fix imports

Author: devksingh4

src/api/functions/authorization.ts

@@ -4,9 +4,9 @@ import {
   QueryCommand,
 } from "@aws-sdk/client-dynamodb";
 import { unmarshall } from "@aws-sdk/util-dynamodb";
-import { genericConfig } from "common/config.js";
-import { DatabaseFetchError } from "common/errors/index.js";
-import { allAppRoles, AppRoles } from "common/roles.js";
+import { genericConfig } from "../../common/config.js";
+import { DatabaseFetchError } from "../../common/errors/index.js";
+import { allAppRoles, AppRoles } from "../../common/roles.js";
 import { FastifyInstance } from "fastify";
 
 export const AUTH_DECISION_CACHE_SECONDS = 60;

src/api/plugins/auth.ts

@@ -14,7 +14,7 @@ import {
   UnauthorizedError,
 } from "../../common/errors/index.js";
 import { genericConfig, SecretConfig } from "../../common/config.js";
-import { getGroupRoles, getUserRoles } from "api/functions/authorization.js";
+import { getGroupRoles, getUserRoles } from "../functions/authorization.js";
 import { DynamoDBClient } from "@aws-sdk/client-dynamodb";
 
 function intersection<T>(setA: Set<T>, setB: Set<T>): Set<T> {
@@ -165,10 +165,7 @@ const authPlugin: FastifyPluginAsync = async (fastify, _options) => {
         request.tokenPayload = verifiedTokenData;
         request.username = verifiedTokenData.email || verifiedTokenData.sub;
         const expectedRoles = new Set(validRoles);
-        if (
-          verifiedTokenData.groups &&
-          fastify.environmentConfig.GroupRoleMapping
-        ) {
+        if (verifiedTokenData.groups) {
           const groupRoles = await Promise.allSettled(
             verifiedTokenData.groups.map((x) =>
               getGroupRoles(dynamoClient, fastify, x),
@@ -201,23 +198,20 @@ const authPlugin: FastifyPluginAsync = async (fastify, _options) => {
         }
 
         // add user-specific role overrides
-        if (request.username && fastify.environmentConfig.UserRoleMapping) {
-          if (fastify.environmentConfig["UserRoleMapping"][request.username]) {
-            try {
-              const userAuth = await getUserRoles(
-                dynamoClient,
-                fastify,
-                request.username,
-              );
-              for (const role of userAuth) {
-                userRoles.add(role);
-              }
-            } catch (e) {
-              request.log.warn(
-                `Failed to get user role mapping for ${request.username}`,
-                e,
-              );
+        if (request.username) {
+          try {
+            const userAuth = await getUserRoles(
+              dynamoClient,
+              fastify,
+              request.username,
+            );
+            for (const role of userAuth) {
+              userRoles.add(role);
             }
+          } catch (e) {
+            request.log.warn(
+              `Failed to get user role mapping for ${request.username}: ${e}`,
+            );
           }
         }
         if (
@@ -238,13 +232,13 @@ const authPlugin: FastifyPluginAsync = async (fastify, _options) => {
           });
         }
         if (err instanceof Error) {
-          request.log.error(`Failed to verify JWT: ${err.toString()}`);
+          request.log.error(`Failed to verify JWT: ${err.toString()} `);
         }
         throw new UnauthenticatedError({
           message: "Invalid token.",
         });
       }
-      request.log.info(`authenticated request from ${request.username}`);
+      request.log.info(`authenticated request from ${request.username} `);
       return userRoles;
     },
   );

src/common/config.ts

@@ -6,14 +6,10 @@ type ArrayOfValueOrArray<T> = Array<ValueOrArray<T>>;
 type OriginType = string | boolean | RegExp;
 type ValueOrArray<T> = T | ArrayOfValueOrArray<T>;
 
-type GroupRoleMapping = Record<string, readonly AppRoles[]>;
 type AzureRoleMapping = Record<string, readonly AppRoles[]>;
-type UserRoleMapping = Record<string, readonly AppRoles[]>;
 
 export type ConfigType = {
-  GroupRoleMapping: GroupRoleMapping;
   AzureRoleMapping: AzureRoleMapping;
-  UserRoleMapping: UserRoleMapping;
   ValidCorsOrigins: ValueOrArray<OriginType> | OriginFunction;
   AadValidClientId: string;
 };
@@ -60,18 +56,6 @@ const genericConfig: GenericConfigType = {
 
 const environmentConfig: EnvironmentConfigType = {
   dev: {
-    GroupRoleMapping: {
-      [infraChairsGroupId]: allAppRoles, // Infra Chairs
-      "940e4f9e-6891-4e28-9e29-148798495cdb": allAppRoles, // ACM Infra Team
-      "f8dfc4cf-456b-4da3-9053-f7fdeda5d5d6": allAppRoles, // Infra Leads
-      "0": allAppRoles, // Dummy Group for development only
-      "1": [], // Dummy Group for development only
-      "scanner-only": [AppRoles.TICKETS_SCANNER],
-    },
-    UserRoleMapping: {
-      "[email protected]": [AppRoles.TICKETS_SCANNER],
-      "kLkvWTYwNnJfBkIK7mBi4niXXHYNR7ygbV8utlvFxjw": allAppRoles
-    },
     AzureRoleMapping: { AutonomousWriters: [AppRoles.EVENTS_MANAGER] },
     ValidCorsOrigins: [
       "http://localhost:3000",
@@ -84,27 +68,27 @@ const environmentConfig: EnvironmentConfigType = {
     AadValidClientId: "39c28870-94e4-47ee-b4fb-affe0bf96c9f",
   },
   prod: {
-    GroupRoleMapping: {
-      [infraChairsGroupId]: allAppRoles, // Infra Chairs
-      [officersGroupId]: allAppRoles, // Officers
-      [execCouncilGroupId]: [AppRoles.EVENTS_MANAGER, AppRoles.IAM_INVITE_ONLY], // Exec
-    },
-    UserRoleMapping: {
-      "[email protected]": allAppRoles,
-      "[email protected]": [AppRoles.TICKETS_SCANNER],
-      "[email protected]": [AppRoles.TICKETS_SCANNER],
-      "[email protected]": [AppRoles.TICKETS_SCANNER],
-      "[email protected]": [AppRoles.TICKETS_SCANNER],
-      "[email protected]": [
-        AppRoles.TICKETS_SCANNER,
-        AppRoles.TICKETS_MANAGER,
-      ],
-      "[email protected]": [
-        AppRoles.TICKETS_SCANNER,
-        AppRoles.TICKETS_MANAGER,
-      ],
-      "[email protected]": [AppRoles.TICKETS_MANAGER, AppRoles.TICKETS_SCANNER]
-    },
+    // GroupRoleMapping: {
+    //   [infraChairsGroupId]: allAppRoles, // Infra Chairs
+    //   [officersGroupId]: allAppRoles, // Officers
+    //   [execCouncilGroupId]: [AppRoles.EVENTS_MANAGER, AppRoles.IAM_INVITE_ONLY], // Exec
+    // },
+    // UserRoleMapping: {
+    //   "[email protected]": allAppRoles,
+    //   "[email protected]": [AppRoles.TICKETS_SCANNER],
+    //   "[email protected]": [AppRoles.TICKETS_SCANNER],
+    //   "[email protected]": [AppRoles.TICKETS_SCANNER],
+    //   "[email protected]": [AppRoles.TICKETS_SCANNER],
+    //   "[email protected]": [
+    //     AppRoles.TICKETS_SCANNER,
+    //     AppRoles.TICKETS_MANAGER,
+    //   ],
+    //   "[email protected]": [
+    //     AppRoles.TICKETS_SCANNER,
+    //     AppRoles.TICKETS_MANAGER,
+    //   ],
+    //   "[email protected]": [AppRoles.TICKETS_MANAGER, AppRoles.TICKETS_SCANNER]
+    // },
     AzureRoleMapping: { AutonomousWriters: [AppRoles.EVENTS_MANAGER] },
     ValidCorsOrigins: [
       "https://acm.illinois.edu",