// @ts-check const http = require("http"); const fs = require("fs"); const path = require("path"); const encrypt = require("../../package-shared/functions/dsql/encrypt"); const grabHostNames = require("../../package-shared/utils/grab-host-names"); const apiGoogleLogin = require("../../package-shared/functions/api/users/social/api-google-login"); const getAuthCookieNames = require("../../package-shared/functions/backend/cookies/get-auth-cookie-names"); const { writeAuthFile, } = require("../../package-shared/functions/backend/auth/write-auth-files"); /** * @typedef {object | null} FunctionReturn * @property {boolean} success - Did the function run successfully? * @property {import("../../types/user.td").DATASQUIREL_LoggedInUser | null} user - Returned User * @property {number} [dsqlUserId] - Dsql User Id * @property {string} [msg] - Response message */ /** * SERVER FUNCTION: Login with google Function * ============================================================================== * * @async * * @param {object} params - main params object * @param {string} [params.key] - API full access key * @param {string} params.token - Google access token gotten from the client side * @param {string} [params.database] - Target database name * @param {http.ServerResponse} [params.response] - HTTPS response object * @param {string} [params.encryptionKey] - Encryption key * @param {string} [params.encryptionSalt] - Encryption salt * @param {string[]} [params.additionalFields] - Additional Fields to be added to the user object * @param {string | number} [params.apiUserID] - API user ID * @param {boolean} [params.useLocal] - Whether to use a remote database instead of API * * @returns { Promise } */ async function googleAuth({ key, token, database, response, encryptionKey, encryptionSalt, additionalFields, apiUserID, useLocal, }) { const grabedHostNames = grabHostNames(); const { host, port, scheme } = grabedHostNames; const finalEncryptionKey = encryptionKey || process.env.DSQL_ENCRYPTION_PASSWORD; const finalEncryptionSalt = encryptionSalt || process.env.DSQL_ENCRYPTION_SALT; if (!finalEncryptionKey?.match(/.{8,}/)) { console.log("Encryption key is invalid"); return { success: false, payload: null, msg: "Encryption key is invalid", }; } if (!finalEncryptionSalt?.match(/.{8,}/)) { console.log("Encryption salt is invalid"); return { success: false, payload: null, msg: "Encryption salt is invalid", }; } /** * Check inputs * * @description Check inputs */ if (!token || token?.match(/ /)) { return { success: false, user: null, msg: "Please enter Google Access Token", }; } if (!database || database?.match(/ /)) { return { success: false, user: null, msg: "Please provide database slug name you want to access", }; } /** * Initialize HTTP response variable */ /** @type {import("../../package-shared/types").APILoginFunctionReturn} */ let httpResponse = { success: false, }; /** * Check for local DB settings * * @description Look for local db settings in `.env` file and by pass the http request if available */ const { DSQL_DB_HOST, DSQL_DB_USERNAME, DSQL_DB_PASSWORD, DSQL_DB_NAME } = process.env; if ( DSQL_DB_HOST?.match(/./) && DSQL_DB_USERNAME?.match(/./) && DSQL_DB_PASSWORD?.match(/./) && DSQL_DB_NAME?.match(/./) && useLocal ) { httpResponse = await apiGoogleLogin({ token, additionalFields, database: DSQL_DB_NAME, }); } else { /** * Make https request * * @description make a request to datasquirel.com * @type {{ success: boolean, user: import("../../package-shared/types").DATASQUIREL_LoggedInUser | null, msg?: string, dsqlUserId?: number } | null } - Https response object */ httpResponse = await new Promise((resolve, reject) => { const reqPayload = JSON.stringify({ token, database, additionalFields, }); const httpsRequest = scheme.request( { method: "POST", headers: { "Content-Type": "application/json", "Content-Length": Buffer.from(reqPayload).length, Authorization: key || process.env.DSQL_FULL_ACCESS_API_KEY || process.env.DSQL_API_KEY, }, port, hostname: host, path: `/api/user/${ apiUserID || grabedHostNames.user_id }/google-login`, }, /** * Callback Function * * @description https request callback */ (response) => { var str = ""; response.on("data", function (chunk) { str += chunk; }); response.on("end", function () { resolve(JSON.parse(str)); }); response.on("error", (err) => { reject(err); }); } ); httpsRequest.write(reqPayload); httpsRequest.end(); }); } /** * Make https request * * @description make a request to datasquirel.com */ if (httpResponse?.success && httpResponse?.payload) { let encryptedPayload = encrypt({ data: JSON.stringify(httpResponse.payload), encryptionKey: finalEncryptionKey, encryptionSalt: finalEncryptionSalt, }); const cookieNames = getAuthCookieNames({ database, userId: apiUserID || process.env.DSQL_API_USER_ID, }); if (httpResponse.csrf) { writeAuthFile( httpResponse.csrf, JSON.stringify(httpResponse.payload) ); } httpResponse["cookieNames"] = cookieNames; httpResponse["key"] = String(encryptedPayload); const authKeyName = cookieNames.keyCookieName; const csrfName = cookieNames.csrfCookieName; response?.setHeader("Set-Cookie", [ `${authKeyName}=${encryptedPayload};samesite=strict;path=/;HttpOnly=true;Secure=true`, `${csrfName}=${httpResponse.payload?.csrf_k};samesite=strict;path=/;HttpOnly=true`, ]); } return httpResponse; } module.exports = googleAuth;