feat: init management api hook middleware function

logto-io · Apr 24, 2024 · 395ecec · 395ecec
1 parent f923a8e
commit 395ecec
Show file tree

Hide file tree

Showing 53 changed files with 334 additions and 145 deletions.
diff --git a/.changeset/fluffy-steaks-flow.md b/.changeset/fluffy-steaks-flow.md
@@ -0,0 +1,5 @@
+---
+"@logto/schemas": minor
+---
+
+add Management API hook types
diff --git a/packages/core/src/__mocks__/hook.ts b/packages/core/src/__mocks__/hook.ts
@@ -1,4 +1,4 @@
-import { type Hook, HookEvent } from '@logto/schemas';
+import { type Hook, InteractionHookEvent } from '@logto/schemas';
 
 export const mockNanoIdForHook = 'random_string';
 
@@ -11,7 +11,7 @@ export const mockHook: Hook = {
   id: mockNanoIdForHook,
   name: 'foo',
   event: null,
-  events: [HookEvent.PostRegister],
+  events: [InteractionHookEvent.PostRegister],
   config: {
     url: 'https://example.com',
   },
@@ -25,7 +25,7 @@ const mockHookData1: Hook = {
   id: 'hook_id_1',
   name: 'foo',
   event: null,
-  events: [HookEvent.PostRegister],
+  events: [InteractionHookEvent.PostRegister],
   config: {
     url: 'https://example1.com',
   },
@@ -39,7 +39,7 @@ const mockHookData2: Hook = {
   id: 'hook_id_2',
   name: 'bar',
   event: null,
-  events: [HookEvent.PostResetPassword],
+  events: [InteractionHookEvent.PostResetPassword],
   config: {
     url: 'https://example2.com',
   },
@@ -53,7 +53,7 @@ const mockHookData3: Hook = {
   id: 'hook_id_3',
   name: 'baz',
   event: null,
-  events: [HookEvent.PostSignIn],
+  events: [InteractionHookEvent.PostSignIn],
   config: {
     url: 'https://example3.com',
   },

diff --git a/packages/core/src/libraries/hook/index.test.ts b/packages/core/src/libraries/hook/index.test.ts
@@ -1,5 +1,5 @@
 import type { Hook } from '@logto/schemas';
-import { HookEvent, InteractionEvent, LogResult } from '@logto/schemas';
+import { InteractionHookEvent, InteractionEvent, LogResult } from '@logto/schemas';
 import { createMockUtils } from '@logto/shared/esm';
 
 import RequestError from '#src/errors/RequestError/index.js';
@@ -32,8 +32,8 @@ const hook: Hook = {
   tenantId: 'bar',
   id: 'foo',
   name: 'hook_name',
-  event: HookEvent.PostSignIn,
-  events: [HookEvent.PostSignIn],
+  event: InteractionHookEvent.PostSignIn,
+  events: [InteractionHookEvent.PostSignIn],
   signingKey: 'signing_key',
   enabled: true,
   config: { headers: { bar: 'baz' }, url, retries: 3 },
@@ -95,10 +95,13 @@ describe('triggerInteractionHooks()', () => {
 
     const calledPayload: unknown = insertLog.mock.calls[0][0];
     expect(calledPayload).toHaveProperty('id', mockId);
-    expect(calledPayload).toHaveProperty('key', 'TriggerHook.' + HookEvent.PostSignIn);
+    expect(calledPayload).toHaveProperty('key', 'TriggerHook.' + InteractionHookEvent.PostSignIn);
     expect(calledPayload).toHaveProperty('payload.result', LogResult.Success);
     expect(calledPayload).toHaveProperty('payload.hookId', 'foo');
-    expect(calledPayload).toHaveProperty('payload.hookRequest.body.event', HookEvent.PostSignIn);
+    expect(calledPayload).toHaveProperty(
+      'payload.hookRequest.body.event',
+      InteractionHookEvent.PostSignIn
+    );
     expect(calledPayload).toHaveProperty(
       'payload.hookRequest.body.interactionEvent',
       InteractionEvent.SignIn
@@ -119,8 +122,8 @@ describe('testHook', () => {
   it('should call sendWebhookRequest with correct values', async () => {
     jest.useFakeTimers().setSystemTime(100_000);
 
-    await testHook(hook.id, [HookEvent.PostSignIn], hook.config);
-    const testHookPayload = generateHookTestPayload(hook.id, HookEvent.PostSignIn);
+    await testHook(hook.id, [InteractionHookEvent.PostSignIn], hook.config);
+    const testHookPayload = generateHookTestPayload(hook.id, InteractionHookEvent.PostSignIn);
     expect(sendWebhookRequest).toHaveBeenCalledWith({
       hookConfig: hook.config,
       payload: testHookPayload,
@@ -131,13 +134,19 @@ describe('testHook', () => {
   });
 
   it('should call sendWebhookRequest with correct times if multiple events are provided', async () => {
-    await testHook(hook.id, [HookEvent.PostSignIn, HookEvent.PostResetPassword], hook.config);
+    await testHook(
+      hook.id,
+      [InteractionHookEvent.PostSignIn, InteractionHookEvent.PostResetPassword],
+      hook.config
+    );
     expect(sendWebhookRequest).toBeCalledTimes(2);
   });
 
   it('should throw send test payload failed error if sendWebhookRequest fails', async () => {
     sendWebhookRequest.mockRejectedValueOnce(new Error('test error'));
-    await expect(testHook(hook.id, [HookEvent.PostSignIn], hook.config)).rejects.toThrowError(
+    await expect(
+      testHook(hook.id, [InteractionHookEvent.PostSignIn], hook.config)
+    ).rejects.toThrowError(
       new RequestError({
         code: 'hook.send_test_payload_failed',
         message: 'Error: test error',

diff --git a/packages/core/src/libraries/hook/index.ts b/packages/core/src/libraries/hook/index.ts
@@ -1,7 +1,6 @@
 import {
-  HookEvent,
+  type HookEvent,
   type HookEventPayload,
-  InteractionEvent,
   LogResult,
   userInfoSelectFields,
   type HookConfig,
@@ -16,35 +15,14 @@ import { LogEntry } from '#src/middleware/koa-audit-log.js';
 import type Queries from '#src/tenants/Queries.js';
 import { consoleLog } from '#src/utils/console.js';
 
+import {
+  type InteractionHookContext,
+  type InteractionHookResult,
+  eventToHook,
+  type ManagementHookContextManager,
+} from './types.js';
 import { generateHookTestPayload, parseResponse, sendWebhookRequest } from './utils.js';
 
-/**
- * The context for triggering interaction hooks by `triggerInteractionHooks`.
- * In the `koaInteractionHooks` middleware,
- * we will store the context before processing the interaction and consume it after the interaction is processed if needed.
- */
-export type InteractionHookContext = {
-  event: InteractionEvent;
-  sessionId?: string;
-  applicationId?: string;
-  userIp?: string;
-};
-
-/**
- * The interaction hook result for triggering interaction hooks by `triggerInteractionHooks`.
- * In the `koaInteractionHooks` middleware,
- * if we get an interaction hook result after the interaction is processed, related hooks will be triggered.
- */
-export type InteractionHookResult = {
-  userId: string;
-};
-
-const eventToHook: Record<InteractionEvent, HookEvent> = {
-  [InteractionEvent.Register]: HookEvent.PostRegister,
-  [InteractionEvent.SignIn]: HookEvent.PostSignIn,
-  [InteractionEvent.ForgotPassword]: HookEvent.PostResetPassword,
-};
-
 export const createHookLibrary = (queries: Queries) => {
   const {
     applications: { findApplicationById },
@@ -132,6 +110,15 @@ export const createHookLibrary = (queries: Queries) => {
     );
   };
 
+  /**
+   * Trigger management hooks with the given context. All context objects will be used to trigger
+   * hooks.
+   */
+  // eslint-disable-next-line unicorn/consistent-function-scoping
+  const triggerManagementHooks = async (hooks: ManagementHookContextManager) => {
+    // TODO: To be implemented
+  };
+
   const testHook = async (hookId: string, events: HookEvent[], config: HookConfig) => {
     const { signingKey } = await findHookById(hookId);
     try {
@@ -169,6 +156,7 @@ export const createHookLibrary = (queries: Queries) => {
 
   return {
     triggerInteractionHooks,
+    triggerManagementHooks,
     testHook,
   };
 };
diff --git a/packages/core/src/libraries/hook/types.ts b/packages/core/src/libraries/hook/types.ts
@@ -0,0 +1,52 @@
+import { InteractionEvent, InteractionHookEvent, type ManagementHookEvent } from '@logto/schemas';
+
+type ManagementHookContext = {
+  event: ManagementHookEvent;
+  data: unknown;
+};
+
+type ManagementHookMetadata = {
+  userAgent?: string;
+  ip: string;
+};
+
+/**
+ * The class for managing Management API hook contexts.
+ */
+export class ManagementHookContextManager {
+  contextArray: ManagementHookContext[] = [];
+
+  constructor(public metadata: ManagementHookMetadata) {}
+
+  appendContext(context: ManagementHookContext) {
+    // eslint-disable-next-line @silverhand/fp/no-mutating-methods
+    this.contextArray.push(context);
+  }
+}
+
+/**
+ * The context for triggering interaction hooks by `triggerInteractionHooks`.
+ * In the `koaInteractionHooks` middleware,
+ * we will store the context before processing the interaction and consume it after the interaction is processed if needed.
+ */
+export type InteractionHookContext = {
+  event: InteractionEvent;
+  sessionId?: string;
+  applicationId?: string;
+  userIp?: string;
+};
+
+/**
+ * The interaction hook result for triggering interaction hooks by `triggerInteractionHooks`.
+ * In the `koaInteractionHooks` middleware,
+ * if we get an interaction hook result after the interaction is processed, related hooks will be triggered.
+ */
+export type InteractionHookResult = {
+  userId: string;
+};
+
+export const eventToHook: Record<InteractionEvent, InteractionHookEvent> = {
+  [InteractionEvent.Register]: InteractionHookEvent.PostRegister,
+  [InteractionEvent.SignIn]: InteractionHookEvent.PostSignIn,
+  [InteractionEvent.ForgotPassword]: InteractionHookEvent.PostResetPassword,
+};
diff --git a/packages/core/src/libraries/hook/utils.test.ts b/packages/core/src/libraries/hook/utils.test.ts
@@ -1,4 +1,4 @@
-import { HookEvent } from '@logto/schemas';
+import { type HookEvent, InteractionHookEvent } from '@logto/schemas';
 import { createMockUtils } from '@logto/shared/esm';
 import ky from 'ky';
 
@@ -21,7 +21,7 @@ const { generateHookTestPayload, sendWebhookRequest } = await import('./utils.js
 describe('sendWebhookRequest', () => {
   it('should call got.post with correct values', async () => {
     const mockHookId = 'mockHookId';
-    const mockEvent: HookEvent = HookEvent.PostSignIn;
+    const mockEvent: HookEvent = InteractionHookEvent.PostSignIn;
     const testPayload = generateHookTestPayload(mockHookId, mockEvent);
 
     const mockUrl = 'https://logto.gg';

diff --git a/packages/core/src/middleware/koa-management-api-hooks.test.ts b/packages/core/src/middleware/koa-management-api-hooks.test.ts
@@ -0,0 +1,55 @@
+import { type ParameterizedContext } from 'koa';
+
+import type Libraries from '#src/tenants/Libraries.js';
+import { createContextWithRouteParameters } from '#src/utils/test-utils.js';
+
+import { type WithHookContext, koaManagementApiHooks } from './koa-management-api-hooks.js';
+
+const { jest } = import.meta;
+
+const notToBeCalled = () => {
+  throw new Error('Should not be called');
+};
+
+describe('koaManagementApiHooks', () => {
+  const next = jest.fn();
+  const triggerManagementHooks = jest.fn();
+  // @ts-expect-error mock
+  const mockHooksLibrary: Libraries['hooks'] = {
+    triggerManagementHooks,
+  };
+
+  it("should do nothing if there's no hook context", async () => {
+    const ctx = {
+      ...createContextWithRouteParameters(),
+      header: {},
+      appendHookContext: notToBeCalled,
+    };
+    await koaManagementApiHooks(mockHooksLibrary)(ctx, next);
+    expect(triggerManagementHooks).not.toBeCalled();
+  });
+
+  it('should trigger management hooks', async () => {
+    const ctx: ParameterizedContext<unknown, WithHookContext> = {
+      ...createContextWithRouteParameters(),
+      header: {},
+      appendHookContext: notToBeCalled,
+    };
+    next.mockImplementation(() => {
+      ctx.appendHookContext({ event: 'Role.Created', data: { id: '123' } });
+    });
+
+    await koaManagementApiHooks(mockHooksLibrary)(ctx, next);
+    expect(triggerManagementHooks).toBeCalledTimes(1);
+    expect(triggerManagementHooks).toBeCalledWith(
+      expect.objectContaining({
+        contextArray: [
+          {
+            event: 'Role.Created',
+            data: { id: '123' },
+          },
+        ],
+      })
+    );
+  });
+});
diff --git a/packages/core/src/middleware/koa-management-api-hooks.ts b/packages/core/src/middleware/koa-management-api-hooks.ts
@@ -0,0 +1,42 @@
+import { trySafe } from '@silverhand/essentials';
+import { type MiddlewareType } from 'koa';
+import { type IRouterParamContext } from 'koa-router';
+
+import { ManagementHookContextManager } from '#src/libraries/hook/types.js';
+import type Libraries from '#src/tenants/Libraries.js';
+
+export type WithHookContext<ContextT extends IRouterParamContext = IRouterParamContext> =
+  ContextT & { appendHookContext: ManagementHookContextManager['appendContext'] };
+
+/**
+ * The factory to create a new management hook middleware function.
+ *
+ * To trigger management hooks, use `appendHookContext` to append the context.
+ *
+ * @param hooks The hooks library.
+ * @returns The middleware function.
+ */
+export const koaManagementApiHooks = <StateT, ContextT extends IRouterParamContext, ResponseT>(
+  hooks: Libraries['hooks']
+): MiddlewareType<StateT, WithHookContext<ContextT>, ResponseT> => {
+  return async (ctx, next) => {
+    const {
+      header: { 'user-agent': userAgent },
+      ip,
+    } = ctx;
+    const managementHooks = new ManagementHookContextManager({ userAgent, ip });
+
+    /**
+     * Append a hook context to trigger management hooks. If multiple contexts are appended, all of
+     * them will be triggered.
+     */
+    ctx.appendHookContext = managementHooks.appendContext.bind(managementHooks);
+
+    await next();
+
+    if (managementHooks.contextArray.length > 0) {
+      // Hooks should not crash the app
+      void trySafe(hooks.triggerManagementHooks(managementHooks));
+    }
+  };
+};
diff --git a/packages/core/src/routes/admin-user/basics.ts b/packages/core/src/routes/admin-user/basics.ts
@@ -14,9 +14,9 @@ import { encryptUserPassword } from '#src/libraries/user.js';
 import koaGuard from '#src/middleware/koa-guard.js';
 import assertThat from '#src/utils/assert-that.js';
 
-import type { AuthedRouter, RouterInitArgs } from '../types.js';
+import type { ManagementRouter, RouterInitArgs } from '../types.js';
 
-export default function adminUserBasicsRoutes<T extends AuthedRouter>(...args: RouterInitArgs<T>) {
+export default function adminUserBasicsRoutes<T extends ManagementRouter>(...args: RouterInitArgs<T>) {
   const [router, { queries, libraries }] = args;
   const {
     oidcModelInstances: { revokeInstanceByUserId },

diff --git a/packages/core/src/routes/admin-user/index.ts b/packages/core/src/routes/admin-user/index.ts
@@ -1,4 +1,4 @@
-import type { AuthedRouter, RouterInitArgs } from '../types.js';
+import type { ManagementRouter, RouterInitArgs } from '../types.js';
 
 import adminUserBasicsRoutes from './basics.js';
 import adminUserMfaVerificationsRoutes from './mfa-verifications.js';
@@ -7,7 +7,7 @@ import adminUserRoleRoutes from './role.js';
 import adminUserSearchRoutes from './search.js';
 import adminUserSocialRoutes from './social.js';
 
-export default function adminUserRoutes<T extends AuthedRouter>(...args: RouterInitArgs<T>) {
+export default function adminUserRoutes<T extends ManagementRouter>(...args: RouterInitArgs<T>) {
   adminUserBasicsRoutes(...args);
   adminUserRoleRoutes(...args);
   adminUserSearchRoutes(...args);

diff --git a/packages/core/src/routes/admin-user/mfa-verifications.ts b/packages/core/src/routes/admin-user/mfa-verifications.ts
@@ -11,9 +11,9 @@ import { transpileUserMfaVerifications } from '#src/utils/user.js';
 
 import { generateBackupCodes } from '../interaction/utils/backup-code-validation.js';
 import { generateTotpSecret } from '../interaction/utils/totp-validation.js';
-import type { AuthedRouter, RouterInitArgs } from '../types.js';
+import type { ManagementRouter, RouterInitArgs } from '../types.js';
 
-export default function adminUserMfaVerificationsRoutes<T extends AuthedRouter>(
+export default function adminUserMfaVerificationsRoutes<T extends ManagementRouter>(
   ...args: RouterInitArgs<T>
 ) {
   const [