graphQLock/createSecrets.js at main · oslabs-beta/graphQLock · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
const fs = require('fs');
const encrypt = require('crypto');
const path = require('path');
const { parse, stringify } = require('envfile');
const sourcePath = '.env';
const operations = require(path.resolve(__dirname, '../../graphqlock.json'));

const createSecrets = () => {
  //obtain a list of roles through Object.keys on the client decided JSON object
  const roles = Object.keys(operations).map(el => `ACCESS_TOKEN_${el.toUpperCase()}_SECRET`);

  fs.readFile(sourcePath, 'utf8', function (err, data) {
    if (err) {
      return console.log(err);
    }
    //secret keys are stored in the .env file
    const result = parse(data);
    roles.forEach(el => {
      const secret = encrypt.randomBytes(64).toString('hex');
      process.env[el] = secret;
      result[el] = secret;
    });
    //if refresh token secret doesnt exits, create new refresh token secret
    if (!result['REFRESH_TOKEN_SECRET']) {
      const secret = encrypt.randomBytes(64).toString('hex');
      process.env['REFRESH_TOKEN_SECRET'] = secret;
      result['REFRESH_TOKEN_SECRET'] = secret;
    };
    fs.writeFile(sourcePath, stringify(result), function (err) {
      if (err) {
        return console.log(err);
      };
      console.log("File Saved");
    });
  });
};

module.exports = { createSecrets };