budibase/packages/server/src/utilities/global.ts

import { getMultiIDParams, getGlobalIDFromUserMetadataID } from "../db/utils"
import {
  roles,
  db as dbCore,
  cache,
  tenancy,
  context,
  users,
} from "@budibase/backend-core"
import env from "../environment"
import { groups } from "@budibase/pro"
import { UserCtx, ContextUser, User, UserGroup } from "@budibase/types"
import cloneDeep from "lodash/cloneDeep"

export function updateAppRole(
  user: ContextUser,
  { appId }: { appId?: string } = {}
) {
  appId = appId || context.getAppId()

  if (!user || (!user.roles && !user.userGroups)) {
    return user
  }
  // if in an multi-tenancy environment make sure roles are never updated
  if (env.MULTI_TENANCY && appId && !tenancy.isUserInAppTenant(appId, user)) {
    user = users.removePortalUserPermissions(user)
    user.roleId = roles.BUILTIN_ROLE_IDS.PUBLIC
    return user
  }
  // always use the deployed app
  if (appId && user.roles) {
    user.roleId = user.roles[dbCore.getProdAppID(appId)]
  }
  // if a role wasn't found then either set as admin (builder) or public (everyone else)
  if (!user.roleId && users.isBuilder(user, appId)) {
    user.roleId = roles.BUILTIN_ROLE_IDS.ADMIN
  } else if (!user.roleId && !user?.userGroups?.length) {
    user.roleId = roles.BUILTIN_ROLE_IDS.PUBLIC
  }

  delete user.roles
  return user
}

async function checkGroupRoles(
  user: ContextUser,
  opts: { appId?: string; groups?: UserGroup[] } = {}
) {
  if (user.roleId && user.roleId !== roles.BUILTIN_ROLE_IDS.PUBLIC) {
    return user
  }
  if (opts.appId) {
    user.roleId = await groups.getGroupRoleId(user as User, opts.appId, {
      groups: opts.groups,
    })
  }
  // final fallback, simply couldn't find a role - user must be public
  if (!user.roleId) {
    user.roleId = roles.BUILTIN_ROLE_IDS.PUBLIC
  }
  return user
}

export async function processUser(
  user: ContextUser,
  opts: { appId?: string; groups?: UserGroup[] } = {}
) {
  let clonedUser = cloneDeep(user)
  if (clonedUser) {
    delete clonedUser.password
  }
  const appId = opts.appId || context.getAppId()
  clonedUser = updateAppRole(clonedUser, { appId })
  if (!clonedUser.roleId && clonedUser?.userGroups?.length) {
    clonedUser = await checkGroupRoles(clonedUser, {
      appId,
      groups: opts?.groups,
    })
  }

  return clonedUser
}

export async function getCachedSelf(ctx: UserCtx, appId: string) {
  // this has to be tenant aware, can't depend on the context to find it out
  // running some middlewares before the tenancy causes context to break
  const user = await cache.user.getUser(ctx.user?._id!)
  return processUser(user, { appId })
}

export async function getRawGlobalUser(userId: string) {
  const db = tenancy.getGlobalDB()
  return db.get<User>(getGlobalIDFromUserMetadataID(userId))
}

export async function getGlobalUser(userId: string) {
  const appId = context.getAppId()
  let user = await getRawGlobalUser(userId)
  return processUser(user, { appId })
}

export async function getGlobalUsers(
  userIds?: string[],
  opts?: { noProcessing?: boolean }
) {
  const appId = context.getAppId()
  const db = tenancy.getGlobalDB()
  let globalUsers
  if (userIds) {
    globalUsers = (await db.allDocs(getMultiIDParams(userIds))).rows.map(
      row => row.doc
    )
  } else {
    globalUsers = (
      await db.allDocs(
        dbCore.getGlobalUserParams(null, {
          include_docs: true,
        })
      )
    ).rows.map(row => row.doc)
  }
  globalUsers = globalUsers
    .filter(user => user != null)
    .map(user => {
      delete user.password
      delete user.forceResetPassword
      return user
    })

  if (opts?.noProcessing || !appId) {
    return globalUsers
  } else {
    // pass in the groups, meaning we don't actually need to retrieve them for
    // each user individually
    const allGroups = await groups.fetch()
    return Promise.all(
      globalUsers.map(user => processUser(user, { groups: allGroups }))
    )
  }
}

export async function getGlobalUsersFromMetadata(users: ContextUser[]) {
  const globalUsers = await getGlobalUsers(users.map(user => user._id!))
  return users.map(user => {
    const globalUser = globalUsers.find(
      globalUser => globalUser && user._id?.includes(globalUser._id)
    )
    return {
      ...globalUser,
      // doing user second overwrites the id and rev (always metadata)
      ...user,
    }
  })
}
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`import { getMultiIDParams, getGlobalIDFromUserMetadataID } from "../db/utils"`
			`import {`
			`roles,`
			`db as dbCore,`
			`cache,`
			`tenancy,`
			`context,`
Main body of work to handle the new approach of per app builders support. 2023-07-19 03:57:48 +12:00			`users,`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`} from "@budibase/backend-core"`
			`import env from "../environment"`
			`import { groups } from "@budibase/pro"`
Fix for app sync, base it on group roles, not just user roles - stops app sync from pulling in group users which do not actually have access to the app. 2023-03-22 02:55:28 +13:00			`import { UserCtx, ContextUser, User, UserGroup } from "@budibase/types"`
Import lodash modules 2023-07-28 07:36:32 +12:00			`import cloneDeep from "lodash/cloneDeep"`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00
			`export function updateAppRole(`
			`user: ContextUser,`
			`{ appId }: { appId?: string } = {}`
			`) {`
			`appId = appId \|\| context.getAppId()`

Adding group and user tests for user sync. 2023-04-13 06:59:05 +12:00			`if (!user \|\| (!user.roles && !user.userGroups)) {`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`return user`
			`}`
			`// if in an multi-tenancy environment make sure roles are never updated`
			`if (env.MULTI_TENANCY && appId && !tenancy.isUserInAppTenant(appId, user)) {`
Main body of work to handle the new approach of per app builders support. 2023-07-19 03:57:48 +12:00			`user = users.removePortalUserPermissions(user)`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`user.roleId = roles.BUILTIN_ROLE_IDS.PUBLIC`
			`return user`
			`}`
			`// always use the deployed app`
Adding group and user tests for user sync. 2023-04-13 06:59:05 +12:00			`if (appId && user.roles) {`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`user.roleId = user.roles[dbCore.getProdAppID(appId)]`
			`}`
			`// if a role wasn't found then either set as admin (builder) or public (everyone else)`
Main body of work to handle the new approach of per app builders support. 2023-07-19 03:57:48 +12:00			`if (!user.roleId && users.isBuilder(user, appId)) {`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`user.roleId = roles.BUILTIN_ROLE_IDS.ADMIN`
			`} else if (!user.roleId && !user?.userGroups?.length) {`
			`user.roleId = roles.BUILTIN_ROLE_IDS.PUBLIC`
			`}`

			`delete user.roles`
			`return user`
			`}`

			`async function checkGroupRoles(`
			`user: ContextUser,`
Fix for app sync, base it on group roles, not just user roles - stops app sync from pulling in group users which do not actually have access to the app. 2023-03-22 02:55:28 +13:00			`opts: { appId?: string; groups?: UserGroup[] } = {}`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`) {`
			`if (user.roleId && user.roleId !== roles.BUILTIN_ROLE_IDS.PUBLIC) {`
			`return user`
			`}`
Fix for app sync, base it on group roles, not just user roles - stops app sync from pulling in group users which do not actually have access to the app. 2023-03-22 02:55:28 +13:00			`if (opts.appId) {`
			`user.roleId = await groups.getGroupRoleId(user as User, opts.appId, {`
			`groups: opts.groups,`
			`})`
			`}`
			`// final fallback, simply couldn't find a role - user must be public`
			`if (!user.roleId) {`
			`user.roleId = roles.BUILTIN_ROLE_IDS.PUBLIC`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`}`
			`return user`
			`}`

Adding group and user tests for user sync. 2023-04-13 06:59:05 +12:00			`export async function processUser(`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`user: ContextUser,`
Fix for app sync, base it on group roles, not just user roles - stops app sync from pulling in group users which do not actually have access to the app. 2023-03-22 02:55:28 +13:00			`opts: { appId?: string; groups?: UserGroup[] } = {}`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`) {`
Clone user (#10974) 2023-06-21 04:07:34 +12:00			`let clonedUser = cloneDeep(user)`
			`if (clonedUser) {`
			`delete clonedUser.password`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`}`
Fix for app sync, base it on group roles, not just user roles - stops app sync from pulling in group users which do not actually have access to the app. 2023-03-22 02:55:28 +13:00			`const appId = opts.appId \|\| context.getAppId()`
Clone user (#10974) 2023-06-21 04:07:34 +12:00			`clonedUser = updateAppRole(clonedUser, { appId })`
			`if (!clonedUser.roleId && clonedUser?.userGroups?.length) {`
			`clonedUser = await checkGroupRoles(clonedUser, {`
			`appId,`
			`groups: opts?.groups,`
			`})`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`}`

Clone user (#10974) 2023-06-21 04:07:34 +12:00			`return clonedUser`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`}`

Fix for app sync, base it on group roles, not just user roles - stops app sync from pulling in group users which do not actually have access to the app. 2023-03-22 02:55:28 +13:00			`export async function getCachedSelf(ctx: UserCtx, appId: string) {`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`// this has to be tenant aware, can't depend on the context to find it out`
			`// running some middlewares before the tenancy causes context to break`
			`const user = await cache.user.getUser(ctx.user?._id!)`
			`return processUser(user, { appId })`
			`}`

			`export async function getRawGlobalUser(userId: string) {`
			`const db = tenancy.getGlobalDB()`
Type internal db.get 2023-07-18 21:41:51 +12:00			`return db.get<User>(getGlobalIDFromUserMetadataID(userId))`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`}`

			`export async function getGlobalUser(userId: string) {`
			`const appId = context.getAppId()`
			`let user = await getRawGlobalUser(userId)`
			`return processUser(user, { appId })`
			`}`

Adding group and user tests for user sync. 2023-04-13 06:59:05 +12:00			`export async function getGlobalUsers(`
			`userIds?: string[],`
			`opts?: { noProcessing?: boolean }`
			`) {`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`const appId = context.getAppId()`
			`const db = tenancy.getGlobalDB()`
			`let globalUsers`
Updating the global user sync to be more accurate and also remove old user metadata from apps that users don't have access to anymore. 2023-04-05 05:03:56 +12:00			`if (userIds) {`
			`globalUsers = (await db.allDocs(getMultiIDParams(userIds))).rows.map(`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`row => row.doc`
			`)`
			`} else {`
			`globalUsers = (`
			`await db.allDocs(`
			`dbCore.getGlobalUserParams(null, {`
			`include_docs: true,`
			`})`
			`)`
			`).rows.map(row => row.doc)`
			`}`
			`globalUsers = globalUsers`
			`.filter(user => user != null)`
			`.map(user => {`
			`delete user.password`
			`delete user.forceResetPassword`
			`return user`
			`})`

Updating sync to cover both prod and dev apps. 2023-05-18 06:35:00 +12:00			`if (opts?.noProcessing \|\| !appId) {`
Adding group and user tests for user sync. 2023-04-13 06:59:05 +12:00			`return globalUsers`
			`} else {`
			`// pass in the groups, meaning we don't actually need to retrieve them for`
			`// each user individually`
			`const allGroups = await groups.fetch()`
			`return Promise.all(`
			`globalUsers.map(user => processUser(user, { groups: allGroups }))`
			`)`
			`}`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`}`

			`export async function getGlobalUsersFromMetadata(users: ContextUser[]) {`
Updating the global user sync to be more accurate and also remove old user metadata from apps that users don't have access to anymore. 2023-04-05 05:03:56 +12:00			`const globalUsers = await getGlobalUsers(users.map(user => user._id!))`
Some updates for currentapp.spec.js test case. 2022-11-16 06:35:17 +13:00			`return users.map(user => {`
			`const globalUser = globalUsers.find(`
			`globalUser => globalUser && user._id?.includes(globalUser._id)`
			`)`
			`return {`
			`...globalUser,`
			`// doing user second overwrites the id and rev (always metadata)`
			`...user,`
			`}`
			`})`
			`}`