wiki/server/graph/resolvers/site.js

const graphHelper = require('../../helpers/graph')
const _ = require('lodash')

/* global WIKI */

module.exports = {
  Query: {
    async site() { return {} }
  },
  Mutation: {
    async site() { return {} }
  },
  SiteQuery: {
    async config(obj, args, context, info) {
      return {
        host: WIKI.config.host,
        title: WIKI.config.title,
        company: WIKI.config.company,
        contentLicense: WIKI.config.contentLicense,
        logoUrl: WIKI.config.logoUrl,
        ...WIKI.config.seo,
        ...WIKI.config.features,
        ...WIKI.config.security,
        authAutoLogin: WIKI.config.auth.autoLogin,
        authEnforce2FA: WIKI.config.auth.enforce2FA,
        authHideLocal: WIKI.config.auth.hideLocal,
        authLoginBgUrl: WIKI.config.auth.loginBgUrl,
        authJwtAudience: WIKI.config.auth.audience,
        authJwtExpiration: WIKI.config.auth.tokenExpiration,
        authJwtRenewablePeriod: WIKI.config.auth.tokenRenewal,
        uploadMaxFileSize: WIKI.config.uploads.maxFileSize,
        uploadMaxFiles: WIKI.config.uploads.maxFiles,
        uploadScanSVG: WIKI.config.uploads.scanSVG,
        uploadForceDownload: WIKI.config.uploads.forceDownload
      }
    }
  },
  SiteMutation: {
    async updateConfig(obj, args, context) {
      try {
        if (args.hasOwnProperty('host')) {
          let siteHost = _.trim(args.host)
          if (siteHost.endsWith('/')) {
            siteHost = siteHost.slice(0, -1)
          }
          WIKI.config.host = siteHost
        }

        if (args.hasOwnProperty('title')) {
          WIKI.config.title = _.trim(args.title)
        }

        if (args.hasOwnProperty('company')) {
          WIKI.config.company = _.trim(args.company)
        }

        if (args.hasOwnProperty('contentLicense')) {
          WIKI.config.contentLicense = args.contentLicense
        }

        if (args.hasOwnProperty('logoUrl')) {
          WIKI.config.logoUrl = _.trim(args.logoUrl)
        }

        WIKI.config.seo = {
          description: _.get(args, 'description', WIKI.config.seo.description),
          robots: _.get(args, 'robots', WIKI.config.seo.robots),
          analyticsService: _.get(args, 'analyticsService', WIKI.config.seo.analyticsService),
          analyticsId: _.get(args, 'analyticsId', WIKI.config.seo.analyticsId)
        }

        WIKI.config.auth = {
          autoLogin: _.get(args, 'authAutoLogin', WIKI.config.auth.autoLogin),
          enforce2FA: _.get(args, 'authEnforce2FA', WIKI.config.auth.enforce2FA),
          hideLocal: _.get(args, 'authHideLocal', WIKI.config.auth.hideLocal),
          loginBgUrl: _.get(args, 'authLoginBgUrl', WIKI.config.auth.loginBgUrl),
          audience: _.get(args, 'authJwtAudience', WIKI.config.auth.audience),
          tokenExpiration: _.get(args, 'authJwtExpiration', WIKI.config.auth.tokenExpiration),
          tokenRenewal: _.get(args, 'authJwtRenewablePeriod', WIKI.config.auth.tokenRenewal)
        }

        WIKI.config.features = {
          featurePageRatings: _.get(args, 'featurePageRatings', WIKI.config.features.featurePageRatings),
          featurePageComments: _.get(args, 'featurePageComments', WIKI.config.features.featurePageComments),
          featurePersonalWikis: _.get(args, 'featurePersonalWikis', WIKI.config.features.featurePersonalWikis)
        }

        WIKI.config.security = {
          securityOpenRedirect: _.get(args, 'securityOpenRedirect', WIKI.config.security.securityOpenRedirect),
          securityIframe: _.get(args, 'securityIframe', WIKI.config.security.securityIframe),
          securityReferrerPolicy: _.get(args, 'securityReferrerPolicy', WIKI.config.security.securityReferrerPolicy),
          securityTrustProxy: _.get(args, 'securityTrustProxy', WIKI.config.security.securityTrustProxy),
          securitySRI: _.get(args, 'securitySRI', WIKI.config.security.securitySRI),
          securityHSTS: _.get(args, 'securityHSTS', WIKI.config.security.securityHSTS),
          securityHSTSDuration: _.get(args, 'securityHSTSDuration', WIKI.config.security.securityHSTSDuration),
          securityCSP: _.get(args, 'securityCSP', WIKI.config.security.securityCSP),
          securityCSPDirectives: _.get(args, 'securityCSPDirectives', WIKI.config.security.securityCSPDirectives)
        }

        WIKI.config.uploads = {
          maxFileSize: _.get(args, 'uploadMaxFileSize', WIKI.config.uploads.maxFileSize),
          maxFiles: _.get(args, 'uploadMaxFiles', WIKI.config.uploads.maxFiles),
          scanSVG: _.get(args, 'uploadScanSVG', WIKI.config.uploads.scanSVG),
          forceDownload: _.get(args, 'uploadForceDownload', WIKI.config.uploads.forceDownload)
        }

        await WIKI.configSvc.saveToDb(['host', 'title', 'company', 'contentLicense', 'seo', 'logoUrl', 'auth', 'features', 'security', 'uploads'])

        if (WIKI.config.security.securityTrustProxy) {
          WIKI.app.enable('trust proxy')
        } else {
          WIKI.app.disable('trust proxy')
        }

        return {
          responseResult: graphHelper.generateSuccess('Site configuration updated successfully')
        }
      } catch (err) {
        return graphHelper.generateError(err)
      }
    }
  }
}
feat: admin general + verify account 6 years ago			`const graphHelper = require('../../helpers/graph')`
fix: trim and auto-remove trailing slash for Site URL in Admin General 5 years ago			`const _ = require('lodash')`
feat: admin general + verify account 6 years ago
			`/* global WIKI */`

			`module.exports = {`
			`Query: {`
			`async site() { return {} }`
			`},`
			`Mutation: {`
			`async site() { return {} }`
			`},`
			`SiteQuery: {`
			`async config(obj, args, context, info) {`
			`return {`
			`host: WIKI.config.host,`
			`title: WIKI.config.title,`
			`company: WIKI.config.company,`
feat: content license notice option 5 years ago			`contentLicense: WIKI.config.contentLicense,`
feat: katex + admin SSL UI (wip) + dev warning 5 years ago			`logoUrl: WIKI.config.logoUrl,`
feat: admin general + verify account 6 years ago			`...WIKI.config.seo,`
feat: mandatory password change on login + UI fixes 5 years ago			`...WIKI.config.features,`
feat: uploads config + security admin page 5 years ago			`...WIKI.config.security,`
feat: new login experience (#2139) * feat: multiple auth instances * fix: auth setup + strategy initialization * feat: admin auth - add strategy * feat: redirect on login - group setting * feat: oauth2 generic - props definitions * feat: new login UI (wip) * feat: new login UI (wip) * feat: admin security login settings * feat: tabset editor indicators + print view improvements * fix: code styling 4 years ago			`authAutoLogin: WIKI.config.auth.autoLogin,`
feat: enforce 2fa admin setting + hide local on login screen 4 years ago			`authEnforce2FA: WIKI.config.auth.enforce2FA,`
feat: login bg + bypass + hide local option 4 years ago			`authHideLocal: WIKI.config.auth.hideLocal,`
feat: new login experience (#2139) * feat: multiple auth instances * fix: auth setup + strategy initialization * feat: admin auth - add strategy * feat: redirect on login - group setting * feat: oauth2 generic - props definitions * feat: new login UI (wip) * feat: new login UI (wip) * feat: admin security login settings * feat: tabset editor indicators + print view improvements * fix: code styling 4 years ago			`authLoginBgUrl: WIKI.config.auth.loginBgUrl,`
			`authJwtAudience: WIKI.config.auth.audience,`
			`authJwtExpiration: WIKI.config.auth.tokenExpiration,`
			`authJwtRenewablePeriod: WIKI.config.auth.tokenRenewal,`
feat: uploads config + security admin page 5 years ago			`uploadMaxFileSize: WIKI.config.uploads.maxFileSize,`
fix: sanitize SVG uploads 3 years ago			`uploadMaxFiles: WIKI.config.uploads.maxFiles,`
fix: force download of unsafe extensions 3 years ago			`uploadScanSVG: WIKI.config.uploads.scanSVG,`
			`uploadForceDownload: WIKI.config.uploads.forceDownload`
feat: admin general + verify account 6 years ago			`}`
			`}`
			`},`
			`SiteMutation: {`
			`async updateConfig(obj, args, context) {`
			`try {`
fix: admin - general settings not saving with empty value (#5165) 3 years ago			`if (args.hasOwnProperty('host')) {`
feat: uploads config + security admin page 5 years ago			`let siteHost = _.trim(args.host)`
			`if (siteHost.endsWith('/')) {`
fix: site config host slice 4 years ago			`siteHost = siteHost.slice(0, -1)`
feat: uploads config + security admin page 5 years ago			`}`
			`WIKI.config.host = siteHost`
			`}`

fix: admin - general settings not saving with empty value (#5165) 3 years ago			`if (args.hasOwnProperty('title')) {`
feat: uploads config + security admin page 5 years ago			`WIKI.config.title = _.trim(args.title)`
			`}`

fix: admin - general settings not saving with empty value (#5165) 3 years ago			`if (args.hasOwnProperty('company')) {`
feat: uploads config + security admin page 5 years ago			`WIKI.config.company = _.trim(args.company)`
			`}`

fix: admin - general settings not saving with empty value (#5165) 3 years ago			`if (args.hasOwnProperty('contentLicense')) {`
feat: uploads config + security admin page 5 years ago			`WIKI.config.contentLicense = args.contentLicense`
			`}`

fix: admin - general settings not saving with empty value (#5165) 3 years ago			`if (args.hasOwnProperty('logoUrl')) {`
feat: uploads config + security admin page 5 years ago			`WIKI.config.logoUrl = _.trim(args.logoUrl)`
			`}`

feat: admin general + verify account 6 years ago			`WIKI.config.seo = {`
feat: uploads config + security admin page 5 years ago			`description: _.get(args, 'description', WIKI.config.seo.description),`
			`robots: _.get(args, 'robots', WIKI.config.seo.robots),`
			`analyticsService: _.get(args, 'analyticsService', WIKI.config.seo.analyticsService),`
			`analyticsId: _.get(args, 'analyticsId', WIKI.config.seo.analyticsId)`
feat: admin general + verify account 6 years ago			`}`
feat: uploads config + security admin page 5 years ago
feat: new login experience (#2139) * feat: multiple auth instances * fix: auth setup + strategy initialization * feat: admin auth - add strategy * feat: redirect on login - group setting * feat: oauth2 generic - props definitions * feat: new login UI (wip) * feat: new login UI (wip) * feat: admin security login settings * feat: tabset editor indicators + print view improvements * fix: code styling 4 years ago			`WIKI.config.auth = {`
			`autoLogin: _.get(args, 'authAutoLogin', WIKI.config.auth.autoLogin),`
feat: enforce 2fa admin setting + hide local on login screen 4 years ago			`enforce2FA: _.get(args, 'authEnforce2FA', WIKI.config.auth.enforce2FA),`
feat: login bg + bypass + hide local option 4 years ago			`hideLocal: _.get(args, 'authHideLocal', WIKI.config.auth.hideLocal),`
feat: new login experience (#2139) * feat: multiple auth instances * fix: auth setup + strategy initialization * feat: admin auth - add strategy * feat: redirect on login - group setting * feat: oauth2 generic - props definitions * feat: new login UI (wip) * feat: new login UI (wip) * feat: admin security login settings * feat: tabset editor indicators + print view improvements * fix: code styling 4 years ago			`loginBgUrl: _.get(args, 'authLoginBgUrl', WIKI.config.auth.loginBgUrl),`
			`audience: _.get(args, 'authJwtAudience', WIKI.config.auth.audience),`
			`tokenExpiration: _.get(args, 'authJwtExpiration', WIKI.config.auth.tokenExpiration),`
			`tokenRenewal: _.get(args, 'authJwtRenewablePeriod', WIKI.config.auth.tokenRenewal)`
			`}`

feat: admin general + verify account 6 years ago			`WIKI.config.features = {`
feat: uploads config + security admin page 5 years ago			`featurePageRatings: _.get(args, 'featurePageRatings', WIKI.config.features.featurePageRatings),`
			`featurePageComments: _.get(args, 'featurePageComments', WIKI.config.features.featurePageComments),`
			`featurePersonalWikis: _.get(args, 'featurePersonalWikis', WIKI.config.features.featurePersonalWikis)`
feat: admin general + verify account 6 years ago			`}`
feat: uploads config + security admin page 5 years ago
feat: mandatory password change on login + UI fixes 5 years ago			`WIKI.config.security = {`
fix: Open Redirect Vulnerability Mitigation - CWE 601 (#1963) * Open redirect vulnerabilty mitigation * Refacted Open Redirect to user configurable and corrected incorrect security variable names. Co-authored-by: danallendds <daniel.allen@friends.dds.mil> 5 years ago			`securityOpenRedirect: _.get(args, 'securityOpenRedirect', WIKI.config.security.securityOpenRedirect),`
feat: uploads config + security admin page 5 years ago			`securityIframe: _.get(args, 'securityIframe', WIKI.config.security.securityIframe),`
			`securityReferrerPolicy: _.get(args, 'securityReferrerPolicy', WIKI.config.security.securityReferrerPolicy),`
			`securityTrustProxy: _.get(args, 'securityTrustProxy', WIKI.config.security.securityTrustProxy),`
			`securitySRI: _.get(args, 'securitySRI', WIKI.config.security.securitySRI),`
			`securityHSTS: _.get(args, 'securityHSTS', WIKI.config.security.securityHSTS),`
			`securityHSTSDuration: _.get(args, 'securityHSTSDuration', WIKI.config.security.securityHSTSDuration),`
			`securityCSP: _.get(args, 'securityCSP', WIKI.config.security.securityCSP),`
			`securityCSPDirectives: _.get(args, 'securityCSPDirectives', WIKI.config.security.securityCSPDirectives)`
			`}`

			`WIKI.config.uploads = {`
			`maxFileSize: _.get(args, 'uploadMaxFileSize', WIKI.config.uploads.maxFileSize),`
fix: sanitize SVG uploads 3 years ago			`maxFiles: _.get(args, 'uploadMaxFiles', WIKI.config.uploads.maxFiles),`
fix: force download of unsafe extensions 3 years ago			`scanSVG: _.get(args, 'uploadScanSVG', WIKI.config.uploads.scanSVG),`
			`forceDownload: _.get(args, 'uploadForceDownload', WIKI.config.uploads.forceDownload)`
feat: mandatory password change on login + UI fixes 5 years ago			`}`
feat: uploads config + security admin page 5 years ago
feat: new login experience (#2139) * feat: multiple auth instances * fix: auth setup + strategy initialization * feat: admin auth - add strategy * feat: redirect on login - group setting * feat: oauth2 generic - props definitions * feat: new login UI (wip) * feat: new login UI (wip) * feat: admin security login settings * feat: tabset editor indicators + print view improvements * fix: code styling 4 years ago			`await WIKI.configSvc.saveToDb(['host', 'title', 'company', 'contentLicense', 'seo', 'logoUrl', 'auth', 'features', 'security', 'uploads'])`
feat: admin general + verify account 6 years ago
feat: import content + x-forwarded toggle 5 years ago			`if (WIKI.config.security.securityTrustProxy) {`
			`WIKI.app.enable('trust proxy')`
			`} else {`
			`WIKI.app.disable('trust proxy')`
			`}`

feat: admin general + verify account 6 years ago			`return {`
			`responseResult: graphHelper.generateSuccess('Site configuration updated successfully')`
			`}`
			`} catch (err) {`
			`return graphHelper.generateError(err)`
			`}`
			`}`
			`}`
			`}`