UNPKG

zapier-platform-cli

Version:

The CLI for managing integrations in Zapier Developer Platform.

platform.zapier.com

zapier/zapier-platform

526 lines (450 loc) • 15.1 kB

JavaScript

'use strict'; const _ = require('lodash'); const colors = require('colors/safe'); const debug = require('debug')('zapier:api'); const { pipeline } = require('stream/promises'); const constants = require('../constants'); const qs = require('querystring'); const fs = require('fs'); const AdmZip = require('adm-zip'); const path = require('path'); const { writeFile, readFile } = require('./files'); const { prettyJSONstringify, startSpinner, endSpinner } = require('./display'); const { localAppCommand } = require('./local'); // TODO split these out into better files // Reads the JSON file at ~/.zapierrc (AUTH_LOCATION). const readCredentials = (explodeIfMissing = true) => { if (process.env.ZAPIER_DEPLOY_KEY) { return Promise.resolve({ [constants.AUTH_KEY]: process.env.ZAPIER_DEPLOY_KEY, }); } else { return Promise.resolve( readFile( constants.AUTH_LOCATION, `Please run \`${colors.cyan('zapier login')}\`.`, ) .then((buf) => { return JSON.parse(buf.toString()); }) .catch((err) => { if (explodeIfMissing) { throw err; } else { return {}; } }), ); } }; // Calls the underlying platform REST API with proper authentication. const callAPI = async ( route, options, rawError = false, credentialsRequired = true, returnStreamBody = false, ) => { // temp manual enable while we're not all the way moved over if (_.get(global, ['argOpts', 'debug'])) { debug.enabled = true; } options = options || {}; const url = options.url || constants.ENDPOINT + route; const requestOptions = { method: options.method || 'GET', body: options.body ? JSON.stringify(options.body) : null, headers: { ...options.extraHeaders, // extra headers first so they don't override defaults Accept: 'application/json', 'Content-Type': 'application/json; charset=utf-8', 'User-Agent': `${constants.PACKAGE_NAME}/${constants.PACKAGE_VERSION}`, 'X-Requested-With': 'XMLHttpRequest', }, }; if (!options.skipDeployKey) { const credentials = await readCredentials(credentialsRequired); requestOptions.headers['X-Deploy-Key'] = credentials[constants.AUTH_KEY]; } const res = await fetch(url, requestOptions); let errorMessage = ''; let text = ''; const hitError = res.status >= 400; if (hitError) { try { text = await res.text(); errorMessage = JSON.parse(text).errors.join(', '); } catch (err) { console.log('text', text); errorMessage = (text || 'Unknown error').slice(0, 250); } } debug(`>> ${requestOptions.method} ${requestOptions.url || res.url}`); if (requestOptions.body) { const replacementStr = 'raw zip removed in logs'; const requestBody = JSON.parse(requestOptions.body); const cleanedBody = {}; for (const k in requestBody) { if (k.includes('zip_file')) { cleanedBody[k] = replacementStr; } else { cleanedBody[k] = requestBody[k]; } } debug(`>> ${JSON.stringify(cleanedBody)}`); } debug(`<< ${res.status}`); debug(`<< ${(text || '').substring(0, 2500)}`); debug('------------'); // to help differentiate request from each other if (hitError) { const niceMessage = `"${url}" returned "${res.status}" saying "${errorMessage}"`; if (rawError) { res.text = text; try { res.json = JSON.parse(text); } catch (e) { res.json = {}; } res.errText = niceMessage; throw res; } else { throw new Error(niceMessage); } } return returnStreamBody ? res.body : res.json(); }; // Given a valid username and password - create a new deploy key. const createCredentials = (username, password, totpCode) => { return callAPI( '/keys', { skipDeployKey: true, method: 'POST', body: { username, password, totp_code: totpCode, }, }, // if totp is empty, we want a raw request so we can supress an error. If it's here, we want it to be "non-raw" !totpCode, ); }; const createCanary = async (versionFrom, versionTo, body) => { const linkedAppId = (await getLinkedAppConfig(undefined, true))?.id; return callAPI( `/apps/${linkedAppId}/versions/${versionFrom}/canary-to/${versionTo}`, { method: 'POST', body, }, ); }; const listCanaries = async () => { const linkedAppId = (await getLinkedAppConfig(undefined, true))?.id; return callAPI(`/apps/${linkedAppId}/canaries`, { method: 'GET', }); }; const deleteCanary = async (versionFrom, versionTo) => { const linkedAppId = (await getLinkedAppConfig(undefined, true))?.id; return callAPI( `/apps/${linkedAppId}/versions/${versionFrom}/canary-to/${versionTo}`, { method: 'DELETE', }, ); }; /** * read local `apprc` file */ const getLinkedAppConfig = async (appDir, explodeIfMissing = true) => { appDir = appDir || '.'; const file = path.resolve(appDir, constants.CURRENT_APP_FILE); try { const buf = await readFile(file); return JSON.parse(buf.toString()); } catch (e) { if (explodeIfMissing) { throw e; } return {}; } }; /** * write local `apprc` file */ const writeLinkedAppConfig = async (app, appDir) => { const file = appDir ? path.resolve(appDir, constants.CURRENT_APP_FILE) : constants.CURRENT_APP_FILE; // we want to eat errors about bad json and missing files // and ensure the below code is passes a js object let config; try { // read contents of existing config before writing const configBuff = await readFile(file); config = JSON.parse(configBuff.toString()); } catch (e) { config = {}; } const updatedConfig = { ...config, id: app.id, key: app.key }; return writeFile(file, prettyJSONstringify(updatedConfig)); }; const checkCredentials = () => callAPI('/check'); /** * get app info from server and provide specifc error messages if a user doesn't have write permissions for that app */ const getWritableApp = async () => { const linkedAppConfig = await getLinkedAppConfig(undefined, false); if (!linkedAppConfig.id) { throw new Error( `This project hasn't yet been associated with an existing Zapier integration.\n\nIf it's a brand new integration, run \`${colors.cyan( 'zapier register', )}\`.\n\nIf this project already exists in your Zapier account, run \`${colors.cyan( 'zapier link', )}\` instead.`, ); } try { return await callAPI(`/apps/${linkedAppConfig.id}`, undefined, true); } catch (errOrRejectedResponse) { if (errOrRejectedResponse instanceof Error) { // this is likely a missing auth file or an actual unexpected error throw errOrRejectedResponse; } if (errOrRejectedResponse.status === 401) { throw new Error( `Your credentials are present, but invalid${ process.env.ZAPIER_BASE_ENDPOINT ? ' in this environment' : '' }. Please run \`${colors.cyan('zapier login')}\` to resolve.`, ); } else if (errOrRejectedResponse.status === 404) { // if this fails, we know the issue is they can't see this app const message = `You don't have access to integration ID ${ linkedAppConfig.id } (or it doesn't exist${ process.env.ZAPIER_BASE_ENDPOINT ? ' in this environment.' : '' }). Try running \`${colors.cyan('zapier link')}\` to correct that.${ process.env.ZAPIER_BASE_ENDPOINT ? `\n\nFor local dev: make sure you've run \`${colors.cyan( 'zapier login', )}\` and \`${colors.cyan( 'zapier register', )}\` while providing ZAPIER_BASE_ENDPOINT.` : '' }`; throw new Error(message); } // some other API error throw new Error(errOrRejectedResponse.errText); } }; // Loads the linked app version from the API const getVersionInfo = () => { return Promise.all([ getWritableApp(), localAppCommand({ command: 'definition' }), ]).then(([app, definition]) => { return callAPI(`/apps/${app.id}/versions/${definition.version}`); }); }; const getSpecificVersionInfo = async (version) => { const app = await getWritableApp(); return callAPI(`/apps/${app.id}/versions/${version}`); }; // Intended to match logic of https://gitlab.com/zapier/team-developer-platform/dev-platform/-/blob/9fa28d8bacd04ebdad5937bd039c71aede4ede47/web/frontend/assets/app/entities/CliApp/CliApp.ts#L96 const isPublished = (appStatus) => { const publishedStatuses = ['public', 'beta']; return publishedStatuses.indexOf(appStatus) > -1; }; const listApps = async () => { let linkedApp; try { linkedApp = await getWritableApp(); } catch (e) { // no worries } const apps = await callAPI('/apps'); return { app: linkedApp, apps: apps.objects.map((app) => { app.linked = linkedApp && app.id === linkedApp.id ? colors.green('✔') : ''; return app; }), }; }; // endpoint can be string or func(app) const listEndpoint = async (endpoint, keyOverride) => listEndpointMulti({ endpoint, keyOverride }); // takes {endpoint: string, keyOverride?: string}[] const listEndpointMulti = async (...calls) => { const app = await getWritableApp(); let output = { app }; for (const { endpoint, keyOverride } of calls) { if ((_.isFunction(endpoint) || endpoint.includes('/')) && !keyOverride) { throw new Error('must incude keyOverride with complex endpoint'); } const route = _.isFunction(endpoint) ? endpoint(app) : `/apps/${app.id}/${endpoint}`; const results = await callAPI(route, { // if a full url comes out of the function, we have to use that url: route.startsWith('http') ? route : undefined, }); const { objects, ...theRest } = results; output = { ...output, [keyOverride || endpoint]: objects, ...theRest }; } return output; }; const listVersions = () => listEndpoint('versions'); const listHistory = () => listEndpoint('history'); const listInvitees = () => listEndpoint('invitees'); const listLogs = (opts) => { return listEndpoint(`logs?${qs.stringify(_.omit(opts, 'debug'))}`, 'logs'); }; const listEnv = (version) => listEndpoint(`versions/${version}/environment`, 'env'); const listMigrations = () => listEndpoint('migrations'); const listAuthentications = () => listEndpoint('authentications'); // the goal of this is to call `/check` with as much info as possible // if the app is registered and auth is available, then we can send app id // otherwise, we should just send the definition and get back checks about that const validateApp = async (definition) => { // if either of these are missing, do the simple definition check if ( _.isEmpty(await readCredentials(false)) || _.isEmpty(await getLinkedAppConfig(undefined, false)) ) { return callAPI('/check', { skipDeployKey: true, method: 'POST', body: { app_definition: definition }, }); } // otherwise, we have a "full" app. This could still fail (if their token is // present but bad, or they've lost access to that app), but should probably be fine. const linkedApp = await getWritableApp(); return callAPI('/check', { method: 'POST', body: { app_id: linkedApp.id, version: definition.version, app_definition: definition, }, }); }; const downloadSourceZip = async (dst) => { const linkedAppConfig = await getLinkedAppConfig(undefined, false); if (!linkedAppConfig.id) { throw new Error( `This project hasn't yet been associated with an existing Zapier integration.\n\nIf it's a brand new integration, run \`${colors.cyan( 'zapier register', )}\`.\n\nIf this project already exists in your Zapier account, run \`${colors.cyan( 'zapier link', )}\` instead.`, ); } const url = `/apps/${linkedAppConfig.id}/latest/pull`; try { const resBody = await callAPI(url, undefined, true, true, true); const writeStream = fs.createWriteStream(dst); startSpinner('Downloading most recent source.zip file...'); // use pipeline to handle the download stream await pipeline(resBody, writeStream); } catch (err) { throw new Error(`Failed to download source.zip: ${err.errText}`); } finally { endSpinner(); } }; const upload = async ( app, { skipValidation = false, overwritePartnerChanges = false } = {}, snapshotVersion, ) => { const zipPath = constants.BUILD_PATH; const sourceZipPath = constants.SOURCE_PATH; const appDir = process.cwd(); const fullZipPath = path.resolve(appDir, zipPath); const fullSourceZipPath = path.resolve(appDir, sourceZipPath); if (!fs.existsSync(fullZipPath)) { throw new Error( 'Missing a built integration. Try running `zapier build` first.\nAlternatively, run `zapier push`, which will build and upload in one command.', ); } const zip = new AdmZip(fullZipPath); const definitionJson = zip.readAsText('definition.json'); if (!definitionJson) { throw new Error('definition.json in the zip was missing!'); } const definition = JSON.parse(definitionJson); const binaryZip = fs.readFileSync(fullZipPath); const buffer = Buffer.from(binaryZip).toString('base64'); const binarySourceZip = fs.readFileSync(fullSourceZipPath); const sourceBuffer = Buffer.from(binarySourceZip).toString('base64'); const headers = {}; if (overwritePartnerChanges) { headers['X-Overwrite-Partner-Changes'] = 'true'; } const version = snapshotVersion ?? definition.version; startSpinner(`Uploading version ${version}`); try { await callAPI( `/apps/${app.id}/versions/${version}`, { method: 'PUT', body: { zip_file: buffer, source_zip_file: sourceBuffer, skip_validation: skipValidation, }, extraHeaders: headers, }, true, ); } catch (err) { endSpinner({ success: false }); // 409 from the backend specifically signals that the last changes were from a partner // and this is a staff user which could unintentionally overwrite those changes if (err.status === 409) { throw new Error( `The latest integration changes appear to be from a partner. OK to overwrite?` + ` If so, run this command again using the '--overwrite-partner-changes' flag.`, ); } // Don't ignore other errors, re-throw them with a user-friendly message throw new Error(err.errText); } finally { endSpinner(); } }; module.exports = { callAPI, createCanary, checkCredentials, createCredentials, deleteCanary, downloadSourceZip, getLinkedAppConfig, getWritableApp, getVersionInfo, getSpecificVersionInfo, isPublished, listApps, listAuthentications, listCanaries, listEndpoint, listEndpointMulti, listEnv, listHistory, listInvitees, listLogs, listVersions, listMigrations, readCredentials, upload, validateApp, writeLinkedAppConfig, };