mirror of
https://github.com/danny-avila/LibreChat.git
synced 2025-12-29 22:58:51 +01:00
f0f09138bd
* 🔒 feat: add Two-Factor Authentication (2FA) with backup codes & QR support (#5684) * working version for generating TOTP and authenticate. * better looking UI * refactored + better TOTP logic * fixed issue with UI * fixed issue: remove initial setup when closing window before completion. * added: onKeyDown for verify and disable * refactored some code and cleaned it up a bit. * refactored some code and cleaned it up a bit. * refactored some code and cleaned it up a bit. * refactored some code and cleaned it up a bit. * fixed issue after updating to new main branch * updated example * refactored controllers * removed `passport-totp` not used. * update the generateBackupCodes function to generate 10 codes by default: * update the backup codes to an object. * fixed issue with backup codes not working * be able to disable 2FA with backup codes. * removed new env. replaced with JWT_SECRET * ✨ style: improved a11y and style for TwoFactorAuthentication * 🔒 fix: small types checks * ✨ feat: improve 2FA UI components * fix: remove unnecessary console log * add option to disable 2FA with backup codes * - add option to refresh backup codes - (optional) maybe show the user which backup codes have already been used? * removed text to be able to merge the main. * removed eng tx to be able to merge * fix: migrated lang to new format. * feat: rewrote whole 2FA UI + refactored 2FA backend * chore: resolving conflicts * chore: resolving conflicts * fix: missing packages, because of resolving conflicts. * fix: UI issue and improved a11y * fix: 2FA backup code not working * fix: update localization keys for UI consistency * fix: update button label to use localized text * fix: refactor backup codes regeneration and update localization keys * fix: remove outdated translation for shared links management * fix: remove outdated 2FA code prompts from translation.json * fix: add cursor styles for backup codes item based on usage state * fix: resolve conflict issue * fix: resolve conflict issue * fix: resolve conflict issue * fix: missing packages in package-lock.json * fix: add disabled opacity to the verify button in TwoFactorScreen * ⚙ fix: update 2FA logic to rely on backup codes instead of TOTP status * ⚙️ fix: Simplify user retrieval in 2FA logic by removing unnecessary TOTP secret query * ⚙️ test: Add unit tests for TwoFactorAuthController and twoFactorControllers * ⚙️ fix: Ensure backup codes are validated as an array before usage in 2FA components * ⚙️ fix: Update module path mappings in tests to use relative paths * ⚙️ fix: Update moduleNameMapper in jest.config.js to remove the caret from path mapping * ⚙️ refactor: Simplify import paths in TwoFactorAuthController and twoFactorControllers test files * ⚙️ test: Mock twoFactorService methods in twoFactorControllers tests * ⚙️ refactor: Comment out unused imports and mock setups in test files for two-factor authentication * ⚙️ refactor: removed files * refactor: Exclude totpSecret from user data retrieval in AuthController, LoginController, and jwtStrategy * refactor: Consolidate backup code verification to apply DRY and remove default array in user schema * refactor: Enhance two-factor authentication ux/flow with improved error handling and loading state management, prevent redirect to /login --------- Co-authored-by: Marco Beretta <81851188+berry-13@users.noreply.github.com> Co-authored-by: Danny Avila <danny@librechat.ai>
247 lines
No EOL
7.7 KiB
TypeScript
247 lines
No EOL
7.7 KiB
TypeScript
import type { AssistantsEndpoint } from './schemas';
|
|
|
|
export const health = () => '/health';
|
|
export const user = () => '/api/user';
|
|
|
|
export const balance = () => '/api/balance';
|
|
|
|
export const userPlugins = () => '/api/user/plugins';
|
|
|
|
export const deleteUser = () => '/api/user/delete';
|
|
|
|
export const messages = (conversationId: string, messageId?: string) =>
|
|
`/api/messages/${conversationId}${messageId != null && messageId ? `/${messageId}` : ''}`;
|
|
|
|
const shareRoot = '/api/share';
|
|
export const shareMessages = (shareId: string) => `${shareRoot}/${shareId}`;
|
|
export const getSharedLink = (conversationId: string) => `${shareRoot}/link/${conversationId}`;
|
|
export const getSharedLinks = (
|
|
pageSize: number,
|
|
isPublic: boolean,
|
|
sortBy: 'title' | 'createdAt',
|
|
sortDirection: 'asc' | 'desc',
|
|
search?: string,
|
|
cursor?: string,
|
|
) =>
|
|
`${shareRoot}?pageSize=${pageSize}&isPublic=${isPublic}&sortBy=${sortBy}&sortDirection=${sortDirection}${
|
|
search ? `&search=${search}` : ''
|
|
}${cursor ? `&cursor=${cursor}` : ''}`;
|
|
export const createSharedLink = (conversationId: string) => `${shareRoot}/${conversationId}`;
|
|
export const updateSharedLink = (shareId: string) => `${shareRoot}/${shareId}`;
|
|
|
|
const keysEndpoint = '/api/keys';
|
|
|
|
export const keys = () => keysEndpoint;
|
|
|
|
export const userKeyQuery = (name: string) => `${keysEndpoint}?name=${name}`;
|
|
|
|
export const revokeUserKey = (name: string) => `${keysEndpoint}/${name}`;
|
|
|
|
export const revokeAllUserKeys = () => `${keysEndpoint}?all=true`;
|
|
|
|
export const abortRequest = (endpoint: string) => `/api/ask/${endpoint}/abort`;
|
|
|
|
export const conversationsRoot = '/api/convos';
|
|
|
|
export const conversations = (pageNumber: string, isArchived?: boolean, tags?: string[]) =>
|
|
`${conversationsRoot}?pageNumber=${pageNumber}${
|
|
isArchived === true ? '&isArchived=true' : ''
|
|
}${tags?.map((tag) => `&tags=${tag}`).join('')}`;
|
|
|
|
export const conversationById = (id: string) => `${conversationsRoot}/${id}`;
|
|
|
|
export const genTitle = () => `${conversationsRoot}/gen_title`;
|
|
|
|
export const updateConversation = () => `${conversationsRoot}/update`;
|
|
|
|
export const deleteConversation = () => `${conversationsRoot}/clear`;
|
|
|
|
export const importConversation = () => `${conversationsRoot}/import`;
|
|
|
|
export const forkConversation = () => `${conversationsRoot}/fork`;
|
|
|
|
export const duplicateConversation = () => `${conversationsRoot}/duplicate`;
|
|
|
|
export const search = (q: string, pageNumber: string) =>
|
|
`/api/search?q=${q}&pageNumber=${pageNumber}`;
|
|
|
|
export const searchEnabled = () => '/api/search/enable';
|
|
|
|
export const presets = () => '/api/presets';
|
|
|
|
export const deletePreset = () => '/api/presets/delete';
|
|
|
|
export const aiEndpoints = () => '/api/endpoints';
|
|
|
|
export const endpointsConfigOverride = () => '/api/endpoints/config/override';
|
|
|
|
export const models = () => '/api/models';
|
|
|
|
export const tokenizer = () => '/api/tokenizer';
|
|
|
|
export const login = () => '/api/auth/login';
|
|
|
|
export const logout = () => '/api/auth/logout';
|
|
|
|
export const register = () => '/api/auth/register';
|
|
|
|
export const loginFacebook = () => '/api/auth/facebook';
|
|
|
|
export const loginGoogle = () => '/api/auth/google';
|
|
|
|
export const refreshToken = (retry?: boolean) =>
|
|
`/api/auth/refresh${retry === true ? '?retry=true' : ''}`;
|
|
|
|
export const requestPasswordReset = () => '/api/auth/requestPasswordReset';
|
|
|
|
export const resetPassword = () => '/api/auth/resetPassword';
|
|
|
|
export const verifyEmail = () => '/api/user/verify';
|
|
|
|
export const resendVerificationEmail = () => '/api/user/verify/resend';
|
|
|
|
export const plugins = () => '/api/plugins';
|
|
|
|
export const config = () => '/api/config';
|
|
|
|
export const prompts = () => '/api/prompts';
|
|
|
|
export const assistants = ({
|
|
path = '',
|
|
options,
|
|
version,
|
|
endpoint,
|
|
isAvatar,
|
|
}: {
|
|
path?: string;
|
|
options?: object;
|
|
endpoint?: AssistantsEndpoint;
|
|
version: number | string;
|
|
isAvatar?: boolean;
|
|
}) => {
|
|
let url = isAvatar === true ? `${images()}/assistants` : `/api/assistants/v${version}`;
|
|
|
|
if (path && path !== '') {
|
|
url += `/${path}`;
|
|
}
|
|
|
|
if (endpoint) {
|
|
options = {
|
|
...(options ?? {}),
|
|
endpoint,
|
|
};
|
|
}
|
|
|
|
if (options && Object.keys(options).length > 0) {
|
|
const queryParams = new URLSearchParams(options as Record<string, string>).toString();
|
|
url += `?${queryParams}`;
|
|
}
|
|
|
|
return url;
|
|
};
|
|
|
|
export const agents = ({ path = '', options }: { path?: string; options?: object }) => {
|
|
let url = '/api/agents';
|
|
|
|
if (path && path !== '') {
|
|
url += `/${path}`;
|
|
}
|
|
|
|
if (options && Object.keys(options).length > 0) {
|
|
const queryParams = new URLSearchParams(options as Record<string, string>).toString();
|
|
url += `?${queryParams}`;
|
|
}
|
|
|
|
return url;
|
|
};
|
|
|
|
export const files = () => '/api/files';
|
|
|
|
export const images = () => `${files()}/images`;
|
|
|
|
export const avatar = () => `${images()}/avatar`;
|
|
|
|
export const speech = () => `${files()}/speech`;
|
|
|
|
export const speechToText = () => `${speech()}/stt`;
|
|
|
|
export const textToSpeech = () => `${speech()}/tts`;
|
|
|
|
export const textToSpeechManual = () => `${textToSpeech()}/manual`;
|
|
|
|
export const textToSpeechVoices = () => `${textToSpeech()}/voices`;
|
|
|
|
export const getCustomConfigSpeech = () => `${speech()}/config/get`;
|
|
|
|
export const getPromptGroup = (_id: string) => `${prompts()}/groups/${_id}`;
|
|
|
|
export const getPromptGroupsWithFilters = (filter: object) => {
|
|
let url = `${prompts()}/groups`;
|
|
if (Object.keys(filter).length > 0) {
|
|
const queryParams = new URLSearchParams(filter as Record<string, string>).toString();
|
|
url += `?${queryParams}`;
|
|
}
|
|
return url;
|
|
};
|
|
|
|
export const getPromptsWithFilters = (filter: object) => {
|
|
let url = prompts();
|
|
if (Object.keys(filter).length > 0) {
|
|
const queryParams = new URLSearchParams(filter as Record<string, string>).toString();
|
|
url += `?${queryParams}`;
|
|
}
|
|
return url;
|
|
};
|
|
|
|
export const getPrompt = (_id: string) => `${prompts()}/${_id}`;
|
|
|
|
export const getRandomPrompts = (limit: number, skip: number) =>
|
|
`${prompts()}/random?limit=${limit}&skip=${skip}`;
|
|
|
|
export const postPrompt = prompts;
|
|
|
|
export const updatePromptGroup = getPromptGroup;
|
|
|
|
export const updatePromptLabels = (_id: string) => `${getPrompt(_id)}/labels`;
|
|
|
|
export const updatePromptTag = (_id: string) => `${getPrompt(_id)}/tags/production`;
|
|
|
|
export const deletePromptGroup = getPromptGroup;
|
|
|
|
export const deletePrompt = ({ _id, groupId }: { _id: string; groupId: string }) => {
|
|
return `${prompts()}/${_id}?groupId=${groupId}`;
|
|
};
|
|
|
|
export const getCategories = () => '/api/categories';
|
|
|
|
export const getAllPromptGroups = () => `${prompts()}/all`;
|
|
|
|
/* Roles */
|
|
export const roles = () => '/api/roles';
|
|
export const getRole = (roleName: string) => `${roles()}/${roleName.toLowerCase()}`;
|
|
export const updatePromptPermissions = (roleName: string) => `${getRole(roleName)}/prompts`;
|
|
export const updateAgentPermissions = (roleName: string) => `${getRole(roleName)}/agents`;
|
|
|
|
/* Conversation Tags */
|
|
export const conversationTags = (tag?: string) =>
|
|
`/api/tags${tag != null && tag ? `/${encodeURIComponent(tag)}` : ''}`;
|
|
|
|
export const conversationTagsList = (pageNumber: string, sort?: string, order?: string) =>
|
|
`${conversationTags()}/list?pageNumber=${pageNumber}${sort ? `&sort=${sort}` : ''}${
|
|
order ? `&order=${order}` : ''
|
|
}`;
|
|
|
|
export const addTagToConversation = (conversationId: string) =>
|
|
`${conversationTags()}/convo/${conversationId}`;
|
|
|
|
export const userTerms = () => '/api/user/terms';
|
|
export const acceptUserTerms = () => '/api/user/terms/accept';
|
|
export const banner = () => '/api/banner';
|
|
|
|
// Two-Factor Endpoints
|
|
export const enableTwoFactor = () => '/api/auth/2fa/enable';
|
|
export const verifyTwoFactor = () => '/api/auth/2fa/verify';
|
|
export const confirmTwoFactor = () => '/api/auth/2fa/confirm';
|
|
export const disableTwoFactor = () => '/api/auth/2fa/disable';
|
|
export const regenerateBackupCodes = () => '/api/auth/2fa/backup/regenerate';
|
|
export const verifyTwoFactorTemp = () => '/api/auth/2fa/verify-temp'; |