feat: E-mail Module (#336)

* Folder structure

* Setup flox helpers

* Add flox config

* Basic module helpers

* Add frontend structure

* Update user, baseentity

* Add module status checker

* Module options helper

* Cleanup

* Cleanup

* Clean up i18n

* Even more cleanup

* Structure, cleanup

* Minor folder changes

* Auth/role/copypasta setup

* update PR template

* Cleanup, routes

* Router fix

* Add helper

* Module structure

* more structure

* Helpers

* Cleanup, rm shared

* Cleanup

* Structure, module separation

* More cleanup, roles

* auth module cleanup

* More cleanup¨

* add helpers

* User & role module

* Backend stuff

* Add FloxWrapper

* Make wrapper nice

* Restrict module components

* Fix errors

* Test module config, merge

* role cleanup

* Add index for each module

* Cleanup

* Module docs, even more cleanup

* Add CognitoUuid

* Module config cleanup, logging

* Config changes

* Add generic i18n

* Auth cleanup

* Config

* Fix auth dialogs, adapt to configuration

* Add flox demo data

* Signup demo flow, cleanup

* Password cleanup

* Fix auth

* Add nice label to QR code

* Auth cleanup

* DB User creation

* Add email verification code

* Notification added

* Auth flow changes, jwt not working yet

* Fix JWT

* Update router service

* Cleanup, entity helpers

* More resolver stuff

* Fix userPool

* Finally fix auth

* switch anyRole for loggedIn

* Cleanup

* Add role

* Role mgmt

* User role checking

* Improved testing setup, still has issues

* Rename files, testing setup

* More test changes

* Handle password reset force

* Error handling, general cleanup

* Auto-login after confirming e-mail

* Cleanup

* Auto-relogin

* Fix auth flow, cleanup

* Cleanup

* remove sample form

* Add user mapper sample

* Cleanup

* SampleForm added

* Folder structure

* Add module readme, structure2

* Remove unused test

* Import cleanup

* Fix frontend floxconfig

* More cleanup

* Remove readme, moved to wiki

* BaseEntity in frontend

* PR changes

* More cleanup

* Basic module & helper setup

* More setup

* E-Mail sending test setup

* Cleanup

* More cleanup

* Cleanup, remove keys

* Credentials cleanup, split

* More key changes

* Cleanup

* Cleanup

* Update backend/src/flox/modules/email/helpers/email-helpers.ts

Co-authored-by: Marinolino <[email protected]>

Co-authored-by: Marinolino <[email protected]>

Author: davwys

backend/flox.config.js

@@ -5,6 +5,7 @@ module.exports = {
     roles: true,
     file: true,
     sharing: false,
+    email: true,
   },
   moduleOptions: {
     auth: {
@@ -13,5 +14,8 @@ module.exports = {
     roles: {
       roles: ['ADMIN', 'SUPERUSER', 'USER'],
     },
+    email: {
+      emailSender: '[email protected]',
+    },
   },
 };

backend/jest.config.js

@@ -1,9 +1,6 @@
 module.exports = {
   moduleFileExtensions: ['vue', 'js', 'json', 'ts'],
   moduleDirectories: ['node_modules'],
-  // moduleNameMapper: {
-  //   '^src/(.*)$': '<rootDir>/../src/$1',
-  // },
   rootDir: 'src',
   testRegex: '.*\\.spec\\.ts$',
   transform: {

backend/package.json

@@ -24,6 +24,7 @@
   },
   "dependencies": {
     "@aws-sdk/client-s3": "^3.41.0",
+    "@aws-sdk/client-ses": "^3.112.0",
     "@aws-sdk/s3-request-presigner": "^3.42.0",
     "@nestjs/common": "^8.0.0",
     "@nestjs/config": "^1.0.2",
@@ -44,6 +45,7 @@
     "jest-sonar": "^0.2.12",
     "joi": "^17.4.2",
     "jwks-rsa": "^2.0.5",
+    "nodemailer": "^6.7.5",
     "passport": "^0.5.0",
     "passport-jwt": "^4.0.0",
     "pg": "^8.7.1",

backend/src/app.module.ts

@@ -32,8 +32,10 @@ import { floxModules, floxProviders } from './flox/flox';
 
         // AWS
         AWS_REGION: Joi.string().required(),
-        AWS_ACCESS_KEY_ID: Joi.string().required(),
-        AWS_SECRET_ACCESS_KEY: Joi.string().required(),
+        AWS_S3_ACCESS_KEY_ID: Joi.string().required(),
+        AWS_S3_SECRET_ACCESS_KEY: Joi.string().required(),
+        AWS_SES_ACCESS_KEY_ID: Joi.string().required(),
+        AWS_SES_SECRET_ACCESS_KEY: Joi.string().required(),
         AWS_PUBLIC_BUCKET_NAME: Joi.string().required(),
         AWS_PRIVATE_BUCKET_NAME: Joi.string().required(),
       }),

backend/src/flox/MODULES.ts

@@ -4,4 +4,5 @@ export enum MODULES {
   ROLES = 'roles',
   FILE = 'file',
   SHARING = 'sharing',
+  EMAIL = 'email',
 }

backend/src/flox/flox.ts

@@ -8,6 +8,7 @@ import { MODULES } from './MODULES';
 import PublicFile from './modules/file/entities/public_file.entity';
 import PrivateFile from './modules/file/entities/private_file.entity';
 import { User } from './modules/auth/entities/user.entity';
+import { EmailModule } from './modules/email/email.module';
 import { getActiveFloxModuleNames } from './core/flox-helpers';
 
 /**
@@ -28,6 +29,9 @@ export function floxModules() {
       case MODULES.AUTH:
         modules.push(UserModule);
         break;
+      case MODULES.EMAIL:
+        modules.push(EmailModule);
+        break;
       // Some modules don't have to be added (e.g. 'roles')
       default:
         break;

backend/src/flox/modules/email/config.ts

@@ -0,0 +1,28 @@
+import { mergeConfigurations } from '../../core/flox-helpers';
+import { floxModuleOptions } from '../../flox';
+import { MODULES } from '../../MODULES';
+
+/**
+ * The file module handles file up/download using a database table each for private and public files, as well as storing
+ * the files in S3 and requesting corresponding URLs.
+ */
+
+type EmailModuleConfig = {
+  emailSender: string;
+};
+
+// Default configuration set; will get merged with custom config from flox.config.js
+const defaultConfig: EmailModuleConfig = {
+  emailSender: '[email protected]',
+};
+
+/**
+ * Gets the module's actual configuration
+ * @returns {FileModuleConfig} - configuration
+ */
+export function moduleConfig() {
+  return mergeConfigurations(
+    defaultConfig,
+    floxModuleOptions(MODULES.EMAIL),
+  ) as EmailModuleConfig;
+}

backend/src/flox/modules/email/email.controller.ts

@@ -0,0 +1,54 @@
+import { Controller, Post, Query, Req, Res } from '@nestjs/common';
+import { EmailService } from './email.service';
+import { ConfigService } from '@nestjs/config';
+import { Credentials } from './helpers/email-helpers';
+import { FastifyReply, FastifyRequest } from 'fastify';
+
+@Controller()
+export class EmailController {
+  constructor(
+    private readonly emailService: EmailService,
+    private readonly configService: ConfigService,
+  ) {}
+
+  // SES credentials
+  private readonly credentials: Credentials = {
+    region: this.configService.get('AWS_REGION'),
+    accessKeyId: this.configService.get('AWS_SES_ACCESS_KEY_ID'),
+    secretAccessKey: this.configService.get('AWS_SES_SECRET_ACCESS_KEY'),
+  };
+
+  /**
+   * Sends a test e-mail to the given address (in 'recipient' param of query)
+   * NOTE: This is just an example endpoint. Since it is not marked @Public / @LoggedIn, it will not be accessible by default.
+   * @param {FastifyRequest} req - the request
+   * @param {FastifyReply} res - reply to send on
+   * @param {Record<string, unknown>} query - request query
+   * @returns {Promise<void>} - done
+   */
+  @Post('/sendTestEmail')
+  async sendTestEmail(
+    @Req() req: FastifyRequest,
+    @Res() res: FastifyReply<any>,
+    @Query() query: Record<string, unknown>,
+  ): Promise<void> {
+    // Access to triggering user's Cognito UUID (if needed)
+    //const triggeredBy = req['user'].userId;
+
+    const recipient = query.recipient as string;
+
+    if (!recipient) {
+      throw new Error('No recipient given!');
+    }
+
+    // Send e-mail
+    try {
+      await this.emailService.sendTestEmail(recipient, this.credentials);
+      res.code(200);
+      res.send();
+    } catch (e) {
+      res.code(500);
+      res.send(`Error occurred while sending e-mail: ${e.message}`);
+    }
+  }
+}

backend/src/flox/modules/email/email.module.ts

@@ -0,0 +1,10 @@
+import { Module } from '@nestjs/common';
+import { EmailService } from './email.service';
+import { EmailController } from './email.controller';
+import { ConfigService } from '@nestjs/config';
+
+@Module({
+  providers: [EmailService, ConfigService],
+  controllers: [EmailController],
+})
+export class EmailModule {}

backend/src/flox/modules/email/email.service.ts

@@ -0,0 +1,29 @@
+import { Injectable } from '@nestjs/common';
+import { Credentials, sendEmail } from './helpers/email-helpers';
+import { moduleConfig } from './config';
+
+@Injectable()
+export class EmailService {
+  /**
+   * Sends a test e-mail
+   * @param {string} recipient - e-mail recipient
+   * @param {Credentials} credentials - SES auth credentials
+   * @returns {Promise<void>} - done
+   */
+  async sendTestEmail(
+    recipient: string,
+    credentials: Credentials,
+  ): Promise<void> {
+    // Get sender from module configuration
+    const sender = moduleConfig().emailSender;
+
+    // Send actual e-mail
+    await sendEmail(
+      credentials,
+      sender,
+      recipient,
+      'Test Message from Flox',
+      'This is a test.',
+    );
+  }
+}

backend/src/flox/modules/email/helpers/AttachmentFile.ts

@@ -0,0 +1,9 @@
+/**
+ * Data Type for a file attachment to be used sent via e-mail using Nodemailer
+ */
+
+export type AttachmentFile = {
+  filename: string;
+  content: Buffer;
+  contentType: string; // MIME content type (e.g. 'application/pdf')
+};

backend/src/flox/modules/email/helpers/email-helpers.ts

@@ -0,0 +1,59 @@
+import { SES, SendRawEmailCommand } from '@aws-sdk/client-ses';
+import * as nodemailer from 'nodemailer';
+import { AttachmentFile } from './AttachmentFile';
+
+export type Credentials = {
+  accessKeyId: string;
+  secretAccessKey: string;
+  region: string;
+};
+
+/**
+ * Sends an e-mail, optionally with attachment(s) using SES and Nodemailer
+ * @param {Record<string, string>} credentials - SES credentials object
+ * @param {string} from - the sender's e-mail address
+ * @param {string|string[]} to - list of recipient's e-mail addresses
+ * @param {string} subject - E-mail subject
+ * @param {string} body - E-mail's HTML body
+ * @param {AttachmentFile[]} attachments - file attachments
+ * @returns {Promise<void>} - done
+ */
+export async function sendEmail(
+  credentials: Credentials,
+  from: string,
+  to: string | string[],
+  subject: string,
+  body: string,
+  attachments?: AttachmentFile[],
+): Promise<void> {
+  // Create SES service object
+  const sesClient = new SES({
+    region: process.env.AWS_REGION,
+    credentials: credentials,
+  });
+
+  // Create Nodemailer SES transporter
+  const transporter = nodemailer.createTransport({
+    secure: true,
+    requireTLS: true,
+    secured: true,
+    SES: {
+      ses: sesClient,
+      aws: { SendRawEmailCommand },
+    },
+  });
+
+  const emailParams = {
+    from,
+    to,
+    subject,
+    html: body,
+    attachments: attachments ?? [],
+  };
+
+  try {
+    await transporter.sendMail(emailParams);
+  } catch (e) {
+    throw new Error(`Error while sending e-mail: ${e.name}: ${e.message}`);
+  }
+}

backend/src/flox/modules/file/file.controller.ts

@@ -6,8 +6,8 @@ import {
   Res,
 } from '@nestjs/common';
 import { FileService } from './file.service';
-import fastify = require('fastify');
 import { LoggedIn, Public } from '../auth/authentication.decorator';
+import { FastifyReply, FastifyRequest } from 'fastify';
 
 @Controller()
 export class FileController {
@@ -16,28 +16,28 @@ export class FileController {
   @Public()
   @Post('/uploadPublicFile')
   async uploadPublicFile(
-    @Req() req: fastify.FastifyRequest,
-    @Res() res: fastify.FastifyReply<any>,
+    @Req() req: FastifyRequest,
+    @Res() res: FastifyReply<any>,
   ): Promise<any> {
     // Verify that request is multipart
     if (!req.isMultipart()) {
       res.send(new BadRequestException('File expected on this endpoint'));
       return;
     }
     const file = await req.file();
-    const file_buffer = await file.toBuffer();
-    const new_file = await this.taskService.uploadPublicFile(
-      file_buffer,
+    const fileBuffer = await file.toBuffer();
+    const newFile = await this.taskService.uploadPublicFile(
+      fileBuffer,
       file.filename,
     );
-    res.send(new_file);
+    res.send(newFile);
   }
 
   @Post('/uploadPrivateFile')
   @LoggedIn()
   async uploadPrivateFile(
-    @Req() req: fastify.FastifyRequest,
-    @Res() res: fastify.FastifyReply<any>,
+    @Req() req: FastifyRequest,
+    @Res() res: FastifyReply<any>,
   ): Promise<any> {
     // Verify that request is multipart
     if (!req.isMultipart()) {
@@ -49,12 +49,12 @@ export class FileController {
     const owner = req['user'].userId;
 
     const file = await req.file();
-    const file_buffer = await file.toBuffer();
-    const new_file = await this.taskService.uploadPrivateFile(
-      file_buffer,
+    const fileBuffer = await file.toBuffer();
+    const newFile = await this.taskService.uploadPrivateFile(
+      fileBuffer,
       file.filename,
       owner,
     );
-    res.send(new_file);
+    res.send(newFile);
   }
 }

backend/src/flox/modules/file/file.service.ts

@@ -15,8 +15,8 @@ export class FileService {
   // S3 credentials
   private readonly credentials = {
     region: this.configService.get('AWS_REGION'),
-    accessKeyId: this.configService.get('AWS_ACCESS_KEY_ID'),
-    secretAccessKey: this.configService.get('AWS_SECRET_ACCESS_KEY'),
+    accessKeyId: this.configService.get('AWS_S3_ACCESS_KEY_ID'),
+    secretAccessKey: this.configService.get('AWS_S3_SECRET_ACCESS_KEY'),
   };
 
   // AWS S3 instance