update user default token key to uuid (#436)

* update email

* update email

* update paginate query

* update paginate query

* update the random value

* update all values need take from environment to config file

Author: Kai-Qiao

BUILD.md

@@ -10,9 +10,9 @@ The project includes three components:
 
 Building requires:
 
-- [Node.js 16](https://nodejs.org/en/)
-- [mongodb 3.5](https://www.mongodb.com/download-center/community)
-- [Python >=3.6, Python<=3.9](https://www.python.org/downloads/)
+- [Node.js = 16 ](https://nodejs.org/en/)
+- [mongodb = 3.5](https://www.mongodb.com/download-center/community)
+- [Python  = 3.7](https://www.python.org/downloads/)
 
 ## Installation
 

active-learning-service/config/app_os.py

@@ -24,10 +24,11 @@
 
     # optional token config
     "TOKEN_ALGORITHM": os.getenv("TOKEN_ALGORITHM", "HS256"),
+    # !!! important 121ba6ff-64d6-4c1a-b6ef-dd6b95433064 just a random value get the value from environment or replace by yourslef
     # generate the key yourself. should keep the same with annotation-service TOKEN_SECRET_OR_PRIVATE_KEY
-    "TOKEN_SECRET_OR_PRIVATE_KEY": os.getenv("TOKEN_SECRET_OR_PRIVATE_KEY", "OPEN SOURCE"),
-
+    "TOKEN_SECRET_OR_PRIVATE_KEY": os.getenv("TOKEN_SECRET_OR_PRIVATE_KEY", "121ba6ff-64d6-4c1a-b6ef-dd6b95433064"),
+    # 01a406f3-e5f4-45b8-a722-cff17e9d8cf9 just a random value
     # generate the key yourself. django SECRET_KEY a random generated value https://docs.djangoproject.com/en/3.2/ref/settings/#std:setting-SECRET_KEY
-    "DJANGO_SECRET_KEY": os.getenv("DJANGO_SECRET_KEY", "your_key"),
+    "DJANGO_SECRET_KEY": os.getenv("DJANGO_SECRET_KEY", "01a406f3-e5f4-45b8-a722-cff17e9d8cf9"),
 
 }

annotation-service/config/app-os.js

@@ -15,7 +15,21 @@ module.exports = {
   //default admin users can see admin tab at ui
   adminDefault: ['[email protected]', '[email protected]'],
 
+  //-------------------- token configs --------------------//
+  //TOKEN expire time
+  TOKEN_EXPIRE_TIME: process.env.TOKEN_EXPIRE_TIME || 60*30,
+  //TOKEN algorithm
+  TOKEN_ALGORITHM: process.env.TOKEN_ALGORITHM || "HS256",
+  //!!! important 121ba6ff-64d6-4c1a-b6ef-dd6b95433064 just a random value get the value from environment or replace by yourslef. should keep the same with active-learning-serviceTOKEN_SECRET_OR_PRIVATE_KEY
+  TOKEN_SECRET_OR_PRIVATE_KEY: process.env.TOKEN_SECRET_OR_PRIVATE_KEY || "121ba6ff-64d6-4c1a-b6ef-dd6b95433064",  
+
   //-------------------- optional configs --------------------//
+  //api base version
+  API_VERSION: process.env.API_VERSION || 'v1.0',
+  //project base path
+  API_BASE_PATH: process.env.API_BASE_PATH || '',
+  // default project role
+  USER_ROLE: process.env.USER_ROLE || 'Project Owner',
   //Login with LDAP, need to provide the LDAP authorization service link, the response schema must have 'emailAddress' or 'email' field
   loginWithLDAP: process.env.LOGIN_WITH_LDAP || null,
   //server port [optional configs]
@@ -25,10 +39,10 @@ module.exports = {
   mongoDBAutoIndex: process.env.AUTO_INDEX || true,
   //Google Analytics tracking id [optional configs]
   trackingId: process.env.TRACKING_ID || null,
-
-
+  
   //IF true will save file to local, If set useAWS=true set it to false
   useLocalFileSys: process.env.USE_LOCAL_FILE_SYS || true,
+  
   //-------------------- aws config --------------------//
   //IF false below aws config can be skip, will not save files to aws-s3
   //IF true will save datasets to S3, should set useLocalFileSys=false
@@ -43,7 +57,6 @@ module.exports = {
   //if useAWS=true, SQS config must be set
   sqsRoleArn: process.env.SQS_ARN || null,
   sqsUrl: process.env.SQS_URL || null,
-  //-------------------- aws config end--------------------//
 
   //-------------------- send email config ----------------//
   //IF USE DEFAULT value false, will not sending email
@@ -65,16 +78,21 @@ module.exports = {
   annotationServiceUrl: process.env.ANNOTATION_SERVICE_URL || 'http://localhost:3000',
   //if enableEmail=true, can set teamTitle for sending email or use default value
   teamTitle: process.env.TEAM_TITILE || "Data-Annotator-For-Machine-Learning",
-  //-------------------- send email config end-------------//
+  //regular notification date and time
+  REGULAR_NOTIFICATNO: process.env.REGULAR_NOTIFICATNO || "0 0 9 * * 1-5",
+  //regular notification timezome
+  CURRENT_TIME_ZONE: process.env.CURRENT_TIME_ZONE || "America/Los_Angeles",
+  //regular notification not start annotate day
+  NOT_START_DAY: process.env.NOT_START_DAY || 7,
+  //regular notification not finish annotate day
+  NOT_FINISH_DAY: process.env.NOT_FINISH_DAY || 14,
 
-
-  //SLACK
+  //-------------------- slack config ----------------//
   //If buildSlackApp=true, slackBotUserOAuthToken, slackSigningSecret and slackAppToken must be set. And please follow the path annotation-app/src/environments/environment.ts to set enableSlack=true at the same time.
   buildSlackApp: process.env.BUILD_SLACK_APP || false,
   slackAppName: process.env.SLACK_APP_NAME || null, //If buildSlackApp=true, here should be the slack app display name
   slackBotUserOAuthToken: process.env.SLACK_BOT_USER_OAUTH_TOKEN || null,
   slackSigningSecret: process.env.SLACK_SIGNING_SECRET || null,
-  slackAppToken: process.env.SLACK_APP_TOKEN || null
-
+  slackAppToken: process.env.SLACK_APP_TOKEN || null,
 
 };

annotation-service/config/constant.js

@@ -6,9 +6,6 @@
 ***/
 
 module.exports = {
-    API_VERSION: process.env.API_VERSION || 'v1.0',
-    API_BASE_PATH: process.env.API_BASE_PATH || '',
-    USER_ROLE: process.env.USER_ROLE || 'Project Owner',
     ROLES:{
         ANNOTATOR: "Annotator",
         PROJECT_OWNER: "Project Owner",
@@ -36,12 +33,7 @@ module.exports = {
     FILESIZE: 1024*1024*50, //less than 50MB directly download
     ACCESS_TIME_60: 60*60, //in seconds
     ACCESS_TIME_30: 60*30, //in seconds
-    ACCESS_TIME_15: 60*15, //in seconds
-    //TOKEN
-    TOKEN_EXPIRE_TIME: process.env.TOKEN_EXPIRE_TIME || 60*30,
-    TOKEN_ALGORITHM: process.env.TOKEN_ALGORITHM || "HS256",
-    //generate the key yourself. should keep the same with active-learning-serviceTOKEN_SECRET_OR_PRIVATE_KEY
-    TOKEN_SECRET_OR_PRIVATE_KEY: process.env.TOKEN_SECRET_OR_PRIVATE_KEY || "OPEN SOURCE",    
+    ACCESS_TIME_15: 60*15, //in seconds  
     TOKEN_EXPIRED_MESSAGE: 'SQS receive message failed: The security token included in the request is expired', //SQS Clinet
     ANNOTATION_QUESTION: "What label does this ticket belong to ?",
     TICKET_DESCRIPTION: "Passage",
@@ -113,10 +105,6 @@ module.exports = {
         SQS: "SQS",
     },
     MILLISECOND_DAY: 1000 * 60 * 60 * 24,
-    REGULAR_NOTIFICATNO: process.env.REGULAR_NOTIFICATNO || "0 0 9 * * 1-5",
-    CURRENT_TIME_ZONE: process.env.CURRENT_TIME_ZONE || "America/Los_Angeles",
-    NOT_START_DAY: process.env.NOT_START_DAY || 7,
-    NOT_FINISH_DAY: process.env.NOT_FINISH_DAY || 14,
     SOURCE: {
         MODEL_FEEDBACK: "MODEL_FEEDBACK",
         NIMBUS: "NIMBUS",

annotation-service/db/db-connect.js

@@ -6,7 +6,7 @@
 ***/
 
 const config = require('../config/config');
-const { USER_ROLE, GENERATESTATUS, APPENDSR, QUERYORDER, ANNOTATION_QUESTION, TICKET_DESCRIPTION } = require('../config/constant');
+const { GENERATESTATUS, APPENDSR, QUERYORDER, ANNOTATION_QUESTION, TICKET_DESCRIPTION } = require('../config/constant');
 const mongoose = require("mongoose"),
     Schema = mongoose.Schema;
 const mongoosePaginate = require('mongoose-paginate-v2');
@@ -143,7 +143,7 @@ const userSchema = new mongoose.Schema({
     password: { type: String },
     fullName: { type: String },
     points: { type: Number, default: 0 },
-    role: { type: String, default: USER_ROLE },
+    role: { type: String, default: config.USER_ROLE },
     createdDate: { type: String },
     updateDate: { type: String },
     regularNotification: { type: Boolean, default: true },

annotation-service/middlewares/jwt.middleware.js

@@ -8,7 +8,6 @@
 const jwt = require('express-jwt');
 const config = require('../config/config');
 const JWTS = require('jsonwebtoken');
-const { API_VERSION, API_BASE_PATH, TOKEN_EXPIRE_TIME, TOKEN_ALGORITHM, TOKEN_SECRET_OR_PRIVATE_KEY} = require('../config/constant');
 const APIs = require('../resources/APIs');
 
 jwtTokenAuthrization = (data) => {
@@ -21,20 +20,20 @@ jwtTokenAuthrization = (data) => {
             requestProperty: 'auth',
         }).unless({
             path: [
-                `${API_BASE_PATH}/api/${API_VERSION}${APIs.EMAIL_REGULAR_NOTIFICATION}`,
+                `${config.API_BASE_PATH}/api/${config.API_VERSION}${APIs.EMAIL_REGULAR_NOTIFICATION}`,
             ],
         });
     } else {
         return jwt({
-            secret: TOKEN_SECRET_OR_PRIVATE_KEY,
-            algorithms: [TOKEN_ALGORITHM],
+            secret: config.TOKEN_SECRET_OR_PRIVATE_KEY,
+            algorithms: [config.TOKEN_ALGORITHM],
             getToken: fromHeaderOrQuerystring,
             requestProperty: 'auth',
         }).unless({
             path: [
-                `${API_BASE_PATH}/api/${API_VERSION}${APIs.REGISTER}`,
-                `${API_BASE_PATH}/api/${API_VERSION}${APIs.LOGIN}`,
-                `${API_BASE_PATH}/api/${API_VERSION}${APIs.EMAIL_REGULAR_NOTIFICATION}`,
+                `${config.API_BASE_PATH}/api/${config.API_VERSION}${APIs.REGISTER}`,
+                `${config.API_BASE_PATH}/api/${config.API_VERSION}${APIs.LOGIN}`,
+                `${config.API_BASE_PATH}/api/${config.API_VERSION}${APIs.EMAIL_REGULAR_NOTIFICATION}`,
             ],
         });
     }
@@ -54,20 +53,20 @@ function fromHeaderOrQuerystring(req) {
 
 async function generateBasicToken(user) {
 
-    const expires_time = Math.floor(Date.now() / 1000) + TOKEN_EXPIRE_TIME;
+    const expires_time = Math.floor(Date.now() / 1000) + config.TOKEN_EXPIRE_TIME;
     const access_token = await JWTS.sign({
         exp: expires_time,
         email: user
     },
-        TOKEN_SECRET_OR_PRIVATE_KEY,
+        config.TOKEN_SECRET_OR_PRIVATE_KEY,
         {
-            algorithm: TOKEN_ALGORITHM
+            algorithm: config.TOKEN_ALGORITHM
         }
     );
     return {
         access_token: access_token,
         access_type: "Bearer",
-        expires_in: TOKEN_EXPIRE_TIME,
+        expires_in: config.TOKEN_EXPIRE_TIME,
         expires_time: expires_time
     }
 }

annotation-service/server.js

@@ -15,7 +15,6 @@ const fs = require('fs')
 const { consumeSQSMessage } = require('./utils/sqs');
 const { regularNotification } = require('./utils/taskSchedule');
 const config = require('./config/config');
-const { API_VERSION, API_BASE_PATH } = require('./config/constant');
 const MESSAGE = require('./config/code_msg');
 
 // Get our API routes
@@ -51,10 +50,10 @@ app.use(function (req, res, next) {
 });
 
 // mannually set up swagger
-app.use(`${API_BASE_PATH}/api/api-docs`, swaggerUi.serve, swaggerUi.setup(swaggerDocument));
+app.use(`${config.API_BASE_PATH}/api/api-docs`, swaggerUi.serve, swaggerUi.setup(swaggerDocument));
 
 // Server health check
-app.get(`${API_BASE_PATH}/api/health`, (req, res) => {
+app.get(`${config.API_BASE_PATH}/api/health`, (req, res) => {
   return res.status(200).json(MESSAGE.SUCCESS);
 });
 
@@ -86,7 +85,7 @@ authService.authentication().then(data => {
 }).finally(() => {
   // Set our api routers
   routers.forEach(
-    api => app.use(`${API_BASE_PATH}/api/${API_VERSION}`, require(`./routers/${api}`))
+    api => app.use(`${config.API_BASE_PATH}/api/${config.API_VERSION}`, require(`./routers/${api}`))
   );
   consumeSQSMessage();
   regularNotification();

annotation-service/services/email-service.js

@@ -13,7 +13,7 @@ const authForNoe = require("./authForNoe.service");
 const config = require("../config/config");
 const AWS = require('aws-sdk');
 const STS = require('../utils/sts');
-const { ACCESS_TIME_15, API_VERSION } = require('../config/constant')
+const { ACCESS_TIME_15 } = require('../config/constant')
 const nodemailer = require("nodemailer");
 const APIs = require('../resources/APIs');
 
@@ -58,7 +58,7 @@ async function sendNotStartLabelingNotificationEmail(user, projectName, projectO
     const htmlTemplate = notStartTemp.replace(/\${user}/g, user)
         .replace(/\${projectName}/g, projectName)
         .replace(/\${serviceHost}/g, config.annotationServiceUrl)
-        .replace(/\${apiVersion}/g, API_VERSION)
+        .replace(/\${apiVersion}/g, config.API_VERSION)
         .replace(/\${notification}/g, APIs.EMAIL_REGULAR_NOTIFICATION)
         .replace("${projectOwner}", projectOwner)
         .replace("${assignedDate}", assignedDate)
@@ -73,7 +73,7 @@ async function sendNotFinishLabelingNotificationEmail(user, projectName, project
     const htmlTemplate = notFinishTemp.replace(/\${user}/g, user)
         .replace(/\${projectName}/g, projectName)
         .replace(/\${serviceHost}/g, config.annotationServiceUrl)
-        .replace(/\${apiVersion}/g, API_VERSION)
+        .replace(/\${apiVersion}/g, config.API_VERSION)
         .replace(/\${notification}/g, APIs.EMAIL_REGULAR_NOTIFICATION)
         .replace("${projectOwner}", projectOwner)
         .replace("${assignedDate}", assignedDate)

annotation-service/utils/taskSchedule.js

@@ -5,7 +5,7 @@
  * 
 ***/
 
-const { MILLISECOND_DAY, REGULAR_NOTIFICATNO, CURRENT_TIME_ZONE, NOT_START_DAY, NOT_FINISH_DAY } = require("../config/constant");
+const { MILLISECOND_DAY } = require("../config/constant");
 const config = require("../config/config");
 const { ProjectModel, UserModel, InstanceModel } = require("../db/db-connect");
 const mongoDb = require("../db/mongo.db");
@@ -26,7 +26,7 @@ module.exports.regularNotification = async () => {
   }
 
   var job = new CronJob(
-      REGULAR_NOTIFICATNO, 
+      config.REGULAR_NOTIFICATNO, 
       async () => {
         if (await checkingRunningInstance()) {
             return;
@@ -35,13 +35,13 @@ module.exports.regularNotification = async () => {
       },
       null,
       true,
-      CURRENT_TIME_ZONE
+      config.CURRENT_TIME_ZONE
     );
 
 }
 async function checkingRunningInstance() {
 
-  const NODE_INSTANCE = {data: new Date(Date.now()).toLocaleDateString("en-US", {timeZone: CURRENT_TIME_ZONE})};
+  const NODE_INSTANCE = {data: new Date(Date.now()).toLocaleDateString("en-US", {timeZone: config.CURRENT_TIME_ZONE})};
   const instance = await mongoDb.findByConditions(InstanceModel, NODE_INSTANCE);
   console.log('[ REGULAR-NOTIFICATION ]', NODE_INSTANCE);
   if (instance.length) {
@@ -69,7 +69,7 @@ async function findProjectAndSendRegularNotification() {
 
       const createTime = (today - pro.createdDate) / MILLISECOND_DAY;
       const done = pro.totalCase <= pro.projectCompleteCase;
-      const overStart = createTime < NOT_START_DAY;
+      const overStart = createTime < config.NOT_START_DAY;
       //don't more than NOT_START_DAY
       if(overStart || done){
         continue;
@@ -102,7 +102,7 @@ async function findUserSendNotification(pro, today){
     //not start labeling
     uc.assignedDate = uc.assignedDate? uc.assignedDate: pro.createdDate;
     const assignedTime = (today - uc.assignedDate) / MILLISECOND_DAY;
-    const overStartDay = assignedTime >= NOT_START_DAY;
+    const overStartDay = assignedTime >= config.NOT_START_DAY;
     //send notification
     if(!uc.completeCase && overStartDay){
       const assignedDate = new Date(uc.assignedDate * 1).toLocaleDateString();
@@ -113,7 +113,7 @@ async function findUserSendNotification(pro, today){
     //not finish labeling
     uc.updateDate = uc.updateDate? uc.updateDate: uc.assignedDate;
     const updateTime = (today - uc.updateDate) / MILLISECOND_DAY;
-    const overFinish = updateTime >= NOT_FINISH_DAY;
+    const overFinish = updateTime >= config.NOT_FINISH_DAY;
     const userNotFinish = uc.assignedCase > uc.completeCase;
     //send notification
     if(uc.completeCase && overFinish && userNotFinish){