insomnia-importers

import { reject } from 'ramda'; import { Converter, ImportRequest, Parameter } from '../entities'; import { Auth as V200Auth, Folder as V200Folder, FormParameter as V200FormParameter, Header as V200Header, HttpsSchemaGetpostmanComJsonCollectionV200 as V200Schema, Item as V200Item, Request1 as V200Request1, Url, UrlEncodedParameter as V200UrlEncodedParameter, Variable2 as V200Variable2, } from './postman-2.0.types'; import { Auth as V210Auth, Auth1 as V210Auth1, Folder as V210Folder, FormParameter as V210FormParameter, Header as V210Header, HttpsSchemaGetpostmanComJsonCollectionV210 as V210Schema, Item as V210Item, Request1 as V210Request1, UrlEncodedParameter as V210UrlEncodedParameter, Variable2 as V210Variable2, } from './postman-2.1.types'; export const id = 'postman'; export const name = 'Postman'; export const description = 'Importer for Postman collections'; type PostmanCollection = V200Schema | V210Schema; type Variable = V200Variable2 | V210Variable2; type Authetication = V200Auth | V210Auth; type Body = V200Request1['body'] | V210Request1['body']; type UrlEncodedParameter = V200UrlEncodedParameter | V210UrlEncodedParameter; type FormParameter = V200FormParameter | V210FormParameter; type Item = V200Item | V210Item; type Folder = V200Folder | V210Folder; type Header = V200Header | V210Header; let requestCount = 1; let requestGroupCount = 1; const POSTMAN_SCHEMA_V2_0 = 'https://schema.getpostman.com/json/collection/v2.0.0/collection.json'; const POSTMAN_SCHEMA_V2_1 = 'https://schema.getpostman.com/json/collection/v2.1.0/collection.json'; export class ImportPostman { collection; constructor(collection: PostmanCollection) { this.collection = collection; } importVariable = (variables: Variable[]) => { if (variables?.length === 0) { return null; } const variable: { [key: string]: Variable['value'] } = {}; for (let i = 0; i < variables.length; i++) { const key = variables[i].key; if (key === undefined) { continue; } variable[key] = variables[i].value; } return variable; }; importItems = ( items: PostmanCollection['item'], parentId = '__WORKSPACE_ID__', ): ImportRequest[] => { // @ts-expect-error this is because there are devergent behaviors for how the function treats this collection. This is handled appropriately in the function itself in different branches. return items.reduce((accumulator: ImportRequest[], item: Item | Folder) => { if (Object.prototype.hasOwnProperty.call(item, 'request')) { return [...accumulator, this.importRequestItem(item as Item, parentId)]; } const requestGroup = this.importFolderItem(item as Folder, parentId); return [ ...accumulator, requestGroup, ...this.importItems( item.item as PostmanCollection['item'], requestGroup._id, ), ]; }, []); }; importRequestItem = ( { request, name = '' }: Item, parentId: string, ): ImportRequest => { if (typeof request === 'string') { return {}; } const { authentication, headers } = this.importAuthentication(request.auth, request.header as Header[]); return { parentId, _id: `__REQ_${requestCount++}__`, _type: 'request', name, description: (request.description as string) || '', url: this.importUrl(request.url), method: request.method || 'GET', headers: headers.map(({ key, value }) => ({ name: key, value, })), body: this.importBody(request.body, headers.find(({ key }) => key === 'Content-Type')?.value), authentication, }; }; importFolderItem = ({ name, description }: Folder, parentId: string) => { return { parentId, _id: `__GRP_${requestGroupCount++}__`, _type: 'request_group', name, description: description || '', }; }; importCollection = (): ImportRequest[] => { const { item, info: { name, description }, variable, } = this.collection; const postmanVariable = this.importVariable(variable || []); const collectionFolder: ImportRequest = { parentId: '__WORKSPACE_ID__', _id: `__GRP_${requestGroupCount++}__`, _type: 'request_group', name, description: typeof description === 'string' ? description : '', }; if (postmanVariable) { collectionFolder.variable = postmanVariable; } return [collectionFolder, ...this.importItems(item, collectionFolder._id)]; }; importUrl = (url?: Url | string) => { if (!url) { return ''; } if (typeof url === 'object' && url.raw) { return url.raw; } if (typeof url === 'string') { return url; } return ''; }; importBody = (body: Body, contentType? : string): ImportRequest['body'] => { if (!body) { return {}; } switch (body.mode) { case 'raw': return this.importBodyRaw(body.raw, contentType); case 'urlencoded': return this.importBodyFormUrlEncoded(body.urlencoded); case 'formdata': // TODO: Handle this as properly as multipart/form-data return this.importBodyFormdata(body.formdata); case 'graphql': return this.importBodyGraphQL(body.graphql); default: return {}; } }; importBodyFormdata = (formdata?: FormParameter[]) => { const { schema } = this.collection.info; const params = formdata?.map( ({ key, value, type, enabled, disabled, src }) => { const item: Parameter = { type, name: key, }; if (schema === POSTMAN_SCHEMA_V2_0) { item.disabled = !enabled; } else if (schema === POSTMAN_SCHEMA_V2_1) { item.disabled = !!disabled; } if (type === 'file') { item.fileName = src as string; } else { item.value = value as string; } return item; }, ); return { params, mimeType: 'multipart/form-data', }; }; importBodyFormUrlEncoded = ( urlEncoded?: UrlEncodedParameter[], ): ImportRequest['body'] => { const { schema } = this.collection.info; const params = urlEncoded?.map(({ key, value, enabled, disabled }) => { const item: Parameter = { value, name: key, }; if (schema === POSTMAN_SCHEMA_V2_0) { item.disabled = !enabled; } else if (schema === POSTMAN_SCHEMA_V2_1) { item.disabled = !!disabled; } return item; }); return { params, mimeType: 'application/x-www-form-urlencoded', }; }; importBodyRaw = (raw?: string, mimeType = '') => { if (raw === '') { return {}; } return { mimeType, text: raw, }; }; importBodyGraphQL = (graphql?: Record<string, unknown>) => { if (!graphql) { return {}; } return { mimeType: 'application/graphql', text: JSON.stringify(graphql), }; }; importAuthentication = (authentication?: Authetication | null, originalHeaders: Header[] = []) => { const isAuthorizationHeader = ({ key }: Header) => key === 'Authorization'; const authorizationHeader = originalHeaders.find(isAuthorizationHeader)?.value; // It is a business logic decision to remove the "Authorization" header. // If you think about it, this makes sense because if you've used Insomnia to fill out an Authorization form (e.g. Basic Auth), you wouldn't then also want the header to be added separately. // If users want to manually set up these headers they still aboslutely can, of course, but we try to keep thigns simple and help users out. const headers = reject(isAuthorizationHeader, originalHeaders); if (!authentication) { if (authorizationHeader) { switch (authorizationHeader?.substring(0, authorizationHeader.indexOf(' '))) { case 'Bearer': // will work for OAuth2 as well return { authentication: this.importBearerAuthenticationFromHeader(authorizationHeader), headers, }; case 'Basic': return { authentication: this.importBasicAuthenticationFromHeader(authorizationHeader), headers, }; case 'AWS4-HMAC-SHA256': return this.importАwsv4AuthenticationFromHeader(authorizationHeader, headers); case 'Digest': return { authentication: this.importDigestAuthenticationFromHeader(authorizationHeader), headers, }; case 'OAuth': return { authentication: this.importOauth1AuthenticationFromHeader(authorizationHeader), headers, }; default: return { authentication: {}, headers, }; } } return { authentication: {}, headers, }; } switch (authentication.type) { case 'awsv4': return { authentication: this.importAwsV4Authentication(authentication), headers, }; case 'basic': return { authentication: this.importBasicAuthentication(authentication), headers, }; case 'bearer': return { authentication: this.importBearerTokenAuthentication(authentication), headers, }; case 'digest': return { authentication: this.importDigestAuthentication(authentication), headers, }; case 'oauth1': return { authentication: this.importOauth1Authentication(authentication), headers, }; case 'oauth2': return { authentication: this.importOauth2Authentication(authentication), headers, }; default: return { authentication: {}, headers: originalHeaders, }; } }; importAwsV4Authentication = (auth: Authetication) => { if (!auth.awsv4) { return {}; } const item = { type: 'iam', disabled: false, accessKeyId: 'aws-access-key', region: 'aws-region', secretAccessKey: 'aws-secret-key', service: 'aws-service-name', sessionToken: 'aws-session-token', }; const { schema } = this.collection.info; if (schema === POSTMAN_SCHEMA_V2_0) { const awsv4 = auth.awsv4 as V200Auth['awsv4']; item.accessKeyId = awsv4?.accessKey as string; item.region = awsv4?.region as string; item.secretAccessKey = awsv4?.secretKey as string; item.service = awsv4?.service as string; item.sessionToken = awsv4?.sessionToken as string; } if (schema === POSTMAN_SCHEMA_V2_1) { const awsv4 = auth.awsv4 as V210Auth['awsv4']; item.accessKeyId = this.findValueByKey(awsv4, 'accessKey'); item.region = this.findValueByKey(awsv4, 'region'); item.secretAccessKey = this.findValueByKey(awsv4, 'secretKey'); item.service = this.findValueByKey(awsv4, 'service'); item.sessionToken = this.findValueByKey(awsv4, 'sessionToken'); } return item; }; /** * example of AWS header: * @example AWS4-HMAC-SHA256 Credential=<accessKeyId>/20220110/<region>/<service>/aws4_request, SignedHeaders=accept;content-type;host;x-amz-date;x-amz-security-token, Signature=ed270ed6ad1cad3513f6edad9692e4496e321e44954c70a86504eea5e0ef1ff5 */ importАwsv4AuthenticationFromHeader = (authHeader: string, headers: Header[]) => { if (!authHeader) { return { authentication: {}, headers, }; } const isAMZSecurityTokenHeader = ({ key }: Header) => key === 'X-Amz-Security-Token'; const sessionToken = headers?.find(isAMZSecurityTokenHeader)?.value; const credentials = RegExp(/(?<=Credential=).*/).exec(authHeader)?.[0].split('/'); return { authentication: { type: 'iam', disabled: false, accessKeyId: credentials?.[0], region: credentials?.[2], secretAccessKey: '', service: credentials?.[3], ...(sessionToken ? { sessionToken } : {}), }, headers: reject(isAMZSecurityTokenHeader, headers), }; }; importBasicAuthentication = (auth: Authetication) => { if (!auth.basic) { return {}; } const item = { type: 'basic', disabled: false, username: '', password: '', }; const { schema } = this.collection.info; if (schema === POSTMAN_SCHEMA_V2_0) { const basic = auth.basic as V200Auth['basic']; item.username = basic?.username as string; item.password = basic?.password as string; } if (schema === POSTMAN_SCHEMA_V2_1) { const basic = auth.basic as V210Auth['basic']; item.username = this.findValueByKey(basic, 'username'); item.password = this.findValueByKey(basic, 'password'); } return item; }; importBasicAuthenticationFromHeader = (authHeader: string) => { if (!authHeader) { return {}; } const authStringIndex = authHeader.trim().replace(/\s+/g, ' ').indexOf(' '); const hasEncodedAuthString = authStringIndex !== -1; const encodedAuthString = hasEncodedAuthString ? authHeader.substring(authStringIndex + 1) : ''; const authString = Buffer.from(encodedAuthString, 'base64').toString(); const item = { type: 'basic', disabled: false, username: RegExp(/.+?(?=\:)/).exec(authString)?.[0], password: RegExp(/(?<=\:).*/).exec(authString)?.[0], }; return item; }; importBearerTokenAuthentication = (auth: Authetication) => { if (!auth.bearer) { return {}; } const item = { type: 'bearer', disabled: false, token: '', prefix: '', }; const { schema } = this.collection.info; if (schema === POSTMAN_SCHEMA_V2_0) { item.token = (auth.bearer as V200Auth['bearer'])?.token as string; } if (schema === POSTMAN_SCHEMA_V2_1) { item.token = this.findValueByKey( auth.bearer as V210Auth['bearer'], 'token', ); } return item; }; importBearerAuthenticationFromHeader = (authHeader: string) => { if (!authHeader) { return {}; } const authHeader2 = authHeader.replace(/\s+/, ' '); const tokenIndex = authHeader.indexOf(' '); return { type: 'bearer', disabled: false, token: tokenIndex + 1 ? authHeader2.substring(tokenIndex + 1) : '', prefix: '', }; }; importDigestAuthentication = (auth: Authetication) => { if (!auth.digest) { return {}; } const item = { type: 'digest', disabled: false, username: '', password: '', }; const { schema } = this.collection.info; if (schema === POSTMAN_SCHEMA_V2_0) { const digest = auth.digest as V200Auth['digest']; item.username = digest?.username as string; item.password = digest?.password as string; } if (schema === POSTMAN_SCHEMA_V2_1) { const digest = auth.digest as V210Auth1[]; item.username = this.findValueByKey<V210Auth1>(digest, 'username'); item.password = this.findValueByKey<V210Auth1>(digest, 'password'); } return item; }; // example: Digest username="Username", realm="Realm", nonce="Nonce", uri="//api/v1/report?start_date_min=2019-01-01T00%3A00%3A00%2B00%3A00&start_date_max=2019-01-01T23%3A59%3A59%2B00%3A00&projects[]=%2Fprojects%2F1&include_child_projects=1&search_query=meeting&columns[]=project&include_project_data=1&sort[]=-duration", algorithm="MD5", response="f3f762321e158aefe103529eda4ddb7c", opaque="Opaque" importDigestAuthenticationFromHeader = (authHeader: string) => { const item = { type: 'digest', disabled: false, username: RegExp(/(?<=username=")(.*?)(?=")/).exec(authHeader)?.[0], password: '', }; return item; }; importOauth1Authentication = (auth: Authetication) => { if (!auth.oauth1) { return {}; } const item = { type: 'oauth1', disabled: false, callback: '', consumerKey: '', consumerSecret: '', nonce: '', privateKey: '', realm: '', signatureMethod: '', timestamp: '', tokenKey: '', tokenSecret: '', verifier: '', version: '', }; const { schema } = this.collection.info; if (schema === POSTMAN_SCHEMA_V2_0) { const oauth1 = auth.oauth1 as V200Auth['oauth1']; item.consumerKey = oauth1?.consumerKey as string; item.consumerSecret = oauth1?.consumerSecret as string; item.nonce = oauth1?.nonce as string; item.realm = oauth1?.realm as string; item.signatureMethod = oauth1?.signatureMethod as string; item.timestamp = oauth1?.timestamp as string; item.tokenKey = oauth1?.token as string; item.tokenSecret = oauth1?.tokenSecret as string; item.version = oauth1?.version as string; } if (schema === POSTMAN_SCHEMA_V2_1) { const oauth1 = auth.oauth1 as V210Auth['oauth1']; item.consumerKey = this.findValueByKey(oauth1, 'consumerKey'); item.consumerSecret = this.findValueByKey(oauth1, 'consumerSecret'); item.nonce = this.findValueByKey(oauth1, 'nonce'); item.realm = this.findValueByKey(oauth1, 'realm'); item.signatureMethod = this.findValueByKey(oauth1, 'signatureMethod'); item.timestamp = this.findValueByKey(oauth1, 'timestamp'); item.tokenKey = this.findValueByKey(oauth1, 'token'); item.tokenSecret = this.findValueByKey(oauth1, 'tokenSecret'); item.version = this.findValueByKey(oauth1, 'version'); } return item; }; // Example: OAuth realm="Realm",oauth_consumer_key="Consumer%20Key",oauth_token="Access%20Token",oauth_signature_method="HMAC-SHA1",oauth_timestamp="Timestamp",oauth_nonce="Nonce",oauth_version="Version",oauth_callback="Callback%20URL",oauth_verifier="Verifier",oauth_signature="TwJvZVasVWTL6X%2Bz3lmuiyvaX2Q%3D" importOauth1AuthenticationFromHeader = (authHeader: string) => { const item = { type: 'oauth1', disabled: false, callback: RegExp(/(?<=oauth_callback=")(.*?)(?=")/).exec(authHeader)?.[0], consumerKey: RegExp(/(?<=oauth_consumer_key=")(.*?)(?=")/).exec(authHeader)?.[0], consumerSecret: '', nonce: RegExp(/(?<=oauth_nonce=")(.*?)(?=")/).exec(authHeader)?.[0], privateKey: '', realm: RegExp(/(?<=realm=")(.*?)(?=")/).exec(authHeader)?.[0], signatureMethod: RegExp(/(?<=oauth_signature_method=")(.*?)(?=")/).exec(authHeader)?.[0], timestamp: RegExp(/(?<=oauth_timestamp=")(.*?)(?=")/).exec(authHeader)?.[0], tokenKey: RegExp(/(?<=oauth_token=")(.*?)(?=")/).exec(authHeader)?.[0], tokenSecret: '', verifier: RegExp(/(?<=oauth_verifier=")(.*?)(?=")/).exec(authHeader)?.[0], version: RegExp(/(?<=oauth_version=")(.*?)(?=")/).exec(authHeader)?.[0], }; return item; }; importOauth2Authentication = (auth: Authetication) => { if (!auth.oauth2) { return {}; } const { schema } = this.collection.info; // Workaround for https://github.com/Kong/insomnia/issues/4437 // Note: We only support importing OAuth2 configuration from Postman v2.1 if (schema === POSTMAN_SCHEMA_V2_1) { const oauth2 = auth.oauth2 as V210Auth['oauth2']; return { type: 'oauth2', disabled: false, accessTokenUrl: this.findValueByKey(oauth2, 'accessTokenUrl'), authorizationUrl: this.findValueByKey(oauth2, 'authUrl'), grantType: this.findValueByKey(oauth2, 'grant_type'), password: '', username: '', clientId: this.findValueByKey(oauth2, 'clientId'), clientSecret: this.findValueByKey(oauth2, 'clientSecret'), redirectUrl: this.findValueByKey(oauth2, 'redirect_uri'), }; } const item = { type: 'oauth2', disabled: true, accessTokenUrl: '', authorizationUrl: '', grantType: 'authorization_code', password: '', username: '', }; return item; }; findValueByKey = <T extends { key: string; value?: unknown }>( array?: T[], key?: keyof T, ) => { if (!array) { return ''; } const obj = array.find(o => o.key === key); if (obj && typeof obj.value === 'string') { return obj.value || ''; } return ''; }; } export const convert: Converter = rawData => { requestCount = 1; requestGroupCount = 1; try { const collection = JSON.parse(rawData) as PostmanCollection; if ( collection.info.schema === POSTMAN_SCHEMA_V2_0 || collection.info.schema === POSTMAN_SCHEMA_V2_1 ) { return new ImportPostman(collection).importCollection(); } } catch (error) { // Nothing } return null; };