diff --git a/adminapi/www/adminapx/bootcampXpress.html b/adminapi/www/adminapx/bootcampXpress.html
new file mode 100644
index 0000000..51d500f
--- /dev/null
+++ b/adminapi/www/adminapx/bootcampXpress.html
@@ -0,0 +1,164 @@
+
+
+
+
+
+ Acquire Operational Know-How
+ Join our immersive training program and become proficient in your field.
+ Contact Us
+
+
+
+
+
+
+
\ No newline at end of file
diff --git a/adminapi/www/adminapx/schema/accessright.json b/adminapi/www/adminapx/schema/accessright.json
deleted file mode 100644
index 9e26dfe..0000000
--- a/adminapi/www/adminapx/schema/accessright.json
+++ /dev/null
@@ -1 +0,0 @@
-{}
\ No newline at end of file
diff --git a/adminapi/www/adminapx/schema/lg/person_fr.json b/adminapi/www/adminapx/schema/lg/person_fr.json
new file mode 100644
index 0000000..a1fd0d9
--- /dev/null
+++ b/adminapi/www/adminapx/schema/lg/person_fr.json
@@ -0,0 +1,15 @@
+{
+ "title": "Une Personne au niveau d'une tribut avec des informations personnelle",
+ "description": "Un alias peut se stoquer comme un objet Person avec des informations supplémentaire permettant de qualifier son profil",
+ "properties": {
+ "alias": {"title":"Une identité numérique d'apxtrib"},
+ "dt_create": {"title":"Date de creation de cette personne"},
+ "dt_update": { "title":"Date de derniére mise à jour"},
+ "dt_lastlogin": { "title":"Date de derniere authentification" },
+ "dt_close": { "title": "Date de fermeture de compte" },
+ "recoveryauth":{"title":"Information pour recuperer ses codes d'accès"},
+ "biography": {"title":"Description courte"},
+ "imgavatar": {"title":"Url de l'image utilisée comme avatar"},
+ "accessrights": {"title":"Droits d'accès"}
+ }
+}
\ No newline at end of file
diff --git a/adminapi/www/adminapx/schema/lg/recoveryauth_fr.json b/adminapi/www/adminapx/schema/lg/recoveryauth_fr.json
new file mode 100644
index 0000000..d0a9441
--- /dev/null
+++ b/adminapi/www/adminapx/schema/lg/recoveryauth_fr.json
@@ -0,0 +1,10 @@
+{
+ "title": "Contiens la cle privée avec un email de recovery",
+ "description": "Cs trouve au niveau d'une person (sous la responsabilité d'une tribut et permet pour un alias de recevoir par email une clé privée",
+ "properties":{
+ "email": { "title":"email de recuperation" },
+ "alias": {"title": "Alias qui doit exister comme une Person dans une tribu"},
+ "privatekey": { "title": "Private key link to alias" },
+ "passphrase": {"title":"Passphrase to uncipher privatekey"}
+ }
+}
\ No newline at end of file
diff --git a/adminapi/www/adminapx/schema/person.json b/adminapi/www/adminapx/schema/person.json
index 74d3bdf..da28e20 100755
--- a/adminapi/www/adminapx/schema/person.json
+++ b/adminapi/www/adminapx/schema/person.json
@@ -10,22 +10,47 @@
"minLength": 5,
"pattern": "^[a-z0-9]*$"
},
+ "owner": {
+ "title": "Alias that own this object",
+ "type": "string",
+ "format": "Alias"
+ },
"dt_create": {
"type": "string",
"format": "datetime",
"default": "dayjs.now()"
},
- "dt_update": { "type": "string", "format": "datetime" },
- "dt_lastlogin": { "type": "string", "format": "datetime" },
- "dt_close": { "type": "string", "format": "datetime" },
- "recovery": {
- "type": "object",
- "$ref": {
- "email": { "type": "string", "format": "email" },
- "privatekey": { "type": "string", "format": "eccCorve25519armored" }
- }
+ "dt_update": {
+ "type": "string",
+ "format": "datetime"
},
- "recoveryauth":{"type":"object","$ref":""},
+ "dt_lastlogin": {
+ "type": "string",
+ "format": "datetime"
+ },
+ "dt_close": {
+ "type": "string",
+ "format": "datetime"
+ },
+ "recoveryauth": {
+ "type": "object",
+ "$ref": "schema/recoveryauth.json"
+ },
+ "firstname": {
+ "type": "string"
+ },
+ "lastname": {
+ "type": "string"
+ },
+ "dt_birth":{
+ "type":"string",
+ "format":"date"
+ },
+ "gender":{
+ "type":"string",
+ "enum":[ "M","MME","OTHER"]
+ },
+ "emailcom":{"type":"string","format":"email"},
"biography": {
"type": "string",
"pattern": "^.{O,150}$"
@@ -34,15 +59,28 @@
"type": "string"
},
"accessrights": {
- "type": "object",
- "$ref": "nationchains/schema/accessright.json"
+ "title": "Accessright per Object or per Object.key belonging to tribe",
+ "description": "A Person has to exist and want to create read update delete, if Own means if owner = alias of user requested some CRUD action to owner then he can act on this object or object.key",
+ "description": "List of Object with CRUDO value like {Person:'RUDO',"Person.recoveryauth":'O',...}",
+ "type": "object"
}
},
- "required": ["alias", "accessright"],
+ "required": [
+ "alias",
+ "accessright"
+ ],
"apxprimarykey": "alias",
- "apxunique": [""],
+ "apxunique": [
+ ""
+ ],
"apxsearchindex": [
- { "key": "alias", "value": [] },
- { "key": "recovery.email", "value": "alias" }
+ {
+ "key": "alias",
+ "value": []
+ },
+ {
+ "key": "recovery.email",
+ "value": "alias"
+ }
]
-}
+}
\ No newline at end of file
diff --git a/adminapi/www/adminapx/schema/recoveryauth.json b/adminapi/www/adminapx/schema/recoveryauth.json
new file mode 100644
index 0000000..aa49d47
--- /dev/null
+++ b/adminapi/www/adminapx/schema/recoveryauth.json
@@ -0,0 +1,11 @@
+{
+ "$schema": "https://json-schema.org/draft/2020-12/schema",
+ "$id": "/schema/recoveryauth",
+ "title": "Store numeric identity to recover it by email",
+ "description": "This object store numeric identity alias with an email mainly used at Person level to recover by email a private and passphrase key associate to alias",
+ "properties":{
+ "email": { "type": "string", "format": "email" },
+ "alias": {"type": "string", "format":"Pagan"},
+ "privatekey": { "type": "string", "format": "eccCorve25519armored" }
+ }
+}
\ No newline at end of file
diff --git a/adminapi/www/adminapx/schema/recruiter.json b/adminapi/www/adminapx/schema/recruiter.json
new file mode 100644
index 0000000..892cc53
--- /dev/null
+++ b/adminapi/www/adminapx/schema/recruiter.json
@@ -0,0 +1,8 @@
+{
+ "$schema": "https://json-schema.org/draft/2020-12/schema",
+ "$id": "/schema/person",
+ "title": "Person minimum definition to link a person to a pagan identity",
+ "description": "A person is a human with a apxtrib identity (Public Private Key. Information stored (not cipher) for a person are only visible from the town's Mayor and the tribe's Druid. You need at least trus the druid that trust the mayor (for sensitive data Mayor and Druid can be the same apx Identity.) Only a pagan that have the privateKey can read cipher data. The purpose of this sschema is to link a person to a tribe and manage basic activities, profil will be a tribe object if need more personnal information",
+ "type": "object",
+ "properties": {}
+}
\ No newline at end of file
diff --git a/adminapi/www/adminapx/schema/seeker.json b/adminapi/www/adminapx/schema/seeker.json
new file mode 100644
index 0000000..36bd444
--- /dev/null
+++ b/adminapi/www/adminapx/schema/seeker.json
@@ -0,0 +1,17 @@
+{
+ "$schema": "https://json-schema.org/draft/2020-12/schema",
+ "$id": "/schema/seeker",
+ "title": "Data Profil of a person that is in a seek process",
+ "description": "All those data have to store any useffull logistical data and profil about a seeker (skill, ...) ",
+ "type": "object",
+ "properties": {
+ "emailseek":{"type":"string","format":"email"},
+ "mainlivinglocation":{"type":"object","$ref":"https://schema.org/PostalAddress"},
+ "secondlivinglocation":{"type":"object","$ref":"https://schema.org/PostalAddress"},
+ "thirdlivinglocation":{"type":"object","$ref":"https://schema.org/PostalAddress"},
+ "seekcriterias":{"type":"array","$ref":"schema/seekcriteria.json"},
+ "skills":{"type":"array","$ref":"schema/skills.json"},
+ "educations":{"type":"array","$ref":"schema/educations.json"},
+ "experiences":{"type":"array","$ref":"schema/experiences.json"}
+ }
+}
\ No newline at end of file
diff --git a/adminapi/www/adminapx/static/js/apxtowns.js b/adminapi/www/adminapx/static/js/apxtowns.js
index a0d60c4..d02e4eb 100644
--- a/adminapi/www/adminapx/static/js/apxtowns.js
+++ b/adminapi/www/adminapx/static/js/apxtowns.js
@@ -8,15 +8,22 @@ towns.loadtpldata = () => {
// adapte tpldata to template tpl
const dataowner = apx.data.tpldata.setup;
dataowner.alias=apx.data.headers.xalias;
- dataowner.auth = dataowner.alias=="anonymous";
+ dataowner.auth = dataowner.alias!="anonymous";
dataowner.devtown = dataowner.townId == "devfarm";
if (dataowner.mayorid) dataowner.owner = dataowner.mayorid == dataowner.alias;
console.log('Data return to template',dataowner)
return dataowner;
};
-towns.owntown = () => {
-
-
+towns.owntown = (newowner) => {
// only the owner can give ownership to someone else
+ if (!newowner) {newowner=apx.data.headers.xalias}
+ axios.get(`api/towns/changeowner/${newowner}`,{ headers: apx.data.headers }).then(rep=>{
+ console.log(rep)
+ apx.data.tpldata.setup.moyorId=newowner;
+ apx.save();
+ app.load('apxmain','townowner',towns.loadtpldata())
+ }).catch(err=>{
+ console.log(err)
+ })
};
diff --git a/api/models/Towns.js b/api/models/Towns.js
index e689d20..4b31d01 100644
--- a/api/models/Towns.js
+++ b/api/models/Towns.js
@@ -1,13 +1,45 @@
-const bcrypt = require( 'bcrypt' );
-const fs = require( 'fs-extra' );
-const glob = require( 'glob' );
-const moment = require( 'moment' );
-const jwt = require( 'jwt-simple' );
-const UUID = require( 'uuid' );
-const conf=require(`${process.env.dirtown}/conf.json`)
-const Checkjson = require( `./Checkjson.js`);
+const bcrypt = require("bcrypt");
+const fs = require("fs-extra");
+const glob = require("glob");
+const moment = require("moment");
+const jwt = require("jwt-simple");
+const UUID = require("uuid");
+const conf = require(`${process.env.dirtown}/conf.json`);
+const Checkjson = require(`./Checkjson.js`);
-const Towns = {};
+const Towns = {};
+Towns.changeowner = (newowner, requestby) => {
+ /**
+ *
+ */
+ if (!fs.existsSync(`./nationchains/pagans/itm/${newowner}.json`)) {
+ return {
+ status: 404,
+ ref: "towns",
+ msg: "newownerdoesnotexist",
+ data: { alias: newowner },
+ };
+ }
+ if (!conf.mayorId || conf.mayorId == requestby) {
+ // update object town + town/conf.json + setup_xx.json
+ conf.mayorId = newowner;
+ fs.outputJsonSync(`${process.env.dirtown}/conf.json`, conf);
+ const setup = fs.readJSONSync(`${dirapi}/adminapi/www/adminapx/conf/setup_xx.json`)
+ setup.mayorId=newowner;
+ fs.outputJsonSync(`${dirapi}/adminapi/www/adminapx/conf/setup_xx.json`,setup);
+ return {
+ status: 200,
+ ref: "towns",
+ msg: "newownerchangesusccess",
+ data: { alias: newowner },
+ };
+ }
+ return {
+ status: 403,
+ ref: "towns",
+ msg: "notallow",
+ data: { newowner, currentowner: conf.mayorId },
+ };
+};
-
-module.exports= Towns;
\ No newline at end of file
+module.exports = Towns;
diff --git a/api/routes/towns.js b/api/routes/towns.js
new file mode 100755
index 0000000..910dbd6
--- /dev/null
+++ b/api/routes/towns.js
@@ -0,0 +1,167 @@
+const express = require("express");
+const path = require("path");
+
+// Classes
+const Towns = require("../models/Towns.js");
+const Notifications = require("../models/Notifications.js");
+// Middlewares
+const checkHeaders = require("../middlewares/checkHeaders");
+const isAuthenticated = require("../middlewares/isAuthenticated");
+const hasAccessrighton = require("../middlewares/hasAccessrighton");
+const router = express.Router();
+/*
+
+*/
+router.get("/changeowner/:alias",checkHeaders, isAuthenticated, (req, res) => {
+ /**
+ * @api {get} /towns/ownershipr/:alias
+ * @apiName Change owner of a town mayorId
+ * @apiGroup Pagans
+ * @param {string} alias an alias that will become owner of a town
+ * @apiSuccess (200) {object} {ref:"towns",msg:"ownerchangesuccess",data: { alias } }
+ * @apiError (404) {object} {ref:"towns",msg:"aliasnotallow",data: { alias} }
+ *
+ **/
+ res.send(Towns.changeowner(req.params.alias, req.session.header.alias));
+});
+router.get("/person/:alias", checkHeaders, isAuthenticated, (req, res) => {
+ /**
+ * @api {get} /pagans/person:alias
+ * @apiName Is register check xalias and xhash
+ * @apiGroup Pagans
+ * @apiUse apxHeader
+ * @param {string} alias that exist
+ * @param {string} tribeId that exist with a person alias
+ * @apiSuccess (200) {ref:"pagans",msg:"personexist",data: { person } }
+ * @apiError (404) {ref:"pagans",msg:"persondoesnotexist",data: { person } }
+ *
+ * @todo check accessright for req.session.header.xalias to see if jhe can get person data
+ * if req.param.alias == req.session.header.xalias => Owner
+ * else need accessright to on person set at R
+ * */
+ res.send(Pagans.getperson(req.params.alias, req.session.header.xtribe));
+});
+
+router.get("/isauth", checkHeaders, isAuthenticated, (req, res) => {
+ /**
+ * @api {get} /pagans/isauth
+ * @apiName Is register check xalias and xhash
+ * @apiGroup Pagans
+ * @apiUse apxHeader
+ *
+ * @apiError (400) {object} status missingheaders / xalias does not exist / signaturefailled
+ * @apiError (401) {object} alias anonymous (not authenticated)
+ * @apiError (404) {string} tribe does not exist
+ *
+ * @apiSuccess (200) {object} data contains indexfile requested
+ *
+ */
+ res.send({
+ status: 200,
+ ref: "headers",
+ msg: "authenticated",
+ data: {
+ xalias: req.session.header.xalias,
+ },
+ });
+});
+router.post("/", checkHeaders, isAuthenticated, (req, res) => {
+ /**
+ * @api {post} /pagans
+ * @apiName Is register check xalias and xhash
+ * @apiGroup Pagans
+ * @apiUse apxHeader
+ *
+ * Create a pagan account from alias, publickey, if trusted recovery =>
+ * Create a person in xtribe/person/xalias.json with profil.auth={email,privatekey, passphrase}
+ * Middleware isAuthenticated check that:
+ * - xhash is well signed from private key linked to the publickey of alias
+ * - check that alias does not already exist (if yes then verifiedsigne would be false)
+ * Need to wait next block chain to be sure that alias is register in the blokchain
+ */
+ console.log("pass ici", req.body);
+ const feedback = { alias: req.body.alias, publickey: req.body.publickey };
+ const newpagan = Pagans.create(req.body.alias, req.body.publickey);
+ if (newpagan.status == 200) {
+ if (req.body.email) {
+ feedback.withemail = true;
+ feedback.email = req.body.email;
+ feedback.privatekey = req.body.privatekey;
+ feedback.passphrase = req.body.passphrase;
+ Notifications.send({
+ type: "email",
+ from: "",
+ dest: [req.body.email],
+ tpl: "registeremail",
+ tribe: req.session.header.xtribe,
+ data: feedback,
+ });
+ }
+ if (req.body.trustedtribe) {
+ if (req.app.locals.tribeids.includes(req.body.trustedtribe)) {
+ delete feedback.withemail;
+ const persondata = { recovery: feedback };
+ res.send(
+ Pagans.personupdate(req.body.alias, req.body.trustedtribe, persondata)
+ );
+ } else {
+ res.send({
+ status: 404,
+ ref: "Pagans",
+ msg: "tribedoesnotexist",
+ data: { tribe: req.body.trustedtribe },
+ });
+ }
+ } else {
+ newpagan.data = feedback;
+ res.send(newpagan);
+ }
+ } else {
+ //error to create pagan
+ res.send(newpagan);
+ }
+});
+router.put("/person", checkHeaders, isAuthenticated, (req, res) => {
+ /**
+ * @api {put} /pagans/person
+ * @apiName Is register check xalias and xhash
+ * @apiGroup Pagans
+ * @apiUse apxHeader
+ *
+ * add/update a person = alias + tribe with specific accessright and specific schema link to tribe
+ * @todo add tribe/schema/person.json
+ */
+ console.log(req.body);
+ res.send(
+ Pagans.personupdate(req.body.alias, req.session.header.xtribe, req.body)
+ );
+});
+router.delete("/:alias", checkHeaders, isAuthenticated, (req, res) => {
+ /**
+ * @api {delete} /pagans/:alias
+ * @apiName Is register check xalias and xhash
+ * @apiGroup Pagans
+ * @apiUse apxHeader
+ * */
+ console.log(`DELETE pagans nationchains/pagans/${req.params.alias}.json`);
+ const result = Pagans.delete(req.params.id, req.session.header);
+ res.status(result.status).send(result.data);
+});
+router.get("/keyrecovery/:tribeid/:email", checkHeaders, (req, res) => {
+ /**
+ * @api {get} /pagans/keyrecovery/tribe/email
+ * @apiName apxtrib
+ * @apiGroup Pagans
+ *
+ *
+ *
+ * @apiError (400) {object} status missingheaders / xalias does not exist / signaturefailled
+ * @apiError (401) {object} alias anonymous (not authenticated)
+ * @apiError (404) {string} tribe does not exist
+ *
+ * @apiSuccess (200) {object} data contains indexfile requested
+ *
+ */
+ res.send(Pagans.keyrecovery(req.params.tribeId, req.params.email));
+});
+module.exports = router;