add validate_emails_disposable option

Author: skadefro

OpenFlow/src/Config.ts

@@ -89,6 +89,8 @@ export class Config {
         Config.smtp_pass = Config.getEnv("smtp_service", "");
         Config.smtp_url = Config.getEnv("smtp_url", "");
         Config.debounce_lookup = Config.parseBoolean(Config.getEnv("debounce_lookup", "false"));
+        Config.validate_emails_disposable = Config.parseBoolean(Config.getEnv("validate_emails_disposable", "false"));
+
 
 
         Config.tls_crt = Config.getEnv("tls_crt", "");
@@ -279,6 +281,7 @@ export class Config {
     public static smtp_pass: string = Config.getEnv("smtp_pass", "");
     public static smtp_url: string = Config.getEnv("smtp_url", "");
     public static debounce_lookup: boolean = Config.parseBoolean(Config.getEnv("debounce_lookup", "false"));
+    public static validate_emails_disposable: boolean = Config.parseBoolean(Config.getEnv("validate_emails_disposable", "false"));
 
     public static tls_crt: string = Config.getEnv("tls_crt", "");
     public static tls_key: string = Config.getEnv("tls_key", "");

OpenFlow/src/DBHelper.ts

@@ -257,7 +257,7 @@ export class DBHelper {
             let item = await this.memoryCache.wrap("queuename_" + name, () => {
                 if (jwt === null || jwt == undefined || jwt == "") { jwt = Crypt.rootToken(); }
                 Logger.instanse.debug("DBHelper", "FindQueueByName", "Add queue to cache : " + name);
-                return Config.db.getbyname<User>(name, "mq", jwt, true, span);
+                return Config.db.GetOne<User>({ query: { name }, collectionname: "mq", jwt }, span);
             });
             if (NoderedUtil.IsNullUndefinded(item)) return null;
             return this.DecorateWithRoles(User.assign(item), span);
@@ -295,7 +295,7 @@ export class DBHelper {
             let item = await this.memoryCache.wrap("exchangename_" + name, () => {
                 if (jwt === null || jwt == undefined || jwt == "") { jwt = Crypt.rootToken(); }
                 Logger.instanse.debug("DBHelper", "FindExchangeByName", "Add exchange to cache : " + name);
-                return Config.db.getbyname<User>(name, "mq", jwt, true, span);
+                return Config.db.GetOne<User>({ query: { name }, collectionname: "mq", jwt }, span);
             });
             if (NoderedUtil.IsNullUndefinded(item)) return null;
             return this.DecorateWithRoles(User.assign(item), span);
@@ -344,6 +344,29 @@ export class DBHelper {
             Logger.otel.endSpan(span);
         }
     }
+    public async GetDisposableDomain(domain: string, parent: Span): Promise<Base> {
+        await this.init();
+        if (domain.indexOf("@") > -1) {
+            domain = domain.substr(domain.indexOf("@") + 1);
+        }
+        const span: Span = Logger.otel.startSubSpan("dbhelper.FindByUsername", parent);
+        try {
+            if (NoderedUtil.IsNullEmpty(domain)) return null;
+            let item = await this.memoryCache.wrap("disposable_" + domain, () => {
+                const jwt = Crypt.rootToken();
+                Logger.instanse.debug("DBHelper", "IsDisposableDomain", "Add to cache : " + domain);
+                const query = { name: domain, "_type": "disposable" };
+                return Config.db.GetOne<Base>({ query, collectionname: "domains", jwt }, span);
+            });
+            if (NoderedUtil.IsNullUndefinded(item)) return null;
+            return item;
+        } catch (error) {
+            span?.recordException(error);
+            throw error;
+        } finally {
+            Logger.otel.endSpan(span);
+        }
+    }
     public async FindByUsernameOrFederationid(username: string, issuer: string, parent: Span): Promise<User> {
         await this.init();
         const span: Span = Logger.otel.startSubSpan("dbhelper.FindByUsername", parent);

OpenFlow/src/DatabaseConnection.ts

@@ -958,18 +958,21 @@ export class DatabaseConnection extends events.EventEmitter {
             Logger.otel.endSpan(span);
         }
     }
-    /**
+        /**
      * Get a single item based on id
      * @param  {string} id Id to search for
      * @param  {string} collectionname Collection to search
      * @param  {string} jwt JWT of user who is making the query, to limit results based on permissions
      * @returns Promise<T>
      */
-    async getbyid<T extends Base>(id: string, collectionname: string, jwt: string, decrypt: boolean, parent: Span): Promise<T> {
-        const span: Span = Logger.otel.startSubSpan("db.getbyid", parent);
+    async GetOne<T extends Base>(options: { query?: object, collectionname: string, orderby?: object, jwt?: string, decrypt?: boolean }, parent: Span): Promise<T> {
+        const span: Span = Logger.otel.startSubSpan("db.GetOne", parent);
+        if (NoderedUtil.IsNullUndefinded(options.jwt)) options.jwt = Crypt.rootToken();
+        if (NoderedUtil.IsNullUndefinded(options.decrypt)) options.decrypt = true;
+        if (NoderedUtil.IsNullUndefinded(options.query)) options.query = {};
+        const { query, collectionname, orderby, jwt, decrypt } = options;
         try {
-            if (id === null || id === undefined || id === "") { throw Error("Id cannot be null"); }
-            const arr: T[] = await this.query<T>({ query: { _id: id }, top: 1, collectionname, jwt, decrypt }, span);
+            const arr: T[] = await this.query<T>({ query, collectionname, orderby, jwt, decrypt }, span);
             if (arr === null || arr.length === 0) { return null; }
             return arr[0];
         } catch (error) {
@@ -980,19 +983,18 @@ export class DatabaseConnection extends events.EventEmitter {
         }
     }
     /**
-     * Get a single item based on name
-     * @param  {string} name Name to search for
+     * Get a single item based on id
+     * @param  {string} id Id to search for
      * @param  {string} collectionname Collection to search
      * @param  {string} jwt JWT of user who is making the query, to limit results based on permissions
      * @returns Promise<T>
      */
-    async getbyname<T extends Base>(name: string, collectionname: string, jwt: string, decrypt: boolean, parent: Span): Promise<T> {
+    async getbyid<T extends Base>(id: string, collectionname: string, jwt: string, decrypt: boolean, parent: Span): Promise<T> {
         const span: Span = Logger.otel.startSubSpan("db.getbyid", parent);
         try {
-            if (name === null || name === undefined || name === "") { throw Error("Name cannot be null"); }
-            const arr: T[] = await this.query<T>({ query: { name }, top: 1, collectionname, jwt, decrypt }, span);
-            if (arr === null || arr.length === 0) { return null; }
-            return arr[0];
+            if (id === null || id === undefined || id === "") { throw Error("Id cannot be null"); }
+            const query = { _id: id };
+            return this.GetOne({ query, collectionname, jwt, decrypt }, span)
         } catch (error) {
             span?.recordException(error);
             throw error;
@@ -1259,7 +1261,7 @@ export class DatabaseConnection extends events.EventEmitter {
             if (user.dblocked && !user.HasRoleName("admins")) throw new Error("Access denied (db locked) could be due to hitting quota limit for " + user.username);
             span?.addEvent("ensureResource");
             item = this.ensureResource(item, collectionname);
-            if (!await this.CheckEntityRestriction(user, collectionname, item, span)) {
+            if (user._id != WellknownIds.root && !await this.CheckEntityRestriction(user, collectionname, item, span)) {
                 throw Error("Create " + item._type + " access denied");
             }
             span?.addEvent("traversejsonencode");
@@ -1882,7 +1884,7 @@ export class DatabaseConnection extends events.EventEmitter {
                         q.item._version = original._version;
                     }
                     q.item = this.ensureResource(q.item, q.collectionname);
-                    if (original._type != q.item._type && !await this.CheckEntityRestriction(user, q.collectionname, q.item, span)) {
+                    if (user._id != WellknownIds.root && original._type != q.item._type && !await this.CheckEntityRestriction(user, q.collectionname, q.item, span)) {
                         throw Error("Create " + q.item._type + " access denied");
                     }
                     const hasUser: Ace = q.item._acl.find(e => e._id === user._id);
@@ -2286,6 +2288,9 @@ export class DatabaseConnection extends events.EventEmitter {
             });
         },
     });
+    async InsertOrUpdateOne<T extends Base>(q: InsertOrUpdateOneMessage, parent: Span): Promise<InsertOrUpdateOneMessage> {
+        return this._InsertOrUpdateOne(q, parent);
+    }
     private static InsertOrUpdateOneSemaphore = DatabaseConnection.Semaphore(1);
     /**
     * Insert or Update depending on document allready exists.
@@ -2297,7 +2302,7 @@ export class DatabaseConnection extends events.EventEmitter {
     * @param  {string} jwt JWT of user who is doing the update, ensuring rights
     * @returns Promise<T>
     */
-    async InsertOrUpdateOne<T extends Base>(q: InsertOrUpdateOneMessage, parent: Span): Promise<InsertOrUpdateOneMessage> {
+    async _InsertOrUpdateOne<T extends Base>(q: InsertOrUpdateOneMessage, parent: Span): Promise<InsertOrUpdateOneMessage> {
         const span: Span = Logger.otel.startSubSpan("db.InsertOrUpdateOne", parent);
         try {
             await DatabaseConnection.InsertOrUpdateOneSemaphore.down();
@@ -2316,7 +2321,13 @@ export class DatabaseConnection extends events.EventEmitter {
                     query = { _id: q.item._id };
                 }
             }
-            const user: TokenUser = await Crypt.verityToken(q.jwt);
+            let user: TokenUser = (q as any).user;
+            if (NoderedUtil.IsNullUndefinded(user)) {
+                user = await Crypt.verityToken(q.jwt);
+            } else {
+                delete (q as any).user;
+            }
+
             if (user.dblocked && !user.HasRoleName("admins")) throw new Error("Access denied (db locked) could be due to hitting quota limit for " + user.username);
             let exists: Base[] = [];
             if (query != null) {
@@ -2375,6 +2386,51 @@ export class DatabaseConnection extends events.EventEmitter {
             Logger.otel.endSpan(span);
         }
     }
+    async InsertOrUpdateMany<T extends Base>(items: T[], collectionname: string, uniqeness: string, skipresults: boolean, w: number, j: boolean, jwt: string, parent: Span): Promise<T[]> {
+        const span: Span = Logger.otel.startSubSpan("db.InsertOrUpdateMany", parent);
+        let result: T[] = [];
+        try {
+            if (NoderedUtil.IsNullUndefinded(items) || items.length == 0) { throw Error("Cannot create null item"); }
+            if (NoderedUtil.IsNullEmpty(jwt)) {
+                throw new Error("jwt is null");
+            }
+            await this.connect(span);
+            const user = await Crypt.verityToken(jwt);
+            if (user.dblocked && !user.HasRoleName("admins")) throw new Error("Access denied (db locked) could be due to hitting quota limit for " + user.username);
+            span?.setAttribute("collection", collectionname);
+            span?.setAttribute("username", user.username);
+            let inserted = 0;
+            let updated = 0;
+            for (var i = 0; i < items.length; i++) {
+                const item = items[i];
+                var q = new InsertOrUpdateOneMessage();
+                (q as any).user = user;
+                q.collectionname = collectionname; q.item = item; q.j = j;
+                q.w = w; q.jwt = jwt; q.uniqeness = uniqeness;
+                var res = await this._InsertOrUpdateOne(q, span);
+                if (res && res.opresult) {
+                    if (res.opresult.modifiedCount == 1) {
+                        updated++;
+                    } else {
+                        inserted++;
+                    }
+                } else {
+                    if (item._id != res.result._id) inserted++;
+                    if (item._id == res.result._id) updated++;
+                }
+                if (!skipresults) result.push(res.result);
+            }
+            Logger.instanse.info("DatabaseConnection", "InsertOrUpdateMany", "[" + user.username + "][" + collectionname + "] inserted " + inserted + " items and updated " + updated + " items in database");
+        } catch (error) {
+            Logger.instanse.error("DatabaseConnection", "InsertOrUpdateMany", error);
+            span?.recordException(error);
+            throw error;
+        }
+        finally {
+            Logger.otel.endSpan(span);
+        }
+        return result;
+    }
     private async _DeleteFile(id: string): Promise<void> {
         return new Promise<void>(async (resolve, reject) => {
             try {

OpenFlow/src/LoginProvider.ts

@@ -690,6 +690,12 @@ export class LoginProvider {
                                             throw new Error("Please use a valid and non temporary email address");
                                         }
                                     }
+                                    if (Config.validate_emails_disposable) {
+                                        var domain = Logger.DBHelper.GetDisposableDomain(email, span);
+                                        if (domain != null) {
+                                            throw new Error("Please use a valid and non temporary email address");
+                                        }
+                                    }
                                 }
 
                                 if (email.indexOf("@") > -1) {

OpenFlow/src/Messages/Message.ts

@@ -10,7 +10,7 @@ import { Readable, Stream } from "stream";
 import { GridFSBucket, ObjectID, Cursor } from "mongodb";
 import * as path from "path";
 import { DatabaseConnection } from "../DatabaseConnection";
-import { StripeMessage, NoderedUtil, QueuedMessage, RegisterQueueMessage, QueueMessage, CloseQueueMessage, ListCollectionsMessage, DropCollectionMessage, QueryMessage, AggregateMessage, InsertOneMessage, UpdateOneMessage, Base, UpdateManyMessage, InsertOrUpdateOneMessage, DeleteOneMessage, MapReduceMessage, SigninMessage, TokenUser, User, Rights, EnsureNoderedInstanceMessage, DeleteNoderedInstanceMessage, DeleteNoderedPodMessage, RestartNoderedInstanceMessage, GetNoderedInstanceMessage, GetNoderedInstanceLogMessage, SaveFileMessage, WellknownIds, GetFileMessage, UpdateFileMessage, NoderedUser, WatchMessage, GetDocumentVersionMessage, DeleteManyMessage, InsertManyMessage, RegisterExchangeMessage, EnsureCustomerMessage, Customer, stripe_tax_id, Role, SelectCustomerMessage, Rolemember, ResourceUsage, Resource, ResourceVariant, stripe_subscription, GetNextInvoiceMessage, stripe_invoice, stripe_price, stripe_plan, stripe_invoice_line, GetKubeNodeLabelsMessage, CreateWorkflowInstanceMessage, WorkitemFile } from "@openiap/openflow-api";
+import { StripeMessage, NoderedUtil, QueuedMessage, RegisterQueueMessage, QueueMessage, CloseQueueMessage, ListCollectionsMessage, DropCollectionMessage, QueryMessage, AggregateMessage, InsertOneMessage, UpdateOneMessage, Base, UpdateManyMessage, InsertOrUpdateOneMessage, DeleteOneMessage, MapReduceMessage, SigninMessage, TokenUser, User, Rights, EnsureNoderedInstanceMessage, DeleteNoderedInstanceMessage, DeleteNoderedPodMessage, RestartNoderedInstanceMessage, GetNoderedInstanceMessage, GetNoderedInstanceLogMessage, SaveFileMessage, WellknownIds, GetFileMessage, UpdateFileMessage, NoderedUser, WatchMessage, GetDocumentVersionMessage, DeleteManyMessage, InsertManyMessage, RegisterExchangeMessage, EnsureCustomerMessage, Customer, stripe_tax_id, Role, SelectCustomerMessage, Rolemember, ResourceUsage, Resource, ResourceVariant, stripe_subscription, GetNextInvoiceMessage, stripe_invoice, stripe_price, stripe_plan, stripe_invoice_line, GetKubeNodeLabelsMessage, CreateWorkflowInstanceMessage, WorkitemFile, InsertOrUpdateManyMessage } from "@openiap/openflow-api";
 import { stripe_customer, stripe_list, StripeAddPlanMessage, StripeCancelPlanMessage, stripe_subscription_item, stripe_coupon } from "@openiap/openflow-api";
 import { amqpwrapper, QueueMessageOptions } from "../amqpwrapper";
 import { WebSocketServerClient } from "../WebSocketServerClient";
@@ -98,6 +98,9 @@ export class Message {
                 case "insertorupdateone":
                     await this.InsertOrUpdateOne(span);
                     break;
+                case "Insertorupdatemany":
+                    await this.InsertOrUpdateMany(span);
+                    break;
                 case "deleteone":
                     await this.DeleteOne(span);
                     break;
@@ -393,6 +396,18 @@ export class Message {
                         cli.Send(this);
                     }
                     break;
+                case "insertorupdatemany":
+                    if (!this.EnsureJWT(cli)) {
+                        Logger.instanse.debug("Message", "Process", "Discard " + command + " due to missing jwt, and respond with error, for client at " + cli.remoteip + " " + cli.clientagent + " " + cli.clientversion);
+                        break;
+                    }
+                    if (Config.enable_openflow_amqp) {
+                        cli.Send(await QueueClient.SendForProcessing(this, this.priority));
+                    } else {
+                        await this.InsertOrUpdateMany(span);
+                        cli.Send(this);
+                    }
+                    break;
                 case "deleteone":
                     if (!this.EnsureJWT(cli)) {
                         Logger.instanse.debug("Message", "Process", "Discard " + command + " due to missing jwt, and respond with error, for client at " + cli.remoteip + " " + cli.clientagent + " " + cli.clientversion);
@@ -1504,6 +1519,36 @@ export class Message {
             await handleError(null, error);
         }
     }
+    private async InsertOrUpdateMany(parent: Span): Promise<void> {
+        this.Reply();
+        const span: Span = Logger.otel.startSubSpan("message.InsertOrUpdateMany", parent);
+        let msg: InsertOrUpdateManyMessage
+        try {
+            msg = InsertOrUpdateManyMessage.assign(this.data);
+            if (NoderedUtil.IsNullEmpty(msg.jwt)) { msg.jwt = this.jwt; }
+            if (NoderedUtil.IsNullEmpty(msg.w as any)) { msg.w = 0; }
+            if (NoderedUtil.IsNullEmpty(msg.j as any)) { msg.j = false; }
+            if (NoderedUtil.IsNullEmpty(msg.jwt)) {
+                throw new Error("jwt is null and client is not authenticated");
+            }
+            msg.results = await Config.db.InsertOrUpdateMany(msg.items, msg.collectionname, msg.uniqeness, msg.skipresults, msg.w, msg.j, msg.jwt, span);
+            if (msg.skipresults) msg.results = [];
+            delete msg.items;
+        } catch (error) {
+            span?.recordException(error);
+            if (NoderedUtil.IsNullUndefinded(msg)) { (msg as any) = {}; }
+            if (msg !== null && msg !== undefined) msg.error = error.message ? error.message : error;
+            await handleError(null, error);
+        }
+        try {
+            this.data = JSON.stringify(msg);
+        } catch (error) {
+            span?.recordException(error);
+            this.data = "";
+            await handleError(null, error);
+        }
+        Logger.otel.endSpan(span);
+    }
     private async DeleteOne(parent: Span): Promise<void> {
         this.Reply();
         let msg: DeleteOneMessage