From 152929b0caadd67ee680a0588740fd64706e7856 Mon Sep 17 00:00:00 2001
From: Bruno <bruno@buddyweb.fr>
Date: Fri, 6 Dec 2024 10:38:21 +0100
Subject: [PATCH 1/3] feat(mainDemo): seed default DB

---
 examples/README.md                     |  24 +-----------------------
 examples/main-demo/.gitignore          |   1 -
 examples/main-demo/manifest/backend.db | Bin 53248 -> 53248 bytes
 3 files changed, 1 insertion(+), 24 deletions(-)

diff --git a/examples/README.md b/examples/README.md
index 38de70e7..6b6613a7 100644
--- a/examples/README.md
+++ b/examples/README.md
@@ -1,25 +1,3 @@
 # Examples
 
-This folders hosts examples of Manifest implementations for **contributors**.
-
-## How to work with npm link
-
-[NPM Link](https://docs.npmjs.com/cli/v10/commands/npm-link) is a great tool to develop packages on real-world situations without having to publish them.
-
-### Example with NPM manifest package
-
-First go to `packages/core/manifest` and run this command to link the "manifest" package.
-
-```
-sudo npm link
-```
-
-the go to a folder that as `manifest` as a dependency in its `package.json` and run
-
-```
-npm link manifest
-```
-
-The local "manifest" package will now replace the dependency.
-
-Attention: for some reason the `nodemon` binary gets removed this way. Try to add it if the `npm run manifest` command is not working: `npm i nodemon`
+This folder hosts examples of Manifest implementations.
diff --git a/examples/main-demo/.gitignore b/examples/main-demo/.gitignore
index 02400b23..b512c09d 100644
--- a/examples/main-demo/.gitignore
+++ b/examples/main-demo/.gitignore
@@ -1,2 +1 @@
-
 node_modules
\ No newline at end of file
diff --git a/examples/main-demo/manifest/backend.db b/examples/main-demo/manifest/backend.db
index fd0b4e4db1a9baad0d1466518c6d38d4e7896d6b..fdd50bc0a0c0cbfc5f19727d0a8de752b841659f 100644
GIT binary patch
literal 53248
zcmeHQYit`=b|xiq_?RInTcRmimPFH%CEB7mGki0oEypV<Hf7n7<Th!xbw}jTVoZ?=
zN!c4Gi_OGI+HH$AExK)z)@YL5_Q$pj&;VVeKNbPHO`l1<yWLmOWPxDOY__{-(JmUG
zTOjB?cQ~S?y2-sN0*sM6(8C(~n{&>0&OP^iXZhZRYFiCe8qIa39g17}ELN*!CKR$*
zth~iy@t|+`ZAITc^ld}m#s&92<U-GwZocRdUbHy5y2bm;!Wa3o!Zp{6PM_y<T%Eh{
zA#nCFV}LQh7+?(CF$~<u^Nv6)W_@bnhTQpAe_L6tscm(Aqj6&d-5VORKBeE=Xk1a(
z8}-gF&*`PvQ!BHfl~Z>w%!b09yW!AexLOW}s`a*dS#5?cES))bYU%z^arXYusf#P;
z&nzO?x!J{)(BgUYeQ{x7Dikg?Ri&+#Pqo9LGWy5XN1;#5&Yilruo9Yt+wJPQIyq5q
zT$_kQ5NLA)Zc>8k%DNg3T~(T;HKmCj(tdbj$KN&es#-%@sHN(<QiK1{RH}8gd8TX9
zROs~i#pRWyQ)iG7;kn|avQ#Q%)0K27A!nqx6fdVUiny9crqjuAXzu*d?3wvRZ2#o8
zr$s_bvvadcvx}!^m$#&J$cu!|FCx<yW)ZuK=R>DXube?Q(AUKap8&?U?nQ3&IkAJD
zyoQ~&p|q=Nz1{iMv&%vHhbDJWWwTaW+~uUzYO}ot&ep>Nd8OPawHqJkl(>>fNm541
zB+HqKT9zyE)ru%(BsrDX?Ub#D?evL$o8Bek4o4suv_3VCU7|ll|LNT6kR1ZdT3~MH
z59O-TR+{0^gRMp#Ib)+)ErDygWoB2QDplJLe^3EZlj)LDN~DuzF<nZflVV9$Qt47M
zl}PXQRp(JVJq0(Z{q*=TyCV<?Sf7YvKPlz)Y90UJc6tflgQu(ON)@GsZtmDnTCHo1
zCdv%md*)4j+mqJCdoPvMOgfQCR#J&fwt|SyW|Ng<CLv{$ayWEx@yxv!XSZyQL?Rp)
zC<LsQYQ3y}s`XF}^+7Hvo9zbv`x2(;l7xRbJetJ`)t|Ova|HZ;>kS_B3qFEx`%ZSZ
zxz4O5U`Le^@xEmlfGY8Z+ReCH%Z;<}jRL;csWLjhgq;R=?wULc@30va@oMYznzFu8
zZPde|)kdSHD)q>P9xibFxb=Q)b0;QR>O-4qy`=8?vv&svyFQ!*VN(bhLH*VvkUF0j
zLeG4>-=&lKX`SdDZ4Z9O13x}(j|g<|<=z)8zE^#k?`~hO_ciYm-Z`($^P1;L&uNcc
z_)Fmzg|h<B{~iA;e3AFKZ@Hg#FS+|&|KR$Z>!(}+=RZ21ao+Dd==dkcvyKNGhq$-6
zo7~TGqxSFGf6u;ZAGiIp?en&>E!_J(B!pdz0mc9w12eM25|0lbw#uTMh)QBqltYr3
zlhV0(V%M!~PD-6_tZ!_#)h7BV9+l*%96wNy;0XbeC%{9`H8xu+ezGV<#Uwu?5-R}k
zqWbV^Lur=vCm;n9<AoTN0vD8eyQRakQ7ImonWj=;8v}_bGC>l#6H$0Vkd%S>TH~tP
z(I6F-(&4+N0N+oFKdk`$NO%&_AG+%}75E;djljrvQdCa43daCU>^oGcRy(pYQ7JQi
zG6L`+V#U|0r7LRPaGfZP<tO0*e$ofbRa<L18u6A2o|pjio_I%rlkPillnQ@(O;x+0
zE6JmUaljL^w*uo7y83D4yq>}s6?{j*k!4^02*CHiT{<cyLNj4N6P5eh7Q5tB;V_l@
z%WJ4ttXq$YU2>!lqJrP8lp3ALLB5y#g;6TFAsq+4D928Y0DKRTiyk1Nq!Y*w!vprf
zK1zCVp>T*wd&Bh|;p2rND){NO>P9EuB%^V0B7cxd_vMDNVU$@ZF@7Ql=slG>(Engz
zkV^S&=^6!Y_DDWJrF<u4beMA&4p0f-7Ii3S69akwUWB7mjpQf$^8-}qyQ^0^=^`GL
z#lXpaK<_PNQM$_>FYKqX-3U6pqDdS&u@B(HeqU)^Q)^pMCnt^;`l!SkB^HTCUzy3g
z58$)~4)Km`mk#8;dqHEz#YKC;L#6t*sL7!A)M#Fy65jDUQXRD};)iB<Koe)`Wo5Ia
zT<*3n#O%ZgH#~vZbKBb|NmR}6E4Zl4UtVh%;$=kt@QjnnfSnC2<UKKzcfb>feZR6<
zSB!dAN*+AP0eTMw2f05LmE~yOP9?sZFHs{&8Y|cUP25V@*2YRA`N2Xj6?|K<L9r)A
z^F36$cd0||L(z893g|shhs&Lq!2N&D_h%O0d%l11z2*C=?<?pJb}<GR1B?O20AqkL
zz!+c*Fa{U{i~+^~V}LPW4hEcDZ@`6D$nf^wA!}!~q|DpUADuNJGT#fI=*#qEcTaE7
zsxJ|foz`Bz6_(1#F#kVb`2~ybW$(M*LC*!@G5%%u58Q`b%g)a_zRdlI3)}Cr{c7*4
zJ^$Ww#Cj3^$B*XHiUV#Kgn7K*K|0s8tkjh9BjNVi=K5+KR#N3UtN2<meLY$1d<oBI
z#4=@NRc^)8>r!*0`C#^PbPF^6;Kt?fRCrx2S2x!w9-sp-`qML)zx?OF_Q}cj=2f(;
zQ>j&3Z9yycQ(FVGFJ`djlkdNB?+>3GUEV;e@31v4t+=1o8a$I`25TzuZ@UW{U+DT~
zS}X3OwFZxun!%b!{`gsRJ=gV(U0dh_Yl0NzMjt&kgE`97>*#u;YtBAx-e))`NU-1m
zCO%CQYU_XU!zV{xSvrH(sW<CA+Ps(65<HP+2EWuMKaWbyL%Jn`Ht(Ue1P_s$!IDG|
z%FO@y72T3!+M)oK3{w;qW3Iyt#;iY&67$F_-CP#c&hTJRKaD|3(+sve@H@zodw<j|
z`l2@PrVTUG<mCrKxK*TwSy-EMfhB(A72+g@CdAC(maE^y6^w4kLG7&5Fod*G2Gdh!
zFyv>By*>ZZz$4wVazLAN7{-u#1?G9pU`zz%Fx14<y)vj3IisMEdc`yarTID-66v~S
zzjn?J)(p|4FnyJp89dYcaU8C$J#KB*2KGQoCJi&R;?E4WEM0qP;QHJ5=usBZ&h_5G
zekneUTQFU}Ol$K!MyVn73tlB+2G0})+)ma#b9BM#LIE}$B#tj*MQ*sQw%XyD`=AI;
zzNbHJKVJXO4O)D!`+nP}`edKgd&_&%d&QeVdjP)fdBM~0<UMZTJHj6b4+$p)FaIY0
zMgC!ap7*=ocK?z4x_jR3cYV+GlIzp11y|7dednJ#A9F4`gO2YzUUod@Sa1Zmcet0i
z&v56E5Oy&J7z2y}#(?P=h|6}UW$-G!58QMDV=%^&Mo|J#fDD9}uSy~yf@Fx!iq#lE
zhR7gjWi{+*h)n~=PlmZ$snz0901%pQ3=+sw^qPss0YgX`ZpX)uQK+`%nFxg#-0+D{
zQiw4a5GN?a=++#i5VK{?IE5H&jW|Yu&?EB*AP6H<-+2-X1B5WjVBLG{Fa-d5qwx>`
z2*YxVtx*6GhM3OQ2n7NUz)Hh_AY@A)fff%@2*Eof;zNL-v|c_4Ai8uR1}Rj-3wp&t
z3Iygj761fAu!sjJL|mv|zpjXWT10GsR;hjp5qg2&4+ughZsnDIG-6<4Q0${X=xq5Y
z5ZHy17Z7wo@1YQaCj?>wAPD0GR<?^gg$O)}D!OS9uz4Wv0tBHGxAKsaN(`D06&(}^
z%$CSeAaLf2*#SYwFC=Zr1^_~@>lK68OQ97G#&{1P2njYi__7s1bg2&d|5jh#g1*?r
z7+?%A1{ed30mcAhfHA-rU<@z@7z2y}#=vbD&`wz$$;UmY&yCmN&#Wu;Y6Z=)Pp@uP
zYvpu8OlK1*C9Pz|RWY7kRg!8(PKpV!B4rYal#r#Aq$Wx!shp82>S`vgmNKO@I#gCt
zve{L!oK9Eb*-}<Yi>0_6msCj<<E3P&l1XMusqAVw8y6GtRS})Dsa7h<Qb|o!QsqQa
zEhVLRI@LKGOh!i(gv3lPk;$Ri4}65!j$3YIm(};K1%0uLF~AsL3@`>51B?O20AqkL
zz!+c*Fa{U{jDb6xfk1CkKP_O_D1{x_)#G~)taJPR+xH&Z|KDhS_yGcJ|NsAe3caZ|
zWwZVN|LdgzZ2$j9a|{UE|G)KK3bz0Mqc~@V?f>8P`V-S^Yi9fZjW^P;{r?}q0aI-M
z|BkmFb@p_bVP`hm|G%vtU?RV;{r}tiVr&oCw*MdX_FWU`hiw4X|My$IVeuusmp#u4
ze=At{l>4&lS?BAH_Z=cvu|H$GWpngqdmgmDi2mChacRW~<E#hL6H@U0GBae9OF!Oq
zU|p{^d-M)HQKb3)w$r!vX$#|9CyKbpcH){Sqg;Ke0$2CIDy=w18)T+A;7u*zV{5v`
z@Y?K=J2c4FzJ$-K)Q>ZXX>(z)gXZil*fVE_lE40M_?Rc%5Lqi8rVTIC^t$CY@p)C<
z(|3+(^C80;($jZL)4AKYvdu4ctvG5}LRz=r4Si;auo^nw37v}8^^0FCj?h|T8oyjA
z?W!r=+Sy^S1`0o^Z(u{G8C=u)&aMNi4r|3jcdTn3Q8&PxZv8T<EewG*cjh^@kIwHp
ztkSE^A2ggpp3h8jz;o*d+s>&)r@IF4SW7m}plo*iZN0`E(G~`2LrgzV#th}Z{O+!U
z5z#S^0mCt*$;>oIAwTdn9Ae$_FKNXCwASDw7R=zA>#<#}<q_>3zY%Jr#os)$Zq4uF
zW`JI5CZYe&JEknYxVPeYM))iKzxXNl&$)ix`PYu0pxf+X3@`>51B?O2z{j2ettitp
zVzRloXqs{5&xCfpJRqzUB^qmBS(j<7so#TxvD?5L)8<65hGyW;EXTY5e0tjelS4Zj
z14G~?6{KxT<A5zQG?q8MwQbBFy=-TiHpWcTiCMaWd;Q(fvN7#!)QB<CE}2;dmp`?<
zYY1aPD^Ah6#x%u${T)2!-*wGFZSlBKYKUE<Y_^okYRe3z=Gx6&9p>X&@ffXpOf$~>
z=oj!{W;Z(@*3L!@_mCzv<LE~-xaU!QzD(~jbK2QSFotHB*(_<`(ci@NX1CxR`q($>
z7y*m{#sFi0F~AsL3@`>51B?O20AqkLz!>-#FrdHx&u#I&;d{<k^`(3k?;GCdyqCQR
zZ;$7e=ccFT$$IR<E#ao{ppX`<{NMAx%UAgf&$++he%@Vkr`$HzS6w$<S6n%l)A=pu
z3(mST<8(N_>3Gqx;V3wG?%Uk&a}6$!-df5o#sFi0F~ArwAp@e!!Kk+LHiyLC<`%pp
zPm%x;AVlD|swG5#40rbb>^O<`HbRU!05OJDBSgWPZh0CIK|<9!Z|RBBNWlb50U|)C
z7bZYFP9p@iQ%lEagy88@F@l8<S`YK!u}MJm6Iz1aSe=*v0IegXqu3Tg#qfM%d>kM{
zgqk4;yzfyQ1CXB(1O$jjs1PXnV_`t_liH#*#lu(xApoX~q!1uT;|njCl}7;*B(z*#
z04<JS#RxH=SYj9u!-S?78&Ks#^t#DIG?>nt1rO5L1L;BxVg#W*Q1oMifS~Zc6aWBe
zvee(pc7R4J958+?gwT^XU=jlWAuY(pQWL44Mv(qO&HXeGJ&)}J2x&0}M<)9AVvXzr
z6lrat2btu><`9Mq-Zd5T0E9GVP?8k|0FYM6V86s;tq234^Y%Y1gb;#-xUdjH)A6oX
z$w>pj&X*iC5NwLX(LnU@w*!PUlWm2+4GSXV3~$Vg^#X*VhLw6~WZ<`uN>&;OwjcNZ
zZ2^n#FMLn>&iZ)oE$`Fb74M+uP0#b5RnM64j_`-Vx-iZE2mdAhDxYxw#Qm!KG54&S
zbN!9$ms|@jkMrx!-*VpP3_9LIJ^nREg!@<SW$r3h;4Jpn?4PwS*!yf>v;Br`2?=2r
zV}LPmCoqteolx@xtk&Cf%WiWEIx0V{wAH3}`h*0~;4m??aZRnYW@~Dx-K>@zlLZm*
z0b)FETo`cANFfIBVPegVKIVK=X|=-M+%(qSPpZA%b)2g<)$zl3MFHy{wi4D0(2g_|
zAIME%vx)V_btG2$_-OVx7EFwV4iARzAGzxowwD;HH-50Id*yTl%k{e`q6Dbw&rQ-9
zi<dTHp?#6u1RWN~2e#HRm_3TI6y8;;P0)C#uP~0G#9@gmWW&4sbY=|T{lq+@)*sf{
z&Sj6#>5QA2ptJKpE{vhXLNOGJjmU+=wDzL+LL2su`ST%wqq0C48qlsZ&;pkm1$2<u
zPkKKVjNWI<j$p~eMnhr1p*7rB7^brsH|z|pkNES4=xl}_n}K#og&{!GCoZhJaQLo+
z01pzIy{#Y*4itj_582#Ab`ao!0BIh;ykWh4g#d;U#|ch*25FPQ>;Zt2*He&kb!P`N
zehej!F^Ch0u>G-_0YDBD>ugjphT2E{C;H(D<aMN8%NY2vqq+Tn4-h-Mn?J<^xqVnR
zvEALW<q8)1uv}uxaY8ZFK02KD0epy9?apW(b{IFB^#YpQ*HFALbkvdeU?{QP+iT{@
zeR%=U!^Dgk{)T9A33-0+MvuF5Za|ZJx?8kHBWOaF3X400n6YUg=iCDpR~@0AoP!RF
z`|en-AQd=_CH54?8W9%o=IoTB*HEp6)gBTHHagLmE<<$BRJIr3<l(v1WZvIf=%JI0
R2gVJ_1NNMCuSN@={{e4c=f(g4

delta 110
zcmZozz}&Ead4d!Z!@`L&PC#;F!V-BtR{rA*{NMOr@!#dY%zu2dV8UvC1rb(eeU6gU
z+=6^AR%U6Ag8b~%-26Na7G`nI#FX63yv=v@nGGgaNb*i@5E0&#z!Jd3Ah4Nn!7u(v
I8(3gW0CsyKNB{r;


From b545b9237156f47988549b186a44e1e45c3f55b3 Mon Sep 17 00:00:00 2001
From: Bruno <bruno@buddyweb.fr>
Date: Fri, 6 Dec 2024 10:38:53 +0100
Subject: [PATCH 2/3] feat(JWT): use default token secret key if not in env

---
 packages/core/manifest/.env.contribution              |  1 -
 packages/core/manifest/src/auth/auth.service.ts       |  4 ++--
 .../core/manifest/src/auth/tests/auth.service.spec.ts |  2 +-
 packages/core/manifest/src/config/general.ts          | 11 ++++++++---
 packages/core/manifest/src/constants.ts               |  1 +
 5 files changed, 12 insertions(+), 7 deletions(-)

diff --git a/packages/core/manifest/.env.contribution b/packages/core/manifest/.env.contribution
index dfe7ebd5..d3a2e799 100644
--- a/packages/core/manifest/.env.contribution
+++ b/packages/core/manifest/.env.contribution
@@ -1,2 +1 @@
-TOKEN_SECRET_KEY=ReplaceThisToWhatever
 NODE_ENV=contribution
\ No newline at end of file
diff --git a/packages/core/manifest/src/auth/auth.service.ts b/packages/core/manifest/src/auth/auth.service.ts
index a3808065..122932d1 100644
--- a/packages/core/manifest/src/auth/auth.service.ts
+++ b/packages/core/manifest/src/auth/auth.service.ts
@@ -66,7 +66,7 @@ export class AuthService {
     return {
       token: jwt.sign(
         { email: signupUserDto.email, entitySlug },
-        this.configService.get('TOKEN_SECRET_KEY')
+        this.configService.get('tokenSecretKey')
       )
     }
   }
@@ -142,7 +142,7 @@ export class AuthService {
     try {
       decoded = jwt.verify(
         token?.replace('Bearer ', ''),
-        this.configService.get('TOKEN_SECRET_KEY')
+        this.configService.get('tokenSecretKey')
       ) as jwt.JwtPayload
     } catch {
       return Promise.resolve({ user: null, entitySlug: null })
diff --git a/packages/core/manifest/src/auth/tests/auth.service.spec.ts b/packages/core/manifest/src/auth/tests/auth.service.spec.ts
index 1ed25bc7..0d5fca5f 100644
--- a/packages/core/manifest/src/auth/tests/auth.service.spec.ts
+++ b/packages/core/manifest/src/auth/tests/auth.service.spec.ts
@@ -102,7 +102,7 @@ describe('AuthService', () => {
 
       const { jwtToken, entitySlug } = jwt.sign(
         'nonexistent@email.com',
-        configService.get('TOKEN_SECRET_KEY')
+        configService.get('tokenSecretKey')
       )
 
       expect(await authService.getUserFromToken(jwtToken)).toMatchObject({
diff --git a/packages/core/manifest/src/config/general.ts b/packages/core/manifest/src/config/general.ts
index 257d9cdb..77ed19c7 100644
--- a/packages/core/manifest/src/config/general.ts
+++ b/packages/core/manifest/src/config/general.ts
@@ -1,8 +1,13 @@
-import { DEFAULT_PORT } from '../constants'
+import { DEFAULT_PORT, DEFAULT_TOKEN_SECRET_KEY } from '../constants'
 
-export default (): { port: number | string; nodeEnv: string } => {
+export default (): {
+  port: number | string
+  nodeEnv: string
+  tokenSecretKey: string
+} => {
   return {
     port: process.env.PORT || DEFAULT_PORT,
-    nodeEnv: process.env.NODE_ENV || 'development'
+    nodeEnv: process.env.NODE_ENV || 'development',
+    tokenSecretKey: process.env.TOKEN_SECRET_KEY || DEFAULT_TOKEN_SECRET_KEY
   }
 }
diff --git a/packages/core/manifest/src/constants.ts b/packages/core/manifest/src/constants.ts
index 0b3b0468..8ef10863 100644
--- a/packages/core/manifest/src/constants.ts
+++ b/packages/core/manifest/src/constants.ts
@@ -14,6 +14,7 @@ export const DEFAULT_SEED_COUNT: number = 50
 export const DEFAULT_MAX_MANY_TO_MANY_RELATIONS: number = 5
 export const DUMMY_FILE_NAME: string = 'dummy-invoice.pdf'
 export const DUMMY_IMAGE_NAME: string = 'dummy-image.jpg'
+export const DEFAULT_TOKEN_SECRET_KEY: string = 'REPLACE_ME'
 
 // Uploads.
 export const STORAGE_PATH: string = 'public/storage'

From 560087e5b482f828cb0b006725ef2792e42b2d54 Mon Sep 17 00:00:00 2001
From: Bruno <bruno@buddyweb.fr>
Date: Fri, 6 Dec 2024 10:45:29 +0100
Subject: [PATCH 3/3] feat(production): throw error if env prod and no token
 secret key

---
 packages/core/manifest/src/main.ts | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/packages/core/manifest/src/main.ts b/packages/core/manifest/src/main.ts
index 5d89fe1d..07da4630 100644
--- a/packages/core/manifest/src/main.ts
+++ b/packages/core/manifest/src/main.ts
@@ -7,7 +7,7 @@ import * as express from 'express'
 import * as livereload from 'livereload'
 import { join } from 'path'
 import { AppModule } from './app.module'
-import { DEFAULT_PORT } from './constants'
+import { DEFAULT_PORT, DEFAULT_TOKEN_SECRET_KEY } from './constants'
 import { OpenApiService } from './open-api/services/open-api.service'
 
 async function bootstrap() {
@@ -26,6 +26,15 @@ async function bootstrap() {
   const isProduction: boolean = configService.get('NODE_ENV') === 'production'
   const isTest: boolean = configService.get('NODE_ENV') === 'test'
 
+  if (
+    isProduction &&
+    configService.get('tokenSecretKey') === DEFAULT_TOKEN_SECRET_KEY
+  ) {
+    throw new Error(
+      'Token secret key not defined. Please set a custom token secret key to run in production environment adding TOKEN_SECRET_KEY in your env file.'
+    )
+  }
+
   // Reload the browser when server files change.
   if (!isProduction && !isTest) {
     const liveReloadServer = livereload.createServer()