n8n
Version:
n8n Workflow Automation Tool
139 lines • 7.09 kB
JavaScript
;
var __createBinding = (this && this.__createBinding) || (Object.create ? (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
var desc = Object.getOwnPropertyDescriptor(m, k);
if (!desc || ("get" in desc ? !m.__esModule : desc.writable || desc.configurable)) {
desc = { enumerable: true, get: function() { return m[k]; } };
}
Object.defineProperty(o, k2, desc);
}) : (function(o, m, k, k2) {
if (k2 === undefined) k2 = k;
o[k2] = m[k];
}));
var __setModuleDefault = (this && this.__setModuleDefault) || (Object.create ? (function(o, v) {
Object.defineProperty(o, "default", { enumerable: true, value: v });
}) : function(o, v) {
o["default"] = v;
});
var __decorate = (this && this.__decorate) || function (decorators, target, key, desc) {
var c = arguments.length, r = c < 3 ? target : desc === null ? desc = Object.getOwnPropertyDescriptor(target, key) : desc, d;
if (typeof Reflect === "object" && typeof Reflect.decorate === "function") r = Reflect.decorate(decorators, target, key, desc);
else for (var i = decorators.length - 1; i >= 0; i--) if (d = decorators[i]) r = (c < 3 ? d(r) : c > 3 ? d(target, key, r) : d(target, key)) || r;
return c > 3 && r && Object.defineProperty(target, key, r), r;
};
var __importStar = (this && this.__importStar) || function (mod) {
if (mod && mod.__esModule) return mod;
var result = {};
if (mod != null) for (var k in mod) if (k !== "default" && Object.prototype.hasOwnProperty.call(mod, k)) __createBinding(result, mod, k);
__setModuleDefault(result, mod);
return result;
};
var __metadata = (this && this.__metadata) || function (k, v) {
if (typeof Reflect === "object" && typeof Reflect.metadata === "function") return Reflect.metadata(k, v);
};
var __importDefault = (this && this.__importDefault) || function (mod) {
return (mod && mod.__esModule) ? mod : { "default": mod };
};
Object.defineProperty(exports, "__esModule", { value: true });
exports.AbstractOAuthController = void 0;
const typedi_1 = require("typedi");
const csrf_1 = __importDefault(require("csrf"));
const n8n_core_1 = require("n8n-core");
const n8n_workflow_1 = require("n8n-workflow");
const credentials_repository_1 = require("../../databases/repositories/credentials.repository");
const sharedCredentials_repository_1 = require("../../databases/repositories/sharedCredentials.repository");
const constants_1 = require("../../constants");
const CredentialsHelper_1 = require("../../CredentialsHelper");
const WorkflowExecuteAdditionalData = __importStar(require("../../WorkflowExecuteAdditionalData"));
const Logger_1 = require("../../Logger");
const ExternalHooks_1 = require("../../ExternalHooks");
const url_service_1 = require("../../services/url.service");
const bad_request_error_1 = require("../../errors/response-errors/bad-request.error");
const not_found_error_1 = require("../../errors/response-errors/not-found.error");
const config_1 = require("@n8n/config");
let AbstractOAuthController = class AbstractOAuthController {
constructor(logger, externalHooks, credentialsHelper, credentialsRepository, sharedCredentialsRepository, urlService, globalConfig) {
this.logger = logger;
this.externalHooks = externalHooks;
this.credentialsHelper = credentialsHelper;
this.credentialsRepository = credentialsRepository;
this.sharedCredentialsRepository = sharedCredentialsRepository;
this.urlService = urlService;
this.globalConfig = globalConfig;
}
get baseUrl() {
const restUrl = `${this.urlService.getInstanceBaseUrl()}/${this.globalConfig.endpoints.rest}`;
return `${restUrl}/oauth${this.oauthVersion}-credential`;
}
async getCredential(req) {
const { id: credentialId } = req.query;
if (!credentialId) {
throw new bad_request_error_1.BadRequestError('Required credential ID is missing');
}
const credential = await this.sharedCredentialsRepository.findCredentialForUser(credentialId, req.user, ['credential:read']);
if (!credential) {
this.logger.error(`OAuth${this.oauthVersion} credential authorization failed because the current user does not have the correct permissions`, { userId: req.user.id });
throw new not_found_error_1.NotFoundError(constants_1.RESPONSE_ERROR_MESSAGES.NO_CREDENTIAL);
}
return credential;
}
async getAdditionalData() {
return await WorkflowExecuteAdditionalData.getBase();
}
async getDecryptedData(credential, additionalData) {
return await this.credentialsHelper.getDecrypted(additionalData, credential, credential.type, 'internal', undefined, true);
}
applyDefaultsAndOverwrites(credential, decryptedData, additionalData) {
return this.credentialsHelper.applyDefaultsAndOverwrites(additionalData, decryptedData, credential.type, 'internal');
}
async encryptAndSaveData(credential, decryptedData) {
const credentials = new n8n_core_1.Credentials(credential, credential.type);
credentials.setData(decryptedData);
await this.credentialsRepository.update(credential.id, {
...credentials.getDataToSave(),
updatedAt: new Date(),
});
}
async getCredentialWithoutUser(credentialId) {
return await this.credentialsRepository.findOneBy({ id: credentialId });
}
createCsrfState(credentialsId) {
const token = new csrf_1.default();
const csrfSecret = token.secretSync();
const state = {
token: token.create(csrfSecret),
cid: credentialsId,
};
return [csrfSecret, Buffer.from(JSON.stringify(state)).toString('base64')];
}
decodeCsrfState(encodedState) {
const errorMessage = 'Invalid state format';
const decoded = (0, n8n_workflow_1.jsonParse)(Buffer.from(encodedState, 'base64').toString(), {
errorMessage,
});
if (typeof decoded.cid !== 'string' || typeof decoded.token !== 'string') {
throw new n8n_workflow_1.ApplicationError(errorMessage);
}
return decoded;
}
verifyCsrfState(decrypted, state) {
const token = new csrf_1.default();
return (decrypted.csrfSecret === undefined ||
!token.verify(decrypted.csrfSecret, state.token));
}
renderCallbackError(res, message, reason) {
res.render('oauth-error-callback', { error: { message, reason } });
}
};
exports.AbstractOAuthController = AbstractOAuthController;
exports.AbstractOAuthController = AbstractOAuthController = __decorate([
(0, typedi_1.Service)(),
__metadata("design:paramtypes", [Logger_1.Logger,
ExternalHooks_1.ExternalHooks,
CredentialsHelper_1.CredentialsHelper,
credentials_repository_1.CredentialsRepository,
sharedCredentials_repository_1.SharedCredentialsRepository,
url_service_1.UrlService,
config_1.GlobalConfig])
], AbstractOAuthController);
//# sourceMappingURL=abstractOAuth.controller.js.map