unleash.unleash/src/lib/routes/public-invite.ts

import { Response } from 'express';

import Controller from './controller';
import { NONE } from '../types/permissions';
import { Logger } from '../logger';
import { IAuthRequest } from './unleash-types';
import { IUnleashConfig, IUnleashServices } from '../types';
import { OpenApiService } from '../services/openapi-service';
import { createRequestSchema } from '../openapi/util/create-request-schema';
import { createResponseSchema } from '../openapi/util/create-response-schema';
import { serializeDates } from '../types/serialize-dates';
import {
    emptyResponse,
    getStandardResponses,
} from '../openapi/util/standard-responses';
import { PublicSignupTokenService } from '../services/public-signup-token-service';
import { PublicSignupTokenSchema } from '../openapi/spec/public-signup-token-schema';
import { UserSchema, userSchema } from '../openapi/spec/user-schema';
import { CreateInvitedUserSchema } from '../openapi/spec/create-invited-user-schema';

interface TokenParam {
    token: string;
}

export class PublicInviteController extends Controller {
    private publicSignupTokenService: PublicSignupTokenService;

    private openApiService: OpenApiService;

    private logger: Logger;

    constructor(
        config: IUnleashConfig,
        {
            publicSignupTokenService,
            openApiService,
        }: Pick<
            IUnleashServices,
            'publicSignupTokenService' | 'openApiService'
        >,
    ) {
        super(config);
        this.publicSignupTokenService = publicSignupTokenService;
        this.openApiService = openApiService;
        this.logger = config.getLogger('validate-invite-token-controller.js');

        this.route({
            method: 'get',
            path: '/:token/validate',
            handler: this.validate,
            permission: NONE,
            middleware: [
                openApiService.validPath({
                    tags: ['Public signup tokens'],
                    operationId: 'validatePublicSignupToken',
                    summary: `Validates a public signup token exists, has not expired and is enabled`,
                    responses: {
                        200: emptyResponse,
                        ...getStandardResponses(400),
                    },
                }),
            ],
        });

        this.route({
            method: 'post',
            path: '/:token/signup',
            handler: this.addTokenUser,
            permission: NONE,
            middleware: [
                openApiService.validPath({
                    tags: ['Public signup tokens'],
                    operationId: 'addPublicSignupTokenUser',
                    summary:
                        'Create a user with the "viewer" root role and link them to a signup token',
                    requestBody: createRequestSchema('createInvitedUserSchema'),
                    responses: {
                        200: createResponseSchema('userSchema'),
                        ...getStandardResponses(400, 409),
                    },
                }),
            ],
        });
    }

    async validate(
        req: IAuthRequest<TokenParam, void>,
        res: Response<PublicSignupTokenSchema>,
    ): Promise<void> {
        const { token } = req.params;
        const valid = await this.publicSignupTokenService.validate(token);
        if (valid) {
            return res.status(200).end();
        } else {
            return res.status(400).end();
        }
    }

    async addTokenUser(
        req: IAuthRequest<TokenParam, void, CreateInvitedUserSchema>,
        res: Response<UserSchema>,
    ): Promise<void> {
        const { token } = req.params;
        const valid = await this.publicSignupTokenService.validate(token);
        if (!valid) {
            return res.status(400).end();
        }
        const user = await this.publicSignupTokenService.addTokenUser(
            token,
            req.body,
        );
        this.openApiService.respondWithValidation(
            201,
            res,
            userSchema.$id,
            serializeDates(user),
        );
    }
}
Feat/invite user (#2061) * refactor: user creation screen cleanup * feat: deprecation notice for google sso * fix: docs openid typo * invite link bar * invite link page * fix prettier docs * regenerated openapi * hooks for invite page api * update openapi * feat: invite link update * feat: add public signup token soft-delete * public signup frontend feature flag * fix: new user api issues * feat: allow for creating new user from invite link * Feat/invite user public controller (#2106) * added PublicInviteController for public urls * added PublicInviteController for public urls * added PublicInviteController for public urls * added PublicInviteController for public urls * fix test * fix test * update openapi * refactor: password reset props * fix: public invite schema and validation Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> * user invite frontend Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> * invite link delete confirmation dialog * refactor: password reset action * fix: new user invite loading state * fix: run ts check with ci * revert openapi changes * fix: invite token api interface * fix: openapi schema index * fix: update test snapshots * update frontend snapshot * fix: prettier ci * fix: updates after review Co-authored-by: andreas-unleash <104830839+andreas-unleash@users.noreply.github.com> Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> 2022-09-30 13:01:32 +02:00			`import { Response } from 'express';`

			`import Controller from './controller';`
			`import { NONE } from '../types/permissions';`
			`import { Logger } from '../logger';`
			`import { IAuthRequest } from './unleash-types';`
			`import { IUnleashConfig, IUnleashServices } from '../types';`
			`import { OpenApiService } from '../services/openapi-service';`
			`import { createRequestSchema } from '../openapi/util/create-request-schema';`
			`import { createResponseSchema } from '../openapi/util/create-response-schema';`
			`import { serializeDates } from '../types/serialize-dates';`
			`import {`
			`emptyResponse,`
			`getStandardResponses,`
			`} from '../openapi/util/standard-responses';`
			`import { PublicSignupTokenService } from '../services/public-signup-token-service';`
			`import { PublicSignupTokenSchema } from '../openapi/spec/public-signup-token-schema';`
			`import { UserSchema, userSchema } from '../openapi/spec/user-schema';`
			`import { CreateInvitedUserSchema } from '../openapi/spec/create-invited-user-schema';`

			`interface TokenParam {`
			`token: string;`
			`}`

			`export class PublicInviteController extends Controller {`
			`private publicSignupTokenService: PublicSignupTokenService;`

			`private openApiService: OpenApiService;`

			`private logger: Logger;`

			`constructor(`
			`config: IUnleashConfig,`
			`{`
			`publicSignupTokenService,`
			`openApiService,`
			`}: Pick<`
			`IUnleashServices,`
			`'publicSignupTokenService' \| 'openApiService'`
			`>,`
			`) {`
			`super(config);`
			`this.publicSignupTokenService = publicSignupTokenService;`
			`this.openApiService = openApiService;`
			`this.logger = config.getLogger('validate-invite-token-controller.js');`

			`this.route({`
			`method: 'get',`
			`path: '/:token/validate',`
			`handler: this.validate,`
			`permission: NONE,`
			`middleware: [`
			`openApiService.validPath({`
			`tags: ['Public signup tokens'],`
			`operationId: 'validatePublicSignupToken',`
fixed segments not being copied (#2105) * fixed segments not being copied * fix fmt * bug fix * return segmentId[] when getting a feature strategy * do not return segments if they are not there * Update src/lib/services/feature-toggle-service.ts Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> * fix lint * fix: more explicit column sorting and bug fix * update snapshot * rollback * add segment ids to feature strategies * bug fix Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> 2022-10-10 14:32:34 +02:00			summary: `Validates a public signup token exists, has not expired and is enabled`,
Feat/invite user (#2061) * refactor: user creation screen cleanup * feat: deprecation notice for google sso * fix: docs openid typo * invite link bar * invite link page * fix prettier docs * regenerated openapi * hooks for invite page api * update openapi * feat: invite link update * feat: add public signup token soft-delete * public signup frontend feature flag * fix: new user api issues * feat: allow for creating new user from invite link * Feat/invite user public controller (#2106) * added PublicInviteController for public urls * added PublicInviteController for public urls * added PublicInviteController for public urls * added PublicInviteController for public urls * fix test * fix test * update openapi * refactor: password reset props * fix: public invite schema and validation Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> * user invite frontend Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> * invite link delete confirmation dialog * refactor: password reset action * fix: new user invite loading state * fix: run ts check with ci * revert openapi changes * fix: invite token api interface * fix: openapi schema index * fix: update test snapshots * update frontend snapshot * fix: prettier ci * fix: updates after review Co-authored-by: andreas-unleash <104830839+andreas-unleash@users.noreply.github.com> Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> 2022-09-30 13:01:32 +02:00			`responses: {`
			`200: emptyResponse,`
			`...getStandardResponses(400),`
			`},`
			`}),`
			`],`
			`});`

			`this.route({`
			`method: 'post',`
			`path: '/:token/signup',`
			`handler: this.addTokenUser,`
			`permission: NONE,`
			`middleware: [`
			`openApiService.validPath({`
			`tags: ['Public signup tokens'],`
			`operationId: 'addPublicSignupTokenUser',`
fixed segments not being copied (#2105) * fixed segments not being copied * fix fmt * bug fix * return segmentId[] when getting a feature strategy * do not return segments if they are not there * Update src/lib/services/feature-toggle-service.ts Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> * fix lint * fix: more explicit column sorting and bug fix * update snapshot * rollback * add segment ids to feature strategies * bug fix Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> 2022-10-10 14:32:34 +02:00			`summary:`
			`'Create a user with the "viewer" root role and link them to a signup token',`
Feat/invite user (#2061) * refactor: user creation screen cleanup * feat: deprecation notice for google sso * fix: docs openid typo * invite link bar * invite link page * fix prettier docs * regenerated openapi * hooks for invite page api * update openapi * feat: invite link update * feat: add public signup token soft-delete * public signup frontend feature flag * fix: new user api issues * feat: allow for creating new user from invite link * Feat/invite user public controller (#2106) * added PublicInviteController for public urls * added PublicInviteController for public urls * added PublicInviteController for public urls * added PublicInviteController for public urls * fix test * fix test * update openapi * refactor: password reset props * fix: public invite schema and validation Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> * user invite frontend Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> * invite link delete confirmation dialog * refactor: password reset action * fix: new user invite loading state * fix: run ts check with ci * revert openapi changes * fix: invite token api interface * fix: openapi schema index * fix: update test snapshots * update frontend snapshot * fix: prettier ci * fix: updates after review Co-authored-by: andreas-unleash <104830839+andreas-unleash@users.noreply.github.com> Co-authored-by: Fredrik Strand Oseberg <fredrik.no@gmail.com> 2022-09-30 13:01:32 +02:00			`requestBody: createRequestSchema('createInvitedUserSchema'),`
			`responses: {`
			`200: createResponseSchema('userSchema'),`
			`...getStandardResponses(400, 409),`
			`},`
			`}),`
			`],`
			`});`
			`}`

			`async validate(`
			`req: IAuthRequest<TokenParam, void>,`
			`res: Response<PublicSignupTokenSchema>,`
			`): Promise<void> {`
			`const { token } = req.params;`
			`const valid = await this.publicSignupTokenService.validate(token);`
			`if (valid) {`
			`return res.status(200).end();`
			`} else {`
			`return res.status(400).end();`
			`}`
			`}`

			`async addTokenUser(`
			`req: IAuthRequest<TokenParam, void, CreateInvitedUserSchema>,`
			`res: Response<UserSchema>,`
			`): Promise<void> {`
			`const { token } = req.params;`
			`const valid = await this.publicSignupTokenService.validate(token);`
			`if (!valid) {`
			`return res.status(400).end();`
			`}`
			`const user = await this.publicSignupTokenService.addTokenUser(`
			`token,`
			`req.body,`
			`);`
			`this.openApiService.respondWithValidation(`
			`201,`
			`res,`
			`userSchema.$id,`
			`serializeDates(user),`
			`);`
			`}`
			`}`