2021-12-31 11:33:37 +00:00
|
|
|
package resolvers
|
|
|
|
|
|
|
|
|
|
import (
|
|
|
|
|
"context"
|
|
|
|
|
"encoding/json"
|
2022-01-17 07:50:32 +00:00
|
|
|
"errors"
|
2021-12-31 11:33:37 +00:00
|
|
|
"fmt"
|
|
|
|
|
"log"
|
|
|
|
|
"reflect"
|
|
|
|
|
|
|
|
|
|
"github.com/authorizerdev/authorizer/server/constants"
|
|
|
|
|
"github.com/authorizerdev/authorizer/server/db"
|
2022-01-17 06:02:13 +00:00
|
|
|
"github.com/authorizerdev/authorizer/server/envstore"
|
2021-12-31 11:33:37 +00:00
|
|
|
"github.com/authorizerdev/authorizer/server/graph/model"
|
|
|
|
|
"github.com/authorizerdev/authorizer/server/utils"
|
2022-01-17 07:50:32 +00:00
|
|
|
"golang.org/x/crypto/bcrypt"
|
2021-12-31 11:33:37 +00:00
|
|
|
)
|
|
|
|
|
|
2022-01-17 07:42:46 +00:00
|
|
|
// UpdateEnvResolver is a resolver for update config mutation
|
2022-01-17 06:02:13 +00:00
|
|
|
// This is admin only mutation
|
2022-01-17 07:42:46 +00:00
|
|
|
func UpdateEnvResolver(ctx context.Context, params model.UpdateEnvInput) (*model.Response, error) {
|
2021-12-31 11:33:37 +00:00
|
|
|
gc, err := utils.GinContextFromContext(ctx)
|
|
|
|
|
var res *model.Response
|
|
|
|
|
|
|
|
|
|
if err != nil {
|
|
|
|
|
return res, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if !utils.IsSuperAdmin(gc) {
|
|
|
|
|
return res, fmt.Errorf("unauthorized")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var data map[string]interface{}
|
|
|
|
|
byteData, err := json.Marshal(params)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return res, fmt.Errorf("error marshalling params: %t", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err = json.Unmarshal(byteData, &data)
|
|
|
|
|
if err != nil {
|
|
|
|
|
return res, fmt.Errorf("error un-marshalling params: %t", err)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
updatedData := make(map[string]interface{})
|
|
|
|
|
for key, value := range data {
|
|
|
|
|
if value != nil {
|
|
|
|
|
fieldType := reflect.TypeOf(value).String()
|
|
|
|
|
|
|
|
|
|
if fieldType == "string" || fieldType == "bool" {
|
|
|
|
|
updatedData[key] = value
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if fieldType == "[]interface {}" {
|
|
|
|
|
stringArr := []string{}
|
|
|
|
|
for _, v := range value.([]interface{}) {
|
|
|
|
|
stringArr = append(stringArr, v.(string))
|
|
|
|
|
}
|
|
|
|
|
updatedData[key] = stringArr
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// handle derivative cases like disabling email verification & magic login
|
|
|
|
|
// in case SMTP is off but env is set to true
|
2022-01-17 06:02:13 +00:00
|
|
|
if updatedData[constants.EnvKeySmtpHost] == "" || updatedData[constants.EnvKeySenderEmail] == "" || updatedData[constants.EnvKeySmtpPort] == "" || updatedData[constants.EnvKeySmtpUsername] == "" || updatedData[constants.EnvKeySmtpPassword] == "" {
|
|
|
|
|
if !updatedData[constants.EnvKeyDisableEmailVerification].(bool) {
|
|
|
|
|
updatedData[constants.EnvKeyDisableEmailVerification] = true
|
2021-12-31 11:33:37 +00:00
|
|
|
}
|
|
|
|
|
|
2022-01-17 06:02:13 +00:00
|
|
|
if !updatedData[constants.EnvKeyDisableMagicLinkLogin].(bool) {
|
|
|
|
|
updatedData[constants.EnvKeyDisableMagicLinkLogin] = true
|
2021-12-31 11:33:37 +00:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
config, err := db.Mgr.GetConfig()
|
|
|
|
|
if err != nil {
|
|
|
|
|
return res, err
|
|
|
|
|
}
|
|
|
|
|
|
2022-01-17 06:02:13 +00:00
|
|
|
envstore.EnvInMemoryStoreObj.UpdateEnvStore(updatedData)
|
|
|
|
|
|
|
|
|
|
encryptedConfig, err := utils.EncryptEnvData(updatedData)
|
2021-12-31 11:33:37 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return res, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// in case of db change re-initialize db
|
|
|
|
|
if params.DatabaseType != nil || params.DatabaseURL != nil || params.DatabaseName != nil {
|
|
|
|
|
db.InitDB()
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// in case of admin secret change update the cookie with new hash
|
|
|
|
|
if params.AdminSecret != nil {
|
2022-01-17 07:50:32 +00:00
|
|
|
if params.OldAdminSecret == nil {
|
|
|
|
|
return res, errors.New("admin secret and old admin secret are required for secret change")
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
err := bcrypt.CompareHashAndPassword([]byte(*params.OldAdminSecret), []byte(envstore.EnvInMemoryStoreObj.GetEnvVariable(constants.EnvKeyAdminSecret).(string)))
|
|
|
|
|
if err != nil {
|
|
|
|
|
return res, errors.New("old admin secret is not correct")
|
|
|
|
|
}
|
|
|
|
|
|
2022-01-17 06:02:13 +00:00
|
|
|
hashedKey, err := utils.EncryptPassword(envstore.EnvInMemoryStoreObj.GetEnvVariable(constants.EnvKeyAdminSecret).(string))
|
2021-12-31 11:33:37 +00:00
|
|
|
if err != nil {
|
|
|
|
|
return res, err
|
|
|
|
|
}
|
|
|
|
|
utils.SetAdminCookie(gc, hashedKey)
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
config.Config = encryptedConfig
|
|
|
|
|
_, err = db.Mgr.UpdateConfig(config)
|
|
|
|
|
if err != nil {
|
|
|
|
|
log.Println("error updating config:", err)
|
|
|
|
|
return res, err
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
res = &model.Response{
|
|
|
|
|
Message: "configurations updated successfully",
|
|
|
|
|
}
|
|
|
|
|
return res, nil
|
|
|
|
|
}
|
