mirror of
https://github.com/nodemailer/wildduck.git
synced 2024-12-27 02:10:52 +08:00
438 lines
13 KiB
JavaScript
438 lines
13 KiB
JavaScript
'use strict';
|
|
|
|
const Joi = require('joi');
|
|
const MongoPaging = require('mongo-cursor-pagination');
|
|
const ObjectId = require('mongodb').ObjectId;
|
|
const tools = require('../tools');
|
|
const roles = require('../roles');
|
|
const { nextPageCursorSchema, previousPageCursorSchema, pageNrSchema, sessSchema, sessIPSchema } = require('../schemas');
|
|
const { publish, DOMAINALIAS_CREATED, DOMAINALIAS_DELETED } = require('../events');
|
|
|
|
module.exports = (db, server) => {
|
|
server.get(
|
|
{ name: 'domainaliases', path: '/domainaliases' },
|
|
tools.responseWrapper(async (req, res) => {
|
|
res.charSet('utf-8');
|
|
|
|
const schema = Joi.object().keys({
|
|
query: Joi.string().trim().empty('').max(255),
|
|
limit: Joi.number().default(20).min(1).max(250),
|
|
next: nextPageCursorSchema,
|
|
previous: previousPageCursorSchema,
|
|
page: pageNrSchema,
|
|
sess: sessSchema,
|
|
ip: sessIPSchema
|
|
});
|
|
|
|
const result = schema.validate(req.params, {
|
|
abortEarly: false,
|
|
convert: true,
|
|
allowUnknown: true
|
|
});
|
|
|
|
if (result.error) {
|
|
res.status(400);
|
|
return res.json({
|
|
error: result.error.message,
|
|
code: 'InputValidationError',
|
|
details: tools.validationErrors(result)
|
|
});
|
|
}
|
|
|
|
// permissions check
|
|
req.validate(roles.can(req.role).readAny('domainaliases'));
|
|
|
|
let query = result.value.query;
|
|
let limit = result.value.limit;
|
|
let page = result.value.page;
|
|
let pageNext = result.value.next;
|
|
let pagePrevious = result.value.previous;
|
|
|
|
let filter = query
|
|
? {
|
|
$or: [
|
|
{
|
|
alias: {
|
|
$regex: tools.escapeRegexStr(query),
|
|
$options: ''
|
|
}
|
|
},
|
|
|
|
{
|
|
domain: {
|
|
$regex: tools.escapeRegexStr(query),
|
|
$options: ''
|
|
}
|
|
}
|
|
]
|
|
}
|
|
: {};
|
|
|
|
let total = await db.users.collection('domainaliases').countDocuments(filter);
|
|
|
|
let opts = {
|
|
limit,
|
|
query: filter,
|
|
fields: {
|
|
// FIXME: hack to keep alias in response
|
|
alias: true,
|
|
// FIXME: MongoPaging inserts fields value as second argument to col.find()
|
|
projection: {
|
|
_id: true,
|
|
alias: true,
|
|
domain: true
|
|
}
|
|
},
|
|
paginatedField: 'alias',
|
|
sortAscending: true
|
|
};
|
|
|
|
if (pageNext) {
|
|
opts.next = pageNext;
|
|
} else if ((!page || page > 1) && pagePrevious) {
|
|
opts.previous = pagePrevious;
|
|
}
|
|
|
|
let listing;
|
|
try {
|
|
listing = await MongoPaging.find(db.users.collection('domainaliases'), opts);
|
|
} catch (err) {
|
|
res.status(500);
|
|
return res.json({
|
|
error: 'MongoDB Error: ' + err.message,
|
|
code: 'InternalDatabaseError'
|
|
});
|
|
}
|
|
|
|
if (!listing.hasPrevious) {
|
|
page = 1;
|
|
}
|
|
|
|
let response = {
|
|
success: true,
|
|
query,
|
|
total,
|
|
page,
|
|
previousCursor: listing.hasPrevious ? listing.previous : false,
|
|
nextCursor: listing.hasNext ? listing.next : false,
|
|
results: (listing.results || []).map(domainData => ({
|
|
id: domainData._id.toString(),
|
|
alias: domainData.alias,
|
|
domain: domainData.domain
|
|
}))
|
|
};
|
|
|
|
return res.json(response);
|
|
})
|
|
);
|
|
|
|
server.post(
|
|
'/domainaliases',
|
|
tools.responseWrapper(async (req, res) => {
|
|
res.charSet('utf-8');
|
|
|
|
const schema = Joi.object().keys({
|
|
alias: Joi.string()
|
|
.max(255)
|
|
//.hostname()
|
|
.required(),
|
|
domain: Joi.string()
|
|
.max(255)
|
|
//.hostname()
|
|
.required(),
|
|
sess: sessSchema,
|
|
ip: sessIPSchema
|
|
});
|
|
|
|
const result = schema.validate(req.params, {
|
|
abortEarly: false,
|
|
convert: true
|
|
});
|
|
|
|
if (result.error) {
|
|
res.status(400);
|
|
return res.json({
|
|
error: result.error.message,
|
|
code: 'InputValidationError',
|
|
details: tools.validationErrors(result)
|
|
});
|
|
}
|
|
|
|
// permissions check
|
|
req.validate(roles.can(req.role).createAny('domainaliases'));
|
|
|
|
let alias = tools.normalizeDomain(req.params.alias);
|
|
let domain = tools.normalizeDomain(req.params.domain);
|
|
|
|
let aliasData;
|
|
|
|
try {
|
|
aliasData = await db.users.collection('domainaliases').findOne(
|
|
{
|
|
alias
|
|
},
|
|
{
|
|
projection: { _id: 1 }
|
|
}
|
|
);
|
|
} catch (err) {
|
|
res.status(500);
|
|
return res.json({
|
|
error: 'MongoDB Error: ' + err.message,
|
|
code: 'InternalDatabaseError'
|
|
});
|
|
}
|
|
|
|
if (aliasData) {
|
|
res.status(400);
|
|
return res.json({
|
|
error: 'This domain alias already exists',
|
|
code: 'AliasExists'
|
|
});
|
|
}
|
|
|
|
let r;
|
|
|
|
try {
|
|
// insert alias address to email address registry
|
|
r = await db.users.collection('domainaliases').insertOne({
|
|
alias,
|
|
domain,
|
|
created: new Date()
|
|
});
|
|
} catch (err) {
|
|
res.status(500);
|
|
return res.json({
|
|
error: 'MongoDB Error: ' + err.message,
|
|
code: 'InternalDatabaseError'
|
|
});
|
|
}
|
|
|
|
let insertId = r.insertedId;
|
|
|
|
await publish(db.redis, {
|
|
ev: DOMAINALIAS_CREATED,
|
|
domainalias: insertId,
|
|
alias,
|
|
domain
|
|
});
|
|
|
|
return res.json({
|
|
success: !!insertId,
|
|
id: insertId
|
|
});
|
|
})
|
|
);
|
|
|
|
server.get(
|
|
'/domainaliases/resolve/:alias',
|
|
tools.responseWrapper(async (req, res) => {
|
|
res.charSet('utf-8');
|
|
|
|
const schema = Joi.object().keys({
|
|
alias: Joi.string()
|
|
.max(255)
|
|
//.hostname()
|
|
.required(),
|
|
sess: sessSchema,
|
|
ip: sessIPSchema
|
|
});
|
|
|
|
const result = schema.validate(req.params, {
|
|
abortEarly: false,
|
|
convert: true
|
|
});
|
|
|
|
if (result.error) {
|
|
res.status(400);
|
|
return res.json({
|
|
error: result.error.message,
|
|
code: 'InputValidationError',
|
|
details: tools.validationErrors(result)
|
|
});
|
|
}
|
|
|
|
// permissions check
|
|
req.validate(roles.can(req.role).readAny('domainaliases'));
|
|
|
|
let alias = tools.normalizeDomain(result.value.alias);
|
|
|
|
let aliasData;
|
|
try {
|
|
aliasData = await db.users.collection('domainaliases').findOne(
|
|
{
|
|
alias
|
|
},
|
|
{
|
|
projection: { _id: 1 }
|
|
}
|
|
);
|
|
} catch (err) {
|
|
res.status(500);
|
|
return res.json({
|
|
error: 'MongoDB Error: ' + err.message,
|
|
code: 'InternalDatabaseError'
|
|
});
|
|
}
|
|
|
|
if (!aliasData) {
|
|
res.status(404);
|
|
return res.json({
|
|
error: 'This alias does not exist',
|
|
code: 'AliasNotFound'
|
|
});
|
|
}
|
|
|
|
return res.json({
|
|
success: true,
|
|
id: aliasData._id.toString()
|
|
});
|
|
})
|
|
);
|
|
|
|
server.get(
|
|
'/domainaliases/:alias',
|
|
tools.responseWrapper(async (req, res) => {
|
|
res.charSet('utf-8');
|
|
|
|
const schema = Joi.object().keys({
|
|
alias: Joi.string().hex().lowercase().length(24).required(),
|
|
sess: sessSchema,
|
|
ip: sessIPSchema
|
|
});
|
|
|
|
const result = schema.validate(req.params, {
|
|
abortEarly: false,
|
|
convert: true
|
|
});
|
|
|
|
if (result.error) {
|
|
res.status(400);
|
|
return res.json({
|
|
error: result.error.message,
|
|
code: 'InputValidationError',
|
|
details: tools.validationErrors(result)
|
|
});
|
|
}
|
|
|
|
// permissions check
|
|
req.validate(roles.can(req.role).readAny('domainaliases'));
|
|
|
|
let alias = new ObjectId(result.value.alias);
|
|
|
|
let aliasData;
|
|
try {
|
|
aliasData = await db.users.collection('domainaliases').findOne({
|
|
_id: alias
|
|
});
|
|
} catch (err) {
|
|
res.status(500);
|
|
return res.json({
|
|
error: 'MongoDB Error: ' + err.message,
|
|
code: 'InternalDatabaseError'
|
|
});
|
|
}
|
|
|
|
if (!aliasData) {
|
|
res.status(404);
|
|
return res.json({
|
|
error: 'Invalid or unknown alias',
|
|
code: 'AliasNotFound'
|
|
});
|
|
}
|
|
|
|
return res.json({
|
|
success: true,
|
|
id: aliasData._id.toString(),
|
|
alias: aliasData.alias,
|
|
domain: aliasData.domain,
|
|
created: aliasData.created
|
|
});
|
|
})
|
|
);
|
|
|
|
server.del(
|
|
'/domainaliases/:alias',
|
|
tools.responseWrapper(async (req, res) => {
|
|
res.charSet('utf-8');
|
|
|
|
const schema = Joi.object().keys({
|
|
alias: Joi.string().hex().lowercase().length(24).required(),
|
|
sess: sessSchema,
|
|
ip: sessIPSchema
|
|
});
|
|
|
|
const result = schema.validate(req.params, {
|
|
abortEarly: false,
|
|
convert: true
|
|
});
|
|
|
|
if (result.error) {
|
|
res.status(400);
|
|
return res.json({
|
|
error: result.error.message,
|
|
code: 'InputValidationError',
|
|
details: tools.validationErrors(result)
|
|
});
|
|
}
|
|
|
|
// permissions check
|
|
req.validate(roles.can(req.role).deleteAny('domainaliases'));
|
|
|
|
let alias = new ObjectId(result.value.alias);
|
|
|
|
let aliasData;
|
|
try {
|
|
aliasData = await db.users.collection('domainaliases').findOne(
|
|
{
|
|
_id: alias
|
|
},
|
|
{
|
|
projection: { _id: 1 }
|
|
}
|
|
);
|
|
} catch (err) {
|
|
res.status(500);
|
|
return res.json({
|
|
error: 'MongoDB Error: ' + err.message,
|
|
code: 'InternalDatabaseError'
|
|
});
|
|
}
|
|
|
|
if (!aliasData) {
|
|
res.status(404);
|
|
return res.json({
|
|
error: 'Invalid or unknown email alias identifier',
|
|
code: 'AliasNotFound'
|
|
});
|
|
}
|
|
|
|
let r;
|
|
try {
|
|
// delete address from email address registry
|
|
r = await db.users.collection('domainaliases').deleteOne({
|
|
_id: alias
|
|
});
|
|
} catch (err) {
|
|
res.status(500);
|
|
return res.json({
|
|
error: 'MongoDB Error: ' + err.message,
|
|
code: 'InternalDatabaseError'
|
|
});
|
|
}
|
|
|
|
if (r.deletedCount) {
|
|
await publish(db.redis, {
|
|
ev: DOMAINALIAS_DELETED,
|
|
domainalias: alias,
|
|
alias: aliasData.alias,
|
|
domain: aliasData.domain
|
|
});
|
|
}
|
|
|
|
return res.json({
|
|
success: !!r.deletedCount
|
|
});
|
|
})
|
|
);
|
|
};
|