authorizer/server/resolvers/env.go

package resolvers

import (
	"context"
	"fmt"

	log "github.com/sirupsen/logrus"

	"github.com/authorizerdev/authorizer/server/constants"
	"github.com/authorizerdev/authorizer/server/graph/model"
	"github.com/authorizerdev/authorizer/server/memorystore"
	"github.com/authorizerdev/authorizer/server/token"
	"github.com/authorizerdev/authorizer/server/utils"
)

// EnvResolver is a resolver for config query
// This is admin only query
func EnvResolver(ctx context.Context) (*model.Env, error) {
	var res *model.Env

	gc, err := utils.GinContextFromContext(ctx)
	if err != nil {
		log.Debug("Failed to get GinContext: ", err)
		return res, err
	}

	if !token.IsSuperAdmin(gc) {
		log.Debug("Not logged in as super admin.")
		return res, fmt.Errorf("unauthorized")
	}

	// get clone of store
	store, err := memorystore.Provider.GetEnvStore()
	if err != nil {
		log.Debug("Failed to get env store: ", err)
		return res, err
	}
	accessTokenExpiryTime := store[constants.EnvKeyAccessTokenExpiryTime].(string)
	adminSecret := store[constants.EnvKeyAdminSecret].(string)
	clientID := store[constants.EnvKeyClientID].(string)
	clientSecret := store[constants.EnvKeyClientSecret].(string)
	databaseURL := store[constants.EnvKeyDatabaseURL].(string)
	databaseName := store[constants.EnvKeyDatabaseName].(string)
	databaseType := store[constants.EnvKeyDatabaseType].(string)
	databaseUsername := store[constants.EnvKeyDatabaseUsername].(string)
	databasePassword := store[constants.EnvKeyDatabasePassword].(string)
	databaseHost := store[constants.EnvKeyDatabaseHost].(string)
	databasePort := store[constants.EnvKeyDatabasePort].(string)
	customAccessTokenScript := store[constants.EnvKeyCustomAccessTokenScript].(string)
	smtpHost := store[constants.EnvKeySmtpHost].(string)
	smtpPort := store[constants.EnvKeySmtpPort].(string)
	smtpUsername := store[constants.EnvKeySmtpUsername].(string)
	smtpPassword := store[constants.EnvKeySmtpPassword].(string)
	senderEmail := store[constants.EnvKeySenderEmail].(string)
	jwtType := store[constants.EnvKeyJwtType].(string)
	jwtSecret := store[constants.EnvKeyJwtSecret].(string)
	jwtRoleClaim := store[constants.EnvKeyJwtRoleClaim].(string)
	jwtPublicKey := store[constants.EnvKeyJwtPublicKey].(string)
	jwtPrivateKey := store[constants.EnvKeyJwtPrivateKey].(string)
	appURL := store[constants.EnvKeyAppURL].(string)
	redisURL := store[constants.EnvKeyRedisURL].(string)
	resetPasswordURL := store[constants.EnvKeyResetPasswordURL].(string)
	googleClientID := store[constants.EnvKeyGoogleClientID].(string)
	googleClientSecret := store[constants.EnvKeyGoogleClientSecret].(string)
	facebookClientID := store[constants.EnvKeyFacebookClientID].(string)
	facebookClientSecret := store[constants.EnvKeyFacebookClientSecret].(string)
	githubClientID := store[constants.EnvKeyGithubClientID].(string)
	githubClientSecret := store[constants.EnvKeyGithubClientSecret].(string)
	organizationName := store[constants.EnvKeyOrganizationName].(string)
	organizationLogo := store[constants.EnvKeyOrganizationLogo].(string)

	// string slice vars
	allowedOrigins := utils.ConvertInterfaceToStringSlice(store[constants.EnvKeyAllowedOrigins])
	roles := utils.ConvertInterfaceToStringSlice(store[constants.EnvKeyRoles])
	defaultRoles := utils.ConvertInterfaceToStringSlice(store[constants.EnvKeyDefaultRoles])
	protectedRoles := utils.ConvertInterfaceToStringSlice(store[constants.EnvKeyProtectedRoles])

	// bool vars
	disableEmailVerification := store[constants.EnvKeyDisableEmailVerification].(bool)
	disableBasicAuthentication := store[constants.EnvKeyDisableBasicAuthentication].(bool)
	disableMagicLinkLogin := store[constants.EnvKeyDisableMagicLinkLogin].(bool)
	disableLoginPage := store[constants.EnvKeyDisableLoginPage].(bool)
	disableSignUp := store[constants.EnvKeyDisableSignUp].(bool)

	if accessTokenExpiryTime == "" {
		accessTokenExpiryTime = "30m"
	}

	res = &model.Env{
		AccessTokenExpiryTime:      &accessTokenExpiryTime,
		AdminSecret:                &adminSecret,
		DatabaseName:               databaseName,
		DatabaseURL:                databaseURL,
		DatabaseType:               databaseType,
		DatabaseUsername:           databaseUsername,
		DatabasePassword:           databasePassword,
		DatabaseHost:               databaseHost,
		DatabasePort:               databasePort,
		ClientID:                   clientID,
		ClientSecret:               clientSecret,
		CustomAccessTokenScript:    &customAccessTokenScript,
		SMTPHost:                   &smtpHost,
		SMTPPort:                   &smtpPort,
		SMTPPassword:               &smtpPassword,
		SMTPUsername:               &smtpUsername,
		SenderEmail:                &senderEmail,
		JwtType:                    &jwtType,
		JwtSecret:                  &jwtSecret,
		JwtPrivateKey:              &jwtPrivateKey,
		JwtPublicKey:               &jwtPublicKey,
		JwtRoleClaim:               &jwtRoleClaim,
		AllowedOrigins:             allowedOrigins,
		AppURL:                     &appURL,
		RedisURL:                   &redisURL,
		ResetPasswordURL:           &resetPasswordURL,
		DisableEmailVerification:   &disableEmailVerification,
		DisableBasicAuthentication: &disableBasicAuthentication,
		DisableMagicLinkLogin:      &disableMagicLinkLogin,
		DisableLoginPage:           &disableLoginPage,
		DisableSignUp:              &disableSignUp,
		Roles:                      roles,
		ProtectedRoles:             protectedRoles,
		DefaultRoles:               defaultRoles,
		GoogleClientID:             &googleClientID,
		GoogleClientSecret:         &googleClientSecret,
		GithubClientID:             &githubClientID,
		GithubClientSecret:         &githubClientSecret,
		FacebookClientID:           &facebookClientID,
		FacebookClientSecret:       &facebookClientSecret,
		OrganizationName:           &organizationName,
		OrganizationLogo:           &organizationLogo,
	}
	return res, nil
}
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`package resolvers`

			`import (`
			`"context"`
			`"fmt"`

feat: add loggging to all resolvers 2022-05-24 07:12:29 +00:00			`log "github.com/sirupsen/logrus"`

feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`"github.com/authorizerdev/authorizer/server/constants"`
			`"github.com/authorizerdev/authorizer/server/graph/model"`
fix: memory store upgrade in resolvers 2022-05-30 03:49:55 +00:00			`"github.com/authorizerdev/authorizer/server/memorystore"`
Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`"github.com/authorizerdev/authorizer/server/token"`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`"github.com/authorizerdev/authorizer/server/utils"`
			`)`

fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`// EnvResolver is a resolver for config query`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// This is admin only query`
fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`func EnvResolver(ctx context.Context) (*model.Env, error) {`
			`var res *model.Env`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00
feat: add loggging to all resolvers 2022-05-24 07:12:29 +00:00			`gc, err := utils.GinContextFromContext(ctx)`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`if err != nil {`
fix: format logs 2022-05-25 07:00:22 +00:00			`log.Debug("Failed to get GinContext: ", err)`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`return res, err`
			`}`

Implement refresh token logic with fingerprint + rotation 2022-01-22 19:54:41 +00:00			`if !token.IsSuperAdmin(gc) {`
feat: add loggging to all resolvers 2022-05-24 07:12:29 +00:00			`log.Debug("Not logged in as super admin.")`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`return res, fmt.Errorf("unauthorized")`
			`}`

Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`// get clone of store`
fix: memory store upgrade in resolvers 2022-05-30 03:49:55 +00:00			`store, err := memorystore.Provider.GetEnvStore()`
			`if err != nil {`
			`log.Debug("Failed to get env store: ", err)`
			`return res, err`
			`}`
			`accessTokenExpiryTime := store[constants.EnvKeyAccessTokenExpiryTime].(string)`
			`adminSecret := store[constants.EnvKeyAdminSecret].(string)`
			`clientID := store[constants.EnvKeyClientID].(string)`
			`clientSecret := store[constants.EnvKeyClientSecret].(string)`
			`databaseURL := store[constants.EnvKeyDatabaseURL].(string)`
			`databaseName := store[constants.EnvKeyDatabaseName].(string)`
			`databaseType := store[constants.EnvKeyDatabaseType].(string)`
			`databaseUsername := store[constants.EnvKeyDatabaseUsername].(string)`
			`databasePassword := store[constants.EnvKeyDatabasePassword].(string)`
			`databaseHost := store[constants.EnvKeyDatabaseHost].(string)`
			`databasePort := store[constants.EnvKeyDatabasePort].(string)`
			`customAccessTokenScript := store[constants.EnvKeyCustomAccessTokenScript].(string)`
			`smtpHost := store[constants.EnvKeySmtpHost].(string)`
			`smtpPort := store[constants.EnvKeySmtpPort].(string)`
			`smtpUsername := store[constants.EnvKeySmtpUsername].(string)`
			`smtpPassword := store[constants.EnvKeySmtpPassword].(string)`
			`senderEmail := store[constants.EnvKeySenderEmail].(string)`
			`jwtType := store[constants.EnvKeyJwtType].(string)`
			`jwtSecret := store[constants.EnvKeyJwtSecret].(string)`
			`jwtRoleClaim := store[constants.EnvKeyJwtRoleClaim].(string)`
			`jwtPublicKey := store[constants.EnvKeyJwtPublicKey].(string)`
			`jwtPrivateKey := store[constants.EnvKeyJwtPrivateKey].(string)`
			`appURL := store[constants.EnvKeyAppURL].(string)`
			`redisURL := store[constants.EnvKeyRedisURL].(string)`
			`resetPasswordURL := store[constants.EnvKeyResetPasswordURL].(string)`
			`googleClientID := store[constants.EnvKeyGoogleClientID].(string)`
			`googleClientSecret := store[constants.EnvKeyGoogleClientSecret].(string)`
			`facebookClientID := store[constants.EnvKeyFacebookClientID].(string)`
			`facebookClientSecret := store[constants.EnvKeyFacebookClientSecret].(string)`
			`githubClientID := store[constants.EnvKeyGithubClientID].(string)`
			`githubClientSecret := store[constants.EnvKeyGithubClientSecret].(string)`
			`organizationName := store[constants.EnvKeyOrganizationName].(string)`
			`organizationLogo := store[constants.EnvKeyOrganizationLogo].(string)`

			`// string slice vars`
			`allowedOrigins := utils.ConvertInterfaceToStringSlice(store[constants.EnvKeyAllowedOrigins])`
			`roles := utils.ConvertInterfaceToStringSlice(store[constants.EnvKeyRoles])`
			`defaultRoles := utils.ConvertInterfaceToStringSlice(store[constants.EnvKeyDefaultRoles])`
			`protectedRoles := utils.ConvertInterfaceToStringSlice(store[constants.EnvKeyProtectedRoles])`

			`// bool vars`
			`disableEmailVerification := store[constants.EnvKeyDisableEmailVerification].(bool)`
			`disableBasicAuthentication := store[constants.EnvKeyDisableBasicAuthentication].(bool)`
			`disableMagicLinkLogin := store[constants.EnvKeyDisableMagicLinkLogin].(bool)`
			`disableLoginPage := store[constants.EnvKeyDisableLoginPage].(bool)`
			`disableSignUp := store[constants.EnvKeyDisableSignUp].(bool)`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00
fix: default access token expiry time 2022-03-25 14:59:00 +00:00			`if accessTokenExpiryTime == "" {`
			`accessTokenExpiryTime = "30m"`
			`}`

fix(server): rename config -> env 2022-01-17 07:42:46 +00:00			`res = &model.Env{`
enhancement: add access_token_expiry_time env variable 2022-03-25 12:21:20 +00:00			`AccessTokenExpiryTime: &accessTokenExpiryTime,`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`AdminSecret: &adminSecret,`
fix: update_env resolver 2022-02-26 15:06:22 +00:00			`DatabaseName: databaseName,`
			`DatabaseURL: databaseURL,`
			`DatabaseType: databaseType,`
feat: add support for db username, password, host, port 2022-04-22 15:54:39 +00:00			`DatabaseUsername: databaseUsername,`
			`DatabasePassword: databasePassword,`
			`DatabaseHost: databaseHost,`
			`DatabasePort: databasePort,`
fix: update_env resolver 2022-02-26 15:06:22 +00:00			`ClientID: clientID,`
feat: add client secret 2022-02-28 07:44:16 +00:00			`ClientSecret: clientSecret,`
fix: env to return custom access token script 2022-01-24 04:52:55 +00:00			`CustomAccessTokenScript: &customAccessTokenScript,`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`SMTPHost: &smtpHost,`
			`SMTPPort: &smtpPort,`
			`SMTPPassword: &smtpPassword,`
			`SMTPUsername: &smtpUsername,`
			`SenderEmail: &senderEmail,`
			`JwtType: &jwtType,`
			`JwtSecret: &jwtSecret,`
Add support for public private key from admin apis 2022-02-12 14:04:22 +00:00			`JwtPrivateKey: &jwtPrivateKey,`
			`JwtPublicKey: &jwtPublicKey,`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`JwtRoleClaim: &jwtRoleClaim,`
			`AllowedOrigins: allowedOrigins,`
			`AppURL: &appURL,`
			`RedisURL: &redisURL,`
			`ResetPasswordURL: &resetPasswordURL,`
			`DisableEmailVerification: &disableEmailVerification,`
			`DisableBasicAuthentication: &disableBasicAuthentication,`
			`DisableMagicLinkLogin: &disableMagicLinkLogin,`
			`DisableLoginPage: &disableLoginPage,`
feat: disable user signup 2022-03-16 17:19:18 +00:00			`DisableSignUp: &disableSignUp,`
Feat/dashboard (#105) 2022-01-17 06:02:13 +00:00			`Roles: roles,`
			`ProtectedRoles: protectedRoles,`
			`DefaultRoles: defaultRoles,`
			`GoogleClientID: &googleClientID,`
			`GoogleClientSecret: &googleClientSecret,`
			`GithubClientID: &githubClientID,`
			`GithubClientSecret: &githubClientSecret,`
			`FacebookClientID: &facebookClientID,`
			`FacebookClientSecret: &facebookClientSecret,`
			`OrganizationName: &organizationName,`
			`OrganizationLogo: &organizationLogo,`
feat: add api for getting configurations 2021-12-31 11:54:22 +00:00			`}`
			`return res, nil`
			`}`