lamassu/lamassu-server
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
lamassu-server/migrations/1605181184453-users.js
Sérgio Salgado fded22f39a feat: add user management screen 
feat: login screen

fix: login routing and layout

feat: add users migration

feat: passport login strategy

fix: users migration

feat: simple authentication

fix: request body

feat: JWT authorization

feat: 2fa step on login

feat: 2fa flow

feat: add rememberme to req body

fix: hide 2fa secret from jwt

fix: block login access to logged in user

fix: rerouting to wizard

refactor: login screen

feat: setup 2fa state on login

feat: 2fa secret qr code

fix: remove jwt from 2fa secret

fix: wizard redirect after login

fix: 2fa setup flow

fix: user id to uuid

feat: user roles

feat: user sessions and db persistence

feat: session saving on DB and cookie

refactor: unused code

feat: cookie auto renew on request

feat: get user data endpoint

fix: repeated requests

feat: react routing

fix: private routes

refactor: auth

feat: sessions aware of ua and ip

feat: sessions on gql

feat: session management screen

feat: replace user_tokens usage for users

feat: user deletion also deletes active sessions

feat: remember me alters session cookie accordingly

feat: last session by all users

fix: login feedback

fix: page loading UX

feat: routes based on user role

feat: header aware of roles

feat: reset password

fix: reset password endpoint

feat: handle password change

feat: reset 2FA

feat: user role on management screen

feat: change user role

fix: user last session query

fix: context

fix: destroy own session

feat: reset password now resets sessions

feat: reset 2fa now resets sessions

refactor: user data

refactor: user management screen

feat: user enable

feat: schema directives

fix: remove schema directive temp

feat: create new users

feat: register endpoint

feat: modals for reset links

fix: directive Date errors

feat: superuser directive

feat: create user url modal

fix: user management layout

feat: confirmation modals

fix: info text

feat: 2fa input component

feat: code input on 2fa state

feat: add button styling

feat: confirmation modal on superuser action

feat: rework 2fa setup screen

feat: rework reset 2fa screen

fix: session management screen

fix: user management screen

fix: blacklist roles

chore: migrate old customer values to new columns

fix: value migration

fix: value migration

refactor: remove old code
2021-05-03 23:00:41 +01:00

93 lines
4.8 KiB
JavaScript
Raw Blame History

var db = require('./db')
exports.up = function (next) {
var sql = [
`create type role as ENUM('user', 'superuser')`,
`create table users (
id uuid PRIMARY KEY,
username varchar(50) UNIQUE,
password varchar(100),
role role default 'user',
enabled boolean default true,
twofa_code varchar(100),
created timestamptz not null default now(),
last_accessed timestamptz not null default now(),
last_accessed_from text,
last_accessed_address inet )`,
`CREATE TABLE "user_sessions" (
"sid" varchar NOT NULL COLLATE "default",
"sess" json NOT NULL,
"expire" timestamp(6) NOT NULL )
WITH (OIDS=FALSE)`,
`ALTER TABLE "user_sessions" ADD CONSTRAINT "session_pkey" PRIMARY KEY ("sid") NOT DEFERRABLE INITIALLY IMMEDIATE`,
`CREATE INDEX "IDX_session_expire" ON "user_sessions" ("expire")`,
`create table reset_password (
token text not null PRIMARY KEY,
user_id uuid references users(id) on delete cascade unique,
expire timestamptz not null default now() + interval '30 minutes'
)`,
`create index "idx_reset_pw_expire" on "reset_password" ("expire")`,
`create table reset_twofa (
token text not null PRIMARY KEY,
user_id uuid references users(id) on delete cascade unique,
expire timestamptz not null default now() + interval '30 minutes'
)`,
`create index "idx_reset_twofa_expire" on "reset_twofa" ("expire")`,
`create table user_register_tokens (
token text not null PRIMARY KEY,
username text not null unique,
role role default 'user',
expire timestamptz not null default now() + interval '30 minutes'
)`,
// migrate values from customers which reference user_tokens for data persistence
`alter table customers add column sms_override_by_old text`,
`alter table customers add column id_card_data_override_by_old text`,
`alter table customers add column id_card_photo_override_by_old text`,
`alter table customers add column front_camera_override_by_old text`,
`alter table customers add column sanctions_override_by_old text`,
`alter table customers add column authorized_override_by_old text`,
`alter table customers add column us_ssn_override_by_old text`,
`update customers set sms_override_by_old=ut.name from user_tokens ut
where customers.sms_override_by=ut.token`,
`update customers set id_card_data_override_by_old=ut.name from user_tokens ut
where customers.id_card_data_override_by=ut.token`,
`update customers set id_card_photo_override_by_old=ut.name from user_tokens ut
where customers.id_card_photo_override_by=ut.token`,
`update customers set front_camera_override_by_old=ut.name from user_tokens ut
where customers.front_camera_override_by=ut.token`,
`update customers set sanctions_override_by_old=ut.name from user_tokens ut
where customers.sanctions_override_by=ut.token`,
`update customers set authorized_override_by_old=ut.name from user_tokens ut
where customers.authorized_override_by=ut.token`,
`update customers set us_ssn_override_by_old=ut.name from user_tokens ut
where customers.us_ssn_override_by=ut.token`,
`alter table customers drop column sms_override_by`,
`alter table customers drop column id_card_data_override_by`,
`alter table customers drop column id_card_photo_override_by`,
`alter table customers drop column front_camera_override_by`,
`alter table customers drop column sanctions_override_by`,
`alter table customers drop column authorized_override_by`,
`alter table customers drop column us_ssn_override_by`,
`alter table customers add column sms_override_by uuid references users(id)`,
`alter table customers add column id_card_data_override_by uuid references users(id)`,
`alter table customers add column id_card_photo_override_by uuid references users(id)`,
`alter table customers add column front_camera_override_by uuid references users(id)`,
`alter table customers add column sanctions_override_by uuid references users(id)`,
`alter table customers add column authorized_override_by uuid references users(id)`,
`alter table customers add column us_ssn_override_by uuid references users(id)`,
// migrate values from compliance_overrides which reference user_tokens for data persistence
`alter table compliance_overrides add column override_by_old text`,
`update compliance_overrides set override_by_old=ut.name from user_tokens ut
where compliance_overrides.override_by=ut.token`,
`alter table compliance_overrides drop column override_by`,
`alter table compliance_overrides add column override_by uuid references users(id)`,
`drop table if exists one_time_passes`,
`drop table if exists user_tokens`
]
db.multi(sql, next)
}
exports.down = function (next) {
next()
}
Reference in a new issue View git blame Copy permalink