mifi/auth-service
1
0
Fork 0
Code Issues 1 Pull Requests Packages Projects Releases Wiki Activity

Compare commits

base: mifi:1.0.1
Branches Tags
mifi:main mifi:develop mifi:feature/ISS-3_-_WebAuthn_Passkey_Support
mifi:1.0.12 mifi:1.0.11 mifi:1.0.10 mifi:1.0.9 mifi:1.0.8 mifi:1.0.7 mifi:1.0.6 mifi:1.0.5 mifi:1.0.4 mifi:1.0.3 mifi:1.0.2 mifi:1.0.1 mifi:1.0.0
..
compare: mifi:1.0.2
Branches Tags
mifi:main mifi:develop mifi:feature/ISS-3_-_WebAuthn_Passkey_Support
mifi:1.0.12 mifi:1.0.11 mifi:1.0.10 mifi:1.0.9 mifi:1.0.8 mifi:1.0.7 mifi:1.0.6 mifi:1.0.5 mifi:1.0.4 mifi:1.0.3 mifi:1.0.2 mifi:1.0.1 mifi:1.0.0

2 Commits
1.0.1 ... 1.0.2

Author SHA1 Message Date
mifi
1fa308b2a9 Fixes 2023-05-23 22:06:09 -04:00
mifi
f0c2c8d855 Touch-ups and adding drone pipeline 2023-05-23 15:40:31 -04:00
13 changed files with 386 additions and 26 deletions
Expand all files Collapse all files

282
.drone.yml Normal file
View File

@@ -0,0 +1,282 @@
kind: pipeline
type: docker
name: Test Pipeline
workspace:
path: /drone/auth
steps:
- name: yarn install
image: node:latest
commands:
- yarn install
- name: Code Style Checks
image: node:latest
commands:
- yarn prettier
- name: Lint
image: node:latest
commands:
- yarn lint
- name: Unit Tests
image: node:latest
commands:
- yarn test
- name: Send Test Status Notification
image: plugins/webhook
settings:
urls: https://lab.mifi.dev/hooks/9p65zpagctgkmndo8nwwm4199r
content_type: application/json
template: |
{
"icon_url":"https://emojipedia-us.s3.dualstack.us-west-1.amazonaws.com/thumbs/120/apple/198/freezing-face_1f976.png",
"text": "[{{ repo.name }} - Build # {{ build.number }}] Code Quality Checks {{ build.status }} {{#success build.status}}:tada:{{else}}:poop:{{/success}}",
"username":"DroneBot"
}
when:
status:
- success
- failure
- name: Build
image: node:latest
commands:
- yarn build
- name: Send Build Status Notifications
image: plugins/webhook
settings:
urls: https://lab.mifi.dev/hooks/9p65zpagctgkmndo8nwwm4199r
content_type: application/json
template: |
{
"icon_url":"https://emojipedia-us.s3.dualstack.us-west-1.amazonaws.com/thumbs/120/apple/198/freezing-face_1f976.png",
"text": "[{{ repo.name }} - Build # {{ build.number }}] Build package {{ build.status }} {{#success build.status}}:tada:{{else}}:poop:{{/success}}",
"username":"DroneBot"
}
when:
status:
- success
- failure
trigger:
branch:
- main
- develop
event:
- pull_request
---
kind: pipeline
type: docker
name: Publish Pipeline
workspace:
path: /drone/auth
steps:
- name: Build Package
image: node:latest
commands:
- yarn install
- yarn build
- name: Publish NPM
image: node:20-alpine
failure: ignore
commands:
- yarn publish -t ${DRONE_TAG}
volumes:
- name: npmrc
path: /drone/auth/.npmrc
- name: Report NPM Publish Status
image: plugins/webhook
settings:
urls: https://lab.mifi.dev/hooks/ccw34hdf7tgbjmzp96nptn938r
content_type: application/json
template: |
{
"icon_url":"https://emojipedia-us.s3.dualstack.us-west-1.amazonaws.com/thumbs/120/apple/198/freezing-face_1f976.png",
"text": "[{{ repo.name }} - New npm package release {{tag}} from # {{ build.number }}] Deploy {{ build.status }} {{#success build.status}}:tada:{{else}}:poop:{{/success}}",
"username":"DroneBot"
}
when:
status:
- success
- failure
- name: Publish Image
image: plugins/docker
settings:
auto_tag: true
repo: git.mifi.dev/mifi/auth-service
registry: git.mifi.dev
debug: true
ssh-agent-key:
from_secret: reg_token
username: <token>
password:
from_secret: reg_token
secrets: [reg_token]
- name: Report Image Publish Status
image: plugins/webhook
settings:
urls: https://lab.mifi.dev/hooks/ccw34hdf7tgbjmzp96nptn938r
content_type: application/json
template: |
{
"icon_url":"https://emojipedia-us.s3.dualstack.us-west-1.amazonaws.com/thumbs/120/apple/198/freezing-face_1f976.png",
"text": "[{{ repo.name }} - New docker image release {{tag}} from # {{ build.number }}] Deploy {{ build.status }} {{#success build.status}}:tada:{{else}}:poop:{{/success}}",
"username":"DroneBot"
}
when:
status:
- success
- failure
volumes:
- name: dockerconfig
host:
path: /volume1/docker/dockerconfig.json
- name: dockersock
host:
path: /var/run/docker.sock
- name: npmrc
host:
path: /volume1/docker/beethoven/labs-auth/.npmrc
depends_on:
- Test Pipeline
trigger:
event:
- tag
---
kind: pipeline
type: docker
name: Staging Deploy Pipeline
workspace:
path: /drone/auth
steps:
- name: Deploy Container
image: docker
privileged: true
environment:
CONTAINER_PREFIX: staging
HOST: area51.mifi.dev
ROUTE_PREFIX: /auth
PORT: 9001
commands:
- docker compose -f docker-compose.staging-build.yml build --pull --no-cache
- docker compose -f docker-compose.staging-build.yml up --remove-orphans --force-recreate --wait
volumes:
- name: env-secrets
path: /drone/auth/staging.env
- name: dockersock
path: /var/run/docker.sock
- name: dockerconfig
path: /drone/auth/.docker/config.json
- name: Send Status Notifications
image: plugins/webhook
privileged: true
settings:
urls: https://lab.mifi.dev/hooks/ccw34hdf7tgbjmzp96nptn938r
content_type: application/json
template: |
{
"icon_url":"https://emojipedia-us.s3.dualstack.us-west-1.amazonaws.com/thumbs/120/apple/198/freezing-face_1f976.png",
"text": "[{{ repo.name }} - Build # {{ build.number }}] Deploy {{ build.status }} {{#success build.status}}:tada:{{else}}:poop:{{/success}}",
"username":"DroneBot"
}
when:
status:
- success
- failure
volumes:
- name: dockerconfig
host:
path: /volume1/docker/dockerconfig.json
- name: dockersock
host:
path: /var/run/docker.sock
- name: env-secrets
host:
path: /volume1/docker/beethoven/labs-auth/staging.env
depends_on:
- Test Pipeline
trigger:
branch:
- develop
event:
- push
---
kind: pipeline
type: docker
name: Production Deploy Pipeline
workspace:
path: /drone/auth
clone:
disable: true
steps:
- name: Deploy Container
image: docker
privileged: true
environment:
CONTAINER_PREFIX: staging
HOST: area51.mifi.dev
ROUTE_PREFIX: /auth
PORT: 9001
commands:
- docker compose -f docker-compose.production-build.yml pull
- docker compose -f docker-compose.production-build.yml build --no-cache
- docker compose -f docker-compose.production-build.yml rm --stop
- docker compose -f docker-compose.production-build.yml up --wait
volumes:
- name: env-secrets
path: /drone/auth/production.env
- name: dockersock
path: /var/run/docker.sock
- name: dockerconfig
path: /drone/auth/.docker/config.json
- name: Send Status Notifications
image: plugins/webhook
privileged: true
settings:
urls: https://lab.mifi.dev/hooks/ccw34hdf7tgbjmzp96nptn938r
content_type: application/json
template: |
{
"icon_url":"https://emojipedia-us.s3.dualstack.us-west-1.amazonaws.com/thumbs/120/apple/198/freezing-face_1f976.png",
"text": "[{{ repo.name }} - Build # {{ build.number }}] Deploy {{ build.status }} {{#success build.status}}:tada:{{else}}:poop:{{/success}}",
"username":"DroneBot"
}
when:
status:
- success
- failure
volumes:
- name: dockerconfig
host:
path: /volume1/docker/dockerconfig.json
- name: dockersock
host:
path: /var/run/docker.sock
- name: env-secrets
host:
path: /volume1/docker/beethoven/labs-auth/staging.env
depends_on:
- Test Pipeline
trigger:
event:
- promote
target:
- production

31
.env.dev Normal file
View File

@@ -0,0 +1,31 @@
HOST=localhost
PORT=9001
ROUTE_PREFIX=/auth
LOGIN_ROUTE=/login
RESET_ROUTE=/reset
DB_ADMIN_USERNAME=root
DB_ADMIN_PASSWORD=password
DB_USERNAME=user
DB_PASSWORD=password
DB_NAME=auth
MONGO_INITDB_ROOT_USERNAME=$DB_ADMIN_USERNAME
MONGO_INITDB_ROOT_PASSWORD=$DB_ADMIN_PASSWORD
MONGO_INITDB_DATABASE=$DB_NAME
SESSION_KEY=shjhakjfhfjdshjksdhfdshfhfduyeyb73te4
JWT_AUDIENCE=Grow.io
JWT_ISSUER=Grow Latch
JWT_SECRET=Th!sIs a d3v3lopm3nt server SEcr¢T.
LOGIN_VALID_TIMEOUT=12h
RESET_VALID_TIMEOUT=15m
DEFAULT_TOKEN_DAYS=1
CONTAINER_PREFIX=dev
SERVICE_NAME=auth-service
ENV=development

19
.eslintrc.js Normal file
View File

@@ -0,0 +1,19 @@
/* eslint-env node */
module.exports = {
extends: [
'eslint:recommended',
'plugin:@typescript-eslint/recommended',
'plugin:import/errors',
'plugin:prettier/recommended',
'prettier',
],
parser: '@typescript-eslint/parser',
plugins: ['@typescript-eslint'],
settings: {
'import/parsers': {
'@typescript-eslint/parser': [".ts", ".tsx"],
},
'import/resolver': 'typescript',
},
root: true,
};

3
.npmrc Normal file
View File

@@ -0,0 +1,3 @@
registry=https://registry.npmjs.org
@mifi:registry=https://git.mifi.dev/api/packages/mifi/npm
//git.mifi.dev/api/packages/mifi/npm/:_authToken=${NPM_TOKEN}

7
.prettierrc.js Normal file
View File

@@ -0,0 +1,7 @@
module.exports = {
parser: 'typescript',
printWidth: 120,
trailingComma: 'all',
tabWidth: 4,
singleQuote: true,
};

6
.yarnrc.build.yml Normal file
View File

@@ -0,0 +1,6 @@
nodeLinker: node-modules
npmScopes:
mifi:
npmRegistryServer: https://git.mifi.dev/api/packages/mifi/npm/
npmAuthToken: e35a182b01581790f91996594bc16e5c6a89c71c # ${NPM_TOKEN}
npmAlwaysAuth: true

25
Dockerfile
View File

@@ -1,28 +1,35 @@
ARG ENV=production
ARG MONGO_VERSION=latest
ARG PORT=9001
ARG NPM_TOKEN=not_set
ARG YARN_VERSION=3.5.0
## mongo build stage
FROM mongo:$MONGO_VERSION AS database
COPY docker-entrypoint-initdb.d/mongo-init-$MONGO_VERSION.sh ./docker-entrypoint-initdb.d/mongo-init.sh
## stage one, build the service
FROM node:20-alpine AS build
FROM node:20-bullseye-slim AS build
ENV YARN_VERSION $YARN_VERSION
ENV NODE_ENV development
ENV NPM_TOKEN $NPM_TOKEN
WORKDIR /home/node/app
COPY package*.json ./
COPY tsconfig.json ./
COPY lib ./lib
RUN ls -a
RUN yarn install
COPY .npmrc /root
COPY .yarnrc.build.yml /root/.yarnrc.yml
COPY lib package*.json tsconfig.json yarn.lock ./
RUN yarn set version stable && yarn install
RUN yarn build
## this is stage two , where the app actually runs
FROM node:20-alpine AS containerize
FROM node:20-bullseye-slim AS containerize
ENV YARN_VERSION $YARN_VERSION
ENV NODE_ENV $ENV
ENV NPM_TOKEN $NPM_TOKEN
WORKDIR /home/node/app
COPY package*.json ./
RUN yarn install --frozen-lockfile --production
COPY .npmrc /root
COPY .yarnrc.build.yml /root/.yarnrc.yml
COPY package*.json yarn.lock ./
RUN yarn set version stable && yarn install && yarn cache clean
COPY --from=build /home/node/app/dist .
EXPOSE $PORT
CMD ["node","server/index.js"]

7
babel.config.js
View File

@@ -1,6 +1 @@
module.exports = {
presets: [
['@babel/preset-env', { targets: { node: 'current' } }],
'@babel/preset-typescript',
],
};
export const presets = [['@babel/preset-env', { targets: { node: 'current' } }], '@babel/preset-typescript'];

2
docker-compose.dev.yml
View File

@@ -26,6 +26,8 @@ services:
args:
- PORT
- ENV
- NPM_TOKEN
- YARN_VERSION=3.5.0
container_name: ${CONTAINER_PREFIX}-auth-service
ports:
- 9001:9001

1
lib/middleware/errorHandler.ts
View File

@@ -4,6 +4,7 @@ import { Context, Next } from 'koa';
export const errorHandler = async (ctx: Context, next: Next) => {
try {
await next();
// eslint-disable-next-line @typescript-eslint/no-explicit-any
} catch (error: any) {
ctx.status = error.statusCode || error.status || StatusCodes.INTERNAL_SERVER_ERROR;
error.status = ctx.status;

2
lib/passport/strategies/local.ts
View File

@@ -3,7 +3,7 @@ import { Strategy as LocalStrategy } from 'passport-local';
import { authenticate } from '@mifi/auth-db/lib/api/authenticate';
export default new LocalStrategy(async (username: string, password: string, done: any) => {
export default new LocalStrategy(async (username, password, done) => {
const user = await authenticate(username, password);
done(null, user);
});

6
package.json
View File

@@ -1,6 +1,6 @@
{
"name": "@mifi/auth-service",
"version": "1.0.1",
"version": "1.0.2",
"author": "mifi (Mike Fitzpatrick)",
"license": "MIT",
"scripts": {
@@ -56,8 +56,8 @@
"typescript": "^4.9.5"
},
"dependencies": {
"@mifi/auth-db": "^1.0.0",
"@mifi/services-common": "^1.0.0",
"@mifi/auth-db": "^1.x.x",
"@mifi/services-common": "^1.x.x",
"@simplewebauthn/server": "^7.2.0",
"dotenv": "^16.0.3",
"http-status-codes": "^2.2.0",

21
yarn.lock
View File

@@ -2697,15 +2697,15 @@ __metadata:
languageName: node
linkType: hard
"@mifi/auth-db@npm:^1.0.0":
version: 1.0.0
resolution: "@mifi/auth-db@npm:1.0.0::__archiveUrl=https%3A%2F%2Fgit.mifi.dev%2Fapi%2Fpackages%2Fmifi%2Fnpm%2F%2540mifi%252Fauth-db%2F-%2F1.0.0%2Fauth-db-1.0.0.tgz"
"@mifi/auth-db@npm:^1.x.x":
version: 1.0.2
resolution: "@mifi/auth-db@npm:1.0.2::__archiveUrl=https%3A%2F%2Fgit.mifi.dev%2Fapi%2Fpackages%2Fmifi%2Fnpm%2F%2540mifi%252Fauth-db%2F-%2F1.0.2%2Fauth-db-1.0.2.tgz"
dependencies:
"@mifi/services-common": 1.0.0
dotenv: ^16.0.3
jsonwebtoken: ^9.0.0
mongoose: ^6.9.2
checksum: cd3165c207b54995e7049db6a763e475eef2fffbc083e3d6a8e309022cc5bbf43789ab935787a3dcbfc69e9b41c94c5e6d6e0a98b81309d74ff6a6fb8c1b6e3d
checksum: 4d0c725bffb0da608fe47813a18b4c6a4707c9b196f820c59794f3ab8543ae6da9879726e868a988bfe9cc8a4479c868c9ae472b9f7c3d9fffb63ea632270500
languageName: node
linkType: hard
@@ -2716,8 +2716,8 @@ __metadata:
"@babel/core": ^7.21.8
"@babel/preset-env": ^7.21.5
"@babel/preset-typescript": ^7.21.5
"@mifi/auth-db": ^1.0.0
"@mifi/services-common": ^1.0.0
"@mifi/auth-db": ^1.x.x
"@mifi/services-common": ^1.x.x
"@simplewebauthn/server": ^7.2.0
"@tsconfig/node16": ^1.0.4
"@types/jest": ^29.5.1
@@ -2774,13 +2774,20 @@ __metadata:
languageName: unknown
linkType: soft
"@mifi/services-common@npm:1.0.0, @mifi/services-common@npm:^1.0.0":
"@mifi/services-common@npm:1.0.0":
version: 1.0.0
resolution: "@mifi/services-common@npm:1.0.0::__archiveUrl=https%3A%2F%2Fgit.mifi.dev%2Fapi%2Fpackages%2Fmifi%2Fnpm%2F%2540mifi%252Fservices-common%2F-%2F1.0.0%2Fservices-common-1.0.0.tgz"
checksum: 1ab1c697e603df26363a3b6ae77fc35ac19c34a4c43d874ec0fc113a87b2ae62a8ddc64c7d40fb7e38f69c42b0eb9a93df40905eb7fecc92c3665ef18f245bc0
languageName: node
linkType: hard
"@mifi/services-common@npm:^1.x.x":
version: 1.0.1
resolution: "@mifi/services-common@npm:1.0.1::__archiveUrl=https%3A%2F%2Fgit.mifi.dev%2Fapi%2Fpackages%2Fmifi%2Fnpm%2F%2540mifi%252Fservices-common%2F-%2F1.0.1%2Fservices-common-1.0.1.tgz"
checksum: b8ba60584616826615bf4600dc45a0fbe390a2ff5c1a8238e0f9e016fd2ff069e4c6fd96d4d02af7eb41671436a58ab69e6017301a509a175aeff08d7b056fc2
languageName: node
linkType: hard
"@nodelib/fs.scandir@npm:2.1.5":
version: 2.1.5
resolution: "@nodelib/fs.scandir@npm:2.1.5"