2022-08-19 15:08:03 +02:00
|
|
|
import {
|
2023-02-28 10:37:03 +01:00
|
|
|
directCouchFind,
|
2023-04-24 10:31:48 +02:00
|
|
|
DocumentType,
|
|
|
|
generateAppUserID,
|
2023-03-10 17:06:53 +01:00
|
|
|
getGlobalUserParams,
|
2023-04-24 10:31:48 +02:00
|
|
|
getProdAppID,
|
|
|
|
getUsersByAppParams,
|
2023-03-10 17:06:53 +01:00
|
|
|
pagination,
|
2023-04-24 10:31:48 +02:00
|
|
|
queryGlobalView,
|
|
|
|
queryGlobalViewRaw,
|
|
|
|
SEPARATOR,
|
|
|
|
UNICODE_MAX,
|
|
|
|
ViewName,
|
2023-07-25 18:48:57 +02:00
|
|
|
} from "../db"
|
2023-07-18 17:57:48 +02:00
|
|
|
import {
|
|
|
|
BulkDocsResponse,
|
2023-10-12 20:00:53 +02:00
|
|
|
SearchQuery,
|
|
|
|
SearchQueryOperators,
|
2023-07-18 17:57:48 +02:00
|
|
|
SearchUsersRequest,
|
|
|
|
User,
|
2023-10-24 17:16:44 +02:00
|
|
|
ContextUser,
|
2023-10-20 16:45:35 +02:00
|
|
|
DatabaseQueryOpts,
|
2023-10-26 16:04:33 +02:00
|
|
|
CouchFindOptions,
|
2023-07-18 17:57:48 +02:00
|
|
|
} from "@budibase/types"
|
2023-10-23 13:33:27 +02:00
|
|
|
import { getGlobalDB } from "../context"
|
2023-10-24 10:24:00 +02:00
|
|
|
import * as context from "../context"
|
|
|
|
import { isCreator } from "./utils"
|
2023-11-23 18:13:51 +01:00
|
|
|
import { UserDB } from "./db"
|
2022-09-21 13:43:09 +02:00
|
|
|
|
2023-02-23 12:28:18 +01:00
|
|
|
type GetOpts = { cleanup?: boolean }
|
|
|
|
|
2023-02-24 14:32:45 +01:00
|
|
|
function removeUserPassword(users: User | User[]) {
|
2023-02-23 12:28:18 +01:00
|
|
|
if (Array.isArray(users)) {
|
|
|
|
return users.map(user => {
|
2023-02-23 18:23:06 +01:00
|
|
|
if (user) {
|
|
|
|
delete user.password
|
|
|
|
return user
|
|
|
|
}
|
2023-02-23 12:28:18 +01:00
|
|
|
})
|
2023-02-23 18:23:06 +01:00
|
|
|
} else if (users) {
|
2023-02-23 12:28:18 +01:00
|
|
|
delete users.password
|
|
|
|
return users
|
|
|
|
}
|
2023-02-23 18:23:06 +01:00
|
|
|
return users
|
2023-02-23 12:28:18 +01:00
|
|
|
}
|
|
|
|
|
2023-11-21 18:30:11 +01:00
|
|
|
export function isSupportedUserSearch(query: SearchQuery) {
|
2023-10-12 20:00:53 +02:00
|
|
|
const allowed = [
|
|
|
|
{ op: SearchQueryOperators.STRING, key: "email" },
|
|
|
|
{ op: SearchQueryOperators.EQUAL, key: "_id" },
|
|
|
|
]
|
|
|
|
for (let [key, operation] of Object.entries(query)) {
|
|
|
|
if (typeof operation !== "object") {
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
const fields = Object.keys(operation || {})
|
2023-10-13 11:22:29 +02:00
|
|
|
// this filter doesn't contain options - ignore
|
|
|
|
if (fields.length === 0) {
|
|
|
|
continue
|
|
|
|
}
|
2023-10-12 20:00:53 +02:00
|
|
|
const allowedOperation = allowed.find(
|
|
|
|
allow =>
|
|
|
|
allow.op === key && fields.length === 1 && fields[0] === allow.key
|
|
|
|
)
|
2023-10-13 11:22:29 +02:00
|
|
|
if (!allowedOperation) {
|
2023-10-12 20:00:53 +02:00
|
|
|
return false
|
|
|
|
}
|
|
|
|
}
|
|
|
|
return true
|
|
|
|
}
|
|
|
|
|
2023-11-21 18:30:11 +01:00
|
|
|
export async function bulkGetGlobalUsersById(
|
2023-02-23 12:28:18 +01:00
|
|
|
userIds: string[],
|
|
|
|
opts?: GetOpts
|
2023-11-21 18:30:11 +01:00
|
|
|
) {
|
2022-11-09 17:53:42 +01:00
|
|
|
const db = getGlobalDB()
|
2023-02-23 12:28:18 +01:00
|
|
|
let users = (
|
2022-09-21 13:43:09 +02:00
|
|
|
await db.allDocs({
|
|
|
|
keys: userIds,
|
|
|
|
include_docs: true,
|
|
|
|
})
|
|
|
|
).rows.map(row => row.doc) as User[]
|
2023-02-23 12:28:18 +01:00
|
|
|
if (opts?.cleanup) {
|
2023-02-24 14:32:45 +01:00
|
|
|
users = removeUserPassword(users) as User[]
|
2023-02-23 12:28:18 +01:00
|
|
|
}
|
|
|
|
return users
|
2022-09-21 13:43:09 +02:00
|
|
|
}
|
2022-04-08 02:28:22 +02:00
|
|
|
|
2023-11-21 18:30:11 +01:00
|
|
|
export async function getAllUserIds() {
|
2023-02-22 22:10:35 +01:00
|
|
|
const db = getGlobalDB()
|
|
|
|
const startKey = `${DocumentType.USER}${SEPARATOR}`
|
|
|
|
const response = await db.allDocs({
|
|
|
|
startkey: startKey,
|
|
|
|
endkey: `${startKey}${UNICODE_MAX}`,
|
|
|
|
})
|
|
|
|
return response.rows.map(row => row.id)
|
|
|
|
}
|
|
|
|
|
2023-11-21 18:30:11 +01:00
|
|
|
export async function bulkUpdateGlobalUsers(users: User[]) {
|
2022-11-09 17:53:42 +01:00
|
|
|
const db = getGlobalDB()
|
2022-09-21 14:55:10 +02:00
|
|
|
return (await db.bulkDocs(users)) as BulkDocsResponse
|
|
|
|
}
|
|
|
|
|
2023-02-23 12:28:18 +01:00
|
|
|
export async function getById(id: string, opts?: GetOpts): Promise<User> {
|
2023-02-21 09:23:53 +01:00
|
|
|
const db = context.getGlobalDB()
|
2023-07-18 10:49:39 +02:00
|
|
|
let user = await db.get<User>(id)
|
2023-02-23 12:28:18 +01:00
|
|
|
if (opts?.cleanup) {
|
2023-07-18 10:49:39 +02:00
|
|
|
user = removeUserPassword(user) as User
|
2023-02-23 12:28:18 +01:00
|
|
|
}
|
|
|
|
return user
|
2023-02-21 09:23:53 +01:00
|
|
|
}
|
|
|
|
|
2022-04-08 02:28:22 +02:00
|
|
|
/**
|
|
|
|
* Given an email address this will use a view to search through
|
|
|
|
* all the users to find one with this email address.
|
|
|
|
*/
|
2023-11-21 18:30:11 +01:00
|
|
|
export async function getGlobalUserByEmail(
|
2023-02-23 12:28:18 +01:00
|
|
|
email: String,
|
|
|
|
opts?: GetOpts
|
2023-11-21 18:30:11 +01:00
|
|
|
): Promise<User | undefined> {
|
2022-04-08 02:28:22 +02:00
|
|
|
if (email == null) {
|
|
|
|
throw "Must supply an email address to view"
|
|
|
|
}
|
|
|
|
|
2022-08-19 15:08:03 +02:00
|
|
|
const response = await queryGlobalView<User>(ViewName.USER_BY_EMAIL, {
|
2022-04-08 02:28:22 +02:00
|
|
|
key: email.toLowerCase(),
|
|
|
|
include_docs: true,
|
|
|
|
})
|
2022-04-12 13:34:36 +02:00
|
|
|
|
2022-07-18 22:11:52 +02:00
|
|
|
if (Array.isArray(response)) {
|
|
|
|
// shouldn't be able to happen, but need to handle just in case
|
|
|
|
throw new Error(`Multiple users found with email address: ${email}`)
|
|
|
|
}
|
|
|
|
|
2023-02-23 12:28:18 +01:00
|
|
|
let user = response as User
|
|
|
|
if (opts?.cleanup) {
|
2023-02-24 14:32:45 +01:00
|
|
|
user = removeUserPassword(user) as User
|
2023-02-23 12:28:18 +01:00
|
|
|
}
|
|
|
|
|
|
|
|
return user
|
2022-04-08 02:28:22 +02:00
|
|
|
}
|
2022-06-30 16:39:26 +02:00
|
|
|
|
2023-11-21 18:30:11 +01:00
|
|
|
export async function doesUserExist(email: string) {
|
|
|
|
try {
|
|
|
|
const user = await getGlobalUserByEmail(email)
|
|
|
|
if (Array.isArray(user) || user != null) {
|
|
|
|
return true
|
|
|
|
}
|
|
|
|
} catch (err) {
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
return false
|
|
|
|
}
|
|
|
|
|
|
|
|
export async function searchGlobalUsersByApp(
|
2023-02-23 12:28:18 +01:00
|
|
|
appId: any,
|
2023-10-26 16:04:33 +02:00
|
|
|
opts: DatabaseQueryOpts,
|
2023-02-23 12:28:18 +01:00
|
|
|
getOpts?: GetOpts
|
2023-11-21 18:30:11 +01:00
|
|
|
) {
|
2022-07-06 17:09:05 +02:00
|
|
|
if (typeof appId !== "string") {
|
|
|
|
throw new Error("Must provide a string based app ID")
|
|
|
|
}
|
|
|
|
const params = getUsersByAppParams(appId, {
|
|
|
|
include_docs: true,
|
|
|
|
})
|
|
|
|
params.startkey = opts && opts.startkey ? opts.startkey : params.startkey
|
2023-11-07 19:14:52 +01:00
|
|
|
let response = await queryGlobalView<User>(ViewName.USER_BY_APP, params)
|
2023-02-28 10:37:03 +01:00
|
|
|
|
2022-07-06 17:09:05 +02:00
|
|
|
if (!response) {
|
|
|
|
response = []
|
|
|
|
}
|
2023-02-23 12:28:18 +01:00
|
|
|
let users: User[] = Array.isArray(response) ? response : [response]
|
|
|
|
if (getOpts?.cleanup) {
|
2023-02-24 14:32:45 +01:00
|
|
|
users = removeUserPassword(users) as User[]
|
2023-02-23 12:28:18 +01:00
|
|
|
}
|
|
|
|
return users
|
2022-07-06 17:09:05 +02:00
|
|
|
}
|
|
|
|
|
2023-02-28 10:37:03 +01:00
|
|
|
/*
|
|
|
|
Return any user who potentially has access to the application
|
|
|
|
Admins, developers and app users with the explicitly role.
|
|
|
|
*/
|
2023-11-21 18:30:11 +01:00
|
|
|
export async function searchGlobalUsersByAppAccess(
|
2023-10-26 16:04:33 +02:00
|
|
|
appId: any,
|
|
|
|
opts?: { limit?: number }
|
2023-11-21 18:30:11 +01:00
|
|
|
) {
|
2023-02-28 10:37:03 +01:00
|
|
|
const roleSelector = `roles.${appId}`
|
|
|
|
|
|
|
|
let orQuery: any[] = [
|
|
|
|
{
|
|
|
|
"builder.global": true,
|
|
|
|
},
|
|
|
|
{
|
|
|
|
"admin.global": true,
|
|
|
|
},
|
|
|
|
]
|
|
|
|
|
|
|
|
if (appId) {
|
|
|
|
const roleCheck = {
|
|
|
|
[roleSelector]: {
|
|
|
|
$exists: true,
|
|
|
|
},
|
|
|
|
}
|
|
|
|
orQuery.push(roleCheck)
|
|
|
|
}
|
|
|
|
|
2023-10-26 16:04:33 +02:00
|
|
|
let searchOptions: CouchFindOptions = {
|
2023-02-28 10:37:03 +01:00
|
|
|
selector: {
|
|
|
|
$or: orQuery,
|
|
|
|
_id: {
|
|
|
|
$regex: "^us_",
|
|
|
|
},
|
|
|
|
},
|
|
|
|
limit: opts?.limit || 50,
|
|
|
|
}
|
|
|
|
|
|
|
|
const resp = await directCouchFind(context.getGlobalDBName(), searchOptions)
|
2023-10-26 16:04:33 +02:00
|
|
|
return resp.rows
|
2022-07-06 17:09:05 +02:00
|
|
|
}
|
|
|
|
|
2023-11-21 18:30:11 +01:00
|
|
|
export function getGlobalUserByAppPage(appId: string, user: User) {
|
2022-07-06 17:09:05 +02:00
|
|
|
if (!user) {
|
|
|
|
return
|
|
|
|
}
|
2022-11-11 12:57:50 +01:00
|
|
|
return generateAppUserID(getProdAppID(appId)!, user._id!)
|
2022-04-08 02:28:22 +02:00
|
|
|
}
|
2022-06-30 16:39:26 +02:00
|
|
|
|
|
|
|
/**
|
|
|
|
* Performs a starts with search on the global email view.
|
|
|
|
*/
|
2023-11-21 18:30:11 +01:00
|
|
|
export async function searchGlobalUsersByEmail(
|
2023-07-18 17:57:48 +02:00
|
|
|
email: string | unknown,
|
2023-02-23 12:28:18 +01:00
|
|
|
opts: any,
|
|
|
|
getOpts?: GetOpts
|
2023-11-21 18:30:11 +01:00
|
|
|
) {
|
2022-06-30 16:39:26 +02:00
|
|
|
if (typeof email !== "string") {
|
|
|
|
throw new Error("Must provide a string to search by")
|
|
|
|
}
|
|
|
|
const lcEmail = email.toLowerCase()
|
|
|
|
// handle if passing up startkey for pagination
|
|
|
|
const startkey = opts && opts.startkey ? opts.startkey : lcEmail
|
2022-08-19 15:08:03 +02:00
|
|
|
let response = await queryGlobalView<User>(ViewName.USER_BY_EMAIL, {
|
2022-06-30 16:39:26 +02:00
|
|
|
...opts,
|
|
|
|
startkey,
|
|
|
|
endkey: `${lcEmail}${UNICODE_MAX}`,
|
|
|
|
})
|
|
|
|
if (!response) {
|
|
|
|
response = []
|
|
|
|
}
|
2023-02-23 12:28:18 +01:00
|
|
|
let users: User[] = Array.isArray(response) ? response : [response]
|
|
|
|
if (getOpts?.cleanup) {
|
2023-02-24 14:32:45 +01:00
|
|
|
users = removeUserPassword(users) as User[]
|
2023-02-23 12:28:18 +01:00
|
|
|
}
|
|
|
|
return users
|
2022-06-30 16:39:26 +02:00
|
|
|
}
|
2023-03-10 17:06:53 +01:00
|
|
|
|
|
|
|
const PAGE_LIMIT = 8
|
2023-11-21 18:30:11 +01:00
|
|
|
export async function paginatedUsers({
|
2023-10-12 20:00:53 +02:00
|
|
|
bookmark,
|
|
|
|
query,
|
2023-03-10 17:06:53 +01:00
|
|
|
appId,
|
2023-10-20 16:45:35 +02:00
|
|
|
limit,
|
2023-11-21 18:30:11 +01:00
|
|
|
}: SearchUsersRequest = {}) {
|
2023-03-10 17:06:53 +01:00
|
|
|
const db = getGlobalDB()
|
2023-10-31 14:01:19 +01:00
|
|
|
const pageSize = limit ?? PAGE_LIMIT
|
|
|
|
const pageLimit = pageSize + 1
|
2023-03-10 17:06:53 +01:00
|
|
|
// get one extra document, to have the next page
|
2023-10-20 16:45:35 +02:00
|
|
|
const opts: DatabaseQueryOpts = {
|
2023-03-10 17:06:53 +01:00
|
|
|
include_docs: true,
|
2023-10-20 16:45:35 +02:00
|
|
|
limit: pageLimit,
|
2023-03-10 17:06:53 +01:00
|
|
|
}
|
|
|
|
// add a startkey if the page was specified (anchor)
|
2023-10-12 20:00:53 +02:00
|
|
|
if (bookmark) {
|
|
|
|
opts.startkey = bookmark
|
2023-03-10 17:06:53 +01:00
|
|
|
}
|
|
|
|
// property specifies what to use for the page/anchor
|
|
|
|
let userList: User[],
|
|
|
|
property = "_id",
|
|
|
|
getKey
|
2023-10-12 20:00:53 +02:00
|
|
|
if (query?.equal?._id) {
|
|
|
|
userList = [await getById(query.equal._id)]
|
|
|
|
} else if (appId) {
|
2023-03-10 17:06:53 +01:00
|
|
|
userList = await searchGlobalUsersByApp(appId, opts)
|
|
|
|
getKey = (doc: any) => getGlobalUserByAppPage(appId, doc)
|
2023-10-12 20:00:53 +02:00
|
|
|
} else if (query?.string?.email) {
|
|
|
|
userList = await searchGlobalUsersByEmail(query?.string?.email, opts)
|
2023-03-10 17:06:53 +01:00
|
|
|
property = "email"
|
|
|
|
} else {
|
|
|
|
// no search, query allDocs
|
|
|
|
const response = await db.allDocs(getGlobalUserParams(null, opts))
|
|
|
|
userList = response.rows.map((row: any) => row.doc)
|
|
|
|
}
|
2023-10-31 14:01:19 +01:00
|
|
|
return pagination(userList, pageSize, {
|
2023-03-10 17:06:53 +01:00
|
|
|
paginate: true,
|
|
|
|
property,
|
|
|
|
getKey,
|
|
|
|
})
|
|
|
|
}
|
2023-04-24 10:31:48 +02:00
|
|
|
|
|
|
|
export async function getUserCount() {
|
|
|
|
const response = await queryGlobalViewRaw(ViewName.USER_BY_EMAIL, {
|
|
|
|
limit: 0, // to be as fast as possible - we just want the total rows count
|
|
|
|
include_docs: false,
|
|
|
|
})
|
|
|
|
return response.total_rows
|
|
|
|
}
|
2023-07-18 17:57:48 +02:00
|
|
|
|
2023-10-24 10:24:00 +02:00
|
|
|
export async function getCreatorCount() {
|
|
|
|
let creators = 0
|
|
|
|
async function iterate(startPage?: string) {
|
|
|
|
const page = await paginatedUsers({ bookmark: startPage })
|
|
|
|
creators += page.data.filter(isCreator).length
|
|
|
|
if (page.hasNextPage) {
|
|
|
|
await iterate(page.nextPage)
|
|
|
|
}
|
|
|
|
}
|
|
|
|
await iterate()
|
|
|
|
return creators
|
|
|
|
}
|
|
|
|
|
2023-07-18 17:57:48 +02:00
|
|
|
// used to remove the builder/admin permissions, for processing the
|
|
|
|
// user as an app user (they may have some specific role/group
|
|
|
|
export function removePortalUserPermissions(user: User | ContextUser) {
|
|
|
|
delete user.admin
|
|
|
|
delete user.builder
|
|
|
|
return user
|
|
|
|
}
|
|
|
|
|
|
|
|
export function cleanseUserObject(user: User | ContextUser, base?: User) {
|
|
|
|
delete user.admin
|
|
|
|
delete user.builder
|
|
|
|
delete user.roles
|
|
|
|
if (base) {
|
|
|
|
user.admin = base.admin
|
|
|
|
user.builder = base.builder
|
|
|
|
user.roles = base.roles
|
|
|
|
}
|
|
|
|
return user
|
|
|
|
}
|
2023-11-23 18:13:51 +01:00
|
|
|
|
|
|
|
export async function addAppBuilder(user: User, appId: string) {
|
|
|
|
const prodAppId = getProdAppID(appId)
|
|
|
|
user.builder ??= {}
|
2023-11-24 16:54:46 +01:00
|
|
|
user.builder.creator = true
|
2023-11-23 18:13:51 +01:00
|
|
|
user.builder.apps ??= []
|
|
|
|
user.builder.apps.push(prodAppId)
|
|
|
|
await UserDB.save(user, { hashPassword: false })
|
|
|
|
}
|
|
|
|
|
|
|
|
export async function removeAppBuilder(user: User, appId: string) {
|
|
|
|
const prodAppId = getProdAppID(appId)
|
|
|
|
if (user.builder && user.builder.apps?.includes(prodAppId)) {
|
|
|
|
user.builder.apps = user.builder.apps.filter(id => id !== prodAppId)
|
|
|
|
}
|
|
|
|
await UserDB.save(user, { hashPassword: false })
|
|
|
|
}
|