tangledbytes
diff --git a/‎package-lock.json‎
Lines changed: 13 additions & 387 deletions b/‎package-lock.json‎
Lines changed: 13 additions & 387 deletions
diff --git a/‎package.json‎
Lines changed: 0 additions & 1 deletion b/‎package.json‎
Lines changed: 0 additions & 1 deletion
diff --git a/‎src/agent/block_store_speed.js‎
Lines changed: 8 additions & 7 deletions b/‎src/agent/block_store_speed.js‎
Lines changed: 8 additions & 7 deletions
diff --git a/‎src/api/account_api.js‎
Lines changed: 4 additions & 24 deletions b/‎src/api/account_api.js‎
Lines changed: 4 additions & 24 deletions
diff --git a/‎src/api/auth_api.js‎
Lines changed: 0 additions & 63 deletions b/‎src/api/auth_api.js‎
Lines changed: 0 additions & 63 deletions
diff --git a/‎src/cmd/api.js‎
Lines changed: 10 additions & 6 deletions b/‎src/cmd/api.js‎
Lines changed: 10 additions & 6 deletions
diff --git a/‎src/cmd/backingstore.js‎
Lines changed: 4 additions & 3 deletions b/‎src/cmd/backingstore.js‎
Lines changed: 4 additions & 3 deletions
diff --git a/‎src/rpc/rpc_schema.js‎
Lines changed: 0 additions & 6 deletions b/‎src/rpc/rpc_schema.js‎
Lines changed: 0 additions & 6 deletions
diff --git a/‎src/sdk/nb.d.ts‎
Lines changed: 0 additions & 1 deletion b/‎src/sdk/nb.d.ts‎
Lines changed: 0 additions & 1 deletion
@@ -83,7 +83,6 @@
     "@smithy/node-http-handler": "3.3.3",
     "ajv": "8.17.1",
     "aws-sdk": "2.1692.0",
-    "bcrypt": "5.1.1",
     "big-integer": "1.6.52",
     "bindings": "1.5.0",
     "chance": "1.1.13",
 
@@ -11,11 +11,10 @@ const config = require('../../config');
 const dotenv = require('../util/dotenv');
 const Speedometer = require('../util/speedometer');
 const { RPC_BUFFERS } = require('../rpc');
+const { make_auth_token } = require('../server/common_services/auth_server');
 
 dotenv.load();
 
-argv.email = argv.email || 'demo@noobaa.com';
-argv.password = argv.password || 'DeMo1';
 argv.system = argv.system || 'demo';
 argv.address = argv.address || '';
 argv.forks = argv.forks || 1;
@@ -37,16 +36,18 @@ if (argv.forks > 1 && cluster.isMaster) {
 
 async function main() {
     console.log('ARGS', argv);
+    const token = argv.token || make_auth_token({
+        system: argv.system,
+        role: 'admin',
+        email: argv.email,
+    });
+
     const rpc = api.new_rpc();
     const client = rpc.new_client();
     const signal_client = rpc.new_client();
     const n2n_agent = rpc.register_n2n_agent(((...args) => signal_client.node.n2n_signal(...args)));
     n2n_agent.set_any_rpc_address();
-    await client.create_auth_token({
-        email: argv.email,
-        password: argv.password,
-        system: argv.system,
-    });
+    client.options.auth_token = token;
     await Promise.all(Array(argv.concur).fill(0).map(() => worker(client)));
     process.exit();
 }
 
@@ -21,15 +21,15 @@ module.exports = {
             method: 'POST',
             params: {
                 type: 'object',
-                required: ['name', 'email', 'has_login', 's3_access'],
+                required: ['name', 'email', 's3_access'],
                 properties: {
                     name: { $ref: 'common_api#/definitions/account_name' },
                     email: { $ref: 'common_api#/definitions/email' },
                     password: { $ref: 'common_api#/definitions/password' },
                     must_change_password: {
                         type: 'boolean',
                     },
-                    has_login: {
+                    has_login: { // DEPRECATED - TO BE REMOVED
                         type: 'boolean'
                     },
                     s3_access: {
@@ -216,26 +216,6 @@ module.exports = {
             }
         },
 
-        reset_password: {
-            doc: 'Reset an account password',
-            method: 'PUT',
-            params: {
-                type: 'object',
-                required: ['email', 'verification_password', 'password'],
-                properties: {
-                    email: { $ref: 'common_api#/definitions/email' },
-                    verification_password: { $ref: 'common_api#/definitions/password' },
-                    password: { $ref: 'common_api#/definitions/password' },
-                    must_change_password: {
-                        type: 'boolean'
-                    }
-                },
-            },
-            auth: {
-                system: 'admin'
-            }
-        },
-
         generate_account_keys: {
             doc: 'Generate new account keys',
             method: 'PUT',
@@ -638,7 +618,7 @@ module.exports = {
     definitions: {
         account_info: {
             type: 'object',
-            required: ['name', 'email', 'has_login', 'has_s3_access'],
+            required: ['name', 'email', 'has_s3_access'],
             properties: {
                 name: { $ref: 'common_api#/definitions/account_name' },
                 email: { $ref: 'common_api#/definitions/email' },
@@ -648,7 +628,7 @@ module.exports = {
                 is_external: {
                     type: 'boolean'
                 },
-                has_login: {
+                has_login: { // DEPRECATED - TO BE REMOVED
                     type: 'boolean',
                 },
                 next_password_change: {
 
@@ -14,69 +14,6 @@ module.exports = {
 
     methods: {
 
-        create_auth: {
-            doc: 'Authenticate account with credentials, ' +
-                'and returns an access token. ' +
-                'supply a system name to create a token for acting on the system.',
-            method: 'POST',
-            params: {
-                type: 'object',
-                // required: [],
-                properties: {
-                    email: {
-                        doc: 'If email is provided the new authorization will refer to it. ' +
-                            'If no email, the currently authorized account will be used.',
-                        $ref: 'common_api#/definitions/email',
-                    },
-                    password: {
-                        doc: 'If password is supplied then the email will be verified using it. ' +
-                            'If no password then the currently authorized account ' +
-                            'should be permitted to delegate such authorization (e.g. admin).',
-                        $ref: 'common_api#/definitions/password',
-                    },
-                    authorized_by: {
-                        type: 'string',
-                        enum: [
-                            'noobaa',
-                            'oauth'
-                        ]
-                    },
-                    system: {
-                        type: 'string',
-                    },
-                    role: {
-                        type: 'string',
-                    },
-                    extra: {
-                        type: 'object',
-                        additionalProperties: true,
-                        properties: {}
-                    },
-                    expiry: {
-                        type: 'integer',
-                        doc: 'Number of seconds before the authentication expires',
-                    },
-                },
-            },
-            reply: {
-                type: 'object',
-                required: ['token', 'info'],
-                properties: {
-                    token: {
-                        type: 'string',
-                    },
-                    info: {
-                        $ref: '#/definitions/auth_info'
-                    }
-                }
-            },
-            auth: {
-                account: false,
-                system: false,
-                anonymous: true,
-            }
-        },
-
         create_k8s_auth: {
             doc: 'Authenticate a k8s account using an OAuth grant code and return an access token.',
             method: 'POST',
 
@@ -11,6 +11,7 @@ dbg.original_console();
 const util = require('util');
 const minimist = require('minimist');
 const api = require('../api');
+const { make_auth_token } = require('../server/common_services/auth_server');
 
 const HELP = `
 Help:
@@ -39,7 +40,8 @@ Options:
 
     --address <url>     (default per api type)           Set the address of the rpc server ()
     --debug <level>     (default 0)                      Increase debug level
-    --json                                               Output raw json instead of printaable 
+    --token <token>                                      Token to authorize the request
+    --json                                               Output raw json instead of printaable
 `;
 
 function print_usage() {
@@ -58,6 +60,12 @@ async function main(argv = minimist(process.argv.slice(2))) {
             const debug_level = Number(argv.debug) || 5;
             dbg.set_module_level(debug_level, 'core');
         }
+        const token = argv.token || make_auth_token({
+            system: process.env.CREATE_SYS_NAME,
+            role: 'admin',
+            email: process.env.CREATE_SYS_EMAIL
+        });
+
         const address = argv.address || 'wss://localhost:5443';
         const api_name = String(argv._[0] || '');
         const method_name = String(argv._[1] || '');
@@ -68,11 +76,7 @@ async function main(argv = minimist(process.argv.slice(2))) {
         const final_api_name = api_name.endsWith('_api') ? api_name.slice(0, -4) : api_name;
         const rpc = api.new_rpc();
         const client = rpc.new_client();
-        await client.create_auth_token({
-            system: process.env.CREATE_SYS_NAME,
-            email: process.env.CREATE_SYS_EMAIL,
-            password: process.env.CREATE_SYS_PASSWD,
-        });
+        client.options.auth_token = token;
         const res = await client[final_api_name][method_name](params, { address });
         if (argv.json) {
             console.log(JSON.stringify(res));
 
@@ -16,6 +16,7 @@ const Agent = require('../agent/agent');
 const fs_utils = require('../util/fs_utils');
 const nb_native = require('../util/nb_native');
 const json_utils = require('../util/json_utils');
+const { make_auth_token } = require('../server/common_services/auth_server');
 
 const HELP = `
 Help:
@@ -101,10 +102,10 @@ async function run_backingstore(storage_path, address, port, pool_name) {
     if (!fs.existsSync(token_path)) {
         const rpc = api.new_rpc();
         const client = rpc.new_client({ address });
-        await client.create_auth_token({
+        client.options.auth_token = make_auth_token({
             system: process.env.CREATE_SYS_NAME,
-            email: process.env.CREATE_SYS_EMAIL,
-            password: process.env.CREATE_SYS_PASSWD,
+            role: 'admin',
+            email: process.env.CREATE_SYS_EMAIL
         });
         const install_string = await client.pool.get_hosts_pool_agent_config({ name: pool_name });
         const install_conf = JSON.parse(Buffer.from(install_string, 'base64').toString());
 
@@ -144,12 +144,6 @@ class RpcSchema {
         const client_proto = {
             RPC_BUFFERS,
 
-            async create_auth_token(params) {
-                const res = await this.auth.create_auth(params);
-                this.options.auth_token = res.token;
-                return res;
-            },
-
             async create_access_key_auth(params) {
                 const res = await this.auth.create_access_key_auth(params);
                 this.options.auth_token = res.token;
 
@@ -676,7 +676,6 @@ interface APIClient {
 
     RPC_BUFFERS: symbol;
 
-    create_auth_token(params: APIParams): Promise<object>;
     create_access_key_auth(params: APIParams): Promise<object>;
     create_k8s_auth(params: APIParams): Promise<object>;
 }
Original file line number	Diff line number	Diff line change
`@@ -676,7 +676,6 @@ interface APIClient {`
`676`	`676`
`677`	`677`	`RPC_BUFFERS: symbol;`
`678`	`678`
`679`		`- create_auth_token(params: APIParams): Promise<object>;`
`680`	`679`	`create_access_key_auth(params: APIParams): Promise<object>;`
`681`	`680`	`create_k8s_auth(params: APIParams): Promise<object>;`
`682`	`681`	`}`