thunderhub/pages/api/v1.tsx

import crypto from 'crypto';
import { ApolloServer } from 'apollo-server-micro';
import { thunderHubSchema } from 'api/schemas';
import { getIp } from 'api/helpers/helpers';
import getConfig from 'next/config';
import jwt from 'jsonwebtoken';
import { logger } from 'api/helpers/logger';
import {
  readMacaroons,
  readFile,
  readCookie,
  getAccounts,
} from 'api/helpers/fileHelpers';
import { ContextType } from 'api/types/apiTypes';
import AES from 'crypto-js/aes';
import CryptoJS from 'crypto-js';
import cookie from 'cookie';

const { publicRuntimeConfig, serverRuntimeConfig } = getConfig();
const { apiBaseUrl, nodeEnv } = publicRuntimeConfig;
const {
  cookiePath,
  macaroonPath,
  lnCertPath,
  lnServerUrl,
  accountConfigPath,
} = serverRuntimeConfig;

const secret =
  nodeEnv === 'development'
    ? '123456789'
    : crypto.randomBytes(64).toString('hex');

const ssoMacaroon = readMacaroons(macaroonPath);
const ssoCert = readFile(lnCertPath);
const accountConfig = getAccounts(accountConfigPath);

readCookie(cookiePath);

const apolloServer = new ApolloServer({
  schema: thunderHubSchema,
  context: ({ req, res }) => {
    const ip = getIp(req);

    const { AccountAuth, SSOAuth } = cookie.parse(req.headers.cookie ?? '');

    let ssoVerified = false;
    if (SSOAuth) {
      logger.silly('SSOAuth cookie found in request');
      if (nodeEnv === 'development') {
        ssoVerified = true;
      }
      try {
        jwt.verify(SSOAuth, secret);
        ssoVerified = true;
      } catch (error) {
        logger.silly('SSO authentication cookie failed');
      }
    }

    let account = null;
    if (AccountAuth) {
      logger.silly('AccountAuth cookie found in request');
      try {
        const cookieAccount = jwt.verify(AccountAuth, secret);
        const id = cookieAccount['id'] || '';
        const bytes = AES.decrypt(cookieAccount['password'], secret);
        const password = bytes.toString(CryptoJS.enc.Utf8);

        account = { id, password };
      } catch (error) {
        logger.silly('Account authentication cookie failed');
      }
    }

    const context: ContextType = {
      ip,
      secret,
      ssoVerified,
      account,
      sso: { macaroon: ssoMacaroon, cert: ssoCert, host: lnServerUrl || null },
      accounts: accountConfig,
      res,
    };

    return context;
  },
});

export const config = {
  api: {
    bodyParser: false,
  },
};

export default apolloServer.createHandler({ path: apiBaseUrl });
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`import crypto from 'crypto';`
Feat/nextjs (#25) * feat: initial nextjs commit * chore: general card styles changes * chore: add storybook * chore: small changes and fixes * fix: trading filter encoding * fix: add link to node * chore: set to correct version 2020-04-12 18:27:01 +02:00			`import { ApolloServer } from 'apollo-server-micro';`
chore: 🔧 move api folder 2020-05-13 07:15:10 +02:00			`import { thunderHubSchema } from 'api/schemas';`
			`import { getIp } from 'api/helpers/helpers';`
chore: basepath fixes 2020-04-14 23:02:33 +02:00			`import getConfig from 'next/config';`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`import jwt from 'jsonwebtoken';`
			`import { logger } from 'api/helpers/logger';`
			`import {`
			`readMacaroons,`
			`readFile,`
			`readCookie,`
			`getAccounts,`
			`} from 'api/helpers/fileHelpers';`
			`import { ContextType } from 'api/types/apiTypes';`
			`import AES from 'crypto-js/aes';`
			`import CryptoJS from 'crypto-js';`
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`import cookie from 'cookie';`
Feat/nextjs (#25) * feat: initial nextjs commit * chore: general card styles changes * chore: add storybook * chore: small changes and fixes * fix: trading filter encoding * fix: add link to node * chore: set to correct version 2020-04-12 18:27:01 +02:00
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`const { publicRuntimeConfig, serverRuntimeConfig } = getConfig();`
			`const { apiBaseUrl, nodeEnv } = publicRuntimeConfig;`
			`const {`
			`cookiePath,`
			`macaroonPath,`
			`lnCertPath,`
			`lnServerUrl,`
			`accountConfigPath,`
			`} = serverRuntimeConfig;`

			`const secret =`
			`nodeEnv === 'development'`
			`? '123456789'`
			`: crypto.randomBytes(64).toString('hex');`

			`const ssoMacaroon = readMacaroons(macaroonPath);`
			`const ssoCert = readFile(lnCertPath);`
			`const accountConfig = getAccounts(accountConfigPath);`

			`readCookie(cookiePath);`
chore: basepath fixes 2020-04-14 23:02:33 +02:00
Feat/nextjs (#25) * feat: initial nextjs commit * chore: general card styles changes * chore: add storybook * chore: small changes and fixes * fix: trading filter encoding * fix: add link to node * chore: set to correct version 2020-04-12 18:27:01 +02:00			`const apolloServer = new ApolloServer({`
			`schema: thunderHubSchema,`
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`context: ({ req, res }) => {`
Feat/nextjs (#25) * feat: initial nextjs commit * chore: general card styles changes * chore: add storybook * chore: small changes and fixes * fix: trading filter encoding * fix: add link to node * chore: set to correct version 2020-04-12 18:27:01 +02:00			`const ip = getIp(req);`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`const { AccountAuth, SSOAuth } = cookie.parse(req.headers.cookie ?? '');`

feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`let ssoVerified = false;`
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`if (SSOAuth) {`
chore: 🔧 improve logging 2020-05-23 14:46:47 +02:00			`logger.silly('SSOAuth cookie found in request');`
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`if (nodeEnv === 'development') {`
			`ssoVerified = true;`
			`}`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`try {`
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`jwt.verify(SSOAuth, secret);`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`ssoVerified = true;`
			`} catch (error) {`
refactor: ♻️ forward queries and cleanup 2020-05-21 09:14:56 +02:00			`logger.silly('SSO authentication cookie failed');`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`}`
			`}`

			`let account = null;`
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`if (AccountAuth) {`
chore: 🔧 improve logging 2020-05-23 14:46:47 +02:00			`logger.silly('AccountAuth cookie found in request');`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`try {`
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`const cookieAccount = jwt.verify(AccountAuth, secret);`
			`const id = cookieAccount['id'] \|\| '';`
			`const bytes = AES.decrypt(cookieAccount['password'], secret);`
			`const password = bytes.toString(CryptoJS.enc.Utf8);`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`account = { id, password };`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`} catch (error) {`
refactor: ♻️ forward queries and cleanup 2020-05-21 09:14:56 +02:00			`logger.silly('Account authentication cookie failed');`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`}`
			`}`

			`const context: ContextType = {`
			`ip,`
			`secret,`
			`ssoVerified,`
			`account,`
			`sso: { macaroon: ssoMacaroon, cert: ssoCert, host: lnServerUrl \|\| null },`
			`accounts: accountConfig,`
refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`res,`
feat: ✨ server authentication (#38) * feat: ✨ server sso auth * chore: 🔧 continue sso integration * fix: 🐛 correct filter * chore: 🔧 add resolver types * chore: 🔧 linter sort imports * fix: 🐛 duplicate imports * chore: 🔧 change auth context * feat: ✨ add accounts read and query * fix: 🐛 small changes * chore: 🔧 continue integration * chore: 🔧 add auth * chore: 🔧 switch to new context * fix: 🐛 imports and account context * chore: 🔧 add session token query * chore: 🔧 change server auth * chore: 🔧 add sso to server accounts query * chore: 🔧 cleanup and small fixes * chore: 🔧 separate generated files * refactor: ♻️ change graphql imports * fix: 🐛 add id to params * fix: 🐛 auth changes * chore: 🔧 improve logging and account fixes * chore: 🔧 change footer * chore: 🔧 remove console logs * chore: 🔧 add spacing * fix: 🐛 final changes 2020-05-19 07:50:16 +02:00			`};`

			`return context;`
Feat/nextjs (#25) * feat: initial nextjs commit * chore: general card styles changes * chore: add storybook * chore: small changes and fixes * fix: trading filter encoding * fix: add link to node * chore: set to correct version 2020-04-12 18:27:01 +02:00			`},`
			`});`

			`export const config = {`
			`api: {`
			`bodyParser: false,`
			`},`
			`};`

refactor: ♻ cookies set from server (#49) * chore: 🔧 change withApollo * feat: ✨ set cookie from server * chore: 🔧 remove bcrypt dep * fix: 🐛 initialize check * chore: 🔧 remove cookies correctly * fix: 🐛 status type 2020-05-26 07:03:33 +02:00			`export default apolloServer.createHandler({ path: apiBaseUrl });`