Ghost/core/server/services/members/service.js

const errors = require('@tryghost/errors');
const tpl = require('@tryghost/tpl');
const MembersSSR = require('@tryghost/members-ssr');
const db = require('../../data/db');
const MembersConfigProvider = require('./config');
const MembersCSVImporter = require('@tryghost/members-importer');
const MembersStats = require('./stats');
const createMembersApiInstance = require('./api');
const createMembersSettingsInstance = require('./settings');
const logging = require('@tryghost/logging');
const urlUtils = require('../../../shared/url-utils');
const labsService = require('../../../shared/labs');
const settingsCache = require('../../../shared/settings-cache');
const config = require('../../../shared/config');
const ghostVersion = require('@tryghost/version');
const _ = require('lodash');
const {GhostMailer} = require('../mail');
const jobsService = require('../jobs');

const messages = {
    noLiveKeysInDevelopment: 'Cannot use live stripe keys in development. Please restart in production mode.',
    sslRequiredForStripe: 'Cannot run Ghost without SSL when Stripe is connected. Please update your url config to use "https://".',
    remoteWebhooksInDevelopment: 'Cannot use remote webhooks in development. See https://ghost.org/docs/webhooks/#stripe-webhooks for developing with Stripe.'
};

// Bind to settings.edited to update systems based on settings changes, similar to the bridge and models/base/listeners
const events = require('../../lib/common/events');

const ghostMailer = new GhostMailer();

const membersConfig = new MembersConfigProvider({
    config,
    settingsCache,
    urlUtils,
    logging,
    ghostVersion
});

let membersApi;
let membersSettings;

function reconfigureMembersAPI() {
    const reconfiguredMembersAPI = createMembersApiInstance(membersConfig);
    reconfiguredMembersAPI.bus.on('ready', function () {
        membersApi = reconfiguredMembersAPI;
    });
    reconfiguredMembersAPI.bus.on('error', function (err) {
        logging.error(err);
    });
}

const debouncedReconfigureMembersAPI = _.debounce(reconfigureMembersAPI, 600);

// Bind to events to automatically keep subscription info up-to-date from settings
events.on('settings.edited', function updateSettingFromModel(settingModel) {
    if (![
        'members_signup_access',
        'members_from_address',
        'members_support_address',
        'members_reply_address',
        'stripe_publishable_key',
        'stripe_secret_key',
        'stripe_product_name',
        'stripe_plans',
        'stripe_connect_publishable_key',
        'stripe_connect_secret_key',
        'stripe_connect_livemode',
        'stripe_connect_display_name',
        'stripe_connect_account_id'
    ].includes(settingModel.get('key'))) {
        return;
    }

    debouncedReconfigureMembersAPI();
});

const membersService = {
    async init() {
        const env = config.get('env');
        const paymentConfig = membersConfig.getStripePaymentConfig();

        if (env !== 'production') {
            if (!process.env.WEBHOOK_SECRET && membersConfig.isStripeConnected()) {
                process.env.WEBHOOK_SECRET = 'DEFAULT_WEBHOOK_SECRET';
                logging.warn(tpl(messages.remoteWebhooksInDevelopment));
            }

            if (paymentConfig && paymentConfig.secretKey.startsWith('sk_live')) {
                throw new errors.IncorrectUsageError(tpl(messages.noLiveKeysInDevelopment));
            }
        } else {
            const siteUrl = urlUtils.getSiteUrl();
            if (!/^https/.test(siteUrl) && membersConfig.isStripeConnected()) {
                throw new errors.IncorrectUsageError(tpl(messages.sslRequiredForStripe));
            }
        }
    },
    contentGating: require('./content-gating'),

    config: membersConfig,

    get api() {
        if (!membersApi) {
            membersApi = createMembersApiInstance(membersConfig);

            membersApi.bus.on('error', function (err) {
                logging.error(err);
            });
        }
        return membersApi;
    },

    get settings() {
        if (!membersSettings) {
            membersSettings = createMembersSettingsInstance(membersConfig);
        }
        return membersSettings;
    },

    ssr: MembersSSR({
        cookieSecure: urlUtils.isSSL(urlUtils.getSiteUrl()),
        cookieKeys: [settingsCache.get('theme_session_secret')],
        cookieName: 'ghost-members-ssr',
        cookieCacheName: 'ghost-members-ssr-cache',
        getMembersApi: () => membersService.api
    }),

    stripeConnect: require('./stripe-connect'),

    importer: new MembersCSVImporter({
        storagePath: config.getContentPath('data'),
        getTimezone: () => settingsCache.get('timezone'),
        getMembersApi: () => membersApi,
        sendEmail: ghostMailer.send.bind(ghostMailer),
        isSet: labsService.isSet.bind(labsService),
        addJob: jobsService.addJob.bind(jobsService),
        knex: db.knex,
        urlFor: urlUtils.urlFor.bind(urlUtils)
    }),

    stats: new MembersStats({
        db: db,
        settingsCache: settingsCache,
        isSQLite: config.get('database:client') === 'sqlite3'
    })
};

module.exports = membersService;
module.exports.middleware = require('./middleware');
Replaced usage of Error with @tryghost/errors (#13161) refs https://github.com/TryGhost/Ghost/commit/2f1123d6ca7894fc21499739f46f0ae5c9eda73a Usage of the raw Error class has been deprecated in favour of our own errors, which are more descriptive and have built in HTTP status codes. This also updates the same errors to use @tryghost/tpl for the error messages, which is the new pattern we are following in order for us to deprecate the i18n module. 2021-07-19 13:46:38 +03:00			`const errors = require('@tryghost/errors');`
			`const tpl = require('@tryghost/tpl');`
Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00			`const MembersSSR = require('@tryghost/members-ssr');`
			`const db = require('../../data/db');`
			`const MembersConfigProvider = require('./config');`
Integrated @tryghost/members-importer closes https://github.com/TryGhost/Team/issues/916 - The members importer module was extracted into an ouside module as per project structuring standards 2021-07-21 18:34:11 +03:00			`const MembersCSVImporter = require('@tryghost/members-importer');`
Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00			`const MembersStats = require('./stats');`
			`const createMembersApiInstance = require('./api');`
			`const createMembersSettingsInstance = require('./settings');`
Change to use @tryghost/logging no issue Logging is now controlled by a logginrc.js file in the root of the project - and now we can just import @tryghost/logging everywhere 2021-06-15 17:36:27 +03:00			`const logging = require('@tryghost/logging');`
Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00			`const urlUtils = require('../../../shared/url-utils');`
Refactored labs dependency out of MembersCSVImporter refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern and prepare module for extraction 2021-07-20 17:42:57 +03:00			`const labsService = require('../../../shared/labs');`
Moved settings/cache to shared/settings-cache - This is part of the quest to separate the frontend and server & get rid of all the places where there are cross-requires - At the moment the settings cache is one big shared cache used by the frontend and server liberally - This change doesn't really solve the fundamental problems, as we still depend on events, and requires from inside frontend - However it allows us to control the misuse slightly better by getting rid of restricted requires and turning on that eslint ruleset 2021-06-30 16:56:57 +03:00			`const settingsCache = require('../../../shared/settings-cache');`
Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00			`const config = require('../../../shared/config');`
Replaced ghost-version.js with @tryghost/version no issue Part of the effort to break up the Ghost codebase into smaller, decoupled modules. 2021-06-16 11:36:58 +03:00			`const ghostVersion = require('@tryghost/version');`
Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00			`const _ = require('lodash');`
Refactored Ghost mailer dependency out of MembersCSVImporter refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern and prepare module for extraction 2021-07-20 17:42:26 +03:00			`const {GhostMailer} = require('../mail');`
Refactored jobs service out of MembersCSVImporter refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern and prepare module for extraction 2021-07-20 18:21:59 +03:00			`const jobsService = require('../jobs');`
Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00
Replaced usage of Error with @tryghost/errors (#13161) refs https://github.com/TryGhost/Ghost/commit/2f1123d6ca7894fc21499739f46f0ae5c9eda73a Usage of the raw Error class has been deprecated in favour of our own errors, which are more descriptive and have built in HTTP status codes. This also updates the same errors to use @tryghost/tpl for the error messages, which is the new pattern we are following in order for us to deprecate the i18n module. 2021-07-19 13:46:38 +03:00			`const messages = {`
			`noLiveKeysInDevelopment: 'Cannot use live stripe keys in development. Please restart in production mode.',`
			`sslRequiredForStripe: 'Cannot run Ghost without SSL when Stripe is connected. Please update your url config to use "https://".',`
			`remoteWebhooksInDevelopment: 'Cannot use remote webhooks in development. See https://ghost.org/docs/webhooks/#stripe-webhooks for developing with Stripe.'`
			`};`

Added comments to all usages of lib/common/events - This is a precursor to trying to split apart into: - model events + webhooks system which makes sense - frontend events which should be independent or removed - maybe some concept of a settings manager that we can use in various places to bind logic 🤔 - other usages of events that should be refactored to not use events 2021-07-07 17:49:45 +03:00			`// Bind to settings.edited to update systems based on settings changes, similar to the bridge and models/base/listeners`
			`const events = require('../../lib/common/events');`

Refactored Ghost mailer dependency out of MembersCSVImporter refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern and prepare module for extraction 2021-07-20 17:42:26 +03:00			`const ghostMailer = new GhostMailer();`

Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00			`const membersConfig = new MembersConfigProvider({`
			`config,`
			`settingsCache,`
			`urlUtils,`
			`logging,`
			`ghostVersion`
			`});`

			`let membersApi;`
			`let membersSettings;`

			`function reconfigureMembersAPI() {`
			`const reconfiguredMembersAPI = createMembersApiInstance(membersConfig);`
			`reconfiguredMembersAPI.bus.on('ready', function () {`
			`membersApi = reconfiguredMembersAPI;`
			`});`
			`reconfiguredMembersAPI.bus.on('error', function (err) {`
			`logging.error(err);`
			`});`
			`}`

			`const debouncedReconfigureMembersAPI = _.debounce(reconfigureMembersAPI, 600);`

			`// Bind to events to automatically keep subscription info up-to-date from settings`
			`events.on('settings.edited', function updateSettingFromModel(settingModel) {`
			`if (![`
			`'members_signup_access',`
			`'members_from_address',`
			`'members_support_address',`
			`'members_reply_address',`
			`'stripe_publishable_key',`
			`'stripe_secret_key',`
			`'stripe_product_name',`
			`'stripe_plans',`
			`'stripe_connect_publishable_key',`
			`'stripe_connect_secret_key',`
			`'stripe_connect_livemode',`
			`'stripe_connect_display_name',`
			`'stripe_connect_account_id'`
			`].includes(settingModel.get('key'))) {`
			`return;`
			`}`

			`debouncedReconfigureMembersAPI();`
			`});`

			`const membersService = {`
Checked boot preconditions in members service init refs https://github.com/TryGhost/Team/issues/598 We now have several pre-conditions related to members which determine whether or not Ghost is allowed to start. Rather than burying this within the members-api module, we have now surfaced them to an init method which can be called during the boot sequence of Ghost. This will allow us to exit early and explicitly. 2021-05-12 15:46:05 +03:00			`async init() {`
			`const env = config.get('env');`
			`const paymentConfig = membersConfig.getStripePaymentConfig();`

			`if (env !== 'production') {`
			`if (!process.env.WEBHOOK_SECRET && membersConfig.isStripeConnected()) {`
Updated WEBHOOK_SECRET check to output a warning refs https://github.com/TryGhost/Team/issues/841 When using our development tooling Ghost should always start, instead of exiting with an error. This check for the WEBHOOK_SECRET env var was the primary cause of Ghost erroring in development, so it's been switched with a warning. 2021-07-12 12:48:52 +03:00			`process.env.WEBHOOK_SECRET = 'DEFAULT_WEBHOOK_SECRET';`
Replaced usage of Error with @tryghost/errors (#13161) refs https://github.com/TryGhost/Ghost/commit/2f1123d6ca7894fc21499739f46f0ae5c9eda73a Usage of the raw Error class has been deprecated in favour of our own errors, which are more descriptive and have built in HTTP status codes. This also updates the same errors to use @tryghost/tpl for the error messages, which is the new pattern we are following in order for us to deprecate the i18n module. 2021-07-19 13:46:38 +03:00			`logging.warn(tpl(messages.remoteWebhooksInDevelopment));`
Checked boot preconditions in members service init refs https://github.com/TryGhost/Team/issues/598 We now have several pre-conditions related to members which determine whether or not Ghost is allowed to start. Rather than burying this within the members-api module, we have now surfaced them to an init method which can be called during the boot sequence of Ghost. This will allow us to exit early and explicitly. 2021-05-12 15:46:05 +03:00			`}`

			`if (paymentConfig && paymentConfig.secretKey.startsWith('sk_live')) {`
Replaced usage of Error with @tryghost/errors (#13161) refs https://github.com/TryGhost/Ghost/commit/2f1123d6ca7894fc21499739f46f0ae5c9eda73a Usage of the raw Error class has been deprecated in favour of our own errors, which are more descriptive and have built in HTTP status codes. This also updates the same errors to use @tryghost/tpl for the error messages, which is the new pattern we are following in order for us to deprecate the i18n module. 2021-07-19 13:46:38 +03:00			`throw new errors.IncorrectUsageError(tpl(messages.noLiveKeysInDevelopment));`
Checked boot preconditions in members service init refs https://github.com/TryGhost/Team/issues/598 We now have several pre-conditions related to members which determine whether or not Ghost is allowed to start. Rather than burying this within the members-api module, we have now surfaced them to an init method which can be called during the boot sequence of Ghost. This will allow us to exit early and explicitly. 2021-05-12 15:46:05 +03:00			`}`
			`} else {`
			`const siteUrl = urlUtils.getSiteUrl();`
🐛 Fixed missing stripe connected check on boot (#12992) refs https://github.com/TryGhost/Team/issues/598 refs https://github.com/TryGhost/Ghost/commit/5cdf910e As part of the changes to disallow sites with starting up without https when they are connected to stripe, the conditional missed the check for stripe connection. As a result we were erroring in boot sequence for all sites starting without https irrespective if they are connected to Stripe or not which is incorrect. This fixes the `init` check for members service to only error for non-https sites if they are connected to Stripe. 2021-05-27 20:33:03 +03:00			`if (!/^https/.test(siteUrl) && membersConfig.isStripeConnected()) {`
Replaced usage of Error with @tryghost/errors (#13161) refs https://github.com/TryGhost/Ghost/commit/2f1123d6ca7894fc21499739f46f0ae5c9eda73a Usage of the raw Error class has been deprecated in favour of our own errors, which are more descriptive and have built in HTTP status codes. This also updates the same errors to use @tryghost/tpl for the error messages, which is the new pattern we are following in order for us to deprecate the i18n module. 2021-07-19 13:46:38 +03:00			`throw new errors.IncorrectUsageError(tpl(messages.sslRequiredForStripe));`
Checked boot preconditions in members service init refs https://github.com/TryGhost/Team/issues/598 We now have several pre-conditions related to members which determine whether or not Ghost is allowed to start. Rather than burying this within the members-api module, we have now surfaced them to an init method which can be called during the boot sequence of Ghost. This will allow us to exit early and explicitly. 2021-05-12 15:46:05 +03:00			`}`
			`}`
			`},`
Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00			`contentGating: require('./content-gating'),`

			`config: membersConfig,`

			`get api() {`
			`if (!membersApi) {`
			`membersApi = createMembersApiInstance(membersConfig);`

			`membersApi.bus.on('error', function (err) {`
			`logging.error(err);`
			`});`
			`}`
			`return membersApi;`
			`},`

			`get settings() {`
			`if (!membersSettings) {`
			`membersSettings = createMembersSettingsInstance(membersConfig);`
			`}`
			`return membersSettings;`
			`},`

			`ssr: MembersSSR({`
			`cookieSecure: urlUtils.isSSL(urlUtils.getSiteUrl()),`
			`cookieKeys: [settingsCache.get('theme_session_secret')],`
			`cookieName: 'ghost-members-ssr',`
			`cookieCacheName: 'ghost-members-ssr-cache',`
			`getMembersApi: () => membersService.api`
			`}),`

			`stripeConnect: require('./stripe-connect'),`

Refactored Ghost mailer dependency out of MembersCSVImporter refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern and prepare module for extraction 2021-07-20 17:42:26 +03:00			`importer: new MembersCSVImporter({`
Refactored storagePath parameter refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern with single options Object parameter - It didn't make sense to have a "config" object inside of options object containing just one property 2021-07-20 18:35:49 +03:00			`storagePath: config.getContentPath('data'),`
Refactored settingsCache parameter refs https://github.com/TryGhost/Team/issues/916 - The constructor API should have as small of a surface as possible, there's no need to pass around whole settingsCache instance 2021-07-21 10:48:05 +03:00			`getTimezone: () => settingsCache.get('timezone'),`
Refactored constructure signature to be a n object refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern with single options Object parameter 2021-07-20 18:34:22 +03:00			`getMembersApi: () => membersApi,`
Refactored ghostMailer parameter refs https://github.com/TryGhost/Team/issues/916 - The constructor API should have as small of a surface as possible, there's no need to pass around whole ghostMailer instance 2021-07-21 10:49:47 +03:00			`sendEmail: ghostMailer.send.bind(ghostMailer),`
Fixed `this` context for methods passed into importer refs https://github.com/TryGhost/Team/issues/916 - Without `.bind`, `this` context was lost when used inside of the CSVImporter calss 2021-07-21 10:51:45 +03:00			`isSet: labsService.isSet.bind(labsService),`
			`addJob: jobsService.addJob.bind(jobsService),`
Refactored constructure signature to be a n object refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern with single options Object parameter 2021-07-20 18:34:22 +03:00			`knex: db.knex,`
Fixed `this` context for methods passed into importer refs https://github.com/TryGhost/Team/issues/916 - Without `.bind`, `this` context was lost when used inside of the CSVImporter calss 2021-07-21 10:51:45 +03:00			`urlFor: urlUtils.urlFor.bind(urlUtils)`
Refactored constructure signature to be a n object refs https://github.com/TryGhost/Team/issues/916 - The refactor was done follow the DI Constructor pattern with single options Object parameter 2021-07-20 18:34:22 +03:00			`}),`
Renamed index.js -> service.js for lint reasons no-issue Our linter now requires that files named index.js have less than 50 lines, so this renames the index.js file to service.js and reexports service.js from index.js so that linting will pass. 2021-05-12 15:02:27 +03:00
			`stats: new MembersStats({`
			`db: db,`
			`settingsCache: settingsCache,`
			`isSQLite: config.get('database:client') === 'sqlite3'`
			`})`
			`};`

			`module.exports = membersService;`
			`module.exports.middleware = require('./middleware');`