UNPKG

@jsreport/jsreport-core

Version:

javascript based business reporting

github.com/jsreport/jsreport/tree/master/packages/jsreport-core

jsreport/jsreport

85 lines (68 loc) 2.45 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
module.exports = (reporter) => (proxy, req) => { proxy.req = req proxy.render = async (renderRequest) => { const res = await reporter.render({ ...renderRequest, // new fresh context (user data and cycle control counter is inherit from originalReq during rendering). // this avoids that user can fake user identity by sending context // with information of another user and allows the original request to collect logs // from the render of proxy context: {} }, req) // expose the response api return res } proxy.documentStore = { collection: (name) => ({ find: async (q) => { req.context.userFindCall = true const res = await reporter.documentStore.collection(name).find(q, req) return res }, findOne: async (q) => { req.context.userFindCall = true const res = await reporter.documentStore.collection(name).findOne(q, req) return res } }) } proxy.folders = { resolveEntityFromPath: (path, es, options) => { return reporter.folders.resolveEntityFromPath(path, es, options || {}, req) }, resolveEntityPath: (entity, es) => { return reporter.folders.resolveEntityPath(entity, es, req) } } proxy.version = reporter.version // expose tempfile functions const createTempFileFns = [ 'getTempFilePath', 'openTempFile', 'writeTempFileSync', 'writeTempFile', 'writeTempFileStream', 'copyFileToTempFile' ] const restOfTempFileFns = [ 'readTempFileSync', 'readTempFile', 'readTempFileStream' ] const allFns = [ ...createTempFileFns, ...restOfTempFileFns ] for (const fnName of allFns) { const shouldLimitCreation = createTempFileFns.includes(fnName) proxy[fnName] = (...args) => { if (shouldLimitCreation) { // limiting the number of temp files to avoid breaking server, otherwise I see no // reason why having more than 1000 calls per req should be valid usecase const counter = reporter.runningRequests.keyValueStore.get('tmp-file-counter', req) || 0 if (counter > 1000) { throw reporter.createError('Reached maximum limit of tmp file calls in sandbox', { weak: true, statusCode: 400 }) } reporter.runningRequests.keyValueStore.set('tmp-file-counter', counter + 1, req) } return reporter[fnName](...args) } } }