trilium/routes/api/tree.js

"use strict";

const express = require('express');
const router = express.Router();
const sql = require('../../services/sql');
const options = require('../../services/options');
const utils = require('../../services/utils');
const auth = require('../../services/auth');
const protected_session = require('../../services/protected_session');
const data_encryption = require('../../services/data_encryption');
const notes = require('../../services/notes');
const sync_table = require('../../services/sync_table');

router.get('/', auth.checkApiAuth, async (req, res, next) => {
    const notes = await sql.getAll("SELECT "
        + "notes_tree.*, "
        + "notes.note_title, "
        + "notes.is_protected "
        + "FROM notes_tree "
        + "JOIN notes ON notes.note_id = notes_tree.note_id "
        + "WHERE notes.is_deleted = 0 AND notes_tree.is_deleted = 0 "
        + "ORDER BY note_position");

    const dataKey = protected_session.getDataKey(req);

    for (const note of notes) {
        if (note.is_protected) {
            note.note_title = data_encryption.decryptString(dataKey, data_encryption.noteTitleIv(note.note_id), note.note_title);
        }
    }

    res.send({
        notes: notes,
        start_note_path: await options.getOption('start_note_path')
    });
});

router.put('/:noteId/protect-sub-tree/:isProtected', auth.checkApiAuth, async (req, res, next) => {
    const noteId = req.params.noteId;
    const isProtected = !!parseInt(req.params.isProtected);
    const dataKey = protected_session.getDataKey(req);
    const sourceId = req.headers.source_id;

    await sql.doInTransaction(async () => {
        await notes.protectNoteRecursively(noteId, dataKey, isProtected, sourceId);
    });

    res.send({});
});

router.put('/:noteTreeId/set-prefix', auth.checkApiAuth, async (req, res, next) => {
    const noteTreeId = req.params.noteTreeId;
    const sourceId = req.headers.source_id;
    const prefix = utils.isEmptyOrWhitespace(req.body.prefix) ? null : req.body.prefix;

    await sql.doInTransaction(async () => {
        await sql.execute("UPDATE notes_tree SET prefix = ?, date_modified = ? WHERE note_tree_id = ?", [prefix, utils.nowDate(), noteTreeId]);

        await sync_table.addNoteTreeSync(noteTreeId, sourceId);
    });

    res.send({});
});

module.exports = router;
use strict in all JS files 2017-10-22 09:10:33 +08:00			`"use strict";`

backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`const express = require('express');`
			`const router = express.Router();`
reorganization of source code 2017-10-16 07:47:05 +08:00			`const sql = require('../../services/sql');`
sync of options 2017-11-03 08:48:02 +08:00			`const options = require('../../services/options');`
reorganization of source code 2017-10-16 07:47:05 +08:00			`const utils = require('../../services/utils');`
			`const auth = require('../../services/auth');`
server side encryption WIP 2017-11-11 11:55:19 +08:00			`const protected_session = require('../../services/protected_session');`
			`const data_encryption = require('../../services/data_encryption');`
protect/unprotect subtree 2017-11-15 13:04:26 +08:00			`const notes = require('../../services/notes');`
adding clone from recent notes dialog 2017-11-20 05:35:35 +08:00			`const sync_table = require('../../services/sync_table');`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00
node authentication 2017-10-16 04:32:49 +08:00			`router.get('/', auth.checkApiAuth, async (req, res, next) => {`
change in naming of SQL methods added assert methods to note tree 2017-12-24 00:02:38 +08:00			`const notes = await sql.getAll("SELECT "`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`+ "notes_tree.*, "`
server side WIP - saving encrypted note now works, changing terminology of "encrypted note" to "protected note" 2017-11-15 10:54:12 +08:00			`+ "notes.note_title, "`
			`+ "notes.is_protected "`
unified SQL syntax to uppercase 2017-11-21 12:51:28 +08:00			`+ "FROM notes_tree "`
			`+ "JOIN notes ON notes.note_id = notes_tree.note_id "`
			`+ "WHERE notes.is_deleted = 0 AND notes_tree.is_deleted = 0 "`
added foreign keys to relations to guarantee data consistency 2017-12-20 10:40:48 +08:00			`+ "ORDER BY note_position");`
parent-child relationship is now stored in notes_parent table 2017-11-19 07:57:50 +08:00
server side encryption WIP 2017-11-11 11:55:19 +08:00			`const dataKey = protected_session.getDataKey(req);`

backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`for (const note of notes) {`
server side WIP - saving encrypted note now works, changing terminology of "encrypted note" to "protected note" 2017-11-15 10:54:12 +08:00			`if (note.is_protected) {`
cleaned up "CBC" from methods since we don't have CTR 2017-11-19 01:53:17 +08:00			`note.note_title = data_encryption.decryptString(dataKey, data_encryption.noteTitleIv(note.note_id), note.note_title);`
server side encryption WIP 2017-11-11 11:55:19 +08:00			`}`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`}`

			`res.send({`
notes_tree now has note_tree_id so we stricly distinguish between working on notes or note trees 2017-11-19 06:05:50 +08:00			`notes: notes,`
renamed start_note_tree_id option to startNotePath 2017-12-07 12:15:53 +08:00			`start_note_path: await options.getOption('start_note_path')`
backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`});`
			`});`

unifying API paths to lower-case 2017-12-02 11:47:23 +08:00			`router.put('/:noteId/protect-sub-tree/:isProtected', auth.checkApiAuth, async (req, res, next) => {`
protect/unprotect subtree 2017-11-15 13:04:26 +08:00			`const noteId = req.params.noteId;`
			`const isProtected = !!parseInt(req.params.isProtected);`
			`const dataKey = protected_session.getDataKey(req);`
per-browser source id so we support having notecase opened in multiple tabs/windows 2017-12-17 09:48:34 +08:00			`const sourceId = req.headers.source_id;`
protect/unprotect subtree 2017-11-15 13:04:26 +08:00
synchronization of transactions using promise so only one can be active 2017-11-29 06:24:08 +08:00			`await sql.doInTransaction(async () => {`
per-browser source id so we support having notecase opened in multiple tabs/windows 2017-12-17 09:48:34 +08:00			`await notes.protectNoteRecursively(noteId, dataKey, isProtected, sourceId);`
protect/unprotect subtree 2017-11-15 13:04:26 +08:00			`});`

			`res.send({});`
			`});`

unifying API paths to lower-case 2017-12-02 11:47:23 +08:00			`router.put('/:noteTreeId/set-prefix', auth.checkApiAuth, async (req, res, next) => {`
initial implementation of tree prefix 2017-11-27 11:34:25 +08:00			`const noteTreeId = req.params.noteTreeId;`
per-browser source id so we support having notecase opened in multiple tabs/windows 2017-12-17 09:48:34 +08:00			`const sourceId = req.headers.source_id;`
sync fix to prefix and some usability improvements 2017-11-27 12:10:23 +08:00			`const prefix = utils.isEmptyOrWhitespace(req.body.prefix) ? null : req.body.prefix;`
initial implementation of tree prefix 2017-11-27 11:34:25 +08:00
synchronization of transactions using promise so only one can be active 2017-11-29 06:24:08 +08:00			`await sql.doInTransaction(async () => {`
converted all timestamps to string representation 2017-12-11 01:56:59 +08:00			`await sql.execute("UPDATE notes_tree SET prefix = ?, date_modified = ? WHERE note_tree_id = ?", [prefix, utils.nowDate(), noteTreeId]);`
initial implementation of tree prefix 2017-11-27 11:34:25 +08:00
per-browser source id so we support having notecase opened in multiple tabs/windows 2017-12-17 09:48:34 +08:00			`await sync_table.addNoteTreeSync(noteTreeId, sourceId);`
initial implementation of tree prefix 2017-11-27 11:34:25 +08:00			`});`

			`res.send({});`
			`});`

backend ported to node.js (work in progress) 2017-10-15 11:31:44 +08:00			`module.exports = router;`