UNPKG

nephele

Version:

Highly customizable and extensible WebDAV server for Node.js and Express.

github.com/sciactive/nephele

sciactive/nephele

156 lines 6.62 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
import { ForbiddenError, LockedError, MediaTypeNotSupportedError, NotAcceptableError, UnauthorizedError, } from '../Errors/index.js'; import { catchErrors } from '../catchErrors.js'; import { MultiStatus, Status } from '../MultiStatus.js'; import { Method } from './Method.js'; export class DELETE extends Method { async run(request, response) { const { url, encoding } = this.getRequestData(request, response); if (await this.runPlugins(request, response, 'beginDelete', { method: this, url, })) { return; } if (await this.isAdapterRoot(request, response, url)) { throw new ForbiddenError('This collection cannot be deleted.'); } await this.checkAuthorization(request, response, 'DELETE'); const contentType = request.accepts('application/xml', 'text/xml'); if (!contentType) { throw new NotAcceptableError('Requested content type is not supported.'); } const resource = await response.locals.adapter.getResource(url, response.locals.baseUrl); if (await this.runPlugins(request, response, 'preDelete', { method: this, resource, })) { return; } let stream = await this.getBodyStream(request, response); let providedBody = false; stream.on('data', (data) => { if (data.toString().trim()) { providedBody = true; } }); await new Promise((resolve, _reject) => { stream.on('end', () => { resolve(); }); }); if (providedBody) { response.locals.debug('Provided body to DELETE.'); throw new MediaTypeNotSupportedError("This server doesn't understand the body sent in the request."); } const lockPermission = await this.getLockPermission(request, response, resource, response.locals.user); if (lockPermission === 1) { throw new LockedError('The user does not have permission to remove a resource from the locked collection.'); } if (lockPermission === 0) { throw new LockedError('The user does not have permission to delete the locked resource.'); } await this.checkConditionalHeaders(request, response); if (await this.runPlugins(request, response, 'beforeDelete', { method: this, resource, })) { return; } response.set({ 'Cache-Control': 'private, no-cache', Date: new Date().toUTCString(), }); if (await resource.isCollection()) { const multiStatus = new MultiStatus(); await this.recursivelyDelete(resource, request, response, multiStatus); if (multiStatus.statuses.length === 0) { const locks = await this.getCurrentResourceLocks(resource); for (let lock of locks) { await lock.delete(); } await resource.delete(response.locals.user); response.status(204); response.end(); } else { const responseXml = await this.renderXml(multiStatus.render()); response.status(207); response.set({ 'Content-Type': `${contentType}; charset=utf-8`, }); this.sendBodyContent(response, responseXml, encoding); } } else { const locks = await this.getCurrentResourceLocks(resource); for (let lock of locks) { await lock.delete(); } await resource.delete(response.locals.user); response.status(204); response.end(); } await this.runPlugins(request, response, 'afterDelete', { method: this, resource, }); } async recursivelyDelete(collection, request, response, multiStatus) { try { const children = await collection.getInternalMembers(response.locals.user); let allDeleted = true; for (let child of children) { const run = catchErrors(async () => { if (await this.isAdapterRoot(request, response, await child.getCanonicalUrl())) { throw new ForbiddenError('This collection cannot be deleted.'); } const lockPermission = await this.getLockPermission(request, response, child, response.locals.user); if (lockPermission !== 2) { throw new LockedError('This resource is locked.'); } if (await child.isCollection()) { allDeleted = allDeleted && (await this.recursivelyDelete(child, request, response, multiStatus)); } const locks = await this.getCurrentResourceLocks(child); for (let lock of locks) { await lock.delete(); } await child.delete(response.locals.user); }, async (code, message, error) => { if (code === 500 && error) { response.locals.debug('Unknown Error: %o', error); } const url = await child.getCanonicalUrl(); let status = new Status(url, code); if (message) { status.description = message; } if (error instanceof LockedError) { status.setBody({ error: [{ 'lock-token-submitted': {} }] }); } response.locals.errors.push(status); multiStatus.addStatus(status); allDeleted = false; }); await run(); } return allDeleted; } catch (e) { const url = await collection.getCanonicalUrl(); let error = new Status(url, 500); if (e instanceof UnauthorizedError) { error = new Status(url, 401); } if (e.message) { error.description = e.message; } response.locals.errors.push(error); multiStatus.addStatus(error); return false; } } } //# sourceMappingURL=DELETE.js.map