Skip to content

Commit

Permalink
feat(NODE-5396): add mongodb-js/saslprep as a required dependency (#…
Browse files Browse the repository at this point in the history 
…3815)
  • Loading branch information
@baileympearson
baileympearson authored Aug 16, 2023
1 parent fd9a467 commit bd031fc
Show file tree
Hide file tree
Showing 6 changed files with 22 additions and 106 deletions.
17 changes: 11 additions & 6 deletions package-lock.json
View file

Some generated files are not rendered by default. Learn more about how customized files appear on GitHub.

6 changes: 2 additions & 4 deletions package.json
View file
Original file line number Diff line number Diff line change
Expand Up @@ -26,10 +26,8 @@
},
"dependencies": {
"bson": "^5.4.0",
"mongodb-connection-string-url": "^2.6.0"
},
"optionalDependencies": {
"saslprep": "^1.0.3"
"mongodb-connection-string-url": "^2.6.0",
"@mongodb-js/saslprep": "^1.1.0"
},
"peerDependencies": {
"@aws-sdk/credential-providers": "^3.188.0",
Expand Down
19 changes: 4 additions & 15 deletions src/cmap/auth/scram.ts
View file
Original file line number Diff line number Diff line change
@@ -1,14 +1,14 @@
import { saslprep } from '@mongodb-js/saslprep';
import * as crypto from 'crypto';
import { promisify } from 'util';

import { Binary, type Document } from '../../bson';
import { saslprep } from '../../deps';
import {
MongoInvalidArgumentError,
MongoMissingCredentialsError,
MongoRuntimeError
} from '../../error';
import { emitWarning, ns } from '../../utils';
import { ns } from '../../utils';
import type { HandshakeDocument } from '../connect';
import { type AuthContext, AuthProvider } from './auth_provider';
import type { MongoCredentials } from './mongo_credentials';
Expand All @@ -34,12 +34,6 @@ class ScramSHA extends AuthProvider {
if (!credentials) {
throw new MongoMissingCredentialsError('AuthContext must provide credentials.');
}
if (
cryptoMethod === 'sha256' &&
('kModuleError' in saslprep || typeof saslprep !== 'function')
) {
emitWarning('Warning: no saslprep library specified. Passwords will not be sanitized');
}

const nonce = await this.randomBytesAsync(24);
// store the nonce for later use
Expand Down Expand Up @@ -141,13 +135,8 @@ async function continueScramConversation(
const username = cleanUsername(credentials.username);
const password = credentials.password;

let processedPassword;
if (cryptoMethod === 'sha256') {
processedPassword =
'kModuleError' in saslprep || typeof saslprep !== 'function' ? password : saslprep(password);
} else {
processedPassword = passwordDigest(username, password);
}
const processedPassword =
cryptoMethod === 'sha256' ? saslprep(password) : passwordDigest(username, password);

const payload = Buffer.isBuffer(response.payload)
? new Binary(response.payload)
Expand Down
13 changes: 0 additions & 13 deletions src/deps.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -189,19 +189,6 @@ export function getSocks(): SocksLib | { kModuleError: MongoMissingDependencyErr
}
}

export let saslprep: typeof import('saslprep') | { kModuleError: MongoMissingDependencyError } =
makeErrorModule(
new MongoMissingDependencyError(
'Optional module `saslprep` not found.' +
' Please install it to enable Stringprep Profile for User Names and Passwords'
)
);

try {
// Ensure you always wrap an optional require in the try block NODE-3199
saslprep = require('saslprep');
} catch {} // eslint-disable-line

interface AWS4 {
/**
* Created these inline types to better assert future usage of this API
Expand Down
9 changes: 5 additions & 4 deletions test/action/dependency.test.ts
View file
Original file line number Diff line number Diff line change
Expand Up @@ -5,9 +5,10 @@ import * as path from 'node:path';
import { expect } from 'chai';

import { dependencies, peerDependencies, peerDependenciesMeta } from '../../package.json';
import { setDifference } from '../mongodb';
import { itInNodeProcess } from '../tools/utils';

const EXPECTED_DEPENDENCIES = ['bson', 'mongodb-connection-string-url'];
const EXPECTED_DEPENDENCIES = ['bson', 'mongodb-connection-string-url', '@mongodb-js/saslprep'];
const EXPECTED_PEER_DEPENDENCIES = [
'@aws-sdk/credential-providers',
'@mongodb-js/zstd',
Expand All @@ -21,7 +22,7 @@ const EXPECTED_PEER_DEPENDENCIES = [
describe('package.json', function () {
describe('dependencies', function () {
it('only contains the expected dependencies', function () {
expect(dependencies).to.have.keys(EXPECTED_DEPENDENCIES);
expect(Object.keys(dependencies)).to.deep.equal(EXPECTED_DEPENDENCIES);
});
});

Expand Down Expand Up @@ -118,7 +119,7 @@ describe('package.json', function () {

const EXPECTED_IMPORTS = [
'bson',
'saslprep',
'@mongodb-js/saslprep',
'sparse-bitfield',
'memory-pager',
'mongodb-connection-string-url',
Expand Down Expand Up @@ -150,7 +151,7 @@ describe('package.json', function () {

context('when importing mongodb', () => {
it('only contains the expected imports', function () {
expect(imports).to.deep.equal(EXPECTED_IMPORTS);
expect(setDifference(imports, EXPECTED_IMPORTS)).to.deep.equal(new Set());
});

it('does not import optional dependencies', () => {
Expand Down
64 changes: 0 additions & 64 deletions test/integration/auth/scram_sha_256.test.ts
View file

This file was deleted.

0 comments on commit bd031fc

Please sign in to comment.