dsql-admin/dsql-app/.local_dist/server/pages/api/getDelegatedDatabaseToken.js
2024-11-05 12:12:42 +01:00

181 lines
7.0 KiB
JavaScript

"use strict";
(() => {
var exports = {};
exports.id = 1146;
exports.ids = [1146];
exports.modules = {
/***/ 2261:
/***/ ((module) => {
module.exports = require("serverless-mysql");
/***/ }),
/***/ 4300:
/***/ ((module) => {
module.exports = require("buffer");
/***/ }),
/***/ 6113:
/***/ ((module) => {
module.exports = require("crypto");
/***/ }),
/***/ 7147:
/***/ ((module) => {
module.exports = require("fs");
/***/ }),
/***/ 3685:
/***/ ((module) => {
module.exports = require("http");
/***/ }),
/***/ 1017:
/***/ ((module) => {
module.exports = require("path");
/***/ }),
/***/ 5989:
/***/ ((__unused_webpack_module, __webpack_exports__, __webpack_require__) => {
__webpack_require__.r(__webpack_exports__);
/* harmony export */ __webpack_require__.d(__webpack_exports__, {
/* harmony export */ "default": () => (/* binding */ handler)
/* harmony export */ });
/* harmony import */ var _package_shared_utils_backend_global_db_DB_HANDLER__WEBPACK_IMPORTED_MODULE_0__ = __webpack_require__(2224);
/* harmony import */ var _package_shared_utils_backend_global_db_DB_HANDLER__WEBPACK_IMPORTED_MODULE_0___default = /*#__PURE__*/__webpack_require__.n(_package_shared_utils_backend_global_db_DB_HANDLER__WEBPACK_IMPORTED_MODULE_0__);
/* harmony import */ var _package_shared_functions_backend_encrypt__WEBPACK_IMPORTED_MODULE_1__ = __webpack_require__(7547);
/* harmony import */ var _package_shared_functions_backend_encrypt__WEBPACK_IMPORTED_MODULE_1___default = /*#__PURE__*/__webpack_require__.n(_package_shared_functions_backend_encrypt__WEBPACK_IMPORTED_MODULE_1__);
/* harmony import */ var _functions_backend_serverError__WEBPACK_IMPORTED_MODULE_2__ = __webpack_require__(2163);
/* harmony import */ var _functions_backend_serverError__WEBPACK_IMPORTED_MODULE_2___default = /*#__PURE__*/__webpack_require__.n(_functions_backend_serverError__WEBPACK_IMPORTED_MODULE_2__);
/* harmony import */ var _functions_backend_userAuth__WEBPACK_IMPORTED_MODULE_3__ = __webpack_require__(6825);
/* harmony import */ var _functions_backend_userAuth__WEBPACK_IMPORTED_MODULE_3___default = /*#__PURE__*/__webpack_require__.n(_functions_backend_userAuth__WEBPACK_IMPORTED_MODULE_3__);
// @ts-check
/**
* ==============================================================================
* Imports
* ==============================================================================
*/
/** ****************************************************************************** */ /** ****************************************************************************** */ /** ****************************************************************************** */ /** ****************************************************************************** */ /** ****************************************************************************** */ /** ****************************************************************************** */ /**
* API handler
* ==============================================================================
* @type {import("next").NextApiHandler}
*/ async function handler(req, res) {
/**
* Check method
*
* @description Check request method and return if invalid
*/ if (req.method !== "POST") return res.json({
msg: "Failed!"
});
/**
* User auth
*
* @description Authenticate user
*/ const user = await _functions_backend_userAuth__WEBPACK_IMPORTED_MODULE_3___default()(req, res, true);
if (!user) {
return res.json({
success: false,
msg: "Unauthorized"
});
}
/**
* User auth
*
* @description Authenticate user
*/ // const { rootUserId, priviledges, database } = req.body;
const rootUserId = req.body.rootUserId;
const priviledges = req.body.priviledges;
const database = req.body.database;
/**
* Input Validation
*
* @description Input Validation
*/ try {
const foundUserUser = await _package_shared_utils_backend_global_db_DB_HANDLER__WEBPACK_IMPORTED_MODULE_0___default()(`SELECT * FROM user_users WHERE user_id=? AND invited_user_id=? AND MATCH(database_access) AGAINST(?)`, [
rootUserId,
user.id,
database
]);
if (!foundUserUser || !foundUserUser[0]) throw new Error(`user with id ${user.id} has no access to ${database} database belonging to user ${rootUserId}`);
const foundUserTables = (await _package_shared_utils_backend_global_db_DB_HANDLER__WEBPACK_IMPORTED_MODULE_0___default()(`SELECT * FROM delegated_user_tables WHERE root_user_id=? AND delegated_user_id=? AND \`database\`=?`, [
rootUserId,
user.id,
database
])).map((/** @type {any} */ tableObject)=>{
return tableObject.table;
});
const rootUserinfo = await _package_shared_utils_backend_global_db_DB_HANDLER__WEBPACK_IMPORTED_MODULE_0___default()(`SELECT * FROM users WHERE id=?`, [
rootUserId
]);
const payload = {
rootUserId: rootUserId,
rootUserName: `${rootUserinfo[0].first_name} ${rootUserinfo[0].last_name}`,
rootUserEmail: rootUserinfo[0].email,
rootUserImage: rootUserinfo[0].image_thumbnail,
delegatedUserId: user.id,
databaseFullName: `datasquirel_user_${rootUserId}_${database}`,
databaseSlug: database,
allowedTables: foundUserTables,
priviledges: priviledges,
dateCreated: Date.now()
};
const encryptedPayload = _package_shared_functions_backend_encrypt__WEBPACK_IMPORTED_MODULE_1___default()(JSON.stringify(payload));
const dbFullName = `${process.env.DSQL_USER_DB_PREFIX}${payload.rootUserId}_${database}`;
const tokenName = `${process.env.DSQL_USER_DELEGATED_DB_COOKIE_PREFIX}${dbFullName}`;
res.setHeader("Set-Cookie", [
`${tokenName}=${encryptedPayload};path=/`,
]);
res.json({
success: true,
msg: "Processed Successfully"
});
////////////////////////////////////////
////////////////////////////////////////
////////////////////////////////////////
} catch (/** @type {any} */ error) {
console.log("ERROR:", error.message);
_functions_backend_serverError__WEBPACK_IMPORTED_MODULE_2___default()({
component: "/api/getDelegatedDatabaseToken/main-catch-error",
message: error.message,
user: user
});
return res.json({
success: false,
msg: "Unauthorized"
});
}
////////////////////////////////////////
////////////////////////////////////////
////////////////////////////////////////
}
/***/ })
};
;
// load runtime
var __webpack_require__ = require("../../webpack-api-runtime.js");
__webpack_require__.C(exports);
var __webpack_exec__ = (moduleId) => (__webpack_require__(__webpack_require__.s = moduleId))
var __webpack_exports__ = __webpack_require__.X(0, [5425,2224,2163,6825,3017,7547], () => (__webpack_exec__(5989)));
module.exports = __webpack_exports__;
})();