strongloop · superkhau · Jun 16, 2016
@@ -0,0 +1 @@
+/client/
@@ -0,0 +1,3 @@
+{
+  "extends": "loopback"
+}
@@ -1,6 +1,19 @@
->WORK IN PROGRESS
+# Credentials (header) scheme
 
-# Access token or credentials
+Credential schemes provide tenant information as credentials or as part of the
+access token (ie. in the HTTP headers or query parameters).
 
-An example that provides tenant information as part of the access token or
-credentials (ie. in the HTTP headers or query parameters).
+In this example, we provide the credentials using basic access authentication
+(AKA basic auth).
+
+## Usage
+
+```shell
+npm start
+
+curl -u Joe:doe localhost:3000/api/Joe/Todos
+# returns [{"content":"a","id":1},{"content":"b","id":2},{"content":"c","id":3}]
+
+curl -u Bob:doe localhost:3000/api/Bob/Todos
+# returns [{"content":"d","id":1},{"content":"e","id":2},{"content":"f","id":3}]
+```
@@ -0,0 +1,3 @@
+module.exports = function(Onejoetodo) {
+
+};
@@ -0,0 +1,3 @@
+module.exports = function(Twobobtodo) {
+
+};
@@ -0,0 +1,3 @@
+module.exports = function(User) {
+
+};
@@ -0,0 +1,20 @@
+{
+  "name": "user",
+  "base": "PersistedModel",
+  "idInjection": true,
+  "options": {
+    "validateUpsert": true
+  },
+  "properties": {
+    "username": {
+      "type": "string"
+    },
+    "password": {
+      "type": "string"
+    }
+  },
+  "validations": [],
+  "relations": {},
+  "acls": [],
+  "methods": {}
+}
@@ -0,0 +1,32 @@
+{
+  "name": "credentials",
+  "version": "1.0.0",
+  "main": "server/server.js",
+  "scripts": {
+    "start": "node .",
+    "pretest": "eslint .",
+    "posttest": "nsp check"
+  },
+  "dependencies": {
+    "basic-auth": "^1.0.4",
+    "compression": "^1.0.3",
+    "cors": "^2.5.2",
+    "helmet": "^1.3.0",
+    "loopback": "^2.22.0",
+    "loopback-boot": "^2.6.5",
+    "loopback-component-explorer": "^2.4.0",
+    "loopback-datasource-juggler": "^2.39.0",
+    "loopback-multitenancy": "git+ssh://git@github.com/strongloop/loopback-multitenancy.git",
+    "serve-favicon": "^2.0.1"
+  },
+  "devDependencies": {
+    "eslint": "^2.5.3",
+    "nsp": "^2.1.0"
+  },
+  "repository": {
+    "type": "",
+    "url": ""
+  },
+  "license": "UNLICENSED",
+  "description": "credentials"
+}
@@ -0,0 +1,12 @@
+module.exports = function(app, cb) {
+  app.models.Two_Bob_Todo.create([
+    {content: 'd'},
+    {content: 'e'},
+    {content: 'f'},
+  ], function(err, models) {
+    if (err) throw err;
+
+    console.log('created bob models:', models);
+    cb();
+  });
+};
@@ -0,0 +1,12 @@
+module.exports = function(app, cb) {
+  app.models.One_Joe_Todo.create([
+    {content: 'a'},
+    {content: 'b'},
+    {content: 'c'},
+  ], function(err, models) {
+    if (err) throw err;
+
+    console.log('created joe models:', models);
+    cb();
+  });
+};
@@ -0,0 +1,11 @@
+module.exports = function(app, cb) {
+  app.models.user.create([
+    {username: 'Joe', password: 'doe'},
+    {username: 'Bob', password: 'doe'}
+  ], function(err, users) {
+    if (err) throw err;
+
+    console.log('created users:', users);
+    cb();
+  });
+};
@@ -0,0 +1,19 @@
+{
+  "loopback-component-explorer": {
+    "mountPath": "/explorer"
+  },
+  "../node_modules/loopback-multitenancy": {
+    "scheme": "header",
+    "mountPath": "/:groupId/:resourceId",
+    "tenants": [
+      {
+        "tenantId": "One",
+        "username": "Joe"
+      },
+      {
+        "tenantId": "Two",
+        "username": "Bob"
+      }
+    ]
+  }
+}
@@ -0,0 +1,14 @@
+{
+  "db1": {
+    "name": "db1",
+    "localStorage": "",
+    "file": "",
+    "connector": "memory"
+  },
+  "db2": {
+    "name": "db2",
+    "localStorage": "",
+    "file": "",
+    "connector": "memory"
+  }
+}
@@ -0,0 +1,52 @@
+{
+  "initial:before": {
+    "loopback#favicon": {}
+  },
+  "initial": {
+    "compression": {},
+    "cors": {
+      "params": {
+        "origin": true,
+        "credentials": true,
+        "maxAge": 86400
+      }
+    },
+    "helmet#xssFilter": {},
+    "helmet#frameguard": {
+      "params": [
+        "deny"
+      ]
+    },
+    "helmet#hsts": {
+      "params": {
+        "maxAge": 0,
+        "includeSubdomains": true
+      }
+    },
+    "helmet#hidePoweredBy": {},
+    "helmet#ieNoOpen": {},
+    "helmet#noSniff": {},
+    "helmet#noCache": {
+      "enabled": false
+    }
+  },
+  "session": {},
+  "auth": {
+    "./middleware/basic-auth": {}
+  },
+  "parse": {},
+  "routes": {
+    "loopback#rest": {
+      "paths": [
+        "${restApiRoot}"
+      ]
+    }
+  },
+  "files": {},
+  "final": {
+    "loopback#urlNotFound": {}
+  },
+  "final:after": {
+    "loopback#errorHandler": {}
+  }
+}
@@ -0,0 +1,22 @@
+var auth = require('basic-auth');
+
+module.exports = function() {
+  return function(req, res, next) {
+    var credentials = auth(req);
+    if (!credentials)
+      return next(new Error('Invalid credentials'));
+
+    req.app.models.user.findOne({
+      where: {
+        username: credentials.name
+      }
+    }, function(err, user) {
+      if (err) return next(err);
+
+      if (!user) return next(new Error('Invalid credentials'));
+
+      req.user = user;
+      next();
+    });
+  };
+};
@@ -0,0 +1,28 @@
+{
+  "_meta": {
+    "sources": [
+      "loopback/common/models",
+      "loopback/server/models",
+      "../common/models",
+      "./models"
+    ],
+    "mixins": [
+      "loopback/common/mixins",
+      "loopback/server/mixins",
+      "../common/mixins",
+      "./mixins"
+    ]
+  },
+  "user": {
+    "dataSource": "db1",
+    "public": true
+  },
+  "One_Joe_Todo": {
+    "dataSource": "db1",
+    "public": true
+  },
+  "Two_Bob_Todo": {
+    "dataSource": "db2",
+    "public": true
+  }
+}
@@ -0,0 +1,13 @@
+# EditorConfig helps developers define and maintain consistent
+# coding styles between different editors and IDEs
+# http://editorconfig.org
+
+root = true
+
+[*]
+indent_style = space
+indent_size = 2
+end_of_line = lf
+charset = utf-8
+trim_trailing_whitespace = true
+insert_final_newline = true
@@ -0,0 +1,19 @@
+*.csv
+*.dat
+*.iml
+*.log
+*.out
+*.pid
+*.seed
+*.sublime-*
+*.swo
+*.swp
+*.tgz
+*.xml
+.DS_Store
+.idea
+.project
+.strong-pm
+coverage
+node_modules
+npm-debug.log
@@ -0,0 +1,3 @@
+{
+  "generator-loopback": {}
+}
@@ -0,0 +1,3 @@
+## Client
+
+This is the place for your application front-end files.
@@ -0,0 +1,17 @@
+{
+  "name": "One_Joe_Todo",
+  "base": "PersistedModel",
+  "idInjection": true,
+  "options": {
+    "validateUpsert": true
+  },
+  "properties": {
+    "content": {
+      "type": "string"
+    }
+  },
+  "validations": [],
+  "relations": {},
+  "acls": [],
+  "methods": {}
+}
@@ -0,0 +1,17 @@
+{
+  "name": "Two_Bob_Todo",
+  "base": "PersistedModel",
+  "idInjection": true,
+  "options": {
+    "validateUpsert": true
+  },
+  "properties": {
+    "content": {
+      "type": "string"
+    }
+  },
+  "validations": [],
+  "relations": {},
+  "acls": [],
+  "methods": {}
+}
@@ -0,0 +1,6 @@
+module.exports = function(server) {
+  // Install a `/` route that returns server status
+  var router = server.loopback.Router();
+  router.get('/', server.loopback.status());
+  server.use(router);
+};
@@ -3,7 +3,7 @@
     "mountPath": "/explorer"
   },
   "../node_modules/loopback-multitenancy": {
-    "tenantResolverMountPath": "/api/:tenantId/:modelId/:modelName",
-    "modelResolverMountPath": "/api"
+    "scheme": "url",
+    "mountPath": "/:tenantId/:groupId/:resourceId"
   }
 }
@@ -0,0 +1,27 @@
+{
+  "restApiRoot": "/api",
+  "host": "0.0.0.0",
+  "port": 3000,
+  "remoting": {
+    "context": {
+      "enableHttpContext": false
+    },
+    "rest": {
+      "normalizeHttpPath": false,
+      "xml": false
+    },
+    "json": {
+      "strict": false,
+      "limit": "100kb"
+    },
+    "urlencoded": {
+      "extended": true,
+      "limit": "100kb"
+    },
+    "cors": false,
+    "errorHandler": {
+      "disableStackTrace": false
+    }
+  },
+  "legacyExplorer": false
+}
Original file line number	Diff line number	Diff line change
		@@ -0,0 +1,3 @@
		## Client

		This is the place for your application front-end files.