mirror of
https://github.com/n8n-io/n8n.git
synced 2024-11-14 00:24:07 -08:00
89f44021b9
* use jwt to reset password * increase expiration time to 1d * drop user id query string * refactor * use service instead of package in tests * sqlite migration * postgres migration * mysql migration * remove unused properties * remove userId from FE * fix test for users.api * move migration to the common folder * move type assertion to the jwt.service * Add jwt secret as a readonly property * use signData instead of sign in user.controller * remove base class * remove base class * add tests
289 lines
8.6 KiB
TypeScript
289 lines
8.6 KiB
TypeScript
import { Container } from 'typedi';
|
|
import cookieParser from 'cookie-parser';
|
|
import bodyParser from 'body-parser';
|
|
import express from 'express';
|
|
import { LoggerProxy } from 'n8n-workflow';
|
|
import type superagent from 'superagent';
|
|
import request from 'supertest';
|
|
import { URL } from 'url';
|
|
|
|
import config from '@/config';
|
|
import * as Db from '@/Db';
|
|
import { ExternalHooks } from '@/ExternalHooks';
|
|
import { ActiveWorkflowRunner } from '@/ActiveWorkflowRunner';
|
|
import { workflowsController } from '@/workflows/workflows.controller';
|
|
import { AUTH_COOKIE_NAME } from '@/constants';
|
|
import { credentialsController } from '@/credentials/credentials.controller';
|
|
import type { User } from '@db/entities/User';
|
|
import { getLogger } from '@/Logger';
|
|
import { loadPublicApiVersions } from '@/PublicApi/';
|
|
import { issueJWT } from '@/auth/jwt';
|
|
import { UserManagementMailer } from '@/UserManagement/email/UserManagementMailer';
|
|
import { licenseController } from '@/license/license.controller';
|
|
import { registerController } from '@/decorators';
|
|
import {
|
|
AuthController,
|
|
LdapController,
|
|
MeController,
|
|
NodesController,
|
|
OwnerController,
|
|
PasswordResetController,
|
|
TagsController,
|
|
UsersController,
|
|
} from '@/controllers';
|
|
import { setupAuthMiddlewares } from '@/middlewares';
|
|
|
|
import { InternalHooks } from '@/InternalHooks';
|
|
import { LoadNodesAndCredentials } from '@/LoadNodesAndCredentials';
|
|
import { PostHogClient } from '@/posthog';
|
|
import { variablesController } from '@/environments/variables/variables.controller';
|
|
import { LdapManager } from '@/Ldap/LdapManager.ee';
|
|
import { handleLdapInit } from '@/Ldap/helpers';
|
|
import { Push } from '@/push';
|
|
import { setSamlLoginEnabled } from '@/sso/saml/samlHelpers';
|
|
import { SamlController } from '@/sso/saml/routes/saml.controller.ee';
|
|
import { EventBusController } from '@/eventbus/eventBus.controller';
|
|
import { License } from '@/License';
|
|
import { SourceControlController } from '@/environments/sourceControl/sourceControl.controller.ee';
|
|
|
|
import * as testDb from '../../shared/testDb';
|
|
import { AUTHLESS_ENDPOINTS, PUBLIC_API_REST_PATH_SEGMENT, REST_PATH_SEGMENT } from '../constants';
|
|
import type { EndpointGroup, SetupProps, TestServer } from '../types';
|
|
import { mockInstance } from './mocking';
|
|
import { JwtService } from '@/services/jwt.service';
|
|
|
|
/**
|
|
* Plugin to prefix a path segment into a request URL pathname.
|
|
*
|
|
* Example: http://127.0.0.1:62100/me/password → http://127.0.0.1:62100/rest/me/password
|
|
*/
|
|
function prefix(pathSegment: string) {
|
|
return async function (request: superagent.SuperAgentRequest) {
|
|
const url = new URL(request.url);
|
|
|
|
// enforce consistency at call sites
|
|
if (url.pathname[0] !== '/') {
|
|
throw new Error('Pathname must start with a forward slash');
|
|
}
|
|
|
|
url.pathname = pathSegment + url.pathname;
|
|
request.url = url.toString();
|
|
return request;
|
|
};
|
|
}
|
|
|
|
/**
|
|
* Classify endpoint groups into `routerEndpoints` (newest, using `express.Router`),
|
|
* and `functionEndpoints` (legacy, namespaced inside a function).
|
|
*/
|
|
const classifyEndpointGroups = (endpointGroups: EndpointGroup[]) => {
|
|
const routerEndpoints: EndpointGroup[] = [];
|
|
const functionEndpoints: EndpointGroup[] = [];
|
|
|
|
const ROUTER_GROUP = ['credentials', 'workflows', 'publicApi', 'license', 'variables'];
|
|
|
|
endpointGroups.forEach((group) =>
|
|
(ROUTER_GROUP.includes(group) ? routerEndpoints : functionEndpoints).push(group),
|
|
);
|
|
|
|
return [routerEndpoints, functionEndpoints];
|
|
};
|
|
|
|
function createAgent(app: express.Application, options?: { auth: boolean; user: User }) {
|
|
const agent = request.agent(app);
|
|
void agent.use(prefix(REST_PATH_SEGMENT));
|
|
if (options?.auth && options?.user) {
|
|
try {
|
|
const { token } = issueJWT(options.user);
|
|
agent.jar.setCookie(`${AUTH_COOKIE_NAME}=${token}`);
|
|
} catch {}
|
|
}
|
|
return agent;
|
|
}
|
|
|
|
function publicApiAgent(
|
|
app: express.Application,
|
|
{ user, version = 1 }: { user: User; version?: number },
|
|
) {
|
|
const agent = request.agent(app);
|
|
void agent.use(prefix(`${PUBLIC_API_REST_PATH_SEGMENT}/v${version}`));
|
|
if (user.apiKey) {
|
|
void agent.set({ 'X-N8N-API-KEY': user.apiKey });
|
|
}
|
|
return agent;
|
|
}
|
|
|
|
export const setupTestServer = ({
|
|
endpointGroups,
|
|
applyAuth = true,
|
|
enabledFeatures,
|
|
}: SetupProps): TestServer => {
|
|
const app = express();
|
|
const testServer: TestServer = {
|
|
app,
|
|
httpServer: app.listen(0),
|
|
authAgentFor: (user: User) => createAgent(app, { auth: true, user }),
|
|
authlessAgent: createAgent(app),
|
|
publicApiAgentFor: (user) => publicApiAgent(app, { user }),
|
|
};
|
|
|
|
beforeAll(async () => {
|
|
await testDb.init();
|
|
|
|
const logger = getLogger();
|
|
LoggerProxy.init(logger);
|
|
|
|
// Mock all telemetry.
|
|
mockInstance(InternalHooks);
|
|
mockInstance(PostHogClient);
|
|
|
|
app.use(bodyParser.json());
|
|
app.use(bodyParser.urlencoded({ extended: true }));
|
|
app.use(cookieParser());
|
|
|
|
config.set('userManagement.jwtSecret', 'My JWT secret');
|
|
config.set('userManagement.isInstanceOwnerSetUp', true);
|
|
|
|
if (enabledFeatures) {
|
|
Container.get(License).isFeatureEnabled = (feature) => enabledFeatures.includes(feature);
|
|
}
|
|
|
|
const enablePublicAPI = endpointGroups?.includes('publicApi');
|
|
if (applyAuth && !enablePublicAPI) {
|
|
setupAuthMiddlewares(app, AUTHLESS_ENDPOINTS, REST_PATH_SEGMENT);
|
|
}
|
|
|
|
if (!endpointGroups) return;
|
|
|
|
const [routerEndpoints, functionEndpoints] = classifyEndpointGroups(endpointGroups);
|
|
|
|
if (routerEndpoints.length) {
|
|
const map: Record<string, express.Router | express.Router[] | any> = {
|
|
credentials: { controller: credentialsController, path: 'credentials' },
|
|
workflows: { controller: workflowsController, path: 'workflows' },
|
|
license: { controller: licenseController, path: 'license' },
|
|
variables: { controller: variablesController, path: 'variables' },
|
|
};
|
|
|
|
if (enablePublicAPI) {
|
|
const { apiRouters } = await loadPublicApiVersions(PUBLIC_API_REST_PATH_SEGMENT);
|
|
map.publicApi = apiRouters;
|
|
}
|
|
|
|
for (const group of routerEndpoints) {
|
|
if (group === 'publicApi') {
|
|
app.use(...(map[group] as express.Router[]));
|
|
} else {
|
|
app.use(`/${REST_PATH_SEGMENT}/${map[group].path}`, map[group].controller);
|
|
}
|
|
}
|
|
}
|
|
|
|
if (functionEndpoints.length) {
|
|
const externalHooks = Container.get(ExternalHooks);
|
|
const internalHooks = Container.get(InternalHooks);
|
|
const mailer = Container.get(UserManagementMailer);
|
|
const jwtService = Container.get(JwtService);
|
|
const repositories = Db.collections;
|
|
|
|
for (const group of functionEndpoints) {
|
|
switch (group) {
|
|
case 'eventBus':
|
|
registerController(app, config, new EventBusController());
|
|
break;
|
|
case 'auth':
|
|
registerController(
|
|
app,
|
|
config,
|
|
new AuthController({ config, logger, internalHooks, repositories }),
|
|
);
|
|
break;
|
|
case 'ldap':
|
|
Container.get(License).isLdapEnabled = () => true;
|
|
await handleLdapInit();
|
|
const { service, sync } = LdapManager.getInstance();
|
|
registerController(app, config, new LdapController(service, sync, internalHooks));
|
|
break;
|
|
case 'saml':
|
|
await setSamlLoginEnabled(true);
|
|
registerController(app, config, Container.get(SamlController));
|
|
break;
|
|
case 'sourceControl':
|
|
registerController(app, config, Container.get(SourceControlController));
|
|
break;
|
|
case 'nodes':
|
|
registerController(
|
|
app,
|
|
config,
|
|
new NodesController(
|
|
config,
|
|
Container.get(LoadNodesAndCredentials),
|
|
Container.get(Push),
|
|
internalHooks,
|
|
),
|
|
);
|
|
case 'me':
|
|
registerController(
|
|
app,
|
|
config,
|
|
new MeController({ logger, externalHooks, internalHooks, repositories }),
|
|
);
|
|
break;
|
|
case 'passwordReset':
|
|
registerController(
|
|
app,
|
|
config,
|
|
new PasswordResetController({
|
|
config,
|
|
logger,
|
|
externalHooks,
|
|
internalHooks,
|
|
mailer,
|
|
repositories,
|
|
jwtService,
|
|
}),
|
|
);
|
|
break;
|
|
case 'owner':
|
|
registerController(
|
|
app,
|
|
config,
|
|
new OwnerController({ config, logger, internalHooks, repositories }),
|
|
);
|
|
break;
|
|
case 'users':
|
|
registerController(
|
|
app,
|
|
config,
|
|
new UsersController({
|
|
config,
|
|
mailer,
|
|
externalHooks,
|
|
internalHooks,
|
|
repositories,
|
|
activeWorkflowRunner: Container.get(ActiveWorkflowRunner),
|
|
logger,
|
|
jwtService,
|
|
}),
|
|
);
|
|
break;
|
|
case 'tags':
|
|
registerController(
|
|
app,
|
|
config,
|
|
new TagsController({ config, externalHooks, repositories }),
|
|
);
|
|
break;
|
|
}
|
|
}
|
|
}
|
|
});
|
|
|
|
afterAll(async () => {
|
|
await testDb.terminate();
|
|
testServer.httpServer.close();
|
|
});
|
|
|
|
return testServer;
|
|
};
|