iceshrimp-legacy/packages/backend/src/server/api/api-handler.ts

import Koa from 'koa';

import { User } from '@/models/entities/user.js';
import { UserIps } from '@/models/index.js';
import { fetchMeta } from '@/misc/fetch-meta.js';
import { IEndpoint } from './endpoints.js';
import authenticate, { AuthenticationError } from './authenticate.js';
import call from './call.js';
import { ApiError } from './error.js';

const userIpHistories = new Map<User['id'], Set<string>>();

setInterval(() => {
	userIpHistories.clear();
}, 1000 * 60 * 60);

export default (endpoint: IEndpoint, ctx: Koa.Context) => new Promise<void>((res) => {
	const body = ctx.is('multipart/form-data')
		? (ctx.request as any).body
		: ctx.method === 'GET'
			? ctx.query
			: ctx.request.body;

	const reply = (x?: any, y?: ApiError) => {
		if (x == null) {
			ctx.status = 204;
		} else if (typeof x === 'number' && y) {
			ctx.status = x;
			ctx.body = {
				error: {
					message: y!.message,
					code: y!.code,
					id: y!.id,
					kind: y!.kind,
					...(y!.info ? { info: y!.info } : {}),
				},
			};
		} else {
			// 文字列を返す場合は、JSON.stringify通さないとJSONと認識されない
			ctx.body = typeof x === 'string' ? JSON.stringify(x) : x;
		}
		res();
	};

	// Authentication
	// for GET requests, do not even pass on the body parameter as it is considered unsafe
	authenticate(ctx.headers.authorization, ctx.method === 'GET' ? null : body['i']).then(([user, app]) => {
		// API invoking
		call(endpoint.name, user, app, body, ctx).then((res: any) => {
			if (ctx.method === 'GET' && endpoint.meta.cacheSec && !body['i'] && !user) {
				ctx.set('Cache-Control', `public, max-age=${endpoint.meta.cacheSec}`);
			}
			reply(res);
		}).catch((e: ApiError) => {
			reply(e.httpStatusCode ? e.httpStatusCode : e.kind === 'client' ? 400 : 500, e);
		});

		// Log IP
		if (user) {
			fetchMeta().then(meta => {
				if (!meta.enableIpLogging) return;
				const ip = ctx.ip;
				const ips = userIpHistories.get(user.id);
				if (ips == null || !ips.has(ip)) {
					if (ips == null) {
						userIpHistories.set(user.id, new Set([ip]));
					} else {
						ips.add(ip);
					}

					try {
						UserIps.createQueryBuilder().insert().values({
							createdAt: new Date(),
							userId: user.id,
							ip: ip,
						}).orIgnore(true).execute();
					} catch {
					}
				}
			});
		}
	}).catch(e => {
		if (e instanceof AuthenticationError) {
			ctx.response.status = 403;
			ctx.response.set('WWW-Authenticate', 'Bearer');
			ctx.response.body = {
				message: 'Authentication failed: ' + e.message,
				code: 'AUTHENTICATION_FAILED',
				id: 'b0a7f5f8-dc2f-4171-b91f-de88ad238e14',
				kind: 'client',
			};
			res();
		} else {
			reply(500, new ApiError());
		}
	});
});
refactor: Use ESM (#8358) * wip * wip * fix * clean up * Update tsconfig.json * Update activitypub.ts * wip 2022-02-27 03:07:39 +01:00			`import Koa from 'koa';`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
feat: Log user ips (#8872) * wip * store ip and headers * Update admin-file.vue * require admin for view ip/headers * IP (recent) 消した * admin必須 * opt in * clean ips periodically * respect logging setting in drive/files/create 2022-07-02 08:12:11 +02:00			`import { User } from '@/models/entities/user.js';`
			`import { UserIps } from '@/models/index.js';`
			`import { fetchMeta } from '@/misc/fetch-meta.js';`
refactor: Use ESM (#8358) * wip * wip * fix * clean up * Update tsconfig.json * Update activitypub.ts * wip 2022-02-27 03:07:39 +01:00			`import { IEndpoint } from './endpoints.js';`
			`import authenticate, { AuthenticationError } from './authenticate.js';`
			`import call from './call.js';`
			`import { ApiError } from './error.js';`
Initial commit :four_leaf_clover: 2016-12-28 23:49:51 +01:00
feat: Log user ips (#8872) * wip * store ip and headers * Update admin-file.vue * require admin for view ip/headers * IP (recent) 消した * admin必須 * opt in * clean ips periodically * respect logging setting in drive/files/create 2022-07-02 08:12:11 +02:00			`const userIpHistories = new Map<User['id'], Set<string>>();`

			`setInterval(() => {`
			`userIpHistories.clear();`
			`}, 1000 * 60 * 60);`

refactor: use ajv instead of cafy (#8324) * wip * wip * Update abuse-user-reports.ts * Update files.ts * Update list-remote.ts * Update list.ts * Update show-users.ts * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * Update update.ts * Update search.ts * Update reactions.ts * Update search.ts * wip * wip * wip * wip * Update update.ts * Update relation.ts * Update available.ts * wip * wip * wip * Update packages/backend/src/server/api/define.ts Co-authored-by: Johann150 <johann.galle@protonmail.com> * Update define.ts * Update define.ts * typo * wip * wip * wip * wip * wip * wip * wip * wip * Update update.ts * wip * Update signup.ts * Update call.ts * minimum for limit * type * remove needless annotation * wip * Update signup.ts * wip * wip * fix * Update create.ts Co-authored-by: Johann150 <johann.galle@protonmail.com> 2022-02-19 06:05:32 +01:00			`export default (endpoint: IEndpoint, ctx: Koa.Context) => new Promise<void>((res) => {`
feat: allow GET for some endpoints Resolve #8263 2022-06-25 11:26:31 +02:00			`const body = ctx.is('multipart/form-data')`
fix #8894 2022-06-26 10:38:50 +02:00			`? (ctx.request as any).body`
feat: allow GET for some endpoints Resolve #8263 2022-06-25 11:26:31 +02:00			`: ctx.method === 'GET'`
			`? ctx.query`
			`: ctx.request.body;`
wip 2018-04-13 04:44:39 +02:00
Improve error handling of API (#4345) * wip * wip * wip * Update attached_notes.ts * wip * Refactor * wip * wip * wip * wip * wip * wip * wip * wip * Update call.ts * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * :v: * Fix 2019-02-22 03:46:58 +01:00			`const reply = (x?: any, y?: ApiError) => {`
			`if (x == null) {`
wip 2018-04-12 23:06:18 +02:00			`ctx.status = 204;`
Registry (#7073) * wip * wip * wip * wip * wip * Update registry.value.vue * wip * wip * wip * wip * typo 2021-01-11 12:38:34 +01:00			`} else if (typeof x === 'number' && y) {`
wip 2018-04-12 23:06:18 +02:00			`ctx.status = x;`
Better error handling 2019-02-23 07:45:03 +01:00			`ctx.body = {`
			`error: {`
strictNullChecks (#4666) * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip 2019-04-12 18:43:22 +02:00			`message: y!.message,`
			`code: y!.code,`
			`id: y!.id,`
			`kind: y!.kind,`
fix lint 2021-12-09 15:58:30 +01:00			`...(y!.info ? { info: y!.info } : {}),`
			`},`
Better error handling 2019-02-23 07:45:03 +01:00			`};`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`} else {`
Registry (#7073) * wip * wip * wip * wip * wip * Update registry.value.vue * wip * wip * wip * wip * typo 2021-01-11 12:38:34 +01:00			`// 文字列を返す場合は、JSON.stringify通さないとJSONと認識されない`
			`ctx.body = typeof x === 'string' ? JSON.stringify(x) : x;`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`}`
Refactor 2019-02-22 06:46:49 +01:00			`res();`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`};`

Fix typo: Authetication -> Authentication 2017-02-27 08:14:41 +01:00			`// Authentication`
add OAuth 2.0 Bearer Token authentication 2022-07-18 17:41:08 +02:00			`// for GET requests, do not even pass on the body parameter as it is considered unsafe`
			`authenticate(ctx.headers.authorization, ctx.method === 'GET' ? null : body['i']).then(([user, app]) => {`
Refactor 2019-02-22 06:46:49 +01:00			`// API invoking`
refactor: APIで非JSON入力の型変換はendpointに渡す前に行うように (#8229) * Resolve #8228 * fix 2022-01-30 17:40:27 +01:00			`call(endpoint.name, user, app, body, ctx).then((res: any) => {`
feat: allow GET for some endpoints Resolve #8263 2022-06-25 11:26:31 +02:00			`if (ctx.method === 'GET' && endpoint.meta.cacheSec && !body['i'] && !user) {`
			ctx.set('Cache-Control', `public, max-age=${endpoint.meta.cacheSec}`);
			`}`
Refactor 2019-02-22 06:46:49 +01:00			`reply(res);`
strictNullChecks (#4666) * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip 2019-04-12 18:43:22 +02:00			`}).catch((e: ApiError) => {`
refactor: Use === 2020-04-04 01:46:54 +02:00			`reply(e.httpStatusCode ? e.httpStatusCode : e.kind === 'client' ? 400 : 500, e);`
Refactor 2019-02-22 06:46:49 +01:00			`});`
feat: Log user ips (#8872) * wip * store ip and headers * Update admin-file.vue * require admin for view ip/headers * IP (recent) 消した * admin必須 * opt in * clean ips periodically * respect logging setting in drive/files/create 2022-07-02 08:12:11 +02:00
			`// Log IP`
			`if (user) {`
			`fetchMeta().then(meta => {`
			`if (!meta.enableIpLogging) return;`
			`const ip = ctx.ip;`
			`const ips = userIpHistories.get(user.id);`
			`if (ips == null \|\| !ips.has(ip)) {`
			`if (ips == null) {`
			`userIpHistories.set(user.id, new Set([ip]));`
			`} else {`
			`ips.add(ip);`
			`}`

			`try {`
fix: QueryFailedError when logging user's IPs (#8973) * fix QueryFailedError when logging user's IPs * use `orIgnore` to fix 2022-07-10 04:02:46 +02:00			`UserIps.createQueryBuilder().insert().values({`
feat: Log user ips (#8872) * wip * store ip and headers * Update admin-file.vue * require admin for view ip/headers * IP (recent) 消した * admin必須 * opt in * clean ips periodically * respect logging setting in drive/files/create 2022-07-02 08:12:11 +02:00			`createdAt: new Date(),`
			`userId: user.id,`
			`ip: ip,`
fix: QueryFailedError when logging user's IPs (#8973) * fix QueryFailedError when logging user's IPs * use `orIgnore` to fix 2022-07-10 04:02:46 +02:00			`}).orIgnore(true).execute();`
feat: Log user ips (#8872) * wip * store ip and headers * Update admin-file.vue * require admin for view ip/headers * IP (recent) 消した * admin必須 * opt in * clean ips periodically * respect logging setting in drive/files/create 2022-07-02 08:12:11 +02:00			`} catch {`
			`}`
			`}`
			`});`
			`}`
API AuthenticateでDB接続エラーなどが発生するとログアウトさせられてしまうのを修正 Fix #7603 (#7604) 2021-07-17 17:53:16 +02:00			`}).catch(e => {`
			`if (e instanceof AuthenticationError) {`
improve authentication errors 2022-07-18 17:42:14 +02:00			`ctx.response.status = 403;`
			`ctx.response.set('WWW-Authenticate', 'Bearer');`
			`ctx.response.body = {`
			`message: 'Authentication failed: ' + e.message,`
API AuthenticateでDB接続エラーなどが発生するとログアウトさせられてしまうのを修正 Fix #7603 (#7604) 2021-07-17 17:53:16 +02:00			`code: 'AUTHENTICATION_FAILED',`
fix lint 2021-12-09 15:58:30 +01:00			`id: 'b0a7f5f8-dc2f-4171-b91f-de88ad238e14',`
improve authentication errors 2022-07-18 17:42:14 +02:00			`kind: 'client',`
			`};`
			`res();`
API AuthenticateでDB接続エラーなどが発生するとログアウトさせられてしまうのを修正 Fix #7603 (#7604) 2021-07-17 17:53:16 +02:00			`} else {`
			`reply(500, new ApiError());`
			`}`
Refactor 2019-02-22 06:46:49 +01:00			`});`
			`});`