@frangoteam/fuxa
Version:
Web-based Process Visualization (SCADA/HMI/Dashboard) software
239 lines (227 loc) • 10.7 kB
JavaScript
/**
* 'api/project': Project API to GET/POST project data
*/
var express = require("express");
const authJwt = require('../jwt-helper');
const fs = require('fs');
const path = require('path');
const os = require('os');
var runtime;
var secureFnc;
var checkGroupsFnc;
module.exports = {
init: function (_runtime, _secureFnc, _checkGroupsFnc) {
runtime = _runtime;
secureFnc = _secureFnc;
checkGroupsFnc = _checkGroupsFnc;
},
app: function () {
var prjApp = express();
prjApp.use(function(req,res,next) {
if (!runtime.project) {
res.status(404).end();
} else {
next();
}
});
/**
* GET Project data
* Take from project storage and reply
*/
prjApp.get("/api/project", secureFnc, function(req, res) {
const permission = checkGroupsFnc(req);
runtime.project.getProject(req.userId, permission).then(result => {
// res.header("Access-Control-Allow-Origin", "*");
// res.header("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept");
if (result) {
res.json(result);
} else {
res.status(404).end();
runtime.logger.error("api get project: Not Found!");
}
}).catch(function(err) {
if (err && err.code) {
if (err.code !== 'ERR_HTTP_HEADERS_SENT') {
res.status(400).json({error:err.code, message: err.message});
runtime.logger.error("api get project: " + err.message);
}
} else {
res.status(400).json({error:"unexpected_error", message: err});
runtime.logger.error("api get project: " + err);
}
});
});
/**
* POST Project data
* Set to project storage
*/
prjApp.post("/api/project", secureFnc, function(req, res, next) {
const permission = checkGroupsFnc(req);
if (res.statusCode === 403) {
runtime.logger.error("api post project: Tocken Expired");
} else if (!authJwt.haveAdminPermission(permission)) {
res.status(401).json({error:"unauthorized_error", message: "Unauthorized!"});
runtime.logger.error("api post project: Unauthorized");
} else {
runtime.project.setProject(req.body).then(function(data) {
runtime.restart(true).then(function(result) {
res.end();
});
}).catch(function(err) {
if (err && err.code) {
res.status(400).json({error:err.code, message: err.message});
runtime.logger.error("api post project: " + err.message);
} else {
res.status(400).json({error:"unexpected_error", message: err});
runtime.logger.error("api post project: " + err);
}
});
}
});
/**
* POST Single Project data
* Set the value (general/view/device/...) to project storage
*/
prjApp.post("/api/projectData", secureFnc, function(req, res, next) {
const permission = checkGroupsFnc(req);
if (res.statusCode === 403) {
runtime.logger.error("api post projectData: Tocken Expired");
} else if (!authJwt.haveAdminPermission(permission)) {
res.status(401).json({error:"unauthorized_error", message: "Unauthorized!"});
runtime.logger.error("api post projectData: Unauthorized");
} else {
runtime.project.setProjectData(req.body.cmd, req.body.data).then(setres => {
runtime.update(req.body.cmd, req.body.data).then(result => {
res.end();
});
}).catch(function(err) {
if (err && err.code) {
res.status(400).json({error:err.code, message: err.message});
runtime.logger.error("api post projectData: " + err.message);
} else {
res.status(400).json({error:"unexpected_error", message: err});
runtime.logger.error("api post projectData: " + err);
}
});
}
});
/**
* GET Project demo data
* Take the project demo file from server folder
*/
prjApp.get("/api/projectdemo", secureFnc, function (req, res) {
const data = runtime.project.getProjectDemo();
// res.header("Access-Control-Allow-Origin", "*");
// res.header("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept");
if (data) {
res.json(data);
} else {
res.status(404).end();
runtime.logger.error("api get project: Not Found!");
}
});
/**
* GET Device property like security
* Take from project storage and reply
*/
prjApp.get("/api/device", secureFnc, function(req, res) {
const permission = checkGroupsFnc(req);
if (res.statusCode === 403) {
runtime.logger.error("api get device: Tocken Expired");
} else if (!authJwt.haveAdminPermission(permission)) {
res.status(401).json({error:"unauthorized_error", message: "Unauthorized!"});
runtime.logger.error("api get device: Unauthorized");
} else {
runtime.project.getDeviceProperty(req.query).then(result => {
// res.header("Access-Control-Allow-Origin", "*");
// res.header("Access-Control-Allow-Headers", "Origin, X-Requested-With, Content-Type, Accept");
if (result) {
res.json(result);
} else {
res.end();
}
}).catch(function(err) {
if (err && err.code) {
res.status(400).json({error:err.code, message: err.message});
runtime.logger.error("api get device: " + err.message);
} else {
res.status(400).json({error:"unexpected_error", message: err});
runtime.logger.error("api get device: " + err);
}
});
}
});
/**
* POST Device property
* Set to project storage
*/
prjApp.post("/api/device", secureFnc, function(req, res, next) {
const permission = checkGroupsFnc(req);
if (res.statusCode === 403) {
runtime.logger.error("api post device: Tocken Expired");
} else if (!authJwt.haveAdminPermission(permission)) {
res.status(401).json({error:"unauthorized_error", message: "Unauthorized!"});
runtime.logger.error("api post device: Unauthorized");
} else {
runtime.project.setDeviceProperty(req.body.params).then(function(data) {
res.end();
}).catch(function(err) {
if (err && err.code) {
res.status(400).json({error:err.code, message: err.message});
runtime.logger.error("api post device: " + err.message);
} else {
res.status(400).json({error:"unexpected_error", message: err});
runtime.logger.error("api post device: " + err);
}
});
}
});
/**
* POST Upload file resource
* images will be in media file saved
*/
prjApp.post('/api/upload', function (req, res) {
const file = req.body.resource;
const destination = req.body.destination;
try {
let basedata = file.data;
let encoding = {};
// let basedata = file.data.replace(/^data:.*,/, '');
// let basedata = file.data.replace(/^data:image\/png;base64,/, "");
let fileName = file.name.replace(new RegExp('../', 'g'), '');
let fullPath = file.fullPath || file.name;
fullPath = fullPath.replace(/(\.\.[/\\])/g, '');
fullPath = path.normalize(fullPath).replace(/^(\.\.[/\\])+/, '');
if (file.type !== 'svg') {
basedata = file.data.replace(/^data:.*,/, '');
encoding = {encoding: 'base64'};
}
let filePath = path.join(runtime.settings.uploadFileDir, fullPath || fileName);
if (destination) {
let destinationDir = path.resolve(runtime.settings.appDir, `_${destination}`);
if (process.versions.electron) {
const userDataDir = process.env.userDir || path.join(os.homedir(), '.fuxa');
destinationDir = path.join(userDataDir, `_${destination}`);
}
filePath = path.join(destinationDir, fullPath || fileName);
const dir = path.dirname(filePath);
if (!fs.existsSync(dir)) {
fs.mkdirSync(dir, { recursive: true });
}
}
fs.writeFileSync(filePath, basedata, encoding);
let result = {'location': '/' + runtime.settings.httpUploadFileStatic + '/' + fullPath || fileName };
res.json(result);
} catch (err) {
if (err && err.code) {
res.status(400).json({error: err.code, message: err.message});
runtime.logger.error("api upload: " + err.message);
} else {
res.status(400).json({error:"unexpected_error", message: err});
runtime.logger.error("api upload: " + err);
}
}
});
return prjApp;
}
}