mirror of
https://github.com/tdurieux/anonymous_github.git
synced 2026-05-15 14:38:03 +02:00
tdurieux
571 lines
16 KiB
TypeScript
571 lines
16 KiB
TypeScript
import * as express from "express";
|
|
import { ensureAuthenticated } from "./connection";
|
|
|
|
import * as db from "../database";
|
|
import { getRepo, getUser, handleError, isOwnerOrAdmin } from "./route-utils";
|
|
import { getRepositoryFromGitHub } from "../../core/source/GitHubRepository";
|
|
import gh = require("parse-github-url");
|
|
import AnonymizedRepositoryModel from "../../core/model/anonymizedRepositories/anonymizedRepositories.model";
|
|
import { IAnonymizedRepositoryDocument } from "../../core/model/anonymizedRepositories/anonymizedRepositories.types";
|
|
import Repository from "../../core/Repository";
|
|
import UserModel from "../../core/model/users/users.model";
|
|
import ConferenceModel from "../../core/model/conference/conferences.model";
|
|
import AnonymousError from "../../core/AnonymousError";
|
|
import { downloadQueue, removeQueue } from "../../queue";
|
|
import RepositoryModel from "../../core/model/repositories/repositories.model";
|
|
import User from "../../core/User";
|
|
import { RepositoryStatus } from "../../core/types";
|
|
import { IUserDocument } from "../../core/model/users/users.types";
|
|
import { checkToken } from "../../core/GitHubUtils";
|
|
|
|
const router = express.Router();
|
|
|
|
// user needs to be connected for all user API
|
|
router.use(ensureAuthenticated);
|
|
|
|
async function getTokenForAdmin(user: User, req: express.Request) {
|
|
if (user.isAdmin) {
|
|
try {
|
|
const existingRepo = await AnonymizedRepositoryModel.findOne(
|
|
{
|
|
"source.repositoryName": `${req.params.owner}/${req.params.repo}`,
|
|
},
|
|
{
|
|
"source.accessToken": 1,
|
|
owner: 1,
|
|
}
|
|
).populate({
|
|
path: "owner",
|
|
model: UserModel,
|
|
});
|
|
// eslint-disable-next-line @typescript-eslint/no-explicit-any
|
|
const user: IUserDocument = existingRepo?.owner as any;
|
|
if (user instanceof UserModel) {
|
|
const check = await checkToken(user.accessTokens.github);
|
|
if (check) {
|
|
return user.accessTokens.github;
|
|
}
|
|
}
|
|
if (existingRepo) {
|
|
return existingRepo.source.accessToken;
|
|
}
|
|
} catch (error) {
|
|
console.log(error);
|
|
}
|
|
}
|
|
}
|
|
|
|
// claim a repository
|
|
router.post("/claim", async (req: express.Request, res: express.Response) => {
|
|
const user = await getUser(req);
|
|
try {
|
|
if (!req.body.repoId) {
|
|
throw new AnonymousError("repoId_not_defined", {
|
|
object: req.body,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
if (!req.body.repoUrl) {
|
|
throw new AnonymousError("repoUrl_not_defined", {
|
|
object: req.body,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
|
|
const repoConfig = await db.getRepository(req.body.repoId);
|
|
if (repoConfig == null) {
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.body,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
|
|
const r = gh(req.body.repoUrl);
|
|
if (!r?.owner || !r?.name) {
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.body,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
const repo = await getRepositoryFromGitHub({
|
|
owner: r.owner,
|
|
repo: r.name,
|
|
repositoryID: req.query.repositoryID as string,
|
|
accessToken: user.accessToken,
|
|
});
|
|
if (!repo) {
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.body,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
|
|
const dbRepo = await RepositoryModel.findById(
|
|
repoConfig.model.source.repositoryId
|
|
);
|
|
|
|
if (!dbRepo || dbRepo.externalId != repo.id) {
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.body,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
|
|
console.log(`${user.username} claims ${r.repository}.`);
|
|
repoConfig.owner = user;
|
|
|
|
await AnonymizedRepositoryModel.updateOne(
|
|
{ repoId: repoConfig.repoId },
|
|
{ $set: { owner: user.model.id } }
|
|
);
|
|
return res.send("Ok");
|
|
} catch (error) {
|
|
handleError(error, res, req);
|
|
}
|
|
});
|
|
|
|
// refresh repository
|
|
router.post(
|
|
"/:repoId/refresh",
|
|
async (req: express.Request, res: express.Response) => {
|
|
try {
|
|
const repo = await getRepo(req, res, {
|
|
nocheck: true,
|
|
});
|
|
if (!repo) return;
|
|
|
|
if (
|
|
repo.status == "preparing" ||
|
|
repo.status == "removing" ||
|
|
repo.status == "expiring"
|
|
)
|
|
return;
|
|
|
|
const user = await getUser(req);
|
|
isOwnerOrAdmin([repo.owner.id], user);
|
|
await repo.updateIfNeeded({ force: true });
|
|
res.json({ status: repo.status });
|
|
} catch (error) {
|
|
handleError(error, res, req);
|
|
}
|
|
}
|
|
);
|
|
|
|
// delete a repository
|
|
router.delete(
|
|
"/:repoId/",
|
|
async (req: express.Request, res: express.Response) => {
|
|
const repo = await getRepo(req, res, {
|
|
nocheck: true,
|
|
});
|
|
if (!repo) return;
|
|
// if (repo.status == "removing") return res.json({ status: repo.status });
|
|
try {
|
|
if (repo.status == "removed")
|
|
throw new AnonymousError("is_removed", {
|
|
object: req.params.repoId,
|
|
httpStatus: 410,
|
|
});
|
|
const user = await getUser(req);
|
|
isOwnerOrAdmin([repo.owner.id], user);
|
|
await repo.updateStatus(RepositoryStatus.REMOVING);
|
|
await removeQueue.add(repo.repoId, repo, { jobId: repo.repoId });
|
|
return res.json({ status: repo.status });
|
|
} catch (error) {
|
|
handleError(error, res, req);
|
|
}
|
|
}
|
|
);
|
|
|
|
router.get(
|
|
"/:owner/:repo/",
|
|
async (req: express.Request, res: express.Response) => {
|
|
const user = await getUser(req);
|
|
let token = user.accessToken;
|
|
if (user.isAdmin) {
|
|
token = (await getTokenForAdmin(user, req)) || token;
|
|
}
|
|
try {
|
|
const repo = await getRepositoryFromGitHub({
|
|
owner: req.params.owner,
|
|
repo: req.params.repo,
|
|
accessToken: token,
|
|
repositoryID: req.query.repositoryID as string,
|
|
force: req.query.force == "1",
|
|
});
|
|
res.json(repo.toJSON());
|
|
} catch (error) {
|
|
handleError(error, res, req);
|
|
}
|
|
}
|
|
);
|
|
|
|
router.get(
|
|
"/:owner/:repo/branches",
|
|
async (req: express.Request, res: express.Response) => {
|
|
const user = await getUser(req);
|
|
let token = user.accessToken;
|
|
if (user.isAdmin) {
|
|
token = (await getTokenForAdmin(user, req)) || token;
|
|
}
|
|
try {
|
|
const repository = await getRepositoryFromGitHub({
|
|
accessToken: token,
|
|
owner: req.params.owner,
|
|
repo: req.params.repo,
|
|
repositoryID: req.query.repositoryID as string,
|
|
force: req.query.force == "1",
|
|
});
|
|
return res.json(
|
|
await repository.branches({
|
|
accessToken: token,
|
|
force: req.query.force == "1",
|
|
})
|
|
);
|
|
} catch (error) {
|
|
handleError(error, res, req);
|
|
}
|
|
}
|
|
);
|
|
|
|
router.get(
|
|
"/:owner/:repo/readme",
|
|
async (req: express.Request, res: express.Response) => {
|
|
try {
|
|
const user = await getUser(req);
|
|
let token = user.accessToken;
|
|
if (user.isAdmin) {
|
|
token = (await getTokenForAdmin(user, req)) || token;
|
|
}
|
|
|
|
const repo = await getRepositoryFromGitHub({
|
|
owner: req.params.owner,
|
|
repo: req.params.repo,
|
|
accessToken: token,
|
|
repositoryID: req.query.repositoryID as string,
|
|
force: req.query.force == "1",
|
|
});
|
|
if (!repo) {
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.params.repoId,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
return res.send(
|
|
await repo.readme({
|
|
accessToken: token,
|
|
force: req.query.force == "1",
|
|
branch: req.query.branch as string,
|
|
})
|
|
);
|
|
} catch (error) {
|
|
handleError(error, res, req);
|
|
}
|
|
}
|
|
);
|
|
|
|
// get repository information
|
|
router.get("/:repoId/", async (req: express.Request, res: express.Response) => {
|
|
try {
|
|
const repo = await getRepo(req, res, {
|
|
nocheck: true,
|
|
});
|
|
if (!repo) return;
|
|
|
|
const user = await getUser(req);
|
|
isOwnerOrAdmin([repo.owner.id], user);
|
|
res.json((await db.getRepository(req.params.repoId)).toJSON());
|
|
} catch (error) {
|
|
handleError(error, res, req);
|
|
}
|
|
});
|
|
|
|
// eslint-disable-next-line @typescript-eslint/no-explicit-any
|
|
function validateNewRepo(repoUpdate: any): void {
|
|
const validCharacters = /^[0-9a-zA-Z\-_]+$/;
|
|
if (
|
|
!repoUpdate.repoId.match(validCharacters) ||
|
|
repoUpdate.repoId.length < 3
|
|
) {
|
|
throw new AnonymousError("invalid_repoId", {
|
|
object: repoUpdate,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
if (!repoUpdate.source.branch) {
|
|
throw new AnonymousError("branch_not_specified", {
|
|
object: repoUpdate,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
if (!repoUpdate.source.commit) {
|
|
throw new AnonymousError("commit_not_specified", {
|
|
object: repoUpdate,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
if (!repoUpdate.options) {
|
|
throw new AnonymousError("options_not_provided", {
|
|
object: repoUpdate,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
if (!Array.isArray(repoUpdate.terms)) {
|
|
throw new AnonymousError("invalid_terms_format", {
|
|
object: repoUpdate,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
if (!/^[a-fA-F0-9]+$/.test(repoUpdate.source.commit)) {
|
|
throw new AnonymousError("invalid_commit_format", {
|
|
object: repoUpdate,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
}
|
|
|
|
function updateRepoModel(
|
|
model: IAnonymizedRepositoryDocument,
|
|
// eslint-disable-next-line @typescript-eslint/no-explicit-any
|
|
repoUpdate: any
|
|
) {
|
|
model.source.type = "GitHubStream";
|
|
model.source.commit = repoUpdate.source.commit;
|
|
model.source.branch = repoUpdate.source.branch;
|
|
model.options = {
|
|
terms: repoUpdate.terms,
|
|
expirationMode: repoUpdate.options.expirationMode,
|
|
expirationDate: repoUpdate.options.expirationDate
|
|
? new Date(repoUpdate.options.expirationDate)
|
|
: undefined,
|
|
update: repoUpdate.options.update,
|
|
image: repoUpdate.options.image,
|
|
pdf: repoUpdate.options.pdf,
|
|
notebook: repoUpdate.options.notebook,
|
|
link: repoUpdate.options.link,
|
|
page: repoUpdate.options.page,
|
|
pageSource: repoUpdate.options.pageSource,
|
|
};
|
|
}
|
|
|
|
// update a repository
|
|
router.post(
|
|
"/:repoId/",
|
|
async (req: express.Request, res: express.Response) => {
|
|
try {
|
|
const repo = await getRepo(req, res, {
|
|
nocheck: true,
|
|
});
|
|
if (!repo) return;
|
|
const user = await getUser(req);
|
|
|
|
isOwnerOrAdmin([repo.owner.id], user);
|
|
|
|
const repoUpdate = req.body;
|
|
|
|
validateNewRepo(repoUpdate);
|
|
|
|
// Only the commit/branch backs the cached FileModel — anonymization
|
|
// options (terms, image/link toggles, etc.) are applied on the fly per
|
|
// request. Re-running the download queue is therefore only needed when
|
|
// the underlying snapshot moves. Other edits (e.g. turning off
|
|
// auto-update — see #360) just persist and return.
|
|
const sourceChanged =
|
|
repoUpdate.source.commit != repo.model.source.commit ||
|
|
repoUpdate.source.branch != repo.model.source.branch;
|
|
|
|
if (sourceChanged) {
|
|
repo.model.anonymizeDate = new Date();
|
|
repo.model.source.commit = repoUpdate.source.commit;
|
|
await repo.remove();
|
|
}
|
|
|
|
updateRepoModel(repo.model, repoUpdate);
|
|
|
|
const r = gh(repo.model.source.repositoryName || repoUpdate.fullName);
|
|
if (!r?.owner || !r?.name) {
|
|
await repo.resetSate(RepositoryStatus.ERROR, "repo_not_found");
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.body,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
const repository = await getRepositoryFromGitHub({
|
|
accessToken: user.accessToken,
|
|
owner: r.owner,
|
|
repo: r.name,
|
|
repositoryID: repo.model.source.repositoryId,
|
|
});
|
|
|
|
if (!repository) {
|
|
await repo.resetSate(RepositoryStatus.ERROR, "repo_not_found");
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.body,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
const removeRepoFromConference = async (conferenceID: string) => {
|
|
const conf = await ConferenceModel.findOne({
|
|
conferenceID,
|
|
});
|
|
if (conf) {
|
|
const r = conf.repositories.filter((r) => r.id == repo.model.id);
|
|
if (r.length == 1) r[0].removeDate = new Date();
|
|
await conf.save();
|
|
}
|
|
};
|
|
if (!repoUpdate.conference) {
|
|
// remove conference
|
|
if (repo.model.conference) {
|
|
await removeRepoFromConference(repo.model.conference);
|
|
}
|
|
} else if (repoUpdate.conference != repo.model.conference) {
|
|
// update/add conference
|
|
const conf = await ConferenceModel.findOne({
|
|
conferenceID: repoUpdate.conference,
|
|
});
|
|
if (conf) {
|
|
if (
|
|
new Date() < conf.startDate ||
|
|
new Date() > conf.endDate ||
|
|
conf.status !== "ready"
|
|
) {
|
|
throw new AnonymousError("conf_not_activated", {
|
|
object: conf,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
const f = conf.repositories.filter((r) => r.id == repo.model.id);
|
|
if (f.length) {
|
|
// the repository already referenced the conference
|
|
f[0].addDate = new Date();
|
|
f[0].removeDate = undefined;
|
|
} else {
|
|
conf.repositories.push({
|
|
id: repo.model.id,
|
|
addDate: new Date(),
|
|
});
|
|
}
|
|
if (repo.model.conference) {
|
|
await removeRepoFromConference(repo.model.conference);
|
|
}
|
|
await conf.save();
|
|
}
|
|
}
|
|
repo.model.conference = repoUpdate.conference;
|
|
await repo.updateStatus(RepositoryStatus.PREPARING);
|
|
res.json({ status: repo.status });
|
|
await downloadQueue.add(repo.repoId, repo, { jobId: repo.repoId });
|
|
} catch (error) {
|
|
return handleError(error, res, req);
|
|
}
|
|
}
|
|
);
|
|
|
|
// add repository
|
|
router.post("/", async (req: express.Request, res: express.Response) => {
|
|
const user = await getUser(req);
|
|
const repoUpdate = req.body;
|
|
|
|
try {
|
|
try {
|
|
await db.getRepository(repoUpdate.repoId);
|
|
throw new AnonymousError("repoId_already_used", {
|
|
httpStatus: 400,
|
|
object: repoUpdate,
|
|
});
|
|
// eslint-disable-next-line @typescript-eslint/no-explicit-any
|
|
} catch (error: any) {
|
|
if (error.message == "repo_not_found") {
|
|
// the repository does not exist yet
|
|
} else {
|
|
throw error;
|
|
}
|
|
}
|
|
validateNewRepo(repoUpdate);
|
|
|
|
const r = gh(repoUpdate.fullName);
|
|
if (!r?.owner || !r?.name) {
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.body,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
const repository = await getRepositoryFromGitHub({
|
|
accessToken: user.accessToken,
|
|
owner: r.owner,
|
|
repo: r.name,
|
|
});
|
|
|
|
if (!repository) {
|
|
throw new AnonymousError("repo_not_found", {
|
|
object: req.body,
|
|
httpStatus: 404,
|
|
});
|
|
}
|
|
|
|
const repo = new AnonymizedRepositoryModel();
|
|
repo.repoId = repoUpdate.repoId;
|
|
repo.anonymizeDate = new Date();
|
|
repo.owner = user.id;
|
|
|
|
updateRepoModel(repo, repoUpdate);
|
|
repo.source.type = "GitHubStream";
|
|
repo.source.accessToken = user.accessToken;
|
|
repo.source.repositoryId = repository.model.id;
|
|
repo.source.repositoryName = repoUpdate.fullName;
|
|
|
|
repo.conference = repoUpdate.conference;
|
|
|
|
await repo.save();
|
|
|
|
if (repoUpdate.conference) {
|
|
const conf = await ConferenceModel.findOne({
|
|
conferenceID: repoUpdate.conference,
|
|
});
|
|
if (conf) {
|
|
if (
|
|
new Date() < conf.startDate ||
|
|
new Date() > conf.endDate ||
|
|
conf.status !== "ready"
|
|
) {
|
|
await repo.deleteOne();
|
|
throw new AnonymousError("conf_not_activated", {
|
|
object: conf,
|
|
httpStatus: 400,
|
|
});
|
|
}
|
|
conf.repositories.push({
|
|
id: repo.id,
|
|
addDate: new Date(),
|
|
});
|
|
await conf.save();
|
|
}
|
|
}
|
|
|
|
res.send({ status: repo.status });
|
|
downloadQueue.add(repo.repoId, new Repository(repo), {
|
|
jobId: repo.repoId,
|
|
attempts: 3,
|
|
});
|
|
} catch (error) {
|
|
if (
|
|
error instanceof Error &&
|
|
error.message?.indexOf(" duplicate key") > -1
|
|
) {
|
|
return handleError(
|
|
new AnonymousError("repoId_already_used", {
|
|
httpStatus: 400,
|
|
cause: error,
|
|
object: repoUpdate,
|
|
}),
|
|
res,
|
|
req
|
|
);
|
|
}
|
|
return handleError(error, res, req);
|
|
}
|
|
});
|
|
|
|
export default router;
|