Before trying to do babel-test upgrade

main
Jackson Morgan 1 year ago
parent ac1766a62a
commit b605fdc30a
  1. 1982
      package-lock.json
  2. 1
      packages/solid/data/.internal/accounts/cookies/6ee53737-216c-4984-b530-95b3ff8784ea$.json
  3. 1
      packages/solid/data/.internal/accounts/data/93dbc3a7-58f0-424f-be3d-96a7f9eedf33$.json
  4. 1
      packages/solid/data/.internal/accounts/index/owner/e7464d2a-9987-4564-b7e2-670a3c5c1af4$.json
  5. 1
      packages/solid/data/.internal/accounts/index/password/decb4d7a-0853-47b0-aeae-d1f98506052f$.json
  6. 1
      packages/solid/data/.internal/accounts/index/password/email/hello@example.com$.json
  7. 1
      packages/solid/data/.internal/accounts/index/pod/b9f98f5e-653d-480c-9e04-78a567580c24$.json
  8. 1
      packages/solid/data/.internal/accounts/index/pod/baseUrl/http%3A%2F%2Flocalhost%3A3001%2Fexample%2F$.json
  9. 1
      packages/solid/data/.internal/accounts/index/webIdLink/28985848-10cd-429f-85fa-d1cc78484c52$.json
  10. 1
      packages/solid/data/.internal/accounts/index/webIdLink/webId/http%3A%2F%2Flocalhost%3A3001%2Fexample%2Fprofile%2Fcard#me$.json
  11. 1
      packages/solid/data/.internal/idp/keys/cookie-secret$.json
  12. 1
      packages/solid/data/.internal/idp/keys/jwks$.json
  13. 1
      packages/solid/data/.internal/setup/current-base-url$.json
  14. 1
      packages/solid/data/.internal/setup/current-server-version$.json
  15. 1
      packages/solid/data/.internal/setup/v6-migration$.json
  16. 26
      packages/solid/data/example/.acl
  17. 1
      packages/solid/data/example/.meta
  18. 27
      packages/solid/data/example/README$.markdown
  19. 14
      packages/solid/data/example/README.acl
  20. 12
      packages/solid/data/example/profile/card$.ttl
  21. 19
      packages/solid/data/example/profile/card.acl
  22. 2
      packages/solid/package.json
  23. 10
      packages/solid/test/Integration.test.ts
  24. 134
      packages/solid/test/authFetch.helper.ts
  25. 6
      packages/solid/test/configs/solid-css-seed.json
  26. 102
      packages/solid/test/solidServer.helper.ts

1982
package-lock.json generated

File diff suppressed because it is too large Load Diff

@ -0,0 +1 @@
{"key":"accounts/cookies/6ee53737-216c-4984-b530-95b3ff8784ea","payload":{"expires":"2024-11-01T02:16:14.618Z","payload":"93dbc3a7-58f0-424f-be3d-96a7f9eedf33"}}

@ -0,0 +1 @@
{"key":"accounts/data/93dbc3a7-58f0-424f-be3d-96a7f9eedf33","payload":{"linkedLoginsCount":1,"id":"93dbc3a7-58f0-424f-be3d-96a7f9eedf33","**password**":{"decb4d7a-0853-47b0-aeae-d1f98506052f":{"accountId":"93dbc3a7-58f0-424f-be3d-96a7f9eedf33","email":"hello@example.com","password":"$2a$10$UTqS/jXMtrsa9FzMKEw1XeLUi29wqKs16qf8Opx0rF.KACOu6CE2K","verified":true,"id":"decb4d7a-0853-47b0-aeae-d1f98506052f"}},"**clientCredentials**":{},"**pod**":{"b9f98f5e-653d-480c-9e04-78a567580c24":{"baseUrl":"http://localhost:3001/example/","accountId":"93dbc3a7-58f0-424f-be3d-96a7f9eedf33","id":"b9f98f5e-653d-480c-9e04-78a567580c24","**owner**":{"e7464d2a-9987-4564-b7e2-670a3c5c1af4":{"podId":"b9f98f5e-653d-480c-9e04-78a567580c24","webId":"http://localhost:3001/example/profile/card#me","visible":false,"id":"e7464d2a-9987-4564-b7e2-670a3c5c1af4"}}}},"**webIdLink**":{"28985848-10cd-429f-85fa-d1cc78484c52":{"webId":"http://localhost:3001/example/profile/card#me","accountId":"93dbc3a7-58f0-424f-be3d-96a7f9eedf33","id":"28985848-10cd-429f-85fa-d1cc78484c52"}},"rememberLogin":false}}

@ -0,0 +1 @@
{"key":"accounts/index/owner/e7464d2a-9987-4564-b7e2-670a3c5c1af4","payload":["93dbc3a7-58f0-424f-be3d-96a7f9eedf33"]}

@ -0,0 +1 @@
{"key":"accounts/index/password/decb4d7a-0853-47b0-aeae-d1f98506052f","payload":["93dbc3a7-58f0-424f-be3d-96a7f9eedf33"]}

@ -0,0 +1 @@
{"key":"accounts/index/password/email/hello%40example.com","payload":["93dbc3a7-58f0-424f-be3d-96a7f9eedf33"]}

@ -0,0 +1 @@
{"key":"accounts/index/pod/b9f98f5e-653d-480c-9e04-78a567580c24","payload":["93dbc3a7-58f0-424f-be3d-96a7f9eedf33"]}

@ -0,0 +1 @@
{"key":"accounts/index/pod/baseUrl/http%3A%2F%2Flocalhost%3A3001%2Fexample%2F","payload":["93dbc3a7-58f0-424f-be3d-96a7f9eedf33"]}

@ -0,0 +1 @@
{"key":"accounts/index/webIdLink/28985848-10cd-429f-85fa-d1cc78484c52","payload":["93dbc3a7-58f0-424f-be3d-96a7f9eedf33"]}

@ -0,0 +1 @@
{"key":"accounts/index/webIdLink/webId/http%3A%2F%2Flocalhost%3A3001%2Fexample%2Fprofile%2Fcard%23me","payload":["93dbc3a7-58f0-424f-be3d-96a7f9eedf33"]}

@ -0,0 +1 @@
{"key":"idp/keys/cookie-secret","payload":["aa579c6db82269c7b53b347a94c95ddef902adca35b9094f837748b196b00c94d12c062612cb116a81345c77a7275c02ab112d6c4eb82288d5857570498e67fa"]}

@ -0,0 +1 @@
{"key":"idp/keys/jwks","payload":{"keys":[{"kty":"EC","x":"ZFsT8AmP1xjP28ty6KZx_gWfA9sPycaO9magjOcOVVg","y":"P3hMr5z0q6c4opLXkmKAMyvWRxHIlBLMQ3OFDrl1B1c","crv":"P-256","d":"wF0eIwetdxmZ8fTj5vLAjda13eKzFuOlz72aldsmV7Y","alg":"ES256"}]}}

@ -0,0 +1 @@
{"key":"setup/current-base-url","payload":"http://localhost:3001/"}

@ -0,0 +1 @@
{"key":"setup/current-server-version","payload":"7.1.3"}

@ -0,0 +1 @@
{"key":"setup/v6-migration","payload":true}

@ -0,0 +1,26 @@
# Root ACL resource for the agent account
@prefix acl: <http://www.w3.org/ns/auth/acl#>.
@prefix foaf: <http://xmlns.com/foaf/0.1/>.
# The homepage is readable by the public
<#public>
a acl:Authorization;
acl:agentClass foaf:Agent;
acl:accessTo <./>;
acl:mode acl:Read.
# The owner has full access to every resource in their pod.
# Other agents have no access rights,
# unless specifically authorized in other .acl resources.
<#owner>
a acl:Authorization;
acl:agent <http://localhost:3001/example/profile/card#me>;
# Optional owner email, to be used for account recovery:
# Set the access to the root storage folder itself
acl:accessTo <./>;
# All resources will inherit this authorization, by default
acl:default <./>;
# The owner has all of the access modes allowed
acl:mode
acl:Read, acl:Write, acl:Control.

@ -0,0 +1 @@
<http://localhost:3001/example/> a <http://www.w3.org/ns/pim/space#Storage>.

@ -0,0 +1,27 @@
# Welcome to your pod
## A place to store your data
Your pod is a **secure storage space** for your documents and data.
<br>
You can choose to share those with other people and apps.
As the owner of this pod,
identified by <a href="http://localhost:3001/example/profile/card#me">http://localhost:3001/example/profile/card#me</a>,
you have access to all of your documents.
## Working with your pod
The easiest way to interact with pods
is through Solid apps.
<br>
For example,
you can open your pod in [Databrowser](https://solidos.github.io/mashlib/dist/browse.html?uri=http://localhost:3001/example/).
## Accessing your account
To keep track of your pods, webIDs and any other resources,
you can [log in](http://localhost:3001/.account/) to your account.
There you can, for example, update the owners of this pod.
## Learn more
The [Solid website](https://solidproject.org/)
and the people on its [forum](https://forum.solidproject.org/)
will be glad to help you on your journey.

@ -0,0 +1,14 @@
@prefix acl: <http://www.w3.org/ns/auth/acl#>.
@prefix foaf: <http://xmlns.com/foaf/0.1/>.
<#public>
a acl:Authorization;
acl:accessTo <./README>;
acl:agentClass foaf:Agent;
acl:mode acl:Read.
<#owner>
a acl:Authorization;
acl:accessTo <./README>;
acl:agent <http://localhost:3001/example/profile/card#me>;
acl:mode acl:Read, acl:Write, acl:Control.

@ -0,0 +1,12 @@
@prefix foaf: <http://xmlns.com/foaf/0.1/>.
@prefix solid: <http://www.w3.org/ns/solid/terms#>.
<>
a foaf:PersonalProfileDocument;
foaf:maker <http://localhost:3001/example/profile/card#me>;
foaf:primaryTopic <http://localhost:3001/example/profile/card#me>.
<http://localhost:3001/example/profile/card#me>
solid:oidcIssuer <http://localhost:3001/>;
a foaf:Person.

@ -0,0 +1,19 @@
# ACL resource for the WebID profile document
@prefix acl: <http://www.w3.org/ns/auth/acl#>.
@prefix foaf: <http://xmlns.com/foaf/0.1/>.
# The WebID profile is readable by the public.
# This is required for discovery and verification,
# e.g. when checking identity providers.
<#public>
a acl:Authorization;
acl:agentClass foaf:Agent;
acl:accessTo <./card>;
acl:mode acl:Read.
# The owner has full access to the profile
<#owner>
a acl:Authorization;
acl:agent <http://localhost:3001/example/profile/card#me>;
acl:accessTo <./card>;
acl:mode acl:Read, acl:Write, acl:Control.

@ -29,7 +29,7 @@
"@ldo/cli": "^0.0.1-alpha.26",
"@rdfjs/data-model": "^1.2.0",
"@rdfjs/types": "^1.0.1",
"@solid/community-server": "^6.0.2",
"@solid/community-server": "^7.1.3",
"@types/jest": "^27.0.3",
"dotenv": "^16.3.1",
"jest-rdf": "^1.8.0",

@ -8,12 +8,7 @@ import type {
UpdateResultError,
} from "../src";
import { changeData, commitData, createSolidLdoDataset } from "../src";
import {
ROOT_CONTAINER,
WEB_ID,
createApp,
getAuthenticatedFetch,
} from "./solidServer.helper";
import { ROOT_CONTAINER, WEB_ID, createApp } from "./solidServer.helper";
import {
namedNode,
quad as createQuad,
@ -46,6 +41,7 @@ import type { NoncompliantPodError } from "../src/requester/results/error/Noncom
import type { GetWacRuleSuccess } from "../src/resource/wac/results/GetWacRuleSuccess";
import type { WacRule } from "../src/resource/wac/WacRule";
import type { GetStorageContainerFromWebIdSuccess } from "../src/requester/results/success/CheckRootContainerSuccess";
import { generateAuthFetch } from "./authFetch.helper";
const TEST_CONTAINER_SLUG = "test_ldo/";
const TEST_CONTAINER_URI =
@ -162,7 +158,7 @@ describe("Integration", () => {
app = await createApp();
await app.start();
authFetch = await getAuthenticatedFetch();
authFetch = await generateAuthFetch();
});
afterAll(async () => {

@ -0,0 +1,134 @@
import type { KeyPair } from "@inrupt/solid-client-authn-core";
import {
buildAuthenticatedFetch,
createDpopHeader,
generateDpopKeyPair,
} from "@inrupt/solid-client-authn-core";
import fetch from "cross-fetch";
const config = {
podName: process.env.USER_NAME || "example",
email: process.env.EMAIL || "hello@example.com",
password: process.env.PASSWORD || "abc123",
};
async function getAuthorization(): Promise<string> {
// First we request the account API controls to find out where we can log in
const indexResponse = await fetch("http://localhost:3001/.account/");
const { controls } = await indexResponse.json();
console.log("First controls", controls);
// And then we log in to the account API
const response = await fetch(controls.password.login, {
method: "POST",
headers: { "content-type": "application/json" },
body: JSON.stringify({
email: config.email,
password: config.password,
}),
});
// This authorization value will be used to authenticate in the next step
const result = await response.json();
console.log(result);
return result.authorization;
}
async function getSecret(
authorization: string,
): Promise<{ id: string; secret: string; resource: string }> {
// Now that we are logged in, we need to request the updated controls from the server.
// These will now have more values than in the previous example.
const indexResponse = await fetch("http://localhost:3001/.account/", {
headers: { authorization: `CSS-Account-Token ${authorization}` },
});
const { controls } = await indexResponse.json();
console.log("controls", controls);
console.log("authorization", authorization);
// Here we request the server to generate a token on our account
const response = await fetch(controls.account.clientCredentials, {
method: "POST",
headers: {
authorization: `CSS-Account-Token ${authorization}`,
"content-type": "application/json",
},
// The name field will be used when generating the ID of your token.
// The WebID field determines which WebID you will identify as when using the token.
// Only WebIDs linked to your account can be used.
body: JSON.stringify({
name: "my-token",
webId: `http://localhost:3001/${config.podName}/profile/card#me`,
}),
});
// These are the identifier and secret of your token.
// Store the secret somewhere safe as there is no way to request it again from the server!
// The `resource` value can be used to delete the token at a later point in time.
const response2 = await response.json();
console.log("response2", response2);
return response2;
}
async function getAccessToken(
id: string,
secret: string,
): Promise<{ accessToken: string; dpopKey: KeyPair }> {
try {
// A key pair is needed for encryption.
// This function from `solid-client-authn` generates such a pair for you.
console.log("a");
const dpopKey = await generateDpopKeyPair();
// These are the ID and secret generated in the previous step.
// Both the ID and the secret need to be form-encoded.
const authString = `${encodeURIComponent(id)}:${encodeURIComponent(
secret,
)}`;
// This URL can be found by looking at the "token_endpoint" field at
// http://localhost:3001/.well-known/openid-configuration
// if your server is hosted at http://localhost:3000/.
const tokenUrl = "http://localhost:3001/.oidc/token";
console.log("b");
const response = await fetch(tokenUrl, {
method: "POST",
headers: {
// The header needs to be in base64 encoding.
authorization: `Basic ${Buffer.from(authString).toString("base64")}`,
"content-type": "application/x-www-form-urlencoded",
dpop: await createDpopHeader(tokenUrl, "POST", dpopKey),
},
body: "grant_type=client_credentials&scope=webid",
});
console.log("c");
// console.log(process.env.JEST_WORKER_ID ?? process.env.NODE_ENV);
// console.log(process.env.JEST_WORKER_ID);
// console.log(process.env.NODE_ENV);
console.log("d");
// This is the Access token that will be used to do an authenticated request to the server.
// The JSON also contains an "expires_in" field in seconds,
// which you can use to know when you need request a new Access token.
const response2 = await response.text();
console.log("response2 getAccessToken", response2);
throw new Error();
// return { accessToken: response2.accessToken, dpopKey };
} catch (err) {
console.error(err);
throw err;
}
}
export async function generateAuthFetch() {
console.log(1);
const authorization = await getAuthorization();
console.log(2);
const { id, secret } = await getSecret(authorization);
console.log(3);
const { accessToken, dpopKey } = await getAccessToken(id, secret);
console.log(4);
return await buildAuthenticatedFetch(accessToken, { dpopKey });
}

@ -1,7 +1,9 @@
[
{
"podName": "example",
"email": "hello@example.com",
"password": "abc123"
"password": "abc123",
"pods": [
{ "name": "example" }
]
}
]

@ -1,24 +1,9 @@
// Taken from https://github.com/comunica/comunica/blob/b237be4265c353a62a876187d9e21e3bc05123a3/engines/query-sparql/test/QuerySparql-solid-test.ts#L9
import * as path from "path";
import type { KeyPair } from "@inrupt/solid-client-authn-core";
import {
buildAuthenticatedFetch,
createDpopHeader,
generateDpopKeyPair,
} from "@inrupt/solid-client-authn-core";
import type { App } from "@solid/community-server";
import { AppRunner, resolveModulePath } from "@solid/community-server";
import "jest-rdf";
import fetch from "cross-fetch";
const config = [
{
podName: process.env.USER_NAME || "example",
email: process.env.EMAIL || "hello@example.com",
password: process.env.PASSWORD || "abc123",
},
];
export const SERVER_DOMAIN = process.env.SERVER || "http://localhost:3001/";
export const ROOT_ROUTE = process.env.ROOT_CONTAINER || "";
@ -37,88 +22,19 @@ export async function createApp(): Promise<App> {
} as App;
}
const appRunner = new AppRunner();
return appRunner.create(
{
return appRunner.create({
loaderProperties: {
mainModulePath: resolveModulePath(""),
typeChecking: false,
},
resolveModulePath("config/default.json"),
{},
{
config: resolveModulePath("config/default.json"),
variableBindings: {},
shorthand: {
port: 3_001,
loggingLevel: "off",
seededPodConfigJson: path.join(
__dirname,
"configs",
"solid-css-seed.json",
),
},
);
}
export interface ISecretData {
id: string;
secret: string;
}
// From https://communitysolidserver.github.io/CommunitySolidServer/5.x/usage/client-credentials/
export async function getSecret(): Promise<ISecretData> {
const result = await fetch(`${SERVER_DOMAIN}idp/credentials/`, {
method: "POST",
headers: { "content-type": "application/json" },
body: JSON.stringify({
email: config[0].email,
password: config[0].password,
name: config[0].podName,
}),
});
const json = await result.json();
return json;
}
export interface ITokenData {
accessToken: string;
dpopKey: KeyPair;
}
// From https://communitysolidserver.github.io/CommunitySolidServer/5.x/usage/client-credentials/
export async function refreshToken({
id,
secret,
}: ISecretData): Promise<ITokenData> {
const dpopKey = await generateDpopKeyPair();
const authString = `${encodeURIComponent(id)}:${encodeURIComponent(secret)}`;
const tokenUrl = `${SERVER_DOMAIN}.oidc/token`;
const accessToken = await fetch(tokenUrl, {
method: "POST",
headers: {
// The header needs to be in base64 encoding.
authorization: `Basic ${Buffer.from(authString).toString("base64")}`,
"content-type": "application/x-www-form-urlencoded",
dpop: await createDpopHeader(tokenUrl, "POST", dpopKey),
loggingLevel: "info",
rootFilePath: path.join(__dirname, "../data"),
seedConfig: path.join(__dirname, "configs", "solid-css-seed.json"),
},
body: "grant_type=client_credentials&scope=webid",
})
.then((res) => res.json())
.then((res) => res.access_token);
return { accessToken, dpopKey };
}
export async function getAuthenticatedFetch() {
// Generate secret
const secret = await getSecret();
if (!secret) throw new Error("No Secret");
// Get token
const token = await refreshToken(secret);
if (!token) throw new Error("No Token");
// Build authenticated fetch
const authFetch = await buildAuthenticatedFetch(token.accessToken, {
dpopKey: token.dpopKey,
});
return authFetch;
}

Loading…
Cancel
Save