hajkmap · jacobwod · Apr 13, 2023 · Mar 30, 2023 · Mar 31, 2023 · Mar 31, 2023
diff --git a/new-backend/.env b/new-backend/.env
@@ -27,6 +27,17 @@ NODE_ENV=development
 # Port that the HTTP server will listen on
 PORT=3002
 
+# *** Backend API versions ***
+# Hajk's backend comes with a versioned API. 
+# The initial, .NET compatible API is version 1.
+# The improved version, which includes e.g. consolidated loading of 
+# config in client is version 2. 
+#
+# The recommended setting is to leave this empty (i.e. outcommented). This means that all
+# currently supported versions of the API are enabled.
+# If you want to enable only specific version(s), supply a comma-separated list, e.g.
+#API_VERSIONS=2,3 # Disables /api/v1, enables /api/v2 and /api/v3
+
 # When an Express app is running behind a proxy, app.set('trust proxy') should be
 # set. This setting simply passes its value to Express as the value of 'trust proxy'. 
 # To sum up: if set to true, the client IP will be extracted from the leftmost portion
@@ -43,7 +54,12 @@ REQUEST_LIMIT=1000kb
 SESSION_SECRET=mySecret
 
 # Control which directories will be statically exposed on the HTTP server.
-# / can contain Hajk's client app
+# Because the endpoints of the Static Exposer are not versioned, we must
+# decide which API version we want to use for those routes. The default value
+# is "LATEST" but you can specify any of the allowed API versions. Usually, 
+# the default value is fine.
+STATIC_EXPOSER_VERSION=LATEST 
+# Expose Hajk's client app directly under /
 EXPOSE_CLIENT=true
 # If we expose /admin, we want probably to restrict access to it. Make sure 
 # to enable AD_* settings below in order for this to work.

diff --git a/new-backend/package-lock.json b/new-backend/package-lock.json
diff --git a/new-backend/package.json b/new-backend/package.json
@@ -34,7 +34,7 @@
     "fast-xml-parser": "^4.0.12",
     "helmet": "^6.0.1",
     "http-proxy-middleware": "^2.0.6",
-    "log4js": "^6.7.1",
+    "log4js": "^6.9.1",
     "node-windows": "^1.0.0-beta.8"
   },
   "devDependencies": {

diff --git a/...d/server/api/controllers/ad/controller.js → ...rver/apis/v1/controllers/ad/controller.js b/...d/server/api/controllers/ad/controller.js → ...rver/apis/v1/controllers/ad/controller.js
diff --git a/...ckend/server/api/controllers/ad/router.js → ...d/server/apis/v1/controllers/ad/router.js b/...ckend/server/api/controllers/ad/router.js → ...d/server/apis/v1/controllers/ad/router.js
diff --git a/...rver/api/controllers/config/controller.js → .../apis/v1/controllers/config/controller.js b/...rver/api/controllers/config/controller.js → .../apis/v1/controllers/config/controller.js
diff --git a/...d/server/api/controllers/config/router.js → ...rver/apis/v1/controllers/config/router.js b/...d/server/api/controllers/config/router.js → ...rver/apis/v1/controllers/config/router.js
diff --git a/...api/controllers/informative/controller.js → .../v1/controllers/informative/controller.js b/...api/controllers/informative/controller.js → .../v1/controllers/informative/controller.js
diff --git a/...ver/api/controllers/informative/router.js → ...apis/v1/controllers/informative/router.js b/...ver/api/controllers/informative/router.js → ...apis/v1/controllers/informative/router.js
diff --git a/...r/api/controllers/mapconfig/controller.js → ...is/v1/controllers/mapconfig/controller.js b/...r/api/controllers/mapconfig/controller.js → ...is/v1/controllers/mapconfig/controller.js
diff --git a/...erver/api/controllers/mapconfig/router.js → ...r/apis/v1/controllers/mapconfig/router.js b/...erver/api/controllers/mapconfig/router.js → ...r/apis/v1/controllers/mapconfig/router.js
diff --git a/...er/api/controllers/settings/controller.js → ...pis/v1/controllers/settings/controller.js b/...er/api/controllers/settings/controller.js → ...pis/v1/controllers/settings/controller.js
diff --git a/...server/api/controllers/settings/router.js → ...er/apis/v1/controllers/settings/router.js b/...server/api/controllers/settings/router.js → ...er/apis/v1/controllers/settings/router.js
diff --git a/...erver/api/middlewares/fme.server.proxy.js → ...r/apis/v1/middlewares/fme.server.proxy.js b/...erver/api/middlewares/fme.server.proxy.js → ...r/apis/v1/middlewares/fme.server.proxy.js
@@ -1,6 +1,5 @@
 import { createProxyMiddleware } from "http-proxy-middleware";
 import log4js from "log4js";
-import fs from "fs";
 
 // Value of process.env.LOG_LEVEL will be one of the allowed
 // log4js-values. We will customize HPM to use log4js too,
@@ -21,13 +20,12 @@ const logLevels = {
 };
 
 // Grab a logger
-const logger = log4js.getLogger("proxy.fmeServer");
+const logger = log4js.getLogger("proxy.fmeServer.v1");
 
 export default function fmeServerProxy(err, req, res, next) {
   return createProxyMiddleware({
     target: process.env.FME_SERVER_BASE_URL,
-    logLevel: logLevels[process.env.LOG_LEVEL],
-    logProvider: () => logger,
+    logLevel: "silent", // We don't care about logLevels[process.env.LOG_LEVEL] in this case as we log success and errors ourselves
     changeOrigin: true,
     secure: process.env.FME_SERVER_SECURE === "true", // should SSL certs be verified?
     onProxyReq: (proxyReq, req, res) => {

diff --git a/.../server/api/middlewares/restrict.admin.js → ...ver/apis/v1/middlewares/restrict.admin.js b/.../server/api/middlewares/restrict.admin.js → ...ver/apis/v1/middlewares/restrict.admin.js
@@ -1,7 +1,7 @@
 import log4js from "log4js";
 import ad from "../services/activedirectory.service";
 
-const logger = log4js.getLogger("router");
+const logger = log4js.getLogger("router.v1");
 
 export default async function restrictAdmin(req, res, next) {
   logger.trace("Attempt to access admin API methods");

diff --git a/...server/api/middlewares/restrict.static.js → ...er/apis/v1/middlewares/restrict.static.js b/...server/api/middlewares/restrict.static.js → ...er/apis/v1/middlewares/restrict.static.js
@@ -1,7 +1,7 @@
 import log4js from "log4js";
 import ad from "../services/activedirectory.service";
 
-const logger = log4js.getLogger("hajk.static.restrict");
+const logger = log4js.getLogger("hajk.static.restrict.v1");
 /**
  * @summary Determine if current user is member in any of the required groups in order to access a given path.
  *

diff --git a/...server/api/middlewares/sokigo.fb.proxy.js → ...er/apis/v1/middlewares/sokigo.fb.proxy.js b/...server/api/middlewares/sokigo.fb.proxy.js → ...er/apis/v1/middlewares/sokigo.fb.proxy.js
@@ -20,13 +20,12 @@ const logLevels = {
 };
 
 // Grab a logger
-const logger = log4js.getLogger("proxy.sokigo");
+const logger = log4js.getLogger("proxy.sokigo.v1");
 
 export default function sokigoFBProxy(err, req, res, next) {
   return createProxyMiddleware({
     target: process.env.FB_SERVICE_BASE_URL,
-    logLevel: logLevels[process.env.LOG_LEVEL],
-    logProvider: () => logger,
+    logLevel: "silent", // We don't care about logLevels[process.env.LOG_LEVEL] in this case as we log success and errors ourselves
     pathRewrite: (originalPath, req) => {
       // Remove the portion that shouldn't be there when we proxy the request
       // and split the remaining string on "?" to separate any query params

diff --git a/new-backend/server/apis/v1/router.js b/new-backend/server/apis/v1/router.js
@@ -0,0 +1,15 @@
+import * as express from "express";
+
+import configRouter from "./controllers/config/router";
+import mapconfigRouter from "./controllers/mapconfig/router";
+import settingsRouter from "./controllers/settings/router";
+import informativeRouter from "./controllers/informative/router";
+import adRouter from "./controllers/ad/router";
+
+export default express
+  .Router()
+  .use("/config", configRouter)
+  .use("/informative", informativeRouter)
+  .use("/mapconfig", mapconfigRouter)
+  .use("/settings", settingsRouter)
+  .use("/ad", adRouter);
diff --git a/...r/api/services/activedirectory.service.js → ...is/v1/services/activedirectory.service.js b/...r/api/services/activedirectory.service.js → ...is/v1/services/activedirectory.service.js
diff --git a/...end/server/api/services/config.service.js → ...server/apis/v1/services/config.service.js b/...end/server/api/services/config.service.js → ...server/apis/v1/services/config.service.js
diff --git a/...erver/api/services/informative.service.js → ...r/apis/v1/services/informative.service.js b/...erver/api/services/informative.service.js → ...r/apis/v1/services/informative.service.js
diff --git a/...d/server/api/services/settings.service.js → ...rver/apis/v1/services/settings.service.js b/...d/server/api/services/settings.service.js → ...rver/apis/v1/services/settings.service.js
diff --git a/.../server/api/utils/ActiveDirectoryError.js → ...ver/apis/v1/utils/ActiveDirectoryError.js b/.../server/api/utils/ActiveDirectoryError.js → ...ver/apis/v1/utils/ActiveDirectoryError.js
diff --git a/...ackend/server/api/utils/FmeServerError.js → ...nd/server/apis/v1/utils/FmeServerError.js b/...ackend/server/api/utils/FmeServerError.js → ...nd/server/apis/v1/utils/FmeServerError.js
diff --git a/new-backend/server/api/utils/asyncFilter.js → ...ckend/server/apis/v1/utils/asyncFilter.js b/new-backend/server/api/utils/asyncFilter.js → ...ckend/server/apis/v1/utils/asyncFilter.js
diff --git a/...pi/utils/getAnalyticsOptionsFromDotEnv.js → ...v1/utils/getAnalyticsOptionsFromDotEnv.js b/...pi/utils/getAnalyticsOptionsFromDotEnv.js → ...v1/utils/getAnalyticsOptionsFromDotEnv.js
diff --git a/...erver/api/utils/handleStandardResponse.js → ...r/apis/v1/utils/handleStandardResponse.js b/...erver/api/utils/handleStandardResponse.js → ...r/apis/v1/utils/handleStandardResponse.js
diff --git a/new-backend/server/apis/v2/controllers/ad/controller.js b/new-backend/server/apis/v2/controllers/ad/controller.js
@@ -0,0 +1,43 @@
+import ActiveDirectoryService from "../../services/activedirectory.service";
+import handleStandardResponse from "../../utils/handleStandardResponse";
+import log4js from "log4js";
+
+// Create a logger for admin events, those will be saved in a separate log file.
+const ael = log4js.getLogger("adminEvent.v2");
+
+export class Controller {
+  availableADGroups(req, res) {
+    ActiveDirectoryService.getAvailableADGroups().then((data) =>
+      handleStandardResponse(res, data)
+    );
+  }
+
+  findCommonADGroupsForUsers(req, res) {
+    ActiveDirectoryService.findCommonADGroupsForUsers(req.query.users).then(
+      (data) => handleStandardResponse(res, data)
+    );
+  }
+
+  getStore(req, res) {
+    // Extract the store name from request's path
+    const store = req.route.path.substring(1);
+    ActiveDirectoryService.getStore(store).then((data) => {
+      handleStandardResponse(res, data);
+      // If data doesn't contain the error property, we're good - print event to admin log
+      !data.error &&
+        ael.info(
+          `${res.locals.authUser} viewed contents of AD store "${store}"`
+        );
+    });
+  }
+
+  flushStores(req, res) {
+    ActiveDirectoryService.flushStores().then((data) => {
+      handleStandardResponse(res, data);
+      // If data doesn't contain the error property, we're good - print event to admin log
+      !data.error && ael.info(`${res.locals.authUser} flushed all AD stores`);
+    });
+  }
+}
+
+export default new Controller();
diff --git a/new-backend/server/apis/v2/controllers/ad/router.js b/new-backend/server/apis/v2/controllers/ad/router.js
@@ -0,0 +1,13 @@
+import * as express from "express";
+import controller from "./controller";
+import restrictAdmin from "../../middlewares/restrict.admin";
+
+export default express
+  .Router()
+  .use(restrictAdmin) // We will not allow any of the following routes unless user is admin
+  .get("/availableadgroups", controller.availableADGroups)
+  .get("/findcommonadgroupsforusers", controller.findCommonADGroupsForUsers)
+  .get("/users", controller.getStore)
+  .get("/groups", controller.getStore)
+  .get("/groupsPerUser", controller.getStore)
+  .put("/flushStores", controller.flushStores);
diff --git a/...er/api/controllers/configV2/controller.js → .../apis/v2/controllers/config/controller.js b/...er/api/controllers/configV2/controller.js → .../apis/v2/controllers/config/controller.js
@@ -1,4 +1,4 @@
-import ConfigServiceV2 from "../../services/config.service.v2";
+import ConfigService from "../../services/config.service";
 import ad from "../../services/activedirectory.service";
 import handleStandardResponse from "../../utils/handleStandardResponse";
 
@@ -12,7 +12,7 @@ export class Controller {
    * @memberof Controller
    */
   byMap(req, res) {
-    ConfigServiceV2.getMapWithLayers(
+    ConfigService.getMapWithLayers(
       req.params.map,
       ad.getUserFromRequestHeader(req)
     ).then((data) => handleStandardResponse(res, data));

diff --git a/...server/api/controllers/configV2/router.js → ...rver/apis/v2/controllers/config/router.js b/...server/api/controllers/configV2/router.js → ...rver/apis/v2/controllers/config/router.js
diff --git a/new-backend/server/apis/v2/controllers/informative/controller.js b/new-backend/server/apis/v2/controllers/informative/controller.js
@@ -0,0 +1,62 @@
+import InformativeService from "../../services/informative.service";
+import log4js from "log4js";
+
+// Create a logger for admin events, those will be saved in a separate log file.
+const ael = log4js.getLogger("adminEvent.v2");
+
+export class Controller {
+  create(req, res) {
+    const { documentName, mapName } = JSON.parse(req.body);
+    InformativeService.create(documentName, mapName).then((r) => {
+      // FIXME: The buggy admin expects 200 and this string on success,
+      // but I think that we'd do better with a meaningful JSON response.
+      if (r && !r.error) {
+        res.status(200).send("Document created");
+        ael.info(
+          `${res.locals.authUser} created a new document, ${documentName}.json, and connected it to map ${mapName}.json`
+        );
+      } else res.status(500).send(r.error.message);
+    });
+  }
+
+  getByName(req, res) {
+    InformativeService.getByName(req.params.name).then((r) => {
+      if (r && !r.error) res.json(r);
+      else {
+        res
+          .status(404)
+          .send(`Document "${req.params.name}" could not be found`);
+      }
+    });
+  }
+
+  saveByName(req, res) {
+    InformativeService.saveByName(req.params.name, req.body).then((r) => {
+      if (r && !r.error) {
+        res.status(200).send("File saved");
+        ael.info(
+          `${res.locals.authUser} saved document ${req.params.name}.json`
+        );
+      } else res.status(500).send(r.error.message);
+    });
+  }
+
+  deleteByName(req, res) {
+    InformativeService.deleteByName(req.params.name).then((r) => {
+      if (r && !r.error) {
+        res.status(200).send("File saved");
+        ael.info(
+          `${res.locals.authUser} deleted document ${req.params.name}.json`
+        );
+      } else res.status(500).send(r.error.message);
+    });
+  }
+
+  list(req, res) {
+    InformativeService.getAvailableDocuments().then((r) => {
+      if (r && !r.error) res.json(r);
+      else res.status(500).send(r.error.message);
+    });
+  }
+}
+export default new Controller();
diff --git a/new-backend/server/apis/v2/controllers/informative/router.js b/new-backend/server/apis/v2/controllers/informative/router.js
@@ -0,0 +1,13 @@
+import * as express from "express";
+import controller from "./controller";
+import restrictAdmin from "../../middlewares/restrict.admin";
+
+export default express
+  .Router()
+  .get("/load/:name", controller.getByName)
+  .use(restrictAdmin) // All routes that follow are admin-only!
+  .put("/create", controller.create) // PUT is correct here, as this operation is idempotent
+  .delete("/delete/:name", controller.deleteByName)
+  .get("/list", controller.list)
+  .get("/list/:name", controller.list) // FIXME: For now, the name paramter is ignored - should list only documents connected to specified map
+  .put("/save/:name", controller.saveByName); // PUT is correct here, as this operation is idempotent