Skip to content
This repository has been archived by the owner on Nov 20, 2024. It is now read-only.

Commit

Permalink
chore(vendor): update @lightbasenl/backend
Browse files Browse the repository at this point in the history
_This PR is created by sync and will be force-pushed daily. Overwriting any manual changes done to this PR._

- Allow custom function to check 2fa enabled (lightbasenl/platform-components#1352) (lightbasenl/platform-components@f69c14a)
- feat(backend): various fixes for the TypeScript migration (lightbasenl/platform-components@9f6c1b0)
- feat(backend): support passing user props to authTestCreateUser (lightbasenl/platform-components@a7f7fad)
- chore(deps): Bump @xmldom/xmldom from 0.9.4 to 0.9.5 in the production group (lightbasenl/platform-components#1348) (lightbasenl/platform-components@4204470)
- chore(deps): Bump rate-limiter-flexible from 5.0.3 to 5.0.4 in the production group (lightbasenl/platform-components#1346) (lightbasenl/platform-components@822c961)
- chore(deps): Bump @xmldom/xmldom from 0.9.3 to 0.9.4 in the production group (lightbasenl/platform-components#1344) (lightbasenl/platform-components@5e34679)
- fix(feature-flag): allow updating 'userValues' (lightbasenl/platform-components@bb290dd)
- fix(feature-flag): use correct sql connection for fetching session (lightbasenl/platform-components@33e27e8)
- chore(deps): bump xmldom (lightbasenl/platform-components@b1d5ba6)
- chore: replace lint setup with @lightbase/eslint-config (lightbasenl/platform-components@c8e7656)
- feat!(backend): feature flags per user (lightbasenl/platform-components#1341) (lightbasenl/platform-components@075e8cd)
- feat(backend): add hook to be called in `authRequireUser` on a successful check (lightbasenl/platform-components@90f5223)
- chore: make compatible with new and old lint configs (lightbasenl/platform-components@445035b)
- chore(deps): Bump @lightbase/pull-through-cache from 0.2.0 to 0.2.1 in the production group (lightbasenl/platform-components#1326) (lightbasenl/platform-components@83e6a49)
- chore(backend): remove duplicate check on `requiredPermissions` (lightbasenl/platform-components@387fa87)
- feat(backend): support `oneOfRequiredPermissions` (lightbasenl/platform-components@f78adcc)
- feat(feature-flag,multitenant): report cache events as Sentry metric (lightbasenl/platform-components@22ebc13)- Failed to execute `npx compas lint`. Sync is not able to correct this, so human checks and fixes are necessary for this PR.
  • Loading branch information
github-actions[bot] committed Nov 15, 2024
1 parent 07e7822 commit b29c881
Show file tree
Hide file tree
Showing 37 changed files with 266 additions and 130 deletions.
12 changes: 6 additions & 6 deletions gen/index.js
Original file line number Diff line number Diff line change
@@ -1,4 +1,10 @@
import { storeGetStructure } from "@compas/store";
import { featureFlagDefinition, permissions } from "../src/constants.js";
import { extendWithAuthCustom } from "./auth.js";
import { extendWithDatabase } from "./database.js";
import { extendWithMail } from "./mail.js";
import { extendWithScaffold } from "./scaffold.js";
import { extendWithType } from "./type.js";
import {
authPermissions,
extendWithAuthAnonymousBased,
Expand All @@ -9,12 +15,6 @@ import {
extendWithFeatureFlag,
extendWithManagement,
} from "@lightbasenl/backend";
import { featureFlagDefinition, permissions } from "../src/constants.js";
import { extendWithAuthCustom } from "./auth.js";
import { extendWithDatabase } from "./database.js";
import { extendWithMail } from "./mail.js";
import { extendWithScaffold } from "./scaffold.js";
import { extendWithType } from "./type.js";

/**
* Extend with compas additional/optional package structures
Expand Down
26 changes: 17 additions & 9 deletions package-lock.json

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

12 changes: 6 additions & 6 deletions scripts/queue.js
Original file line number Diff line number Diff line change
Expand Up @@ -10,12 +10,6 @@ import {
queueWorkerCreate,
queueWorkerRegisterCronJobs,
} from "@compas/store";
import {
authEventNames,
authJobNames,
authPasswordBasedInvalidateResetTokens,
managementInvalidateUsers,
} from "@lightbasenl/backend";
import {
authAnonymousBasedUserRegisteredEvent,
authPasswordBasedEmailUpdatedEvent,
Expand All @@ -29,6 +23,12 @@ import { injectServices } from "../src/service.js";
import { serviceLogger } from "../src/services/logger.js";
import { sql } from "../src/services/postgres.js";
import { bucketName, s3Client } from "../src/services/s3.js";
import {
authEventNames,
authJobNames,
authPasswordBasedInvalidateResetTokens,
managementInvalidateUsers,
} from "@lightbasenl/backend";

mainFn(import.meta, main);

Expand Down
14 changes: 7 additions & 7 deletions src/auth/jobs.js
Original file line number Diff line number Diff line change
Expand Up @@ -36,7 +36,7 @@ export async function authAnonymousBasedUserRegisteredEvent(
}

// TODO(platform): Act
// eslint-disable-next-line no-unused-vars

const x = 5;

eventStop(event);
Expand Down Expand Up @@ -87,7 +87,7 @@ export async function authPasswordBasedUserRegisteredEvent(
}

// TODO(platform): Act
// eslint-disable-next-line no-unused-vars

const x = 5;

eventStop(event);
Expand Down Expand Up @@ -139,7 +139,7 @@ export async function authPasswordBasedForgotPasswordEvent(
}

// TODO(platform): Act
// eslint-disable-next-line no-unused-vars

const x = 5;

eventStop(event);
Expand Down Expand Up @@ -180,7 +180,7 @@ export async function authPasswordBasedPasswordUpdatedEvent(
}

// TODO(platform): Act
// eslint-disable-next-line no-unused-vars

const x = 5;

eventStop(event);
Expand Down Expand Up @@ -228,7 +228,7 @@ export async function authPasswordBasedEmailUpdatedEvent(event, sql, { data }) {
}

// TODO(platform): Act
// eslint-disable-next-line no-unused-vars

const x = 5;

eventStop(event);
Expand Down Expand Up @@ -269,7 +269,7 @@ export async function authPasswordBasedLoginVerifiedEvent(
}

// TODO(platform): Act
// eslint-disable-next-line no-unused-vars

const x = 5;

eventStop(event);
Expand Down Expand Up @@ -310,7 +310,7 @@ export async function authPasswordBasedPasswordResetEvent(
}

// TODO(platform): Act
// eslint-disable-next-line no-unused-vars

const x = 5;

eventStop(event);
Expand Down
8 changes: 4 additions & 4 deletions src/mail/events.js
Original file line number Diff line number Diff line change
Expand Up @@ -42,7 +42,7 @@ export async function mailSendGeneric(event, email, payload) {
* @param {function(MailAddressHeaders, T): MailTemplateResponse} template
* @param {MailAddressHeaders} addresses
* @param {T} [payload={}]
* @param {import("@types/nodemailer").Attachment[]} [attachments]
* @param {Array<import("@types/nodemailer").Attachment>} [attachments]
* @returns {Promise<void>}
*/
async function mailSend(
Expand Down Expand Up @@ -92,9 +92,9 @@ async function mailSend(
* Construct a mail header object for nodemailer
*
* @param {MailAddress} from
* @param {MailAddress|MailAddress[]} to
* @param {MailAddress[]|undefined} [cc]
* @param {MailAddress[]|undefined} [bcc]
* @param {MailAddress | Array<MailAddress>} to
* @param {Array<MailAddress> | undefined} [cc]
* @param {Array<MailAddress> | undefined} [bcc]
* @returns {MailAddressHeaders}
*/
function constructMailAddressHeaders(from, to, cc, bcc) {
Expand Down
2 changes: 1 addition & 1 deletion src/scaffold/controller.js
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
import { newEventFromEvent } from "@compas/stdlib";
import { authCreateUser, multitenantRequireTenant } from "@lightbasenl/backend";
import { scaffoldHandlers } from "../generated/application/scaffold/controller.js";
import { sql } from "../services/postgres.js";
import { authCreateUser, multitenantRequireTenant } from "@lightbasenl/backend";

// TODO(platform): remove this;
scaffoldHandlers.createUser = async (ctx) => {
Expand Down
2 changes: 1 addition & 1 deletion src/services/app.js
Original file line number Diff line number Diff line change
@@ -1,7 +1,7 @@
import { createBodyParser, getApp } from "@compas/server";
import { backendGetConfig } from "@lightbasenl/backend";
import { router } from "../generated/application/common/router.js";
import { serviceLogger } from "./logger.js";
import { backendGetConfig } from "@lightbasenl/backend";

/**
* @type {Application}
Expand Down
2 changes: 1 addition & 1 deletion src/services/core.js
Original file line number Diff line number Diff line change
Expand Up @@ -5,7 +5,7 @@ import { AppError, environment } from "@compas/stdlib";
* This method should be used as guard during startup to ensure non-unexpected
* code paths are hit during runtime.
*
* @param {string[]} requiredEnvironmentVariables
* @param {Array<string>} requiredEnvironmentVariables
* @returns {void}
*/
export function ensureEnvironmentVars(requiredEnvironmentVariables) {
Expand Down
4 changes: 2 additions & 2 deletions src/services/lpc.js
Original file line number Diff line number Diff line change
@@ -1,11 +1,11 @@
import { newEvent } from "@compas/stdlib";
import { buildMandatoryRoles, permissions } from "../constants.js";
import { serviceLogger } from "./logger.js";
import {
authPermissions,
backendInit,
backendInitServices,
} from "@lightbasenl/backend";
import { buildMandatoryRoles, permissions } from "../constants.js";
import { serviceLogger } from "./logger.js";

/**
* @returns {Promise<void>}
Expand Down
8 changes: 4 additions & 4 deletions src/testing.js
Original file line number Diff line number Diff line change
Expand Up @@ -4,10 +4,6 @@ import {
cleanupTestPostgresDatabase,
objectStorageRemoveBucket,
} from "@compas/store";
import {
authInjectTokenInterceptors,
multitenantInjectAxios,
} from "@lightbasenl/backend";
import axios from "axios";
import { axiosInterceptErrorAndWrapWithAppError } from "./generated/application/common/api-client.js";
import {
Expand All @@ -25,6 +21,10 @@ import {
serviceS3EnsureBuckets,
serviceS3Init,
} from "./services/s3.js";
import {
authInjectTokenInterceptors,
multitenantInjectAxios,
} from "@lightbasenl/backend";

/**
* Initialize all services based on an empty database and fresh s3 bucket.
Expand Down
1 change: 1 addition & 0 deletions vendor/backend/README.md
Original file line number Diff line number Diff line change
Expand Up @@ -200,6 +200,7 @@ erDiagram
string description
string name
generic tenantValues
generic userValues
date createdAt
date updatedAt
}
Expand Down
8 changes: 4 additions & 4 deletions vendor/backend/package.json
Original file line number Diff line number Diff line change
Expand Up @@ -13,10 +13,10 @@
],
"scripts": {},
"dependencies": {
"@lightbase/pull-through-cache": "0.1.2",
"@xmldom/xmldom": "0.8.10",
"@lightbase/pull-through-cache": "0.2.1",
"@xmldom/xmldom": "0.9.5",
"bcrypt": "5.1.1",
"rate-limiter-flexible": "5.0.3",
"rate-limiter-flexible": "5.0.4",
"speakeasy": "2.0.0",
"xml-crypto": "6.0.0",
"xpath": "0.0.34"
Expand All @@ -30,5 +30,5 @@
"url": "https://github.com/lightbasenl/platform-components.git",
"directory": "packages/backend"
},
"gitHead": "b335a6c8aa6f5e14489b582b02b6fa45beda00b6"
"gitHead": "f69c14a63c3acd44091d5d869c8c2d6ee20a82a7"
}
2 changes: 1 addition & 1 deletion vendor/backend/src/auth/anonymous-based/controller.js
Original file line number Diff line number Diff line change
Expand Up @@ -79,7 +79,7 @@ export async function applyAnonymousBasedController(settings) {

const set2FACheck =
typeof settings.determineTwoStepFunction === "function" &&
(settings.determineTwoStepFunction(user) ?? {});
((await settings.determineTwoStepFunction(ctx, user)) ?? {});

const newSessionResult = await sessionStoreCreate(
newEventFromEvent(ctx.event),
Expand Down
42 changes: 23 additions & 19 deletions vendor/backend/src/auth/apply.js
Original file line number Diff line number Diff line change
Expand Up @@ -17,10 +17,29 @@ import { applyTotpProviderController } from "./totp-provider/controller.js";

/**
* @typedef {(
* user: QueryResultAuthUser
* ) => AuthDetermineTwoStepResult} AuthDetermineTwoStepCheckFunction
* ctx: import("koa").ExtendableContext, user: QueryResultAuthUser
* ) => Promise<AuthDetermineTwoStepResult>|AuthDetermineTwoStepResult}
* AuthDetermineTwoStepCheckFunction
*/

/**
* @type {AuthDetermineTwoStepCheckFunction}
*/
export const authDefaultDetermineTwoStepFunction = (ctx, user) => {
if (!isNil(user?.totpSettings?.verifiedAt)) {
return {
type: "checkTwoStep",
twoStepType: "totpProvider",
};
} else if (!isNil(user?.passwordLogin?.otpEnabledAt)) {
// TODO: what should happen if the user didn't login via passwordLogin?
return {
type: "checkTwoStep",
twoStepType: "passwordBasedOtp",
};
}
};

/**
* Apply the auth package with the provided settings.
* Make sure to call `routerClearMemoizedHandlers` when calling `applyAuth` again on the
Expand All @@ -37,24 +56,9 @@ export async function applyAuth({
keycloakBased,
passwordBased,
totpProvider,
determineTwoStepFunction,
}) {
/**
* @type {AuthDetermineTwoStepCheckFunction}
*/
const determineTwoStepFunction = (user) => {
if (!isNil(user?.totpSettings?.verifiedAt)) {
return {
type: "checkTwoStep",
twoStepType: "totpProvider",
};
} else if (!isNil(user?.passwordLogin?.otpEnabledAt)) {
// TODO: what should happen if the user didn't login via passwordLogin?
return {
type: "checkTwoStep",
twoStepType: "passwordBasedOtp",
};
}
};
determineTwoStepFunction ??= authDefaultDetermineTwoStepFunction;

await applyAuthController();
await applySessionController({});
Expand Down
2 changes: 1 addition & 1 deletion vendor/backend/src/auth/digid-based/controller.js
Original file line number Diff line number Diff line change
Expand Up @@ -153,7 +153,7 @@ export async function applyDigidBasedController(settings) {

const set2FACheck =
typeof settings.determineTwoStepFunction === "function" &&
(settings.determineTwoStepFunction(user) ?? {});
((await settings.determineTwoStepFunction(ctx, user)) ?? {});

const newSessionResult = await sessionStoreCreate(
newEventFromEvent(ctx.event),
Expand Down
12 changes: 9 additions & 3 deletions vendor/backend/src/auth/digid-based/events.js
Original file line number Diff line number Diff line change
Expand Up @@ -15,7 +15,7 @@ import {
uuid,
} from "@compas/stdlib";
import { queueWorkerAddJob } from "@compas/store";
import xmldom from "@xmldom/xmldom";
import xmldom, { MIME_TYPE } from "@xmldom/xmldom";
import axios from "axios";
import xmlCrypto from "xml-crypto";
import xpath from "xpath";
Expand Down Expand Up @@ -362,7 +362,10 @@ export async function authDigidBasedResolveArtifact(
);
}

const doc = new xmldom.DOMParser().parseFromString(xmlResponse);
const doc = new xmldom.DOMParser().parseFromString(
xmlResponse,
MIME_TYPE.XML_APPLICATION,
);
const [mainStatus, subStatus, subSubStatus] = xpath.select(
"//*[local-name(.)='StatusCode']/@Value",
doc,
Expand Down Expand Up @@ -534,7 +537,10 @@ async function authDigidBasedGetSignatureForPayload(
async function authDigidBasedVerifySignaturesForXmlPayload(event, payload) {
eventStart(event, "authDigidBased.verifySignaturesForXmlPayload");

const doc = new xmldom.DOMParser().parseFromString(payload);
const doc = new xmldom.DOMParser().parseFromString(
payload,
MIME_TYPE.XML_APPLICATION,
);
const signatures = xpath.select("//*[local-name(.)='Signature']", doc);
if (signatures.length === 0) {
throw AppError.serverError({
Expand Down
Loading

0 comments on commit b29c881

Please sign in to comment.