Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

feat: admin api v1 - create url #2213

Merged
merged 19 commits into from
May 29, 2023
Merged

Conversation

disKeith
Copy link
Contributor

@disKeith disKeith commented May 4, 2023

Problem

This PR closes APIs for Forms to create shortlinks

Solution

This PR implements a new endpoint {{host}}/api/v1/admin/urls which is allows for whitelisted emails defined in ADMIN_API_EMAILS to call the endpoint to create new short URLs and transfer its ownership to a provided email address.

Features:

  • Added new route to {{host}}/api/v1/admin/urls that uses apiKeyAdminAuthMiddleware for authentication

    • Updated apiKeyAdminAuthMiddleware to throw jsonMessage if api key is unauthorized
    • Added POST route that additionally validates the required email attribute on top of existing validations
  • Added AdminApiV1Controller that handles POST requests with shortUrl, longUrl, and email attributes in the JSON body

    • createUrl method to find or create a new user with email provided, then creates a new link with the authenticated user before transferring ownership to the parsed email.

Improvements:

  • Renamed ADMIN_API_EMAIL env variable to ADMIN_API_EMAILS to reflect its use to white list multiple emails

  • Updated isAdmin method in ApiKeyAuthService to handle multiple white listed emails

Tests

Unit Test Cases

  • Create, sanitize and transfer link to target email for admin API
  • Create and sanitize link with same owner and target email for admin API
  • Reports bad request with user creation
  • Reports not found on NotFoundError
  • Reports bad request on AlreadyExistsError
  • Reports bad request on Sequelize.ValidationError
  • Reports bad request on generic error

Integration Test

  • Added createIntegrationTestAdminUser to create a new integration test admin user which is using the defined [email protected] email
  • Tests Cases
    • Should not be able to create urls without API key header
    • Should not be able to create urls with invalid API key
    • Should not be able to create urls with unauthorized API key
    • Should be able to create link url with longUrl, shortUrl, and validEmail
    • Should not be able to create link url with longUrl and shortUrl, without validEmail
    • Should not be able to create link url with longUrl and shortUrl, with invalid email
    • Should be able to create link url with longUrl and validEmail, without shortUrl
    • Should not be able to create link url with longUrl, without shortUrl and validEmail
    • Should not be able to create link url with invalid email
    • Should not be able to create link url without longUrl, shortUrl, and email
    • Should not be able to create link url with invalid longUrl
    • Should not be able to create link url with invalid shortUrl
    • Should be able to create link url with longUrl, shortUrl, and same email as admin

@disKeith disKeith requested review from gweiying and halfwhole May 4, 2023 04:02
@disKeith disKeith changed the title Feat/backend/create url admin api feat: external api v2 - create url May 4, 2023
Copy link
Collaborator

@halfwhole halfwhole left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

mostly lgtm, thanks a lot for this!!

regarding an open question from before on whether this should or shouldn't be external API v2: after considering it more, I think I'd still somewhat (but not strongly) be in favour of it being admin API v1 instead. the functionality provided in this PR to create links under anyone else's account is not just equivalent to creating a link under your own account and then transferring it to someone else's, but involves possibly creating an entirely new account for that someone; plus, their email address need not even be whitelisted! perhaps it's a matter of personal opinion and risk tolerance, but to me this might just be too much power to give to just any public officer who can access Go?

plus, if we're not 100% confident that v2 should be released not just to specific admin users but rolled out to all ordinary public officers (like in v1), then it appears to me that by default they should be kept separate -- if v1 and v2 cater to different groups of people with different permissions and powers, they seem different enough to warrant separating this one out as an admin-only API. documentation-wise, labelling it as a new 'version' might also be misleading, as it implies to our current external API v1 users that there's a new version that they can upgrade to, when in fact it's exclusive to only certain privileged parties like Forms

README.md Outdated Show resolved Hide resolved
src/server/config.ts Outdated Show resolved Hide resolved
src/server/models/user.ts Outdated Show resolved Hide resolved
test/integration/api/external-v2/Urls.test.ts Outdated Show resolved Hide resolved
test/integration/api/external-v2/Urls.test.ts Outdated Show resolved Hide resolved
src/server/api/index.ts Outdated Show resolved Hide resolved
src/server/api/index.ts Show resolved Hide resolved
src/server/modules/api/external-v2/ApiV2Controller.ts Outdated Show resolved Hide resolved
src/server/modules/api/external-v2/ApiV2Controller.ts Outdated Show resolved Hide resolved
src/server/api/external-v2/validators.ts Outdated Show resolved Hide resolved
@disKeith disKeith changed the title feat: external api v2 - create url feat: admin api v1 - create url May 10, 2023
Copy link
Collaborator

@halfwhole halfwhole left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

looking good!

src/server/models/user.ts Outdated Show resolved Hide resolved
src/server/admin/admin-v1/index.ts Outdated Show resolved Hide resolved
src/server/admin/index.ts Outdated Show resolved Hide resolved
test/server/mocks/repositories/UserRepository.ts Outdated Show resolved Hide resolved
src/server/admin/index.ts Outdated Show resolved Hide resolved
test/integration/admin/admin-v1/Urls.test.ts Outdated Show resolved Hide resolved
src/server/modules/admin/admin-v1/index.ts Outdated Show resolved Hide resolved
test/integration/admin/admin-v1/Urls.test.ts Outdated Show resolved Hide resolved
src/server/admin/index.ts Outdated Show resolved Hide resolved
API_ADMIN_V1_URLS,
{ longUrl },
undefined,
'this-is-an-invalid-api-key',

Check failure

Code scanning / CodeQL

Hard-coded credentials

The hard-coded value "this-is-an-invalid-api-key" is used as [authorization header](1).
Copy link
Collaborator

@halfwhole halfwhole left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

LGTM, great work pushing out such a large feature 🔥 let's test it on staging sometime as we prepare it for prod release!

Some deploy notes:

  • Before deployment: set ADMIN_API_EMAILS on gov/edu/health staging
  • Before deployment: set ADMIN_API_EMAILS on gov/edu/health prod
  • After deployment: remove ADMIN_API_EMAIL on gov/edu/health staging
  • After deployment: remove ADMIN_API_EMAIL on gov/edu/health prod

src/server/api/admin-v1/validators.ts Outdated Show resolved Hide resolved
src/server/modules/api/external-v1/index.ts Outdated Show resolved Hide resolved
src/server/modules/api/admin-v1/AdminApiV1Controller.ts Outdated Show resolved Hide resolved
@disKeith disKeith merged commit 1c527c3 into develop May 29, 2023
@halfwhole halfwhole deleted the feat/backend/create-url-admin-api branch May 29, 2023 04:05
@disKeith disKeith mentioned this pull request May 29, 2023
22 tasks
disKeith added a commit that referenced this pull request May 30, 2023
* fix: package.json & package-lock.json to reduce vulnerabilities (#2207)

The following vulnerabilities are fixed with an upgrade:
- https://snyk.io/vuln/SNYK-JS-XML2JS-5414874

* feat: allow zip files and block password-protected files (#2203)

* feat: admin api v1 - create url (#2213)

* feat: api v2 endpoint and update admin auth middleware

* chore: add and handle external user creation

* chore: rename admin api env variable

* chore: api v2 unit testing

* chore: add integration tests

* chore: update test api key string

* chore: update unauthorized user error

* chore: undo conditional user creation

* chore: update admin email env var parsing

* chore: port to admin api v1 and update unit and integration tests

* chore: remove external user type and add domain validation error msg

* chore: remainder port from v2 to admin v1

* chore: add missing return in external v1

* fix: ownership transfer condition and tests

* chore: move api structure and update tests

* chore: update readme

* chore: add email domain validation to schema

* chore: fix error type for generic errors

* chore: undo types from external v1

* 1.76.0

---------

Co-authored-by: halfwhole <[email protected]>
Co-authored-by: Snyk bot <[email protected]>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Labels
None yet
Projects
None yet
Development

Successfully merging this pull request may close these issues.

3 participants