Separate free and premium notedeck install instructions

Closes: damus-io/notedeck#829
Signed-off-by: Daniel D’Aquino <[email protected]>

Author: danieldaquino

.type_check.txt

@@ -25,7 +25,6 @@ src/web_auth.js(7,35): error TS2307: Cannot find module 'nostr-tools/pure' or it
 src/web_auth.js(9,48): error TS2307: Cannot find module 'nostr-tools/pool' or its corresponding type declarations.
 src/web_auth.js(11,32): error TS2307: Cannot find module 'nostr-tools/pool' or its corresponding type declarations.
 src/web_auth.js(43,25): error TS2365: Operator '+' cannot be applied to types 'number' and 'string | number'.
-src/web_auth.js(161,9): error TS2365: Operator '>' cannot be applied to types 'number' and 'string | number'.
 test/controllers/mock_iap_controller.js(85,60): error TS2345: Argument of type 'number' is not assignable to parameter of type 'string'.
 test/controllers/purple_test_controller.js(49,5): error TS2322: Type 'boolean' is not assignable to type 'string'.
 test/controllers/purple_test_controller.js(55,5): error TS2322: Type 'number' is not assignable to type 'string'.

README.md

@@ -12,8 +12,8 @@ The Damus API backend for Damus Purple and other functionality.
 
 - `DB_PATH`: Path to the folder where to save mdb files.
 - `TESTFLIGHT_URL`: URL for the TestFlight app (optional)
-- `NOTEDECK_INSTALL_MD`: URL for the notedeck installation instructions markdown
-- `NO_AUTH_WALL_NOTEDECK_INSTALL`: Disables the authentication wall for the notedeck installation instructions when set to `"true"`.
+- `NOTEDECK_INSTALL_MD`: Path to the freely available notedeck installation instructions (markdown file)
+- `NOTEDECK_INSTALL_PREMIUM_MD`: Path to the premium notedeck installation instructions (markdown file)
 
 #### Translations
 

notedeck-install-instructions-premium.md

@@ -0,0 +1,15 @@
+# Installing Notedeck
+
+Thank you for your interest in the Notedeck Beta release! We are excited to have you try out our software. Below are the instructions for installing Notedeck on your system.
+
+If you encounter any issues, please [contact us]([email protected]).
+
+## Binaries
+
+Please find the download link for your operating system below.
+
+- macOS (Apple Silicon): [notedeck_macos_silicon.dmg](#)
+- macOS (Intel): [notedeck_macos_intel.dmg](#)
+- Linux Debian package: [notedeck_linux_debian.deb](#)
+- Linux x86 generic: [notedeck_linux_generic.zip](#)
+- Linux ARM generic: [notedeck_linux_generic.zip](#)

notedeck-install-instructions.md

@@ -2,6 +2,8 @@
 
 Thank you for your interest in the Notedeck Alpha release! We are excited to have you try out our software. Below are the instructions for installing Notedeck on your system.
 
+If you are a Purple user, you can now access our beta release! To access the beta install instructions, click [here](/purple/login).
+
 If you encounter any issues, please [contact us]([email protected]).
 
 ## Binaries

src/router_config.js

@@ -445,26 +445,28 @@ function config_router(app) {
     return
   });
 
-  if(process.env.NO_AUTH_WALL_NOTEDECK_INSTALL == "true") {
-    router.get('/notedeck-install-instructions', async (req, res) => {
-      provide_notedeck_instructions(req, res)
-    });
-  }
-  else {
-    router.get('/notedeck-install-instructions', app.web_auth_manager.require_web_auth.bind(app.web_auth_manager), async (req, res) => {
-      const pubkey = req.authorized_pubkey
-      const { account, user_id } = get_account_and_user_id(app, pubkey)
-      if (!account) {
-        simple_response(res, 401)
-        return
-      }
-      const account_info = get_account_info_payload(user_id, account, true)
-      if(account_info.active == true) {
-        provide_notedeck_instructions(req, res)
-      }
+  router.get('/notedeck-install-instructions', app.web_auth_manager.use_web_auth.bind(app.web_auth_manager), async (req, res) => {
+    if(!req.authorized_pubkey) {
+      provide_notedeck_instructions(req, res, false)  // Provides free download instructions
       return
-    });
-  }
+    }
+
+    const { account, user_id } = get_account_and_user_id(app, req.authorized_pubkey)
+    if (!account) {
+      simple_response(res, 401)
+      return
+    }
+
+    const account_info = get_account_info_payload(user_id, account, true)
+    if (account_info.active == true) {
+      provide_notedeck_instructions(req, res, true) // Provide premium download instructions
+      return
+    }
+    else {
+      provide_notedeck_instructions(req, res, false) // Provide free download instructions
+      return
+    }
+  });
 
   // MARK: Admin routes
 
@@ -681,8 +683,8 @@ function get_allowed_cors_origins() {
   }
 }
 
-async function provide_notedeck_instructions(req, res) {
-  const installInstructionsPath = path.resolve(process.env.NOTEDECK_INSTALL_MD);
+async function provide_notedeck_instructions(req, res, user_authenticated) {
+  const installInstructionsPath = user_authenticated == true ? path.resolve(process.env.NOTEDECK_INSTALL_PREMIUM_MD) : path.resolve(process.env.NOTEDECK_INSTALL_MD);
   try {
     const installInstructions = fs.readFileSync(installInstructionsPath, { encoding: 'utf8' });
     json_response(res, { value: installInstructions });

src/web_auth.js

@@ -26,7 +26,7 @@ class WebAuthManager {
     this.dbs = dbs
     this.pool = pool
     this.otp_max_tries = process.env.OTP_MAX_TRIES || DEFAULT_OTP_MAX_TRIES
-    this.session_expiry = process.env.SESSION_EXPIRY || DEFAULT_SESSION_EXPIRY
+    this.session_expiry = parseInt(process.env.SESSION_EXPIRY) || DEFAULT_SESSION_EXPIRY
     this.otp_expiry = process.env.OTP_EXPIRY || DEFAULT_OTP_EXPIRY
   }
 
@@ -128,7 +128,7 @@ class WebAuthManager {
   // MARK: Middleware
 
   /**
-   * Middleware to check if a user is authenticated
+   * Middleware to check and require a user to be authenticated
    * @param {object} req - The Express request object
    * @param {object} res - The Express response object
    * @param {function} next - The next middleware function
@@ -167,6 +167,49 @@ class WebAuthManager {
     req.authorized_pubkey = session_data.pubkey;
     next();
   }
+
+  /**
+   * Middleware to check if a user is authenticated, but does not require authentication
+   * @param {object} req - The Express request object
+   * @param {object} res - The Express response object
+   * @param {function} next - The next middleware function
+   */
+  async use_web_auth(req, res, next) {
+    const auth_header = req.header('Authorization');
+
+    if (!auth_header) {
+      next();
+      return;
+    }
+
+    const [auth_type, token] = auth_header.split(' ');
+    if (auth_type !== 'Bearer') {
+      next();
+      return;
+    }
+
+    if (!token) {
+      next();
+      return;
+    }
+
+    const session_data = await this.dbs.sessions.get(token);
+    if (!session_data) {
+      next();
+      return;
+    }
+
+    // Check if the session has expired
+    if (current_time() - session_data.created_at > this.session_expiry) {
+      next();
+      return;
+    }
+
+    // User authenticated!
+
+    req.authorized_pubkey = session_data.pubkey;
+    next();
+  }
 }
 
 

test/controllers/purple_test_client.js

@@ -38,9 +38,19 @@ class PurpleTestClient {
     return await this.get('/accounts/' + this.public_key, options)
   }
 
+  /**
+   * Gets the notedeck install instructions
+   *
+   * @param {PurpleTestClientRequestOptions} options - The request options
+   * @returns {Promise<Object>} The response
+   */
+  async get_notedeck_install_instructions(options = {}) {
+    return await this.get('/notedeck-install-instructions', options)
+  }
+
   /**
    * Gets the product template options.
-   * 
+   *
    * @param {PurpleTestClientRequestOptions} options - The request options
    * @returns {Promise<Object>} The product information
    */

test/controllers/purple_test_controller.js

@@ -57,6 +57,8 @@ class PurpleTestController {
     process.env.OTP_EXPIRY = 60*5
     process.env.TESTFLIGHT_URL = "https://testflight.apple.com/join/abc123"
     process.env.NOTEDECK_INSTALL_MD = "./notedeck-install-instructions.md"
+    process.env.NOTEDECK_INSTALL_PREMIUM_MD = "./notedeck-install-instructions-premium.md"
+    this.env = process.env
   }
 
   setup_stubs() {
@@ -193,8 +195,23 @@ class PurpleTestController {
     const check_invoice_status_response = await this.clients[pubkey].check_invoice(verify_checkout_response.body.id);
     this.t.same(check_invoice_status_response.status, 200)
   }
-  
-  
+
+  async login(pubkey) {
+    // Let's request an OTP
+    const test_otp = "432931";
+    this.web_auth_controller.set_next_random_otp(test_otp);
+    const otp_response = await this.clients[pubkey].request_otp();
+    this.t.same(otp_response.statusCode, 200);
+    this.t.same(otp_response.body, { success: true });
+
+    // Login with the correct OTP
+    const login_response = await this.clients[pubkey].verify_otp(test_otp);
+    this.t.same(login_response.statusCode, 200);
+    this.t.same(login_response.body.valid, true);
+    this.t.ok(login_response.body.session_token);
+    return login_response.body.session_token
+  }
+
   // MARK: - Account UUID control
 
   /**

test/notedeck_install_instructions.test.js

@@ -0,0 +1,111 @@
+"use strict";
+// @ts-check
+
+const test = require('tap').test;
+const { PurpleTestController } = require('./controllers/purple_test_controller.js');
+const { PURPLE_ONE_MONTH } = require('../src/invoicing.js');
+const { v4: uuidv4 } = require('uuid');
+const path = require('path');
+const fs = require('fs');
+
+const PREMIUM_INSTRUCTIONS = 'premium'
+const FREE_INSTRUCTIONS = 'free'
+
+function get_notedeck_instructions(purple_test_controller, instruction_type) {
+  const installInstructionsPath = instruction_type == PREMIUM_INSTRUCTIONS ? path.resolve(purple_test_controller.env.NOTEDECK_INSTALL_PREMIUM_MD) : path.resolve(purple_test_controller.env.NOTEDECK_INSTALL_MD);
+  return fs.readFileSync(installInstructionsPath, { encoding: 'utf8' });
+}
+
+test('Notedeck free install instructions flow', async (t) => {
+  // Initialize the PurpleTestController
+  const purple_api_controller = await PurpleTestController.new(t);
+
+  // Instantiate a new client
+  const user_pubkey_1 = purple_api_controller.new_client();
+
+  const notedeck_install_response = await purple_api_controller.clients[user_pubkey_1].get_notedeck_install_instructions()
+  t.same(notedeck_install_response.statusCode, 200);
+  t.same(notedeck_install_response.body.value, get_notedeck_instructions(purple_api_controller, FREE_INSTRUCTIONS));
+
+  t.end();
+});
+
+test('Notedeck premium install instructions flow', async (t) => {
+  // Initialize the PurpleTestController
+  const purple_api_controller = await PurpleTestController.new(t);
+
+  // Instantiate a new client
+  const user_pubkey_1 = purple_api_controller.new_client();
+
+  // Let's get them an account
+  await purple_api_controller.ln_flow_buy_subscription(user_pubkey_1, PURPLE_ONE_MONTH);
+
+  // Get the account info
+  const response = await purple_api_controller.clients[user_pubkey_1].get_account();
+  t.same(response.statusCode, 200);
+
+  // Let's login to get a session token
+  // (We could probably get it from the ln subscription flow part, but we are not testing that here, so it's fine)
+  let session_token = await purple_api_controller.login(user_pubkey_1);
+
+  const notedeck_install_response = await purple_api_controller.clients[user_pubkey_1].get_notedeck_install_instructions({ session_token: session_token })
+  t.same(notedeck_install_response.statusCode, 200);
+  t.same(notedeck_install_response.body.value, get_notedeck_instructions(purple_api_controller, PREMIUM_INSTRUCTIONS));
+
+  t.end();
+});
+
+test('Notedeck unauthorized premium install instructions flow', async (t) => {
+  // Initialize the PurpleTestController
+  const purple_api_controller = await PurpleTestController.new(t);
+
+  // Instantiate a new client but don't get an account
+  const user_pubkey_1 = purple_api_controller.new_client();
+
+  // Get the account info
+  const response = await purple_api_controller.clients[user_pubkey_1].get_account();
+  t.same(response.statusCode, 404);
+
+  const notedeck_install_response = await purple_api_controller.clients[user_pubkey_1].get_notedeck_install_instructions({ session_token: "fakesessiontoken" })
+  t.same(notedeck_install_response.statusCode, 200);
+  t.same(notedeck_install_response.body.value, get_notedeck_instructions(purple_api_controller, FREE_INSTRUCTIONS));
+
+  t.end();
+});
+
+
+test('Notedeck expired account install instructions flow', async (t) => {
+  // Initialize the PurpleTestController
+  const purple_api_controller = await PurpleTestController.new(t);
+  purple_api_controller.set_current_time(1706659200)  // 2024-01-31 00:00:00 UTC
+
+  // Instantiate a new client
+  const user_pubkey_1 = purple_api_controller.new_client();
+
+  const initial_account_info_response = await purple_api_controller.clients[user_pubkey_1].get_account();
+  t.same(initial_account_info_response.statusCode, 404);
+
+  // Buy a one month subscription
+  await purple_api_controller.ln_flow_buy_subscription(user_pubkey_1, PURPLE_ONE_MONTH);
+
+  // Check expiry
+  const account_info_response_1 = await purple_api_controller.clients[user_pubkey_1].get_account();
+  t.same(account_info_response_1.statusCode, 200);
+  t.same(account_info_response_1.body.expiry, purple_api_controller.current_time() + 30 * 24 * 60 * 60);
+  t.same(account_info_response_1.body.active, true);
+
+  // Move time forward by 35 days, and make sure the account is not active anymore
+  purple_api_controller.set_current_time(purple_api_controller.current_time() + 35 * 24 * 60 * 60);
+  const account_info_response_2 = await purple_api_controller.clients[user_pubkey_1].get_account();
+  t.same(account_info_response_2.statusCode, 200);
+  t.same(account_info_response_2.body.active, false);
+
+  let session_token = await purple_api_controller.login(user_pubkey_1);
+
+  // Now try to get notedeck instructions
+  const notedeck_install_response = await purple_api_controller.clients[user_pubkey_1].get_notedeck_install_instructions({ session_token: session_token })
+  t.same(notedeck_install_response.statusCode, 200);
+  t.same(notedeck_install_response.body.value, get_notedeck_instructions(purple_api_controller, FREE_INSTRUCTIONS));
+
+  t.end();
+});

test/router_config.test.js

@@ -67,6 +67,10 @@ test('config_router - Account management routes', async (t) => {
       require_web_auth: async (req, res, next) => {
         req.authorized_pubkey = 'abc123';
         next();
+      },
+      use_web_auth: async (req, res, next) => {
+        req.authorized_pubkey = 'abc123';
+        next();
       }
     }
   };