mirror of
https://github.com/Unleash/unleash.git
synced 2025-07-12 13:48:35 +02:00
sjaanus
GitHub
parent
c501fb221c
commit
e3a185d650
@ -17,6 +17,7 @@ import {
|
|||||||
import UserService from './user-service';
|
import UserService from './user-service';
|
||||||
import { IUser } from '../types/user';
|
import { IUser } from '../types/user';
|
||||||
import { URL } from 'url';
|
import { URL } from 'url';
|
||||||
|
import { add } from 'date-fns';
|
||||||
|
|
||||||
export class PublicSignupTokenService {
|
export class PublicSignupTokenService {
|
||||||
private store: IPublicSignupTokenStore;
|
private store: IPublicSignupTokenStore;
|
||||||
@ -118,9 +119,13 @@ export class PublicSignupTokenService {
|
|||||||
const viewerRole = await this.roleStore.getRoleByName(RoleName.VIEWER);
|
const viewerRole = await this.roleStore.getRoleByName(RoleName.VIEWER);
|
||||||
const secret = this.generateSecretKey();
|
const secret = this.generateSecretKey();
|
||||||
const url = this.getUrl(secret);
|
const url = this.getUrl(secret);
|
||||||
|
const cappedDate = this.getMinimumDate(
|
||||||
|
new Date(tokenCreate.expiresAt),
|
||||||
|
add(new Date(), { months: 1 }),
|
||||||
|
);
|
||||||
const newToken: IPublicSignupTokenCreate = {
|
const newToken: IPublicSignupTokenCreate = {
|
||||||
name: tokenCreate.name,
|
name: tokenCreate.name,
|
||||||
expiresAt: new Date(tokenCreate.expiresAt),
|
expiresAt: cappedDate,
|
||||||
secret: secret,
|
secret: secret,
|
||||||
roleId: viewerRole ? viewerRole.id : -1,
|
roleId: viewerRole ? viewerRole.id : -1,
|
||||||
createdBy: createdBy,
|
createdBy: createdBy,
|
||||||
@ -141,6 +146,10 @@ export class PublicSignupTokenService {
|
|||||||
return crypto.randomBytes(16).toString('hex');
|
return crypto.randomBytes(16).toString('hex');
|
||||||
}
|
}
|
||||||
|
|
||||||
|
private getMinimumDate(date1: Date, date2: Date): Date {
|
||||||
|
return date1 < date2 ? date1 : date2;
|
||||||
|
}
|
||||||
|
|
||||||
destroy(): void {
|
destroy(): void {
|
||||||
clearInterval(this.timer);
|
clearInterval(this.timer);
|
||||||
this.timer = null;
|
this.timer = null;
|
||||||
|
|||||||
@ -214,3 +214,37 @@ test('can get a token with users', async () => {
|
|||||||
|
|
||||||
await destroy();
|
await destroy();
|
||||||
});
|
});
|
||||||
|
|
||||||
|
test('should not be able to set expiry further than 1 month', async () => {
|
||||||
|
const preHook = (app, config, { userService, accessService }) => {
|
||||||
|
app.use('/api/admin/', async (req, res, next) => {
|
||||||
|
const role = await accessService.getRootRole(RoleName.ADMIN);
|
||||||
|
const user = await userService.createUser({
|
||||||
|
email: 'admin@example.com',
|
||||||
|
rootRole: role.id,
|
||||||
|
});
|
||||||
|
req.user = user;
|
||||||
|
next();
|
||||||
|
});
|
||||||
|
};
|
||||||
|
|
||||||
|
const { request, destroy } = await setupAppWithCustomAuth(stores, preHook);
|
||||||
|
|
||||||
|
const tokenCreate: PublicSignupTokenCreateSchema = {
|
||||||
|
name: 'some-name',
|
||||||
|
expiresAt: expireAt(100).toISOString(),
|
||||||
|
};
|
||||||
|
|
||||||
|
await request
|
||||||
|
.post('/api/admin/invite-link/tokens')
|
||||||
|
.send(tokenCreate)
|
||||||
|
.expect('Content-Type', /json/)
|
||||||
|
.expect(201)
|
||||||
|
.expect((res) => {
|
||||||
|
expect(new Date(res.body.expiresAt).getTime()).toBeLessThan(
|
||||||
|
expireAt(31).getTime(),
|
||||||
|
);
|
||||||
|
});
|
||||||
|
|
||||||
|
await destroy();
|
||||||
|
});
|
||||||
|
|||||||
Loading…
Reference in New Issue
Block a user