setup oauth, signup, session etc for local

  - lots of things still moving around, now we have cli, shared and app in src. One of which holds sveltekit app
  - only half baked still, but getting all the key pieces for auth via auth0, account creation, adding connection, and also locking down different deployments (ie may want to run a tenant and lock down what options there are for auth ... )
  - things a little confused between using oauth2 for login into imtala, and also using it to access 3rd party apis, will properly tease this apart soon

Author: des-des

.github/workflows/push-master.yml

@@ -4,7 +4,7 @@ on:
       - master
 
 jobs:
-  cache-and-install:
+  publish-cli:
     runs-on: ubuntu-latest
 
     steps:

packages/imtala/.gitignore

@@ -6,4 +6,5 @@ node_modules
 .env
 .env.*
 !.env.example
-*.tgz
+*.tgz
+/lib

packages/imtala/bin/cli.js

@@ -1,25 +1,2 @@
 #! /usr/bin/env node
-import { Command } from 'commander'
-import {handler} from '../build/handler.js';
-const program = new Command();
-import http from 'http'
-
-program
-  .name('imtala')
-  .description('Graphql powered automation tooling')
-  .version('0.8.0');
-
-program.command('serve')
-  .description('Start the imtala server')
-  .option('-p, --port <number>', 'port', 3000)
-  .action((options) => {
-    const port = options.port;
-
-    const server = http.createServer(handler);
-
-    server.listen(port, () => {
-        console.log(`Imtala running at http://localhost:${port}/`);
-    });
-  });
-
-program.parse();
+import '../lib/cli/index.js'

packages/imtala/package.json

@@ -1,10 +1,11 @@
 {
 	"name": "@imtala/cli",
-	"version": "2.0.0-next.2",
+	"version": "2.0.0-next.3",
 	"devDependencies": {
 		"@playwright/test": "^1.25.0",
 		"@sveltejs/adapter-auto": "next",
 		"@sveltejs/kit": "next",
+		"@types/node": "^18.8.5",
 		"@typescript-eslint/eslint-plugin": "^5.27.0",
 		"@typescript-eslint/parser": "^5.27.0",
 		"eslint": "^8.16.0",
@@ -22,20 +23,24 @@
 	"type": "module",
 	"dependencies": {
 		"@sveltejs/adapter-node": "1.0.0-next.96",
-		"commander": "^9.4.1"
+		"commander": "^9.4.1",
+		"esbuild": "^0.15.11"
 	},
 	"bin": {
 		"imtala": "bin/cli.js"
 	},
 	"scripts": {
 		"dev": "vite dev",
-		"build": "vite build",
+		"build:app": "echo 'building app' && vite build",
+		"build:cli": "echo 'building cli' && esbuild src/shared/* src/cli/* --outdir=lib --platform=node",
+		"build": "pnpm build:app && pnpm build:cli",
 		"preview": "vite preview",
 		"test": "playwright test",
 		"check": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json",
 		"check:watch": "svelte-kit sync && svelte-check --tsconfig ./tsconfig.json --watch",
 		"lint": "prettier --plugin-search-dir . --check . && eslint .",
 		"format": "prettier --plugin-search-dir . --write .",
-		"release": "pnpm publish"
+		"bump-version": "pnpm version prerelease --preid next",
+		"release": "pnpm publish --tag next"
 	}
 }

packages/imtala/src/app.html

@@ -0,0 +1,105 @@
+<!DOCTYPE html>
+<html lang="en">
+
+<head>
+	<meta charset="utf-8" />
+	<link rel="icon" href="%sveltekit.assets%/favicon.png" />
+	<meta name="viewport" content="width=device-width" />
+	%sveltekit.head%
+</head>
+
+<body>
+	<style>
+		:root {
+			--pink-8: #2e6874;
+			--pink-7: #423d83;
+			--pink-6: #271a26;
+			--action-remove: #977051;
+			--pink-4: #38121f;
+			--pink-3: #ca8174;
+			--pink-2: #d8ae77;
+			--pink-1: #d8e365;
+			--lime-1: #d8e365;
+			--lime-2: #c3d877;
+			--lime-3: #98ca74;
+			--lime-4: #81bd6f;
+			--lime-5: #6baf67;
+			--lime-6: #4f9765;
+			--lime-7: #3d836b;
+			--lime-8: #2e6874;
+			--lime-9: #2e6874;
+			--light-1: #dfe78a;
+			--light-2: #e6ebb4;
+			--light-3: #eff1d5;
+		}
+
+		body {
+			font-family: Menlo, Consolas, Monaco, Liberation Mono, Lucida Console, monospace;
+			background-color: black;
+			color: white;
+		}
+
+		main {
+			width: 100%
+		}
+
+		input[type='submit'] {
+			cursor: pointer;
+			color: var(--lime-1);
+			border: none;
+			width:auto;
+			margin: 1em;
+			padding: 0;
+		}
+
+		a,
+		input[type='submit'] {
+			text-decoration: none;
+			color: var(--lime-1);
+		}
+		a:visited {
+			color: var(--lime-5);
+		}
+
+		a:hover,
+		input[type='submit']:hover {
+			background-color: var(--lime-8);
+		}
+
+		input,
+		select,
+		textarea {
+			font-family: Menlo, Consolas, Monaco, Liberation Mono, Lucida Console, monospace;
+			outline: none;
+			background-color: black;
+			padding: 1em;
+			margin: 1em;
+			width: 30em;
+
+			border: 1px solid var(--lime-2);
+			font-size: 14px;
+			color: var(--lime-2);
+		}
+
+		label {
+			display: block;
+			margin: 0 1em;
+			/* width: 100%; */
+		}
+
+
+		@media only screen and (min-width: 400px) {
+			main {
+				width: 90%;
+				min-width: 600px;
+				max-width: 800px;
+				margin: auto;
+				border-left: 1px solid white;
+				padding-left: 20px;
+			}
+		}
+	</style>
+	<div>%sveltekit.body%</div>
+</body>
+
+</html>

packages/imtala/src/app.d.ts packages/imtala/src/app/app.d.ts

@@ -0,0 +1,5 @@
+import store from '../../shared/store'
+
+await store.init()
+
+export default store.getStore

packages/imtala/src/app/app.html

@@ -0,0 +1,15 @@
+import type { Cookies } from '@sveltejs/kit'
+import getStore from './store'
+
+export const getUserFromSession = async (cookies: Cookies) => {
+  const sessionKey = cookies.get('imtala_session_id')
+  if (!sessionKey) return;
+
+  const {session: sessionStore, user: userStore} = await getStore()
+
+  const session = await sessionStore.get(sessionKey)
+
+  if (!session) return;
+
+  return userStore.get(session.userId)
+}

packages/imtala/src/app/lib/store.ts

@@ -0,0 +1,15 @@
+import { error } from '@sveltejs/kit';
+ 
+import type { PageServerLoad } from './$types';
+import {getUserFromSession} from '../lib/user'
+import getStore from '../lib/store'
+
+
+export const load: PageServerLoad = async ({ cookies }) => {
+  const {connection: connectionStore} = await getStore()
+  const user = await getUserFromSession(cookies);
+  return {
+    user,
+    connections: user && await (await connectionStore.list()).filter(connection => connection.userId === user.userId) || []
+  }
+}

packages/imtala/src/app/lib/user.ts

@@ -0,0 +1,29 @@
+<script lang="ts">
+	import type { PageData } from './$types';
+	export let data: PageData;
+</script>
+
+<main>
+
+	{#if !data.user}
+    	<h1>Welcome to Imtala</h1>
+	
+        Get started by <a href="/connections/new">creating a connection</a>, or
+		<a href="/auth/login">login</a>
+	{:else}
+		<h1>Hi {data.user.fullName.split(' ')[0]}, Welcome to Imtala</h1>
+        <h2>Connections</h2>
+		<ul>
+			{#each data.connections as connection}
+				<li>{connection.name}</li>
+			{/each}
+		</ul>
+	{/if}
+
+	<p>features coming soon</p>
+
+	<h2>Todo</h2>
+	<ul>
+		<li>Tenent and session management</li>
+	</ul>
+</main>

packages/imtala/src/app/routes/+page.server.ts

@@ -0,0 +1,114 @@
+import getStore from '../../../../lib/store';
+import { randomBytes } from 'crypto';
+
+import type { PageServerLoad } from './$types'
+import { redirect, error } from '@sveltejs/kit';
+
+const createId = (bytes: number): Promise<string> => new Promise((res, rej) => {
+  randomBytes(bytes, (err, buf) => {
+    if (err) return rej(err)
+
+    res(buf.toString('base64url'))
+  })
+})
+
+export const load: PageServerLoad = async ({ params, cookies, url }) => {
+  const { providerName } = params;
+  const {
+    connection: connectionStore,
+    authMethod: authMethodStore,
+    user: userStore,
+    session: sessionStore,
+    authProvider: authProviderStore
+  } = await getStore()
+
+  const authProvider = await authProviderStore.get(providerName)
+
+  if (!authProvider) {
+    throw error(403, 'forbidden')
+  }
+
+  const accessTokenResponse = await fetch('https://github.com/login/oauth/access_token', {
+    method: 'POST',
+    headers: {
+      'Accept': 'application/json',
+      ['Content-Type']: 'application/json',
+    },
+    body: JSON.stringify({
+      client_id: authProvider.clientId,
+      client_secret: authProvider.clientSecret,
+      code: url.searchParams.get('code'),
+      response_type: 'code',
+      grant_type: 'authorization_code',
+      redirect_uri: authProvider.callbackUrl
+    })
+  })
+
+
+  const accessTokenResponsePayload = await accessTokenResponse.json();
+  const token = accessTokenResponsePayload.access_token;
+
+  const ghUserResponse = await fetch('https://api.github.com/user', {
+    method: 'GET',
+    headers: {
+      Authorization: `Bearer ${token}`
+    }
+  })
+  const userData = await ghUserResponse.json()
+
+  const authMethods = await authMethodStore.list();
+  const authMethod = authMethods
+    .filter(authMethod => authMethod.authProviderType === providerName)
+    .find(authMethod => authMethod.identifier === userData.id)
+
+  if (authMethod) {
+    // login flow
+    const sessionId = await createId(24)
+
+    await sessionStore.set(sessionId, {
+      userId: authMethod.userId,
+      sessionId
+    })
+
+    cookies.set('imtala_session_id', sessionId, { path: '/' })
+
+    throw redirect(303, '/')
+  }
+
+  // signup & create connection flow
+
+  const connectionId = await createId(24)
+  const userId = await createId(24)
+  const authMethodId = await createId(24)
+  const sessionId = await createId(24)
+
+
+  await authMethodStore.set(userData.id, {
+    identifier: userData.id,
+    authProviderType: 'github',
+    userId: userId,
+    token
+  })
+
+  await connectionStore.set(connectionId, {
+    name: providerName,
+    connectionId,
+    userId,
+    authMethodId
+  })
+
+  await userStore.set(userId, {
+    fullName: userData.name,
+    userId
+  })
+
+  await sessionStore.set(sessionId, {
+    userId: userId,
+    sessionId
+  })
+
+  cookies.set('imtala_session_id', sessionId, { path: '/' })
+
+  throw redirect(303, '/')
+
+}