UNPKG

gitlab-acebase

Version:

AceBase realtime database server (webserver endpoint to allow remote connections)

github.com/appy-one/acebase-server

appy-one/acebase-server

82 lines 4.12 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
"use strict"; var __awaiter = (this && this.__awaiter) || function (thisArg, _arguments, P, generator) { function adopt(value) { return value instanceof P ? value : new P(function (resolve) { resolve(value); }); } return new (P || (P = Promise))(function (resolve, reject) { function fulfilled(value) { try { step(generator.next(value)); } catch (e) { reject(e); } } function rejected(value) { try { step(generator["throw"](value)); } catch (e) { reject(e); } } function step(result) { result.done ? resolve(result.value) : adopt(result.value).then(fulfilled, rejected); } step((generator = generator.apply(thisArg, _arguments || [])).next()); }); }; Object.defineProperty(exports, "__esModule", { value: true }); exports.addRoute = void 0; const acebase_core_1 = require("acebase-core"); const error_1 = require("../shared/error"); const addRoute = (env) => { env.router.get(`/sync/mutations/${env.db.name}`, (req, res) => __awaiter(void 0, void 0, void 0, function* () { var _a; // Gets mutations for specific path(s) and event combinations since given cursor if (!((_a = env.config.transactions) === null || _a === void 0 ? void 0 : _a.log)) { return (0, error_1.sendBadRequestError)(res, { code: 'no_transaction_logging', message: 'Transaction logging not enabled' }); } try { const data = req.query; const targets = typeof data.path === 'string' ? [{ path: data.path, events: ['value'] }] : typeof data.for === 'string' ? JSON.parse(data.for) : null; if (targets === null) { return (0, error_1.sendBadRequestError)(res, { code: 'invalid_request', message: 'Invalid mutations request' }); } if (targets.length === 0) { targets.push({ path: '', events: ['value'] }); } // Filter out any requested paths user does not have access to. const accessCache = new Map(); for (let i = 0; i < targets.length; i++) { const target = targets[i]; let path = target.path; if (target.events.every(event => /^(?:notify_)?child_/.test(event))) { // Only child_ events, check if they have access to children instead path = acebase_core_1.PathInfo.get(path).childPath('*'); } let allow = false; if (accessCache.has(path)) { allow = accessCache.get(path); } else { const access = yield env.rules.isOperationAllowed(req.user, path, 'get'); allow = access.allow; accessCache.set(path, allow); } if (!allow) { targets.splice(i, 1); i--; } } if (targets.length === 0) { return (0, error_1.sendUnauthorizedError)(res, 'not_authorized', 'User is not authorized to access this data'); } const { cursor } = data; let timestamp; if (typeof data.timestamp !== 'undefined') { timestamp = parseInt(data.timestamp); if (isNaN(timestamp)) { return (0, error_1.sendBadRequestError)(res, { code: 'wrong_timestamp', message: 'Timestamp is not a number' }); } } const result = yield env.db.api.getMutations({ for: targets, cursor, timestamp }); res.setHeader('AceBase-Context', JSON.stringify({ acebase_cursor: result.new_cursor })); res.contentType('application/json'); const serialized = acebase_core_1.Transport.serialize2(result.mutations); res.send(serialized); } catch (err) { (0, error_1.sendError)(res, err); } })); }; exports.addRoute = addRoute; exports.default = exports.addRoute; //# sourceMappingURL=data-sync-mutations.js.map