feat(email-verification): send real email + Swagger servers (:3000/api)

.github/workflows/security.yml

@@ -0,0 +1,51 @@
+name: SecurityScanWorkflow
+
+on:
+  push:
+    branches:
+      - '**'
+  pull_request:
+    branches:
+      - '**'
+
+jobs:
+  run-security-scan:
+    runs-on: ubuntu-latest
+
+    steps:
+      - name: Checkout repository
+        uses: actions/checkout@v2
+
+      - name: Get list of changed files (new and modified)
+        id: changed-files
+        run: |
+          git fetch origin master --depth=1
+          MODIFIED_FILES=$(git diff --name-only origin/master ${{ github.sha }} | tr '\n' ' ')
+          echo "MODIFIED_FILES=${MODIFIED_FILES}" >> $GITHUB_ENV
+
+      - name: Set up Python environment
+        uses: actions/setup-python@v3
+        with:
+          python-version: "3.11"
+
+      - name: Install dependencies
+        run: |
+          pip install --upgrade pip
+          pip install -r requirements.txt
+
+      - name: Run Vulnerability Scanner on all changed files
+        run: |
+          if [[ -z "$MODIFIED_FILES" ]]; then
+            echo "No modified files to scan."
+            exit 0
+          fi
+          for file in $MODIFIED_FILES; do
+            echo "Scanning $file..."
+            python3 Vulnerability_Tool/Vulnerability_Scanner_V1.4.py "$file" >> security_scan_report.txt
+          done
+
+      - name: Save scan results as an artifact
+        uses: actions/upload-artifact@v4
+        with:
+          name: security-scan-report
+          path: security_scan_report.txt

.gitignore

@@ -6,7 +6,7 @@ yarn-debug.log*
 yarn-error.log*
 lerna-debug.log*
 .pnpm-debug.log*
-
+.vs/
 # Diagnostic reports (https://nodejs.org/api/report.html)
 report.[0-9]*.[0-9]*.[0-9]*.[0-9]*.json
 
@@ -129,4 +129,7 @@ dist
 .pnp.*
 
 .vscode
-.idea
+.ideaenv.test
+.env
+.env.*
+*.env

API_PatchNotes.yaml

@@ -0,0 +1,33 @@
+Nutrihelp-api: V1.4
+
+
+
+
+
+Nutrihelp-api: V1.3
+
+
+
+
+
+Nutrihelp-api: V1.2
+
+
+
+
+
+Nutrihelp-api: V1.1
+  Description:
+
+
+  ChangeLog
+  - Added Version Control
+  - 
+
+
+
+
+Nutrihelp-api: V1.0
+
+
+COME BACK TOO

Monitor_&_Logging/loginLogger.js

@@ -0,0 +1,24 @@
+const { createClient } = require('@supabase/supabase-js');
+
+const supabase = createClient(
+  process.env.SUPABASE_URL,
+  process.env.SUPABASE_ANON_KEY
+);
+
+async function logLoginEvent({ userId, eventType, ip, userAgent, details = {} }) {
+  const { error } = await supabase
+    .from('audit_logs')
+    .insert({
+      user_id: userId,
+      event_type: eventType,
+      ip_address: ip,
+      user_agent: userAgent,
+      details
+    });
+
+  if (error) {
+    console.error('Error logging login event:', error);
+  }
+}
+
+module.exports = logLoginEvent;

PatchNotes_VersionControl.yaml

@@ -0,0 +1,235 @@
+Nutrihelp API Backend Version Control
+### All changelog additions were completed via the Backend API team as a whole ###
+
+#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-V2024.2.3-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#
+  ChangeLog:
+  - Added 5 new vulnerability pattens to Vulnerability scanner - Changed version to V1.1
+  - Added Vulnerability Report
+  - Upgraded POST Meal Planning API
+  -	Upgraded GET meal planning API
+  - Updated / Refactored login API's to use email instead of username
+  - Began development of recipe image classification api
+
+#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-V2024.2.2-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#
+  ChangeLog:
+  - Implmented V1.0 Vulnerability scanner
+  - Added user ID and set up relationship in feedback API endpoint
+  - Added cooking method ID to the relation table/recipe API endpoint
+  - Added User Change Password API
+  - Added Image to User profile API
+
+#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-V2024.2.1-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#
+  ChangeLog:
+  - Added Version Control
+  - Added additional input Fields to the New user Sign Up Form
+  - Added images to Recipe API
+
+#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-V2024.2.0-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#-#
+Current pages and applicaitons present before trimester commenced
+
+Current Controllers:
+-	Appointment Controller
+-	Contact Us Controller
+-	Food Data Controller
+-	Image Classification Controller
+-	Login Controller
+-	Meal Plan Controller
+-	Recipe Controller
+-	Sign Up Controller
+-	User Feedback Controller
+-	User Preferences Controller
+-	User Profile Controller
+
+Middleware:
+-	Authenticate Token
+
+Current models:
+-	Add Appointment
+-	Add Contact Us Msg
+-	Add MFA Token
+-	Add User
+-	Add User Feedback
+-	Create Recipe
+- Create Recipe Test Sample
+-	Delete User Recipes
+-	Fetch All Allergies
+-	Fetch Cooking Methods
+-	Fetch All Cuisines
+-	Fetch All Dietary Requirements
+-	Fetch All Health Conditions
+-	Fetch All Ingredients
+-	Fetch All Spice Levels
+-	Fetch User Preferences
+-	Get Appointments
+-	Get User
+-	Get User Credentials
+-	Get User Profile
+-	Get User Recipes
+-	Image classification python script
+-	Meal Plan
+-	Update User Preference
+-	Update User Profile
+
+Node Models
+- .bin
+- @sendgrid
+- @supabase
+- @types
+- accepts
+- append-field
+- argparse
+- array-flatten
+- asynckit
+- axios
+- balanced-match
+- bcryptjs
+- body-parser
+- brace-expansion
+- buffer-equal-constant-time
+- buffer-from
+- busboy
+- bytes
+- call-bind
+- combined-stream
+- concat-map
+- concat-stream
+- content-disposition
+- content-type
+- cookie
+- cookie-signature
+- core-util-is
+- cors
+- debug
+- deepmerge
+- define-data-property
+- delayed-stream
+- denque
+- depd
+- destroy
+- dotenv
+- ecdsa-sig-formatter
+- ee-first
+- encodeurl
+- es-define-property
+- es-errors
+- escape-html
+- etag
+- express
+- finalhandler
+- follow-redirects
+- form-data
+- forwarded
+- fresh
+- fs.realpath
+- function-bind
+- generate-function
+- get-intrinsic
+- glob
+- gopd
+- has-property-descriptors
+- has-proto
+- has-symbols
+- hasown
+- http-errors
+- iconv-lite
+- inflight
+- inherits
+- ipaddr.js
+- is-property
+- isarray
+- jsonwebtoken
+- jwa
+- jws
+- lodash.includes
+- lodash.isboolean
+- lodash.isinteger
+- lodash.isnumber
+- lodash.isplainobject
+- lodash.isstring
+- lodash.once
+- long
+- lru-cache
+- media-typer
+- merge-descriptors
+- methods
+- mime
+- mime-db
+- mime-types
+- minimatch
+- minimist
+- mkdirp
+- ms
+- multer
+- mysql2
+- named-placeholders
+- negotiator
+- object-assign
+- object-inspect
+- on-finished
+- once
+- parseurl
+- path-is-absolute
+- path-to-regexp
+- process-nextick-args
+- proxy-addr
+- proxy-from-env
+- qs
+- range-parser
+- raw-body
+- readable-stream
+- safe-buffer
+- safer-buffer
+- semver
+- send
+- seq-queue
+- serve-static
+- set-function-length
+- setprototypeof
+- side-channel
+- sprintf-js
+- sqlstring
+- statuses
+- streamsearch
+- string_decoder
+- swagger-ui-dist
+- swagger-ui-express
+- toidentifier
+- tr46
+- type-is
+- typedarray
+- undici-types
+- unpipe
+- util-deprecate
+- utils-merge
+- vary
+- webidl-conversions
+- whatwg-url
+- wrappy
+- ws
+- xtend
+- yallist
+- yamljs
+
+Routes:
+-	Appointment
+-	Contact Us
+-	Food Data
+-	Image Classification
+-	Index
+-	Login
+-	Meal Plan
+-	Recipe
+-	Sign Up
+-	User Feedback
+-	User Preference
+-	User Profile
+
+Other:
+-	.env
+-	.gitignore.git
+-	dbConnection.js
+-	index.yaml
+-	package.json
+-	package-lock.json
+-	README.md
+-	server.js