nodemailer/wildduck
1
1
Fork 0
mirror of https://github.com/nodemailer/wildduck.git synced 2024-11-10 17:47:07 +08:00
Code Issues Projects Releases Packages Wiki Activity
wildduck/lib/api/domainaliases.js

646 lines
20 KiB
JavaScript
Raw Normal View History

Updated address resolving
2017-12-01 21:04:32 +08:00
'use strict';
const Joi = require('../joi');
Use async mongo paging
2018-08-03 20:44:03 +08:00
const MongoPaging = require('mongo-cursor-pagination');
Updated address resolving
2017-12-01 21:04:32 +08:00
const ObjectID = require('mongodb').ObjectID;
const tools = require('../tools');
updated api permissions
2018-10-12 16:13:54 +08:00
const roles = require('../roles');
Updated address resolving
2017-12-01 21:04:32 +08:00
module.exports = (db, server) => {
/**
updated apidocs
2018-08-16 18:08:15 +08:00
* @api {get} /domainaliases List registered Domain Aliases
Updated address resolving
2017-12-01 21:04:32 +08:00
* @apiName GetAliases
Updated address resolving
2017-12-01 21:21:44 +08:00
* @apiGroup DomainAliases
Updated address resolving
2017-12-01 21:04:32 +08:00
* @apiHeader {String} X-Access-Token Optional access token if authentication is enabled
* @apiHeaderExample {json} Header-Example:
* {
* "X-Access-Token": "59fc66a03e54454869460e45"
* }
*
* @apiParam {String} [query] Partial match of a Domain Alias or Domain name
* @apiParam {Number} [limit=20] How many records to return
* @apiParam {Number} [page=1] Current page number. Informational only, page numbers start from 1
* @apiParam {Number} [next] Cursor value for next page, retrieved from <code>nextCursor</code> response value
* @apiParam {Number} [previous] Cursor value for previous page, retrieved from <code>previousCursor</code> response value
*
* @apiSuccess {Boolean} success Indicates successful response
* @apiSuccess {Number} total How many results were found
* @apiSuccess {Number} page Current page number. Derived from <code>page</code> query argument
* @apiSuccess {String} previousCursor Either a cursor string or false if there are not any previous results
* @apiSuccess {String} nextCursor Either a cursor string or false if there are not any next results
* @apiSuccess {Object[]} results Aliases listing
* @apiSuccess {String} results.id ID of the Domain Alias
* @apiSuccess {String} results.alias Domain Alias
* @apiSuccess {String} results.domain The domain this alias applies to
*
* @apiError error Description of the error
*
* @apiExample {curl} Example usage:
* curl -i http://localhost:8080/domainaliases
*
* @apiSuccessExample {json} Success-Response:
* HTTP/1.1 200 OK
* {
* "success": true,
* "total": 1,
* "page": 1,
* "previousCursor": false,
* "nextCursor": false,
* "results": [
* {
* "id": "59ef21aef255ed1d9d790e81",
* "alias": "example.net",
* "domain": "example.com"
* }
* ]
* }
*
* @apiErrorExample {json} Error-Response:
* HTTP/1.1 200 OK
* {
* "error": "Database error"
* }
*/
Use async mongo paging
2018-08-03 20:44:03 +08:00
server.get(
{ name: 'domainaliases', path: '/domainaliases' },
tools.asyncifyJson(async (req, res, next) => {
res.charSet('utf-8');
const schema = Joi.object().keys({
default GET+POST to req.params
2020-07-16 16:15:04 +08:00
query: Joi.string().trim().empty('').max(255),
limit: Joi.number().default(20).min(1).max(250),
next: Joi.string().empty('').mongoCursor().max(1024),
previous: Joi.string().empty('').mongoCursor().max(1024),
allow ip and sess for all API calls. added hashedPassword argument for user create and update
2018-09-07 14:58:05 +08:00
page: Joi.number().default(1),
sess: Joi.string().max(255),
ip: Joi.string().ip({
version: ['ipv4', 'ipv6'],
cidr: 'forbidden'
})
Use async mongo paging
2018-08-03 20:44:03 +08:00
});
default GET+POST to req.params
2020-07-16 16:15:04 +08:00
const result = Joi.validate(req.params, schema, {
Use async mongo paging
2018-08-03 20:44:03 +08:00
abortEarly: false,
convert: true,
allowUnknown: true
Updated address resolving
2017-12-01 21:04:32 +08:00
});
Use async mongo paging
2018-08-03 20:44:03 +08:00
if (result.error) {
migrated API tests from icedfrisby to supertest
2019-07-31 21:05:59 +08:00
res.status(400);
Updated address resolving
2017-12-01 21:04:32 +08:00
res.json({
Use async mongo paging
2018-08-03 20:44:03 +08:00
error: result.error.message,
show validation errors in JSON response
2020-07-16 16:31:58 +08:00
code: 'InputValidationError',
details: tools.validationErrors(result)
Updated address resolving
2017-12-01 21:04:32 +08:00
});
return next();
}
updated api permissions
2018-10-12 16:13:54 +08:00
// permissions check
req.validate(roles.can(req.role).readAny('domainaliases'));
Use async mongo paging
2018-08-03 20:44:03 +08:00
let query = result.value.query;
let limit = result.value.limit;
let page = result.value.page;
let pageNext = result.value.next;
let pagePrevious = result.value.previous;
let filter = query
? {
$or: [
{
alias: {
$regex: query.replace(/[-/\\^$*+?.()|[\]{}]/g, '\\$&'),
$options: ''
}
},
{
domain: {
$regex: query.replace(/[-/\\^$*+?.()|[\]{}]/g, '\\$&'),
$options: ''
}
}
]
}
: {};
update for mongodb pagination
2018-08-03 21:15:35 +08:00
let total = await db.users.collection('domainaliases').countDocuments(filter);
Use async mongo paging
2018-08-03 20:44:03 +08:00
Updated address resolving
2017-12-01 21:04:32 +08:00
let opts = {
limit,
query: filter,
fields: {
fix domain alias listing
2018-08-17 19:51:06 +08:00
// FIXME: hack to keep alias in response
alias: true,
update for mongodb pagination
2018-08-03 21:15:35 +08:00
// FIXME: MongoPaging inserts fields value as second argument to col.find()
projection: {
_id: true,
alias: true,
domain: true
}
Updated address resolving
2017-12-01 21:04:32 +08:00
},
paginatedField: 'alias',
sortAscending: true
};
if (pageNext) {
opts.next = pageNext;
do not use fields
2018-09-20 16:28:43 +08:00
} else if ((!page || page > 1) && pagePrevious) {
Updated address resolving
2017-12-01 21:04:32 +08:00
opts.previous = pagePrevious;
}
Use async mongo paging
2018-08-03 20:44:03 +08:00
let listing;
try {
listing = await MongoPaging.find(db.users.collection('domainaliases'), opts);
} catch (err) {
res.json({
error: 'MongoDB Error: ' + err.message,
code: 'InternalDatabaseError'
});
Updated address resolving
2017-12-01 21:04:32 +08:00
return next();
Use async mongo paging
2018-08-03 20:44:03 +08:00
}
if (!listing.hasPrevious) {
page = 1;
}
let response = {
success: true,
query,
total,
page,
previousCursor: listing.hasPrevious ? listing.previous : false,
nextCursor: listing.hasNext ? listing.next : false,
results: (listing.results || []).map(domainData => ({
id: domainData._id.toString(),
alias: domainData.alias,
domain: domainData.domain
}))
};
res.json(response);
return next();
})
);
Updated address resolving
2017-12-01 21:04:32 +08:00
/**
initial handling of DKIM keys
2017-12-28 19:45:02 +08:00
* @api {post} /domainaliases Create new Domain Alias
Updated address resolving
2017-12-01 21:04:32 +08:00
* @apiName PostDomainAlias
Updated address resolving
2017-12-01 21:21:44 +08:00
* @apiGroup DomainAliases
* @apiDescription Add a new Alias for a Domain. This allows to accept mail on username@domain and username@alias
Updated address resolving
2017-12-01 21:04:32 +08:00
* @apiHeader {String} X-Access-Token Optional access token if authentication is enabled
* @apiHeaderExample {json} Header-Example:
* {
* "X-Access-Token": "59fc66a03e54454869460e45"
* }
*
* @apiParam {String} alias Domain Alias
* @apiParam {String} domain Domain name this Alias applies to
*
* @apiSuccess {Boolean} success Indicates successful response
* @apiSuccess {String} id ID of the Domain Alias
*
* @apiError error Description of the error
*
* @apiExample {curl} Example usage:
* curl -i -XPOST http://localhost:8080/domainaliases \
* -H 'Content-type: application/json' \
* -d '{
* "domain": "example.com",
* "alias": "example.org"
* }'
*
* @apiSuccessExample {json} Success-Response:
* HTTP/1.1 200 OK
* {
* "success": true,
* "id": "59ef21aef255ed1d9d790e81"
* }
*
* @apiErrorExample {json} Error-Response:
* HTTP/1.1 200 OK
* {
* "error": "This user does not exist"
* }
*/
updated api permissions
2018-10-12 16:13:54 +08:00
server.post(
'/domainaliases',
tools.asyncifyJson(async (req, res, next) => {
res.charSet('utf-8');
const schema = Joi.object().keys({
alias: Joi.string()
.max(255)
//.hostname()
.required(),
domain: Joi.string()
.max(255)
//.hostname()
.required(),
sess: Joi.string().max(255),
ip: Joi.string().ip({
version: ['ipv4', 'ipv6'],
cidr: 'forbidden'
})
Updated address resolving
2017-12-01 21:04:32 +08:00
});
updated api permissions
2018-10-12 16:13:54 +08:00
const result = Joi.validate(req.params, schema, {
abortEarly: false,
convert: true
});
if (result.error) {
migrated API tests from icedfrisby to supertest
2019-07-31 21:05:59 +08:00
res.status(400);
updated api permissions
2018-10-12 16:13:54 +08:00
res.json({
error: result.error.message,
show validation errors in JSON response
2020-07-16 16:31:58 +08:00
code: 'InputValidationError',
details: tools.validationErrors(result)
updated api permissions
2018-10-12 16:13:54 +08:00
});
return next();
}
// permissions check
req.validate(roles.can(req.role).createAny('domainaliases'));
let alias = tools.normalizeDomain(req.params.alias);
let domain = tools.normalizeDomain(req.params.domain);
let aliasData;
try {
aliasData = await db.users.collection('domainaliases').findOne(
Updated address resolving
2017-12-01 21:04:32 +08:00
{
updated api permissions
2018-10-12 16:13:54 +08:00
alias
Updated address resolving
2017-12-01 21:04:32 +08:00
},
updated api permissions
2018-10-12 16:13:54 +08:00
{
projection: { _id: 1 }
Updated address resolving
2017-12-01 21:04:32 +08:00
}
);
updated api permissions
2018-10-12 16:13:54 +08:00
} catch (err) {
res.json({
error: 'MongoDB Error: ' + err.message,
code: 'InternalDatabaseError'
});
return next();
Updated address resolving
2017-12-01 21:04:32 +08:00
}
updated api permissions
2018-10-12 16:13:54 +08:00
if (aliasData) {
res.json({
error: 'This domain alias already exists',
code: 'AliasExists'
});
return next();
}
let r;
try {
// insert alias address to email address registry
r = await db.users.collection('domainaliases').insertOne({
alias,
domain,
created: new Date()
});
} catch (err) {
res.json({
error: 'MongoDB Error: ' + err.message,
code: 'InternalDatabaseError'
});
return next();
}
let insertId = r.insertedId;
res.json({
success: !!insertId,
id: insertId
});
return next();
})
);
Updated address resolving
2017-12-01 21:04:32 +08:00
v1.4.1
2018-08-22 15:59:14 +08:00
/**
* @api {get} /domainaliases/resolve/:alias Resolve ID for a domain aias
* @apiName ResolveDomainAlias
* @apiGroup DomainAliases
* @apiHeader {String} X-Access-Token Optional access token if authentication is enabled
* @apiHeaderExample {json} Header-Example:
* {
* "X-Access-Token": "59fc66a03e54454869460e45"
* }
*
* @apiParam {String} alias Alias domain
*
* @apiSuccess {Boolean} success Indicates successful response
update DKIM handling
2018-09-11 16:13:53 +08:00
* @apiSuccess {String} id Alias unique ID (24 byte hex)
v1.4.1
2018-08-22 15:59:14 +08:00
*
* @apiError error Description of the error
*
* @apiExample {curl} Example usage:
* curl -i http://localhost:8080/domainaliases/resolve/example.com
*
* @apiSuccessExample {json} Success-Response:
* HTTP/1.1 200 OK
* {
* "success": true,
* "id": "59fc66a03e54454869460e45"
* }
*
* @apiErrorExample {json} Error-Response:
* HTTP/1.1 200 OK
* {
* "error": "This alias does not exist"
* }
*/
updated api permissions
2018-10-12 16:13:54 +08:00
server.get(
'/domainaliases/resolve/:alias',
tools.asyncifyJson(async (req, res, next) => {
res.charSet('utf-8');
const schema = Joi.object().keys({
alias: Joi.string()
.max(255)
//.hostname()
.required(),
sess: Joi.string().max(255),
ip: Joi.string().ip({
version: ['ipv4', 'ipv6'],
cidr: 'forbidden'
})
v1.4.1
2018-08-22 15:59:14 +08:00
});
updated api permissions
2018-10-12 16:13:54 +08:00
const result = Joi.validate(req.params, schema, {
abortEarly: false,
convert: true
});
if (result.error) {
migrated API tests from icedfrisby to supertest
2019-07-31 21:05:59 +08:00
res.status(400);
v1.4.1
2018-08-22 15:59:14 +08:00
res.json({
updated api permissions
2018-10-12 16:13:54 +08:00
error: result.error.message,
show validation errors in JSON response
2020-07-16 16:31:58 +08:00
code: 'InputValidationError',
details: tools.validationErrors(result)
v1.4.1
2018-08-22 15:59:14 +08:00
});
updated api permissions
2018-10-12 16:13:54 +08:00
return next();
}
v1.4.1
2018-08-22 15:59:14 +08:00
updated api permissions
2018-10-12 16:13:54 +08:00
// permissions check
req.validate(roles.can(req.role).readAny('domainaliases'));
let alias = tools.normalizeDomain(result.value.alias);
let aliasData;
try {
aliasData = await db.users.collection('domainaliases').findOne(
{
alias
},
{
projection: { _id: 1 }
}
);
} catch (err) {
res.json({
error: 'MongoDB Error: ' + err.message,
code: 'InternalDatabaseError'
});
return next();
}
if (!aliasData) {
res.json({
error: 'This alias does not exist',
code: 'AliasNotFound'
});
v1.4.1
2018-08-22 15:59:14 +08:00
return next();
}
updated api permissions
2018-10-12 16:13:54 +08:00
res.json({
success: true,
id: aliasData._id
});
return next();
})
);
v1.4.1
2018-08-22 15:59:14 +08:00
Updated address resolving
2017-12-01 21:04:32 +08:00
/**
* @api {get} /domainaliases/:alias Request Alias information
* @apiName GetDomainAlias
Updated address resolving
2017-12-01 21:21:44 +08:00
* @apiGroup DomainAliases
Updated address resolving
2017-12-01 21:04:32 +08:00
* @apiHeader {String} X-Access-Token Optional access token if authentication is enabled
* @apiHeaderExample {json} Header-Example:
* {
* "X-Access-Token": "59fc66a03e54454869460e45"
* }
*
* @apiParam {String} alias ID of the Alias
*
* @apiSuccess {Boolean} success Indicates successful response
* @apiSuccess {String} id ID of the Alias
* @apiSuccess {String} alias Alias domain
* @apiSuccess {String} domain Alias target
* @apiSuccess {String} created Datestring of the time the alias was created
*
* @apiError error Description of the error
*
* @apiExample {curl} Example usage:
* curl -i http://localhost:8080/domainaliases/59ef21aef255ed1d9d790e7a
*
* @apiSuccessExample {json} Success-Response:
* HTTP/1.1 200 OK
* {
* "success": true,
* "id": "59ef21aef255ed1d9d790e7a",
* "alias": "example.net",
* "domain": "example.com",
* "created": "2017-10-24T11:19:10.911Z"
* }
*
* @apiErrorExample {json} Error-Response:
* HTTP/1.1 200 OK
* {
* "error": "This Alias does not exist"
* }
*/
updated api permissions
2018-10-12 16:13:54 +08:00
server.get(
'/domainaliases/:alias',
tools.asyncifyJson(async (req, res, next) => {
res.charSet('utf-8');
const schema = Joi.object().keys({
default GET+POST to req.params
2020-07-16 16:15:04 +08:00
alias: Joi.string().hex().lowercase().length(24).required(),
updated api permissions
2018-10-12 16:13:54 +08:00
sess: Joi.string().max(255),
ip: Joi.string().ip({
version: ['ipv4', 'ipv6'],
cidr: 'forbidden'
})
Updated address resolving
2017-12-01 21:04:32 +08:00
});
updated api permissions
2018-10-12 16:13:54 +08:00
const result = Joi.validate(req.params, schema, {
abortEarly: false,
convert: true
});
if (result.error) {
migrated API tests from icedfrisby to supertest
2019-07-31 21:05:59 +08:00
res.status(400);
Updated address resolving
2017-12-01 21:04:32 +08:00
res.json({
updated api permissions
2018-10-12 16:13:54 +08:00
error: result.error.message,
show validation errors in JSON response
2020-07-16 16:31:58 +08:00
code: 'InputValidationError',
details: tools.validationErrors(result)
Updated address resolving
2017-12-01 21:04:32 +08:00
});
updated api permissions
2018-10-12 16:13:54 +08:00
return next();
}
// permissions check
req.validate(roles.can(req.role).readAny('domainaliases'));
let alias = new ObjectID(result.value.alias);
Updated address resolving
2017-12-01 21:04:32 +08:00
updated api permissions
2018-10-12 16:13:54 +08:00
let aliasData;
try {
aliasData = await db.users.collection('domainaliases').findOne({
_id: alias
});
} catch (err) {
res.json({
error: 'MongoDB Error: ' + err.message,
code: 'InternalDatabaseError'
});
Updated address resolving
2017-12-01 21:04:32 +08:00
return next();
}
updated api permissions
2018-10-12 16:13:54 +08:00
if (!aliasData) {
res.status(404);
res.json({
error: 'Invalid or unknown alias',
code: 'AliasNotFound'
});
return next();
}
res.json({
success: true,
id: aliasData._id,
alias: aliasData.alias,
domain: aliasData.domain,
created: aliasData.created
});
return next();
})
);
Updated address resolving
2017-12-01 21:04:32 +08:00
/**
* @api {delete} /domainaliases/:alias Delete an Alias
* @apiName DeleteDomainAlias
Updated address resolving
2017-12-01 21:21:44 +08:00
* @apiGroup DomainAliases
Updated address resolving
2017-12-01 21:04:32 +08:00
* @apiHeader {String} X-Access-Token Optional access token if authentication is enabled
* @apiHeaderExample {json} Header-Example:
* {
* "X-Access-Token": "59fc66a03e54454869460e45"
* }
*
* @apiParam {String} alias ID of the Alias
*
* @apiSuccess {Boolean} success Indicates successful response
*
* @apiError error Description of the error
*
* @apiExample {curl} Example usage:
* curl -i -XDELETE http://localhost:8080/domainaliases/59ef21aef255ed1d9d790e81
*
* @apiSuccessExample {json} Success-Response:
* HTTP/1.1 200 OK
* {
* "success": true
* }
*
* @apiErrorExample {json} Error-Response:
* HTTP/1.1 200 OK
* {
* "error": "Database error"
* }
*/
updated api permissions
2018-10-12 16:13:54 +08:00
server.del(
'/domainaliases/:alias',
tools.asyncifyJson(async (req, res, next) => {
res.charSet('utf-8');
const schema = Joi.object().keys({
default GET+POST to req.params
2020-07-16 16:15:04 +08:00
alias: Joi.string().hex().lowercase().length(24).required(),
updated api permissions
2018-10-12 16:13:54 +08:00
sess: Joi.string().max(255),
ip: Joi.string().ip({
version: ['ipv4', 'ipv6'],
cidr: 'forbidden'
})
Updated address resolving
2017-12-01 21:04:32 +08:00
});
updated api permissions
2018-10-12 16:13:54 +08:00
const result = Joi.validate(req.params, schema, {
abortEarly: false,
convert: true
});
if (result.error) {
migrated API tests from icedfrisby to supertest
2019-07-31 21:05:59 +08:00
res.status(400);
updated api permissions
2018-10-12 16:13:54 +08:00
res.json({
error: result.error.message,
show validation errors in JSON response
2020-07-16 16:31:58 +08:00
code: 'InputValidationError',
details: tools.validationErrors(result)
updated api permissions
2018-10-12 16:13:54 +08:00
});
return next();
}
// permissions check
req.validate(roles.can(req.role).deleteAny('domainaliases'));
let alias = new ObjectID(result.value.alias);
let aliasData;
try {
aliasData = await db.users.collection('domainaliases').findOne(
Updated address resolving
2017-12-01 21:04:32 +08:00
{
_id: alias
},
updated api permissions
2018-10-12 16:13:54 +08:00
{
projection: { _id: 1 }
Updated address resolving
2017-12-01 21:04:32 +08:00
}
);
updated api permissions
2018-10-12 16:13:54 +08:00
} catch (err) {
res.json({
error: 'MongoDB Error: ' + err.message,
code: 'InternalDatabaseError'
});
return next();
Updated address resolving
2017-12-01 21:04:32 +08:00
}
updated api permissions
2018-10-12 16:13:54 +08:00
if (!aliasData) {
res.status(404);
res.json({
error: 'Invalid or unknown email alias identifier',
code: 'AliasNotFound'
});
return next();
}
let r;
try {
// delete address from email address registry
r = await db.users.collection('domainaliases').deleteOne({
_id: alias
});
} catch (err) {
res.json({
error: 'MongoDB Error: ' + err.message,
code: 'InternalDatabaseError'
});
return next();
}
res.json({
success: !!r.deletedCount
});
return next();
})
);
Updated address resolving
2017-12-01 21:04:32 +08:00
};
Reference in a new issue Copy permalink