UNPKG

@barchart/common-node-js

Version:

Common classes, utilities, and functions for building Node.js servers

github.com/barchart/barchart-common-node-js

barchart/barchart-common-node-js

181 lines (151 loc) 6.68 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
const assert = require('@barchart/common-js/lang/assert'), Disposable = require('@barchart/common-js/lang/Disposable'), is = require('@barchart/common-js/lang/is'), random = require('@barchart/common-js/lang/random'), Scheduler = require('@barchart/common-js/timing/Scheduler'); const EndpointBuilder = require('@barchart/common-js/api/http/builders/EndpointBuilder'), Gateway = require('@barchart/common-js/api/http/Gateway'), ProtocolType = require('@barchart/common-js/api/http/definitions/ProtocolType'), ResponseInterceptor = require('@barchart/common-js/api/http/interceptors/ResponseInterceptor'), VerbType = require('@barchart/common-js/api/http/definitions/VerbType'); const Configuration = require('./Configuration'); module.exports = (() => { 'use strict'; const DEFAULT_REFRESH_INTERVAL_MILLISECONDS = 5 * 60 * 1000; /** * Generates and caches a signed token (using a delegate). The cached token * is refreshed periodically. An instance of this class is required by * the {@link PushNotificationProvider} implementations. * * @public * @exported * @param {Callbacks.JwtTokenGenerator} tokenGenerator - An anonymous function which returns a signed JWT token. * @param {Number=} refreshInterval - The number of milliseconds which must pass before a new JWT token is generated. A null or undefined value means the token is not cached. */ class JwtProvider extends Disposable { constructor(tokenGenerator, refreshInterval) { super(); assert.argumentIsRequired(tokenGenerator, 'tokenGenerator', Function); assert.argumentIsOptional(refreshInterval, 'refreshInterval', Number); this._tokenGenerator = tokenGenerator; this._tokenPromise = null; this._refreshTimestamp = null; this._refreshPending = false; if (is.number(refreshInterval)) { this._refreshInterval = Math.max(refreshInterval || 0, 0); this._refreshJitter = random.range(0, Math.floor(this._refreshInterval / 10)); } else { this._refreshInterval = null; this._refreshJitter = null; } this._scheduler = new Scheduler(); } /** * Reads the current token, refreshing if necessary. * * @public * @returns {Promise<String>} */ getToken() { return Promise.resolve() .then(() => { if (this._refreshPending) { return this._tokenPromise; } if (this._tokenPromise === null || this._refreshInterval === null || (this._refreshInterval > 0 && getTime() > (this._refreshTimestamp + this._refreshInterval + this._refreshJitter))) { this._refreshPending = true; this._tokenPromise = this._scheduler.backoff(() => this._tokenGenerator(), 100, 'Read JWT token', 3) .then((token) => { this._refreshTimestamp = getTime(); this._refreshPending = false; return token; }).catch((e) => { this._tokenPromise = null; this._refreshTimestamp = null; this._refreshPending = false; return Promise.reject(e); }); } return this._tokenPromise; }); } /** * A factory for {@link JwtProvider} which is an alternative to the constructor. * * @public * @static * @param {Callbacks.JwtTokenGenerator} tokenGenerator - An anonymous function which returns a signed JWT token. * @param {Number=} refreshInterval - The number of milliseconds which must pass before a new JWT token is generated. A zero value means the token should never be refreshed. A null or undefined value means the token is not cached. * @returns {JwtProvider} */ static fromTokenGenerator(tokenGenerator, refreshInterval) { return new JwtProvider(tokenGenerator, refreshInterval); } /** * Builds a {@link JwtProvider} which will generate tokens impersonating the specified * user. The "admin" environment is for Barchart use only and access is restricted * to Barchart's internal network. * * @public * @static * @param {String} userId - The user identifier to impersonate. * @param {String} contextId - The context identifier of the user to impersonate. * @param {Number=} refreshInterval - The number of milliseconds which must pass before a new JWT token is generated. A null or undefined value means the token is not cached. * @returns {JwtProvider} */ static forStage(userId, contextId, refreshInterval) { return getJwtProviderForImpersonation(Configuration.getJwtImpersonationHost, 'stage', userId, contextId, refreshInterval); } /** * Builds a {@link JwtProvider} which will generate tokens impersonating the specified * user. The "admin" environment is for Barchart use only and access is restricted * to Barchart's internal network. * * @public * @static * @param {String} userId - The user identifier to impersonate. * @param {String} contextId - The context identifier of the user to impersonate. * @param {Number=} refreshInterval - The number of milliseconds which must pass before a new JWT token is generated. A null or undefined value means the token is not cached. * @returns {JwtProvider} */ static forProduction(userId, contextId, refreshInterval) { return getJwtProviderForImpersonation(Configuration.getJwtImpersonationHost, 'prod', userId, contextId, refreshInterval); } _onDispose() { this._scheduler.dispose(); this._scheduler = null; } toString() { return '[JwtProvider]'; } } function getJwtProviderForImpersonation(host, environment, userId, contextId, refreshInterval) { assert.argumentIsRequired(host, 'host', String); assert.argumentIsRequired(environment, 'environment', String); assert.argumentIsRequired(userId, 'userId', String); assert.argumentIsRequired(contextId, 'contextId', String); assert.argumentIsOptional(refreshInterval, 'refreshInterval', Number); const tokenEndpoint = EndpointBuilder.for('generate-impersonation-jwt-for-test', 'generate JWT token for test environment') .withVerb(VerbType.POST) .withProtocol(ProtocolType.HTTPS) .withHost(host) .withPathBuilder((pb) => pb.withLiteralParameter('version', 'v1') .withLiteralParameter('tokens', 'tokens') .withLiteralParameter('impersonate', 'impersonate') .withLiteralParameter('service', 'ens') .withLiteralParameter('environment', environment) ) .withBody() .withResponseInterceptor(ResponseInterceptor.DATA) .endpoint; const payload = { }; payload.userId = userId; payload.contextId = contextId; return new JwtProvider(() => Gateway.invoke(tokenEndpoint, payload), refreshInterval || DEFAULT_REFRESH_INTERVAL_MILLISECONDS); } function getTime() { return (new Date()).getTime(); } return JwtProvider; })();