trilium/routes/api/notes.js

81 lines
2.4 KiB
JavaScript
Raw Normal View History

2017-10-22 09:10:33 +08:00
"use strict";
const express = require('express');
const router = express.Router();
const auth = require('../../services/auth');
2017-10-16 07:47:05 +08:00
const sql = require('../../services/sql');
const notes = require('../../services/notes');
const log = require('../../services/log');
2017-11-13 10:40:26 +08:00
const protected_session = require('../../services/protected_session');
const data_encryption = require('../../services/data_encryption');
2017-10-16 04:32:49 +08:00
router.get('/:noteId', auth.checkApiAuth, async (req, res, next) => {
2017-11-15 13:04:26 +08:00
const noteId = req.params.noteId;
const detail = await sql.getFirst("SELECT * FROM notes WHERE note_id = ?", [noteId]);
if (!detail) {
log.info("Note " + noteId + " has not been found.");
return res.status(404).send({});
}
if (detail.is_protected) {
2017-11-13 10:40:26 +08:00
const dataKey = protected_session.getDataKey(req);
detail.note_title = data_encryption.decryptString(dataKey, data_encryption.noteTitleIv(detail.note_id), detail.note_title);
detail.note_text = data_encryption.decryptString(dataKey, data_encryption.noteTextIv(detail.note_id), detail.note_text);
2017-11-13 10:40:26 +08:00
}
res.send({
detail: detail
});
});
2017-12-23 22:57:20 +08:00
router.post('/:parentNoteId/children', auth.checkApiAuth, async (req, res, next) => {
const sourceId = req.headers.source_id;
const parentNoteId = req.params.parentNoteId;
const note = req.body;
const { noteId, noteTreeId } = await notes.createNewNote(parentNoteId, note, sourceId);
res.send({
'note_id': noteId,
'note_tree_id': noteTreeId
});
});
2017-12-23 22:57:20 +08:00
router.put('/:noteId', auth.checkApiAuth, async (req, res, next) => {
const note = req.body;
2017-11-15 13:04:26 +08:00
const noteId = req.params.noteId;
const sourceId = req.headers.source_id;
const dataKey = protected_session.getDataKey(req);
await notes.updateNote(noteId, note, dataKey, sourceId);
res.send({});
});
2017-12-23 22:57:20 +08:00
router.delete('/:noteTreeId', auth.checkApiAuth, async (req, res, next) => {
await sql.doInTransaction(async () => {
await notes.deleteNote(req.params.noteTreeId, req.headers.source_id);
});
res.send({});
});
2017-12-23 22:57:20 +08:00
router.get('/', auth.checkApiAuth, async (req, res, next) => {
const search = '%' + req.query.search + '%';
const result = await sql.getAll("SELECT note_id FROM notes WHERE note_title LIKE ? OR note_text LIKE ?", [search, search]);
const noteIdList = [];
for (const res of result) {
noteIdList.push(res.note_id);
}
res.send(noteIdList);
});
module.exports = router;