├── app.yaml
├── config
├── files
│ ├── config.dev.yaml
│ ├── config.prod.yaml
│ ├── config.test-int.yaml
│ ├── config.test.yaml
│ ├── config.staging.yaml
│ └── config.test-e2e.yaml
├── site.go
├── mail.go
├── magic.go
├── twilio.go
├── config.go
├── jwt.go
└── postgres.go
├── mockgopg
├── build_insert.go
├── build_query.go
├── formatter.go
├── row_result.go
├── mock.go
└── orm.go
├── public
├── assets
│ └── img
│ │ ├── header_logo.png
│ │ ├── header_logo2.png
│ │ ├── verify_email.png
│ │ ├── welcome_page.png
│ │ ├── failed_approval.png
│ │ ├── forgot_password.png
│ │ ├── social_icons_fb.png
│ │ ├── social_icons_twitter.png
│ │ ├── social_icons_instagram.png
│ │ ├── submitted_application.png
│ │ ├── forgot_password.svg
│ │ ├── verify_email.svg
│ │ ├── failed_approval.svg
│ │ ├── welcome_page.svg
│ │ └── submitted_application.svg
├── MA.svg
├── 2140998d-7f62-46f2-a9b2-e44350bd4807.svg
├── FB.svg
├── fc6a5dcd-4a70-4b8d-b64f-d83a6dae9ba4.svg
├── TSLA.svg
├── 8ccae427-5dd0-45b3-b5fe-7ba5e422c766.svg
├── AMZN.svg
├── f801f835-bfe6-4a9d-a6b1-ccbb84bfd75f.svg
├── GOOG.svg
├── GOOGL.svg
├── V.svg
├── 69b15845-7c63-4586-b274-1cfdfe9df3d8.svg
├── AAPL.svg
├── f30d734c-2806-4d0d-b145-f9fade61432b.svg
├── 4f5baf1e-0e9b-4d85-b88a-d874dc4a3c42.svg
├── b0b6dd9d-8b9b-48a9-ba46-b9d54906e415.svg
├── NFLX.svg
├── bb2a26c0-4c77-4801-8afc-82e8142ac7b8.svg
├── GE.svg
├── 57c36644-876b-437c-b913-3cdb58b18fd3.svg
├── SNAP.svg
├── 83e52ac1-bb18-4e9f-b68d-dda5a8af3ec0.svg
├── TME.svg
└── 662a919f-1455-497c-90e7-f76248e6d3a6.svg
├── NOTICE
├── CaddyFile
├── route
├── custom_route.go
└── route.go
├── mobile
├── mobile_interface.go
└── mobile.go
├── generate-ssl.sh
├── middleware
├── middleware.go
├── middleware_test.go
├── jwt_test.go
└── jwt.go
├── .mergify.yml
├── secret
├── secret_interface.go
├── secret.go
└── cryptorandom.go
├── initdb.sh
├── model
├── plaid.go
├── verification.go
├── reward.go
├── coins_transactions.go
├── bank_account.go
├── user_reward.go
├── role.go
├── asset.go
├── user_test.go
├── model_test.go
├── auth.go
└── model.go
├── mock
├── middleware.go
├── auth.go
├── mobile.go
├── magic.go
├── secret.go
├── rbac.go
├── mail.go
├── mock.go
└── mockdb
│ ├── user.go
│ └── account.go
├── Dockerfile
├── magic
├── magic_interface.go
└── magic.go
├── e2e
├── e2e.go
├── mobile_i_test.go
├── signupemail_i_test.go
├── login_i_test.go
└── e2e_i_test.go
├── entry
└── main.go
├── repository
├── platform
│ ├── query
│ │ └── query.go
│ └── structs
│ │ └── structs.go
├── transfer
│ └── transfer.go
├── role.go
├── assets
│ └── assets.go
├── rbac.go
├── user
│ └── user.go
├── account
│ └── account.go
├── rbac_i_test.go
├── asset.go
└── user_test.go
├── .vscode
└── launch.json
├── mail
└── mail_interface.go
├── manager
├── createschema.go
├── createdbuser.go
├── createdb.go
└── manager.go
├── cmd
├── migrate_reset.go
├── migrate_down.go
├── generate_secret.go
├── migrate_version.go
├── migrate_init.go
├── migrate.go
├── migrate_up.go
├── migrate_set_version.go
├── create_db.go
├── create_schema.go
├── create_superadmin.go
├── sync_assets.go
└── root.go
├── test.sh
├── alpaca.go
├── docker-compose.yml
├── request
├── request.go
├── bank_account.go
├── auth.go
├── signup.go
└── user.go
├── testhelper
└── testhelper.go
├── templates
└── terms_conditions_old.html
├── go.mod
├── .gitignore
├── .env.sample
├── server
└── server.go
├── service
├── user.go
└── plaid.go
├── .github
└── workflows
│ └── codeql-analysis.yml
├── apperr
└── apperr.go
├── migration
└── migration.go
├── k8-cluster.yaml
└── countries.csv
/app.yaml:
--------------------------------------------------------------------------------
1 | application: github.com/alpacahq/ribbit-backend
--------------------------------------------------------------------------------
/config/files/config.dev.yaml:
--------------------------------------------------------------------------------
1 | server:
2 | mode: "debug"
--------------------------------------------------------------------------------
/config/files/config.prod.yaml:
--------------------------------------------------------------------------------
1 | server:
2 | mode: "release"
--------------------------------------------------------------------------------
/config/files/config.test-int.yaml:
--------------------------------------------------------------------------------
1 | server:
2 | mode: test
--------------------------------------------------------------------------------
/config/files/config.test.yaml:
--------------------------------------------------------------------------------
1 | server:
2 | mode: "test"
--------------------------------------------------------------------------------
/config/files/config.staging.yaml:
--------------------------------------------------------------------------------
1 | server:
2 | mode: "release"
--------------------------------------------------------------------------------
/config/files/config.test-e2e.yaml:
--------------------------------------------------------------------------------
1 | server:
2 | mode: "test"
--------------------------------------------------------------------------------
/mockgopg/build_insert.go:
--------------------------------------------------------------------------------
1 | package mockgopg
2 |
3 | type buildInsert struct {
4 | insert string
5 | err error
6 | }
7 |
--------------------------------------------------------------------------------
/public/assets/img/header_logo.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/header_logo.png
--------------------------------------------------------------------------------
/public/assets/img/header_logo2.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/header_logo2.png
--------------------------------------------------------------------------------
/public/assets/img/verify_email.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/verify_email.png
--------------------------------------------------------------------------------
/public/assets/img/welcome_page.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/welcome_page.png
--------------------------------------------------------------------------------
/public/assets/img/failed_approval.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/failed_approval.png
--------------------------------------------------------------------------------
/public/assets/img/forgot_password.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/forgot_password.png
--------------------------------------------------------------------------------
/public/assets/img/social_icons_fb.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/social_icons_fb.png
--------------------------------------------------------------------------------
/public/assets/img/social_icons_twitter.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/social_icons_twitter.png
--------------------------------------------------------------------------------
/public/assets/img/social_icons_instagram.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/social_icons_instagram.png
--------------------------------------------------------------------------------
/public/assets/img/submitted_application.png:
--------------------------------------------------------------------------------
https://raw.githubusercontent.com/alpacahq/ribbit-backend/HEAD/public/assets/img/submitted_application.png
--------------------------------------------------------------------------------
/NOTICE:
--------------------------------------------------------------------------------
1 | Ribbit
2 | Copyright 2021 AlpacaDB, Inc.
3 |
4 | This product includes software developed at
5 | AlpacaDB, Inc. (https://alpaca.markets/)
6 |
--------------------------------------------------------------------------------
/CaddyFile:
--------------------------------------------------------------------------------
1 | ribbit.com:443 {
2 | tls /root/certs/ribbit-public.com.pem /root/certs/ribbit.com.pem
3 |
4 | reverse_proxy http://ribbit:8080
5 | }
6 |
--------------------------------------------------------------------------------
/route/custom_route.go:
--------------------------------------------------------------------------------
1 | package route
2 |
3 | // ServicesI is the interface for our user-defined custom routes and related services
4 | type ServicesI interface {
5 | SetupRoutes()
6 | }
7 |
--------------------------------------------------------------------------------
/mockgopg/build_query.go:
--------------------------------------------------------------------------------
1 | package mockgopg
2 |
3 | type buildQuery struct {
4 | funcName string
5 | query string
6 | params []interface{}
7 | result *OrmResult
8 | err error
9 | }
10 |
--------------------------------------------------------------------------------
/mobile/mobile_interface.go:
--------------------------------------------------------------------------------
1 | package mobile
2 |
3 | // Service is the interface to our mobile service
4 | type Service interface {
5 | GenerateSMSToken(countryCode, mobile string) error
6 | CheckCode(countryCode, mobile, code string) error
7 | }
8 |
--------------------------------------------------------------------------------
/generate-ssl.sh:
--------------------------------------------------------------------------------
1 | mkcert -key-file ribbit.com.pem -cert-file ribbit-public.com.pem ribbit.com
2 |
3 | # for client request encryption
4 | openssl genrsa -out private_key.pem 1024
5 | openssl rsa -in private_key.pem -outform PEM -pubout -out public_key.pem
6 |
--------------------------------------------------------------------------------
/middleware/middleware.go:
--------------------------------------------------------------------------------
1 | package middleware
2 |
3 | import "github.com/gin-gonic/gin"
4 |
5 | // Add adds middlewares to gin engine
6 | func Add(r *gin.Engine, h ...gin.HandlerFunc) {
7 | for _, v := range h {
8 | r.Use(v)
9 | }
10 | }
11 |
--------------------------------------------------------------------------------
/.mergify.yml:
--------------------------------------------------------------------------------
1 | pull_request_rules:
2 | - name: automatic merge for Dependabot pull requests
3 | conditions:
4 | - author=dependabot[bot]
5 | - status-success=Circle CI - Pull Request
6 | actions:
7 | merge:
8 | method: merge
9 |
--------------------------------------------------------------------------------
/secret/secret_interface.go:
--------------------------------------------------------------------------------
1 | package secret
2 |
3 | // Service is the interface to our secret service
4 | type Service interface {
5 | HashPassword(password string) string
6 | HashMatchesPassword(hash, password string) bool
7 | HashRandomPassword() (string, error)
8 | }
9 |
--------------------------------------------------------------------------------
/initdb.sh:
--------------------------------------------------------------------------------
1 | source .env
2 | export JWT_SECRET=$(openssl rand -base64 256)
3 | echo $JWT_SECRET
4 |
5 | go run ./entry create_db
6 | go run ./entry create_schema
7 | go run ./entry create_superadmin -e test_super_admin@gmail.com -p password
8 |
9 | go run ./entry/main.go
10 |
--------------------------------------------------------------------------------
/model/plaid.go:
--------------------------------------------------------------------------------
1 | package model
2 |
3 | type PlaidAuthToken struct {
4 | LinkToken string `json:"link_token"`
5 | }
6 |
7 | type AccessToken struct {
8 | ID int `json:"id"`
9 | PublicToken string `json:"public_token"`
10 | ItemID string `json:"item_id"`
11 | }
12 |
--------------------------------------------------------------------------------
/middleware/middleware_test.go:
--------------------------------------------------------------------------------
1 | package middleware_test
2 |
3 | import (
4 | "testing"
5 |
6 | mw "github.com/alpacahq/ribbit-backend/middleware"
7 |
8 | "github.com/gin-gonic/gin"
9 | )
10 |
11 | func TestAdd(t *testing.T) {
12 | gin.SetMode(gin.TestMode)
13 | r := gin.New()
14 | mw.Add(r, gin.Logger())
15 | }
16 |
--------------------------------------------------------------------------------
/model/verification.go:
--------------------------------------------------------------------------------
1 | package model
2 |
3 | func init() {
4 | Register(&Verification{})
5 | }
6 |
7 | // Verification stores randomly generated tokens that can be redeemed
8 | type Verification struct {
9 | Base
10 | ID int `json:"id"`
11 | Token string `json:"token"`
12 | UserID int `json:"user_id"`
13 | }
14 |
--------------------------------------------------------------------------------
/mock/middleware.go:
--------------------------------------------------------------------------------
1 | package mock
2 |
3 | import "github.com/alpacahq/ribbit-backend/model"
4 |
5 | // JWT mock
6 | type JWT struct {
7 | GenerateTokenFn func(*model.User) (string, string, error)
8 | }
9 |
10 | // GenerateToken mock
11 | func (j *JWT) GenerateToken(u *model.User) (string, string, error) {
12 | return j.GenerateTokenFn(u)
13 | }
14 |
--------------------------------------------------------------------------------
/Dockerfile:
--------------------------------------------------------------------------------
1 | FROM golang:1.16-alpine
2 | RUN apk update && apk add --virtual build-dependencies build-base gcc wget git openssl
3 |
4 | WORKDIR /app
5 |
6 | COPY ./ ./
7 | RUN go mod download
8 | RUN cp .env.sample .env
9 | RUN chmod 100 ./initdb.sh
10 | # RUN go build -o mvp ./entry/
11 |
12 | EXPOSE 8080
13 |
14 | CMD [ "go", "run", "./entry/main.go" ]
--------------------------------------------------------------------------------
/magic/magic_interface.go:
--------------------------------------------------------------------------------
1 | package magic
2 |
3 | import (
4 | mag "github.com/magiclabs/magic-admin-go"
5 | "github.com/magiclabs/magic-admin-go/token"
6 | )
7 |
8 | // Service is the interface to our magic service
9 | type Service interface {
10 | IsValidToken(string) (*token.Token, error)
11 | GetIssuer(*token.Token) (*mag.UserInfo, error)
12 | }
13 |
--------------------------------------------------------------------------------
/mock/auth.go:
--------------------------------------------------------------------------------
1 | package mock
2 |
3 | import (
4 | "github.com/alpacahq/ribbit-backend/model"
5 |
6 | "github.com/gin-gonic/gin"
7 | )
8 |
9 | // Auth mock
10 | type Auth struct {
11 | UserFn func(*gin.Context) *model.AuthUser
12 | }
13 |
14 | // User mock
15 | func (a *Auth) User(c *gin.Context) *model.AuthUser {
16 | return a.UserFn(c)
17 | }
18 |
--------------------------------------------------------------------------------
/model/reward.go:
--------------------------------------------------------------------------------
1 | package model
2 |
3 | func init() {
4 | Register(&Reward{})
5 | }
6 |
7 | type Reward struct {
8 | Base
9 | ID int `json:"id"`
10 | PerAccountLimit int `json:"per_account_limit"`
11 | ReferralKycReward float64 `json:"referral_kyc_reward"`
12 | ReferralSignupReward float64 `json:"referral_signup_reward"`
13 | ReferreKycReward float64 `json:"referre_Kyc_reward"`
14 | }
15 |
--------------------------------------------------------------------------------
/mockgopg/formatter.go:
--------------------------------------------------------------------------------
1 | package mockgopg
2 |
3 | import "github.com/go-pg/pg/v9/orm"
4 |
5 | // Formatter implements orm.Formatter
6 | type Formatter struct {
7 | }
8 |
9 | // FormatQuery formats our query and params to byte
10 | func (f *Formatter) FormatQuery(b []byte, query string, params ...interface{}) []byte {
11 | formatter := new(orm.Formatter)
12 | got := formatter.FormatQuery(b, query, params...)
13 | return got
14 | }
15 |
--------------------------------------------------------------------------------
/model/coins_transactions.go:
--------------------------------------------------------------------------------
1 | package model
2 |
3 | func init() {
4 | Register(&CoinStatement{})
5 | }
6 |
7 | // Verification stores randomly generated tokens that can be redeemed
8 | type CoinStatement struct {
9 | Base
10 | ID int `json:"id"`
11 | UserID int `json:"user_id"`
12 | Coins int `json:"coins"`
13 | Type string `json:"type"`
14 | Reason string `json:"reason"`
15 | Status bool `json:"status"`
16 | }
17 |
--------------------------------------------------------------------------------
/e2e/e2e.go:
--------------------------------------------------------------------------------
1 | package e2e
2 |
3 | import (
4 | "github.com/alpacahq/ribbit-backend/manager"
5 | "github.com/alpacahq/ribbit-backend/model"
6 | )
7 |
8 | // SetupDatabase creates the schema, populates it with data and returns with superadmin user
9 | func SetupDatabase(m *manager.Manager) (*model.User, error) {
10 | models := manager.GetModels()
11 | m.CreateSchema(models...)
12 | m.CreateRoles()
13 | return m.CreateSuperAdmin("superuser@example.org", "testpassword")
14 | }
15 |
--------------------------------------------------------------------------------
/entry/main.go:
--------------------------------------------------------------------------------
1 | package main
2 |
3 | import (
4 | "fmt"
5 |
6 | alpaca "github.com/alpacahq/ribbit-backend"
7 | )
8 |
9 | func main() {
10 | alpaca.New().
11 | WithRoutes(&MyServices{}).
12 | Run()
13 | }
14 |
15 | // MyServices implements github.com/alpacahq/ribbit-backend/route.ServicesI
16 | type MyServices struct{}
17 |
18 | // SetupRoutes is our implementation of custom routes
19 | func (s *MyServices) SetupRoutes() {
20 | fmt.Println("set up our custom routes!")
21 | }
22 |
--------------------------------------------------------------------------------
/repository/platform/query/query.go:
--------------------------------------------------------------------------------
1 | package query
2 |
3 | import (
4 | "net/http"
5 |
6 | "github.com/alpacahq/ribbit-backend/apperr"
7 | "github.com/alpacahq/ribbit-backend/model"
8 | )
9 |
10 | // List prepares data for list queries
11 | func List(u *model.AuthUser) (*model.ListQuery, error) {
12 | switch true {
13 | case int(u.Role) <= 2: // user is SuperAdmin or Admin
14 | return nil, nil
15 | default:
16 | return nil, apperr.New(http.StatusForbidden, "Forbidden")
17 | }
18 | }
19 |
--------------------------------------------------------------------------------
/.vscode/launch.json:
--------------------------------------------------------------------------------
1 | {
2 | // Use IntelliSense to learn about possible attributes.
3 | // Hover to view descriptions of existing attributes.
4 | // For more information, visit: https://go.microsoft.com/fwlink/?linkid=830387
5 | "version": "0.2.0",
6 | "configurations": [
7 | {
8 | "name": "Launch",
9 | "type": "go",
10 | "request": "launch",
11 | "mode": "auto",
12 | "program": "${fileDirname}",
13 | "env": {},
14 | "args": []
15 | }
16 | ]
17 | }
--------------------------------------------------------------------------------
/mail/mail_interface.go:
--------------------------------------------------------------------------------
1 | package mail
2 |
3 | import "github.com/alpacahq/ribbit-backend/model"
4 |
5 | // Service is the interface to access our Mail
6 | type Service interface {
7 | Send(subject string, toName string, toEmail string, content string, HTMLContent string) error
8 | SendWithDefaults(subject, toEmail, content string, HTMLContent string) error
9 | SendVerificationEmail(toEmail string, v *model.Verification) error
10 | SendForgotVerificationEmail(toEmail string, v *model.Verification) error
11 | }
12 |
--------------------------------------------------------------------------------
/manager/createschema.go:
--------------------------------------------------------------------------------
1 | package manager
2 |
3 | import (
4 | "log"
5 |
6 | "github.com/go-pg/pg/v9"
7 | "github.com/go-pg/pg/v9/orm"
8 | )
9 |
10 | // CreateSchema creates the tables for given models
11 | func CreateSchema(db *pg.DB, models ...interface{}) {
12 | for _, model := range models {
13 | opt := &orm.CreateTableOptions{
14 | IfNotExists: true,
15 | FKConstraints: true,
16 | }
17 | err := db.CreateTable(model, opt)
18 | if err != nil {
19 | log.Fatal(err)
20 | }
21 | }
22 | }
23 |
--------------------------------------------------------------------------------
/model/bank_account.go:
--------------------------------------------------------------------------------
1 | package model
2 |
3 | func init() {
4 | Register(&BankAccount{})
5 | }
6 |
7 | // Verification stores randomly generated tokens that can be redeemed
8 | type BankAccount struct {
9 | Base
10 | ID int `json:"id"`
11 | UserID int `json:"user_id"`
12 | AccessToken string `json:"access_token"`
13 | AccountID string `json:"account_id"`
14 | BankName string `json:"bank_name"`
15 | AccountName string `json:"account_name"`
16 | Status bool `json:"status"`
17 | }
18 |
--------------------------------------------------------------------------------
/mock/mobile.go:
--------------------------------------------------------------------------------
1 | package mock
2 |
3 | // Mobile mock
4 | type Mobile struct {
5 | GenerateSMSTokenFn func(string, string) error
6 | CheckCodeFn func(string, string, string) error
7 | }
8 |
9 | // GenerateSMSToken mock
10 | func (m *Mobile) GenerateSMSToken(countryCode, mobile string) error {
11 | return m.GenerateSMSTokenFn(countryCode, mobile)
12 | }
13 |
14 | // CheckCode mock
15 | func (m *Mobile) CheckCode(countryCode, mobile, code string) error {
16 | return m.CheckCodeFn(countryCode, mobile, code)
17 | }
18 |
--------------------------------------------------------------------------------
/mock/magic.go:
--------------------------------------------------------------------------------
1 | package mock
2 |
3 | import (
4 | mag "github.com/magiclabs/magic-admin-go"
5 | "github.com/magiclabs/magic-admin-go/token"
6 | )
7 |
8 | type Magic struct {
9 | IsValidtokenFn func(string) (*token.Token, error)
10 | GetIssuerFn func(*token.Token) (*mag.UserInfo, error)
11 | }
12 |
13 | func (m *Magic) IsValidToken(token string) (*token.Token, error) {
14 | return m.IsValidtokenFn(token)
15 | }
16 |
17 | func (m *Magic) GetIssuer(tok *token.Token) (*mag.UserInfo, error) {
18 | return m.GetIssuerFn(tok)
19 | }
20 |
--------------------------------------------------------------------------------
/model/user_reward.go:
--------------------------------------------------------------------------------
1 | package model
2 |
3 | func init() {
4 | Register(&UserReward{})
5 | }
6 |
7 | type UserReward struct {
8 | Base
9 | ID int `json:"id"`
10 | UserID int `json:"user_id"`
11 | JournalID string `json:"journal_id"`
12 | ReferredBy int `json:"referred_by"`
13 | RewardValue float32 `json:"reward_value"`
14 | RewardType string `json:"reward_type"`
15 | RewardTransferStatus bool `json:"reward_transfer_status"`
16 | ErrorResponse string `json:"error_response"`
17 | }
18 |
--------------------------------------------------------------------------------
/cmd/migrate_reset.go:
--------------------------------------------------------------------------------
1 | package cmd
2 |
3 | import (
4 | "fmt"
5 | "log"
6 |
7 | "github.com/alpacahq/ribbit-backend/migration"
8 |
9 | "github.com/spf13/cobra"
10 | )
11 |
12 | // resetCmd represents the reset command
13 | var resetCmd = &cobra.Command{
14 | Use: "reset",
15 | Short: "reset all migrations",
16 | Long: `reset all migrations`,
17 | Run: func(cmd *cobra.Command, args []string) {
18 | fmt.Println("reset called")
19 | err := migration.Run("reset")
20 | if err != nil {
21 | log.Fatal(err)
22 | }
23 | },
24 | }
25 |
26 | func init() {
27 | migrateCmd.AddCommand(resetCmd)
28 | }
29 |
--------------------------------------------------------------------------------
/cmd/migrate_down.go:
--------------------------------------------------------------------------------
1 | package cmd
2 |
3 | import (
4 | "fmt"
5 | "log"
6 |
7 | "github.com/alpacahq/ribbit-backend/migration"
8 |
9 | "github.com/spf13/cobra"
10 | )
11 |
12 | // downCmd represents the down command
13 | var downCmd = &cobra.Command{
14 | Use: "down",
15 | Short: "reverts the last migration",
16 | Long: `reverts the last migration`,
17 | Run: func(cmd *cobra.Command, args []string) {
18 | fmt.Println("down called")
19 | err := migration.Run("down")
20 | if err != nil {
21 | log.Fatal(err)
22 | }
23 | },
24 | }
25 |
26 | func init() {
27 | migrateCmd.AddCommand(downCmd)
28 | }
29 |
--------------------------------------------------------------------------------
/test.sh:
--------------------------------------------------------------------------------
1 | #!/usr/bin/env bash
2 |
3 | case "$1" in
4 | -s | --short)
5 | case "$2" in
6 | -c | --coverage) echo "Run only unit tests (with coverage)"
7 | go test -v -coverprofile c.out -short ./...
8 | go tool cover -html=c.out
9 | ;;
10 | *) echo "Run only unit tests"
11 | go test -v -short ./...
12 | ;;
13 | esac
14 | ;;
15 | -i | --integration) echo "Run only integration tests"
16 | go test -v -run Integration ./...
17 | ;;
18 | *) echo "Run all tests (with coverage)"
19 | go test -coverprofile c.out ./...
20 | go tool cover -html=c.out
21 | ;;
22 | esac
--------------------------------------------------------------------------------
/cmd/generate_secret.go:
--------------------------------------------------------------------------------
1 | package cmd
2 |
3 | import (
4 | "fmt"
5 | "log"
6 |
7 | "github.com/alpacahq/ribbit-backend/secret"
8 |
9 | "github.com/spf13/cobra"
10 | )
11 |
12 | // createCmd represents the migrate command
13 | var generateSecretCmd = &cobra.Command{
14 | Use: "generate_secret",
15 | Short: "generate_secret",
16 | Long: `generate_secret`,
17 | Run: func(cmd *cobra.Command, args []string) {
18 | s, err := secret.GenerateRandomString(256)
19 | if err != nil {
20 | log.Fatal(err)
21 | }
22 | fmt.Printf("\nJWT_SECRET=%s\n\n", s)
23 | },
24 | }
25 |
26 | func init() {
27 | rootCmd.AddCommand(generateSecretCmd)
28 | }
29 |
--------------------------------------------------------------------------------
/cmd/migrate_version.go:
--------------------------------------------------------------------------------
1 | package cmd
2 |
3 | import (
4 | "fmt"
5 | "log"
6 |
7 | "github.com/alpacahq/ribbit-backend/migration"
8 |
9 | "github.com/spf13/cobra"
10 | )
11 |
12 | // versionCmd represents the version command
13 | var versionCmd = &cobra.Command{
14 | Use: "version",
15 | Short: "version prints current db version",
16 | Long: `version prints current db version`,
17 | Run: func(cmd *cobra.Command, args []string) {
18 | fmt.Println("version called")
19 | err := migration.Run("version")
20 | if err != nil {
21 | log.Fatal(err)
22 | }
23 | },
24 | }
25 |
26 | func init() {
27 | migrateCmd.AddCommand(versionCmd)
28 | }
29 |
--------------------------------------------------------------------------------
/cmd/migrate_init.go:
--------------------------------------------------------------------------------
1 | package cmd
2 |
3 | import (
4 | "fmt"
5 | "log"
6 |
7 | "github.com/alpacahq/ribbit-backend/migration"
8 |
9 | "github.com/spf13/cobra"
10 | )
11 |
12 | // initCmd represents the init command
13 | var initCmd = &cobra.Command{
14 | Use: "init",
15 | Short: "init creates version info table in the database",
16 | Long: `init creates version info table in the database`,
17 | Run: func(cmd *cobra.Command, args []string) {
18 | fmt.Println("init called")
19 | err := migration.Run("init")
20 | if err != nil {
21 | log.Fatal(err)
22 | }
23 | },
24 | }
25 |
26 | func init() {
27 | migrateCmd.AddCommand(initCmd)
28 | }
29 |
--------------------------------------------------------------------------------
/public/MA.svg:
--------------------------------------------------------------------------------
1 |
2 |
3 |
7 |
8 |
--------------------------------------------------------------------------------
/cmd/create_schema.go:
--------------------------------------------------------------------------------
1 | package cmd
2 |
3 | import (
4 | "fmt"
5 |
6 | "github.com/alpacahq/ribbit-backend/config"
7 | "github.com/alpacahq/ribbit-backend/manager"
8 | "github.com/alpacahq/ribbit-backend/repository"
9 | "github.com/alpacahq/ribbit-backend/secret"
10 |
11 | "github.com/spf13/cobra"
12 | "go.uber.org/zap"
13 | )
14 |
15 | // createschemaCmd represents the createschema command
16 | var createSchemaCmd = &cobra.Command{
17 | Use: "create_schema",
18 | Short: "create_schema creates the initial database schema for the existing database",
19 | Long: `create_schema creates the initial database schema for the existing database`,
20 | Run: func(cmd *cobra.Command, args []string) {
21 | fmt.Println("createschema called")
22 |
23 | db := config.GetConnection()
24 | log, _ := zap.NewDevelopment()
25 | defer log.Sync()
26 | accountRepo := repository.NewAccountRepo(db, log, secret.New())
27 | roleRepo := repository.NewRoleRepo(db, log)
28 |
29 | m := manager.NewManager(accountRepo, roleRepo, db)
30 | models := manager.GetModels()
31 | m.CreateSchema(models...)
32 | m.CreateRoles()
33 | },
34 | }
35 |
36 | func init() {
37 | rootCmd.AddCommand(createSchemaCmd)
38 | }
39 |
--------------------------------------------------------------------------------
/public/NFLX.svg:
--------------------------------------------------------------------------------
1 |
2 |
3 |
6 |
7 |
--------------------------------------------------------------------------------
/config/config.go:
--------------------------------------------------------------------------------
1 | package config
2 |
3 | import (
4 | "log"
5 | "path/filepath"
6 | "runtime"
7 |
8 | "github.com/gin-gonic/gin"
9 | "github.com/spf13/viper"
10 | )
11 |
12 | // Load returns Configuration struct
13 | func Load(env string) *Configuration {
14 | _, filePath, _, _ := runtime.Caller(0)
15 | configName := "config." + env + ".yaml"
16 | configPath := filePath[:len(filePath)-9] + "files" + string(filepath.Separator)
17 |
18 | viper.SetConfigName(configName)
19 | viper.AddConfigPath(configPath)
20 | viper.SetConfigType("yaml")
21 |
22 | err := viper.ReadInConfig()
23 | if err != nil {
24 | log.Fatal(err)
25 | }
26 |
27 | var config Configuration
28 | viper.Unmarshal(&config)
29 | setGinMode(config.Server.Mode)
30 |
31 | return &config
32 | }
33 |
34 | // Configuration holds data necessery for configuring application
35 | type Configuration struct {
36 | Server *Server `yaml:"server"`
37 | }
38 |
39 | // Server holds data necessary for server configuration
40 | type Server struct {
41 | Mode string `yaml:"mode"`
42 | }
43 |
44 | func setGinMode(mode string) {
45 | switch mode {
46 | case "release":
47 | gin.SetMode(gin.ReleaseMode)
48 | break
49 | case "test":
50 | gin.SetMode(gin.TestMode)
51 | break
52 | default:
53 | gin.SetMode(gin.DebugMode)
54 | }
55 | }
56 |
--------------------------------------------------------------------------------
/repository/platform/structs/structs.go:
--------------------------------------------------------------------------------
1 | package structs
2 |
3 | import "reflect"
4 |
5 | // Merge receives two structs, and merges them excluding fields with tag name: `structs`, value "-"
6 | func Merge(dst, src interface{}) {
7 | s := reflect.ValueOf(src)
8 | d := reflect.ValueOf(dst)
9 | if s.Kind() != reflect.Ptr || d.Kind() != reflect.Ptr {
10 | return
11 | }
12 | for i := 0; i < s.Elem().NumField(); i++ {
13 | v := s.Elem().Field(i)
14 | fieldName := s.Elem().Type().Field(i).Name
15 | skip := s.Elem().Type().Field(i).Tag.Get("structs")
16 | if skip == "-" {
17 | continue
18 | }
19 | if v.Kind() > reflect.Float64 &&
20 | v.Kind() != reflect.String &&
21 | v.Kind() != reflect.Struct &&
22 | v.Kind() != reflect.Ptr &&
23 | v.Kind() != reflect.Slice {
24 | continue
25 | }
26 | if v.Kind() == reflect.Ptr {
27 | // Field is pointer check if it's nil or set
28 | if !v.IsNil() {
29 | // Field is set assign it to dest
30 |
31 | if d.Elem().FieldByName(fieldName).Kind() == reflect.Ptr {
32 | d.Elem().FieldByName(fieldName).Set(v)
33 | continue
34 | }
35 | f := d.Elem().FieldByName(fieldName)
36 | if f.IsValid() {
37 | f.Set(v.Elem())
38 | }
39 | }
40 | continue
41 | }
42 | d.Elem().FieldByName(fieldName).Set(v)
43 | }
44 | }
45 |
--------------------------------------------------------------------------------
/repository/assets/assets.go:
--------------------------------------------------------------------------------
1 | package assets
2 |
3 | import (
4 | "fmt"
5 |
6 | "github.com/alpacahq/ribbit-backend/model"
7 | "github.com/go-pg/pg/v9/orm"
8 | "go.uber.org/zap"
9 |
10 | "github.com/joho/godotenv"
11 | )
12 |
13 | func init() {
14 | err := godotenv.Load()
15 |
16 | if err != nil {
17 | panic(fmt.Errorf("unexpected error while initializing plaid client %w", err))
18 | }
19 | }
20 |
21 | // NewAuthService creates new auth service
22 | func NewAssetsService(userRepo model.UserRepo, accountRepo model.AccountRepo, assetRepo model.AssetsRepo, jwt JWT, db orm.DB, log *zap.Logger) *Service {
23 | return &Service{userRepo, assetRepo, accountRepo, jwt, db, log}
24 | }
25 |
26 | // Service represents the auth application service
27 | type Service struct {
28 | userRepo model.UserRepo
29 | assetRepo model.AssetsRepo
30 | accountRepo model.AccountRepo
31 | jwt JWT
32 | db orm.DB
33 | log *zap.Logger
34 | }
35 |
36 | // JWT represents jwt interface
37 | type JWT interface {
38 | GenerateToken(*model.User) (string, string, error)
39 | }
40 |
41 | // SearchAssets changes user's avatar
42 | func (a *Service) SearchAssets(query string) ([]model.Asset, error) {
43 | assets, err := a.assetRepo.Search(query)
44 | if err != nil {
45 | return nil, err
46 | }
47 | return assets, nil
48 | }
49 |
--------------------------------------------------------------------------------
/templates/terms_conditions_old.html:
--------------------------------------------------------------------------------
1 |
2 |
3 |
4 | Page Title
5 |
6 |
7 |
22 | This following sets out the terms and conditions on which you may use the content on business-standard.com website, business-standard.com's mobile browser site, Business Standard instore Applications and other digital publishing services (www.smartinvestor.in, www.bshindi.com and www.bsmotoring,com) owned by Business Standard Private Limited, all the services herein will be referred to as Business Standard Content Services)
23 |
24 | Registration Access and Use We welcome users to register on our digital platforms. We offer the below mentioned registration services which may be subject to change in the future. All changes will be appended in the terms and conditions page and communicated to existing users by email.
25 |
26 |
27 |
28 |
29 |
--------------------------------------------------------------------------------
/public/assets/img/failed_approval.svg:
--------------------------------------------------------------------------------
1 |
2 |
3 |
6 |
7 |
--------------------------------------------------------------------------------
/go.mod:
--------------------------------------------------------------------------------
1 | module github.com/alpacahq/ribbit-backend
2 |
3 | go 1.13
4 |
5 | require (
6 | github.com/alecthomas/template v0.0.0-20190718012654-fb15b899a751
7 | github.com/bradfitz/slice v0.0.0-20180809154707-2b758aa73013
8 | github.com/caarlos0/env/v6 v6.5.0
9 | github.com/dgrijalva/jwt-go v3.2.0+incompatible
10 | github.com/fergusstrange/embedded-postgres v1.4.0
11 | github.com/gertd/go-pluralize v0.1.7
12 | github.com/gin-contrib/cors v1.3.1
13 | github.com/gin-gonic/gin v1.7.0
14 | github.com/go-pg/migrations/v7 v7.1.11
15 | github.com/go-pg/pg/v9 v9.2.0
16 | github.com/joho/godotenv v1.3.0
17 | github.com/lithammer/shortuuid/v3 v3.0.6
18 | github.com/magiclabs/magic-admin-go v0.1.0
19 | github.com/mcuadros/go-defaults v1.2.0
20 | github.com/mitchellh/go-homedir v1.1.0
21 | github.com/plaid/plaid-go v0.0.0-20210216195344-700b8cfc627d
22 | github.com/rs/xid v1.2.1
23 | github.com/satori/go.uuid v1.2.0
24 | github.com/sendgrid/rest v2.4.1+incompatible // indirect
25 | github.com/sendgrid/sendgrid-go v3.8.0+incompatible
26 | github.com/spf13/cobra v1.1.3
27 | github.com/spf13/viper v1.7.1
28 | github.com/stretchr/testify v1.7.0
29 | github.com/swaggo/gin-swagger v1.3.0
30 | github.com/swaggo/swag v1.7.0
31 | go.uber.org/zap v1.16.0
32 | go4.org v0.0.0-20201209231011-d4a079459e60 // indirect
33 | golang.org/x/crypto v0.0.0-20200820211705-5c72a883971a
34 | gopkg.in/go-playground/validator.v8 v8.18.2
35 | )
36 |
--------------------------------------------------------------------------------
/model/model.go:
--------------------------------------------------------------------------------
1 | package model
2 |
3 | import (
4 | "context"
5 | "time"
6 | )
7 |
8 | // Models hold registered models in-memory
9 | var Models []interface{}
10 |
11 | // Base contains common fields for all tables
12 | type Base struct {
13 | CreatedAt time.Time `json:"created_at"`
14 | UpdatedAt time.Time `json:"updated_at"`
15 | DeletedAt *time.Time `json:"deleted_at,omitempty"`
16 | }
17 |
18 | // Pagination holds pagination's data
19 | type Pagination struct {
20 | Limit int
21 | Offset int
22 | }
23 |
24 | // ListQuery holds company/location data used for list db queries
25 | type ListQuery struct {
26 | Query string
27 | ID int
28 | }
29 |
30 | // BeforeInsert hooks into insert operations, setting createdAt and updatedAt to current time
31 | func (b *Base) BeforeInsert(ctx context.Context) (context.Context, error) {
32 | now := time.Now()
33 | if b.CreatedAt.IsZero() {
34 | b.CreatedAt = now
35 | }
36 | if b.UpdatedAt.IsZero() {
37 | b.UpdatedAt = now
38 | }
39 | return ctx, nil
40 | }
41 |
42 | // BeforeUpdate hooks into update operations, setting updatedAt to current time
43 | func (b *Base) BeforeUpdate(ctx context.Context) (context.Context, error) {
44 | b.UpdatedAt = time.Now()
45 | return ctx, nil
46 | }
47 |
48 | // Delete sets deleted_at time to current_time
49 | func (b *Base) Delete() {
50 | t := time.Now()
51 | b.DeletedAt = &t
52 | }
53 |
54 | // Register is used for registering models
55 | func Register(m interface{}) {
56 | Models = append(Models, m)
57 | }
58 |
--------------------------------------------------------------------------------
/public/assets/img/welcome_page.svg:
--------------------------------------------------------------------------------
1 |
2 |
3 |
7 |
8 |
--------------------------------------------------------------------------------
/public/assets/img/submitted_application.svg:
--------------------------------------------------------------------------------
1 |
2 |
3 |
6 |
7 |
--------------------------------------------------------------------------------
/mock/mock.go:
--------------------------------------------------------------------------------
1 | package mock
2 |
3 | import (
4 | "net/http/httptest"
5 | "time"
6 |
7 | "github.com/gin-gonic/gin"
8 | )
9 |
10 | // TestTime is used for testing time fields
11 | func TestTime(year int) time.Time {
12 | return time.Date(year, time.May, 19, 1, 2, 3, 4, time.UTC)
13 | }
14 |
15 | // TestTimePtr is used for testing pointer time fields
16 | func TestTimePtr(year int) *time.Time {
17 | t := time.Date(year, time.May, 19, 1, 2, 3, 4, time.UTC)
18 | return &t
19 | }
20 |
21 | // Str2Ptr converts string to pointer
22 | func Str2Ptr(s string) *string {
23 | return &s
24 | }
25 |
26 | // GinCtxWithKeys returns new gin context with keys
27 | func GinCtxWithKeys(keys []string, values ...interface{}) *gin.Context {
28 | w := httptest.NewRecorder()
29 | gin.SetMode(gin.TestMode)
30 | c, _ := gin.CreateTestContext(w)
31 | for i, k := range keys {
32 | c.Set(k, values[i])
33 | }
34 | return c
35 | }
36 |
37 | // HeaderValid is used for jwt testing
38 | func HeaderValid() string {
39 | return "Bearer eyJhbGciOiJIUzI1NiIsInR5cCI6IkpXVCJ9.eyJpZCI6MSwidSI6ImpvaG5kb2UiLCJlIjoiam9obmRvZUBtYWlsLmNvbSIsInIiOjEsImMiOjEsImwiOjEsImV4cCI6NDEwOTMyMDg5NCwiaWF0IjoxNTE2MjM5MDIyfQ.8Fa8mhshx3tiQVzS5FoUXte5lHHC4cvaa_tzvcel38I"
40 | }
41 |
42 | // HeaderInvalid is used for jwt testing
43 | func HeaderInvalid() string {
44 | return "Bearer eyJhbGciOiJIUzM4NCIsInR5cCI6IkpXVCJ9.eyJpZCI6MSwidSI6ImpvaG5kb2UiLCJlIjoiam9obmRvZUBtYWlsLmNvbSIsInIiOjEsImMiOjEsImwiOjEsImV4cCI6NDEwOTMyMDg5NCwiaWF0IjoxNTE2MjM5MDIyfQ.7uPfVeZBkkyhICZSEINZfPo7ZsaY0NNeg0ebEGHuAvNjFvoKNn8dWYTKaZrqE1X4"
45 | }
46 |
--------------------------------------------------------------------------------
/e2e/mobile_i_test.go:
--------------------------------------------------------------------------------
1 | package e2e_test
2 |
3 | import (
4 | "bytes"
5 | "encoding/json"
6 | "fmt"
7 | "log"
8 | "net/http"
9 | "net/http/httptest"
10 |
11 | "github.com/alpacahq/ribbit-backend/request"
12 |
13 | "github.com/stretchr/testify/assert"
14 | )
15 |
16 | func (suite *E2ETestSuite) TestSignupMobile() {
17 | t := suite.T()
18 | ts := httptest.NewServer(suite.r)
19 | defer ts.Close()
20 |
21 | urlSignupMobile := ts.URL + "/mobile"
22 |
23 | req := &request.MobileSignup{
24 | CountryCode: "+65",
25 | Mobile: "91919191",
26 | }
27 | b, err := json.Marshal(req)
28 | if err != nil {
29 | log.Fatal(err)
30 | }
31 | resp, err := http.Post(urlSignupMobile, "application/json", bytes.NewBuffer(b))
32 | if err != nil {
33 | log.Fatal(err)
34 | }
35 | defer resp.Body.Close()
36 |
37 | assert.Equal(t, http.StatusCreated, resp.StatusCode)
38 | assert.Nil(t, err)
39 |
40 | // the sms code will be separately sms-ed to user's mobile phone, trigger above
41 | // we now test against the /mobile/verify
42 |
43 | url := ts.URL + "/mobile/verify"
44 | req2 := &request.MobileVerify{
45 | CountryCode: "+65",
46 | Mobile: "91919191",
47 | Code: "123456",
48 | Signup: true,
49 | }
50 | b, err = json.Marshal(req2)
51 | if err != nil {
52 | log.Fatal(err)
53 | }
54 | resp, err = http.Post(url, "application/json", bytes.NewBuffer(b))
55 | if err != nil {
56 | log.Fatal(err)
57 | }
58 | defer resp.Body.Close()
59 |
60 | fmt.Println("Verify Code")
61 | assert.Equal(t, http.StatusOK, resp.StatusCode)
62 | assert.Nil(t, err)
63 | }
64 |
--------------------------------------------------------------------------------
/request/bank_account.go:
--------------------------------------------------------------------------------
1 | package request
2 |
3 | import (
4 | "net/http"
5 | "strconv"
6 |
7 | "github.com/alpacahq/ribbit-backend/apperr"
8 |
9 | "github.com/gin-gonic/gin"
10 | )
11 |
12 | // Credentials stores the username and password provided in the request
13 | type SetAccessToken struct {
14 | PublicToken string `json:"public_token" binding:"required"`
15 | AccountID string `json:"account_id" binding:"required"`
16 | }
17 |
18 | // Login parses out the username and password in gin's request context, into Credentials
19 | func SetAccessTokenbody(c *gin.Context) (*SetAccessToken, error) {
20 | data := new(SetAccessToken)
21 | if err := c.ShouldBindJSON(data); err != nil {
22 | apperr.Response(c, err)
23 | return nil, err
24 | }
25 | return data, nil
26 | }
27 |
28 | // Credentials stores the username and password provided in the request
29 | type Charge struct {
30 | Amount string `json:"amount" binding:"required"`
31 | AccountID string `json:"account_id" binding:"required"`
32 | }
33 |
34 | // Login parses out the username and password in gin's request context, into Credentials
35 | func ChargeBody(c *gin.Context) (*Charge, error) {
36 | data := new(Charge)
37 | if err := c.ShouldBindJSON(data); err != nil {
38 | apperr.Response(c, err)
39 | return nil, err
40 | }
41 | return data, nil
42 | }
43 |
44 | func AccountID(c *gin.Context) (int, error) {
45 | id, err := strconv.Atoi(c.Param("account_id"))
46 | if err != nil {
47 | c.AbortWithStatus(http.StatusBadRequest)
48 | return 0, apperr.New(http.StatusBadRequest, "Account ID isn't valid")
49 | }
50 | return id, nil
51 | }
52 |
--------------------------------------------------------------------------------
/repository/rbac.go:
--------------------------------------------------------------------------------
1 | package repository
2 |
3 | import (
4 | "github.com/alpacahq/ribbit-backend/model"
5 |
6 | "github.com/gin-gonic/gin"
7 | )
8 |
9 | // NewRBACService creates new RBAC service
10 | func NewRBACService(userRepo model.UserRepo) *RBACService {
11 | return &RBACService{
12 | userRepo: userRepo,
13 | }
14 | }
15 |
16 | // RBACService is RBAC application service
17 | type RBACService struct {
18 | userRepo model.UserRepo
19 | }
20 |
21 | // EnforceRole authorizes request by AccessRole
22 | func (s *RBACService) EnforceRole(c *gin.Context, r model.AccessRole) bool {
23 | return !(c.MustGet("role").(int8) > int8(r))
24 | }
25 |
26 | // EnforceUser checks whether the request to change user data is done by the same user
27 | func (s *RBACService) EnforceUser(c *gin.Context, ID int) bool {
28 | // TODO: Implement querying db and checking the requested user's company_id/location_id
29 | // to allow company/location admins to view the user
30 | return (c.GetInt("id") == ID) || s.isAdmin(c)
31 | }
32 |
33 | func (s *RBACService) isAdmin(c *gin.Context) bool {
34 | return !(c.MustGet("role").(int8) > int8(model.AdminRole))
35 | }
36 |
37 | // AccountCreate performs auth check when creating a new account
38 | // Location admin cannot create accounts, needs to be fixed on EnforceLocation function
39 | func (s *RBACService) AccountCreate(c *gin.Context, roleID int) bool {
40 | roleCheck := s.EnforceRole(c, model.AccessRole(roleID))
41 | return roleCheck && s.IsLowerRole(c, model.AccessRole(roleID))
42 | }
43 |
44 | // IsLowerRole checks whether the requesting user has higher role than the user it wants to change
45 | // Used for account creation/deletion
46 | func (s *RBACService) IsLowerRole(c *gin.Context, r model.AccessRole) bool {
47 | return !(c.MustGet("role").(int8) >= int8(r))
48 | }
49 |
--------------------------------------------------------------------------------
/secret/cryptorandom.go:
--------------------------------------------------------------------------------
1 | package secret
2 |
3 | import (
4 | "crypto/rand"
5 | "encoding/base64"
6 | )
7 |
8 | // GenerateRandomBytes returns securely generated random bytes.
9 | // It will return an error if the system's secure random
10 | // number generator fails to function correctly, in which
11 | // case the caller should not continue.
12 | func GenerateRandomBytes(n int) ([]byte, error) {
13 | b := make([]byte, n)
14 | _, err := rand.Read(b)
15 | // Note that err == nil only if we read len(b) bytes.
16 | if err != nil {
17 | return nil, err
18 | }
19 |
20 | return b, nil
21 | }
22 |
23 | // GenerateRandomString returns a securely generated random string.
24 | // It will return an error if the system's secure random
25 | // number generator fails to function correctly, in which
26 | // case the caller should not continue.
27 | // Example: this will give us a 32 byte output
28 | // token, err = GenerateRandomString(32)
29 | func GenerateRandomString(n int) (string, error) {
30 | const letters = "0123456789ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz-"
31 | bytes, err := GenerateRandomBytes(n)
32 | if err != nil {
33 | return "", err
34 | }
35 | for i, b := range bytes {
36 | bytes[i] = letters[b%byte(len(letters))]
37 | }
38 | return string(bytes), nil
39 | }
40 |
41 | // GenerateRandomStringURLSafe returns a URL-safe, base64 encoded
42 | // securely generated random string.
43 | // It will return an error if the system's secure random
44 | // number generator fails to function correctly, in which
45 | // case the caller should not continue.
46 | // Example: this will give us a 44 byte, base64 encoded output
47 | // token, err := GenerateRandomStringURLSafe(32)
48 | func GenerateRandomStringURLSafe(n int) (string, error) {
49 | b, err := GenerateRandomBytes(n)
50 | return base64.URLEncoding.EncodeToString(b), err
51 | }
52 |
--------------------------------------------------------------------------------
/config/jwt.go:
--------------------------------------------------------------------------------
1 | package config
2 |
3 | import (
4 | "fmt"
5 | "io/ioutil"
6 | "log"
7 | "path"
8 | "path/filepath"
9 | "runtime"
10 | "strings"
11 |
12 | "github.com/alpacahq/ribbit-backend/secret"
13 |
14 | "github.com/joho/godotenv"
15 | "github.com/mcuadros/go-defaults"
16 | "github.com/spf13/viper"
17 | )
18 |
19 | // LoadJWT returns our JWT with env variables and relevant defaults
20 | func LoadJWT(env string) *JWT {
21 | jwt := new(JWT)
22 | defaults.SetDefaults(jwt)
23 |
24 | _, b, _, _ := runtime.Caller(0)
25 | d := path.Join(path.Dir(b))
26 | projectRoot := filepath.Dir(d)
27 | suffix := ""
28 | if env != "" {
29 | suffix = suffix + "." + env
30 | }
31 | dotenvPath := path.Join(projectRoot, ".env"+suffix)
32 | _ = godotenv.Load(dotenvPath)
33 |
34 | viper.AutomaticEnv()
35 |
36 | jwt.Secret = viper.GetString("JWT_SECRET")
37 | if jwt.Secret == "" {
38 | if strings.HasPrefix(env, "test") {
39 | // generate jwt secret and write into file
40 | s, err := secret.GenerateRandomString(256)
41 | if err != nil {
42 | log.Fatal(err)
43 | }
44 | jwtString := fmt.Sprintf("JWT_SECRET=%s\n", s)
45 | err = ioutil.WriteFile(dotenvPath, []byte(jwtString), 0644)
46 | if err != nil {
47 | log.Fatal(err)
48 | }
49 | } else {
50 | log.Fatalf("Failed to set your environment variable JWT_SECRET. \n" +
51 | "Please do so via \n" +
52 | "go run . generate_secret\n" +
53 | "export JWT_SECRET=[the generated secret]")
54 | }
55 | }
56 |
57 | return jwt
58 | }
59 |
60 | // JWT holds data necessary for JWT configuration
61 | type JWT struct {
62 | Realm string `default:"jwtrealm"`
63 | Secret string `default:""`
64 | Duration int `default:"15"`
65 | RefreshDuration int `default:"10"`
66 | MaxRefresh int `default:"10"`
67 | SigningAlgorithm string `default:"HS256"`
68 | }
69 |
--------------------------------------------------------------------------------
/request/auth.go:
--------------------------------------------------------------------------------
1 | package request
2 |
3 | import (
4 | "github.com/alpacahq/ribbit-backend/apperr"
5 |
6 | "github.com/gin-gonic/gin"
7 | )
8 |
9 | // Credentials stores the username and password provided in the request
10 | type Credentials struct {
11 | Email string `json:"email" binding:"required"`
12 | Password string `json:"password" binding:"required"`
13 | }
14 |
15 | // Login parses out the username and password in gin's request context, into Credentials
16 | func Login(c *gin.Context) (*Credentials, error) {
17 | cred := new(Credentials)
18 | if err := c.ShouldBindJSON(cred); err != nil {
19 | apperr.Response(c, err)
20 | return nil, err
21 | }
22 | return cred, nil
23 | }
24 |
25 | // ForgotPayload stores the email provided in the request
26 | type ForgotPayload struct {
27 | Email string `json:"email" binding:"required"`
28 | }
29 |
30 | // Forgot parses out the email in gin's request context, into ForgotPayload
31 | func Forgot(c *gin.Context) (*ForgotPayload, error) {
32 | fgt := new(ForgotPayload)
33 | if err := c.ShouldBindJSON(fgt); err != nil {
34 | apperr.Response(c, err)
35 | return nil, err
36 | }
37 | return fgt, nil
38 | }
39 |
40 | // RecoverPasswordPayload stores the data provided in the request
41 | type RecoverPasswordPayload struct {
42 | Email string `json:"email" binding:"required"`
43 | OTP string `json:"otp" binding:"required"`
44 | Password string `json:"password" binding:"required"`
45 | ConfirmPassword string `json:"confrim_password" binding:"required"`
46 | }
47 |
48 | // RecoverPassword parses out the data in gin's request context, into RecoverPasswordPayload
49 | func RecoverPassword(c *gin.Context) (*RecoverPasswordPayload, error) {
50 | rpp := new(RecoverPasswordPayload)
51 | if err := c.ShouldBindJSON(rpp); err != nil {
52 | apperr.Response(c, err)
53 | return nil, err
54 | }
55 | return rpp, nil
56 | }
57 |
--------------------------------------------------------------------------------
/.gitignore:
--------------------------------------------------------------------------------
1 |
2 | # Created by https://www.gitignore.io/api/go
3 | # Edit at https://www.gitignore.io/?templates=go
4 |
5 | ### Go ###
6 | # Binaries for programs and plugins
7 | *.exe
8 | *.exe~
9 | *.dll
10 | *.so
11 | *.dylib
12 |
13 | # Test binary, built with `go test -c`
14 | *.test
15 |
16 | # Output of the go coverage tool, specifically when used with LiteIDE
17 | *.out
18 |
19 | # Dependency directories (remove the comment below to include it)
20 | # vendor/
21 |
22 | ### Go Patch ###
23 | /vendor/
24 | /Godeps/
25 |
26 | # End of https://www.gitignore.io/api/go
27 |
28 | gin-go-pg
29 | cc-test-reporter
30 | .env*
31 | !.env.sample
32 | bin
33 | # Created by https://www.gitignore.io/api/visualstudiocode
34 | # Edit at https://www.gitignore.io/?templates=visualstudiocode
35 |
36 | ### VisualStudioCode ###
37 | .vscode/*
38 | !.vscode/settings.json
39 | !.vscode/tasks.json
40 | !.vscode/launch.json
41 | !.vscode/extensions.json
42 |
43 | ### VisualStudioCode Patch ###
44 | # Ignore all local history of files
45 | .history
46 |
47 | # End of https://www.gitignore.io/api/visualstudiocode
48 |
49 | # Created by https://www.gitignore.io/api/macos
50 | # Edit at https://www.gitignore.io/?templates=macos
51 |
52 | ### macOS ###
53 | # General
54 | .DS_Store
55 | .AppleDouble
56 | .LSOverride
57 |
58 | # Icon must end with two \r
59 | Icon
60 |
61 | # Thumbnails
62 | ._*
63 |
64 | # Files that might appear in the root of a volume
65 | .DocumentRevisions-V100
66 | .fseventsd
67 | .Spotlight-V100
68 | .TemporaryItems
69 | .Trashes
70 | .VolumeIcon.icns
71 | .com.apple.timemachine.donotpresent
72 |
73 | # Directories potentially created on remote AFP share
74 | .AppleDB
75 | .AppleDesktop
76 | Network Trash Folder
77 | Temporary Items
78 | .apdisk
79 |
80 | # End of https://www.gitignore.io/api/macos
81 |
82 | tmp
83 | tmp2
84 | private_key.pem
85 | public_key.pem
86 | ribbit-public.com.pem
87 | ribbit.com.pem
88 |
--------------------------------------------------------------------------------
/e2e/signupemail_i_test.go:
--------------------------------------------------------------------------------
1 | package e2e_test
2 |
3 | import (
4 | "bytes"
5 | "encoding/json"
6 | "fmt"
7 | "io/ioutil"
8 | "log"
9 | "net/http"
10 | "net/http/httptest"
11 |
12 | "github.com/alpacahq/ribbit-backend/request"
13 |
14 | "github.com/stretchr/testify/assert"
15 | )
16 |
17 | func (suite *E2ETestSuite) TestSignupEmail() {
18 |
19 | t := suite.T()
20 |
21 | ts := httptest.NewServer(suite.r)
22 | defer ts.Close()
23 |
24 | urlSignup := ts.URL + "/signup"
25 |
26 | req := &request.EmailSignup{
27 | Email: "user@example.org",
28 | Password: "userpassword1",
29 | }
30 | b, err := json.Marshal(req)
31 | if err != nil {
32 | log.Fatal(err)
33 | }
34 |
35 | resp, err := http.Post(urlSignup, "application/json", bytes.NewBuffer(b))
36 | if err != nil {
37 | log.Fatal(err)
38 | }
39 | defer resp.Body.Close()
40 |
41 | assert.Equal(t, http.StatusCreated, resp.StatusCode)
42 |
43 | body, err := ioutil.ReadAll(resp.Body)
44 | if err != nil {
45 | log.Fatal(err)
46 | }
47 | fmt.Println(string(body))
48 |
49 | assert.Nil(t, err)
50 | }
51 |
52 | func (suite *E2ETestSuite) TestVerification() {
53 | t := suite.T()
54 | v := suite.v
55 | // verify that we can retrieve our test verification token
56 | assert.NotNil(t, v)
57 |
58 | ts := httptest.NewServer(suite.r)
59 | defer ts.Close()
60 |
61 | url := ts.URL + "/verification/" + v.Token
62 | fmt.Println("This is our verification url", url)
63 |
64 | resp, err := http.Get(url)
65 | if err != nil {
66 | log.Fatal(err)
67 | }
68 | defer resp.Body.Close()
69 | assert.Equal(t, http.StatusOK, resp.StatusCode)
70 |
71 | body, err := ioutil.ReadAll(resp.Body)
72 | if err != nil {
73 | log.Fatal(err)
74 | }
75 | fmt.Println(string(body))
76 | assert.Nil(t, err)
77 |
78 | // The second time we call our verification url, it should return not found
79 | resp, err = http.Get(url)
80 | assert.Equal(t, http.StatusNotFound, resp.StatusCode)
81 | assert.Nil(t, err)
82 | }
83 |
--------------------------------------------------------------------------------
/cmd/create_superadmin.go:
--------------------------------------------------------------------------------
1 | package cmd
2 |
3 | import (
4 | "fmt"
5 | "regexp"
6 |
7 | "github.com/alpacahq/ribbit-backend/config"
8 | "github.com/alpacahq/ribbit-backend/manager"
9 | "github.com/alpacahq/ribbit-backend/repository"
10 | "github.com/alpacahq/ribbit-backend/secret"
11 |
12 | "github.com/spf13/cobra"
13 | "go.uber.org/zap"
14 | )
15 |
16 | var email string
17 | var password string
18 | var createSuperAdminCmd = &cobra.Command{
19 | Use: "create_superadmin",
20 | Short: "create_superadmin creates a superadmin user that has access to manage all other users in the system",
21 | Long: `create_superadmin creates a superadmin user that has access to manage all other users in the system`,
22 | Run: func(cmd *cobra.Command, args []string) {
23 | fmt.Println("create_superadmin called")
24 |
25 | email, _ = cmd.Flags().GetString("email")
26 | fmt.Println(email)
27 | if !validateEmail(email) {
28 | fmt.Println("Invalid email provided; superadmin user not created")
29 | return
30 | }
31 |
32 | password, _ = cmd.Flags().GetString("password")
33 | if password == "" {
34 | password, _ = secret.GenerateRandomString(16)
35 | }
36 |
37 | db := config.GetConnection()
38 | log, _ := zap.NewDevelopment()
39 | defer log.Sync()
40 | accountRepo := repository.NewAccountRepo(db, log, secret.New())
41 | roleRepo := repository.NewRoleRepo(db, log)
42 |
43 | m := manager.NewManager(accountRepo, roleRepo, db)
44 | m.CreateSuperAdmin(email, password)
45 | },
46 | }
47 |
48 | func init() {
49 | localFlags := createSuperAdminCmd.Flags()
50 | localFlags.StringVarP(&email, "email", "e", "", "SuperAdmin user's email")
51 | localFlags.StringVarP(&password, "password", "p", "", "SuperAdmin user's password")
52 | createSuperAdminCmd.MarkFlagRequired("email")
53 | rootCmd.AddCommand(createSuperAdminCmd)
54 | }
55 |
56 | func validateEmail(email string) bool {
57 | Re := regexp.MustCompile(`^[a-z0-9._%+\-]+@[a-z0-9.\-]+\.[a-z]{2,4}$`)
58 | return Re.MatchString(email)
59 | }
60 |
--------------------------------------------------------------------------------
/magic/magic.go:
--------------------------------------------------------------------------------
1 | package magic
2 |
3 | import (
4 | "fmt"
5 | "net/http"
6 | "strings"
7 |
8 | "github.com/alpacahq/ribbit-backend/apperr"
9 | "github.com/alpacahq/ribbit-backend/config"
10 | "github.com/magiclabs/magic-admin-go"
11 | "github.com/magiclabs/magic-admin-go/client"
12 | "github.com/magiclabs/magic-admin-go/token"
13 | )
14 |
15 | // NewMagic creates a new magic service implementation
16 | func NewMagic(config *config.MagicConfig) *Magic {
17 | return &Magic{config}
18 | }
19 |
20 | // Magic provides a magic service implementation
21 | type Magic struct {
22 | config *config.MagicConfig
23 | }
24 |
25 | // IsValidToken validates a token with magic link
26 | func (m *Magic) IsValidToken(tkn string) (*token.Token, error) {
27 | authBearer := "Bearer"
28 | fmt.Printf("%s", authBearer)
29 | if tkn == "" {
30 | return nil, apperr.New(http.StatusUnauthorized, "Bearer token is required")
31 | }
32 |
33 | if !strings.HasPrefix(tkn, authBearer) {
34 | return nil, apperr.New(http.StatusUnauthorized, "Bearer token is required")
35 | }
36 |
37 | did := tkn[len(authBearer)+1:]
38 | if did == "" {
39 | return nil, apperr.New(http.StatusUnauthorized, "DID token is required")
40 | }
41 |
42 | tk, err := token.NewToken(did)
43 | if err != nil {
44 |
45 | return nil, apperr.New(http.StatusUnauthorized, "Malformed DID token error: "+err.Error())
46 | }
47 |
48 | if err := tk.Validate(); err != nil {
49 | return nil, apperr.New(http.StatusUnauthorized, "DID token failed validation: "+err.Error())
50 | }
51 |
52 | return tk, nil
53 | }
54 |
55 | // GetIssuer retrieves the issuer from token
56 | // func (m *Magic) GetIssuer(c *gin.Context) error
57 | func (m *Magic) GetIssuer(tk *token.Token) (*magic.UserInfo, error) {
58 | client := client.New(m.config.Secret, magic.NewDefaultClient())
59 | userInfo, err := client.User.GetMetadataByIssuer(tk.GetIssuer())
60 | if err != nil {
61 | return nil, apperr.New(http.StatusBadRequest, "Bad request")
62 | }
63 |
64 | return userInfo, nil
65 | }
66 |
--------------------------------------------------------------------------------
/.env.sample:
--------------------------------------------------------------------------------
1 | # change to localhost when running on local machine and not docker
2 | export POSTGRES_HOST=database # for local development
3 | # export POSTGRES_HOST=postgres # for docker/kubernetes
4 | export POSTGRES_PORT=5432
5 | export POSTGRES_USER=test_user
6 | export POSTGRES_PASSWORD=test_password
7 | export POSTGRES_DB=test_db
8 |
9 | # DATABASE_URL will be used in preference if it exists
10 | # export DATABASE_URL=postgres://$POSTGRES_USER:$POSTGRES_PASSWORD@$POSTGRES_HOST:$POSTGRES_PORT/$POSTGRES_DB
11 | export DATABASE_URL=$DATABASE_URL
12 |
13 | # these are needed to create the database
14 | # and create the postgres user/password initially
15 | # if they are not set in env, these are the default values
16 | export POSTGRES_SUPERUSER=postgres
17 | # change this to empty string when running on local machine and not docker
18 | export POSTGRES_SUPERUSER_PASSWORD=password
19 | export POSTGRES_SUPERUSER_DB=postgres
20 |
21 | # for transactional emails
22 | export SENDGRID_API_KEY=
23 | export DEFAULT_NAME=
24 | export DEFAULT_EMAIL=
25 |
26 | # Change this to a FQDN as needed
27 | export EXTERNAL_URL="https://localhost:8080"
28 |
29 | export TWILIO_ACCOUNT="your Account SID from twil.io/console"
30 | export TWILIO_TOKEN="your Token from twil.io/console"
31 |
32 | export TWILIO_VERIFY_NAME="calvinx"
33 | export TWILIO_VERIFY="servicetoken"
34 |
35 | export MAGIC_API_KEY=""
36 | export MAGIC_API_SECRET=""
37 |
38 | export PLAID_CLIENT_ID=
39 | export PLAID_SECRET=
40 | export PLAID_ENV=
41 | # app expects comma separated strings
42 | export PLAID_PRODUCTS=
43 | # app expects comma separated strings
44 | export PLAID_COUNTRY_CODES=
45 |
46 | # BROKER TOKEN must be in the format "Basic [args]
29 | `
30 |
31 | // Run executes migration subcommands
32 | func Run(args ...string) error {
33 | fmt.Println("Running migration")
34 |
35 | p := config.GetPostgresConfig()
36 |
37 | // connection to db as postgres superuser
38 | dbSuper := config.GetPostgresSuperUserConnection()
39 | defer dbSuper.Close()
40 |
41 | // connection to db as POSTGRES_USER
42 | db := config.GetConnection()
43 | defer db.Close()
44 |
45 | createUserIfNotExist(dbSuper, p)
46 |
47 | createDatabaseIfNotExist(dbSuper, p)
48 |
49 | if flag.Arg(0) == "create_schema" {
50 | createSchema(db, &model.Role{}, &model.User{}, &model.Verification{})
51 | os.Exit(2)
52 | }
53 |
54 | oldVersion, newVersion, err := migrations.Run(db, args...)
55 | if err != nil {
56 | exitf(err.Error())
57 | }
58 | if newVersion != oldVersion {
59 | fmt.Printf("migrated from version %d to %d\n", oldVersion, newVersion)
60 | } else {
61 | fmt.Printf("version is %d\n", oldVersion)
62 | }
63 | return nil
64 | }
65 |
66 | func usage() {
67 | fmt.Print(usageText)
68 | flag.PrintDefaults()
69 | os.Exit(2)
70 | }
71 |
72 | func errorf(s string, args ...interface{}) {
73 | fmt.Fprintf(os.Stderr, s+"\n", args...)
74 | }
75 |
76 | func exitf(s string, args ...interface{}) {
77 | errorf(s, args...)
78 | os.Exit(1)
79 | }
80 |
81 | func createUserIfNotExist(db *pg.DB, p *config.PostgresConfig) {
82 | statement := fmt.Sprintf(`SELECT * FROM pg_roles WHERE rolname = '%s';`, p.User)
83 | res, _ := db.Exec(statement)
84 | if res.RowsReturned() == 0 {
85 | statement = fmt.Sprintf(`CREATE USER %s WITH PASSWORD '%s';`, p.User, p.Password)
86 | _, err := db.Exec(statement)
87 | if err != nil {
88 | fmt.Println(err)
89 | } else {
90 | fmt.Printf(`Created user %s`, p.User)
91 | }
92 | }
93 | }
94 |
95 | func createDatabaseIfNotExist(db *pg.DB, p *config.PostgresConfig) {
96 | statement := fmt.Sprintf(`SELECT 1 AS result FROM pg_database WHERE datname = '%s';`, p.Database)
97 | res, _ := db.Exec(statement)
98 | if res.RowsReturned() == 0 {
99 | fmt.Println("creating database")
100 | statement = fmt.Sprintf(`CREATE DATABASE %s WITH OWNER %s;`, p.Database, p.User)
101 | _, err := db.Exec(statement)
102 | if err != nil {
103 | fmt.Println(err)
104 | } else {
105 | fmt.Printf(`Created database %s`, p.Database)
106 | }
107 | }
108 | }
109 |
110 | func createSchema(db *pg.DB, models ...interface{}) {
111 | for _, model := range models {
112 | opt := &orm.CreateTableOptions{
113 | IfNotExists: true,
114 | FKConstraints: true,
115 | }
116 | err := db.CreateTable(model, opt)
117 | if err != nil {
118 | log.Fatal(err)
119 | }
120 | }
121 | }
122 |
--------------------------------------------------------------------------------
/public/SNAP.svg:
--------------------------------------------------------------------------------
1 |