iceshrimp/packages/backend/src/server/api/api-handler.ts

94 lines
2.6 KiB
TypeScript
Raw Normal View History

import Koa from 'koa';
2016-12-29 07:49:51 +09:00
import { User } from '@/models/entities/user.js';
import { UserIps } from '@/models/index.js';
import { fetchMeta } from '@/misc/fetch-meta.js';
import { IEndpoint } from './endpoints.js';
import authenticate, { AuthenticationError } from './authenticate.js';
import call from './call.js';
import { ApiError } from './error.js';
2016-12-29 07:49:51 +09:00
const userIpHistories = new Map<User['id'], Set<string>>();
setInterval(() => {
userIpHistories.clear();
}, 1000 * 60 * 60);
export default (endpoint: IEndpoint, ctx: Koa.Context) => new Promise<void>((res) => {
const body = ctx.is('multipart/form-data')
2022-06-26 17:38:50 +09:00
? (ctx.request as any).body
: ctx.method === 'GET'
? ctx.query
: ctx.request.body;
2018-04-13 11:44:39 +09:00
const reply = (x?: any, y?: ApiError) => {
if (x == null) {
2018-04-13 06:06:18 +09:00
ctx.status = 204;
} else if (typeof x === 'number' && y) {
2018-04-13 06:06:18 +09:00
ctx.status = x;
2019-02-23 15:45:03 +09:00
ctx.body = {
error: {
message: y!.message,
code: y!.code,
id: y!.id,
kind: y!.kind,
2021-12-09 23:58:30 +09:00
...(y!.info ? { info: y!.info } : {}),
},
2019-02-23 15:45:03 +09:00
};
} else {
// 文字列を返す場合は、JSON.stringify通さないとJSONと認識されない
ctx.body = typeof x === 'string' ? JSON.stringify(x) : x;
}
2019-02-22 14:46:49 +09:00
res();
};
// Authentication
// for GET requests, do not even pass on the body parameter as it is considered unsafe
authenticate(ctx.headers.authorization, ctx.method === 'GET' ? null : body['i']).then(([user, app]) => {
2019-02-22 14:46:49 +09:00
// API invoking
call(endpoint.name, user, app, body, ctx).then((res: any) => {
if (ctx.method === 'GET' && endpoint.meta.cacheSec && !body['i'] && !user) {
ctx.set('Cache-Control', `public, max-age=${endpoint.meta.cacheSec}`);
}
2019-02-22 14:46:49 +09:00
reply(res);
}).catch((e: ApiError) => {
2020-04-04 08:46:54 +09:00
reply(e.httpStatusCode ? e.httpStatusCode : e.kind === 'client' ? 400 : 500, e);
2019-02-22 14:46:49 +09:00
});
// Log IP
if (user) {
fetchMeta().then(meta => {
if (!meta.enableIpLogging) return;
const ip = ctx.ip;
const ips = userIpHistories.get(user.id);
if (ips == null || !ips.has(ip)) {
if (ips == null) {
userIpHistories.set(user.id, new Set([ip]));
} else {
ips.add(ip);
}
try {
UserIps.createQueryBuilder().insert().values({
createdAt: new Date(),
userId: user.id,
ip: ip,
}).orIgnore(true).execute();
} catch {
}
}
});
}
}).catch(e => {
if (e instanceof AuthenticationError) {
reply(403, new ApiError({
message: 'Authentication failed. Please ensure your token is correct.',
code: 'AUTHENTICATION_FAILED',
2021-12-09 23:58:30 +09:00
id: 'b0a7f5f8-dc2f-4171-b91f-de88ad238e14',
}));
} else {
reply(500, new ApiError());
}
2019-02-22 14:46:49 +09:00
});
});