refactor: migrate to objection.js + knex

2018-05-19 16:40:07 -04:00
parent e03e6826a8
commit c9b643fbf0
46 changed files with 1260 additions and 959 deletions
--- a/server/models/_relations.js
+++ b/server/models/_relations.js
@@ -1,16 +0,0 @@
-/**
- * Associate DB Model relations
- */
-module.exports = db => {
-  db.User.belongsToMany(db.Group, { through: 'userGroups' })
-  db.Group.belongsToMany(db.User, { through: 'userGroups' })
-  db.Group.hasMany(db.Right)
-  db.Right.belongsTo(db.Group)
-  db.Document.belongsToMany(db.Tag, { through: 'documentTags' })
-  db.Document.hasMany(db.Comment)
-  db.Tag.belongsToMany(db.Document, { through: 'documentTags' })
-  db.File.belongsTo(db.Folder)
-  db.Folder.hasMany(db.File)
-  db.Comment.belongsTo(db.Document)
-  db.Comment.belongsTo(db.User, { as: 'author' })
-}
--- a/server/models/comment.js
+++ b/server/models/comment.js
@@ -1,16 +0,0 @@
-/**
- * Comment schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let commentSchema = sequelize.define('comment', {
-    content: {
-      type: DataTypes.STRING,
-      allowNull: false
-    }
-  }, {
-    timestamps: true,
-    version: true
-  })
-
-  return commentSchema
-}
--- a/server/models/document.js
+++ b/server/models/document.js
@@ -1,64 +0,0 @@
-/**
- * Document schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let documentSchema = sequelize.define('setting', {
-    path: {
-      type: DataTypes.STRING,
-      allowNull: false
-    },
-    title: {
-      type: DataTypes.STRING,
-      allowNull: false,
-      validate: {
-        len: [2, 255]
-      }
-    },
-    subtitle: {
-      type: DataTypes.STRING,
-      allowNull: true,
-      defaultValue: ''
-    },
-    parentPath: {
-      type: DataTypes.STRING,
-      allowNull: true,
-      defaultValue: ''
-    },
-    parentTitle: {
-      type: DataTypes.STRING,
-      allowNull: true,
-      defaultValue: ''
-    },
-    isDirectory: {
-      type: DataTypes.BOOLEAN,
-      allowNull: false,
-      defaultValue: false
-    },
-    isEntry: {
-      type: DataTypes.BOOLEAN,
-      allowNull: false,
-      defaultValue: false
-    },
-    isDraft: {
-      type: DataTypes.BOOLEAN,
-      allowNull: false,
-      defaultValue: false
-    },
-    searchContent: {
-      type: DataTypes.TEXT,
-      allowNull: true,
-      defaultValue: ''
-    }
-  }, {
-    timestamps: true,
-    version: true,
-    indexes: [
-      {
-        unique: true,
-        fields: ['path']
-      }
-    ]
-  })
-
-  return documentSchema
-}
--- a/server/models/file.js
+++ b/server/models/file.js
@@ -1,42 +0,0 @@
-/**
- * File schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let fileSchema = sequelize.define('file', {
-    category: {
-      type: DataTypes.ENUM('binary', 'image'),
-      allowNull: false,
-      defaultValue: 'binary'
-    },
-    mime: {
-      type: DataTypes.STRING,
-      allowNull: false,
-      defaultValue: 'application/octet-stream'
-    },
-    extra: {
-      type: DataTypes.JSON,
-      allowNull: true
-    },
-    filename: {
-      type: DataTypes.STRING,
-      allowNull: false
-    },
-    basename: {
-      type: DataTypes.STRING,
-      allowNull: false
-    },
-    filesize: {
-      type: DataTypes.INTEGER,
-      allowNull: false,
-      validate: {
-        isInt: true,
-        min: 0
-      }
-    }
-  }, {
-    timestamps: true,
-    version: true
-  })
-
-  return fileSchema
-}
--- a/server/models/folder.js
+++ b/server/models/folder.js
@@ -1,22 +0,0 @@
-/**
- * Folder schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let folderSchema = sequelize.define('folder', {
-    name: {
-      type: DataTypes.STRING,
-      allowNull: false
-    }
-  }, {
-    timestamps: true,
-    version: true,
-    indexes: [
-      {
-        unique: true,
-        fields: ['name']
-      }
-    ]
-  })
-
-  return folderSchema
-}
--- a/server/models/group.js
+++ b/server/models/group.js
@@ -1,16 +0,0 @@
-/**
- * Group schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let groupSchema = sequelize.define('group', {
-    name: {
-      type: DataTypes.STRING,
-      allowNull: false
-    }
-  }, {
-    timestamps: true,
-    version: true
-  })
-
-  return groupSchema
-}
--- a/server/models/locale.js
+++ b/server/models/locale.js
@@ -1,39 +0,0 @@
-/**
- * Locale schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let localeSchema = sequelize.define('locale', {
-    code: {
-      type: DataTypes.STRING,
-      allowNull: false
-    },
-    strings: {
-      type: DataTypes.JSON,
-      allowNull: true
-    },
-    isRTL: {
-      type: DataTypes.BOOLEAN,
-      allowNull: false,
-      defaultValue: false
-    },
-    name: {
-      type: DataTypes.STRING,
-      allowNull: false
-    },
-    nativeName: {
-      type: DataTypes.STRING,
-      allowNull: false
-    }
-  }, {
-    timestamps: true,
-    version: true,
-    indexes: [
-      {
-        unique: true,
-        fields: ['code']
-      }
-    ]
-  })
-
-  return localeSchema
-}
--- a/server/models/right.js
+++ b/server/models/right.js
@@ -1,36 +0,0 @@
-/**
- * Right schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let rightSchema = sequelize.define('right', {
-    path: {
-      type: DataTypes.STRING,
-      allowNull: false
-    },
-    role: {
-      type: DataTypes.ENUM('read', 'write', 'manage'),
-      allowNull: false,
-      defaultValue: 'read'
-    },
-    exact: {
-      type: DataTypes.BOOLEAN,
-      allowNull: false,
-      defaultValue: false
-    },
-    allow: {
-      type: DataTypes.BOOLEAN,
-      allowNull: false,
-      defaultValue: false
-    }
-  }, {
-    timestamps: true,
-    version: true,
-    indexes: [
-      {
-        fields: ['path']
-      }
-    ]
-  })
-
-  return rightSchema
-}
--- a/server/models/setting.js
+++ b/server/models/setting.js
@@ -1,26 +0,0 @@
-/**
- * Settings schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let settingSchema = sequelize.define('setting', {
-    key: {
-      type: DataTypes.STRING,
-      allowNull: false
-    },
-    config: {
-      type: DataTypes.JSON,
-      allowNull: false
-    }
-  }, {
-    timestamps: true,
-    version: true,
-    indexes: [
-      {
-        unique: true,
-        fields: ['key']
-      }
-    ]
-  })
-
-  return settingSchema
-}
--- a/server/models/tag.js
+++ b/server/models/tag.js
@@ -1,22 +0,0 @@
-/**
- * Tags schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let tagSchema = sequelize.define('tag', {
-    key: {
-      type: DataTypes.STRING,
-      allowNull: false
-    }
-  }, {
-    timestamps: true,
-    version: true,
-    indexes: [
-      {
-        unique: true,
-        fields: ['key']
-      }
-    ]
-  })
-
-  return tagSchema
-}
--- a/server/models/user.js
+++ b/server/models/user.js
@@ -1,210 +0,0 @@
-/* global WIKI */
-
-const Promise = require('bluebird')
-const bcrypt = require('bcryptjs-then')
-const _ = require('lodash')
-const tfa = require('node-2fa')
-const securityHelper = require('../helpers/security')
-
-/**
- * Users schema
- */
-module.exports = (sequelize, DataTypes) => {
-  let userSchema = sequelize.define('user', {
-    email: {
-      type: DataTypes.STRING,
-      allowNull: false,
-      validate: {
-        isEmail: true
-      }
-    },
-    provider: {
-      type: DataTypes.STRING,
-      allowNull: false
-    },
-    providerId: {
-      type: DataTypes.STRING,
-      allowNull: true
-    },
-    password: {
-      type: DataTypes.STRING,
-      allowNull: true
-    },
-    name: {
-      type: DataTypes.STRING,
-      allowNull: true
-    },
-    role: {
-      type: DataTypes.ENUM('admin', 'user', 'guest'),
-      allowNull: false
-    },
-    tfaIsActive: {
-      type: DataTypes.BOOLEAN,
-      allowNull: false,
-      defaultValue: false
-    },
-    tfaSecret: {
-      type: DataTypes.STRING,
-      allowNull: true
-    }
-  }, {
-    timestamps: true,
-    version: true,
-    indexes: [
-      {
-        unique: true,
-        fields: ['provider', 'email']
-      }
-    ]
-  })
-
-  userSchema.prototype.validatePassword = async function (rawPwd) {
-    if (await bcrypt.compare(rawPwd, this.password) === true) {
-      return true
-    } else {
-      throw new WIKI.Error.AuthLoginFailed()
-    }
-  }
-
-  userSchema.prototype.enableTFA = async function () {
-    let tfaInfo = tfa.generateSecret({
-      name: WIKI.config.site.title
-    })
-    this.tfaIsActive = true
-    this.tfaSecret = tfaInfo.secret
-    return this.save()
-  }
-
-  userSchema.prototype.disableTFA = async function () {
-    this.tfaIsActive = false
-    this.tfaSecret = ''
-    return this.save()
-  }
-
-  userSchema.prototype.verifyTFA = function (code) {
-    let result = tfa.verifyToken(this.tfaSecret, code)
-    return (result && _.has(result, 'delta') && result.delta === 0)
-  }
-
-  userSchema.login = async (opts, context) => {
-    if (_.has(WIKI.config.auth.strategies, opts.provider)) {
-      _.set(context.req, 'body.email', opts.username)
-      _.set(context.req, 'body.password', opts.password)
-
-      // Authenticate
-      return new Promise((resolve, reject) => {
-        WIKI.auth.passport.authenticate(opts.provider, async (err, user, info) => {
-          if (err) { return reject(err) }
-          if (!user) { return reject(new WIKI.Error.AuthLoginFailed()) }
-
-          // Is 2FA required?
-          if (user.tfaIsActive) {
-            try {
-              let loginToken = await securityHelper.generateToken(32)
-              await WIKI.redis.set(`tfa:${loginToken}`, user.id, 'EX', 600)
-              return resolve({
-                tfaRequired: true,
-                tfaLoginToken: loginToken
-              })
-            } catch (err) {
-              WIKI.logger.warn(err)
-              return reject(new WIKI.Error.AuthGenericError())
-            }
-          } else {
-            // No 2FA, log in user
-            return context.req.logIn(user, err => {
-              if (err) { return reject(err) }
-              resolve({
-                tfaRequired: false
-              })
-            })
-          }
-        })(context.req, context.res, () => {})
-      })
-    } else {
-      throw new WIKI.Error.AuthProviderInvalid()
-    }
-  }
-
-  userSchema.loginTFA = async (opts, context) => {
-    if (opts.securityCode.length === 6 && opts.loginToken.length === 64) {
-      let result = await WIKI.redis.get(`tfa:${opts.loginToken}`)
-      if (result) {
-        let userId = _.toSafeInteger(result)
-        if (userId && userId > 0) {
-          let user = await WIKI.db.User.findById(userId)
-          if (user && user.verifyTFA(opts.securityCode)) {
-            return Promise.fromCallback(clb => {
-              context.req.logIn(user, clb)
-            }).return({
-              succeeded: true,
-              message: 'Login Successful'
-            }).catch(err => {
-              WIKI.logger.warn(err)
-              throw new WIKI.Error.AuthGenericError()
-            })
-          } else {
-            throw new WIKI.Error.AuthTFAFailed()
-          }
-        }
-      }
-    }
-    throw new WIKI.Error.AuthTFAInvalid()
-  }
-
-  userSchema.processProfile = (profile) => {
-    let primaryEmail = ''
-    if (_.isArray(profile.emails)) {
-      let e = _.find(profile.emails, ['primary', true])
-      primaryEmail = (e) ? e.value : _.first(profile.emails).value
-    } else if (_.isString(profile.email) && profile.email.length > 5) {
-      primaryEmail = profile.email
-    } else if (_.isString(profile.mail) && profile.mail.length > 5) {
-      primaryEmail = profile.mail
-    } else if (profile.user && profile.user.email && profile.user.email.length > 5) {
-      primaryEmail = profile.user.email
-    } else {
-      return Promise.reject(new Error(WIKI.lang.t('auth:errors.invaliduseremail')))
-    }
-
-    profile.provider = _.lowerCase(profile.provider)
-    primaryEmail = _.toLower(primaryEmail)
-
-    return WIKI.db.User.findOneAndUpdate({
-      email: primaryEmail,
-      provider: profile.provider
-    }, {
-      email: primaryEmail,
-      provider: profile.provider,
-      providerId: profile.id,
-      name: profile.displayName || _.split(primaryEmail, '@')[0]
-    }, {
-      new: true
-    }).then((user) => {
-      // Handle unregistered accounts
-      if (!user && profile.provider !== 'local' && (WIKI.config.auth.defaultReadAccess || profile.provider === 'ldap' || profile.provider === 'azure')) {
-        let nUsr = {
-          email: primaryEmail,
-          provider: profile.provider,
-          providerId: profile.id,
-          password: '',
-          name: profile.displayName || profile.name || profile.cn,
-          rights: [{
-            role: 'read',
-            path: '/',
-            exact: false,
-            deny: false
-          }]
-        }
-        return WIKI.db.User.create(nUsr)
-      }
-      return user || Promise.reject(new Error(WIKI.lang.t('auth:errors:notyetauthorized')))
-    })
-  }
-
-  userSchema.hashPassword = (rawPwd) => {
-    return bcrypt.hash(rawPwd)
-  }
-
-  return userSchema
-}