jkunz
618d4d674f
- Implement unit tests for password handling in `auth_test.ts`, covering bcrypt and legacy password hashes. - Create a fake database for user management to facilitate testing of the `AdminHandler`. - Validate JWT-based identity verification against database records. - Introduce tests for credential encryption and registry management in `security_test.ts`. - Ensure registry passwords are securely stored and can be decrypted correctly, including legacy support. - Add utility functions for password hashing and verification in `auth.ts`.
94 lines
3.3 KiB
TypeScript
94 lines
3.3 KiB
TypeScript
import * as plugins from '../../plugins.ts';
|
|
import type { OpsServer } from '../classes.opsserver.ts';
|
|
import * as interfaces from '../../../ts_interfaces/index.ts';
|
|
import { requireAdminIdentity } from '../helpers/guards.ts';
|
|
|
|
export class BackupsHandler {
|
|
public typedrouter = new plugins.typedrequest.TypedRouter();
|
|
|
|
constructor(private opsServerRef: OpsServer) {
|
|
this.opsServerRef.typedrouter.addTypedRouter(this.typedrouter);
|
|
this.registerHandlers();
|
|
}
|
|
|
|
private registerHandlers(): void {
|
|
this.typedrouter.addTypedHandler(
|
|
new plugins.typedrequest.TypedHandler<interfaces.requests.IReq_GetBackups>(
|
|
'getBackups',
|
|
async (dataArg) => {
|
|
await requireAdminIdentity(this.opsServerRef.adminHandler, dataArg);
|
|
const backups = this.opsServerRef.oneboxRef.backupManager.listBackups();
|
|
return { backups };
|
|
},
|
|
),
|
|
);
|
|
|
|
this.typedrouter.addTypedHandler(
|
|
new plugins.typedrequest.TypedHandler<interfaces.requests.IReq_GetBackup>(
|
|
'getBackup',
|
|
async (dataArg) => {
|
|
await requireAdminIdentity(this.opsServerRef.adminHandler, dataArg);
|
|
const backup = this.opsServerRef.oneboxRef.database.getBackupById(dataArg.backupId);
|
|
if (!backup) {
|
|
throw new plugins.typedrequest.TypedResponseError('Backup not found');
|
|
}
|
|
return { backup };
|
|
},
|
|
),
|
|
);
|
|
|
|
this.typedrouter.addTypedHandler(
|
|
new plugins.typedrequest.TypedHandler<interfaces.requests.IReq_DeleteBackup>(
|
|
'deleteBackup',
|
|
async (dataArg) => {
|
|
await requireAdminIdentity(this.opsServerRef.adminHandler, dataArg);
|
|
await this.opsServerRef.oneboxRef.backupManager.deleteBackup(dataArg.backupId);
|
|
return { ok: true };
|
|
},
|
|
),
|
|
);
|
|
|
|
this.typedrouter.addTypedHandler(
|
|
new plugins.typedrequest.TypedHandler<interfaces.requests.IReq_RestoreBackup>(
|
|
'restoreBackup',
|
|
async (dataArg) => {
|
|
await requireAdminIdentity(this.opsServerRef.adminHandler, dataArg);
|
|
const rawResult = await this.opsServerRef.oneboxRef.backupManager.restoreBackup(
|
|
dataArg.backupId,
|
|
dataArg.options,
|
|
);
|
|
return {
|
|
result: {
|
|
service: {
|
|
name: rawResult.service.name,
|
|
status: rawResult.service.status,
|
|
},
|
|
platformResourcesRestored: rawResult.platformResourcesRestored,
|
|
warnings: rawResult.warnings,
|
|
},
|
|
};
|
|
},
|
|
),
|
|
);
|
|
|
|
this.typedrouter.addTypedHandler(
|
|
new plugins.typedrequest.TypedHandler<interfaces.requests.IReq_DownloadBackup>(
|
|
'downloadBackup',
|
|
async (dataArg) => {
|
|
await requireAdminIdentity(this.opsServerRef.adminHandler, dataArg);
|
|
const backup = this.opsServerRef.oneboxRef.database.getBackupById(dataArg.backupId);
|
|
if (!backup) {
|
|
throw new plugins.typedrequest.TypedResponseError('Backup not found');
|
|
}
|
|
// Return a download URL that the client can fetch directly
|
|
const filename = backup.filename || `${backup.serviceName}-${backup.createdAt}.tar.enc`;
|
|
return {
|
|
downloadUrl: `/api/backups/${dataArg.backupId}/download`,
|
|
filename,
|
|
};
|
|
},
|
|
),
|
|
);
|
|
}
|
|
}
|