Save hashed UIN to a generic user info table

Author: devksingh4

src/api/functions/uin.ts

@@ -1,4 +1,8 @@
-import { DynamoDBClient, PutItemCommand } from "@aws-sdk/client-dynamodb";
+import {
+  DynamoDBClient,
+  PutItemCommand,
+  UpdateItemCommand,
+} from "@aws-sdk/client-dynamodb";
 import { marshall } from "@aws-sdk/util-dynamodb";
 import { argon2id, hash } from "argon2";
 import { genericConfig } from "common/config.js";
@@ -160,13 +164,22 @@ export async function saveHashedUserUin({
 }: SaveHashedUserUin) {
   const uinHash = await getHashedUserUin({ uiucAccessToken, pepper });
   await dynamoClient.send(
-    new PutItemCommand({
-      TableName: genericConfig.UinHashTable,
-      Item: marshall({
-        uinHash,
-        netId,
-        updatedAt: new Date().toISOString(),
-      }),
+    new UpdateItemCommand({
+      TableName: genericConfig.UserInfoTable,
+      Key: {
+        id: { S: `${netId}@illinois.edu` },
+      },
+      UpdateExpression:
+        "SET #uinHash = :uinHash, #netId = :netId, #updatedAt = :updatedAt",
+      ExpressionAttributeNames: {
+        "#uinHash": "uinHash",
+        "#netId": "netId",
+        "#updatedAt": "updatedAt",
+      },
+      ExpressionAttributeValues: {
+        ":uinHash": { S: uinHash },
+        ":updatedAt": { S: new Date().toISOString() },
+      },
     }),
   );
 }

src/common/config.ts

@@ -55,7 +55,7 @@ export type GenericConfigType = {
   TestingCredentialsSecret: string;
   UinHashingSecret: string;
   UinExtendedAttributeName: string;
-  UinHashTable: string;
+  UserInfoTable: string;
 };
 
 type EnvironmentConfigType = {
@@ -96,7 +96,7 @@ const genericConfig: GenericConfigType = {
   TestingCredentialsSecret: "infra-core-api-testing-credentials",
   UinHashingSecret: "infra-core-api-uin-pepper",
   UinExtendedAttributeName: "extension_a70c2e1556954056a6a8edfb1f42f556_uiucEduUIN",
-  UinHashTable: "infra-core-api-uin-mapping",
+  UserInfoTable: "infra-core-api-user-info"
 } as const;
 
 const environmentConfig: EnvironmentConfigType = {

terraform/modules/dynamo/main.tf

@@ -190,6 +190,28 @@ resource "aws_dynamodb_table" "iam_user_roles" {
   }
 }
 
+resource "aws_dynamodb_table" "user_info" {
+  billing_mode                = "PAY_PER_REQUEST"
+  name                        = "${var.ProjectId}-user-info"
+  deletion_protection_enabled = true
+  hash_key                    = "id"
+  point_in_time_recovery {
+    enabled = true
+  }
+  attribute {
+    name = "id"
+    type = "S"
+  }
+  attribute {
+    name = "uinHash"
+    type = "S"
+  }
+  global_secondary_index {
+    name            = "UinHashIndex"
+    hash_key        = "uinHash"
+    projection_type = "KEYS_ONLY"
+  }
+}
 
 resource "aws_dynamodb_table" "events" {
   billing_mode                = "PAY_PER_REQUEST"