mirror of
https://github.com/Unleash/unleash.git
synced 2025-02-09 00:18:00 +01:00
cf2bd28ff6
I've tried to use/add the audit info to all events I could see/find. This makes this PR necessarily huge, because we do store quite a few events. I realise it might not be complete yet, but tests run green, and I think we now have a pattern to follow for other events.
111 lines
3.1 KiB
TypeScript
111 lines
3.1 KiB
TypeScript
import {
|
|
type IAuditUser,
|
|
type IUnleashConfig,
|
|
type IUnleashStores,
|
|
PatCreatedEvent,
|
|
PatDeletedEvent,
|
|
} from '../types';
|
|
import type { Logger } from '../logger';
|
|
import type { IPatStore } from '../types/stores/pat-store';
|
|
import crypto from 'crypto';
|
|
import BadDataError from '../error/bad-data-error';
|
|
import NameExistsError from '../error/name-exists-error';
|
|
import { OperationDeniedError } from '../error/operation-denied-error';
|
|
import { PAT_LIMIT } from '../util/constants';
|
|
import type EventService from '../features/events/event-service';
|
|
import type { CreatePatSchema, PatSchema } from '../openapi';
|
|
|
|
export default class PatService {
|
|
private config: IUnleashConfig;
|
|
|
|
private logger: Logger;
|
|
|
|
private patStore: IPatStore;
|
|
|
|
private eventService: EventService;
|
|
|
|
constructor(
|
|
{ patStore }: Pick<IUnleashStores, 'patStore'>,
|
|
config: IUnleashConfig,
|
|
eventService: EventService,
|
|
) {
|
|
this.config = config;
|
|
this.logger = config.getLogger('services/pat-service.ts');
|
|
this.patStore = patStore;
|
|
this.eventService = eventService;
|
|
}
|
|
|
|
async createPat(
|
|
pat: CreatePatSchema,
|
|
forUserId: number,
|
|
auditUser: IAuditUser,
|
|
): Promise<PatSchema> {
|
|
await this.validatePat(pat, forUserId);
|
|
|
|
const secret = this.generateSecretKey();
|
|
const newPat = await this.patStore.create(pat, secret, forUserId);
|
|
|
|
await this.eventService.storeEvent(
|
|
new PatCreatedEvent({
|
|
data: { ...pat, secret: '***' },
|
|
auditUser,
|
|
}),
|
|
);
|
|
|
|
return { ...newPat, secret };
|
|
}
|
|
|
|
async getAll(userId: number): Promise<PatSchema[]> {
|
|
return this.patStore.getAllByUser(userId);
|
|
}
|
|
|
|
async deletePat(
|
|
id: number,
|
|
forUserId: number,
|
|
auditUser: IAuditUser,
|
|
): Promise<void> {
|
|
const pat = await this.patStore.get(id);
|
|
|
|
await this.eventService.storeEvent(
|
|
new PatDeletedEvent({
|
|
data: { ...pat, secret: '***' },
|
|
auditUser,
|
|
}),
|
|
);
|
|
|
|
return this.patStore.deleteForUser(id, forUserId);
|
|
}
|
|
|
|
async validatePat(
|
|
{ description, expiresAt }: CreatePatSchema,
|
|
userId: number,
|
|
): Promise<void> {
|
|
if (!description) {
|
|
throw new BadDataError('PAT description cannot be empty.');
|
|
}
|
|
|
|
if (new Date(expiresAt) < new Date()) {
|
|
throw new BadDataError('The expiry date should be in future.');
|
|
}
|
|
|
|
if ((await this.patStore.countByUser(userId)) >= PAT_LIMIT) {
|
|
throw new OperationDeniedError(
|
|
`Too many PATs (${PAT_LIMIT}) already exist for this user.`,
|
|
);
|
|
}
|
|
|
|
if (
|
|
await this.patStore.existsWithDescriptionByUser(description, userId)
|
|
) {
|
|
throw new NameExistsError('PAT description already exists.');
|
|
}
|
|
}
|
|
|
|
private generateSecretKey() {
|
|
const randomStr = crypto.randomBytes(28).toString('hex');
|
|
return `user:${randomStr}`;
|
|
}
|
|
}
|
|
|
|
module.exports = PatService;
|