mirror/fosrl.pangolin
1
0
Fork 0
mirror of https://github.com/fosrl/pangolin.git synced 2025-06-28 08:00:06 +02:00
Code Issues Projects Releases Packages Wiki Activity Actions 1
fosrl.pangolin/server/routers/external.ts

392 lines
9.9 KiB
TypeScript
Raw Normal View History

bootstrapped
2024-09-27 21:39:03 -04:00
import { Router } from "express";
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
import * as site from "./site";
import * as org from "./org";
import * as resource from "./resource";
import * as target from "./target";
import * as user from "./user";
import * as auth from "./auth";
Add role aware updates & endpoints
2024-10-12 21:36:14 -04:00
import * as role from "./role";
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
import HttpCode from "@server/types/HttpCode";
verify email workflow working
2024-10-04 23:14:40 -04:00
import {
rateLimitMiddleware,
verifySessionMiddleware,
verifySessionUserMiddleware,
} from "@server/middlewares";
import {
verifyOrgAccess,
getUserOrgs,
verifySiteAccess,
verifyResourceAccess,
verifyTargetAccess,
Add role aware updates & endpoints
2024-10-12 21:36:14 -04:00
verifyRoleAccess,
Merge branch 'main' of https://github.com/fosrl/pangolin
2024-10-12 23:03:56 -04:00
verifyUserAccess,
add roles input on resource and make spacing more consistent
2024-11-15 18:25:27 -05:00
verifyUserInRole,
verify email workflow working
2024-10-04 23:14:40 -04:00
} from "./auth";
move action permission check to middleware
2024-11-05 23:55:46 -05:00
import { verifyUserHasAction } from "./auth/verifyUserHasAction";
import { ActionsEnum } from "@server/auth/actions";
add org owner check to deleteOrg and removeUser endpoints
2024-11-06 00:05:19 -05:00
import { verifyUserIsOrgOwner } from "./auth/verifyUserIsOrgOwner";
Websocket working and newt auth working
2024-11-10 17:08:29 -05:00
import { createNewt, getToken } from "./newt";
bootstrapped
2024-09-27 21:39:03 -04:00
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
// Root routes
export const unauthenticated = Router();
bootstrapped
2024-09-27 21:39:03 -04:00
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
unauthenticated.get("/", (_, res) => {
res.status(HttpCode.OK).json({ message: "Healthy" });
bootstrapped
2024-09-27 21:39:03 -04:00
});
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
// Authenticated Root routes
export const authenticated = Router();
verify email workflow working
2024-10-04 23:14:40 -04:00
authenticated.use(verifySessionUserMiddleware);
Add routes
2024-09-28 12:14:44 -04:00
Add stepper
2024-10-14 19:30:38 -04:00
authenticated.get("/org/checkId", org.checkId);
Add verify middleware
2024-10-03 22:31:20 -04:00
authenticated.put("/org", getUserOrgs, org.createOrg);
authenticated.get("/orgs", getUserOrgs, org.listOrgs); // TODO we need to check the orgs here
move action permission check to middleware
2024-11-05 23:55:46 -05:00
authenticated.get(
"/org/:orgId",
verifyOrgAccess,
verifyUserHasAction(ActionsEnum.getOrg),
org.getOrg
);
authenticated.post(
"/org/:orgId",
verifyOrgAccess,
verifyUserHasAction(ActionsEnum.updateOrg),
org.updateOrg
);
list roles, make sidebar component, responsive mobile settings menu selector
2024-11-09 00:08:17 -05:00
authenticated.delete(
"/org/:orgId",
verifyOrgAccess,
verifyUserIsOrgOwner,
org.deleteOrg
);
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
move action permission check to middleware
2024-11-05 23:55:46 -05:00
authenticated.put(
"/org/:orgId/site",
verifyOrgAccess,
verifyUserHasAction(ActionsEnum.createSite),
site.createSite
);
authenticated.get(
"/org/:orgId/sites",
verifyOrgAccess,
verifyUserHasAction(ActionsEnum.listSites),
site.listSites
);
authenticated.get(
"/org/:orgId/site/:niceId",
verifyOrgAccess,
verifyUserHasAction(ActionsEnum.getSite),
site.getSite
);
Use niceId
2024-10-14 22:26:32 -04:00
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
authenticated.get(
refactor contexts, format zod errors, and more refactoring
2024-11-03 13:57:51 -05:00
"/org/:orgId/pick-site-defaults",
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
verifyOrgAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.createSite),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
site.pickSiteDefaults
);
move action permission check to middleware
2024-11-05 23:55:46 -05:00
authenticated.get(
"/site/:siteId",
verifySiteAccess,
verifyUserHasAction(ActionsEnum.getSite),
site.getSite
);
// authenticated.get(
// "/site/:siteId/roles",
// verifySiteAccess,
// verifyUserHasAction(ActionsEnum.listSiteRoles),
// site.listSiteRoles
// );
authenticated.post(
"/site/:siteId",
verifySiteAccess,
verifyUserHasAction(ActionsEnum.updateSite),
site.updateSite
);
authenticated.delete(
"/site/:siteId",
verifySiteAccess,
verifyUserHasAction(ActionsEnum.deleteSite),
site.deleteSite
);
Move nessicary info to url params
2024-10-02 22:05:21 -04:00
verify email workflow working
2024-10-04 23:14:40 -04:00
authenticated.put(
"/org/:orgId/site/:siteId/resource",
verifyOrgAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.createResource),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
resource.createResource
verify email workflow working
2024-10-04 23:14:40 -04:00
);
move action permission check to middleware
2024-11-05 23:55:46 -05:00
authenticated.get(
"/site/:siteId/resources",
verifyUserHasAction(ActionsEnum.listResources),
resource.listResources
);
verify email workflow working
2024-10-04 23:14:40 -04:00
authenticated.get(
"/org/:orgId/resources",
verifyOrgAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.listResources),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
resource.listResources
);
authenticated.post(
"/org/:orgId/create-invite",
verifyOrgAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.inviteUser),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
user.inviteUser
basic invite user functional
2024-11-02 23:46:08 -04:00
); // maybe make this /invite/create instead
authenticated.post("/invite/accept", user.acceptInvite);
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
add roles input on resource and make spacing more consistent
2024-11-15 18:25:27 -05:00
authenticated.get(
"/resource/:resourceId/roles",
verifyResourceAccess,
verifyUserHasAction(ActionsEnum.listResourceRoles),
resource.listResourceRoles
);
verify email workflow working
2024-10-04 23:14:40 -04:00
authenticated.get(
"/resource/:resourceId",
verifyResourceAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.getResource),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
resource.getResource
verify email workflow working
2024-10-04 23:14:40 -04:00
);
authenticated.post(
"/resource/:resourceId",
verifyResourceAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.updateResource),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
resource.updateResource
verify email workflow working
2024-10-04 23:14:40 -04:00
);
authenticated.delete(
"/resource/:resourceId",
verifyResourceAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.deleteResource),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
resource.deleteResource
verify email workflow working
2024-10-04 23:14:40 -04:00
);
Add verify middleware
2024-10-03 22:31:20 -04:00
verify email workflow working
2024-10-04 23:14:40 -04:00
authenticated.put(
"/resource/:resourceId/target",
verifyResourceAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.createTarget),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
target.createTarget
verify email workflow working
2024-10-04 23:14:40 -04:00
);
authenticated.get(
"/resource/:resourceId/targets",
verifyResourceAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.listTargets),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
target.listTargets
verify email workflow working
2024-10-04 23:14:40 -04:00
);
move action permission check to middleware
2024-11-05 23:55:46 -05:00
authenticated.get(
"/target/:targetId",
verifyTargetAccess,
verifyUserHasAction(ActionsEnum.getTarget),
target.getTarget
);
verify email workflow working
2024-10-04 23:14:40 -04:00
authenticated.post(
"/target/:targetId",
verifyTargetAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.updateTarget),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
target.updateTarget
verify email workflow working
2024-10-04 23:14:40 -04:00
);
authenticated.delete(
"/target/:targetId",
verifyTargetAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.deleteTarget),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
target.deleteTarget
verify email workflow working
2024-10-04 23:14:40 -04:00
);
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
list roles, make sidebar component, responsive mobile settings menu selector
2024-11-09 00:08:17 -05:00
authenticated.put(
"/org/:orgId/role",
verifyOrgAccess,
verifyUserHasAction(ActionsEnum.createRole),
role.createRole
);
show owner in users table, list roles query in invite form, and more
2024-11-08 00:03:54 -05:00
authenticated.get(
"/org/:orgId/roles",
verifyOrgAccess,
verifyUserHasAction(ActionsEnum.listRoles),
role.listRoles
);
ability to remove user from org
2024-11-03 17:28:12 -05:00
// authenticated.get(
// "/role/:roleId",
// verifyRoleAccess,
// verifyUserInRole,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.getRole),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.getRole
// );
refactor contexts, format zod errors, and more refactoring
2024-11-03 13:57:51 -05:00
// authenticated.post(
// "/role/:roleId",
// verifyRoleAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.updateRole),
refactor contexts, format zod errors, and more refactoring
2024-11-03 13:57:51 -05:00
// role.updateRole
// );
more user role stuff
2024-11-09 23:59:19 -05:00
authenticated.delete(
"/role/:roleId",
verifyRoleAccess,
verifyUserHasAction(ActionsEnum.deleteRole),
role.deleteRole
);
authenticated.post(
"/role/:roleId/add/:userId",
verifyRoleAccess,
verifyUserAccess,
verifyUserHasAction(ActionsEnum.addUserRole),
user.addUserRole
);
Add role aware updates & endpoints
2024-10-12 21:36:14 -04:00
ability to remove user from org
2024-11-03 17:28:12 -05:00
// authenticated.put(
// "/role/:roleId/site",
// verifyRoleAccess,
// verifyUserInRole,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.addRoleSite),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.addRoleSite
// );
// authenticated.delete(
// "/role/:roleId/site",
// verifyRoleAccess,
// verifyUserInRole,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.removeRoleSite),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.removeRoleSite
// );
// authenticated.get(
// "/role/:roleId/sites",
// verifyRoleAccess,
// verifyUserInRole,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.listRoleSites),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.listRoleSites
// );
add roles input on resource and make spacing more consistent
2024-11-15 18:25:27 -05:00
authenticated.post(
"/resource/:resourceId/roles",
verifyResourceAccess,
verifyRoleAccess,
verifyUserHasAction(ActionsEnum.setResourceRoles),
role.addRoleResource
);
ability to remove user from org
2024-11-03 17:28:12 -05:00
// authenticated.get(
// "/role/:roleId/resources",
// verifyRoleAccess,
// verifyUserInRole,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.listRoleResources),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.listRoleResources
// );
// authenticated.put(
// "/role/:roleId/action",
// verifyRoleAccess,
// verifyUserInRole,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.addRoleAction),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.addRoleAction
// );
// authenticated.delete(
// "/role/:roleId/action",
// verifyRoleAccess,
// verifyUserInRole,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.removeRoleAction),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.removeRoleAction
// );
// authenticated.get(
// "/role/:roleId/actions",
// verifyRoleAccess,
// verifyUserInRole,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.listRoleActions),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.listRoleActions
// );
Add role aware updates & endpoints
2024-10-12 21:36:14 -04:00
fix get user rauth
2024-10-13 15:05:52 -04:00
unauthenticated.get("/user", verifySessionMiddleware, user.getUser);
more user role stuff
2024-11-09 23:59:19 -05:00
authenticated.get("/org/:orgId/user/:userId", verifyOrgAccess, user.getOrgUser);
move action permission check to middleware
2024-11-05 23:55:46 -05:00
authenticated.get(
"/org/:orgId/users",
verifyOrgAccess,
verifyUserHasAction(ActionsEnum.listUsers),
user.listUsers
);
Merge branch 'main' of https://github.com/fosrl/pangolin
2024-10-12 23:03:56 -04:00
authenticated.delete(
"/org/:orgId/user/:userId",
verifyOrgAccess,
verifyUserAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
verifyUserHasAction(ActionsEnum.removeUser),
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
user.removeUserOrg
Merge branch 'main' of https://github.com/fosrl/pangolin
2024-10-12 23:03:56 -04:00
);
Add user endpoints
2024-10-12 22:31:24 -04:00
ability to remove user from org
2024-11-03 17:28:12 -05:00
// authenticated.put(
// "/user/:userId/site",
// verifySiteAccess,
// verifyUserAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.addRoleSite),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.addRoleSite
// );
// authenticated.delete(
// "/user/:userId/site",
// verifySiteAccess,
// verifyUserAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.removeRoleSite),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.removeRoleSite
// );
// authenticated.put(
// "/user/:userId/resource",
// verifyResourceAccess,
// verifyUserAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.addRoleResource),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.addRoleResource
// );
// authenticated.delete(
// "/user/:userId/resource",
// verifyResourceAccess,
// verifyUserAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.removeRoleResource),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.removeRoleResource
// );
// authenticated.put(
// "/org/:orgId/user/:userId/action",
// verifyOrgAccess,
// verifyUserAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.addRoleAction),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.addRoleAction
// );
// authenticated.delete(
// "/org/:orgId/user/:userId/action",
// verifyOrgAccess,
// verifyUserAccess,
move action permission check to middleware
2024-11-05 23:55:46 -05:00
// verifyUserHasAction(ActionsEnum.removeRoleAction),
ability to remove user from org
2024-11-03 17:28:12 -05:00
// role.removeRoleAction
// );
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
Websocket working and newt auth working
2024-11-10 17:08:29 -05:00
authenticated.put("/newt", createNewt);
organized routes and routes and added rate limiter
2024-10-02 00:04:40 -04:00
// Auth routes
added change password endpoint
2024-10-05 15:11:51 -04:00
export const authRouter = Router();
unauthenticated.use("/auth", authRouter);
authRouter.use(
rateLimitMiddleware({
windowMin: 10,
max: 15,
type: "IP_AND_PATH",
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
})
added change password endpoint
2024-10-05 15:11:51 -04:00
);
authRouter.put("/signup", auth.signup);
authRouter.post("/login", auth.login);
authRouter.post("/logout", auth.logout);
standardize header, save all button for targets, fix update site on resource
2024-11-13 20:08:05 -05:00
authRouter.post("/newt/get-token", getToken);
Websocket working and newt auth working
2024-11-10 17:08:29 -05:00
added reset password workflow
2024-10-05 17:01:49 -04:00
authRouter.post("/2fa/enable", verifySessionUserMiddleware, auth.verifyTotp);
added change password endpoint
2024-10-05 15:11:51 -04:00
authRouter.post(
added reset password workflow
2024-10-05 17:01:49 -04:00
"/2fa/request",
added change password endpoint
2024-10-05 15:11:51 -04:00
verifySessionUserMiddleware,
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
auth.requestTotpSecret
verify email workflow working
2024-10-04 23:14:40 -04:00
);
rename 2fa routes
2024-10-05 15:48:19 -04:00
authRouter.post("/2fa/disable", verifySessionUserMiddleware, auth.disable2fa);
added change password endpoint
2024-10-05 15:11:51 -04:00
authRouter.post("/verify-email", verifySessionMiddleware, auth.verifyEmail);
authRouter.post(
added reset password workflow
2024-10-05 17:01:49 -04:00
"/verify-email/request",
verify email workflow working
2024-10-04 23:14:40 -04:00
verifySessionMiddleware,
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
auth.requestEmailVerificationCode
verify email workflow working
2024-10-04 23:14:40 -04:00
);
added change password endpoint
2024-10-05 15:11:51 -04:00
authRouter.post(
"/change-password",
verifySessionUserMiddleware,
create invite and accept invite endpoints
2024-11-02 18:12:17 -04:00
auth.changePassword
added change password endpoint
2024-10-05 15:11:51 -04:00
);
added reset password workflow
2024-10-05 17:01:49 -04:00
authRouter.post("/reset-password/request", auth.requestPasswordReset);
authRouter.post("/reset-password/", auth.resetPassword);
Reference in a new issue Copy permalink