budibase/packages/auth/src/index.js

const passport = require("koa-passport")
const LocalStrategy = require("passport-local").Strategy
const JwtStrategy = require("passport-jwt").Strategy
const { StaticDatabases } = require("./db/utils")
const {
  jwt,
  local,
  authenticated,
  google,
  oidc,
  auditLog,
} = require("./middleware")
const { setDB, getDB } = require("./db")
const userCache = require("./cache/user")

// Strategies
passport.use(new LocalStrategy(local.options, local.authenticate))
passport.use(new JwtStrategy(jwt.options, jwt.authenticate))

passport.serializeUser((user, done) => done(null, user))

passport.deserializeUser(async (user, done) => {
  const db = getDB(StaticDatabases.GLOBAL.name)

  try {
    const user = await db.get(user._id)
    return done(null, user)
  } catch (err) {
    console.error("User not found", err)
    return done(null, false, { message: "User not found" })
  }
})

module.exports = {
  init(pouch) {
    setDB(pouch)
  },
  db: require("./db/utils"),
  redis: {
    Client: require("./redis"),
    utils: require("./redis/utils"),
  },
  objectStore: {
    ...require("./objectStore"),
    ...require("./objectStore/utils"),
  },
  utils: {
    ...require("./utils"),
    ...require("./hashing"),
  },
  auth: {
    buildAuthMiddleware: authenticated,
    passport,
    google,
    oidc,
    jwt: require("jsonwebtoken"),
    auditLog,
  },
  cache: {
    user: userCache,
  },
  StaticDatabases,
  constants: require("./constants"),
}
groundwork for budibase auth lib 2021-04-07 22:33:16 +12:00			`const passport = require("koa-passport")`
			`const LocalStrategy = require("passport-local").Strategy`
			`const JwtStrategy = require("passport-jwt").Strategy`
re-write, to use the ideas that Rory put in place, still WIP, un-tested but all implemented. 2021-08-03 05:34:43 +12:00			`const { StaticDatabases } = require("./db/utils")`
Use configuration url to retrieve oidc endpoints The /.well-known/openid-configuration endpoint can be used to retrieve the majority of configuration needed for oidc Additionally refactor the callback url to be generated on the server side as this is a fixed endpoint. Add linting fixes 2021-07-06 04:16:45 +12:00			`const {`
			`jwt,`
			`local,`
			`authenticated,`
			`google,`
			`oidc,`
			`auditLog,`
			`} = require("./middleware")`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			`const { setDB, getDB } = require("./db")`
WIP - first version of user sessions. 2021-07-07 05:10:04 +12:00			`const userCache = require("./cache/user")`
groundwork for budibase auth lib 2021-04-07 22:33:16 +12:00
			`// Strategies`
			`passport.use(new LocalStrategy(local.options, local.authenticate))`
			`passport.use(new JwtStrategy(jwt.options, jwt.authenticate))`

			`passport.serializeUser((user, done) => done(null, user))`

			`passport.deserializeUser(async (user, done) => {`
Revert "Multi-tenancy/organisations" 2021-08-04 21:02:24 +12:00			`const db = getDB(StaticDatabases.GLOBAL.name)`
groundwork for budibase auth lib 2021-04-07 22:33:16 +12:00
			`try {`
			`const user = await db.get(user._id)`
			`return done(null, user)`
			`} catch (err) {`
			`console.error("User not found", err)`
			`return done(null, false, { message: "User not found" })`
			`}`
			`})`

encapsulate more auth functionality into shared module and use in worker 2021-04-08 22:20:37 +12:00			`module.exports = {`
Updating auth lib so that it takes in a pouch instance rather than creating its own. 2021-04-16 03:45:21 +12:00			`init(pouch) {`
Swapping over everything to use the new user ID and updating everything after some end to end testing. 2021-04-21 04:17:44 +12:00			`setDB(pouch)`
Updating auth lib so that it takes in a pouch instance rather than creating its own. 2021-04-16 03:45:21 +12:00			`},`
Some re-work of the auth package, making it a bit easier to use/less likely to make a mistake. 2021-04-22 03:42:44 +12:00			`db: require("./db/utils"),`
Fixing issues with Redis/Bull and the integration with new redis module. 2021-05-05 05:13:44 +12:00			`redis: {`
Fleshed out fully all redis interactions for invitations and password resets. 2021-05-05 23:11:06 +12:00			`Client: require("./redis"),`
Fixing issues with Redis/Bull and the integration with new redis module. 2021-05-05 05:13:44 +12:00			`utils: require("./redis/utils"),`
			`},`
Some general backend cleanup. moving packages around, removing some traces of electron, and prepping for standardised object store library. 2021-05-07 06:27:24 +12:00			`objectStore: {`
			`...require("./objectStore"),`
			`...require("./objectStore/utils"),`
			`},`
Some re-work of the auth package, making it a bit easier to use/less likely to make a mistake. 2021-04-22 03:42:44 +12:00			`utils: {`
			`...require("./utils"),`
Formatting and linting. 2021-04-22 03:46:51 +12:00			`...require("./hashing"),`
Some re-work of the auth package, making it a bit easier to use/less likely to make a mistake. 2021-04-22 03:42:44 +12:00			`},`
			`auth: {`
			`buildAuthMiddleware: authenticated,`
			`passport,`
fix imports 2021-04-23 02:27:09 +12:00			`google,`
Proof of concept OIDC implementation 2021-06-28 02:46:04 +12:00			`oidc,`
Updating test cases and some re-work of the email system. 2021-04-24 05:07:39 +12:00			`jwt: require("jsonwebtoken"),`
adding watchtower to docker config 2021-05-28 21:09:32 +12:00			`auditLog,`
Updating auth lib so that it takes in a pouch instance rather than creating its own. 2021-04-16 03:45:21 +12:00			`},`
WIP - first version of user sessions. 2021-07-07 05:10:04 +12:00			`cache: {`
			`user: userCache,`
			`},`
encapsulate db ID generation functions 2021-04-08 22:26:08 +12:00			`StaticDatabases,`
fix imports 2021-04-23 02:27:09 +12:00			`constants: require("./constants"),`
encapsulate more auth functionality into shared module and use in worker 2021-04-08 22:20:37 +12:00			`}`