budibase/packages/auth/src/index.js

const passport = require("koa-passport")
const LocalStrategy = require("passport-local").Strategy
const JwtStrategy = require("passport-jwt").Strategy
const { StaticDatabases } = require("./db/utils")
const { getGlobalDB } = require("./tenancy")
const {
  jwt,
  local,
  authenticated,
  google,
  oidc,
  auditLog,
  tenancy,
  appTenancy,
  authError,
} = require("./middleware")
const { setDB } = require("./db")
const userCache = require("./cache/user")

// Strategies
passport.use(new LocalStrategy(local.options, local.authenticate))
passport.use(new JwtStrategy(jwt.options, jwt.authenticate))

passport.serializeUser((user, done) => done(null, user))

passport.deserializeUser(async (user, done) => {
  const db = getGlobalDB()

  try {
    const user = await db.get(user._id)
    return done(null, user)
  } catch (err) {
    console.error("User not found", err)
    return done(null, false, { message: "User not found" })
  }
})

module.exports = {
  init(pouch) {
    setDB(pouch)
  },
  db: require("./db/utils"),
  redis: {
    Client: require("./redis"),
    utils: require("./redis/utils"),
  },
  objectStore: {
    ...require("./objectStore"),
    ...require("./objectStore/utils"),
  },
  utils: {
    ...require("./utils"),
    ...require("./hashing"),
  },
  auth: {
    buildAuthMiddleware: authenticated,
    passport,
    google,
    oidc,
    jwt: require("jsonwebtoken"),
    buildTenancyMiddleware: tenancy,
    buildAppTenancyMiddleware: appTenancy,
    auditLog,
    authError,
  },
  cache: {
    user: userCache,
  },
  StaticDatabases,
  constants: require("./constants"),
}
groundwork for budibase auth lib 2021-04-07 12:33:16 +02:00			`const passport = require("koa-passport")`
			`const LocalStrategy = require("passport-local").Strategy`
			`const JwtStrategy = require("passport-jwt").Strategy`
re-write, to use the ideas that Rory put in place, still WIP, un-tested but all implemented. 2021-08-02 19:34:43 +02:00			`const { StaticDatabases } = require("./db/utils")`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 0d2e2314d49622c2247605ec7cee675a3c672b29, reversing changes made to 1beca4ee96e6bf2ebe5cd78859c4549614ce7cae. 2021-08-05 10:59:08 +02:00			`const { getGlobalDB } = require("./tenancy")`
Use configuration url to retrieve oidc endpoints The /.well-known/openid-configuration endpoint can be used to retrieve the majority of configuration needed for oidc Additionally refactor the callback url to be generated on the server side as this is a fixed endpoint. Add linting fixes 2021-07-05 18:16:45 +02:00			`const {`
			`jwt,`
			`local,`
			`authenticated,`
			`google,`
			`oidc,`
			`auditLog,`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 0d2e2314d49622c2247605ec7cee675a3c672b29, reversing changes made to 1beca4ee96e6bf2ebe5cd78859c4549614ce7cae. 2021-08-05 10:59:08 +02:00			`tenancy,`
Fixing issue with multi-tenancy and public apps, when the tenant isn't necessarily known, it can be found in the app ID, building a middleware to manage this. 2021-09-09 14:27:18 +02:00			`appTenancy,`
Self hosted SSO flow and account deletion 2021-09-21 13:27:53 +02:00			`authError,`
Use configuration url to retrieve oidc endpoints The /.well-known/openid-configuration endpoint can be used to retrieve the majority of configuration needed for oidc Additionally refactor the callback url to be generated on the server side as this is a fixed endpoint. Add linting fixes 2021-07-05 18:16:45 +02:00			`} = require("./middleware")`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 0d2e2314d49622c2247605ec7cee675a3c672b29, reversing changes made to 1beca4ee96e6bf2ebe5cd78859c4549614ce7cae. 2021-08-05 10:59:08 +02:00			`const { setDB } = require("./db")`
WIP - first version of user sessions. 2021-07-06 19:10:04 +02:00			`const userCache = require("./cache/user")`
groundwork for budibase auth lib 2021-04-07 12:33:16 +02:00
			`// Strategies`
			`passport.use(new LocalStrategy(local.options, local.authenticate))`
			`passport.use(new JwtStrategy(jwt.options, jwt.authenticate))`

			`passport.serializeUser((user, done) => done(null, user))`

			`passport.deserializeUser(async (user, done) => {`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 0d2e2314d49622c2247605ec7cee675a3c672b29, reversing changes made to 1beca4ee96e6bf2ebe5cd78859c4549614ce7cae. 2021-08-05 10:59:08 +02:00			`const db = getGlobalDB()`
groundwork for budibase auth lib 2021-04-07 12:33:16 +02:00
			`try {`
			`const user = await db.get(user._id)`
			`return done(null, user)`
			`} catch (err) {`
			`console.error("User not found", err)`
			`return done(null, false, { message: "User not found" })`
			`}`
			`})`

encapsulate more auth functionality into shared module and use in worker 2021-04-08 12:20:37 +02:00			`module.exports = {`
Updating auth lib so that it takes in a pouch instance rather than creating its own. 2021-04-15 17:45:21 +02:00			`init(pouch) {`
Swapping over everything to use the new user ID and updating everything after some end to end testing. 2021-04-20 18:17:44 +02:00			`setDB(pouch)`
Updating auth lib so that it takes in a pouch instance rather than creating its own. 2021-04-15 17:45:21 +02:00			`},`
Some re-work of the auth package, making it a bit easier to use/less likely to make a mistake. 2021-04-21 17:42:44 +02:00			`db: require("./db/utils"),`
Fixing issues with Redis/Bull and the integration with new redis module. 2021-05-04 19:13:44 +02:00			`redis: {`
Fleshed out fully all redis interactions for invitations and password resets. 2021-05-05 13:11:06 +02:00			`Client: require("./redis"),`
Fixing issues with Redis/Bull and the integration with new redis module. 2021-05-04 19:13:44 +02:00			`utils: require("./redis/utils"),`
			`},`
Some general backend cleanup. moving packages around, removing some traces of electron, and prepping for standardised object store library. 2021-05-06 20:27:24 +02:00			`objectStore: {`
			`...require("./objectStore"),`
			`...require("./objectStore/utils"),`
			`},`
Some re-work of the auth package, making it a bit easier to use/less likely to make a mistake. 2021-04-21 17:42:44 +02:00			`utils: {`
			`...require("./utils"),`
Formatting and linting. 2021-04-21 17:46:51 +02:00			`...require("./hashing"),`
Some re-work of the auth package, making it a bit easier to use/less likely to make a mistake. 2021-04-21 17:42:44 +02:00			`},`
			`auth: {`
			`buildAuthMiddleware: authenticated,`
			`passport,`
fix imports 2021-04-22 16:27:09 +02:00			`google,`
Proof of concept OIDC implementation 2021-06-27 16:46:04 +02:00			`oidc,`
Updating test cases and some re-work of the email system. 2021-04-23 19:07:39 +02:00			`jwt: require("jsonwebtoken"),`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 0d2e2314d49622c2247605ec7cee675a3c672b29, reversing changes made to 1beca4ee96e6bf2ebe5cd78859c4549614ce7cae. 2021-08-05 10:59:08 +02:00			`buildTenancyMiddleware: tenancy,`
Fixing issue with multi-tenancy and public apps, when the tenant isn't necessarily known, it can be found in the app ID, building a middleware to manage this. 2021-09-09 14:27:18 +02:00			`buildAppTenancyMiddleware: appTenancy,`
adding watchtower to docker config 2021-05-28 11:09:32 +02:00			`auditLog,`
Self hosted SSO flow and account deletion 2021-09-21 13:27:53 +02:00			`authError,`
Updating auth lib so that it takes in a pouch instance rather than creating its own. 2021-04-15 17:45:21 +02:00			`},`
WIP - first version of user sessions. 2021-07-06 19:10:04 +02:00			`cache: {`
			`user: userCache,`
			`},`
encapsulate db ID generation functions 2021-04-08 12:26:08 +02:00			`StaticDatabases,`
fix imports 2021-04-22 16:27:09 +02:00			`constants: require("./constants"),`
encapsulate more auth functionality into shared module and use in worker 2021-04-08 12:20:37 +02:00			`}`