2017-12-04 11:29:23 +08:00
|
|
|
const setupRoute = require('./setup');
|
2018-12-24 05:28:57 +08:00
|
|
|
const loginRoute = require('./login');
|
|
|
|
|
const indexRoute = require('./index');
|
2018-03-31 03:34:07 +08:00
|
|
|
const multer = require('multer')();
|
2017-11-04 11:00:35 +08:00
|
|
|
|
|
|
|
|
// API routes
|
|
|
|
|
const treeApiRoute = require('./api/tree');
|
|
|
|
|
const notesApiRoute = require('./api/notes');
|
2018-04-02 08:33:10 +08:00
|
|
|
const branchesApiRoute = require('./api/branches');
|
2018-04-18 12:26:42 +08:00
|
|
|
const autocompleteApiRoute = require('./api/autocomplete');
|
2018-01-14 07:02:41 +08:00
|
|
|
const cloningApiRoute = require('./api/cloning');
|
2018-03-26 08:52:38 +08:00
|
|
|
const noteRevisionsApiRoute = require('./api/note_revisions');
|
2017-11-04 11:00:35 +08:00
|
|
|
const recentChangesApiRoute = require('./api/recent_changes');
|
2018-04-02 05:41:28 +08:00
|
|
|
const optionsApiRoute = require('./api/options');
|
2017-11-04 11:00:35 +08:00
|
|
|
const passwordApiRoute = require('./api/password');
|
|
|
|
|
const syncApiRoute = require('./api/sync');
|
|
|
|
|
const loginApiRoute = require('./api/login');
|
|
|
|
|
const eventLogRoute = require('./api/event_log');
|
2017-11-05 11:46:50 +08:00
|
|
|
const recentNotesRoute = require('./api/recent_notes');
|
2017-11-21 13:25:53 +08:00
|
|
|
const appInfoRoute = require('./api/app_info');
|
2017-12-03 10:48:22 +08:00
|
|
|
const exportRoute = require('./api/export');
|
2017-12-03 12:41:18 +08:00
|
|
|
const importRoute = require('./api/import');
|
2017-12-04 11:29:23 +08:00
|
|
|
const setupApiRoute = require('./api/setup');
|
2017-12-15 09:38:56 +08:00
|
|
|
const sqlRoute = require('./api/sql');
|
2017-12-16 13:05:37 +08:00
|
|
|
const anonymizationRoute = require('./api/anonymization');
|
2017-12-23 22:35:00 +08:00
|
|
|
const cleanupRoute = require('./api/cleanup');
|
2018-01-06 12:54:02 +08:00
|
|
|
const imageRoute = require('./api/image');
|
2018-08-03 04:48:21 +08:00
|
|
|
const attributesRoute = require('./api/attributes');
|
2018-01-24 10:59:30 +08:00
|
|
|
const scriptRoute = require('./api/script');
|
2018-02-11 13:18:59 +08:00
|
|
|
const senderRoute = require('./api/sender');
|
2018-03-28 10:11:06 +08:00
|
|
|
const filesRoute = require('./api/file_upload');
|
2018-03-24 11:08:29 +08:00
|
|
|
const searchRoute = require('./api/search');
|
2017-11-04 11:00:35 +08:00
|
|
|
|
2018-03-31 01:20:36 +08:00
|
|
|
const log = require('../services/log');
|
2018-03-31 00:57:22 +08:00
|
|
|
const express = require('express');
|
|
|
|
|
const router = express.Router();
|
|
|
|
|
const auth = require('../services/auth');
|
|
|
|
|
const cls = require('../services/cls');
|
|
|
|
|
const sql = require('../services/sql');
|
2018-03-31 20:53:52 +08:00
|
|
|
const protectedSessionService = require('../services/protected_session');
|
2018-03-31 00:57:22 +08:00
|
|
|
|
2018-04-06 11:35:49 +08:00
|
|
|
function apiResultHandler(req, res, result) {
|
2018-03-31 05:07:41 +08:00
|
|
|
// if it's an array and first element is integer then we consider this to be [statusCode, response] format
|
|
|
|
|
if (Array.isArray(result) && result.length > 0 && Number.isInteger(result[0])) {
|
|
|
|
|
const [statusCode, response] = result;
|
|
|
|
|
|
|
|
|
|
res.status(statusCode).send(response);
|
|
|
|
|
|
2018-04-06 11:35:49 +08:00
|
|
|
if (statusCode !== 200 && statusCode !== 201 && statusCode !== 204) {
|
|
|
|
|
log.info(`${req.method} ${req.originalUrl} returned ${statusCode} with response ${JSON.stringify(response)}`);
|
2018-03-31 00:57:22 +08:00
|
|
|
}
|
2018-03-31 05:07:41 +08:00
|
|
|
}
|
|
|
|
|
else if (result === undefined) {
|
2018-04-01 23:05:09 +08:00
|
|
|
res.status(204).send();
|
2018-03-31 05:07:41 +08:00
|
|
|
}
|
|
|
|
|
else {
|
2018-04-06 07:29:27 +08:00
|
|
|
res.send(result);
|
2018-03-31 05:07:41 +08:00
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function apiRoute(method, path, routeHandler) {
|
|
|
|
|
route(method, path, [auth.checkApiAuth], routeHandler, apiResultHandler);
|
2018-03-31 03:34:07 +08:00
|
|
|
}
|
|
|
|
|
|
2018-07-23 01:56:20 +08:00
|
|
|
function route(method, path, middleware, routeHandler, resultHandler, transactional = true) {
|
2018-03-31 03:34:07 +08:00
|
|
|
router[method](path, ...middleware, async (req, res, next) => {
|
|
|
|
|
try {
|
|
|
|
|
const result = await cls.init(async () => {
|
2018-11-30 22:49:35 +08:00
|
|
|
cls.namespace.set('sourceId', req.headers['trilium-source-id']);
|
2018-03-31 20:53:52 +08:00
|
|
|
protectedSessionService.setProtectedSessionId(req);
|
2018-03-31 03:34:07 +08:00
|
|
|
|
2018-07-23 01:56:20 +08:00
|
|
|
if (transactional) {
|
|
|
|
|
return await sql.transactional(async () => {
|
|
|
|
|
return await routeHandler(req, res, next);
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
else {
|
2018-03-31 03:34:07 +08:00
|
|
|
return await routeHandler(req, res, next);
|
2018-07-23 01:56:20 +08:00
|
|
|
}
|
2018-03-31 03:34:07 +08:00
|
|
|
});
|
|
|
|
|
|
|
|
|
|
if (resultHandler) {
|
2018-04-06 11:35:49 +08:00
|
|
|
resultHandler(req, res, result);
|
2018-03-31 03:34:07 +08:00
|
|
|
}
|
|
|
|
|
}
|
2018-03-31 00:57:22 +08:00
|
|
|
catch (e) {
|
2018-08-28 05:04:52 +08:00
|
|
|
log.error(`${method} ${path} threw exception: ` + e.stack);
|
2018-03-31 01:56:46 +08:00
|
|
|
|
2018-03-31 03:34:07 +08:00
|
|
|
res.sendStatus(500);
|
2018-03-31 00:57:22 +08:00
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
const GET = 'get', POST = 'post', PUT = 'put', DELETE = 'delete';
|
2018-03-31 05:29:13 +08:00
|
|
|
const uploadMiddleware = multer.single('upload');
|
2018-03-31 00:57:22 +08:00
|
|
|
|
2017-11-04 11:00:35 +08:00
|
|
|
function register(app) {
|
2018-03-31 07:31:22 +08:00
|
|
|
route(GET, '/', [auth.checkAuth], indexRoute.index);
|
2018-07-25 02:35:03 +08:00
|
|
|
route(GET, '/login', [auth.checkAppInitialized], loginRoute.loginPage);
|
2018-03-31 07:31:22 +08:00
|
|
|
route(POST, '/login', [], loginRoute.login);
|
|
|
|
|
route(POST, '/logout', [auth.checkAuth], loginRoute.logout);
|
|
|
|
|
route(GET, '/setup', [auth.checkAppNotInitialized], setupRoute.setupPage);
|
2017-11-04 11:00:35 +08:00
|
|
|
|
2018-03-31 00:57:22 +08:00
|
|
|
apiRoute(GET, '/api/tree', treeApiRoute.getTree);
|
2018-04-17 08:40:18 +08:00
|
|
|
apiRoute(POST, '/api/tree/load', treeApiRoute.load);
|
2018-04-02 08:33:10 +08:00
|
|
|
apiRoute(PUT, '/api/branches/:branchId/set-prefix', branchesApiRoute.setPrefix);
|
2018-03-31 00:57:22 +08:00
|
|
|
|
2018-04-02 08:33:10 +08:00
|
|
|
apiRoute(PUT, '/api/branches/:branchId/move-to/:parentNoteId', branchesApiRoute.moveBranchToParent);
|
|
|
|
|
apiRoute(PUT, '/api/branches/:branchId/move-before/:beforeBranchId', branchesApiRoute.moveBranchBeforeNote);
|
|
|
|
|
apiRoute(PUT, '/api/branches/:branchId/move-after/:afterBranchId', branchesApiRoute.moveBranchAfterNote);
|
|
|
|
|
apiRoute(PUT, '/api/branches/:branchId/expanded/:expanded', branchesApiRoute.setExpanded);
|
|
|
|
|
apiRoute(DELETE, '/api/branches/:branchId', branchesApiRoute.deleteBranch);
|
2018-03-31 00:57:22 +08:00
|
|
|
|
2018-04-18 12:26:42 +08:00
|
|
|
apiRoute(GET, '/api/autocomplete', autocompleteApiRoute.getAutocomplete);
|
|
|
|
|
|
2018-03-31 00:57:22 +08:00
|
|
|
apiRoute(GET, '/api/notes/:noteId', notesApiRoute.getNote);
|
|
|
|
|
apiRoute(PUT, '/api/notes/:noteId', notesApiRoute.updateNote);
|
2018-11-15 06:30:28 +08:00
|
|
|
apiRoute(DELETE, '/api/notes/:noteId', notesApiRoute.deleteNote);
|
2018-03-31 00:57:22 +08:00
|
|
|
apiRoute(POST, '/api/notes/:parentNoteId/children', notesApiRoute.createNote);
|
2018-10-21 16:26:14 +08:00
|
|
|
apiRoute(GET, '/api/notes/:parentNoteId/children', notesApiRoute.getChildren);
|
2018-03-31 00:57:22 +08:00
|
|
|
apiRoute(PUT, '/api/notes/:noteId/sort', notesApiRoute.sortNotes);
|
2018-09-01 00:22:53 +08:00
|
|
|
apiRoute(PUT, '/api/notes/:noteId/protect/:isProtected', notesApiRoute.protectSubtree);
|
2018-03-31 00:57:22 +08:00
|
|
|
apiRoute(PUT, /\/api\/notes\/(.*)\/type\/(.*)\/mime\/(.*)/, notesApiRoute.setNoteTypeMime);
|
2018-04-02 08:33:10 +08:00
|
|
|
apiRoute(GET, '/api/notes/:noteId/revisions', noteRevisionsApiRoute.getNoteRevisions);
|
2018-10-25 18:06:36 +08:00
|
|
|
apiRoute(POST, '/api/notes/relation-map', notesApiRoute.getRelationMap);
|
2018-10-31 05:18:20 +08:00
|
|
|
apiRoute(PUT, '/api/notes/:noteId/change-title', notesApiRoute.changeTitle);
|
2018-03-31 00:57:22 +08:00
|
|
|
|
2018-04-02 08:33:10 +08:00
|
|
|
apiRoute(PUT, '/api/notes/:noteId/clone-to/:parentNoteId', cloningApiRoute.cloneNoteToParent);
|
2018-03-31 01:20:36 +08:00
|
|
|
apiRoute(PUT, '/api/notes/:noteId/clone-after/:afterBranchId', cloningApiRoute.cloneNoteAfter);
|
|
|
|
|
|
2019-02-17 06:33:40 +08:00
|
|
|
route(GET, '/api/notes/:branchId/export/:type/:format/:version/:exportId', [auth.checkApiAuthOrElectron], exportRoute.exportBranch);
|
2019-02-24 16:56:00 +08:00
|
|
|
route(POST, '/api/notes/:parentNoteId/import', [auth.checkApiAuthOrElectron, uploadMiddleware], importRoute.importToBranch, apiResultHandler);
|
2018-04-02 08:50:58 +08:00
|
|
|
|
|
|
|
|
route(POST, '/api/notes/:parentNoteId/upload', [auth.checkApiAuthOrElectron, uploadMiddleware],
|
|
|
|
|
filesRoute.uploadFile, apiResultHandler);
|
|
|
|
|
|
|
|
|
|
route(GET, '/api/notes/:noteId/download', [auth.checkApiAuthOrElectron], filesRoute.downloadFile);
|
2019-01-28 05:34:41 +08:00
|
|
|
// this "hacky" path is used for easier referencing of CSS resources
|
|
|
|
|
route(GET, '/api/notes/download/:noteId', [auth.checkApiAuthOrElectron], filesRoute.downloadFile);
|
2018-04-02 08:33:10 +08:00
|
|
|
|
2018-08-06 14:59:26 +08:00
|
|
|
apiRoute(GET, '/api/notes/:noteId/attributes', attributesRoute.getEffectiveNoteAttributes);
|
2018-08-03 04:48:21 +08:00
|
|
|
apiRoute(PUT, '/api/notes/:noteId/attributes', attributesRoute.updateNoteAttributes);
|
2018-08-06 20:43:42 +08:00
|
|
|
apiRoute(PUT, '/api/notes/:noteId/attribute', attributesRoute.updateNoteAttribute);
|
2018-10-30 05:38:51 +08:00
|
|
|
apiRoute(PUT, '/api/notes/:noteId/relations/:name/to/:targetNoteId', attributesRoute.createRelation);
|
2018-10-30 17:36:19 +08:00
|
|
|
apiRoute(DELETE, '/api/notes/:noteId/relations/:name/to/:targetNoteId', attributesRoute.deleteRelation);
|
2018-08-06 23:24:35 +08:00
|
|
|
apiRoute(DELETE, '/api/notes/:noteId/attributes/:attributeId', attributesRoute.deleteNoteAttribute);
|
2018-08-03 17:11:57 +08:00
|
|
|
apiRoute(GET, '/api/attributes/names', attributesRoute.getAttributeNames);
|
2018-08-03 04:48:21 +08:00
|
|
|
apiRoute(GET, '/api/attributes/values/:attributeName', attributesRoute.getValuesForAttribute);
|
|
|
|
|
|
2018-11-08 17:30:35 +08:00
|
|
|
route(GET, '/api/images/:noteId/:filename', [auth.checkApiAuthOrElectron], imageRoute.returnImage);
|
2018-04-02 08:50:58 +08:00
|
|
|
route(POST, '/api/images', [auth.checkApiAuthOrElectron, uploadMiddleware], imageRoute.uploadImage, apiResultHandler);
|
|
|
|
|
|
2018-03-31 01:56:46 +08:00
|
|
|
apiRoute(GET, '/api/recent-changes', recentChangesApiRoute.getRecentChanges);
|
|
|
|
|
|
2018-04-02 08:33:10 +08:00
|
|
|
apiRoute(GET, '/api/options', optionsApiRoute.getOptions);
|
2019-02-18 03:59:52 +08:00
|
|
|
// FIXME: possibly change to sending value in the body to avoid host of HTTP server issues with slashes
|
2018-12-14 06:28:48 +08:00
|
|
|
apiRoute(PUT, '/api/options/:name/:value*', optionsApiRoute.updateOption);
|
2018-07-23 04:21:16 +08:00
|
|
|
apiRoute(PUT, '/api/options', optionsApiRoute.updateOptions);
|
2019-01-28 04:18:11 +08:00
|
|
|
apiRoute(GET, '/api/options/user-themes', optionsApiRoute.getUserThemes);
|
2018-03-31 01:56:46 +08:00
|
|
|
|
|
|
|
|
apiRoute(POST, '/api/password/change', passwordApiRoute.changePassword);
|
|
|
|
|
|
2018-07-23 16:29:17 +08:00
|
|
|
apiRoute(POST, '/api/sync/test', syncApiRoute.testSync);
|
2018-03-31 02:27:41 +08:00
|
|
|
apiRoute(GET, '/api/sync/check', syncApiRoute.checkSync);
|
|
|
|
|
apiRoute(POST, '/api/sync/now', syncApiRoute.syncNow);
|
|
|
|
|
apiRoute(POST, '/api/sync/fill-sync-rows', syncApiRoute.fillSyncRows);
|
|
|
|
|
apiRoute(POST, '/api/sync/force-full-sync', syncApiRoute.forceFullSync);
|
|
|
|
|
apiRoute(POST, '/api/sync/force-note-sync/:noteId', syncApiRoute.forceNoteSync);
|
|
|
|
|
apiRoute(GET, '/api/sync/changed', syncApiRoute.getChanged);
|
2018-04-08 10:25:28 +08:00
|
|
|
apiRoute(PUT, '/api/sync/update', syncApiRoute.update);
|
2018-07-24 03:15:32 +08:00
|
|
|
route(GET, '/api/sync/stats', [], syncApiRoute.getStats, apiResultHandler);
|
2018-07-25 02:35:03 +08:00
|
|
|
apiRoute(POST, '/api/sync/finished', syncApiRoute.syncFinished);
|
2018-03-31 02:27:41 +08:00
|
|
|
|
2018-03-31 03:34:07 +08:00
|
|
|
apiRoute(GET, '/api/event-log', eventLogRoute.getEventLog);
|
|
|
|
|
|
2019-02-18 03:49:51 +08:00
|
|
|
apiRoute(POST, '/api/recent-notes', recentNotesRoute.addRecentNote);
|
2018-03-31 03:34:07 +08:00
|
|
|
apiRoute(GET, '/api/app-info', appInfoRoute.getAppInfo);
|
|
|
|
|
|
2018-09-11 02:05:10 +08:00
|
|
|
route(GET, '/api/setup/status', [], setupApiRoute.getStatus, apiResultHandler);
|
2018-07-23 01:56:20 +08:00
|
|
|
route(POST, '/api/setup/new-document', [auth.checkAppNotInitialized], setupApiRoute.setupNewDocument, apiResultHandler);
|
|
|
|
|
route(POST, '/api/setup/sync-from-server', [auth.checkAppNotInitialized], setupApiRoute.setupSyncFromServer, apiResultHandler, false);
|
2018-07-25 15:46:57 +08:00
|
|
|
route(GET, '/api/setup/sync-seed', [auth.checkBasicAuth], setupApiRoute.getSyncSeed, apiResultHandler);
|
|
|
|
|
route(POST, '/api/setup/sync-seed', [auth.checkAppNotInitialized], setupApiRoute.saveSyncSeed, apiResultHandler, false);
|
2018-03-31 05:07:41 +08:00
|
|
|
|
2019-02-10 17:38:18 +08:00
|
|
|
apiRoute(GET, '/api/sql/schema', sqlRoute.getSchema);
|
2018-03-31 05:07:41 +08:00
|
|
|
apiRoute(POST, '/api/sql/execute', sqlRoute.execute);
|
|
|
|
|
apiRoute(POST, '/api/anonymization/anonymize', anonymizationRoute.anonymize);
|
|
|
|
|
|
|
|
|
|
apiRoute(POST, '/api/cleanup/cleanup-unused-images', cleanupRoute.cleanupUnusedImages);
|
2018-08-15 00:03:36 +08:00
|
|
|
// VACUUM requires execution outside of transaction
|
|
|
|
|
route(POST, '/api/cleanup/vacuum-database', [auth.checkApiAuthOrElectron], cleanupRoute.vacuumDatabase, apiResultHandler, false);
|
2018-03-31 05:07:41 +08:00
|
|
|
|
2018-03-31 05:29:13 +08:00
|
|
|
apiRoute(POST, '/api/script/exec', scriptRoute.exec);
|
|
|
|
|
apiRoute(POST, '/api/script/run/:noteId', scriptRoute.run);
|
|
|
|
|
apiRoute(GET, '/api/script/startup', scriptRoute.getStartupBundles);
|
|
|
|
|
apiRoute(GET, '/api/script/bundle/:noteId', scriptRoute.getBundle);
|
2018-07-30 00:39:10 +08:00
|
|
|
apiRoute(GET, '/api/script/relation/:noteId/:relationName', scriptRoute.getRelationBundles);
|
2018-03-31 05:29:13 +08:00
|
|
|
|
|
|
|
|
route(POST, '/api/sender/login', [], senderRoute.login, apiResultHandler);
|
2019-02-20 04:24:35 +08:00
|
|
|
route(POST, '/api/sender/image', [auth.checkSenderToken, uploadMiddleware], senderRoute.uploadImage, apiResultHandler);
|
2018-03-31 05:29:13 +08:00
|
|
|
route(POST, '/api/sender/note', [auth.checkSenderToken], senderRoute.saveNote, apiResultHandler);
|
|
|
|
|
|
|
|
|
|
apiRoute(GET, '/api/search/:searchString', searchRoute.searchNotes);
|
|
|
|
|
apiRoute(POST, '/api/search/:searchString', searchRoute.saveSearchToNote);
|
2018-03-31 01:56:46 +08:00
|
|
|
|
2018-03-31 07:31:22 +08:00
|
|
|
route(POST, '/api/login/sync', [], loginApiRoute.loginSync, apiResultHandler);
|
|
|
|
|
// this is for entering protected mode so user has to be already logged-in (that's the reason we don't require username)
|
|
|
|
|
apiRoute(POST, '/api/login/protected', loginApiRoute.loginToProtectedSession);
|
2018-03-31 01:56:46 +08:00
|
|
|
|
2018-03-31 07:31:22 +08:00
|
|
|
app.use('', router);
|
2017-11-04 11:00:35 +08:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
module.exports = {
|
|
|
|
|
register
|
|
|
|
|
};
|
