Loose coupling: security module #1630
Merged
Conversation
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
…entials' into loose-coupling-security
…entials' into loose-coupling-security
…-before-credentials
…entials' into loose-coupling-security
…ectory' into loose-coupling-security
…ectory' into loose-coupling-security
…tor-core-directory
…tor-core-directory
…ectory' into loose-coupling-security
…ectory' into loose-coupling-security
…an_ask_event error
Aschen
suggested changes
Jul 6, 2020
lib/core/auth/tokenManager.js
Outdated
| @@ -67,6 +69,11 @@ class TokenManager { | |||
| this.timer = null; | |||
| } | |||
|
|
|||
| async init () { | |||
| const anonymous = this.kuzzle.ask('core:security:user:anonymous'); | |||
There was a problem hiding this comment.
It's there 🤔
You might be reviewing an older version, I caught this one recently when I completed the unit tests suite.
There was a problem hiding this comment.
Possible because I started this review a long time ago 😅
lib/api/controller/auth.js
Outdated
| apiKeyId = request.input.resource._id || null, | ||
| description = this.getBodyString(request, 'description'); | ||
| const expiresIn = request.input.args.expiresIn || -1; | ||
| const refresh = this.getRefresh(request); |
There was a problem hiding this comment.
Suggested change
| const refresh = this.getRefresh(request); | |
| const refresh = this.getRefresh(request, 'wait_for'); |
lib/api/controller/auth.js
Outdated
| null, | ||
| body, | ||
| { | ||
| refresh: this.getRefresh(request), |
There was a problem hiding this comment.
Should be wait_for by default
Suggested change
| refresh: this.getRefresh(request), | |
| refresh: this.getRefresh(request, 'wait_for'), |
lib/api/controller/document.js
Outdated
| const id = request.input.resource._id; | ||
| const content = this.getBody(request); | ||
| async create (request) { | ||
| const id = this.getId(request, ifMissingEnum.IGNORE); | ||
| const userId = this.getUserId(request); | ||
| const refresh = this.getString(request, 'refresh', 'false'); |
There was a problem hiding this comment.
Suggested change
| const refresh = this.getString(request, 'refresh', 'false'); | |
| const refresh = this.getRefresh(request); |
lib/core/plugin/manager.js
Outdated
Comment on lines
515
to
517
| const opts = Object.assign({}, strategy.config.strategyOptions, { | ||
| passReqToCallback: true | ||
| }); |
There was a problem hiding this comment.
Nitpicking
Suggested change
| const opts = Object.assign({}, strategy.config.strategyOptions, { | |
| passReqToCallback: true | |
| }); | |
| const opts = { ...strategy.config.strategyOptions, passReqToCallback: true }; |
lib/core/security/securityLoader.js
Outdated
| promises.push(this.kuzzle.funnel.processRequest(request)); | ||
| } | ||
|
|
||
| await Promise.all(promises); |
There was a problem hiding this comment.
Bluebird is much faster for // execution
Suggested change
| await Promise.all(promises); | |
| await Bluebird.all(promises); |
There was a problem hiding this comment.
Changed for the sake of uniformity, but performances are not a concern in the security loader, which should be at most called 1 time during the life of a kuzzle instance.
| 'use strict'; | ||
|
|
||
| const { isEmpty } = require('lodash'); | ||
| const { Request } = require('kuzzle-common-objects'); |
There was a problem hiding this comment.
Bluebird is much faster for // execution
Suggested change
| const { Request } = require('kuzzle-common-objects'); | |
| const { Request } = require('kuzzle-common-objects'); | |
| const Bluebird = require('bluebird'); | |
lib/core/security/roleRepository.js
Outdated
| if ( action !== '*' | ||
| && !this.kuzzle.pluginsManager.isAction(roleController, action) | ||
| ) { | ||
| if ( action !== '*' && !plugins.isAction(roleController, action)) { |
There was a problem hiding this comment.
Suggested change
| if ( action !== '*' && !plugins.isAction(roleController, action)) { | |
| if (action !== '*' && !plugins.isAction(roleController, action)) { |
Leodau
approved these changes
Jul 6, 2020
|
@Aschen > suggestions applied. |
Aschen
approved these changes
Jul 7, 2020
|
Kudos, SonarCloud Quality Gate passed!
|
This was referenced Jul 7, 2020
Closed
Closed
Merged
scottinet
added a commit
that referenced
this pull request
Jul 8, 2020
# [2.3.2](/~https://github.com/kuzzleio/kuzzle/releases/tag/2.3.2) (2020-07-07) #### Bug fixes - [ [#1701](#1701) ] Fix: description should not be required for plugin custom errors ([scottinet](/~https://github.com/scottinet)) - [ [#1695](#1695) ] Fix dump generation ([Aschen](/~https://github.com/Aschen)) - [ [#1698](#1698) ] Fix generic events on search queries ([scottinet](/~https://github.com/scottinet)) #### Enhancements - [ [#1702](#1702) ] Update search indexes only when the "dynamic" setting changes from false to true/strict ([Aschen](/~https://github.com/Aschen)) - [ [#1630](#1630) ] Loose coupling: security module ([scottinet](/~https://github.com/scottinet)) - [ [#1604](#1604) ] Add request ID in log ([Aschen](/~https://github.com/Aschen)) ---
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Add this suggestion to a batch that can be applied as a single commit.
This suggestion is invalid because no changes were made to the code.
Suggestions cannot be applied while the pull request is closed.
Suggestions cannot be applied while viewing a subset of changes.
Only one suggestion per line can be applied in a batch.
Add this suggestion to a batch that can be applied as a single commit.
Applying suggestions on deleted lines is not supported.
You must change the existing code in this line in order to create a valid suggestion.
Outdated suggestions cannot be applied.
This suggestion has been applied or marked resolved.
Suggestions cannot be applied from pending reviews.
Suggestions cannot be applied on multi-line comments.
Suggestions cannot be applied while the pull request is queued to merge.
Suggestion cannot be applied right now. Please check back later.
Description
Loosely couple the security module to any other objects.
Also makes the security module entirely responsible for managing its stored documents and cache:
security.[role|profile|user].not_found) are now handled by the security module, preventing duplicated code in API methodsChanges / Fixes related to security API methods
body.contentargument is no longer required forsecurity:createRestrictedUser: it's required (for now) forsecurity:createUserbecause we need theprofileIdsargument in it, but createRestrictedUser forbids this argument... and the remaining user content is completely optional, so the whole object itself should be so as wellsecurity:updateUser,security:updateProfile,security:updateRole: theretryOnConflictoption was accepted but undocumented (fixed). Also, the default value forretryOnConflicthas been set to10(instead of0) to prevent common support ticketssecurity:createFirstAdmin:security:createRestrictedUser, thecontentargument is no longer requiredprofileIdsproperty is found in the body content (not a fix: previous versions of kuzzle silently overwrite this property)auth:updateSelfnow accepts the following options:refresh,retryOnConflict(behavior harmonized withsecurity:updateUser)security:mGetRolesnow throws an exception if there is at least 1 role that doesn't exist. Before, empty objects were returned for non existing roles (this made a functional test return a false-positive success on an erroneous argument provided to that route)funnel:mExecutemethod:security:m*were the only ones using it. It's ugly and inefficient: now security repositories handle m* methods themselves, without duplicating API requestssecurity:search[Roles|Profiles|Users]: thesizeoption is now, by default, set to the maximum number of documents that a single request can fetch (taken from the kuzzlerc configuration)roleRepositorymethodscheckRoleNativeRightsandcheckRolePluginsRightscontentandprofileIdsarguments separately in thecore:security:userAPI, laying the groundwork for future Kuzzle API changes, and to store user documents differently / in a safer way.Other changes
core.fatal.assertion_failedexception. This change was made because otherwise, debugging simple typos in event names is a nightmare 😑NativeControllersecure getters instead of methods inutil/requestAssertionsas much as possible. It should soon be possible to get rid of requestAssertions (will need to move a few methods in NativeController beforehand though)getIdmethod in the NativeController class:ifMissingoption:error(default: throws if id is missing),generate(returns a UUIDv4 id if missing),ignore(returnsnullif missing)resetCachehas been removed fromroleRepository.loadRolesandprofileRepository.loadProfiles. It was only used byadmin:resetSecurityto preload reinitialized roles and security, and it has been replaced by a global cache invalidation, letting the security module lazily load resetted roles/profiles when they are requested