UNPKG

@budibase/server

Version:

Budibase Web Server

github.com/Budibase/budibase

Budibase/budibase

101 lines (95 loc) 2.74 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
import * as rowController from "../controllers/row" import { authorizedMiddleware as authorized, authorizedResource, } from "../../middleware/authorized" import { paramResource, paramSubResource } from "../../middleware/resourceId" import { permissions } from "@budibase/backend-core" import { internalSearchValidator } from "./utils/validators" import recaptcha from "../../middleware/recaptcha" import { trimViewRowInfoMiddleware } from "../../middleware/trimViewRowInfo" import { validateBody } from "../../middleware/zod-validator" import { searchRowRequestValidator } from "@budibase/types" import { endpointGroupList, publicRoutes } from "./endpointGroups" const { PermissionType, PermissionLevel } = permissions const readRoutes = endpointGroupList.group( { middleware: authorized(PermissionType.TABLE, PermissionLevel.READ), first: false, }, recaptcha ) const writeRoutes = endpointGroupList.group( { middleware: authorized(PermissionType.TABLE, PermissionLevel.WRITE), first: false, }, recaptcha ) readRoutes .get( "/api/:sourceId/:rowId/enrich", paramSubResource("sourceId", "rowId"), rowController.fetchEnrichedRow ) .get("/api/:sourceId/rows", paramResource("sourceId"), rowController.fetch) .get( "/api/:sourceId/rows/:rowId", paramSubResource("sourceId", "rowId"), rowController.find ) .post( "/api/:sourceId/search", internalSearchValidator(), validateBody(searchRowRequestValidator), paramResource("sourceId"), rowController.search ) // DEPRECATED - this is an old API, but for backwards compat it needs to be // supported still .post( "/api/search/:sourceId/rows", paramResource("sourceId"), rowController.search ) .get( "/api/:sourceId/rows/:rowId/attachment/:columnName", paramSubResource("sourceId", "rowId"), rowController.downloadAttachment ) writeRoutes .post( "/api/:sourceId/rows", paramResource("sourceId"), trimViewRowInfoMiddleware, rowController.save ) .patch( "/api/:sourceId/rows", paramResource("sourceId"), trimViewRowInfoMiddleware, rowController.patch ) .post( "/api/:sourceId/rows/validate", paramResource("sourceId"), rowController.validate ) .delete( "/api/:sourceId/rows", paramResource("sourceId"), trimViewRowInfoMiddleware, rowController.destroy ) .post( "/api/:sourceId/rows/exportRows", paramResource("sourceId"), rowController.exportRows ) publicRoutes.post( "/api/v2/views/:viewId/search", internalSearchValidator(), validateBody(searchRowRequestValidator), authorizedResource(PermissionType.VIEW, PermissionLevel.READ, "viewId"), rowController.views.searchView )