Compare commits
	
		
			21 Commits
		
	
	
		
	
	| Author | SHA1 | Date | |
|---|---|---|---|
| 8fa4ed7c33 | |||
| c4201e9a68 | |||
| 78dcad0857 | |||
| 93e0cdf577 | |||
| 6efcd94726 | |||
| 2e271bcd52 | |||
| ebde8c6ffd | |||
| a3639dd89b | |||
| 0a43f1bb5b | |||
| 8c6fdb2239 | |||
| c0d5af5d7a | |||
| 4008a5ee72 | |||
| 07bf28b144 | |||
| 6764bf80ea | |||
| b3a73b25e8 | |||
| bda1f971d1 | |||
| 765ef84903 | |||
| 296ba8ddab | |||
| 6eff243803 | |||
| 0f4c8b2051 | |||
| d842c14240 | 
| @@ -7,4 +7,5 @@ DB_PASSWORD=bla | ||||
| DB_NAME=./test.sqlite | ||||
| NODE_ENV=production | ||||
| POSTALCODE_COUNTRYCODE=DE | ||||
| SEED_TEST_DATA=false | ||||
| SEED_TEST_DATA=false | ||||
| SELFSERVICE_URL=bla | ||||
							
								
								
									
										33
									
								
								.gitea/workflows/release.yml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										33
									
								
								.gitea/workflows/release.yml
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,33 @@ | ||||
| name: Build release images | ||||
| on: | ||||
|   push: | ||||
|     tags: | ||||
|       - "*.*.*" | ||||
|  | ||||
| jobs: | ||||
|   build-container: | ||||
|     runs-on: ubuntu-latest | ||||
|     steps: | ||||
|       - name: Checkout | ||||
|         uses: actions/checkout@v4 | ||||
|       - name: Set up Node.js | ||||
|         uses: actions/setup-node@v4 | ||||
|         with: | ||||
|           node-version: 19 | ||||
|       - run: npm i -g pnpm@8 && pnpm i | ||||
|       - run: pnpm licenses:export | ||||
|       - name: Login to registry | ||||
|         uses: docker/login-action@v3 | ||||
|         with: | ||||
|           registry: registry.odit.services | ||||
|           username: ${{ vars.REGISTRY_USERNAME }} | ||||
|           password: ${{ secrets.REGISTRY_PASSWORD }} | ||||
|       - name: Set up Docker Buildx | ||||
|         uses: docker/setup-buildx-action@v3 | ||||
|       - name: Build and push | ||||
|         uses: docker/build-push-action@v6 | ||||
|         with: | ||||
|           push: true | ||||
|           tags: | | ||||
|             ${{ vars.REGISTRY }}/lfk/backend:${{ github.ref_name }} | ||||
|           platforms: linux/amd64,linux/arm64 | ||||
							
								
								
									
										3
									
								
								.vscode/settings.json
									
									
									
									
										vendored
									
									
								
							
							
						
						
									
										3
									
								
								.vscode/settings.json
									
									
									
									
										vendored
									
									
								
							| @@ -9,8 +9,7 @@ | ||||
|     "[typescript]": { | ||||
|         "editor.defaultFormatter": "vscode.typescript-language-features", | ||||
|         "editor.codeActionsOnSave": { | ||||
|             "source.organizeImports": true, | ||||
|             // "source.fixAll": true | ||||
|             "source.organizeImports": "explicit" | ||||
|         } | ||||
|     }, | ||||
|     "javascript.preferences.quoteStyle": "single", | ||||
|   | ||||
| @@ -1,39 +0,0 @@ | ||||
| steps: | ||||
|   - name: build latest | ||||
|     image: woodpeckerci/plugin-docker-buildx | ||||
|     settings: | ||||
|       repo: registry.odit.services/lfk/backend | ||||
|       tags: | ||||
|         - latest | ||||
|       registry: registry.odit.services | ||||
|       platforms: linux/amd64,linux/arm64 | ||||
|       cache_from: registry.odit.services/lfk/backend:latest | ||||
|       username: | ||||
|         from_secret: odit-registry-builder-username | ||||
|       password: | ||||
|         from_secret: odit-registry-builder-password | ||||
|     secrets: | ||||
|       - source: odit-npm-cache-url | ||||
|         target: NPM_REGISTRY_URL | ||||
|     when: | ||||
|       branch: main | ||||
|   - name: build dev | ||||
|     image: woodpeckerci/plugin-docker-buildx | ||||
|     settings: | ||||
|       repo: registry.odit.services/lfk/backend | ||||
|       tags: | ||||
|         - dev | ||||
|       registry: registry.odit.services | ||||
|       platforms: linux/amd64,linux/arm64 | ||||
|       cache_from: registry.odit.services/lfk/backend:dev | ||||
|       username: | ||||
|         from_secret: odit-registry-builder-username | ||||
|       password: | ||||
|         from_secret: odit-registry-builder-password | ||||
|     secrets: | ||||
|       - source: odit-npm-cache-url | ||||
|         target: NPM_REGISTRY_URL | ||||
|     when: | ||||
|       branch: dev | ||||
| when: | ||||
|   event: push | ||||
| @@ -1,29 +0,0 @@ | ||||
| steps: | ||||
|   - name: build tag | ||||
|     image: woodpeckerci/plugin-docker-buildx | ||||
|     settings: | ||||
|       repo: registry.odit.services/lfk/backend | ||||
|       tags: | ||||
|         - "${CI_COMMIT_TAG}" | ||||
|       registry: registry.odit.services | ||||
|       platforms: linux/amd64,linux/arm64 | ||||
|       cache_from: registry.odit.services/lfk/backend:latest | ||||
|       username: | ||||
|         from_secret: odit-registry-builder-username | ||||
|       password: | ||||
|         from_secret: odit-registry-builder-password | ||||
|     secrets: | ||||
|       - source: odit-npm-cache-url | ||||
|         target: NPM_REGISTRY_URL | ||||
|   - name: trigger js lib build | ||||
|     image: woodpeckerci/plugin-trigger | ||||
|     settings: | ||||
|       repositories: | ||||
|         - lfk/lfk-client-js | ||||
|       params: | ||||
|         - "SOURCE_TAG=${CI_COMMIT_TAG}" | ||||
|       token: | ||||
|         from_secret: odit-ci-bot-apikey | ||||
|  | ||||
| when: | ||||
|   event: tag | ||||
| @@ -1,13 +0,0 @@ | ||||
| steps: | ||||
|   - name: playwright tests | ||||
|     image: registry.odit.services/hub/library/node:19.5.0-alpine3.16 | ||||
|     commands: | ||||
|       - npm config set registry $NPM_REGISTRY_URL && npm i -g pnpm@8 | ||||
|       - pnpm i | ||||
|       - pnpm test:ci | ||||
|     secrets: | ||||
|       - source: odit-npm-cache-url | ||||
|         target: NPM_REGISTRY_URL | ||||
| when: | ||||
|   event: | ||||
|     - pull_request | ||||
							
								
								
									
										42
									
								
								CHANGELOG.md
									
									
									
									
									
								
							
							
						
						
									
										42
									
								
								CHANGELOG.md
									
									
									
									
									
								
							| @@ -2,13 +2,55 @@ | ||||
|  | ||||
| All notable changes to this project will be documented in this file. Dates are displayed in UTC. | ||||
|  | ||||
| #### [1.3.1](https://git.odit.services/lfk/backend/compare/1.3.0...1.3.1) | ||||
|  | ||||
| - fix: TypeError: Cannot read properties of undefined (reading 'filter') - when trying to delete a org/team with runners [`#210`](https://git.odit.services/lfk/backend/issues/210) | ||||
| - pnpm@10.7, node@23, argon->@node-rs/argon2 [`78dcad0`](https://git.odit.services/lfk/backend/commit/78dcad085794c93829499dd550a786c38d6186f5) | ||||
|  | ||||
| #### [1.3.0](https://git.odit.services/lfk/backend/compare/1.2.1...1.3.0) | ||||
|  | ||||
| > 28 March 2025 | ||||
|  | ||||
| - feat: created_via for tracking how runners got into the system [`#212`](https://git.odit.services/lfk/backend/pull/212) | ||||
| - feat: created_via for tracking how runners got into the system (#212) [`#211`](https://git.odit.services/lfk/backend/issues/211) | ||||
| - ci: move to gitea workflows [`ebde8c6`](https://git.odit.services/lfk/backend/commit/ebde8c6ffd8b17c6752da8c4d8eb3095105f6132) | ||||
| - chore(release): v1.3.0 [`93e0cdf`](https://git.odit.services/lfk/backend/commit/93e0cdf577654898b2d63790d91598c458a2db59) | ||||
| - build: docker "AS" casing [`0a43f1b`](https://git.odit.services/lfk/backend/commit/0a43f1bb5b26d3acb0d4d91648473f0dc55e8637) | ||||
| - ci: change release commit message [`6efcd94`](https://git.odit.services/lfk/backend/commit/6efcd94726957b8c527820f1a9b0130151ce22f1) | ||||
| - refactor(RunnerController.remove): only load necessary relations [`8c6fdb2`](https://git.odit.services/lfk/backend/commit/8c6fdb22390218e385780fadb3bdaf32148ac054) | ||||
| - refactor(RunnerTeamController.remove): only load necessary relations [`c0d5af5`](https://git.odit.services/lfk/backend/commit/c0d5af5d7ab44cfdf19014e0d774fb560d08f6d7) | ||||
| - fix: add .created_via to ResponseParticipant constructor [`2e271bc`](https://git.odit.services/lfk/backend/commit/2e271bcd52f02ab7449cd15916b0afc86e8b0a90) | ||||
|  | ||||
| #### [1.2.1](https://git.odit.services/lfk/backend/compare/1.2.0...1.2.1) | ||||
|  | ||||
| > 11 December 2024 | ||||
|  | ||||
| - refactor: allow selfservice link every 30s [`07bf28b`](https://git.odit.services/lfk/backend/commit/07bf28b14458849930748ce041fb65e572759482) | ||||
| - chore(release): 1.2.1 [`4008a5e`](https://git.odit.services/lfk/backend/commit/4008a5ee720b212bac9cba64417058bf4526060b) | ||||
|  | ||||
| #### [1.2.0](https://git.odit.services/lfk/backend/compare/v1.1.4...1.2.0) | ||||
|  | ||||
| > 11 December 2024 | ||||
|  | ||||
| - refactor: move to new mailer [`0f4c8b2`](https://git.odit.services/lfk/backend/commit/0f4c8b2051cae17fbdd7e02017ad5b41c61e210c) | ||||
| - refactor(ci): Switch to new woodpecker [`b3a73b2`](https://git.odit.services/lfk/backend/commit/b3a73b25e80a0466ff83e43481271fc0cd499a0d) | ||||
| - feat: middlename [`6eff243`](https://git.odit.services/lfk/backend/commit/6eff2438035b368eb45931fad9402a6cb942b350) | ||||
| - SELFSERVICE_URL [`765ef84`](https://git.odit.services/lfk/backend/commit/765ef849035ca4f8b2253bb76d15be8e9a3e6763) | ||||
| - FRONTEND_URL env [`296ba8d`](https://git.odit.services/lfk/backend/commit/296ba8ddab1dba46f8201829d9a7e5fc1c88c0f8) | ||||
| - chore: update readme [`d842c14`](https://git.odit.services/lfk/backend/commit/d842c14240fb4a7f70c66143bbe877f8168ef6d4) | ||||
| - chore(release): 1.2.0 [`6764bf8`](https://git.odit.services/lfk/backend/commit/6764bf80eac832d186e688319d8a959543a1495f) | ||||
| - Merge pull request 'refactor: move to new mailer' (#209) from refactor/new-mailer into dev [`bda1f97`](https://git.odit.services/lfk/backend/commit/bda1f971d1a14ea403439533c7ae31280c7df167) | ||||
|  | ||||
| #### [v1.1.4](https://git.odit.services/lfk/backend/compare/v1.1.3...v1.1.4) | ||||
|  | ||||
| > 20 November 2024 | ||||
|  | ||||
| - build: package lock [`50dd703`](https://git.odit.services/lfk/backend/commit/50dd703a1bd276a607cc10a087c7e90fd880847a) | ||||
| - fix(deps): Bump sqlite3 [`cd3cd81`](https://git.odit.services/lfk/backend/commit/cd3cd81360777e8bc4d78e861354e58c8da79cc7) | ||||
| - feat(ci)!: Switch to woodpecker [`3192365`](https://git.odit.services/lfk/backend/commit/3192365793fae59f2b89e3231db298654f0a28e9) | ||||
| - fix(deps): Bumped argon2 to latest version for arm support [`cf48c00`](https://git.odit.services/lfk/backend/commit/cf48c00ddb2ac33263549876928db50ae152c12d) | ||||
| - fix: updated README for pnpm, typos [`5082b1b`](https://git.odit.services/lfk/backend/commit/5082b1b8b1c0ae9e8ffa9c71c4d7923fd9223c87) | ||||
| - 🚀Bumped version to v1.1.4 [`a54cb28`](https://git.odit.services/lfk/backend/commit/a54cb287a4323ac8de77f51711cc6c52ec290859) | ||||
| - ci: drop lfk-client-node [`075d484`](https://git.odit.services/lfk/backend/commit/075d484f1169bfc5c5b68cb9712116b0e270b471) | ||||
| - fix(dependencies): Switch back to previous class-validator version to produce a working build [`74d334f`](https://git.odit.services/lfk/backend/commit/74d334f9b747a77115bd9b97729ef1120822e128) | ||||
|  | ||||
|   | ||||
							
								
								
									
										10
									
								
								Dockerfile
									
									
									
									
									
								
							
							
						
						
									
										10
									
								
								Dockerfile
									
									
									
									
									
								
							| @@ -1,10 +1,12 @@ | ||||
| # Typescript Build | ||||
| FROM registry.odit.services/hub/library/node:21.1.0-alpine3.18 as build | ||||
| FROM registry.odit.services/hub/library/node:23.10.0-alpine3.21 AS build | ||||
| ARG NPM_REGISTRY_URL=https://registry.npmjs.org | ||||
| WORKDIR /app | ||||
|  | ||||
| COPY package.json ./ | ||||
| RUN npm config set registry $NPM_REGISTRY_URL && npm i -g pnpm@8 | ||||
| COPY pnpm-workspace.yaml ./ | ||||
| COPY pnpm-lock.yaml ./ | ||||
| RUN npm config set registry $NPM_REGISTRY_URL && npm i -g pnpm@10.7 | ||||
| RUN mkdir /pnpm && pnpm config set store-dir /pnpm && pnpm i | ||||
|  | ||||
| COPY tsconfig.json ormconfig.js ./ | ||||
| @@ -14,9 +16,11 @@ RUN pnpm run build \ | ||||
|     && pnpm i --production --prefer-offline | ||||
|  | ||||
| # final image | ||||
| FROM registry.odit.services/hub/library/node:21.1.0-alpine3.18 as final | ||||
| FROM registry.odit.services/hub/library/node:23.10.0-alpine3.21 AS final | ||||
| WORKDIR /app | ||||
| COPY --from=build /app/package.json /app/package.json | ||||
| COPY --from=build /app/pnpm-lock.yaml /app/pnpm-lock.yaml | ||||
| COPY --from=build /app/pnpm-workspace.yaml /app/pnpm-workspace.yaml | ||||
| COPY --from=build /app/ormconfig.js /app/ormconfig.js | ||||
| COPY --from=build /app/dist /app/dist | ||||
| COPY --from=build /app/node_modules /app/node_modules | ||||
|   | ||||
| @@ -35,13 +35,6 @@ pnpm test:watch | ||||
| pnpm test:ci | ||||
| ``` | ||||
|  | ||||
| ### Use your own mail templates | ||||
| > You use your own mail templates by replacing the default ones we provided (either in-code or by mounting them into the /app/static/mail_templates folder). | ||||
|  | ||||
| The mail templates always come in a .html and a .txt variant to provide compatability with legacy mail clients. | ||||
| Currently the following templates exist: | ||||
| * pw-reset.(html/txt) | ||||
|  | ||||
| ### Generate Docs | ||||
| ```bash | ||||
| pnpm docs | ||||
| @@ -66,6 +59,7 @@ pnpm docs | ||||
| | SEED_TEST_DATA         | Boolean            | False                | If you want the app to seed some example data set this to true                                                 | | ||||
| | MAILER_URL             | String(Url)        | N/A                  | The mailer's base url (no trailing slash)                                                                      | | ||||
| | MAILER_KEY             | String             | N/A                  | The mailer's api key.                                                                                          | | ||||
| | SELFSERVICE_URL        | String(Url)        | N/A                  | The link to selfservice (no trailing slash)                                                                    | | ||||
| | IMPRINT_URL            | String(Url)        | /imprint             | The link to a imprint page for the system (Defaults to the frontend's imprint)                                 | | ||||
| | PRIVACY_URL            | String(Url)        | /privacy             | The link to a privacy page for the system (Defaults to the frontend's privacy page)                            | | ||||
|  | ||||
|   | ||||
| @@ -1,4 +1,3 @@ | ||||
| version: "3" | ||||
| services: | ||||
|   backend_server: | ||||
|     build: . | ||||
| @@ -14,7 +13,7 @@ services: | ||||
|       DB_NAME: ./db.sqlite | ||||
|       NODE_ENV: production | ||||
|       POSTALCODE_COUNTRYCODE: DE | ||||
|       SEED_TEST_DATA: "false" | ||||
|       SEED_TEST_DATA: "true" | ||||
|       MAILER_URL: https://dev.lauf-fuer-kaya.de/mailer | ||||
|       MAILER_KEY: asdasd | ||||
|       # APP_PORT: 4010 | ||||
|   | ||||
							
								
								
									
										59
									
								
								licenses.md
									
									
									
									
									
								
							
							
						
						
									
										59
									
								
								licenses.md
									
									
									
									
									
								
							| @@ -1,3 +1,32 @@ | ||||
| # @node-rs/argon2 | ||||
| **Author**: undefined | ||||
| **Repo**: [object Object] | ||||
| **License**: MIT | ||||
| **Description**: RustCrypto: Argon2 binding for Node.js | ||||
| ## License Text | ||||
| MIT License | ||||
|  | ||||
| Copyright (c) 2020-present LongYinan | ||||
|  | ||||
| Permission is hereby granted, free of charge, to any person obtaining a copy | ||||
| of this software and associated documentation files (the "Software"), to deal | ||||
| in the Software without restriction, including without limitation the rights | ||||
| to use, copy, modify, merge, publish, distribute, sublicense, and/or sell | ||||
| copies of the Software, and to permit persons to whom the Software is | ||||
| furnished to do so, subject to the following conditions: | ||||
|  | ||||
| The above copyright notice and this permission notice shall be included in all | ||||
| copies or substantial portions of the Software. | ||||
|  | ||||
| THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR | ||||
| IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, | ||||
| FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE | ||||
| AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER | ||||
| LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, | ||||
| OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE | ||||
| SOFTWARE. | ||||
|   | ||||
|  | ||||
| # @odit/class-validator-jsonschema | ||||
| **Author**: Aleksi Pekkala <aleksipekkala@gmail.com> | ||||
| **Repo**: git@github.com:epiphone/class-validator-jsonschema.git | ||||
| @@ -27,36 +56,6 @@ OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE | ||||
| SOFTWARE. | ||||
|   | ||||
|  | ||||
| # argon2 | ||||
| **Author**: Ranieri Althoff <ranisalt+argon2@gmail.com> | ||||
| **Repo**: [object Object] | ||||
| **License**: MIT | ||||
| **Description**: An Argon2 library for Node | ||||
| ## License Text | ||||
| The MIT License (MIT) | ||||
|  | ||||
| Copyright (c) 2015 Ranieri Althoff | ||||
|  | ||||
| Permission is hereby granted, free of charge, to any person obtaining a copy | ||||
| of this software and associated documentation files (the "Software"), to deal | ||||
| in the Software without restriction, including without limitation the rights | ||||
| to use, copy, modify, merge, publish, distribute, sublicense, and/or sell | ||||
| copies of the Software, and to permit persons to whom the Software is | ||||
| furnished to do so, subject to the following conditions: | ||||
|  | ||||
| The above copyright notice and this permission notice shall be included in all | ||||
| copies or substantial portions of the Software. | ||||
|  | ||||
| THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR | ||||
| IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, | ||||
| FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE | ||||
| AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER | ||||
| LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, | ||||
| OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE | ||||
| SOFTWARE. | ||||
|  | ||||
|   | ||||
|  | ||||
| # axios | ||||
| **Author**: Matt Zabriskie | ||||
| **Repo**: [object Object] | ||||
|   | ||||
							
								
								
									
										11
									
								
								package.json
									
									
									
									
									
								
							
							
						
						
									
										11
									
								
								package.json
									
									
									
									
									
								
							| @@ -1,11 +1,8 @@ | ||||
| { | ||||
|   "name": "@odit/lfk-backend", | ||||
|   "version": "1.1.4", | ||||
|   "version": "1.3.1", | ||||
|   "main": "src/app.ts", | ||||
|   "repository": "https://git.odit.services/lfk/backend", | ||||
|   "engines": { | ||||
|     "pnpm": "8" | ||||
|   }, | ||||
|   "author": { | ||||
|     "name": "ODIT.Services", | ||||
|     "email": "info@odit.services", | ||||
| @@ -25,8 +22,8 @@ | ||||
|   ], | ||||
|   "license": "CC-BY-NC-SA-4.0", | ||||
|   "dependencies": { | ||||
|     "@node-rs/argon2": "^2.0.2", | ||||
|     "@odit/class-validator-jsonschema": "2.1.1", | ||||
|     "argon2": "0.31.2", | ||||
|     "axios": "0.21.1", | ||||
|     "body-parser": "1.19.0", | ||||
|     "check-password-strength": "2.0.2", | ||||
| @@ -46,7 +43,7 @@ | ||||
|     "reflect-metadata": "0.1.13", | ||||
|     "routing-controllers": "0.9.0-alpha.6", | ||||
|     "routing-controllers-openapi": "2.2.0", | ||||
|     "sqlite3": "5.1.6", | ||||
|     "sqlite3": "5.1.7", | ||||
|     "typeorm": "0.2.30", | ||||
|     "typeorm-routing-controllers-extensions": "0.2.0", | ||||
|     "typeorm-seeding": "1.6.1", | ||||
| @@ -94,7 +91,7 @@ | ||||
|     "git": { | ||||
|       "commit": true, | ||||
|       "requireCleanWorkingDir": false, | ||||
|       "commitMessage": "🚀Bumped version to v${version}", | ||||
|       "commitMessage": "chore(release): v${version}", | ||||
|       "requireBranch": "dev", | ||||
|       "push": true, | ||||
|       "tag": true, | ||||
|   | ||||
							
								
								
									
										10304
									
								
								pnpm-lock.yaml
									
									
									
										generated
									
									
									
								
							
							
						
						
									
										10304
									
								
								pnpm-lock.yaml
									
									
									
										generated
									
									
									
								
							
										
											
												File diff suppressed because it is too large
												Load Diff
											
										
									
								
							
							
								
								
									
										2
									
								
								pnpm-workspace.yaml
									
									
									
									
									
										Normal file
									
								
							
							
						
						
									
										2
									
								
								pnpm-workspace.yaml
									
									
									
									
									
										Normal file
									
								
							| @@ -0,0 +1,2 @@ | ||||
| onlyBuiltDependencies: | ||||
|   - sqlite3 | ||||
| @@ -132,7 +132,7 @@ export class RunnerController { | ||||
| 	async remove(@Param("id") id: number, @QueryParam("force") force: boolean) { | ||||
| 		let runner = await this.runnerRepository.findOne({ id: id }); | ||||
| 		if (!runner) { return null; } | ||||
| 		const responseRunner = await this.runnerRepository.findOne(runner, { relations: ['scans', 'group', 'group.parentGroup', 'scans.track', 'cards'] }); | ||||
| 		const responseRunner = await this.runnerRepository.findOne(runner); | ||||
|  | ||||
| 		if (!runner) { | ||||
| 			throw new RunnerNotFoundError(); | ||||
|   | ||||
| @@ -127,11 +127,11 @@ export class RunnerSelfServiceController { | ||||
| 		const runner = await this.runnerRepository.findOne({ email: mail }); | ||||
| 		if (!runner) { throw new RunnerNotFoundError(); } | ||||
|  | ||||
| 		if (runner.resetRequestedTimestamp > (Math.floor(Date.now() / 1000) - 60 * 15)) { throw new RunnerSelfserviceTimeoutError(); } | ||||
| 		if (runner.resetRequestedTimestamp > (Math.floor(Date.now() / 1000) - 30)) { throw new RunnerSelfserviceTimeoutError(); } | ||||
| 		const token = JwtCreator.createSelfService(runner); | ||||
|  | ||||
| 		try { | ||||
| 			await Mailer.sendSelfserviceForgottenMail(runner.email, token, locale) | ||||
| 			await Mailer.sendSelfserviceForgottenMail(runner.email, runner.id, runner.firstname, runner.middlename, runner.lastname, token, locale) | ||||
| 		} catch (error) { | ||||
| 			throw new MailSendingError(); | ||||
| 		} | ||||
| @@ -157,7 +157,7 @@ export class RunnerSelfServiceController { | ||||
| 		response.token = JwtCreator.createSelfService(runner); | ||||
|  | ||||
| 		try { | ||||
| 			await Mailer.sendSelfserviceWelcomeMail(runner.email, response.token, locale) | ||||
| 			await Mailer.sendSelfserviceWelcomeMail(runner.email, runner.id, runner.firstname, runner.middlename, runner.lastname, response.token, locale) | ||||
| 		} catch (error) { | ||||
| 			throw new MailSendingError(); | ||||
| 		} | ||||
| @@ -182,7 +182,7 @@ export class RunnerSelfServiceController { | ||||
| 		response.token = JwtCreator.createSelfService(runner); | ||||
|  | ||||
| 		try { | ||||
| 			await Mailer.sendSelfserviceWelcomeMail(runner.email, response.token, locale) | ||||
| 			await Mailer.sendSelfserviceWelcomeMail(runner.email, runner.id, runner.firstname, runner.middlename, runner.lastname, response.token, locale) | ||||
| 		} catch (error) { | ||||
| 			throw new MailSendingError(); | ||||
| 		} | ||||
|   | ||||
| @@ -119,7 +119,7 @@ export class RunnerTeamController { | ||||
| 	async remove(@Param("id") id: number, @QueryParam("force") force: boolean) { | ||||
| 		let team = await this.runnerTeamRepository.findOne({ id: id }); | ||||
| 		if (!team) { return null; } | ||||
| 		let runnerTeam = await this.runnerTeamRepository.findOne(team, { relations: ['parentGroup', 'contact', 'runners'] }); | ||||
| 		let runnerTeam = await this.runnerTeamRepository.findOne(team, { relations: ['runners'] }); | ||||
|  | ||||
| 		if (!force) { | ||||
| 			if (runnerTeam.runners.length != 0) { | ||||
|   | ||||
| @@ -47,14 +47,14 @@ export class RunnerEmailNeededError extends NotAcceptableError { | ||||
| } | ||||
|  | ||||
| /** | ||||
|  * Error to throw when a runner already requested a new selfservice link in the last 24hrs. | ||||
|  * Error to throw when a runner already requested a new selfservice link in the last 30s. | ||||
|  */ | ||||
| export class RunnerSelfserviceTimeoutError extends NotAcceptableError { | ||||
| 	@IsString() | ||||
| 	name = "RunnerSelfserviceTimeoutError" | ||||
|  | ||||
| 	@IsString() | ||||
| 	message = "You can only reqest a new token every 24hrs." | ||||
| 	message = "You can only reqest a new token every 30s." | ||||
| } | ||||
|  | ||||
| /** | ||||
|   | ||||
| @@ -18,9 +18,19 @@ export class Mailer { | ||||
|      */ | ||||
|     public static async sendResetMail(to_address: string, token: string, locale: string = "en") { | ||||
|         try { | ||||
|             await axios.post(`${Mailer.base}/reset?locale=${locale}&key=${Mailer.key}`, { | ||||
|                 address: to_address, | ||||
|                 resetKey: token | ||||
|             await axios.request({ | ||||
|                 method: 'POST', | ||||
|                 url: `${Mailer.base}/api/v1/email`, | ||||
|                 headers: { | ||||
|                     authorization: `Bearer ${Mailer.key}`, | ||||
|                     'content-type': 'application/json' | ||||
|                 }, | ||||
|                 data: { | ||||
|                     to: to_address, | ||||
|                     templateName: 'password-reset', | ||||
|                     language: locale, | ||||
|                     data: { token: token } | ||||
|                 } | ||||
|             }); | ||||
|         } catch (error) { | ||||
|             if (Mailer.testing) { return true; } | ||||
| @@ -32,12 +42,26 @@ export class Mailer { | ||||
|      * Function for sending a runner selfservice welcome mail. | ||||
|      * @param to_address The address the mail will be sent to. Should always get pulled from a runner object. | ||||
|      * @param token The requested selfservice token - will be combined with the app_url to generate a selfservice profile link. | ||||
|      */ | ||||
|     public static async sendSelfserviceWelcomeMail(to_address: string, token: string, locale: string = "en") { | ||||
|     */ | ||||
|     public static async sendSelfserviceWelcomeMail(to_address: string, runner_id: number, firstname: string, middlename: string, lastname: string, token: string, locale: string = "en") { | ||||
|         try { | ||||
|             await axios.post(`${Mailer.base}/registration?locale=${locale}&key=${Mailer.key}`, { | ||||
|                 address: to_address, | ||||
|                 selfserviceToken: token | ||||
|             await axios.request({ | ||||
|                 method: 'POST', | ||||
|                 url: `${Mailer.base}/api/v1/email`, | ||||
|                 headers: { | ||||
|                     authorization: `Bearer ${Mailer.key}`, | ||||
|                     'content-type': 'application/json' | ||||
|                 }, | ||||
|                 data: { | ||||
|                     to: to_address, | ||||
|                     templateName: 'welcome', | ||||
|                     language: locale, | ||||
|                     data: { | ||||
|                         name: `${firstname} ${middlename} ${lastname}`, | ||||
|                         barcode_content: `${runner_id}`, | ||||
|                         link: `${process.env.SELFSERVICE_URL}/profile/${token}` | ||||
|                     } | ||||
|                 } | ||||
|             }); | ||||
|         } catch (error) { | ||||
|             if (Mailer.testing) { return true; } | ||||
| @@ -49,12 +73,26 @@ export class Mailer { | ||||
|      * Function for sending a runner selfservice link forgotten mail. | ||||
|      * @param to_address The address the mail will be sent to. Should always get pulled from a runner object. | ||||
|      * @param token The requested selfservice token - will be combined with the app_url to generate a selfservice profile link. | ||||
|      */ | ||||
|     public static async sendSelfserviceForgottenMail(to_address: string, token: string, locale: string = "en") { | ||||
|     */ | ||||
|     public static async sendSelfserviceForgottenMail(to_address: string, runner_id: number, firstname: string, middlename: string, lastname: string, token: string, locale: string = "en") { | ||||
|         try { | ||||
|             await axios.post(`${Mailer.base}/registration_forgot?locale=${locale}&key=${Mailer.key}`, { | ||||
|                 address: to_address, | ||||
|                 selfserviceToken: token | ||||
|             await axios.request({ | ||||
|                 method: 'POST', | ||||
|                 url: `${Mailer.base}/api/v1/email`, | ||||
|                 headers: { | ||||
|                     authorization: `Bearer ${Mailer.key}`, | ||||
|                     'content-type': 'application/json' | ||||
|                 }, | ||||
|                 data: { | ||||
|                     to: to_address, | ||||
|                     templateName: 'welcome', | ||||
|                     language: locale, | ||||
|                     data: { | ||||
|                         name: `${firstname} ${middlename} ${lastname}`, | ||||
|                         barcode_content: `${runner_id}`, | ||||
|                         link: `${process.env.SELFSERVICE_URL}/profile/${token}` | ||||
|                     } | ||||
|                 } | ||||
|             }); | ||||
|         } catch (error) { | ||||
|             if (Mailer.testing) { return true; } | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { verify } from '@node-rs/argon2'; | ||||
| import { Request, Response } from 'express'; | ||||
| import { getConnectionManager } from 'typeorm'; | ||||
| import { ScanStation } from '../models/entities/ScanStation'; | ||||
| @@ -58,7 +58,7 @@ const ScanAuth = async (req: Request, res: Response, next: () => void) => { | ||||
|         if (station.enabled == false) { | ||||
|             res.status(401).send({ http_code: 401, short: "station_disabled", message: "Station is disabled." }); | ||||
|         } | ||||
|         if (!(await argon2.verify(station.key, provided_token))) { | ||||
|         if (!(await verify(station.key, provided_token))) { | ||||
|             res.status(401).send({ http_code: 401, short: "invalid_token", message: "Api token non-existent or invalid syntax." }); | ||||
|             return; | ||||
|         } | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { verify } from '@node-rs/argon2'; | ||||
| import { Request, Response } from 'express'; | ||||
| import { getConnectionManager } from 'typeorm'; | ||||
| import { StatsClient } from '../models/entities/StatsClient'; | ||||
| @@ -55,7 +55,7 @@ const StatsAuth = async (req: Request, res: Response, next: () => void) => { | ||||
|         } | ||||
|     } | ||||
|     else { | ||||
|         if (!(await argon2.verify(client.key, provided_token))) { | ||||
|         if (!(await verify(client.key, provided_token))) { | ||||
|             res.status(401).send("Api token invalid."); | ||||
|             return; | ||||
|         } | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { hash } from '@node-rs/argon2'; | ||||
| import { IsNotEmpty, IsOptional, IsString } from 'class-validator'; | ||||
| import * as jsonwebtoken from 'jsonwebtoken'; | ||||
| import { getConnectionManager } from 'typeorm'; | ||||
| @@ -49,7 +49,7 @@ export class ResetPassword { | ||||
|         if (found_user.refreshTokenCount !== decoded["refreshTokenCount"]) { throw new RefreshTokenCountInvalidError(); } | ||||
|  | ||||
|         found_user.refreshTokenCount = found_user.refreshTokenCount + 1; | ||||
|         found_user.password = await argon2.hash(this.password + found_user.uuid); | ||||
|         found_user.password = await hash(this.password + found_user.uuid); | ||||
|         await getConnectionManager().get().getRepository(User).save(found_user); | ||||
|  | ||||
|         return "password reset successfull"; | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { verify } from '@node-rs/argon2'; | ||||
| import { IsEmail, IsNotEmpty, IsOptional, IsString } from 'class-validator'; | ||||
| import { getConnectionManager } from 'typeorm'; | ||||
| import { InvalidCredentialsError, PasswordNeededError, UserDisabledError, UserNotFoundError } from '../../../errors/AuthError'; | ||||
| @@ -56,7 +56,7 @@ export class CreateAuth { | ||||
|             throw new UserNotFoundError(); | ||||
|         } | ||||
|         if (found_user.enabled == false) { throw new UserDisabledError(); } | ||||
|         if (!(await argon2.verify(found_user.password, this.password + found_user.uuid))) { | ||||
|         if (!(await verify(found_user.password, this.password + found_user.uuid))) { | ||||
|             throw new InvalidCredentialsError(); | ||||
|         } | ||||
|  | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { hash } from '@node-rs/argon2'; | ||||
| import { IsBoolean, IsInt, IsOptional, IsPositive, IsString } from 'class-validator'; | ||||
| import crypto from 'crypto'; | ||||
| import { getConnection } from 'typeorm'; | ||||
| @@ -44,7 +44,7 @@ export class CreateScanStation { | ||||
|  | ||||
|         let newUUID = uuid.v4().toUpperCase(); | ||||
|         newStation.prefix = crypto.createHash("sha3-512").update(newUUID).digest('hex').substring(0, 7).toUpperCase(); | ||||
|         newStation.key = await argon2.hash(newStation.prefix + "." + newUUID); | ||||
|         newStation.key = await hash(newStation.prefix + "." + newUUID); | ||||
|         newStation.cleartextkey = newStation.prefix + "." + newUUID; | ||||
|  | ||||
|         return newStation; | ||||
|   | ||||
| @@ -26,6 +26,7 @@ export class CreateSelfServiceCitizenRunner extends CreateParticipant { | ||||
|     public async toEntity(): Promise<Runner> { | ||||
|         let newRunner: Runner = new Runner(); | ||||
|  | ||||
|         newRunner.created_via = "selfservice"; | ||||
|         newRunner.firstname = this.firstname; | ||||
|         newRunner.middlename = this.middlename; | ||||
|         newRunner.lastname = this.lastname; | ||||
|   | ||||
| @@ -28,6 +28,7 @@ export class CreateSelfServiceRunner extends CreateParticipant { | ||||
|     public async toEntity(group: RunnerGroup): Promise<Runner> { | ||||
|         let newRunner: Runner = new Runner(); | ||||
|  | ||||
|         newRunner.created_via = "selfservice"; | ||||
|         newRunner.firstname = this.firstname; | ||||
|         newRunner.middlename = this.middlename; | ||||
|         newRunner.lastname = this.lastname; | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { hash } from '@node-rs/argon2'; | ||||
| import { IsOptional, IsString } from 'class-validator'; | ||||
| import crypto from 'crypto'; | ||||
| import * as uuid from 'uuid'; | ||||
| @@ -25,7 +25,7 @@ export class CreateStatsClient { | ||||
|  | ||||
|         let newUUID = uuid.v4().toUpperCase(); | ||||
|         newClient.prefix = crypto.createHash("sha3-512").update(newUUID).digest('hex').substring(0, 7).toUpperCase(); | ||||
|         newClient.key = await argon2.hash(newClient.prefix + "." + newUUID); | ||||
|         newClient.key = await hash(newClient.prefix + "." + newUUID); | ||||
|         newClient.cleartextkey = newClient.prefix + "." + newUUID; | ||||
|  | ||||
|         return newClient; | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { hash } from "@node-rs/argon2"; | ||||
| import { passwordStrength } from "check-password-strength"; | ||||
| import { IsBoolean, IsEmail, IsNotEmpty, IsOptional, IsPhoneNumber, IsString, IsUrl } from 'class-validator'; | ||||
| import { getConnectionManager } from 'typeorm'; | ||||
| @@ -110,7 +110,7 @@ export class CreateUser { | ||||
|         newUser.lastname = this.lastname | ||||
|         newUser.uuid = uuid.v4() | ||||
|         newUser.phone = this.phone | ||||
|         newUser.password = await argon2.hash(this.password + newUser.uuid); | ||||
|         newUser.password = await hash(this.password + newUser.uuid); | ||||
|         newUser.groups = await this.getGroups(); | ||||
|         newUser.enabled = this.enabled; | ||||
|  | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { hash } from '@node-rs/argon2'; | ||||
| import { passwordStrength } from "check-password-strength"; | ||||
| import { IsBoolean, IsEmail, IsInt, IsNotEmpty, IsOptional, IsPhoneNumber, IsString, IsUrl } from 'class-validator'; | ||||
| import { getConnectionManager } from 'typeorm'; | ||||
| @@ -111,7 +111,7 @@ export class UpdateUser { | ||||
|             if (!password_strength.contains.includes("lowercase")) { throw new PasswordMustContainLowercaseLetterError(); } | ||||
|             if (!password_strength.contains.includes("number")) { throw new PasswordMustContainNumberError(); } | ||||
|             if (!(password_strength.length > 9)) { throw new PasswordTooShortError(); } | ||||
|             user.password = await argon2.hash(this.password + user.uuid); | ||||
|             user.password = await hash(this.password + user.uuid); | ||||
|             user.refreshTokenCount = user.refreshTokenCount + 1; | ||||
|         } | ||||
|  | ||||
|   | ||||
| @@ -75,6 +75,14 @@ export abstract class Participant { | ||||
|   @IsEmail() | ||||
|   email?: string; | ||||
|  | ||||
|   /** | ||||
|    * how the participant got into the system | ||||
|    */ | ||||
|   @Column({ nullable: true, default: "backend" }) | ||||
|   @IsOptional() | ||||
|   @IsEmail() | ||||
|   created_via?: string; | ||||
|  | ||||
|   /** | ||||
|    * Turns this entity into it's response class. | ||||
|    */ | ||||
|   | ||||
| @@ -57,7 +57,10 @@ export class Runner extends Participant { | ||||
|    * This is implemented here to avoid duplicate code in other files. | ||||
|    */ | ||||
|   public get validScans(): Scan[] { | ||||
|     return this.scans.filter(scan => scan.valid == true); | ||||
|     if (this.scans) { | ||||
|       return this.scans.filter(scan => scan.valid == true); | ||||
|     } | ||||
|     return [] | ||||
|   } | ||||
|  | ||||
|   /** | ||||
|   | ||||
| @@ -50,6 +50,12 @@ export abstract class ResponseParticipant implements IResponse { | ||||
|     @IsString() | ||||
|     email?: string; | ||||
|  | ||||
|     /** | ||||
|      * how the participant got into the system | ||||
|      */ | ||||
|     @IsString() | ||||
|     created_via?: string; | ||||
|  | ||||
|     /** | ||||
|      * The participant's address. | ||||
|      */ | ||||
| @@ -64,6 +70,7 @@ export abstract class ResponseParticipant implements IResponse { | ||||
|     public constructor(participant: Participant) { | ||||
|         this.id = participant.id; | ||||
|         this.firstname = participant.firstname; | ||||
|         this.created_via = participant.created_via; | ||||
|         this.middlename = participant.middlename; | ||||
|         this.lastname = participant.lastname; | ||||
|         this.phone = participant.phone; | ||||
|   | ||||
| @@ -1,4 +1,4 @@ | ||||
| import * as argon2 from "argon2"; | ||||
| import { hash } from '@node-rs/argon2'; | ||||
| import { Connection } from 'typeorm'; | ||||
| import { Factory, Seeder } from 'typeorm-seeding'; | ||||
| import * as uuid from 'uuid'; | ||||
| @@ -33,7 +33,7 @@ export default class SeedUsers implements Seeder { | ||||
|         initialUser.lastname = "demo"; | ||||
|         initialUser.username = "demo"; | ||||
|         initialUser.uuid = uuid.v4(); | ||||
|         initialUser.password = await argon2.hash("demo" + initialUser.uuid); | ||||
|         initialUser.password = await hash("demo" + initialUser.uuid); | ||||
|         initialUser.email = "demo@dev.lauf-fuer-kaya.de" | ||||
|         initialUser.groups = [group]; | ||||
|         return await connection.getRepository(User).save(initialUser); | ||||
|   | ||||
		Reference in New Issue
	
	Block a user