trilium/routes/api/notes.js

"use strict";

const express = require('express');
const router = express.Router();
const sql = require('../../services/sql');
const options = require('../../services/options');
const utils = require('../../services/utils');
const audit_category = require('../../services/audit_category');
const auth = require('../../services/auth');

router.get('/:noteId', auth.checkApiAuth, async (req, res, next) => {
    let noteId = req.params.noteId;

    await options.setOption('start_node', noteId);

    let detail = await sql.getSingleResult("select * from notes where note_id = ?", [noteId]);

    if (detail.note_clone_id) {
        noteId = detail.note_clone_id;
        detail = sql.getSingleResult("select * from notes where note_id = ?", [noteId]);
    }

    res.send({
        'detail': detail,
        'images': await sql.getResults("select * from images where note_id = ? order by note_offset", [noteId])
    });
});

router.put('/:noteId', async (req, res, next) => {
    let noteId = req.params.noteId;

    const detail = await sql.getSingleResult("select * from notes where note_id = ?", [noteId]);

    if (detail.note_clone_id) {
        noteId = detail.note_clone_id;
    }

    const note = req.body;

    const now = utils.nowTimestamp();

    const historySnapshotTimeInterval = parseInt(await options.getOption('history_snapshot_time_interval'));

    const historyCutoff = now - historySnapshotTimeInterval;

    let noteHistoryId = await sql.getSingleValue("select note_history_id from notes_history where note_id = ? and date_modified_from >= ?", [noteId, historyCutoff]);

    await sql.doInTransaction(async () => {
        if (noteHistoryId) {
            await sql.execute("update notes_history set note_title = ?, note_text = ?, encryption = ?, date_modified_to = ? where note_history_id = ?", [
                note.detail.note_title,
                note.detail.note_text,
                note.detail.encryption,
                now,
                noteHistoryId
            ]);
        }
        else {
            noteHistoryId = utils.randomString(16);

            await sql.execute("insert into notes_history (note_history_id, note_id, note_title, note_text, encryption, date_modified_from, date_modified_to) " +
                "values (?, ?, ?, ?, ?, ?, ?)", [
                noteHistoryId,
                noteId,
                note.detail.note_title,
                note.detail.note_text,
                note.detail.encryption,
                now,
                now
            ]);
        }

        await sql.addNoteHistorySync(noteHistoryId);

        if (note.detail.note_title !== detail.note_title) {
            await sql.deleteRecentAudits(audit_category.UPDATE_TITLE, req, noteId);
            await sql.addAudit(audit_category.UPDATE_TITLE, req, noteId);
        }

        if (note.detail.note_text !== detail.note_text) {
            await sql.deleteRecentAudits(audit_category.UPDATE_CONTENT, req, noteId);
            await sql.addAudit(audit_category.UPDATE_CONTENT, req, noteId);
        }

        if (note.detail.encryption !== detail.encryption) {
            await sql.addAudit(audit_category.ENCRYPTION, req, noteId, detail.encryption, note.detail.encryption);
        }

        await sql.execute("update notes set note_title = ?, note_text = ?, encryption = ?, date_modified = ? where note_id = ?", [
            note.detail.note_title,
            note.detail.note_text,
            note.detail.encryption,
            now,
            noteId]);

        await sql.remove("images", noteId);

        for (const img of note.images) {
            img.image_data = atob(img.image_data);

            await sql.insert("images", img);
        }

        await sql.remove("links", noteId);

        for (const link in note.links) {
            await sql.insert("links", link);
        }

        await sql.addNoteSync(noteId);
    });

    res.send({});
});

router.delete('/:noteId', async (req, res, next) => {
    await sql.doInTransaction(async () => {
        await deleteNote(req.params.noteId, req);
    });

    res.send({});
});

async function deleteNote(noteId, req) {
    const now = utils.nowTimestamp();

    const children = await sql.getResults("select note_id from notes_tree where note_pid = ? and is_deleted = 0", [noteId]);

    for (const child of children) {
        await deleteNote(child.note_id);
    }

    await sql.execute("update notes_tree set is_deleted = 1, date_modified = ? where note_id = ?", [now, noteId]);
    await sql.execute("update notes set is_deleted = 1, date_modified = ? where note_id = ?", [now, noteId]);

    await sql.addAudit(audit_category.DELETE_NOTE, req, noteId);
}

router.post('/:parentNoteId/children', async (req, res, next) => {
    let parentNoteId = req.params.parentNoteId;

    const note = req.body;

    const noteId = utils.newNoteId();

    if (parentNoteId === "root") {
        parentNoteId = "";
    }

    let newNotePos = 0;

    if (note.target === 'into') {
        const res = await sql.getSingleResult('select max(note_pos) as max_note_pos from notes_tree where note_pid = ? and is_deleted = 0', [parentNoteId]);
        const maxNotePos = res['max_note_pos'];

        if (maxNotePos === null) // no children yet
            newNotePos = 0;
        else
            newNotePos = maxNotePos + 1
    }
    else if (note.target === 'after') {
        const afterNote = await sql.getSingleResult('select note_pos from notes_tree where note_id = ?', [note.target_note_id]);

        newNotePos = afterNote.note_pos + 1;

        const now = utils.nowTimestamp();

        await sql.execute('update notes_tree set note_pos = note_pos + 1, date_modified = ? where note_pid = ? and note_pos > ? and is_deleted = 0', [now, parentNoteId, afterNote['note_pos']]);
    }
    else {
        throw new Error('Unknown target: ' + note.target);
    }

    await sql.doInTransaction(async () => {
        await sql.addAudit(audit_category.CREATE_NOTE, req, noteId);

        const now = utils.nowTimestamp();

        await sql.insert("notes", {
            'note_id': noteId,
            'note_title': note.note_title,
            'note_text': '',
            'note_clone_id': '',
            'date_created': now,
            'date_modified': now,
            'encryption': note.encryption
        });

        await sql.insert("notes_tree", {
            'note_id': noteId,
            'note_pid': parentNoteId,
            'note_pos': newNotePos,
            'is_expanded': 0,
            'date_modified': utils.nowTimestamp(),
            'is_deleted': 0
        });
    });

    res.send({
        'note_id': noteId
    });
});

router.get('/', async (req, res, next) => {
    const search = '%' + req.query.search + '%';

    const result = await sql.getResults("select note_id from notes where note_title like ? or note_text like ?", [search, search]);

    const noteIdList = [];

    for (const res of result) {
        noteIdList.push(res.note_id);
    }

    res.send(noteIdList);
});

module.exports = router;
use strict in all JS files 2017-10-22 09:10:33 +08:00			`"use strict";`

backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`const express = require('express');`
			`const router = express.Router();`
reorganization of source code 2017-10-16 07:47:05 +08:00			`const sql = require('../../services/sql');`
sync of options 2017-11-03 08:48:02 +08:00			`const options = require('../../services/options');`
reorganization of source code 2017-10-16 07:47:05 +08:00			`const utils = require('../../services/utils');`
			`const audit_category = require('../../services/audit_category');`
			`const auth = require('../../services/auth');`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
node authentication 2017-10-16 04:32:49 +08:00			`router.get('/:noteId', auth.checkApiAuth, async (req, res, next) => {`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`let noteId = req.params.noteId;`

don't alert in case of updated note in current editor 2017-11-04 08:50:48 +08:00			`await options.setOption('start_node', noteId);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
			`let detail = await sql.getSingleResult("select * from notes where note_id = ?", [noteId]);`

added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`if (detail.note_clone_id) {`
			`noteId = detail.note_clone_id;`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`detail = sql.getSingleResult("select * from notes where note_id = ?", [noteId]);`
			`}`

			`res.send({`
			`'detail': detail,`
			`'images': await sql.getResults("select * from images where note_id = ? order by note_offset", [noteId])`
			`});`
			`});`

			`router.put('/:noteId', async (req, res, next) => {`
			`let noteId = req.params.noteId;`

			`const detail = await sql.getSingleResult("select * from notes where note_id = ?", [noteId]);`

added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`if (detail.note_clone_id) {`
			`noteId = detail.note_clone_id;`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`}`

			`const note = req.body;`

			`const now = utils.nowTimestamp();`

sync of options 2017-11-03 08:48:02 +08:00			`const historySnapshotTimeInterval = parseInt(await options.getOption('history_snapshot_time_interval'));`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
			`const historyCutoff = now - historySnapshotTimeInterval;`

added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`let noteHistoryId = await sql.getSingleValue("select note_history_id from notes_history where note_id = ? and date_modified_from >= ?", [noteId, historyCutoff]);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.doInTransaction(async () => {`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`if (noteHistoryId) {`
			`await sql.execute("update notes_history set note_title = ?, note_text = ?, encryption = ?, date_modified_to = ? where note_history_id = ?", [`
			`note.detail.note_title,`
			`note.detail.note_text,`
			`note.detail.encryption,`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`now,`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`noteHistoryId`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`]);`
			`}`
			`else {`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`noteHistoryId = utils.randomString(16);`

			`await sql.execute("insert into notes_history (note_history_id, note_id, note_title, note_text, encryption, date_modified_from, date_modified_to) " +`
			`"values (?, ?, ?, ?, ?, ?, ?)", [`
			`noteHistoryId,`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`noteId,`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`note.detail.note_title,`
			`note.detail.note_text,`
			`note.detail.encryption,`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`now,`
			`now`
			`]);`
			`}`

added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`await sql.addNoteHistorySync(noteHistoryId);`

			`if (note.detail.note_title !== detail.note_title) {`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.deleteRecentAudits(audit_category.UPDATE_TITLE, req, noteId);`
			`await sql.addAudit(audit_category.UPDATE_TITLE, req, noteId);`
			`}`

added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`if (note.detail.note_text !== detail.note_text) {`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.deleteRecentAudits(audit_category.UPDATE_CONTENT, req, noteId);`
			`await sql.addAudit(audit_category.UPDATE_CONTENT, req, noteId);`
			`}`

added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`if (note.detail.encryption !== detail.encryption) {`
			`await sql.addAudit(audit_category.ENCRYPTION, req, noteId, detail.encryption, note.detail.encryption);`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`}`

			`await sql.execute("update notes set note_title = ?, note_text = ?, encryption = ?, date_modified = ? where note_id = ?", [`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`note.detail.note_title,`
			`note.detail.note_text,`
			`note.detail.encryption,`
note history snapshots now have date from and date to 2017-10-25 07:36:37 +08:00			`now,`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`noteId]);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.remove("images", noteId);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`for (const img of note.images) {`
			`img.image_data = atob(img.image_data);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.insert("images", img);`
			`}`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.remove("links", noteId);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`for (const link in note.links) {`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.insert("links", link);`
			`}`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00
			`await sql.addNoteSync(noteId);`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`});`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
			`res.send({});`
			`});`

			`router.delete('/:noteId', async (req, res, next) => {`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.doInTransaction(async () => {`
			`await deleteNote(req.params.noteId, req);`
			`});`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
			`res.send({});`
			`});`

notes are now soft-deleted 2017-10-23 10:13:24 +08:00			`async function deleteNote(noteId, req) {`
notes_tree is now soft deleted as well 2017-10-25 10:58:59 +08:00			`const now = utils.nowTimestamp();`

			`const children = await sql.getResults("select note_id from notes_tree where note_pid = ? and is_deleted = 0", [noteId]);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
			`for (const child of children) {`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`await deleteNote(child.note_id);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`}`

notes_tree is now soft deleted as well 2017-10-25 10:58:59 +08:00			`await sql.execute("update notes_tree set is_deleted = 1, date_modified = ? where note_id = ?", [now, noteId]);`
			`await sql.execute("update notes set is_deleted = 1, date_modified = ? where note_id = ?", [now, noteId]);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
			`await sql.addAudit(audit_category.DELETE_NOTE, req, noteId);`
			`}`

			`router.post('/:parentNoteId/children', async (req, res, next) => {`
			`let parentNoteId = req.params.parentNoteId;`

			`const note = req.body;`

			`const noteId = utils.newNoteId();`

			`if (parentNoteId === "root") {`
			`parentNoteId = "";`
			`}`

			`let newNotePos = 0;`

added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`if (note.target === 'into') {`
notes_tree is now soft deleted as well 2017-10-25 10:58:59 +08:00			`const res = await sql.getSingleResult('select max(note_pos) as max_note_pos from notes_tree where note_pid = ? and is_deleted = 0', [parentNoteId]);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`const maxNotePos = res['max_note_pos'];`

			`if (maxNotePos === null) // no children yet`
			`newNotePos = 0;`
			`else`
			`newNotePos = maxNotePos + 1`
			`}`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`else if (note.target === 'after') {`
			`const afterNote = await sql.getSingleResult('select note_pos from notes_tree where note_id = ?', [note.target_note_id]);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`newNotePos = afterNote.note_pos + 1;`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
added date_modified to notes_tree 2017-10-23 10:56:42 +08:00			`const now = utils.nowTimestamp();`

notes_tree is now soft deleted as well 2017-10-25 10:58:59 +08:00			`await sql.execute('update notes_tree set note_pos = note_pos + 1, date_modified = ? where note_pid = ? and note_pos > ? and is_deleted = 0', [now, parentNoteId, afterNote['note_pos']]);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`}`
			`else {`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`throw new Error('Unknown target: ' + note.target);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`}`

better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.doInTransaction(async () => {`
			`await sql.addAudit(audit_category.CREATE_NOTE, req, noteId);`
fixed adding new note 2017-10-24 07:01:37 +08:00
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`const now = utils.nowTimestamp();`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`await sql.insert("notes", {`
			`'note_id': noteId,`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`'note_title': note.note_title,`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`'note_text': '',`
			`'note_clone_id': '',`
			`'date_created': now,`
			`'date_modified': now,`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`'encryption': note.encryption`
better transaction handling with rollback on exception 2017-10-30 06:50:28 +08:00			`});`

			`await sql.insert("notes_tree", {`
			`'note_id': noteId,`
			`'note_pid': parentNoteId,`
			`'note_pos': newNotePos,`
			`'is_expanded': 0,`
			`'date_modified': utils.nowTimestamp(),`
			`'is_deleted': 0`
			`});`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`});`

			`res.send({`
			`'note_id': noteId`
			`});`
			`});`

			`router.get('/', async (req, res, next) => {`
			`const search = '%' + req.query.search + '%';`

			`const result = await sql.getResults("select note_id from notes where note_title like ? or note_text like ?", [search, search]);`

			`const noteIdList = [];`

			`for (const res of result) {`
added sourceId to sync, fixes to sync etc. 2017-10-31 12:15:49 +08:00			`noteIdList.push(res.note_id);`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`}`

			`res.send(noteIdList);`
			`});`

			`module.exports = router;`