internal/testify v1.5.1/go.mod h1:L3OGu8Wl2/fWfCI6z80xFu9LTZmf1ZRjMHUOPmWr69U=
|
|
||||||
github.com/joho/godotenv v1.3.0 h1:Zjp+RcGpHhGlrMbJzXTrZZPrWj+1vfm90La1wgB6Bhc=
|
github.com/joho/godotenv v1.3.0 h1:Zjp+RcGpHhGlrMbJzXTrZZPrWj+1vfm90La1wgB6Bhc=
|
||||||
github.com/joho/godotenv v1.3.0/go.mod h1:7hK45KPybAkOC6peb+G5yklZfMxEjkZhHbwpqxOKXbg=
|
github.com/joho/godotenv v1.3.0/go.mod h1:7hK45KPybAkOC6peb+G5yklZfMxEjkZhHbwpqxOKXbg=
|
||||||
github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
|
github.com/json-iterator/go v1.1.12 h1:PV8peI4a0ysnczrg+LtxykD8LfKY9ML6u2jnxaEnrnM=
|
||||||
@@ -495,9 +483,6 @@ golang.org/x/net v0.0.0-20211112202133-69e39bad7dc2/go.mod h1:9nx3DQGgdP8bBQD5qx
|
|||||||
golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
|
golang.org/x/net v0.0.0-20220722155237-a158d28d115b/go.mod h1:XRhObCWvk6IyKnWLug+ECip1KBveYUHfp+8e9klMJ9c=
|
||||||
golang.org/x/net v0.0.0-20220930213112-107f3e3c3b0b h1:uKO3Js8lXGjpjdc4J3rqs0/Ex5yDKUGfk43tTYWVLas=
|
golang.org/x/net v0.0.0-20220930213112-107f3e3c3b0b h1:uKO3Js8lXGjpjdc4J3rqs0/Ex5yDKUGfk43tTYWVLas=
|
||||||
golang.org/x/net v0.0.0-20220930213112-107f3e3c3b0b/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
|
golang.org/x/net v0.0.0-20220930213112-107f3e3c3b0b/go.mod h1:YDH+HFinaLZZlnHAfSS6ZXJJ9M9t4Dl22yv3iI2vPwk=
|
||||||
golang.org/x/net v0.0.0-20211216030914-fe4d6282115f/go.mod h1:9nx3DQGgdP8bBQD5qxJ1jj9UTztislL4KSBs9R2vV5Y=
|
|
||||||
golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd h1:O7DYs+zxREGLKzKoMQrtrEacpb0ZVXA5rIwylE2Xchk=
|
|
||||||
golang.org/x/net v0.0.0-20220127200216-cd36cc0744dd/go.mod h1:CfG3xpIq0wQ8r1q4Su4UZFWDARRcnwPjda9FqA0JpMk=
|
|
||||||
golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
|
golang.org/x/oauth2 v0.0.0-20180821212333-d2e6202438be/go.mod h1:N/0e6XlmueqKjAGxoOufVs8QHGRruUQn6yWY3a++T0U=
|
||||||
golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
|
golang.org/x/oauth2 v0.0.0-20190226205417-e64efc72b421/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
|
||||||
golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
|
golang.org/x/oauth2 v0.0.0-20190604053449-0f29369cfe45/go.mod h1:gOpvHmFTYa4IltrdGE7lF6nIHvwfUNPOp7c8zoXwtLw=
|
||||||
@@ -567,12 +552,9 @@ golang.org/x/sys v0.0.0-20220728004956-3c1f35247d10/go.mod h1:oPkhp1MJrh7nUepCBc
|
|||||||
golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
|
golang.org/x/sys v0.0.0-20220811171246-fbc7d0a398ab/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
|
||||||
golang.org/x/sys v0.0.0-20220928140112-f11e5e49a4ec h1:BkDtF2Ih9xZ7le9ndzTA7KJow28VbQW3odyk/8drmuI=
|
golang.org/x/sys v0.0.0-20220928140112-f11e5e49a4ec h1:BkDtF2Ih9xZ7le9ndzTA7KJow28VbQW3odyk/8drmuI=
|
||||||
golang.org/x/sys v0.0.0-20220928140112-f11e5e49a4ec/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
|
golang.org/x/sys v0.0.0-20220928140112-f11e5e49a4ec/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
|
||||||
golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e h1:fLOSk5Q00efkSvAm+4xcoXD+RRmLmmulPn5I3Y9F2EM=
|
|
||||||
golang.org/x/sys v0.0.0-20211216021012-1d35b9e2eb4e/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
|
|
||||||
golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
|
golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
|
||||||
golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
|
golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
|
||||||
golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
|
golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
|
||||||
golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
|
|
||||||
golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
|
golang.org/x/text v0.0.0-20170915032832-14c0d48ead0c/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
|
||||||
golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
|
golang.org/x/text v0.3.0/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
|
||||||
golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
|
golang.org/x/text v0.3.1-0.20180807135948-17ff2d5776d2/go.mod h1:NqM8EUOU14njkJ3fqMW+pc6Ldnwhi/IjpwHt7yyuwOQ=
|
||||||
|
|||||||
@@ -30,7 +30,7 @@ func AppHandler() gin.HandlerFunc {
|
|||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
redirectURI := strings.TrimSpace(c.Query("redirect_uri"))
|
redirect_uri := strings.TrimSpace(c.Query("redirect_uri"))
|
||||||
state := strings.TrimSpace(c.Query("state"))
|
state := strings.TrimSpace(c.Query("state"))
|
||||||
scopeString := strings.TrimSpace(c.Query("scope"))
|
scopeString := strings.TrimSpace(c.Query("scope"))
|
||||||
|
|
||||||
@@ -41,11 +41,11 @@ func AppHandler() gin.HandlerFunc {
|
|||||||
scope = strings.Split(scopeString, " ")
|
scope = strings.Split(scopeString, " ")
|
||||||
}
|
}
|
||||||
|
|
||||||
if redirectURI == "" {
|
if redirect_uri == "" {
|
||||||
redirectURI = hostname + "/app"
|
redirect_uri = hostname + "/app"
|
||||||
} else {
|
} else {
|
||||||
// validate redirect url with allowed origins
|
// validate redirect url with allowed origins
|
||||||
if !validators.IsValidOrigin(redirectURI) {
|
if !validators.IsValidOrigin(redirect_uri) {
|
||||||
log.Debug("Invalid redirect_uri")
|
log.Debug("Invalid redirect_uri")
|
||||||
c.JSON(400, gin.H{"error": "invalid redirect url"})
|
c.JSON(400, gin.H{"error": "invalid redirect url"})
|
||||||
return
|
return
|
||||||
@@ -75,7 +75,7 @@ func AppHandler() gin.HandlerFunc {
|
|||||||
c.HTML(http.StatusOK, "app.tmpl", gin.H{
|
c.HTML(http.StatusOK, "app.tmpl", gin.H{
|
||||||
"data": map[string]interface{}{
|
"data": map[string]interface{}{
|
||||||
"authorizerURL": hostname,
|
"authorizerURL": hostname,
|
||||||
"redirectURL": redirectURI,
|
"redirectURL": redirect_uri,
|
||||||
"scope": scope,
|
"scope": scope,
|
||||||
"state": state,
|
"state": state,
|
||||||
"organizationName": orgName,
|
"organizationName": orgName,
|
||||||
|
|||||||
@@ -1,6 +1,7 @@
|
|||||||
package handlers
|
package handlers
|
||||||
|
|
||||||
import (
|
import (
|
||||||
|
"fmt"
|
||||||
"net/http"
|
"net/http"
|
||||||
"strconv"
|
"strconv"
|
||||||
"strings"
|
"strings"
|
||||||
@@ -26,6 +27,12 @@ import (
|
|||||||
// code_challenge_method = to prevent CSRF attack [only sh256 is supported]
|
// code_challenge_method = to prevent CSRF attack [only sh256 is supported]
|
||||||
|
|
||||||
// check the flow for generating and verifying codes: https://developer.okta.com/blog/2019/08/22/okta-authjs-pkce#:~:text=PKCE%20works%20by%20having%20the,is%20called%20the%20Code%20Challenge.
|
// check the flow for generating and verifying codes: https://developer.okta.com/blog/2019/08/22/okta-authjs-pkce#:~:text=PKCE%20works%20by%20having%20the,is%20called%20the%20Code%20Challenge.
|
||||||
|
|
||||||
|
const (
|
||||||
|
authorizeWebMessageTemplate = "authorize_web_message.tmpl"
|
||||||
|
authorizeFormPostTemplate = "authorize_form_post.tmpl"
|
||||||
|
)
|
||||||
|
|
||||||
func AuthorizeHandler() gin.HandlerFunc {
|
func AuthorizeHandler() gin.HandlerFunc {
|
||||||
return func(gc *gin.Context) {
|
return func(gc *gin.Context) {
|
||||||
redirectURI := strings.TrimSpace(gc.Query("redirect_uri"))
|
redirectURI := strings.TrimSpace(gc.Query("redirect_uri"))
|
||||||
@@ -34,7 +41,6 @@ func AuthorizeHandler() gin.HandlerFunc {
|
|||||||
codeChallenge := strings.TrimSpace(gc.Query("code_challenge"))
|
codeChallenge := strings.TrimSpace(gc.Query("code_challenge"))
|
||||||
scopeString := strings.TrimSpace(gc.Query("scope"))
|
scopeString := strings.TrimSpace(gc.Query("scope"))
|
||||||
clientID := strings.TrimSpace(gc.Query("client_id"))
|
clientID := strings.TrimSpace(gc.Query("client_id"))
|
||||||
template := "authorize.tmpl"
|
|
||||||
responseMode := strings.TrimSpace(gc.Query("response_mode"))
|
responseMode := strings.TrimSpace(gc.Query("response_mode"))
|
||||||
|
|
||||||
var scope []string
|
var scope []string
|
||||||
@@ -45,176 +51,94 @@ func AuthorizeHandler() gin.HandlerFunc {
|
|||||||
}
|
}
|
||||||
|
|
||||||
if responseMode == "" {
|
if responseMode == "" {
|
||||||
responseMode = "query"
|
responseMode = constants.ResponseModeQuery
|
||||||
}
|
|
||||||
|
|
||||||
if responseMode != "query" && responseMode != "web_message" {
|
|
||||||
log.Debug("Invalid response_mode: ", responseMode)
|
|
||||||
gc.JSON(400, gin.H{"error": "invalid response mode"})
|
|
||||||
}
|
}
|
||||||
|
|
||||||
if redirectURI == "" {
|
if redirectURI == "" {
|
||||||
redirectURI = "/app"
|
redirectURI = "/app"
|
||||||
}
|
}
|
||||||
|
|
||||||
isQuery := responseMode == "query"
|
|
||||||
|
|
||||||
loginURL := "/app?state=" + state + "&scope=" + strings.Join(scope, " ") + "&redirect_uri=" + redirectURI
|
|
||||||
|
|
||||||
if clientID == "" {
|
|
||||||
if isQuery {
|
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
|
||||||
} else {
|
|
||||||
log.Debug("Failed to get client_id: ", clientID)
|
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
|
||||||
"type": "authorization_response",
|
|
||||||
"response": map[string]string{
|
|
||||||
"error": "client_id is required",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
if client, err := memorystore.Provider.GetStringStoreEnvVariable(constants.EnvKeyClientID); client != clientID || err != nil {
|
|
||||||
if isQuery {
|
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
|
||||||
} else {
|
|
||||||
log.Debug("Invalid client_id: ", clientID)
|
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
|
||||||
"type": "authorization_response",
|
|
||||||
"response": map[string]string{
|
|
||||||
"error": "invalid_client_id",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
if state == "" {
|
|
||||||
if isQuery {
|
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
|
||||||
} else {
|
|
||||||
log.Debug("Failed to get state: ", state)
|
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
|
||||||
"type": "authorization_response",
|
|
||||||
"response": map[string]string{
|
|
||||||
"error": "state is required",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
|
||||||
return
|
|
||||||
}
|
|
||||||
|
|
||||||
if responseType == "" {
|
if responseType == "" {
|
||||||
responseType = "token"
|
responseType = "token"
|
||||||
}
|
}
|
||||||
|
|
||||||
isResponseTypeCode := responseType == "code"
|
if err := validateAuthorizeRequest(responseType, responseMode, clientID, state, codeChallenge); err != nil {
|
||||||
isResponseTypeToken := responseType == "token"
|
log.Debug("invalid authorization request: ", err)
|
||||||
|
gc.JSON(http.StatusBadRequest, gin.H{"error": err.Error()})
|
||||||
if !isResponseTypeCode && !isResponseTypeToken {
|
|
||||||
if isQuery {
|
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
|
||||||
} else {
|
|
||||||
log.Debug("Invalid response_type: ", responseType)
|
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
|
||||||
"type": "authorization_response",
|
|
||||||
"response": map[string]string{
|
|
||||||
"error": "response_type is invalid",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
if isResponseTypeCode {
|
log := log.WithFields(log.Fields{
|
||||||
if codeChallenge == "" {
|
"response_mode": responseMode,
|
||||||
if isQuery {
|
"response_type": responseType,
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
"state": state,
|
||||||
} else {
|
"code_challenge": codeChallenge,
|
||||||
log.Debug("Failed to get code_challenge: ", codeChallenge)
|
"scope": scope,
|
||||||
gc.HTML(http.StatusBadRequest, template, gin.H{
|
"redirect_uri": redirectURI,
|
||||||
"target_origin": redirectURI,
|
})
|
||||||
"authorization_response": map[string]interface{}{
|
|
||||||
"type": "authorization_response",
|
// used for response mode query or fragment
|
||||||
"response": map[string]string{
|
loginState := "state=" + state + "&scope=" + strings.Join(scope, " ") + "&redirect_uri=" + redirectURI
|
||||||
"error": "code_challenge is required",
|
loginURL := "/app?" + loginState
|
||||||
},
|
|
||||||
},
|
if responseMode == constants.ResponseModeFragment {
|
||||||
})
|
loginURL = "/app#" + loginState
|
||||||
}
|
|
||||||
return
|
|
||||||
}
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
if state == "" {
|
||||||
|
handleResponse(gc, responseMode, loginURL, redirectURI, map[string]interface{}{
|
||||||
|
"type": "authorization_response",
|
||||||
|
"response": map[string]interface{}{
|
||||||
|
"error": "state_required",
|
||||||
|
"error_description": "state is required",
|
||||||
|
},
|
||||||
|
}, http.StatusOK)
|
||||||
|
return
|
||||||
|
}
|
||||||
|
|
||||||
|
if responseType == constants.ResponseTypeCode && codeChallenge == "" {
|
||||||
|
handleResponse(gc, responseMode, loginURL, redirectURI, map[string]interface{}{
|
||||||
|
"type": "authorization_response",
|
||||||
|
"response": map[string]interface{}{
|
||||||
|
"error": "code_challenge_required",
|
||||||
|
"error_description": "code challenge is required",
|
||||||
|
},
|
||||||
|
}, http.StatusOK)
|
||||||
|
}
|
||||||
|
|
||||||
|
loginError := map[string]interface{}{
|
||||||
|
"type": "authorization_response",
|
||||||
|
"response": map[string]interface{}{
|
||||||
|
"error": "login_required",
|
||||||
|
"error_description": "Login is required",
|
||||||
|
},
|
||||||
|
}
|
||||||
sessionToken, err := cookie.GetSession(gc)
|
sessionToken, err := cookie.GetSession(gc)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
if isQuery {
|
log.Debug("GetSession failed: ", err)
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
} else {
|
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
|
||||||
"type": "authorization_response",
|
|
||||||
"response": map[string]string{
|
|
||||||
"error": "login_required",
|
|
||||||
"error_description": "Login is required",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
// get session from cookie
|
// get session from cookie
|
||||||
claims, err := token.ValidateBrowserSession(gc, sessionToken)
|
claims, err := token.ValidateBrowserSession(gc, sessionToken)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
if isQuery {
|
log.Debug("ValidateBrowserSession failed: ", err)
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
} else {
|
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
|
||||||
"type": "authorization_response",
|
|
||||||
"response": map[string]string{
|
|
||||||
"error": "login_required",
|
|
||||||
"error_description": "Login is required",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
userID := claims.Subject
|
userID := claims.Subject
|
||||||
user, err := db.Provider.GetUserByID(gc, userID)
|
user, err := db.Provider.GetUserByID(gc, userID)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
if isQuery {
|
log.Debug("GetUserByID failed: ", err)
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
handleResponse(gc, responseMode, loginURL, redirectURI, map[string]interface{}{
|
||||||
} else {
|
"type": "authorization_response",
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
"response": map[string]interface{}{
|
||||||
"target_origin": redirectURI,
|
"error": "signup_required",
|
||||||
"authorization_response": map[string]interface{}{
|
"error_description": "Sign up required",
|
||||||
"type": "authorization_response",
|
},
|
||||||
"response": map[string]string{
|
}, http.StatusOK)
|
||||||
"error": "signup_required",
|
|
||||||
"error_description": "Sign up required",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
@@ -223,72 +147,91 @@ func AuthorizeHandler() gin.HandlerFunc {
|
|||||||
sessionKey = claims.LoginMethod + ":" + user.ID
|
sessionKey = claims.LoginMethod + ":" + user.ID
|
||||||
}
|
}
|
||||||
|
|
||||||
// if user is logged in
|
// rollover the session for security
|
||||||
// based on the response type code, generate the response
|
go memorystore.Provider.DeleteUserSession(sessionKey, claims.Nonce)
|
||||||
if isResponseTypeCode {
|
if responseType == constants.ResponseTypeCode {
|
||||||
// rollover the session for security
|
|
||||||
go memorystore.Provider.DeleteUserSession(sessionKey, claims.Nonce)
|
|
||||||
nonce := uuid.New().String()
|
nonce := uuid.New().String()
|
||||||
newSessionTokenData, newSessionToken, err := token.CreateSessionToken(user, nonce, claims.Roles, scope, claims.LoginMethod)
|
newSessionTokenData, newSessionToken, err := token.CreateSessionToken(user, nonce, claims.Roles, scope, claims.LoginMethod)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
if isQuery {
|
log.Debug("CreateSessionToken failed: ", err)
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
} else {
|
return
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
}
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
if err := memorystore.Provider.SetUserSession(sessionKey, constants.TokenTypeSessionToken+"_"+newSessionTokenData.Nonce, newSessionToken); err != nil {
|
||||||
"type": "authorization_response",
|
log.Debug("SetUserSession failed: ", err)
|
||||||
"response": map[string]string{
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
"error": "login_required",
|
|
||||||
"error_description": "Login is required",
|
|
||||||
},
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
memorystore.Provider.SetUserSession(sessionKey, constants.TokenTypeSessionToken+"_"+newSessionTokenData.Nonce, newSessionToken)
|
|
||||||
cookie.SetSession(gc, newSessionToken)
|
cookie.SetSession(gc, newSessionToken)
|
||||||
code := uuid.New().String()
|
code := uuid.New().String()
|
||||||
memorystore.Provider.SetState(codeChallenge, code+"@"+newSessionToken)
|
if err := memorystore.Provider.SetState(codeChallenge, code+"@"+newSessionToken); err != nil {
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
log.Debug("SetState failed: ", err)
|
||||||
"target_origin": redirectURI,
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
"authorization_response": map[string]interface{}{
|
return
|
||||||
"type": "authorization_response",
|
}
|
||||||
"response": map[string]string{
|
|
||||||
"code": code,
|
// in case, response type is code and user is already logged in send the code and state
|
||||||
"state": state,
|
// and cookie session will already be rolled over and set
|
||||||
},
|
// gc.HTML(http.StatusOK, authorizeWebMessageTemplate, gin.H{
|
||||||
|
// "target_origin": redirectURI,
|
||||||
|
// "authorization_response": map[string]interface{}{
|
||||||
|
// "type": "authorization_response",
|
||||||
|
// "response": map[string]string{
|
||||||
|
// "code": code,
|
||||||
|
// "state": state,
|
||||||
|
// },
|
||||||
|
// },
|
||||||
|
// })
|
||||||
|
|
||||||
|
params := "code=" + code + "&state=" + state
|
||||||
|
if responseMode == constants.ResponseModeQuery {
|
||||||
|
if strings.Contains(redirectURI, "?") {
|
||||||
|
redirectURI = redirectURI + "&" + params
|
||||||
|
} else {
|
||||||
|
redirectURI = redirectURI + "?" + params
|
||||||
|
}
|
||||||
|
} else if responseMode == constants.ResponseModeFragment {
|
||||||
|
if strings.Contains(redirectURI, "#") {
|
||||||
|
redirectURI = redirectURI + "&" + params
|
||||||
|
} else {
|
||||||
|
redirectURI = redirectURI + "#" + params
|
||||||
|
}
|
||||||
|
}
|
||||||
|
|
||||||
|
handleResponse(gc, responseMode, loginURL, redirectURI, map[string]interface{}{
|
||||||
|
"type": "authorization_response",
|
||||||
|
"response": map[string]interface{}{
|
||||||
|
"code": code,
|
||||||
|
"state": state,
|
||||||
},
|
},
|
||||||
})
|
}, http.StatusOK)
|
||||||
|
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
if isResponseTypeToken {
|
if responseType == constants.ResponseTypeToken || responseType == constants.ResponseTypeIDToken {
|
||||||
// rollover the session for security
|
// rollover the session for security
|
||||||
authToken, err := token.CreateAuthToken(gc, user, claims.Roles, scope, claims.LoginMethod)
|
authToken, err := token.CreateAuthToken(gc, user, claims.Roles, scope, claims.LoginMethod)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
if isQuery {
|
log.Debug("CreateAuthToken failed: ", err)
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
} else {
|
return
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
}
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
if err := memorystore.Provider.SetUserSession(sessionKey, constants.TokenTypeSessionToken+"_"+authToken.FingerPrint, authToken.FingerPrintHash); err != nil {
|
||||||
"type": "authorization_response",
|
log.Debug("SetUserSession failed: ", err)
|
||||||
"response": map[string]string{
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
"error": "login_required",
|
return
|
||||||
"error_description": "Login is required",
|
}
|
||||||
},
|
|
||||||
},
|
if err := memorystore.Provider.SetUserSession(sessionKey, constants.TokenTypeAccessToken+"_"+authToken.FingerPrint, authToken.AccessToken.Token); err != nil {
|
||||||
})
|
log.Debug("SetUserSession failed: ", err)
|
||||||
}
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
go memorystore.Provider.DeleteUserSession(sessionKey, claims.Nonce)
|
|
||||||
memorystore.Provider.SetUserSession(sessionKey, constants.TokenTypeSessionToken+"_"+authToken.FingerPrint, authToken.FingerPrintHash)
|
|
||||||
memorystore.Provider.SetUserSession(sessionKey, constants.TokenTypeAccessToken+"_"+authToken.FingerPrint, authToken.AccessToken.Token)
|
|
||||||
cookie.SetSession(gc, authToken.FingerPrintHash)
|
cookie.SetSession(gc, authToken.FingerPrintHash)
|
||||||
|
|
||||||
expiresIn := authToken.AccessToken.ExpiresAt - time.Now().Unix()
|
expiresIn := authToken.AccessToken.ExpiresAt - time.Now().Unix()
|
||||||
@@ -314,38 +257,72 @@ func AuthorizeHandler() gin.HandlerFunc {
|
|||||||
memorystore.Provider.SetUserSession(sessionKey, constants.TokenTypeRefreshToken+"_"+authToken.FingerPrint, authToken.RefreshToken.Token)
|
memorystore.Provider.SetUserSession(sessionKey, constants.TokenTypeRefreshToken+"_"+authToken.FingerPrint, authToken.RefreshToken.Token)
|
||||||
}
|
}
|
||||||
|
|
||||||
if isQuery {
|
if responseMode == constants.ResponseModeQuery {
|
||||||
if strings.Contains(redirectURI, "?") {
|
if strings.Contains(redirectURI, "?") {
|
||||||
gc.Redirect(http.StatusFound, redirectURI+"&"+params)
|
redirectURI = redirectURI + "&" + params
|
||||||
} else {
|
} else {
|
||||||
gc.Redirect(http.StatusFound, redirectURI+"?"+params)
|
redirectURI = redirectURI + "?" + params
|
||||||
|
}
|
||||||
|
} else if responseMode == constants.ResponseModeFragment {
|
||||||
|
if strings.Contains(redirectURI, "#") {
|
||||||
|
redirectURI = redirectURI + "&" + params
|
||||||
|
} else {
|
||||||
|
redirectURI = redirectURI + "#" + params
|
||||||
}
|
}
|
||||||
} else {
|
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
|
||||||
"target_origin": redirectURI,
|
|
||||||
"authorization_response": map[string]interface{}{
|
|
||||||
"type": "authorization_response",
|
|
||||||
"response": res,
|
|
||||||
},
|
|
||||||
})
|
|
||||||
}
|
}
|
||||||
|
|
||||||
|
handleResponse(gc, responseMode, loginURL, redirectURI, map[string]interface{}{
|
||||||
|
"type": "authorization_response",
|
||||||
|
"response": res,
|
||||||
|
}, http.StatusOK)
|
||||||
return
|
return
|
||||||
}
|
}
|
||||||
|
|
||||||
if isQuery {
|
handleResponse(gc, responseMode, loginURL, redirectURI, loginError, http.StatusOK)
|
||||||
gc.Redirect(http.StatusFound, loginURL)
|
}
|
||||||
} else {
|
}
|
||||||
// by default return with error
|
|
||||||
gc.HTML(http.StatusOK, template, gin.H{
|
func validateAuthorizeRequest(responseType, responseMode, clientID, state, codeChallenge string) error {
|
||||||
"target_origin": redirectURI,
|
if responseType != constants.ResponseTypeCode && responseType != constants.ResponseTypeToken && responseType != constants.ResponseTypeIDToken {
|
||||||
"authorization_response": map[string]interface{}{
|
return fmt.Errorf("invalid response type %s. 'code' & 'token' are valid response_type", responseMode)
|
||||||
"type": "authorization_response",
|
}
|
||||||
"response": map[string]string{
|
|
||||||
"error": "login_required",
|
if responseMode != constants.ResponseModeQuery && responseMode != constants.ResponseModeWebMessage && responseMode != constants.ResponseModeFragment && responseMode != constants.ResponseModeFormPost {
|
||||||
"error_description": "Login is required",
|
return fmt.Errorf("invalid response mode %s. 'query', 'fragment', 'form_post' and 'web_message' are valid response_mode", responseMode)
|
||||||
},
|
}
|
||||||
},
|
|
||||||
})
|
if client, err := memorystore.Provider.GetStringStoreEnvVariable(constants.EnvKeyClientID); client != clientID || err != nil {
|
||||||
}
|
return fmt.Errorf("invalid client_id %s", clientID)
|
||||||
|
}
|
||||||
|
|
||||||
|
return nil
|
||||||
|
}
|
||||||
|
|
||||||
|
func handleResponse(gc *gin.Context, responseMode, loginURI, redirectURI string, data map[string]interface{}, httpStatusCode int) {
|
||||||
|
isAuthenticationRequired := false
|
||||||
|
if _, ok := data["response"].(map[string]interface{})["error"]; ok {
|
||||||
|
isAuthenticationRequired = true
|
||||||
|
}
|
||||||
|
|
||||||
|
switch responseMode {
|
||||||
|
case constants.ResponseModeQuery, constants.ResponseModeFragment:
|
||||||
|
if isAuthenticationRequired {
|
||||||
|
gc.Redirect(http.StatusFound, loginURI)
|
||||||
|
} else {
|
||||||
|
gc.Redirect(http.StatusFound, redirectURI)
|
||||||
|
}
|
||||||
|
return
|
||||||
|
case constants.ResponseModeWebMessage:
|
||||||
|
gc.HTML(httpStatusCode, authorizeWebMessageTemplate, gin.H{
|
||||||
|
"target_origin": redirectURI,
|
||||||
|
"authorization_response": data,
|
||||||
|
})
|
||||||
|
return
|
||||||
|
case constants.ResponseModeFormPost:
|
||||||
|
gc.HTML(httpStatusCode, authorizeFormPostTemplate, gin.H{
|
||||||
|
"target_origin": redirectURI,
|
||||||
|
"authorization_response": data["response"],
|
||||||
|
})
|
||||||
|
return
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -17,14 +17,14 @@ func OpenIDConfigurationHandler() gin.HandlerFunc {
|
|||||||
c.JSON(200, gin.H{
|
c.JSON(200, gin.H{
|
||||||
"issuer": issuer,
|
"issuer": issuer,
|
||||||
"authorization_endpoint": issuer + "/authorize",
|
"authorization_endpoint": issuer + "/authorize",
|
||||||
"token_endpoint": issuer + "/oauth/token",
|
"token_endpoint": issuer + "/token",
|
||||||
"userinfo_endpoint": issuer + "/userinfo",
|
"userinfo_endpoint": issuer + "/userinfo",
|
||||||
"jwks_uri": issuer + "/.well-known/jwks.json",
|
"jwks_uri": issuer + "/.well-known/jwks.json",
|
||||||
"response_types_supported": []string{"code", "token", "id_token"},
|
"response_types_supported": []string{"code", "token", "id_token"},
|
||||||
"scopes_supported": []string{"openid", "email", "profile", "email_verified", "given_name", "family_name", "nick_name", "picture"},
|
"scopes_supported": []string{"openid", "email", "profile", "email_verified", "given_name", "family_name", "nick_name", "picture"},
|
||||||
"response_modes_supported": []string{"query", "fragment", "form_post", "web_message"},
|
"response_modes_supported": []string{"query", "fragment", "form_post", "web_message"},
|
||||||
"id_token_signing_alg_values_supported": []string{jwtType},
|
"id_token_signing_alg_values_supported": []string{jwtType},
|
||||||
"claims_supported": []string{"aud", "exp", "iss", "iat", "sub", "given_name", "family_name", "middle_name", "nickname", "preferred_username", "picture", "email", "email_verified", "roles", "role", "gender", "birthdate", "phone_number", "phone_number_verified", "nonce", "updated_at", "created_at", "revoked_timestamp", "login_method", "signup_methods", "token_type"},
|
"claims_supported": []string{"aud", "exp", "iss", "iat", "sub", "given_name", "family_name", "middle_name", "nickname", "preferred_username", "picture", "email", "email_verified", "roles", "gender", "birthdate", "phone_number", "phone_number_verified"},
|
||||||
})
|
})
|
||||||
}
|
}
|
||||||
}
|
}
|
||||||
|
|||||||
@@ -15,15 +15,12 @@ import (
|
|||||||
"github.com/authorizerdev/authorizer/server/routes"
|
"github.com/authorizerdev/authorizer/server/routes"
|
||||||
)
|
)
|
||||||
|
|
||||||
// VERSION is used to define the version of authorizer from build tags
|
|
||||||
var VERSION string
|
var VERSION string
|
||||||
|
|
||||||
// LogUTCFormatter hels in setting UTC time format for the logs
|
|
||||||
type LogUTCFormatter struct {
|
type LogUTCFormatter struct {
|
||||||
log.Formatter
|
log.Formatter
|
||||||
}
|
}
|
||||||
|
|
||||||
// Format helps fomratting time to UTC
|
|
||||||
func (u LogUTCFormatter) Format(e *log.Entry) ([]byte, error) {
|
func (u LogUTCFormatter) Format(e *log.Entry) ([]byte, error) {
|
||||||
e.Time = e.Time.UTC()
|
e.Time = e.Time.UTC()
|
||||||
return u.Formatter.Format(e)
|
return u.Formatter.Format(e)
|
||||||
|
|||||||
@@ -28,10 +28,6 @@ type RequiredEnv struct {
|
|||||||
DatabaseCACert string `json:"DATABASE_CA_CERT"`
|
DatabaseCACert string `json:"DATABASE_CA_CERT"`
|
||||||
RedisURL string `json:"REDIS_URL"`
|
RedisURL string `json:"REDIS_URL"`
|
||||||
DisableRedisForEnv bool `json:"DISABLE_REDIS_FOR_ENV"`
|
DisableRedisForEnv bool `json:"DISABLE_REDIS_FOR_ENV"`
|
||||||
// AWS Related Envs
|
|
||||||
AwsRegion string `json:"AWS_REGION"`
|
|
||||||
AwsAccessKeyID string `json:"AWS_ACCESS_KEY_ID"`
|
|
||||||
AwsSecretAccessKey string `json:"AWS_SECRET_ACCESS_KEY"`
|
|
||||||
}
|
}
|
||||||
|
|
||||||
// RequiredEnvObj is a simple in-memory store for sessions.
|
// RequiredEnvObj is a simple in-memory store for sessions.
|
||||||
@@ -57,8 +53,7 @@ func (r *RequiredEnvStore) SetRequiredEnv(requiredEnv RequiredEnv) {
|
|||||||
|
|
||||||
var RequiredEnvStoreObj *RequiredEnvStore
|
var RequiredEnvStoreObj *RequiredEnvStore
|
||||||
|
|
||||||
// InitRequiredEnv to initialize EnvData and throw error if required env are not present
|
// InitRequiredEnv to initialize EnvData and through error if required env are not present
|
||||||
// This includes env that only configurable via env vars and not the ui
|
|
||||||
func InitRequiredEnv() error {
|
func InitRequiredEnv() error {
|
||||||
envPath := os.Getenv(constants.EnvKeyEnvPath)
|
envPath := os.Getenv(constants.EnvKeyEnvPath)
|
||||||
|
|
||||||
@@ -90,9 +85,6 @@ func InitRequiredEnv() error {
|
|||||||
dbCACert := os.Getenv(constants.EnvKeyDatabaseCACert)
|
dbCACert := os.Getenv(constants.EnvKeyDatabaseCACert)
|
||||||
redisURL := os.Getenv(constants.EnvKeyRedisURL)
|
redisURL := os.Getenv(constants.EnvKeyRedisURL)
|
||||||
disableRedisForEnv := os.Getenv(constants.EnvKeyDisableRedisForEnv) == "true"
|
disableRedisForEnv := os.Getenv(constants.EnvKeyDisableRedisForEnv) == "true"
|
||||||
awsRegion := os.Getenv(constants.EnvAwsRegion)
|
|
||||||
awsAccessKeyID := os.Getenv(constants.EnvAwsAccessKeyID)
|
|
||||||
awsSecretAccessKey := os.Getenv(constants.EnvAwsSecretAccessKey)
|
|
||||||
|
|
||||||
if strings.TrimSpace(redisURL) == "" {
|
if strings.TrimSpace(redisURL) == "" {
|
||||||
if cli.ARG_REDIS_URL != nil && *cli.ARG_REDIS_URL != "" {
|
if cli.ARG_REDIS_URL != nil && *cli.ARG_REDIS_URL != "" {
|
||||||
@@ -121,8 +113,7 @@ func InitRequiredEnv() error {
|
|||||||
dbURL = strings.TrimSpace(*cli.ARG_DB_URL)
|
dbURL = strings.TrimSpace(*cli.ARG_DB_URL)
|
||||||
}
|
}
|
||||||
|
|
||||||
// In dynamoDB these field are not always mandatory
|
if dbURL == "" && dbPort == "" && dbHost == "" && dbUsername == "" && dbPassword == "" {
|
||||||
if dbType != constants.DbTypeDynamoDB && dbURL == "" && dbPort == "" && dbHost == "" && dbUsername == "" && dbPassword == "" {
|
|
||||||
log.Debug("DATABASE_URL is not set")
|
log.Debug("DATABASE_URL is not set")
|
||||||
return errors.New("invalid database url. DATABASE_URL is required")
|
return errors.New("invalid database url. DATABASE_URL is required")
|
||||||
}
|
}
|
||||||
@@ -148,9 +139,6 @@ func InitRequiredEnv() error {
|
|||||||
DatabaseCACert: dbCACert,
|
DatabaseCACert: dbCACert,
|
||||||
RedisURL: redisURL,
|
RedisURL: redisURL,
|
||||||
DisableRedisForEnv: disableRedisForEnv,
|
DisableRedisForEnv: disableRedisForEnv,
|
||||||
AwsRegion: awsRegion,
|
|
||||||
AwsAccessKeyID: awsAccessKeyID,
|
|
||||||
AwsSecretAccessKey: awsSecretAccessKey,
|
|
||||||
}
|
}
|
||||||
|
|
||||||
RequiredEnvStoreObj = &RequiredEnvStore{
|
RequiredEnvStoreObj = &RequiredEnvStore{
|
||||||
|
|||||||
@@ -85,7 +85,7 @@ func ForgotPasswordResolver(ctx context.Context, params model.ForgotPasswordInpu
|
|||||||
return res, err
|
return res, err
|
||||||
}
|
}
|
||||||
|
|
||||||
// exec it as go routine so that we can reduce the api latency
|
// execute it as go routine so that we can reduce the api latency
|
||||||
go email.SendEmail([]string{params.Email}, constants.VerificationTypeForgotPassword, map[string]interface{}{
|
go email.SendEmail([]string{params.Email}, constants.VerificationTypeForgotPassword, map[string]interface{}{
|
||||||
"user": user.ToMap(),
|
"user": user.ToMap(),
|
||||||
"organization": utils.GetOrganization(),
|
"organization": utils.GetOrganization(),
|
||||||
|
|||||||
@@ -2,7 +2,6 @@ package test
|
|||||||
|
|
||||||
import (
|
import (
|
||||||
"context"
|
"context"
|
||||||
"fmt"
|
|
||||||
"os"
|
"os"
|
||||||
"strings"
|
"strings"
|
||||||
"testing"
|
"testing"
|
||||||
@@ -21,7 +20,6 @@ func TestResolvers(t *testing.T) {
|
|||||||
constants.DbTypeArangodb: "http://localhost:8529",
|
constants.DbTypeArangodb: "http://localhost:8529",
|
||||||
constants.DbTypeMongodb: "mongodb://localhost:27017",
|
constants.DbTypeMongodb: "mongodb://localhost:27017",
|
||||||
constants.DbTypeScyllaDB: "127.0.0.1:9042",
|
constants.DbTypeScyllaDB: "127.0.0.1:9042",
|
||||||
constants.DbTypeDynamoDB: "http://0.0.0.0:8000",
|
|
||||||
}
|
}
|
||||||
|
|
||||||
testDBs := strings.Split(os.Getenv("TEST_DBS"), ",")
|
testDBs := strings.Split(os.Getenv("TEST_DBS"), ",")
|
||||||
@@ -53,12 +51,6 @@ func TestResolvers(t *testing.T) {
|
|||||||
os.Setenv(constants.EnvKeyDatabaseURL, dbURL)
|
os.Setenv(constants.EnvKeyDatabaseURL, dbURL)
|
||||||
os.Setenv(constants.EnvKeyDatabaseType, dbType)
|
os.Setenv(constants.EnvKeyDatabaseType, dbType)
|
||||||
os.Setenv(constants.EnvKeyDatabaseName, testDb)
|
os.Setenv(constants.EnvKeyDatabaseName, testDb)
|
||||||
|
|
||||||
if dbType == constants.DbTypeDynamoDB {
|
|
||||||
memorystore.Provider.UpdateEnvVariable(constants.EnvAwsRegion, "ap-south-1")
|
|
||||||
os.Setenv(constants.EnvAwsRegion, "ap-south-1")
|
|
||||||
}
|
|
||||||
|
|
||||||
memorystore.InitRequiredEnv()
|
memorystore.InitRequiredEnv()
|
||||||
|
|
||||||
err := db.InitDB()
|
err := db.InitDB()
|
||||||
@@ -68,15 +60,12 @@ func TestResolvers(t *testing.T) {
|
|||||||
|
|
||||||
// clean the persisted config for test to use fresh config
|
// clean the persisted config for test to use fresh config
|
||||||
envData, err := db.Provider.GetEnv(ctx)
|
envData, err := db.Provider.GetEnv(ctx)
|
||||||
fmt.Println("envData", envData.ID, envData.EnvData)
|
if err == nil {
|
||||||
if err == nil && envData.ID != "" {
|
|
||||||
envData.EnvData = ""
|
envData.EnvData = ""
|
||||||
_, err = db.Provider.UpdateEnv(ctx, envData)
|
_, err = db.Provider.UpdateEnv(ctx, envData)
|
||||||
if err != nil {
|
if err != nil {
|
||||||
t.Errorf("Error updating env: %s", err.Error())
|
t.Errorf("Error updating env: %s", err.Error())
|
||||||
}
|
}
|
||||||
} else if err != nil {
|
|
||||||
t.Errorf("Error getting env: %s", err.Error())
|
|
||||||
}
|
}
|
||||||
err = env.PersistEnv()
|
err = env.PersistEnv()
|
||||||
if err != nil {
|
if err != nil {
|
||||||
|
|||||||
@@ -84,7 +84,7 @@ func testSetup() TestSetup {
|
|||||||
testData := TestData{
|
testData := TestData{
|
||||||
Email: fmt.Sprintf("%d_authorizer_tester@yopmail.com", time.Now().Unix()),
|
Email: fmt.Sprintf("%d_authorizer_tester@yopmail.com", time.Now().Unix()),
|
||||||
Password: "Test@123",
|
Password: "Test@123",
|
||||||
WebhookEndpoint: "https://62f93101e05644803533cf36.mockapi.io/authorizer/webhook",
|
WebhookEndpoint: "https://62cbc6738042b16aa7c22df2.mockapi.io/api/v1/webhook",
|
||||||
TestWebhookEventTypes: []string{constants.UserAccessEnabledWebhookEvent, constants.UserAccessRevokedWebhookEvent, constants.UserCreatedWebhookEvent, constants.UserDeletedWebhookEvent, constants.UserLoginWebhookEvent, constants.UserSignUpWebhookEvent},
|
TestWebhookEventTypes: []string{constants.UserAccessEnabledWebhookEvent, constants.UserAccessRevokedWebhookEvent, constants.UserCreatedWebhookEvent, constants.UserDeletedWebhookEvent, constants.UserLoginWebhookEvent, constants.UserSignUpWebhookEvent},
|
||||||
TestEmailTemplateEventTypes: []string{constants.VerificationTypeBasicAuthSignup, constants.VerificationTypeForgotPassword, constants.VerificationTypeMagicLinkLogin, constants.VerificationTypeUpdateEmail},
|
TestEmailTemplateEventTypes: []string{constants.VerificationTypeBasicAuthSignup, constants.VerificationTypeForgotPassword, constants.VerificationTypeMagicLinkLogin, constants.VerificationTypeUpdateEmail},
|
||||||
}
|
}
|
||||||
|
|||||||
13
templates/authorize_form_post.tmpl
Normal file
13
templates/authorize_form_post.tmpl
Normal file
@@ -0,0 +1,13 @@
|
|||||||
|
<!DOCTYPE html>
|
||||||
|
<html>
|
||||||
|
<head>
|
||||||
|
<title>Authorization Response</title>
|
||||||
|
</head>
|
||||||
|
<body onload="document.forms['authorize_form_post'].submit()">
|
||||||
|
<form action="{{.target_origin}}" name="authorize_form_post" method="POST">
|
||||||
|
{{ range $key, $val := .authorization_response }}
|
||||||
|
<input type="hidden" key="{{$key}}" value="{{$val}}" name="{{$key}}" id="{{$key}}" />
|
||||||
|
{{ end }}
|
||||||
|
</form>
|
||||||
|
</body>
|
||||||
|
</html>
|
||||||
Reference in New Issue
Block a user