src/storage/s3.js

'use strict';

exports = module.exports = {
    backup: backup,
    restore: restore,
    copyBackup: copyBackup,
    removeBackup: removeBackup,

    getDownloadStream: getDownloadStream,

    backupDone: backupDone,

    testConfig: testConfig
};

var archiver = require('archiver'),
    assert = require('assert'),
    async = require('async'),
    AWS = require('aws-sdk'),
    BackupsError = require('../backups.js').BackupsError,
    crypto = require('crypto'),
    debug = require('debug')('box:storage/s3'),
    mkdirp = require('mkdirp'),
    once = require('once'),
    path = require('path'),
    SettingsError = require('../settings.js').SettingsError,
    tar = require('tar-fs'),
    zlib = require('zlib');

var FILE_TYPE = '.tar.gz';

// internal only
function getBackupCredentials(apiConfig, callback) {
    assert.strictEqual(typeof apiConfig, 'object');
    assert.strictEqual(typeof callback, 'function');

    assert(apiConfig.accessKeyId && apiConfig.secretAccessKey);

    var credentials = {
        signatureVersion: 'v4',
        s3ForcePathStyle: true,
        accessKeyId: apiConfig.accessKeyId,
        secretAccessKey: apiConfig.secretAccessKey,
        region: apiConfig.region || 'us-east-1'
    };

    if (apiConfig.endpoint) credentials.endpoint = apiConfig.endpoint;

    callback(null, credentials);
}

function getBackupFilePath(apiConfig, backupId) {
    assert.strictEqual(typeof apiConfig, 'object');
    assert.strictEqual(typeof backupId, 'string');

    return path.join(apiConfig.prefix, backupId.endsWith(FILE_TYPE) ? backupId : backupId+FILE_TYPE);
}

// storage api
function backup(apiConfig, backupId, sourceDirectories, callback) {
    assert.strictEqual(typeof apiConfig, 'object');
    assert.strictEqual(typeof backupId, 'string');
    assert(Array.isArray(sourceDirectories));
    assert.strictEqual(typeof callback, 'function');

    callback = once(callback);

    var backupFilePath = getBackupFilePath(apiConfig, backupId);

    debug('[%s] backup: %j -> %s', backupId, sourceDirectories, backupFilePath);

    getBackupCredentials(apiConfig, function (error, credentials) {
        if (error) return callback(error);

        var archive = archiver('tar', { gzip: true });
        var encrypt = crypto.createCipher('aes-256-cbc', apiConfig.key || '');

        encrypt.on('error', function (error) {
            console.error('[%s] backup: cipher stream error.', backupId, error);
        });

        archive.on('error', function (error) {
            console.error('[%s] backup: archive stream error.', backupId, error);
        });

        archive.pipe(encrypt);

        sourceDirectories.forEach(function (directory) {
            // archive does not like destination beginning with a slash
            directory.destination = path.normalize(directory.destination).replace(/^\//, '');

            archive.directory(directory.source, directory.destination);
        });

        archive.finalize();

        var params = {
            Bucket: apiConfig.bucket,
            Key: backupFilePath,
            Body: encrypt
        };

        var s3 = new AWS.S3(credentials);
        s3.upload(params, function (error, result) {
            if (error) {
                console.error('[%s] backup: s3 upload error.', backupId, error);
                return callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));
            }

            callback(null);
        });
    });
}

function restore(apiConfig, backupId, destinationDirectories, callback) {
    assert.strictEqual(typeof apiConfig, 'object');
    assert.strictEqual(typeof backupId, 'string');
    assert(Array.isArray(destinationDirectories));
    assert.strictEqual(typeof callback, 'function');

    var backupFilePath = getBackupFilePath(apiConfig, backupId);

    debug('[%s] restore: %s -> %j', backupId, backupFilePath, destinationDirectories);

    getBackupCredentials(apiConfig, function (error, credentials) {
        if (error) return callback(error);

        async.eachSeries(destinationDirectories, function (directory, callback) {
            debug('[%s] restore: directory %s -> %s', backupId, directory.source, directory.destination);

            // tar-fs reports without slash at the beginning
            directory.source = path.normalize(directory.source).replace(/^\//, '');

            mkdirp(directory.destination, function (error) {
                if (error) return callback(error);

                var params = {
                    Bucket: apiConfig.bucket,
                    Key: backupFilePath
                };

                var s3 = new AWS.S3(credentials);

                var s3get = s3.getObject(params).createReadStream();
                var decrypt = crypto.createDecipher('aes-256-cbc', apiConfig.key || '');
                var gunzip = zlib.createGunzip({});

                var IGNORE_PREFIX = '__ignore__';
                var extract = tar.extract(directory.destination, {
                    ignore: function (name, header) { return header.name.startsWith(IGNORE_PREFIX); },
                    map: function (header) {
                        // ignore is called after map, we mark everything we dont want!
                        // else slice off the mapping prefix
                        if (!header.name.startsWith(directory.source)) header.name = IGNORE_PREFIX + header.name;
                        else header.name = header.name.slice(directory.source.length);

                        return header;
                    }
                });

                s3get.on('error', function (error) {
                    if (error.code === 'NoSuchKey') return callback(new BackupsError(BackupsError.NOT_FOUND));

                    console.error('[%s] restore: s3 stream error.', backupId, error);
                    callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));
                });

                decrypt.on('error', function (error) {
                    console.error('[%s] restore: decipher stream error.', error);
                    callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
                });

                gunzip.on('error', function (error) {
                    console.error('[%s] restore: gunzip stream error.', error);
                    callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
                });

                extract.on('error', function (error) {
                    console.error('[%s] restore: extract stream error.', error);
                    callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
                });

                extract.on('finish', function () {
                    debug('[%s] restore: directory %s done.', backupId, directory.source);
                    callback();
                });

                s3get.pipe(decrypt).pipe(gunzip).pipe(extract);
            });
        }, function (error) {
            if (error) return callback(error);

            debug('[%s] restore: done', backupId);

            callback(null);
        });
    });
}

function copyBackup(apiConfig, oldBackupId, newBackupId, callback) {
    assert.strictEqual(typeof apiConfig, 'object');
    assert.strictEqual(typeof oldBackupId, 'string');
    assert.strictEqual(typeof newBackupId, 'string');
    assert.strictEqual(typeof callback, 'function');

    getBackupCredentials(apiConfig, function (error, credentials) {
        if (error) return callback(error);

        var params = {
            Bucket: apiConfig.bucket,
            Key: getBackupFilePath(apiConfig, newBackupId),
            CopySource: path.join(apiConfig.bucket, getBackupFilePath(apiConfig, oldBackupId))
        };

        var s3 = new AWS.S3(credentials);
        s3.copyObject(params, function (error, result) {
            if (error && error.code === 'NoSuchKey') return callback(new BackupsError(BackupsError.NOT_FOUND));
            if (error) {
                console.error('copyBackup: s3 copy error.', error);
                return callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));
            }

            callback(null);
        });
    });
}

function removeBackup(apiConfig, backupId, appBackupIds, callback) {
    assert.strictEqual(typeof apiConfig, 'object');
    assert.strictEqual(typeof backupId, 'string');
    assert(Array.isArray(appBackupIds));
    assert.strictEqual(typeof callback, 'function');

    // Result: none

    callback(new Error('not implemented'));
}

function getDownloadStream(apiConfig, backupId, callback) {
    assert.strictEqual(typeof apiConfig, 'object');
    assert.strictEqual(typeof backupId, 'string');
    assert.strictEqual(typeof callback, 'function');

    var backupFilePath = getBackupFilePath(apiConfig, backupId);

    debug('[%s] getDownloadStream: %s %s', backupId, backupId, backupFilePath);

    callback(new Error('not implemented'));
}

function testConfig(apiConfig, callback) {
    assert.strictEqual(typeof apiConfig, 'object');
    assert.strictEqual(typeof callback, 'function');

    if (typeof apiConfig.accessKeyId !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'accessKeyId must be a string'));
    if (typeof apiConfig.secretAccessKey !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'secretAccessKey must be a string'));
    if (typeof apiConfig.bucket !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'bucket must be a string'));
    if (typeof apiConfig.prefix !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'prefix must be a string'));

    // attempt to upload and delete a file with new credentials
    getBackupCredentials(apiConfig, function (error, credentials) {
        if (error) return callback(error);

        var params = {
            Bucket: apiConfig.bucket,
            Key: apiConfig.prefix + '/cloudron-testfile',
            Body: 'testcontent'
        };

        var s3 = new AWS.S3(credentials);
        s3.putObject(params, function (error) {
            if (error) return callback(new SettingsError(SettingsError.EXTERNAL_ERROR, error.message));

            var params = {
                Bucket: apiConfig.bucket,
                Key: apiConfig.prefix + '/cloudron-testfile'
            };

            s3.deleteObject(params, function (error) {
                if (error) return callback(new SettingsError(SettingsError.EXTERNAL_ERROR, error.message));

                callback();
            });
        });
    });
}

function backupDone(filename, app, appBackupIds, callback) {
    assert.strictEqual(typeof filename, 'string');
    assert(!app || typeof app === 'object');
    assert(!appBackupIds || Array.isArray(appBackupIds));
    assert.strictEqual(typeof callback, 'function');

    callback();
}
Add aws.js 2015-08-24 11:13:21 -07:00			`'use strict';`

			`exports = module.exports = {`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`backup: backup,`
			`restore: restore,`
			`copyBackup: copyBackup,`
Add backup config test for each backend 2016-10-11 11:36:25 +02:00			`removeBackup: removeBackup,`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`getDownloadStream: getDownloadStream,`

Add backupDone hook 2017-01-04 16:22:58 -08:00			`backupDone: backupDone,`

Add backup config test for each backend 2016-10-11 11:36:25 +02:00			`testConfig: testConfig`
Add aws.js 2015-08-24 11:13:21 -07:00			`};`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`var archiver = require('archiver'),`
			`assert = require('assert'),`
			`async = require('async'),`
Move backup config fetching into storage backend 2016-09-19 15:03:38 +02:00			`AWS = require('aws-sdk'),`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`BackupsError = require('../backups.js').BackupsError,`
			`crypto = require('crypto'),`
			`debug = require('debug')('box:storage/s3'),`
			`mkdirp = require('mkdirp'),`
			`once = require('once'),`
			`path = require('path'),`
Add backup config test for each backend 2016-10-11 11:36:25 +02:00			`SettingsError = require('../settings.js').SettingsError,`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`tar = require('tar-fs'),`
			`zlib = require('zlib');`
Add aws.js 2015-08-24 11:13:21 -07:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`var FILE_TYPE = '.tar.gz';`

			`// internal only`
rename to apiConfig 2016-03-31 09:48:01 -07:00			`function getBackupCredentials(apiConfig, callback) {`
			`assert.strictEqual(typeof apiConfig, 'object');`
Add aws.js 2015-08-24 11:13:21 -07:00			`assert.strictEqual(typeof callback, 'function');`

rename to apiConfig 2016-03-31 09:48:01 -07:00			`assert(apiConfig.accessKeyId && apiConfig.secretAccessKey);`
split aws code into storage backends 2015-11-06 18:22:29 -08:00
			`var credentials = {`
Actually we need to specify the signatureVersion... 2016-09-12 17:31:52 +02:00			`signatureVersion: 'v4',`
Fixup bugs with updated backup scripts 2016-12-07 10:47:06 +01:00			`s3ForcePathStyle: true,`
rename to apiConfig 2016-03-31 09:48:01 -07:00			`accessKeyId: apiConfig.accessKeyId,`
			`secretAccessKey: apiConfig.secretAccessKey,`
pick region from apiConfig if present 2016-03-31 09:48:38 -07:00			`region: apiConfig.region \|\| 'us-east-1'`
split aws code into storage backends 2015-11-06 18:22:29 -08:00			`};`
make aws endpoint configurable for tests 2015-09-09 11:43:50 -07:00
Fixup bugs with updated backup scripts 2016-12-07 10:47:06 +01:00			`if (apiConfig.endpoint) credentials.endpoint = apiConfig.endpoint;`
make aws endpoint configurable for tests 2015-09-09 11:43:50 -07:00
split aws code into storage backends 2015-11-06 18:22:29 -08:00			`callback(null, credentials);`
Add aws.js 2015-08-24 11:13:21 -07:00			`}`
Add getSignedUploadUrl() to aws.js 2015-08-25 10:01:04 -07:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`function getBackupFilePath(apiConfig, backupId) {`
Refactor getBackupCredentials() 2016-09-16 10:58:34 +02:00			`assert.strictEqual(typeof apiConfig, 'object');`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`assert.strictEqual(typeof backupId, 'string');`
Refactor getBackupCredentials() 2016-09-16 10:58:34 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`return path.join(apiConfig.prefix, backupId.endsWith(FILE_TYPE) ? backupId : backupId+FILE_TYPE);`
Refactor getBackupCredentials() 2016-09-16 10:58:34 +02:00			`}`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`// storage api`
			`function backup(apiConfig, backupId, sourceDirectories, callback) {`
Refactor getAppBackupCredentials() 2016-09-16 11:21:08 +02:00			`assert.strictEqual(typeof apiConfig, 'object');`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`assert.strictEqual(typeof backupId, 'string');`
			`assert(Array.isArray(sourceDirectories));`
Refactor getAppBackupCredentials() 2016-09-16 11:21:08 +02:00			`assert.strictEqual(typeof callback, 'function');`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`callback = once(callback);`
Refactor getAppBackupCredentials() 2016-09-16 11:21:08 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`var backupFilePath = getBackupFilePath(apiConfig, backupId);`
Refactor getAppBackupCredentials() 2016-09-16 11:21:08 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`debug('[%s] backup: %j -> %s', backupId, sourceDirectories, backupFilePath);`
Add getSignedUploadUrl() to aws.js 2015-08-25 10:01:04 -07:00
rename to apiConfig 2016-03-31 09:48:01 -07:00			`getBackupCredentials(apiConfig, function (error, credentials) {`
Add getSignedUploadUrl() to aws.js 2015-08-25 10:01:04 -07:00			`if (error) return callback(error);`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`var archive = archiver('tar', { gzip: true });`
			`var encrypt = crypto.createCipher('aes-256-cbc', apiConfig.key \|\| '');`

			`encrypt.on('error', function (error) {`
			`console.error('[%s] backup: cipher stream error.', backupId, error);`
			`});`

			`archive.on('error', function (error) {`
			`console.error('[%s] backup: archive stream error.', backupId, error);`
			`});`

			`archive.pipe(encrypt);`

			`sourceDirectories.forEach(function (directory) {`
			`// archive does not like destination beginning with a slash`
			`directory.destination = path.normalize(directory.destination).replace(/^\//, '');`

			`archive.directory(directory.source, directory.destination);`
			`});`

			`archive.finalize();`
Add getSignedUploadUrl() to aws.js 2015-08-25 10:01:04 -07:00
			`var params = {`
info is not passed anymore 2016-04-04 11:44:24 -07:00			`Bucket: apiConfig.bucket,`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`Key: backupFilePath,`
			`Body: encrypt`
Add getSignedUploadUrl() to aws.js 2015-08-25 10:01:04 -07:00			`};`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`var s3 = new AWS.S3(credentials);`
			`s3.upload(params, function (error, result) {`
			`if (error) {`
			`console.error('[%s] backup: s3 upload error.', backupId, error);`
			`return callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));`
			`}`
getSignedDownloadUrl must return an object with url and sessionToken 2015-08-27 09:26:19 -07:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`callback(null);`
			`});`
Add getSignedUploadUrl() to aws.js 2015-08-25 10:01:04 -07:00			`});`
			`}`
Move subdomain management from appstore to box 2015-08-26 16:14:51 -07:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`function restore(apiConfig, backupId, destinationDirectories, callback) {`
Move backup config fetching into storage backend 2016-09-19 15:03:38 +02:00			`assert.strictEqual(typeof apiConfig, 'object');`
			`assert.strictEqual(typeof backupId, 'string');`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`assert(Array.isArray(destinationDirectories));`
Move backup config fetching into storage backend 2016-09-19 15:03:38 +02:00			`assert.strictEqual(typeof callback, 'function');`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`var backupFilePath = getBackupFilePath(apiConfig, backupId);`

			`debug('[%s] restore: %s -> %j', backupId, backupFilePath, destinationDirectories);`
Move backup config fetching into storage backend 2016-09-19 15:03:38 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`getBackupCredentials(apiConfig, function (error, credentials) {`
Move backup config fetching into storage backend 2016-09-19 15:03:38 +02:00			`if (error) return callback(error);`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`async.eachSeries(destinationDirectories, function (directory, callback) {`
			`debug('[%s] restore: directory %s -> %s', backupId, directory.source, directory.destination);`
Move backup config fetching into storage backend 2016-09-19 15:03:38 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`// tar-fs reports without slash at the beginning`
			`directory.source = path.normalize(directory.source).replace(/^\//, '');`
Move backup config fetching into storage backend 2016-09-19 15:03:38 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`mkdirp(directory.destination, function (error) {`
			`if (error) return callback(error);`
Move backup config fetching into storage backend 2016-09-19 15:03:38 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`var params = {`
			`Bucket: apiConfig.bucket,`
			`Key: backupFilePath`
			`};`

			`var s3 = new AWS.S3(credentials);`

			`var s3get = s3.getObject(params).createReadStream();`
			`var decrypt = crypto.createDecipher('aes-256-cbc', apiConfig.key \|\| '');`
			`var gunzip = zlib.createGunzip({});`

			`var IGNORE_PREFIX = '__ignore__';`
			`var extract = tar.extract(directory.destination, {`
			`ignore: function (name, header) { return header.name.startsWith(IGNORE_PREFIX); },`
			`map: function (header) {`
			`// ignore is called after map, we mark everything we dont want!`
			`// else slice off the mapping prefix`
			`if (!header.name.startsWith(directory.source)) header.name = IGNORE_PREFIX + header.name;`
			`else header.name = header.name.slice(directory.source.length);`

			`return header;`
			`}`
			`});`

			`s3get.on('error', function (error) {`
Handle S3 not found errors 2017-04-18 16:44:49 +02:00			`if (error.code === 'NoSuchKey') return callback(new BackupsError(BackupsError.NOT_FOUND));`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`console.error('[%s] restore: s3 stream error.', backupId, error);`
			`callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));`
			`});`

			`decrypt.on('error', function (error) {`
			`console.error('[%s] restore: decipher stream error.', error);`
			`callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));`
			`});`

			`gunzip.on('error', function (error) {`
			`console.error('[%s] restore: gunzip stream error.', error);`
			`callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));`
			`});`

			`extract.on('error', function (error) {`
			`console.error('[%s] restore: extract stream error.', error);`
			`callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));`
			`});`
Add backup download route if backend supports it 2016-09-16 18:14:36 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`extract.on('finish', function () {`
			`debug('[%s] restore: directory %s done.', backupId, directory.source);`
			`callback();`
			`});`

			`s3get.pipe(decrypt).pipe(gunzip).pipe(extract);`
			`});`
			`}, function (error) {`
			`if (error) return callback(error);`

			`debug('[%s] restore: done', backupId);`

			`callback(null);`
			`});`
			`});`
Add backup download route if backend supports it 2016-09-16 18:14:36 +02:00			`}`

s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`function copyBackup(apiConfig, oldBackupId, newBackupId, callback) {`
rename to apiConfig 2016-03-31 09:48:01 -07:00			`assert.strictEqual(typeof apiConfig, 'object');`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`assert.strictEqual(typeof oldBackupId, 'string');`
			`assert.strictEqual(typeof newBackupId, 'string');`
aws: add copyObject 2015-09-21 14:02:00 -07:00			`assert.strictEqual(typeof callback, 'function');`

rename to apiConfig 2016-03-31 09:48:01 -07:00			`getBackupCredentials(apiConfig, function (error, credentials) {`
aws: add copyObject 2015-09-21 14:02:00 -07:00			`if (error) return callback(error);`

			`var params = {`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`Bucket: apiConfig.bucket,`
			`Key: getBackupFilePath(apiConfig, newBackupId),`
			`CopySource: path.join(apiConfig.bucket, getBackupFilePath(apiConfig, oldBackupId))`
aws: add copyObject 2015-09-21 14:02:00 -07:00			`};`

			`var s3 = new AWS.S3(credentials);`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`s3.copyObject(params, function (error, result) {`
Handle S3 not found errors 2017-04-18 16:44:49 +02:00			`if (error && error.code === 'NoSuchKey') return callback(new BackupsError(BackupsError.NOT_FOUND));`
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`if (error) {`
			`console.error('copyBackup: s3 copy error.', error);`
			`return callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));`
			`}`

			`callback(null);`
			`});`
aws: add copyObject 2015-09-21 14:02:00 -07:00			`});`
			`}`
Add new storage.removeBackup() api This currently is only used in the filesystem backend, but may be expanded to also cleanup S3 in the future 2016-10-10 15:04:28 +02:00
Adjust removeBackup() api 2016-10-10 15:45:12 +02:00			`function removeBackup(apiConfig, backupId, appBackupIds, callback) {`
Add new storage.removeBackup() api This currently is only used in the filesystem backend, but may be expanded to also cleanup S3 in the future 2016-10-10 15:04:28 +02:00			`assert.strictEqual(typeof apiConfig, 'object');`
			`assert.strictEqual(typeof backupId, 'string');`
Adjust removeBackup() api 2016-10-10 15:45:12 +02:00			`assert(Array.isArray(appBackupIds));`
Add new storage.removeBackup() api This currently is only used in the filesystem backend, but may be expanded to also cleanup S3 in the future 2016-10-10 15:04:28 +02:00			`assert.strictEqual(typeof callback, 'function');`

			`// Result: none`

			`callback(new Error('not implemented'));`
			`}`
Add backup config test for each backend 2016-10-11 11:36:25 +02:00
s3 storage backend with backup and restore implemented 2017-04-18 15:33:06 +02:00			`function getDownloadStream(apiConfig, backupId, callback) {`
			`assert.strictEqual(typeof apiConfig, 'object');`
			`assert.strictEqual(typeof backupId, 'string');`
			`assert.strictEqual(typeof callback, 'function');`

			`var backupFilePath = getBackupFilePath(apiConfig, backupId);`

			`debug('[%s] getDownloadStream: %s %s', backupId, backupId, backupFilePath);`

			`callback(new Error('not implemented'));`
			`}`

Add backup config test for each backend 2016-10-11 11:36:25 +02:00			`function testConfig(apiConfig, callback) {`
			`assert.strictEqual(typeof apiConfig, 'object');`
			`assert.strictEqual(typeof callback, 'function');`

			`if (typeof apiConfig.accessKeyId !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'accessKeyId must be a string'));`
			`if (typeof apiConfig.secretAccessKey !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'secretAccessKey must be a string'));`
			`if (typeof apiConfig.bucket !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'bucket must be a string'));`
			`if (typeof apiConfig.prefix !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'prefix must be a string'));`

Actually verify s3 credentials by using the api 2016-10-11 11:46:28 +02:00			`// attempt to upload and delete a file with new credentials`
			`getBackupCredentials(apiConfig, function (error, credentials) {`
			`if (error) return callback(error);`

			`var params = {`
			`Bucket: apiConfig.bucket,`
Remove s3 backup test shell script 2017-04-18 16:51:54 +02:00			`Key: apiConfig.prefix + '/cloudron-testfile',`
Actually verify s3 credentials by using the api 2016-10-11 11:46:28 +02:00			`Body: 'testcontent'`
			`};`

			`var s3 = new AWS.S3(credentials);`
			`s3.putObject(params, function (error) {`
			`if (error) return callback(new SettingsError(SettingsError.EXTERNAL_ERROR, error.message));`

			`var params = {`
			`Bucket: apiConfig.bucket,`
Remove s3 backup test shell script 2017-04-18 16:51:54 +02:00			`Key: apiConfig.prefix + '/cloudron-testfile'`
Actually verify s3 credentials by using the api 2016-10-11 11:46:28 +02:00			`};`

			`s3.deleteObject(params, function (error) {`
			`if (error) return callback(new SettingsError(SettingsError.EXTERNAL_ERROR, error.message));`

Remove s3 backup test shell script 2017-04-18 16:51:54 +02:00			`callback();`
Actually verify s3 credentials by using the api 2016-10-11 11:46:28 +02:00			`});`
			`});`
			`});`
Add backup config test for each backend 2016-10-11 11:36:25 +02:00			`}`
Add backupDone hook 2017-01-04 16:22:58 -08:00
			`function backupDone(filename, app, appBackupIds, callback) {`
			`assert.strictEqual(typeof filename, 'string');`
			`assert(!app \|\| typeof app === 'object');`
			`assert(!appBackupIds \|\| Array.isArray(appBackupIds));`
			`assert.strictEqual(typeof callback, 'function');`

			`callback();`
			`}`