2025-01-21 18:36:50 -05:00
import db from "@server/db" ;
import {
emailVerificationCodes ,
passwordResetTokens ,
resourceOtp ,
2025-01-28 22:26:45 -05:00
resources ,
2025-01-21 18:36:50 -05:00
resourceWhitelist ,
2025-01-28 22:26:45 -05:00
targets ,
2025-01-21 18:36:50 -05:00
userInvites ,
users
} from "@server/db/schema" ;
2025-01-26 14:42:02 -05:00
import { APP_PATH , configFilePath1 , configFilePath2 } from "@server/lib/consts" ;
2025-01-28 22:26:45 -05:00
import { eq , sql } from "drizzle-orm" ;
2025-01-26 14:42:02 -05:00
import fs from "fs" ;
import yaml from "js-yaml" ;
import path from "path" ;
import { z } from "zod" ;
import { fromZodError } from "zod-validation-error" ;
2025-01-21 18:36:50 -05:00
export default async function migration() {
console . log ( "Running setup script 1.0.0-beta.9..." ) ;
try {
await db . transaction ( async ( trx ) = > {
2025-01-25 12:55:19 -05:00
trx . run ( sql ` UPDATE ${ users } SET email = LOWER(email); ` ) ;
trx . run (
sql ` UPDATE ${ emailVerificationCodes } SET email = LOWER(email); `
) ;
trx . run (
sql ` UPDATE ${ passwordResetTokens } SET email = LOWER(email); `
) ;
trx . run ( sql ` UPDATE ${ userInvites } SET email = LOWER(email); ` ) ;
trx . run ( sql ` UPDATE ${ resourceWhitelist } SET email = LOWER(email); ` ) ;
trx . run ( sql ` UPDATE ${ resourceOtp } SET email = LOWER(email); ` ) ;
2025-01-21 18:36:50 -05:00
} ) ;
} catch ( error ) {
console . log (
2025-01-28 22:26:45 -05:00
"We were unable to make all emails lower case in the database. You can safely ignore this error."
2025-01-21 18:36:50 -05:00
) ;
console . error ( error ) ;
}
2025-01-28 22:26:45 -05:00
try {
await db . transaction ( async ( trx ) = > {
const resourcesAll = await trx . select ( {
resourceId : resources.resourceId ,
fullDomain : resources.fullDomain ,
subdomain : resources.subdomain
} ) . from ( resources ) ;
trx . run ( ` DROP INDEX resources_fullDomain_unique; ` )
trx . run ( ` ALTER TABLE resources
DROP COLUMN fullDomain ;
` )
trx . run ( ` ALTER TABLE resources
DROP COLUMN subdomain ;
` )
trx . run ( sql ` ALTER TABLE resources
ADD COLUMN fullDomain TEXT ;
` )
trx . run ( sql ` ALTER TABLE resources
ADD COLUMN subdomain TEXT ;
` )
trx . run ( sql ` ALTER TABLE resources
ADD COLUMN http INTEGER DEFAULT true NOT NULL ;
` )
trx . run ( sql ` ALTER TABLE resources
ADD COLUMN protocol TEXT DEFAULT 'tcp' NOT NULL ;
` )
trx . run ( sql ` ALTER TABLE resources
ADD COLUMN proxyPort INTEGER ;
` )
// write the new fullDomain and subdomain values back to the database
for ( const resource of resourcesAll ) {
await trx . update ( resources ) . set ( {
fullDomain : resource.fullDomain ,
subdomain : resource.subdomain
} ) . where ( eq ( resources . resourceId , resource . resourceId ) ) ;
}
const targetsAll = await trx . select ( {
targetId : targets.targetId ,
method : targets.method
} ) . from ( targets ) ;
trx . run ( ` ALTER TABLE targets
DROP COLUMN method ;
` )
trx . run ( ` ALTER TABLE targets
DROP COLUMN protocol ;
` )
trx . run ( sql ` ALTER TABLE targets
ADD COLUMN method TEXT ;
` )
// write the new method and protocol values back to the database
for ( const target of targetsAll ) {
await trx . update ( targets ) . set ( {
method : target.method
} ) . where ( eq ( targets . targetId , target . targetId ) ) ;
}
} ) ;
} catch ( error ) {
console . log (
"We were unable to make the changes to the targets and resources tables."
) ;
throw error ;
}
2025-01-26 14:42:02 -05:00
try {
// Determine which config file exists
const filePaths = [ configFilePath1 , configFilePath2 ] ;
let filePath = "" ;
for ( const path of filePaths ) {
if ( fs . existsSync ( path ) ) {
filePath = path ;
break ;
}
}
if ( ! filePath ) {
throw new Error (
` No config file found (expected config.yml or config.yaml). `
) ;
}
// Read and parse the YAML file
let rawConfig : any ;
const fileContents = fs . readFileSync ( filePath , "utf8" ) ;
rawConfig = yaml . load ( fileContents ) ;
rawConfig . server . resource_session_request_param = "p_session_request" ;
rawConfig . server . session_cookie_name = "p_session_token" ; // rename to prevent conflicts
delete rawConfig . server . resource_session_cookie_name ;
// Write the updated YAML back to the file
const updatedYaml = yaml . dump ( rawConfig ) ;
fs . writeFileSync ( filePath , updatedYaml , "utf8" ) ;
} catch ( e ) {
console . log (
` Failed to add resource_session_request_param to config. Please add it manually. https://docs.fossorial.io/Pangolin/Configuration/config `
) ;
throw e ;
}
try {
const traefikPath = path . join (
APP_PATH ,
"traefik" ,
"traefik_config.yml"
) ;
2025-01-28 22:26:45 -05:00
// Define schema for traefik config validation
2025-01-26 14:42:02 -05:00
const schema = z . object ( {
2025-01-28 22:26:45 -05:00
entryPoints : z
. object ( {
websecure : z
. object ( {
address : z.string ( ) ,
transport : z
. object ( {
respondingTimeouts : z.object ( {
readTimeout : z.string ( )
} )
} )
. optional ( )
} )
. optional ( )
} )
. optional ( ) ,
2025-01-26 14:42:02 -05:00
experimental : z.object ( {
plugins : z.object ( {
badger : z.object ( {
moduleName : z.string ( ) ,
version : z.string ( )
} )
} )
} )
} ) ;
const traefikFileContents = fs . readFileSync ( traefikPath , "utf8" ) ;
const traefikConfig = yaml . load ( traefikFileContents ) as any ;
const parsedConfig = schema . safeParse ( traefikConfig ) ;
if ( ! parsedConfig . success ) {
throw new Error ( fromZodError ( parsedConfig . error ) . toString ( ) ) ;
}
2025-01-28 22:26:45 -05:00
// Ensure websecure entrypoint exists
if ( traefikConfig . entryPoints ? . websecure ) {
// Add transport configuration
traefikConfig . entryPoints . websecure . transport = {
respondingTimeouts : {
readTimeout : "30m"
}
} ;
}
2025-01-26 14:42:02 -05:00
traefikConfig . experimental . plugins . badger . version = "v1.0.0-beta.3" ;
const updatedTraefikYaml = yaml . dump ( traefikConfig ) ;
fs . writeFileSync ( traefikPath , updatedTraefikYaml , "utf8" ) ;
console . log (
2025-01-28 22:26:45 -05:00
"Updated the version of Badger in your Traefik configuration to v1.0.0-beta.3 and added readTimeout to websecure entrypoint in your Traefik configuration.."
2025-01-26 14:42:02 -05:00
) ;
} catch ( e ) {
console . log (
2025-01-28 22:26:45 -05:00
"We were unable to update the version of Badger in your Traefik configuration. Please update it manually to at least v1.0.0-beta.3. https://github.com/fosrl/badger"
2025-01-26 14:42:02 -05:00
) ;
2025-01-28 22:26:45 -05:00
throw e ;
2025-01-26 14:42:02 -05:00
}
try {
await db . transaction ( async ( trx ) = > {
2025-01-28 22:26:45 -05:00
trx . run (
sql ` ALTER TABLE 'resourceSessions' ADD 'isRequestToken' integer; `
) ;
trx . run (
sql ` ALTER TABLE 'resourceSessions' ADD 'userSessionId' text REFERENCES session(id); `
) ;
2025-01-26 14:42:02 -05:00
} ) ;
} catch ( e ) {
console . log (
"We were unable to add columns to the resourceSessions table."
) ;
throw e ;
}
2025-01-21 18:36:50 -05:00
console . log ( "Done." ) ;
}
