WIP

padloc · Jun 29, 2023 · 48304ff · 48304ff
1 parent 81078d3
commit 48304ff
Show file tree

Hide file tree

Showing 13 changed files with 537 additions and 612 deletions.
diff --git a/packages/admin/src/app.ts b/packages/admin/src/app.ts
@@ -2,6 +2,7 @@ import { css, customElement, html, LitElement, property, query, state } from "@p
 import { ServiceWorker } from "@padloc/app/src/mixins/service-worker";
 import { StateMixin } from "@padloc/app/src/mixins/state";
 import { Routing } from "@padloc/app/src/mixins/routing";
+import { ErrorHandling } from "@padloc/app/src/mixins/error-handling";
 import { mixins, shared } from "@padloc/app/src/styles";
 import "@padloc/app/src/elements/button";
 import "@padloc/app/src/elements/icon";
@@ -16,7 +17,7 @@ import "./orgs";
 import "./config";
 
 @customElement("pl-admin-app")
-export class App extends ServiceWorker(StateMixin(Routing(LitElement))) {
+export class App extends ServiceWorker(ErrorHandling(StateMixin(Routing(LitElement)))) {
  @property({ attribute: false })
  readonly routePattern = /^([^\/]*)(?:\/([^\/]+))?/;
 

diff --git a/packages/app/src/elements/login-signup.ts b/packages/app/src/elements/login-signup.ts
@@ -512,7 +512,7 @@ export class LoginOrSignup extends StartForm {
  this._confirmPasswordButton.start();
 
  try {
- await this.app.signup({ email, password, name, authToken: this._authToken });
+ await this.app.signup({ email, password, name, authToken: this._authToken, asAdmin: this.asAdmin });
  this._confirmPasswordButton.success();
  const { email: _email, name: _name, authToken, deviceTrusted, ...params } = this.router.params;
  this.go("signup/success", params);

diff --git a/packages/core/src/app.ts b/packages/core/src/app.ts
@@ -656,12 +656,14 @@ export class App {
  authToken,
  /** Information about the [[Invite]] object if signup was initiated through invite link */
  invite,
+ asAdmin,
  }: {
  email: string;
  password: string;
  name: string;
  authToken: string;
  invite?: { id: string; org: string };
+ asAdmin?: boolean;
  }) {
  // Inialize account object
  const account = new Account();
@@ -689,7 +691,7 @@ export class App {
  );
 
  // Sign into new account
- await this.login({ email, password });
+ await this.login({ email, password, asAdmin });
  }
 
  /**

diff --git a/packages/core/src/config.ts b/packages/core/src/config.ts
@@ -13,6 +13,7 @@ interface ParamDefinition {
  readonly options?: string[];
  readonly default?: any;
  readonly description?: string;
+ readonly envVars?: string[];
 }
 
 export function ConfigParam(
@@ -22,11 +23,13 @@ export function ConfigParam(
  options,
  required = false,
  default: def,
+ envVars,
  }: {
  secret?: boolean;
  options?: string[];
  required?: boolean | { prop: string; value: string | string[] };
  default?: any;
+ envVars?: string[];
  } = {},
  description?: string
 ) {
@@ -42,6 +45,7 @@ export function ConfigParam(
  required,
  default: def,
  description,
+ envVars,
  });
  };
 }
@@ -59,7 +63,7 @@ export class Config extends Serializable {
  outputSecrets = false;
 
  fromEnv(env: { [prop: string]: string }, prefix = "PL_") {
- for (const { prop, type } of this._paramDefinitions || []) {
+ for (const { prop, type, envVars } of this._paramDefinitions || []) {
  // type is another config object
  if (typeof type === "function") {
  const newPrefix = `${prefix}${prop.replace(/([a-z])([A-Z])/g, "$1_$2").toUpperCase()}_`;
@@ -79,7 +83,13 @@ export class Config extends Serializable {
 
  const varName = `${prefix}${prop.replace(/([a-z])([A-Z])/g, "$1_$2").toUpperCase()}`;
 
- let str = env[varName];
+ let str: string | undefined = undefined;
+
+ const vars = [varName, ...(envVars || [])];
+
+ while (typeof str === "undefined" && vars.length) {
+ str = env[vars.pop() || ""];
+ }
 
  if (typeof str === "undefined") {
  continue;

diff --git a/packages/core/src/config/padloc.ts b/packages/core/src/config/padloc.ts
@@ -169,6 +169,36 @@ export class RequestLogConfig extends RequestLoggerConfig {
  storage?: DataStorageConfig;
 }
 
+export class PWAConfig extends Config {
+ @ConfigParam("string", { required: true, default: "./pwa" }, "The build output directory directory.")
+ dir: string = "./pwa";
+
+ @ConfigParam(
+ "string",
+ { required: true, default: "http://localhost:8080", envVars: ["PL_CLIENT_URL"] },
+ "The url the app will be available on."
+ )
+ url: string = "http://localhost:8080";
+
+ @ConfigParam(
+ "number",
+ { default: 8080 },
+ "The port to serve the app over. Omit this if you want to " +
+ "serve those files another way (like through nginx or caddy)."
+ )
+ port?: number;
+
+ @ConfigParam("boolean", { default: false }, "Set to `true` to disable adding a CSP to the app.")
+ disableCSP?: boolean = false;
+}
+
+export class AdminConfig extends PWAConfig {}
+
+export class AssetsConfig extends Config {
+ @ConfigParam("string", { required: true, default: "./assets" }, "The directory containing the assets.")
+ dir: string = "./assets";
+}
+
 export class PadlocConfig extends Config {
  constructor(init: Partial<PadlocConfig> = {}) {
  super();
@@ -212,6 +242,19 @@ export class PadlocConfig extends Config {
  )
  provisioning = new ProvisioningConfig();
 
+ @ConfigParam(PWAConfig, { required: true }, "The configuration for the web app.")
+ pwa: PWAConfig = new PWAConfig();
+
+ @ConfigParam(AdminConfig, { required: true }, "The configuration for the admin portal.")
+ admin: AdminConfig = new AdminConfig();
+
+ @ConfigParam(
+ AssetsConfig,
+ { required: true },
+ "Config for assets like app icon, logos, email templates, custom style sheets etc."
+ )
+ assets: AssetsConfig = new AssetsConfig();
+
  @ConfigParam(
  DirectoryConfig,
  { required: { prop: "provisioning.backend", value: "directory" } },

diff --git a/packages/core/src/config/server.ts b/packages/core/src/config/server.ts
@@ -3,13 +3,12 @@ import { Config, ConfigParam } from "../config";
 
 /** Server configuration */
 export class ServerConfig extends Config {
- /** URL where the client interface is hosted. Used for creating links into the application */
  @ConfigParam(
  "string",
- { required: true, default: "http://localhost:8080" },
- "URL where the client interface is hosted. Used for creating links into the application"
+ { required: true, default: "http://localhost:3000" },
+ "The url the server will be reachable on."
  )
- clientUrl = "http://localhost:8080";
+ url: string = "http://localhost:3000";
 
  /** Email address to report critical errors to */
  @ConfigParam("string", {}, "Email address for reporting unexpected server errors.")

diff --git a/packages/core/src/encoding.ts b/packages/core/src/encoding.ts
@@ -1,6 +1,6 @@
 import { Err, ErrorCode } from "./error";
 import { toByteArray, fromByteArray, byteLength, isBase64 } from "./base64";
-import { upgrade, downgrade } from "./migrations";
+import { upgrade, downgrade, LATEST_VERSION } from "./migrations";
 import { BigInteger } from "../vendor/jsbn";
 
 export { bytesToBase32, base32ToBytes } from "./base32";
@@ -10,10 +10,51 @@ export interface SerializationOptions {
  toProperty: string;
  exclude: boolean;
  arrayDeserializeIndividually: boolean;
+ type: "string" | "number" | "boolean" | SerializableConstructor | SerializableConstructor[];
+ options?: any[];
+ default?: any;
+ description?: string;
  fromRaw: (raw: any) => any;
  toRaw: (val: any, version?: string) => any;
 }
 
+function schemaFromPropertyDefinition(def: SerializationOptions) {
+ let schema: any = {};
+
+ switch (def.type) {
+ case "string":
+ schema = def.options
+ ? { type: "string", enum: def.options, default: def.default }
+ : { type: "string", default: def.default };
+ break;
+ case "boolean":
+ schema = { type: "boolean", default: def.default };
+ break;
+ case "number":
+ schema = { type: "number", default: def.default };
+ break;
+ default:
+ schema = Array.isArray(def.type)
+ ? {
+ type: "object",
+ oneOf: def.type.map((t) => new t().getSchema()),
+ }
+ : new def.type().getSchema();
+ }
+
+ if (def.description) {
+ schema.description = def.description;
+ }
+
+ if (def.options) {
+ schema.description = `${schema.description || ""}\n\nPossible values are:${def.options.map(
+ (option) => ` \`${option}\``
+ )}`;
+ }
+
+ return schema;
+}
+
 function registerSerializationOptions(proto: Serializable, property: string, opts: Partial<SerializationOptions>) {
  if (!proto.hasOwnProperty("_propertySerializationOptions")) {
  const parentOptions = proto._propertySerializationOptions || [];
@@ -22,19 +63,16 @@ function registerSerializationOptions(proto: Serializable, property: string, opt
 
  // proto._propertySerializationOptions = proto._propertySerializationOptions.filter(o => o.property === property);
 
- proto._propertySerializationOptions.unshift(
- Object.assign(
- {
- property,
- toProperty: property,
- exclude: false,
- arrayDeserializeIndividually: true,
- toRaw: () => {},
- fromRaw: () => {},
- },
- opts
- )
- );
+ proto._propertySerializationOptions!.unshift({
+ property,
+ toProperty: property,
+ exclude: false,
+ arrayDeserializeIndividually: true,
+ toRaw: () => {},
+ fromRaw: () => {},
+ type: "string",
+ ...opts,
+ });
 }
 
 /**
@@ -46,6 +84,7 @@ export function AsBigInteger(toProperty?: string) {
  toProperty: toProperty || prop,
  toRaw: (val: BigInteger) => val.toString(),
  fromRaw: (raw: string) => new BigInteger(raw),
+ type: "string",
  });
 }
 
@@ -61,6 +100,7 @@ export function AsSerializable(cls: SerializableConstructor | SerializableConstr
  const c = Array.isArray(cls) ? cls.find((c) => new c().kind === raw.kind) : cls;
  return c ? new c().fromRaw(raw) : raw;
  },
+ type: cls,
  });
 }
 
@@ -70,6 +110,7 @@ export function AsBytes(toProperty?: string) {
  toProperty: toProperty || prop,
  toRaw: (val: any) => bytesToBase64(val),
  fromRaw: (raw: any) => base64ToBytes(raw),
+ type: "string",
  });
 }
 
@@ -163,7 +204,7 @@ export class Serializable {
  return this.constructor.name.toLowerCase();
  }
 
- _propertySerializationOptions!: SerializationOptions[];
+ _propertySerializationOptions?: SerializationOptions[];
 
  /**
  * This is called during deserialization and should verify that all
@@ -249,6 +290,31 @@ export class Serializable {
  return new this.constructor().fromRaw(this.toRaw());
  }
 
+ getSchema(): any {
+ const schema: any = {
+ type: "object",
+ properties: {
+ kind: { const: this.kind },
+ version: { const: LATEST_VERSION },
+ },
+ additionalProperties: false,
+ };
+
+ for (const [prop, val] of Object.entries(this)) {
+ const def = this._propertySerializationOptions?.find((opts) => opts.property === prop);
+ if (prop.startsWith("_") || (def && def.exclude)) {
+ continue;
+ }
+ if (def) {
+ schema.properties[prop] = schemaFromPropertyDefinition(def);
+ } else {
+ schema.properties[prop] = val instanceof Serializable ? val.getSchema() : typeof val;
+ }
+ }
+
+ return schema;
+ }
+
  /**
  * Transform this object into a raw javascript object used for
  * serialization. The default implementation simply copies all iterable
@@ -261,9 +327,7 @@ export class Serializable {
  let raw = {} as any;
 
  for (const [prop, val] of Object.entries(this)) {
- const opts =
- this._propertySerializationOptions &&
- this._propertySerializationOptions.find((opts) => opts.property === prop);
+ const opts = this._propertySerializationOptions?.find((opts) => opts.property === prop);
 
  if (prop.startsWith("_") || (opts && opts.exclude)) {
  continue;
@@ -292,9 +356,7 @@ export class Serializable {
  continue;
  }
 
- const opts =
- this._propertySerializationOptions &&
- this._propertySerializationOptions.find((opts) => opts.toProperty === prop);
+ const opts = this._propertySerializationOptions?.find((opts) => opts.toProperty === prop);
 
  // Skip properties that have no serialization options associated with them
  // and are not explicitly defined as a property on the class

diff --git a/packages/core/src/server.ts b/packages/core/src/server.ts
@@ -329,7 +329,8 @@ export class Controller extends API {
  authenticatorId: authenticator.id,
  type: authenticator.type,
  purpose:
- purpose === AuthPurpose.Login && auth.accountStatus !== AccountStatus.Active
+ [AuthPurpose.Login, AuthPurpose.AdminLogin].includes(purpose) &&
+ auth.accountStatus !== AccountStatus.Active
  ? AuthPurpose.Signup
  : purpose,
  device: this.context.device,
@@ -1241,7 +1242,7 @@ export class Controller extends API {
  orgName: invite.org.name,
  invitedBy: invite.invitedBy!.name || invite.invitedBy!.email,
  acceptInviteUrl: `${removeTrailingSlash(
- this.config.server.clientUrl
+ this.config.pwa.url
  )}${path}?${params.toString()}`,
  })
  );
@@ -1309,7 +1310,7 @@ export class Controller extends API {
  member.email,
  new JoinOrgInviteCompletedMessage({
  orgName: org.name,
- openAppUrl: `${removeTrailingSlash(this.config.server.clientUrl)}/org/${org.id}`,
+ openAppUrl: `${removeTrailingSlash(this.config.pwa.url)}/org/${org.id}`,
  })
  );
  } catch (e) {}
@@ -1608,9 +1609,7 @@ export class Controller extends API {
  new JoinOrgInviteAcceptedMessage({
  orgName: org.name,
  invitee: invite.invitee.name || invite.invitee.email,
- confirmMemberUrl: `${removeTrailingSlash(this.config.server.clientUrl)}/invite/${org.id}/${
- invite.id
- }`,
+ confirmMemberUrl: `${removeTrailingSlash(this.config.pwa.url)}/invite/${org.id}/${invite.id}`,
  })
  );
  } catch (e) {}