Merge pull request #31 from parlemonde/feat/collaboration-v1

Add collaboration mode and some fixes
parlemonde · Mar 26, 2024 · 115a13b · 115a13b
2 parents 9022fdf + 58c46b8
commit 115a13b
Show file tree

Hide file tree

Showing 136 changed files with 3,510 additions and 527 deletions.
diff --git a/.pnp.cjs b/.pnp.cjs
diff --git a/.yarn/cache/@next-swc-linux-x64-gnu-npm-13.5.6-4b2c3a039f-8.zip b/.yarn/cache/@next-swc-linux-x64-gnu-npm-13.5.6-4b2c3a039f-8.zip
diff --git a/.yarn/cache/@socket.io-component-emitter-npm-3.1.0-3f778351c2-db069d9542.zip b/.yarn/cache/@socket.io-component-emitter-npm-3.1.0-3f778351c2-db069d9542.zip
diff --git a/.yarn/cache/@swc-core-linux-x64-gnu-npm-1.3.80-9fa87ecaea-8.zip b/.yarn/cache/@swc-core-linux-x64-gnu-npm-1.3.80-9fa87ecaea-8.zip
diff --git a/.yarn/cache/@types-cookie-npm-0.4.1-274a704dc6-3275534ed6.zip b/.yarn/cache/@types-cookie-npm-0.4.1-274a704dc6-3275534ed6.zip
diff --git a/.yarn/cache/@types-cors-npm-2.8.17-2556d16051-469bd85e29.zip b/.yarn/cache/@types-cors-npm-2.8.17-2556d16051-469bd85e29.zip
diff --git a/.yarn/cache/@types-node-npm-20.11.16-d9bc65d4bc-51f0831c12.zip b/.yarn/cache/@types-node-npm-20.11.16-d9bc65d4bc-51f0831c12.zip
diff --git a/.yarn/cache/@zxing-browser-npm-0.0.7-4f5994357c-5f56628382.zip b/.yarn/cache/@zxing-browser-npm-0.0.7-4f5994357c-5f56628382.zip
diff --git a/.yarn/cache/@zxing-library-npm-0.18.6-28ffb15218-564a25f624.zip b/.yarn/cache/@zxing-library-npm-0.18.6-28ffb15218-564a25f624.zip
diff --git a/.yarn/cache/@zxing-text-encoding-npm-0.9.0-8426ff59e9-c23b12aee7.zip b/.yarn/cache/@zxing-text-encoding-npm-0.9.0-8426ff59e9-c23b12aee7.zip
diff --git a/.yarn/cache/base64id-npm-2.0.0-ef4afeee0a-581b1d37e6.zip b/.yarn/cache/base64id-npm-2.0.0-ef4afeee0a-581b1d37e6.zip
diff --git a/.yarn/cache/cookie-npm-0.4.2-7761894d5f-a00833c998.zip b/.yarn/cache/cookie-npm-0.4.2-7761894d5f-a00833c998.zip
diff --git a/.yarn/cache/croppie-npm-2.6.5-0495568803-898e3c8de9.zip b/.yarn/cache/croppie-npm-2.6.5-0495568803-898e3c8de9.zip
diff --git a/.yarn/cache/engine.io-client-npm-6.5.3-2fd3732014-a72596fae9.zip b/.yarn/cache/engine.io-client-npm-6.5.3-2fd3732014-a72596fae9.zip
diff --git a/.yarn/cache/engine.io-npm-6.5.4-4c4278bf0e-d5b55cbac7.zip b/.yarn/cache/engine.io-npm-6.5.4-4c4278bf0e-d5b55cbac7.zip
diff --git a/.yarn/cache/engine.io-parser-npm-5.2.2-a5bf5030e1-470231215f.zip b/.yarn/cache/engine.io-parser-npm-5.2.2-a5bf5030e1-470231215f.zip
diff --git a/.yarn/cache/merge-images-npm-2.0.0-eb34a975ac-7ccea583c2.zip b/.yarn/cache/merge-images-npm-2.0.0-eb34a975ac-7ccea583c2.zip
diff --git a/.yarn/cache/normalize-wheel-npm-1.0.1-86fe373cbe-00b32efa04.zip b/.yarn/cache/normalize-wheel-npm-1.0.1-86fe373cbe-00b32efa04.zip
diff --git a/.yarn/cache/qr.js-npm-0.0.0-eea89f459b-5ac6c39396.zip b/.yarn/cache/qr.js-npm-0.0.0-eea89f459b-5ac6c39396.zip
diff --git a/.yarn/cache/react-device-detect-npm-2.2.3-307eab666a-42d9b3182b.zip b/.yarn/cache/react-device-detect-npm-2.2.3-307eab666a-42d9b3182b.zip
diff --git a/.yarn/cache/react-easy-crop-npm-5.0.5-ef4de2d1e3-61776f43d3.zip b/.yarn/cache/react-easy-crop-npm-5.0.5-ef4de2d1e3-61776f43d3.zip
diff --git a/.yarn/cache/react-qr-code-npm-2.0.12-7a94d03748-b7bad40d7d.zip b/.yarn/cache/react-qr-code-npm-2.0.12-7a94d03748-b7bad40d7d.zip
diff --git a/.yarn/cache/react-qr-reader-npm-3.0.0-beta-1-159e0ee97b-f85fc49025.zip b/.yarn/cache/react-qr-reader-npm-3.0.0-beta-1-159e0ee97b-f85fc49025.zip
diff --git a/.yarn/cache/rollup-npm-2.79.1-94e707a9a3-6a2bf167b3.zip b/.yarn/cache/rollup-npm-2.79.1-94e707a9a3-6a2bf167b3.zip
diff --git a/.yarn/cache/sdp-npm-3.2.0-b1a5f85233-227885bdda.zip b/.yarn/cache/sdp-npm-3.2.0-b1a5f85233-227885bdda.zip
diff --git a/.yarn/cache/socket.io-adapter-npm-2.5.2-3456682203-481251c354.zip b/.yarn/cache/socket.io-adapter-npm-2.5.2-3456682203-481251c354.zip
diff --git a/.yarn/cache/socket.io-client-npm-4.7.4-0c56d67b42-7254f441ff.zip b/.yarn/cache/socket.io-client-npm-4.7.4-0c56d67b42-7254f441ff.zip
diff --git a/.yarn/cache/socket.io-npm-4.7.4-57c0a2a108-63bb2b0c11.zip b/.yarn/cache/socket.io-npm-4.7.4-57c0a2a108-63bb2b0c11.zip
diff --git a/.yarn/cache/socket.io-parser-npm-4.2.4-bf87f78bcd-61540ef99a.zip b/.yarn/cache/socket.io-parser-npm-4.2.4-bf87f78bcd-61540ef99a.zip
diff --git a/.yarn/cache/ts-custom-error-npm-3.3.1-e5c805db5b-50a1e825fc.zip b/.yarn/cache/ts-custom-error-npm-3.3.1-e5c805db5b-50a1e825fc.zip
diff --git a/.yarn/cache/tslib-npm-2.0.1-26f70961f9-507f32fc24.zip b/.yarn/cache/tslib-npm-2.0.1-26f70961f9-507f32fc24.zip
diff --git a/.yarn/cache/ua-parser-js-npm-1.0.37-b79655e1b5-4d481c720d.zip b/.yarn/cache/ua-parser-js-npm-1.0.37-b79655e1b5-4d481c720d.zip
diff --git a/.yarn/cache/undici-types-npm-5.26.5-de4f7c7bb9-3192ef6f3f.zip b/.yarn/cache/undici-types-npm-5.26.5-de4f7c7bb9-3192ef6f3f.zip
diff --git a/.yarn/cache/webrtc-adapter-npm-8.2.3-612f54e47a-8239c9452c.zip b/.yarn/cache/webrtc-adapter-npm-8.2.3-612f54e47a-8239c9452c.zip
diff --git a/.yarn/cache/ws-npm-8.11.0-ab72116a01-316b33aba3.zip b/.yarn/cache/ws-npm-8.11.0-ab72116a01-316b33aba3.zip
diff --git a/.yarn/cache/xmlhttprequest-ssl-npm-2.0.0-a9c0d5efed-1e98df67f0.zip b/.yarn/cache/xmlhttprequest-ssl-npm-2.0.0-a9c0d5efed-1e98df67f0.zip
diff --git a/package.json b/package.json
@@ -38,7 +38,6 @@
     "classnames": "^2.3.2",
     "cookie-parser": "^1.4.6",
     "cors": "^2.8.5",
-    "croppie": "^2.6.5",
     "csrf": "^3.1.0",
     "dotenv": "^16.3.1",
     "express": "^4.18.2",
@@ -47,6 +46,7 @@
     "helmet": "^7.0.0",
     "json-stable-stringify": "^1.0.2",
     "jsonwebtoken": "^9.0.1",
+    "merge-images": "^2.0.0",
     "mime-types": "^2.1.35",
     "mlt-xml": "^2.0.2",
     "morgan": "^1.10.0",
@@ -63,19 +63,26 @@
     "query-string": "^8.1.0",
     "react": "^18.2.0",
     "react-charts": "^2.0.0-beta.7",
+    "react-device-detect": "^2.2.3",
     "react-dom": "^18.2.0",
+    "react-easy-crop": "^5.0.5",
     "react-html5-camera-photo": "^1.5.11",
+    "react-qr-code": "^2.0.12",
+    "react-qr-reader": "^3.0.0-beta-1",
     "react-query": "^3.39.3",
     "resize-observer-polyfill": "^1.5.1",
     "safe-buffer": "^5.2.1",
     "sanitize-filename": "^1.6.3",
     "sass": "^1.66.1",
     "sharp": "^0.32.5",
+    "socket.io": "^4.7.4",
+    "socket.io-client": "^4.7.4",
     "sortablejs": "1.15.0",
     "typeorm": "^0.2.45",
     "typescript": "5.1.6",
     "uuid": "^9.0.0",
     "waveform-data": "^4.3.0",
+    "webrtc-adapter": "^8.2.3",
     "winston": "^3.10.0"
   },
   "devDependencies": {

diff --git a/public/black.jpg b/public/black.jpg
diff --git a/public/black_bg/black_1600x900.jpg b/public/black_bg/black_1600x900.jpg
diff --git a/public/black_bg/black_1920x1080.jpg b/public/black_bg/black_1920x1080.jpg
diff --git a/public/black_bg/black_2560x1440.jpg b/public/black_bg/black_2560x1440.jpg
diff --git a/public/black_bg/black_3840x2160.jpg b/public/black_bg/black_3840x2160.jpg
diff --git a/public/black_bg/black_7680x4320.jpg b/public/black_bg/black_7680x4320.jpg
diff --git a/server/app.ts b/server/app.ts
@@ -6,6 +6,7 @@ import express, { Router } from 'express';
 import type { Request } from 'express';
 import RateLimit from 'express-rate-limit';
 import helmet from 'helmet';
+import { Server } from 'http';
 import morgan from 'morgan';
 import next from 'next';
 import path from 'path';
@@ -20,6 +21,7 @@ import { handleErrors } from './middlewares/handle-errors';
 import { jsonify } from './middlewares/jsonify';
 import { removeTrailingSlash } from './middlewares/remove-trailing-slash';
 import { routes } from './routes';
+import { startSocketServer } from './socket';
 import { getLocales } from './translations/getLocales';
 import { getDefaultDirectives } from './utils/get-default-directives';
 
@@ -132,7 +134,10 @@ async function startApp() {
     if (port === false) {
         logger.error(`Exiting. Invalid port to use: %s`, port);
     } else {
-        const server = app.listen(port);
+        const server = new Server(app);
+        // --- Start socket server ---
+        startSocketServer(server);
+        server.listen(port);
         server.on('error', onError);
         server.on('listening', () => {
             logger.info(`App listening on port ${port}!`);

diff --git a/server/authentication/index.ts b/server/authentication/index.ts
@@ -2,6 +2,7 @@ import { Router } from 'express';
 
 import { handleErrors } from '../middlewares/handle-errors';
 import { login } from './login';
+import { loginStudent } from './loginStudent';
 import { logout } from './logout';
 import { resetPassword, updatePassword, verifyEmail } from './password';
 import { loginWithPlmSSO } from './plmSSO';
@@ -11,6 +12,7 @@ const authRouter = Router();
 authRouter.post('/token', handleErrors(refreshToken));
 authRouter.post('/token/reject', handleErrors(rejectAccessToken));
 authRouter.post('/login', handleErrors(login));
+authRouter.post('/login/student', handleErrors(loginStudent));
 authRouter.post('/login/reset-password', handleErrors(resetPassword));
 authRouter.post('/login/update-password', handleErrors(updatePassword));
 authRouter.post('/login/verify-email', handleErrors(verifyEmail));

diff --git a/server/authentication/lib/tokens.ts b/server/authentication/lib/tokens.ts
@@ -62,3 +62,17 @@ export async function revokeRefreshToken(refreshToken: string): Promise<void> {
         id: parseInt(refreshTokenID, 10) || 0,
     });
 }
+
+export async function getStudentAccessToken(
+    projectId: number,
+    sequencyId: number,
+    teacherId: number,
+): Promise<{
+    accessToken: string;
+}> {
+    const accessToken = jwt.sign({ projectId, sequencyId, teacherId, isStudent: true }, APP_SECRET, { expiresIn: '4h' });
+
+    return {
+        accessToken,
+    };
+}
diff --git a/server/authentication/login.ts b/server/authentication/login.ts
@@ -1,8 +1,9 @@
 import type { JSONSchemaType } from 'ajv';
 import * as argon2 from 'argon2';
 import type { Request, Response } from 'express';
-import { getRepository } from 'typeorm';
+import { getRepository, getConnection } from 'typeorm';
 
+import { Project } from '../entities/project';
 import { User } from '../entities/user';
 import { ajv, sendInvalidDataError } from '../lib/json-schema-validator';
 import { logger } from '../lib/logger';
@@ -59,10 +60,6 @@ export async function login(req: Request, res: Response): Promise<void> {
         throw new AppError('forbidden', ['Unauthorized - Account blocked. Please reset password.'], 3);
     }
 
-    if (user.accountRegistration === 10) {
-        throw new AppError('loginError', ['Unauthorized - Please use SSO.'], 5);
-    }
-
     if (!isPasswordCorrect) {
         user.accountRegistration += 1;
         await getRepository(User).save(user);
@@ -72,6 +69,14 @@ export async function login(req: Request, res: Response): Promise<void> {
         await getRepository(User).save(user);
     }
 
+    // set collaboration mode to false on each user project
+    await getConnection()
+        .createQueryBuilder()
+        .update(Project)
+        .set({ isCollaborationActive: false, joinCode: null })
+        .where({ userId: user.id, isCollaborationActive: true })
+        .execute();
+
     const { accessToken, refreshToken } = await getAccessToken(user.id, !!data.getRefreshToken);
     res.cookie('access-token', accessToken, {
         maxAge: 4 * 60 * 60000,

diff --git a/server/authentication/loginStudent.ts b/server/authentication/loginStudent.ts
@@ -0,0 +1,79 @@
+import type { JSONSchemaType } from 'ajv';
+import type { Request, Response } from 'express';
+import { getRepository } from 'typeorm';
+
+// import { QuestionStatus } from '../../types/models/question.type';
+import { Project } from '../entities/project';
+import { Question } from '../entities/question';
+import { User } from '../entities/user';
+import { ajv, sendInvalidDataError } from '../lib/json-schema-validator';
+import { AppError } from '../middlewares/handle-errors';
+import { ANONYMOUS_USER } from '../utils/anonymous-user';
+import { getStudentAccessToken } from './lib/tokens';
+
+const APP_SECRET: string = process.env.APP_SECRET || '';
+
+// --- LOGIN ---
+type LoginData = {
+    projectId: number;
+    sequencyId: number;
+    teacherId: number;
+};
+const LOGIN_SCHEMA: JSONSchemaType<LoginData> = {
+    type: 'object',
+    properties: {
+        projectId: { type: 'number' },
+        sequencyId: { type: 'number' },
+        teacherId: { type: 'number' },
+    },
+    required: ['projectId', 'sequencyId', 'teacherId'],
+    additionalProperties: false,
+};
+const loginValidator = ajv.compile(LOGIN_SCHEMA);
+export async function loginStudent(req: Request, res: Response): Promise<void> {
+    if (APP_SECRET.length === 0 || !req.isCsrfValid) {
+        throw new AppError('forbidden');
+    }
+    const data = req.body;
+    if (!loginValidator(data)) {
+        sendInvalidDataError(loginValidator);
+        return;
+    }
+
+    const project = await getRepository(Project).findOne({ where: { id: data.projectId } });
+    const teacher = await getRepository(User).findOne({ where: { id: data.teacherId } });
+    const sequency = await getRepository(Question).findOne({
+        where: { id: data.sequencyId },
+        relations: ['project', 'project.user'],
+    });
+
+    // Check if data are correct before connect student as anonymous
+    if (
+        project === undefined ||
+        teacher === undefined ||
+        sequency === undefined ||
+        sequency.project === undefined ||
+        sequency.project.user === undefined ||
+        project.id !== sequency.project.id ||
+        teacher.id !== sequency.project.user.id ||
+        project.isCollaborationActive !== true
+    ) {
+        throw new AppError('loginError', ['Unauthorized - Invalid QRCode.'], 0);
+    }
+
+    const { accessToken } = await getStudentAccessToken(project.id, sequency.id, teacher.id);
+    res.cookie('access-token', accessToken, {
+        maxAge: 4 * 60 * 60000,
+        expires: new Date(Date.now() + 4 * 60 * 60000),
+        httpOnly: true,
+        secure: true,
+        sameSite: 'strict',
+    });
+    res.sendJSON({
+        accessToken,
+        projectId: project.id,
+        sequencyId: sequency.id,
+        teacherId: teacher.id,
+        user: ANONYMOUS_USER,
+    });
+}
diff --git a/server/authentication/password.ts b/server/authentication/password.ts
@@ -94,10 +94,6 @@ export async function updatePassword(req: Request, res: Response): Promise<void>
         throw new AppError('loginError', ['Unauthorized - Invalid username.'], 0);
     }
 
-    if (user.accountRegistration === 10) {
-        throw new AppError('loginError', ['Unauthorized - Please use SSO.'], 2);
-    }
-
     // verify token
     let isverifyTokenCorrect: boolean = false;
     try {

diff --git a/server/controllers/projects.ts b/server/controllers/projects.ts
@@ -4,7 +4,7 @@ import fs from 'fs-extra';
 import http from 'http';
 import * as path from 'path';
 import sanitize from 'sanitize-filename';
-import { getRepository } from 'typeorm';
+import { getRepository, getConnection } from 'typeorm';
 import { v4 as uuidv4 } from 'uuid';
 
 import type { Title } from '../../types/models/title.type';
@@ -154,15 +154,30 @@ projectController.get({ path: '', userType: UserType.CLASS }, async (req, res) =
     res.sendJSON(project);
 });
 
+projectController.get({ path: '/join/:joinCode(\\d+)' }, async (req, res, next) => {
+    const joinCode = parseInt(req.params.joinCode, 10) || 0;
+    const project: Project | undefined = await getRepository(Project).findOne({
+        where: { joinCode },
+        relations: ['questions'],
+    });
+    if (project === undefined) {
+        next();
+        return;
+    }
+
+    res.sendJSON(project);
+});
+
 projectController.get({ path: '/:id(\\d+)', userType: UserType.CLASS }, async (req, res, next) => {
-    if (!req.user) {
+    const user = req.user;
+    if (user === undefined) {
         next();
         return;
     }
     const id = parseInt(req.params.id, 10) || 0;
     const includes = new Set((getQueryString(req.query.include) || '').split(','));
     const project: Project | undefined = await getRepository(Project).findOne({
-        where: { id, userId: req.user.id },
+        where: { id, userId: user.teacherId ?? user.id },
         relations: getRelations(includes),
     });
     if (project === undefined) {
@@ -191,6 +206,7 @@ type PostProjectData = {
     soundUrl?: string | null;
     soundVolume?: number | null;
     musicBeginTime?: number;
+    videoJobId?: string | null;
 };
 const POST_PROJECT_SCHEMA: JSONSchemaType<PostProjectData> = {
     type: 'object',
@@ -220,6 +236,10 @@ const POST_PROJECT_SCHEMA: JSONSchemaType<PostProjectData> = {
             type: 'number',
             nullable: true,
         },
+        videoJobId: {
+            type: 'string',
+            nullable: true,
+        },
     },
     required: ['title', 'themeId', 'scenarioId', 'questions'],
     additionalProperties: false,
@@ -232,6 +252,14 @@ projectController.post({ path: '/', userType: UserType.CLASS }, async (req, res,
         return;
     }
 
+    // set collaboration mode to false on each user project
+    await getConnection()
+        .createQueryBuilder()
+        .update(Project)
+        .set({ isCollaborationActive: false, joinCode: null })
+        .where({ userId: user.id, isCollaborationActive: true })
+        .execute();
+
     const data = req.body;
     if (!postProjectValidator(data)) {
         sendInvalidDataError(postProjectValidator);
@@ -246,6 +274,7 @@ projectController.post({ path: '/', userType: UserType.CLASS }, async (req, res,
     newProject.soundUrl = data.soundUrl || null;
     newProject.soundVolume = data.soundVolume || null;
     newProject.musicBeginTime = data.musicBeginTime || 0;
+    newProject.videoJobId = data.videoJobId || null;
     const languageCode = getQueryString(req.query.languageCode) || req.cookies?.['app-language'] || 'fr';
     newProject.languageCode = languageCode;
     const newQuestions: Question[] = [];
@@ -280,6 +309,8 @@ type PutProjectData = {
     soundUrl?: string | null;
     soundVolume?: number | null;
     musicBeginTime?: number;
+    isCollaborationActive?: boolean;
+    joinCode?: number;
 };
 const PUT_PROJECT_SCHEMA: JSONSchemaType<PutProjectData> = {
     type: 'object',
@@ -303,9 +334,20 @@ const PUT_PROJECT_SCHEMA: JSONSchemaType<PutProjectData> = {
             type: 'number',
             nullable: true,
         },
+        isCollaborationActive: {
+            type: 'boolean',
+            nullable: true,
+        },
+        joinCode: {
+            type: 'number',
+            nullable: true,
+        },
     },
     required: [],
     additionalProperties: false,
+    dependentSchemas: {
+        isCollaborationActive: { required: ['joinCode'] },
+    },
 };
 const putProjectValidator = ajv.compile(PUT_PROJECT_SCHEMA);
 projectController.put({ path: '/:id', userType: UserType.CLASS }, async (req, res, next) => {
@@ -332,6 +374,20 @@ projectController.put({ path: '/:id', userType: UserType.CLASS }, async (req, re
     project.soundUrl = data.soundUrl !== undefined ? data.soundUrl : project.soundUrl;
     project.soundVolume = data.soundVolume !== undefined ? data.soundVolume : project.soundVolume;
     project.musicBeginTime = data.musicBeginTime ?? project.musicBeginTime;
+    if (data.isCollaborationActive === false) {
+        project.isCollaborationActive = false;
+        project.joinCode = null;
+    } else if (data.isCollaborationActive === true) {
+        project.isCollaborationActive = true;
+        project.joinCode = data.joinCode || null;
+        // set collaboration mode to false on each user project
+        await getConnection()
+            .createQueryBuilder()
+            .update(Project)
+            .set({ isCollaborationActive: false, joinCode: null })
+            .where({ userId: user.id, isCollaborationActive: true })
+            .execute();
+    }
     await getRepository(Project).save(project);
     res.sendJSON(project);
 });