budibase/packages/server/src/utilities/global.js

const {
  getMultiIDParams,
  getGlobalIDFromUserMetadataID,
} = require("../db/utils")
const { BUILTIN_ROLE_IDS } = require("@budibase/backend-core/roles")
const { getDeployedAppID } = require("@budibase/backend-core/db")
const { getGlobalUserParams } = require("@budibase/backend-core/db")
const { user: userCache } = require("@budibase/backend-core/cache")
const {
  getGlobalDB,
  isUserInAppTenant,
} = require("@budibase/backend-core/tenancy")
const env = require("../environment")

exports.updateAppRole = (appId, user) => {
  if (!user || !user.roles) {
    return user
  }
  // if in an multi-tenancy environment make sure roles are never updated
  if (env.MULTI_TENANCY && !isUserInAppTenant(appId, user)) {
    delete user.builder
    delete user.admin
    user.roleId = BUILTIN_ROLE_IDS.PUBLIC
    return user
  }
  // always use the deployed app
  user.roleId = user.roles[getDeployedAppID(appId)]
  // if a role wasn't found then either set as admin (builder) or public (everyone else)
  if (!user.roleId && user.builder && user.builder.global) {
    user.roleId = BUILTIN_ROLE_IDS.ADMIN
  } else if (!user.roleId) {
    user.roleId = BUILTIN_ROLE_IDS.PUBLIC
  }
  delete user.roles
  return user
}

function processUser(appId, user) {
  if (user) {
    delete user.password
  }
  return exports.updateAppRole(appId, user)
}

exports.getCachedSelf = async (ctx, appId) => {
  // this has to be tenant aware, can't depend on the context to find it out
  // running some middlewares before the tenancy causes context to break
  const user = await userCache.getUser(ctx.user._id)
  return processUser(appId, user)
}

exports.getRawGlobalUser = async userId => {
  const db = getGlobalDB()
  return db.get(getGlobalIDFromUserMetadataID(userId))
}

exports.getGlobalUser = async (appId, userId) => {
  let user = await exports.getRawGlobalUser(userId)
  return processUser(appId, user)
}

exports.getGlobalUsers = async (appId = null, users = null) => {
  const db = getGlobalDB()
  let globalUsers
  if (users) {
    const globalIds = users.map(user => getGlobalIDFromUserMetadataID(user._id))
    globalUsers = (await db.allDocs(getMultiIDParams(globalIds))).rows.map(
      row => row.doc
    )
  } else {
    globalUsers = (
      await db.allDocs(
        getGlobalUserParams(null, {
          include_docs: true,
        })
      )
    ).rows.map(row => row.doc)
  }
  globalUsers = globalUsers
    .filter(user => user != null)
    .map(user => {
      delete user.password
      delete user.forceResetPassword
      return user
    })
  if (!appId) {
    return globalUsers
  }
  return globalUsers.map(user => exports.updateAppRole(appId, user))
}

exports.getGlobalUsersFromMetadata = async (appId, users) => {
  const globalUsers = await exports.getGlobalUsers(appId, users)
  return users.map(user => {
    const globalUser = globalUsers.find(
      globalUser => globalUser && user._id.includes(globalUser._id)
    )
    return {
      ...globalUser,
      // doing user second overwrites the id and rev (always metadata)
      ...user,
    }
  })
}
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00			`const {`
			`getMultiIDParams,`
			`getGlobalIDFromUserMetadataID,`
			`} = require("../db/utils")`
Switching out @budibase/auth to @budibase/backend-core. 2022-01-10 20:33:00 +01:00			`const { BUILTIN_ROLE_IDS } = require("@budibase/backend-core/roles")`
			`const { getDeployedAppID } = require("@budibase/backend-core/db")`
			`const { getGlobalUserParams } = require("@budibase/backend-core/db")`
			`const { user: userCache } = require("@budibase/backend-core/cache")`
			`const {`
			`getGlobalDB,`
			`isUserInAppTenant,`
			`} = require("@budibase/backend-core/tenancy")`
Fixing issue with user's being logged in and trying to access other tenants public apps, this work makes sure that users from other tenants will not be 403'd immediately (too aggressive) but instead they will have all other their RBAC roles revoked. 2021-10-07 16:49:26 +02:00			`const env = require("../environment")`
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00
			`exports.updateAppRole = (appId, user) => {`
Fixing issue with user's being logged in and trying to access other tenants public apps, this work makes sure that users from other tenants will not be 403'd immediately (too aggressive) but instead they will have all other their RBAC roles revoked. 2021-10-07 16:49:26 +02:00			`if (!user \|\| !user.roles) {`
			`return user`
			`}`
			`// if in an multi-tenancy environment make sure roles are never updated`
			`if (env.MULTI_TENANCY && !isUserInAppTenant(appId, user)) {`
			`delete user.builder`
			`delete user.admin`
			`user.roleId = BUILTIN_ROLE_IDS.PUBLIC`
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00			`return user`
			`}`
Fix for #1710 - don't allow setting setting info from within apps and making the user portal a bit more clear about builders being global admins. 2021-06-14 16:23:24 +02:00			`// always use the deployed app`
			`user.roleId = user.roles[getDeployedAppID(appId)]`
			`// if a role wasn't found then either set as admin (builder) or public (everyone else)`
			`if (!user.roleId && user.builder && user.builder.global) {`
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00			`user.roleId = BUILTIN_ROLE_IDS.ADMIN`
Fix for #1710 - don't allow setting setting info from within apps and making the user portal a bit more clear about builders being global admins. 2021-06-14 16:23:24 +02:00			`} else if (!user.roleId) {`
No access role / public by default 2021-10-12 11:05:57 +02:00			`user.roleId = BUILTIN_ROLE_IDS.PUBLIC`
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00			`}`
			`delete user.roles`
			`return user`
			`}`

WIP - first version of user sessions. 2021-07-06 19:10:04 +02:00			`function processUser(appId, user) {`
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00			`if (user) {`
			`delete user.password`
			`}`
			`return exports.updateAppRole(appId, user)`
			`}`

WIP - first version of user sessions. 2021-07-06 19:10:04 +02:00			`exports.getCachedSelf = async (ctx, appId) => {`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 10:59:08 +02:00			`// this has to be tenant aware, can't depend on the context to find it out`
			`// running some middlewares before the tenancy causes context to break`
Implementing some changes to how context gets set for tenancy, after testing, as well as updating server. 2021-08-03 16:32:25 +02:00			`const user = await userCache.getUser(ctx.user._id)`
WIP - first version of user sessions. 2021-07-06 19:10:04 +02:00			`return processUser(appId, user)`
			`}`

Adding sync user endpoint to server which can be used by the worker. 2021-11-04 00:15:38 +01:00			`exports.getRawGlobalUser = async userId => {`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 10:59:08 +02:00			`const db = getGlobalDB()`
Adding sync user endpoint to server which can be used by the worker. 2021-11-04 00:15:38 +01:00			`return db.get(getGlobalIDFromUserMetadataID(userId))`
			`}`

			`exports.getGlobalUser = async (appId, userId) => {`
			`let user = await exports.getRawGlobalUser(userId)`
WIP - first version of user sessions. 2021-07-06 19:10:04 +02:00			`return processUser(appId, user)`
			`}`

Fixing issues with search endpoint not handling users fully. 2021-09-02 18:13:00 +02:00			`exports.getGlobalUsers = async (appId = null, users = null) => {`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 10:59:08 +02:00			`const db = getGlobalDB()`
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00			`let globalUsers`
			`if (users) {`
			`const globalIds = users.map(user => getGlobalIDFromUserMetadataID(user._id))`
			`globalUsers = (await db.allDocs(getMultiIDParams(globalIds))).rows.map(`
			`row => row.doc`
			`)`
			`} else {`
Formatting. 2021-06-08 17:11:46 +02:00			`globalUsers = (`
			`await db.allDocs(`
			`getGlobalUserParams(null, {`
			`include_docs: true,`
			`})`
			`)`
			`).rows.map(row => row.doc)`
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00			`}`
Formatting. 2021-06-08 17:11:46 +02:00			`globalUsers = globalUsers`
			`.filter(user => user != null)`
			`.map(user => {`
			`delete user.password`
Adding the sync call from the worker for creation, updating and deletion of users. Making sure that production and development apps are always up to date with user metadata. 2021-11-04 15:53:03 +01:00			`delete user.forceResetPassword`
Formatting. 2021-06-08 17:11:46 +02:00			`return user`
			`})`
Re-writing how global users are handled in server, specifically how they are retrieved, so that for relationships it can handle the global user. 2021-06-08 17:06:30 +02:00			`if (!appId) {`
			`return globalUsers`
			`}`
			`return globalUsers.map(user => exports.updateAppRole(appId, user))`
Formatting. 2021-06-08 17:11:46 +02:00			`}`
Fixing issues with search endpoint not handling users fully. 2021-09-02 18:13:00 +02:00
			`exports.getGlobalUsersFromMetadata = async (appId, users) => {`
			`const globalUsers = await exports.getGlobalUsers(appId, users)`
			`return users.map(user => {`
			`const globalUser = globalUsers.find(`
			`globalUser => globalUser && user._id.includes(globalUser._id)`
			`)`
			`return {`
			`...globalUser,`
			`// doing user second overwrites the id and rev (always metadata)`
			`...user,`
			`}`
			`})`
			`}`