ais-one
diff --git a/Diff for: ‎.dockerignore
+1 b/Diff for: ‎.dockerignore
+1
diff --git a/Diff for: ‎.editorconfig
+10 b/Diff for: ‎.editorconfig
+10
diff --git a/Diff for: ‎Dockerfile
+2-2 b/Diff for: ‎Dockerfile
+2-2
diff --git a/Diff for: ‎README.md
+117-234 b/Diff for: ‎README.md
+117-234
diff --git a/Diff for: ‎RELEASE.md
+30-22 b/Diff for: ‎RELEASE.md
+30-22
diff --git a/Diff for: ‎common-lib/auth/index.js
+22-9 b/Diff for: ‎common-lib/auth/index.js
+22-9
diff --git a/Diff for: ‎common-lib/comms/nexmo.js
+26-17 b/Diff for: ‎common-lib/comms/nexmo.js
+26-17
@@ -3,3 +3,4 @@ npm-debug.log
 docker-compose*.yml
 **/node_modules
 **/dist
+
@@ -0,0 +1,10 @@
+root = true
+
+[*]
+charset = utf-8
+indent_style = space
+indent_size = 2
+end_of_line = lf
+insert_final_newline = true
+trim_trailing_whitespace = true
+
@@ -10,7 +10,7 @@ FROM node:12-alpine
 RUN apk update && apk add python make g++ && rm -rf /var/cache/apk/*
 
 # available in build time only
-ARG ARG_API_PORT=8080
+ARG ARG_API_PORT=3000
 ARG ARG_NODE_ENV=development
 ARG ARG_APP_NAME=example-app
 
@@ -32,7 +32,7 @@ ENV API_PORT $ARG_API_PORT
 ENV NODE_ENV $ARG_NODE_ENV
 ENV APP_NAME $ARG_APP_NAME
 
-# for cloud run
+# PORT for GCP Cloud Run
 ENV PORT $ARG_API_PORT
 
 # Copy dependency definitions
 
@@ -1,15 +1,14 @@
-### Version 0.3.2
+### Version 0.3.3
 - [chore] update packages & cleanup & work on improving documentation
-- make it CI/CD friendly [re-organized folders again...]
-- renamed common-app to common-lib and it contain reusable stuff
-- use NodeJS globals for CONFIG, LIB_PATH, APP_PATH, APP_NAME
-- long running process support such as tcp servers
-- cronjobs (better that cron call an API rather than run code)
-- deployment
-  - Small scale - all in one server - vm, pm2, SSH (express also serves the frontend)
-  - Medium to large
-    - Frontend deploy to GCP Storage / AWS S3 etc.
-    - Backend as docker container, Google Cloud Run
+- improve npm scripts to handler Windows and Unix environments
+- spa
+  - removed vue-apollo wrapper to apollo client, just use apollo client directly, apollo client v2 to v3 has broken vue-apollo v3
+- vite
+  - web components or no bundler required UI framework, also make code more framework agnostic
+  - generic table crud
+  - add echarts and leaflet example
+- backend
+  - generic table crud
 
 ### Ongoing
 - [Work-in-progress]
@@ -18,32 +17,41 @@
     - deploy SPA frontend to GCP Storage
   - backend
     - GKE, Kubernetes
-    - generic table crud frontend
+    - add kafka working example
   - frontend
-    - generic table crud backend
-    - cypress e2e testing
     - Preparing for VueJS 3
-    - PWA cookbook (many things to consider)
-    - web components or no bundler required UI framework, also make code more framework agnostic
+    - cypress e2e testing
 - [TODO]
+  - Make VueCrudX ES module build (only possible when UI framework e.g. Vuetify has ES module version)
   - backend
-    - add kafka working example
     - research websocket testing, improve coverage
     - research auto generated REST API and Testing (keep in view dredd.io)
     - JsonSchema
   - frontend
     - Handle/Test Signature & Webcam input
-    - Remove date-fns library and use native JS libraries for handling date, time
-    - explore use of fetch API instead of axios (abort fetch, etc)
-    - ant design version (kiv until web components / more UI framework agnostic code is implemened)
+    - Fetch API abort / retry
+    - PWA cookbook (many things to consider)
   - others
-    - Make ES module build (only possible when UI framework e.g. Vuetify has ES module version)
-    - Should we change Vuex action setLayout to setPublic and setSecure?
     - graphql security & performance review
+    - use monorepo when npm 7 is released ?
+    - improve structure further
 - [Findings]
   - Logging (Use APM instead?) - use console.log & morgan
   - use native html5 validation rather than Vuelidate / Vee-validate (major version changes is painful)
 
+### Version 0.3.2
+- [chore] update packages & cleanup & work on improving documentation
+- make it CI/CD friendly [re-organized folders again...]
+- renamed common-app to common-lib and it contain reusable stuff
+- use NodeJS globals for CONFIG, LIB_PATH, APP_PATH, APP_NAME
+- long running process support such as tcp servers
+- cronjobs (better that cron call an API rather than run code)
+- deployment
+  - Small scale - all in one server - vm, pm2, SSH (express also serves the frontend)
+  - Medium to large
+    - Frontend deploy to GCP Storage / AWS S3 etc.
+    - Backend as docker container, Google Cloud Run
+
 ### Version 0.3.1
 - update packages & cleanup
 - work on improving documentation
 
@@ -4,7 +4,7 @@ const jwt = require('jsonwebtoken')
 // const uuid = require('uuid/v4')
 // const qrcode = require('qrcode')
 const { USE_OTP, OTP_EXPIRY, HTTPONLY_TOKEN, AUTH_USER_STORE, AUTH_USER_STORE_NAME } = global.CONFIG
-const { AUTH_USER_FIELD_LOGIN, AUTH_USER_FIELD_PASSWORD, AUTH_USER_FIELD_GAKEY, AUTH_USER_FIELD_ID_FOR_JWT, AUTH_USER_FIELD_GROUPS_FOR_JWT } = global.CONFIG
+const { AUTH_USER_FIELD_LOGIN, AUTH_USER_FIELD_PASSWORD, AUTH_USER_FIELD_GAKEY, AUTH_USER_FIELD_ID_FOR_JWT, AUTH_USER_FIELDS_JWT_PAYLOAD = ''} = global.CONFIG
 const { JWT_ALG, JWT_SECRET, JWT_EXPIRY, JWT_REFRESH_EXPIRY, JWT_REFRESH_STORE ='keyv', jwtCerts } = global.CONFIG
 
 const mongo = require('../services/db/mongodb')
@@ -82,13 +82,13 @@ const authUser = async (req, res, next) => {
           if (req.baseUrl + req.path === '/api/auth/refresh') {
             try {
               // check refresh token & user - always stateful
-              const { id, groups, exp } = jwt.decode(token)
+              const { id, exp, iat, verified, ...payload } = jwt.decode(token)
               let refreshToken = await getToken(id)
               if (refreshToken) {
                 // console.log('ggg', req.baseUrl, req.path, parseInt(Date.now() / 1000) - exp, JWT_REFRESH_EXPIRY, e.toString(), parseInt(Date.now() / 1000) < exp + JWT_REFRESH_EXPIRY, token)
                 if (parseInt(Date.now() / 1000) < exp + JWT_REFRESH_EXPIRY) { // not too expired... exp is in seconds, iat is not used
                   if (refreshToken === req.body.refresh_token) { // ok... generate new access token & refresh token?
-                    const tokens = await createToken({ id, verified: true, groups }, { expiresIn: JWT_EXPIRY }) // 5 minute expire for login
+                    const tokens = await createToken({ id, verified: true, ...payload }, { expiresIn: JWT_EXPIRY }) // 5 minute expire for login
                     if (HTTPONLY_TOKEN) res.setHeader('Set-Cookie', [`token=${tokens.token}; HttpOnly; Path=/;`]); // may need to restart browser, TBD set Max-Age,  ALTERNATE use res.cookie, Signed?, Secure?, SameSite=true?
                     return res.status(200).json(tokens)
                   }
@@ -133,11 +133,22 @@ const refresh = async (req, res) => {
   return res.status(401).json({ message: 'Error token revoked' })
 }
 
+const addPayloadFromUserData = (user) => { // local method
+  const keys = AUTH_USER_FIELDS_JWT_PAYLOAD.split(',')
+  const payloadItems = {}
+  if (keys && keys.length) {
+    for (const key of keys) {
+      if (key && user[key] !== undefined) payloadItems[key] = user[key]
+    }
+  }
+  return payloadItems
+}
+
 const login = async (req, res) => {
   try {
     // console.log(AUTH_USER_FIELD_LOGIN, req.body)
     const user = await findUser({
-      [AUTH_USER_FIELD_LOGIN]: req.body[AUTH_USER_FIELD_LOGIN] // email
+      [AUTH_USER_FIELD_LOGIN]: req.body[AUTH_USER_FIELD_LOGIN]
     })
     const password = req.body[AUTH_USER_FIELD_PASSWORD]
 
@@ -146,7 +157,8 @@ const login = async (req, res) => {
     if (user.revoked) return res.status(401).json({ message: 'Authorization Revoked' })
     let verified = true
     const id = user[AUTH_USER_FIELD_ID_FOR_JWT] || ''
-    const groups = user[AUTH_USER_FIELD_GROUPS_FOR_JWT] || ''
+    const additionalPayload = addPayloadFromUserData(user)
+
     if (!id) return res.status(401).json({ message: 'Authorization Format Error' })
     if (USE_OTP) {
       verified = false
@@ -158,7 +170,7 @@ const login = async (req, res) => {
       //   // set user SMS & send it
       // }
     }
-    const tokens = await createToken({ id, verified, groups }, { expiresIn: USE_OTP ? OTP_EXPIRY : JWT_EXPIRY }) // 5 minute expire for login
+    const tokens = await createToken({ id, verified, ...additionalPayload }, { expiresIn: USE_OTP ? OTP_EXPIRY : JWT_EXPIRY }) // 5 minute expire for login
     if (HTTPONLY_TOKEN) res.setHeader('Set-Cookie', [`token=${tokens.token}; HttpOnly; Path=/;`]); // may need to restart browser, TBD set Max-Age,  ALTERNATE use res.cookie, Signed?, Secure?, SameSite=true?
     return res.status(200).json(tokens)
   } catch (e) {
@@ -169,15 +181,16 @@ const login = async (req, res) => {
 
 const otp = async (req, res) => { // need to be authentication, body { pin: '123456' }
   try {
-    const { id, groups } = req.decoded
+    const { id } = req.decoded
     const user = await findUser({ id })
     if (user) {
       const { pin } = req.body
       const gaKey = user[AUTH_USER_FIELD_GAKEY]
       const isValid = USE_OTP !== 'TEST' ? otplib.authenticator.check(pin, gaKey) : String(pin) === '111111'
       if (isValid) {
         await revokeToken(id)
-        const tokens = await createToken({ id, verified: true, groups }, {expiresIn: JWT_EXPIRY})
+        const additionalPayload = addPayloadFromUserData(user)
+        const tokens = await createToken({ id, verified: true, ...additionalPayload }, {expiresIn: JWT_EXPIRY})
         if (HTTPONLY_TOKEN) res.setHeader('Set-Cookie', [`token=${tokens.token}; HttpOnly; Path=/;`]); // may need to restart browser, TBD set Max-Age,  ALTERNATE use res.cookie, Signed?, Secure?, SameSite=true?
         return res.status(200).json(tokens)
       } else {
@@ -248,4 +261,4 @@ console.log('Encrypted: ' + encText)
 
 const decText = decryptText(algorithm, key, iv, encText, 'base64')
 console.log('Decrypted: ' + decText);
-*/
+*/
@@ -1,33 +1,42 @@
 const axios = require('axios')
 
-const { NEXMO_KEY, NEXMO_SECRET, NEXMO_FROM = '' } = global.CONFIG
+const { NEXMO_KEY, NEXMO_SECRET, NEXMO_FROM = 'SMSnotice' } = global.CONFIG
 
 const nexmo = {
-  send: async function (sms, message) {
+  // sms = 6511112222
+  // one at a time...
+  send: async function (sms, message, from = NEXMO_FROM) {
     try {
-      return await axios.get(`https://rest.nexmo.com/sms/json?api_key=${NEXMO_KEY}&api_secret=${NEXMO_SECRET}&to=${sms}&from=${NEXMO_FROM}&text=${message}`)
+      if (sms && message) {
+        return await axios.get(`https://rest.nexmo.com/sms/json?api_key=${NEXMO_KEY}&api_secret=${NEXMO_SECRET}&to=${sms}&from=${from}&text=${message}`)
+      }
     } catch (e) {
-      return null
+      console.log('send', e.toString())      
     }
+    return null
   },
-  ismsSend: async function (sms, message) {
+  // sms = 6511112222
+  // one at a time...
+  ismsSend: async function (sms, message, from = NEXMO_FROM) {
+    const url = 'https://sms.era.sg/isms_mt.php?'
     try {
-      const url = 'https://sms.era.sg/isms_mt.php?'
-      const options = { 
-        params: {
-          uid: NEXMO_KEY,
-          // pwd: 'xxxxxxxxyyyyyyyyzzzzzzzzxxxxxxxx',
-          pwd: md5( NEXMO_SECRET ),
-          dnr: sms,
-          snr: NEXMO_FROM,
-          msg: message,
-          split: 5
+      if (sms && message) {
+        const options = { 
+          params: {
+            uid: NEXMO_KEY,
+            pwd: require('crypto').createHash('md5').update( NEXMO_SECRET ).digest('hex'),
+            dnr: sms,
+            snr: from,
+            msg: message,
+            split: 5
+          }
         }
+        return await axios.get(url, options)
       }
-      return await axios.get(url, options)    
     } catch (e) {
-      return null
+      console.log('ismsSend', e.toString())      
     }
+    return null
   }
 }