@topgroup/diginext
Version:
A BUILD SERVER & CLI to deploy apps to any Kubernetes clusters.
83 lines (82 loc) • 4.35 kB
JavaScript
;
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
var desc = Object.getOwnPropertyDescriptor(m, k);
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
desc = { enumerable: true, get: function() { return m[k]; } };
}
Object.defineProperty(o, k2, desc);
}) : (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
o[k2] = m[k];
}));
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
Object.defineProperty(o, "default", { enumerable: true, value: v });
}) : function(o, v) {
o["default"] = v;
});
var __importStar = (this && this.__importStar) || function (mod) {
if (mod && mod.__esModule) return mod;
var result = {};
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
__setModuleDefault(result, mod);
return result;
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.migrateDefaultServiceAccountAndApiKeyUser = void 0;
const log_1 = require("diginext-utils/dist/xconsole/log");
const const_1 = require("../config/const");
const plugins_1 = require("../plugins");
const migrateDefaultServiceAccountAndApiKeyUser = async () => {
const { DB } = await Promise.resolve().then(() => __importStar(require("../modules/api/DB")));
const workspaces = await DB.find("workspace", {}, { select: ["_id", "slug", "name"] });
let affectedWs = 0;
const results = await Promise.all(workspaces.map(async (ws) => {
// find default Service Account of this workspace:
const totalServiceAccounts = await DB.count("service_account", { workspaces: ws._id });
// console.log("serviceAccounts :>> ", serviceAccounts);
const moderatorRole = await DB.findOne("role", { type: "moderator" }, { select: ["_id", "name"] });
if (totalServiceAccounts === 0) {
(0, log_1.log)(`[MIGRATION] migrateDefaultServiceAccount() > Found "${ws.name}" workspace doesn't have any Service Account.`);
const newToken = (0, plugins_1.generateWorkspaceApiAccessToken)();
const saDto = {};
saDto.type = "service_account";
saDto.name = "Default Service Account";
saDto.email = `default.${newToken.name}@${ws.slug}.${const_1.DIGINEXT_DOMAIN}`;
saDto.active = true;
saDto.roles = [];
saDto.workspaces = [ws._id];
saDto.activeWorkspace = ws._id;
saDto.token = (0, plugins_1.getUnexpiredAccessToken)(newToken.value);
// assign "moderator" role to service account:
if (moderatorRole)
saDto.roles = [moderatorRole._id];
const saUser = await DB.create("service_account", saDto);
affectedWs++;
}
// find default API_KEY user of this workspace
const totalApiKeyUsers = await DB.count("api_key_user", { workspaces: ws._id });
if (totalApiKeyUsers === 0) {
(0, log_1.log)(`[MIGRATION] migrateDefaultServiceAccount() > Found "${ws.name}" workspace doesn't have any default API_KEY user.`);
const newToken = (0, plugins_1.generateWorkspaceApiAccessToken)();
const apiUserDto = {};
apiUserDto.type = "api_key";
apiUserDto.name = "API_ACCESS_TOKEN";
apiUserDto.email = `api.${newToken.name}@${ws.slug}.${const_1.DIGINEXT_DOMAIN}`;
apiUserDto.active = true;
apiUserDto.roles = [];
apiUserDto.workspaces = [ws._id];
apiUserDto.activeWorkspace = ws._id;
apiUserDto.token = (0, plugins_1.getUnexpiredAccessToken)(newToken.value);
// assign "moderator" role to API_KEY:
if (moderatorRole)
apiUserDto.roles = [moderatorRole._id];
const apiKeyUser = await DB.create("api_key_user", apiUserDto);
affectedWs++;
}
}));
if (affectedWs > 0)
(0, log_1.log)(`[MIGRATION] migrateDefaultApiAccessToken() > FINISH MIGRATION >> Affected ${affectedWs} workspaces.`);
return results;
};
exports.migrateDefaultServiceAccountAndApiKeyUser = migrateDefaultServiceAccountAndApiKeyUser;