| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353 |
- 'use strict';
- const _ = require('lodash');
- const error = require('../lib/error');
- const proxyHostModel = require('../models/proxy_host');
- const internalHost = require('./host');
- const internalNginx = require('./nginx');
- const internalAuditLog = require('./audit-log');
- const internalCertificate = require('./certificate');
- function omissions () {
- return ['is_deleted'];
- }
- const internalProxyHost = {
- /**
- * @param {Access} access
- * @param {Object} data
- * @returns {Promise}
- */
- create: (access, data) => {
- let create_certificate = data.certificate_id === 'new';
- if (create_certificate) {
- delete data.certificate_id;
- }
- return access.can('proxy_hosts:create', data)
- .then(access_data => {
- // Get a list of the domain names and check each of them against existing records
- let domain_name_check_promises = [];
- data.domain_names.map(function (domain_name) {
- domain_name_check_promises.push(internalHost.isHostnameTaken(domain_name));
- });
- return Promise.all(domain_name_check_promises)
- .then(check_results => {
- check_results.map(function (result) {
- if (result.is_taken) {
- throw new error.ValidationError(result.hostname + ' is already in use');
- }
- });
- });
- })
- .then(() => {
- // At this point the domains should have been checked
- data.owner_user_id = access.token.get('attrs').id;
- return proxyHostModel
- .query()
- .omit(omissions())
- .insertAndFetch(data);
- })
- .then(row => {
- if (create_certificate) {
- return internalCertificate.createQuickCertificate(access, data)
- .then(cert => {
- // update host with cert id
- return internalProxyHost.update(access, {
- id: row.id,
- certificate_id: cert.id
- });
- })
- .then(() => {
- return row;
- });
- } else {
- return row;
- }
- })
- .then(row => {
- // re-fetch with cert
- return internalProxyHost.get(access, {
- id: row.id,
- expand: ['certificate', 'owner']
- });
- })
- .then(row => {
- // Configure nginx
- return internalNginx.configure(proxyHostModel, 'proxy_host', row)
- .then(() => {
- return row;
- });
- })
- .then(row => {
- // Audit log
- data.meta = _.assign({}, data.meta || {}, row.meta);
- // Add to audit log
- return internalAuditLog.add(access, {
- action: 'created',
- object_type: 'proxy-host',
- object_id: row.id,
- meta: data
- })
- .then(() => {
- return row;
- });
- });
- },
- /**
- * @param {Access} access
- * @param {Object} data
- * @param {Integer} data.id
- * @return {Promise}
- */
- update: (access, data) => {
- let create_certificate = data.certificate_id === 'new';
- if (create_certificate) {
- delete data.certificate_id;
- }
- return access.can('proxy_hosts:update', data.id)
- .then(access_data => {
- // Get a list of the domain names and check each of them against existing records
- let domain_name_check_promises = [];
- if (typeof data.domain_names !== 'undefined') {
- data.domain_names.map(function (domain_name) {
- domain_name_check_promises.push(internalHost.isHostnameTaken(domain_name, 'proxy', data.id));
- });
- return Promise.all(domain_name_check_promises)
- .then(check_results => {
- check_results.map(function (result) {
- if (result.is_taken) {
- throw new error.ValidationError(result.hostname + ' is already in use');
- }
- });
- });
- }
- })
- .then(() => {
- return internalProxyHost.get(access, {id: data.id});
- })
- .then(row => {
- if (row.id !== data.id) {
- // Sanity check that something crazy hasn't happened
- throw new error.InternalValidationError('Proxy Host could not be updated, IDs do not match: ' + row.id + ' !== ' + data.id);
- }
- if (create_certificate) {
- return internalCertificate.createQuickCertificate(access, {
- domain_names: data.domain_names || row.domain_names,
- meta: _.assign({}, row.meta, data.meta)
- })
- .then(cert => {
- // update host with cert id
- data.certificate_id = cert.id;
- })
- .then(() => {
- return row;
- });
- } else {
- return row;
- }
- })
- .then(row => {
- // Add domain_names to the data in case it isn't there, so that the audit log renders correctly. The order is important here.
- data = _.assign({}, {
- domain_names: row.domain_names
- },data);
- return proxyHostModel
- .query()
- .where({id: data.id})
- .patch(data)
- .then(saved_row => {
- // Add to audit log
- return internalAuditLog.add(access, {
- action: 'updated',
- object_type: 'proxy-host',
- object_id: row.id,
- meta: data
- })
- .then(() => {
- return _.omit(saved_row, omissions());
- });
- });
- })
- .then(() => {
- return internalProxyHost.get(access, {
- id: data.id,
- expand: ['owner', 'certificate']
- })
- .then(row => {
- // Configure nginx
- return internalNginx.configure(proxyHostModel, 'proxy_host', row)
- .then(() => {
- return _.omit(row, omissions());
- });
- });
- });
- },
- /**
- * @param {Access} access
- * @param {Object} data
- * @param {Integer} data.id
- * @param {Array} [data.expand]
- * @param {Array} [data.omit]
- * @return {Promise}
- */
- get: (access, data) => {
- if (typeof data === 'undefined') {
- data = {};
- }
- return access.can('proxy_hosts:get', data.id)
- .then(access_data => {
- let query = proxyHostModel
- .query()
- .where('is_deleted', 0)
- .andWhere('id', data.id)
- .allowEager('[owner,access_list,certificate]')
- .first();
- if (access_data.permission_visibility !== 'all') {
- query.andWhere('owner_user_id', access.token.get('attrs').id);
- }
- // Custom omissions
- if (typeof data.omit !== 'undefined' && data.omit !== null) {
- query.omit(data.omit);
- }
- if (typeof data.expand !== 'undefined' && data.expand !== null) {
- query.eager('[' + data.expand.join(', ') + ']');
- }
- return query;
- })
- .then(row => {
- if (row) {
- return _.omit(row, omissions());
- } else {
- throw new error.ItemNotFoundError(data.id);
- }
- });
- },
- /**
- * @param {Access} access
- * @param {Object} data
- * @param {Integer} data.id
- * @param {String} [data.reason]
- * @returns {Promise}
- */
- delete: (access, data) => {
- return access.can('proxy_hosts:delete', data.id)
- .then(() => {
- return internalProxyHost.get(access, {id: data.id});
- })
- .then(row => {
- if (!row) {
- throw new error.ItemNotFoundError(data.id);
- }
- return proxyHostModel
- .query()
- .where('id', row.id)
- .patch({
- is_deleted: 1
- })
- .then(() => {
- // Delete Nginx Config
- return internalNginx.deleteConfig('proxy_host', row)
- .then(() => {
- return internalNginx.reload();
- });
- })
- .then(() => {
- // Add to audit log
- return internalAuditLog.add(access, {
- action: 'deleted',
- object_type: 'proxy-host',
- object_id: row.id,
- meta: _.omit(row, omissions())
- });
- });
- })
- .then(() => {
- return true;
- });
- },
- /**
- * All Hosts
- *
- * @param {Access} access
- * @param {Array} [expand]
- * @param {String} [search_query]
- * @returns {Promise}
- */
- getAll: (access, expand, search_query) => {
- return access.can('proxy_hosts:list')
- .then(access_data => {
- let query = proxyHostModel
- .query()
- .where('is_deleted', 0)
- .groupBy('id')
- .omit(['is_deleted'])
- .allowEager('[owner,access_list,certificate]')
- .orderBy('domain_names', 'ASC');
- if (access_data.permission_visibility !== 'all') {
- query.andWhere('owner_user_id', access.token.get('attrs').id);
- }
- // Query is used for searching
- if (typeof search_query === 'string') {
- query.where(function () {
- this.where('domain_names', 'like', '%' + search_query + '%');
- });
- }
- if (typeof expand !== 'undefined' && expand !== null) {
- query.eager('[' + expand.join(', ') + ']');
- }
- return query;
- });
- },
- /**
- * Report use
- *
- * @param {Integer} user_id
- * @param {String} visibility
- * @returns {Promise}
- */
- getCount: (user_id, visibility) => {
- let query = proxyHostModel
- .query()
- .count('id as count')
- .where('is_deleted', 0);
- if (visibility !== 'all') {
- query.andWhere('owner_user_id', user_id);
- }
- return query.first()
- .then(row => {
- return parseInt(row.count, 10);
- });
- }
- };
- module.exports = internalProxyHost;
|
