feat: add user management screen

feat: login screen

fix: login routing and layout

feat: add users migration

feat: passport login strategy

fix: users migration

feat: simple authentication

fix: request body

feat: JWT authorization

feat: 2fa step on login

feat: 2fa flow

feat: add rememberme to req body

fix: hide 2fa secret from jwt

fix: block login access to logged in user

fix: rerouting to wizard

refactor: login screen

feat: setup 2fa state on login

feat: 2fa secret qr code

fix: remove jwt from 2fa secret

fix: wizard redirect after login

fix: 2fa setup flow

fix: user id to uuid

feat: user roles

feat: user sessions and db persistence

feat: session saving on DB and cookie

refactor: unused code

feat: cookie auto renew on request

feat: get user data endpoint

fix: repeated requests

feat: react routing

fix: private routes

refactor: auth

feat: sessions aware of ua and ip

feat: sessions on gql

feat: session management screen

feat: replace user_tokens usage for users

feat: user deletion also deletes active sessions

feat: remember me alters session cookie accordingly

feat: last session by all users

fix: login feedback

fix: page loading UX

feat: routes based on user role

feat: header aware of roles

feat: reset password

fix: reset password endpoint

feat: handle password change

feat: reset 2FA

feat: user role on management screen

feat: change user role

fix: user last session query

fix: context

fix: destroy own session

feat: reset password now resets sessions

feat: reset 2fa now resets sessions

refactor: user data

refactor: user management screen

feat: user enable

feat: schema directives

fix: remove schema directive temp

feat: create new users

feat: register endpoint

feat: modals for reset links

fix: directive Date errors

feat: superuser directive

feat: create user url modal

fix: user management layout

feat: confirmation modals

fix: info text

feat: 2fa input component

feat: code input on 2fa state

feat: add button styling

feat: confirmation modal on superuser action

feat: rework 2fa setup screen

feat: rework reset 2fa screen

fix: session management screen

fix: user management screen

fix: blacklist roles

chore: migrate old customer values to new columns

fix: value migration

fix: value migration

refactor: remove old code

lib/session-manager.js

@@ -0,0 +1,42 @@
+const db = require('./db')
+
+function getSessionList () {
+  const sql = `select * from user_sessions order by sess -> 'user' ->> 'username'`
+  return db.any(sql)
+}
+
+function getLastSessionByUser () {
+  const sql = `select b.username, a.user_agent, a.ip_address, a.last_used, b.role from (
+    select sess -> 'user' ->> 'username' as username,
+    sess ->> 'ua' as user_agent,
+    sess ->> 'ipAddress' as ip_address,
+    sess ->> 'lastUsed' as last_used
+    from user_sessions
+    ) a right join (
+    select distinct on (username)
+    username, role
+    from users) b on a.username = b.username`
+  return db.any(sql)
+}
+
+function getUserSessions (username) {
+  const sql = `select * from user_sessions where sess -> 'user' ->> 'username'=$1`
+  return db.any(sql, [username])
+}
+
+function getSession (sessionID) {
+  const sql = `select * from user_sessions where sid=$1`
+  return db.any(sql, [sessionID])
+}
+
+function deleteUserSessions (username) {
+  const sql = `delete from user_sessions where sess -> 'user' ->> 'username'=$1`
+  return db.none(sql, [username])
+}
+
+function deleteSession (sessionID) {
+  const sql = `delete from user_sessions where sid=$1`
+  return db.none(sql, [sessionID])
+}
+
+module.exports = { getSessionList, getLastSessionByUser, getUserSessions, getSession, deleteUserSessions, deleteSession }