UNPKG

@sap/xsodata

Version:

Expose data from a HANA database as OData V2 service with help of .xsodata files.

114 lines (103 loc) 3.81 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
'use strict'; const Http405_MethodNotAllowed = require('../../utils/errors/http/methodNotAllowed'), Http501_MethodNotSupported = require('../../utils/errors/http/notSupported'); module.exports = function checkAllowdMethodsForResourePath(context, callback) { const method = context.request.method.toLowerCase(); const dbLast = context.oData.dbSegmentLast; const batchError = getBatchMethodError(context, method); if (batchError) { return callback(batchError, context); } let err = null; if (method === 'post') { err = validatePost(context, dbLast); } else if (method === 'put') { err = validatePut(context, dbLast); } else if (method === 'delete') { err = validateDelete(context, dbLast); } return callback(err, context); }; function getBatchMethodError(context, method) { if (!context.batchContext) { return null; } if (context.batchContext.inChangeSet) { return null; } if (method === 'post') { return new Http405_MethodNotAllowed( 'When using OData batch method POST is only allowed inside changesets' ); } if (method === 'put') { return new Http405_MethodNotAllowed( 'When using OData batch method PUT is only allowed inside changesets' ); } if (method === 'delete') { return new Http405_MethodNotAllowed( 'When using OData batch method DELETE is only allowed inside changesets' ); } return null; } function validatePost(context, dbLast) { if (dbLast.isCollection) { return null; } if (context.oData.dbSegment && context.oData.dbSegment.isLinks) { return new Http405_MethodNotAllowed( 'The URI is not valid for POST operation. To edit linked resources of this relationship type, please use PUT.' ); } return new Http405_MethodNotAllowed( 'The URI is not valid for POST operation. The URI must point to an entity set for POST operations.' ); } function validatePut(context, dbLast) { if (dbLast.isCollection) { if ( !context.oData.dbSegment || context.oData.dbSegment === context.oData.dbSegmentLast ) { return new Http405_MethodNotAllowed( 'The URI is not valid for PUT operation. The URI must point to a single resource for PUT operations.' ); } if (context.oData.dbSegment && !context.oData.dbSegment.isLinks) { return new Http405_MethodNotAllowed( 'The URI is not valid for PUT operation. The URI must point to a single resource for PUT operations.' ); } if ( context.oData.dbSegment && context.oData.dbSegment.isLinks && !context.oData.dbSegment.getOver() ) { return new Http405_MethodNotAllowed( 'The URI is not valid for PUT operation. To edit linked resources of this relationship type, please use POST.' ); } } if (dbLast.restriction.onlyValue) { return new Http501_MethodNotSupported( 'PUT is not supported for $value' ); } return null; } function validateDelete(context, dbLast) { if (dbLast.isCollection) { return new Http405_MethodNotAllowed( 'The URI is not valid for DELETE operation. The URI must point to a single resource from an entity set or from a property referring to a set of resources.' ); } if (dbLast.restriction.onlyValue) { return new Http405_MethodNotAllowed('DELETE is not valid for $value'); } if (dbLast.singleProperty) { return new Http405_MethodNotAllowed('DELETE is not valid for property'); } return null; }