2015-08-24 11:13:21 -07:00
|
|
|
'use strict';
|
|
|
|
|
|
|
|
|
|
exports = module.exports = {
|
2017-04-18 15:33:06 +02:00
|
|
|
backup: backup,
|
|
|
|
|
restore: restore,
|
|
|
|
|
copyBackup: copyBackup,
|
2016-10-11 11:36:25 +02:00
|
|
|
removeBackup: removeBackup,
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
getDownloadStream: getDownloadStream,
|
|
|
|
|
|
2017-01-04 16:22:58 -08:00
|
|
|
backupDone: backupDone,
|
|
|
|
|
|
2016-10-11 11:36:25 +02:00
|
|
|
testConfig: testConfig
|
2015-08-24 11:13:21 -07:00
|
|
|
};
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
var archiver = require('archiver'),
|
|
|
|
|
assert = require('assert'),
|
|
|
|
|
async = require('async'),
|
2016-09-19 15:03:38 +02:00
|
|
|
AWS = require('aws-sdk'),
|
2017-04-18 15:33:06 +02:00
|
|
|
BackupsError = require('../backups.js').BackupsError,
|
|
|
|
|
crypto = require('crypto'),
|
|
|
|
|
debug = require('debug')('box:storage/s3'),
|
|
|
|
|
mkdirp = require('mkdirp'),
|
|
|
|
|
once = require('once'),
|
|
|
|
|
path = require('path'),
|
2016-10-11 11:36:25 +02:00
|
|
|
SettingsError = require('../settings.js').SettingsError,
|
2017-04-18 15:33:06 +02:00
|
|
|
tar = require('tar-fs'),
|
|
|
|
|
zlib = require('zlib');
|
2015-08-24 11:13:21 -07:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
var FILE_TYPE = '.tar.gz';
|
|
|
|
|
|
|
|
|
|
// internal only
|
2016-03-31 09:48:01 -07:00
|
|
|
function getBackupCredentials(apiConfig, callback) {
|
|
|
|
|
assert.strictEqual(typeof apiConfig, 'object');
|
2015-08-24 11:13:21 -07:00
|
|
|
assert.strictEqual(typeof callback, 'function');
|
|
|
|
|
|
2016-03-31 09:48:01 -07:00
|
|
|
assert(apiConfig.accessKeyId && apiConfig.secretAccessKey);
|
2015-11-06 18:22:29 -08:00
|
|
|
|
|
|
|
|
var credentials = {
|
2016-09-12 17:31:52 +02:00
|
|
|
signatureVersion: 'v4',
|
2016-12-07 10:47:06 +01:00
|
|
|
s3ForcePathStyle: true,
|
2016-03-31 09:48:01 -07:00
|
|
|
accessKeyId: apiConfig.accessKeyId,
|
|
|
|
|
secretAccessKey: apiConfig.secretAccessKey,
|
2016-03-31 09:48:38 -07:00
|
|
|
region: apiConfig.region || 'us-east-1'
|
2015-11-06 18:22:29 -08:00
|
|
|
};
|
2015-09-09 11:43:50 -07:00
|
|
|
|
2016-12-07 10:47:06 +01:00
|
|
|
if (apiConfig.endpoint) credentials.endpoint = apiConfig.endpoint;
|
2015-09-09 11:43:50 -07:00
|
|
|
|
2015-11-06 18:22:29 -08:00
|
|
|
callback(null, credentials);
|
2015-08-24 11:13:21 -07:00
|
|
|
}
|
2015-08-25 10:01:04 -07:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
function getBackupFilePath(apiConfig, backupId) {
|
2016-09-16 10:58:34 +02:00
|
|
|
assert.strictEqual(typeof apiConfig, 'object');
|
2017-04-18 15:33:06 +02:00
|
|
|
assert.strictEqual(typeof backupId, 'string');
|
2016-09-16 10:58:34 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
return path.join(apiConfig.prefix, backupId.endsWith(FILE_TYPE) ? backupId : backupId+FILE_TYPE);
|
2016-09-16 10:58:34 +02:00
|
|
|
}
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
// storage api
|
|
|
|
|
function backup(apiConfig, backupId, sourceDirectories, callback) {
|
2016-09-16 11:21:08 +02:00
|
|
|
assert.strictEqual(typeof apiConfig, 'object');
|
2017-04-18 15:33:06 +02:00
|
|
|
assert.strictEqual(typeof backupId, 'string');
|
|
|
|
|
assert(Array.isArray(sourceDirectories));
|
2016-09-16 11:21:08 +02:00
|
|
|
assert.strictEqual(typeof callback, 'function');
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
callback = once(callback);
|
2016-09-16 11:21:08 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
var backupFilePath = getBackupFilePath(apiConfig, backupId);
|
2016-09-16 11:21:08 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
debug('[%s] backup: %j -> %s', backupId, sourceDirectories, backupFilePath);
|
2015-08-25 10:01:04 -07:00
|
|
|
|
2016-03-31 09:48:01 -07:00
|
|
|
getBackupCredentials(apiConfig, function (error, credentials) {
|
2015-08-25 10:01:04 -07:00
|
|
|
if (error) return callback(error);
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
var archive = archiver('tar', { gzip: true });
|
|
|
|
|
var encrypt = crypto.createCipher('aes-256-cbc', apiConfig.key || '');
|
|
|
|
|
|
|
|
|
|
encrypt.on('error', function (error) {
|
|
|
|
|
console.error('[%s] backup: cipher stream error.', backupId, error);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
archive.on('error', function (error) {
|
|
|
|
|
console.error('[%s] backup: archive stream error.', backupId, error);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
archive.pipe(encrypt);
|
|
|
|
|
|
|
|
|
|
sourceDirectories.forEach(function (directory) {
|
|
|
|
|
// archive does not like destination beginning with a slash
|
|
|
|
|
directory.destination = path.normalize(directory.destination).replace(/^\//, '');
|
|
|
|
|
|
|
|
|
|
archive.directory(directory.source, directory.destination);
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
archive.finalize();
|
2015-08-25 10:01:04 -07:00
|
|
|
|
|
|
|
|
var params = {
|
2016-04-04 11:44:24 -07:00
|
|
|
Bucket: apiConfig.bucket,
|
2017-04-18 15:33:06 +02:00
|
|
|
Key: backupFilePath,
|
|
|
|
|
Body: encrypt
|
2015-08-25 10:01:04 -07:00
|
|
|
};
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
var s3 = new AWS.S3(credentials);
|
|
|
|
|
s3.upload(params, function (error, result) {
|
|
|
|
|
if (error) {
|
|
|
|
|
console.error('[%s] backup: s3 upload error.', backupId, error);
|
|
|
|
|
return callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));
|
|
|
|
|
}
|
2015-08-27 09:26:19 -07:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
callback(null);
|
|
|
|
|
});
|
2015-08-25 10:01:04 -07:00
|
|
|
});
|
|
|
|
|
}
|
2015-08-26 16:14:51 -07:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
function restore(apiConfig, backupId, destinationDirectories, callback) {
|
2016-09-19 15:03:38 +02:00
|
|
|
assert.strictEqual(typeof apiConfig, 'object');
|
|
|
|
|
assert.strictEqual(typeof backupId, 'string');
|
2017-04-18 15:33:06 +02:00
|
|
|
assert(Array.isArray(destinationDirectories));
|
2016-09-19 15:03:38 +02:00
|
|
|
assert.strictEqual(typeof callback, 'function');
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
var backupFilePath = getBackupFilePath(apiConfig, backupId);
|
|
|
|
|
|
|
|
|
|
debug('[%s] restore: %s -> %j', backupId, backupFilePath, destinationDirectories);
|
2016-09-19 15:03:38 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
getBackupCredentials(apiConfig, function (error, credentials) {
|
2016-09-19 15:03:38 +02:00
|
|
|
if (error) return callback(error);
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
async.eachSeries(destinationDirectories, function (directory, callback) {
|
|
|
|
|
debug('[%s] restore: directory %s -> %s', backupId, directory.source, directory.destination);
|
2016-09-19 15:03:38 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
// tar-fs reports without slash at the beginning
|
|
|
|
|
directory.source = path.normalize(directory.source).replace(/^\//, '');
|
2016-09-19 15:03:38 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
mkdirp(directory.destination, function (error) {
|
|
|
|
|
if (error) return callback(error);
|
2016-09-19 15:03:38 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
var params = {
|
|
|
|
|
Bucket: apiConfig.bucket,
|
|
|
|
|
Key: backupFilePath
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
var s3 = new AWS.S3(credentials);
|
|
|
|
|
|
|
|
|
|
var s3get = s3.getObject(params).createReadStream();
|
|
|
|
|
var decrypt = crypto.createDecipher('aes-256-cbc', apiConfig.key || '');
|
|
|
|
|
var gunzip = zlib.createGunzip({});
|
|
|
|
|
|
|
|
|
|
var IGNORE_PREFIX = '__ignore__';
|
|
|
|
|
var extract = tar.extract(directory.destination, {
|
|
|
|
|
ignore: function (name, header) { return header.name.startsWith(IGNORE_PREFIX); },
|
|
|
|
|
map: function (header) {
|
|
|
|
|
// ignore is called after map, we mark everything we dont want!
|
|
|
|
|
// else slice off the mapping prefix
|
|
|
|
|
if (!header.name.startsWith(directory.source)) header.name = IGNORE_PREFIX + header.name;
|
|
|
|
|
else header.name = header.name.slice(directory.source.length);
|
|
|
|
|
|
|
|
|
|
return header;
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
s3get.on('error', function (error) {
|
2017-04-18 16:44:49 +02:00
|
|
|
if (error.code === 'NoSuchKey') return callback(new BackupsError(BackupsError.NOT_FOUND));
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
console.error('[%s] restore: s3 stream error.', backupId, error);
|
|
|
|
|
callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
decrypt.on('error', function (error) {
|
|
|
|
|
console.error('[%s] restore: decipher stream error.', error);
|
|
|
|
|
callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
gunzip.on('error', function (error) {
|
|
|
|
|
console.error('[%s] restore: gunzip stream error.', error);
|
|
|
|
|
callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
extract.on('error', function (error) {
|
|
|
|
|
console.error('[%s] restore: extract stream error.', error);
|
|
|
|
|
callback(new BackupsError(BackupsError.INTERNAL_ERROR, error));
|
|
|
|
|
});
|
2016-09-16 18:14:36 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
extract.on('finish', function () {
|
|
|
|
|
debug('[%s] restore: directory %s done.', backupId, directory.source);
|
|
|
|
|
callback();
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
s3get.pipe(decrypt).pipe(gunzip).pipe(extract);
|
|
|
|
|
});
|
|
|
|
|
}, function (error) {
|
|
|
|
|
if (error) return callback(error);
|
|
|
|
|
|
|
|
|
|
debug('[%s] restore: done', backupId);
|
|
|
|
|
|
|
|
|
|
callback(null);
|
|
|
|
|
});
|
|
|
|
|
});
|
2016-09-16 18:14:36 +02:00
|
|
|
}
|
|
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
function copyBackup(apiConfig, oldBackupId, newBackupId, callback) {
|
2016-03-31 09:48:01 -07:00
|
|
|
assert.strictEqual(typeof apiConfig, 'object');
|
2017-04-18 15:33:06 +02:00
|
|
|
assert.strictEqual(typeof oldBackupId, 'string');
|
|
|
|
|
assert.strictEqual(typeof newBackupId, 'string');
|
2015-09-21 14:02:00 -07:00
|
|
|
assert.strictEqual(typeof callback, 'function');
|
|
|
|
|
|
2016-03-31 09:48:01 -07:00
|
|
|
getBackupCredentials(apiConfig, function (error, credentials) {
|
2015-09-21 14:02:00 -07:00
|
|
|
if (error) return callback(error);
|
|
|
|
|
|
|
|
|
|
var params = {
|
2017-04-18 15:33:06 +02:00
|
|
|
Bucket: apiConfig.bucket,
|
|
|
|
|
Key: getBackupFilePath(apiConfig, newBackupId),
|
|
|
|
|
CopySource: path.join(apiConfig.bucket, getBackupFilePath(apiConfig, oldBackupId))
|
2015-09-21 14:02:00 -07:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
var s3 = new AWS.S3(credentials);
|
2017-04-18 15:33:06 +02:00
|
|
|
s3.copyObject(params, function (error, result) {
|
2017-04-18 16:44:49 +02:00
|
|
|
if (error && error.code === 'NoSuchKey') return callback(new BackupsError(BackupsError.NOT_FOUND));
|
2017-04-18 15:33:06 +02:00
|
|
|
if (error) {
|
|
|
|
|
console.error('copyBackup: s3 copy error.', error);
|
|
|
|
|
return callback(new BackupsError(BackupsError.EXTERNAL_ERROR, error));
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
callback(null);
|
|
|
|
|
});
|
2015-09-21 14:02:00 -07:00
|
|
|
});
|
|
|
|
|
}
|
2016-10-10 15:04:28 +02:00
|
|
|
|
2016-10-10 15:45:12 +02:00
|
|
|
function removeBackup(apiConfig, backupId, appBackupIds, callback) {
|
2016-10-10 15:04:28 +02:00
|
|
|
assert.strictEqual(typeof apiConfig, 'object');
|
|
|
|
|
assert.strictEqual(typeof backupId, 'string');
|
2016-10-10 15:45:12 +02:00
|
|
|
assert(Array.isArray(appBackupIds));
|
2016-10-10 15:04:28 +02:00
|
|
|
assert.strictEqual(typeof callback, 'function');
|
|
|
|
|
|
|
|
|
|
// Result: none
|
|
|
|
|
|
|
|
|
|
callback(new Error('not implemented'));
|
|
|
|
|
}
|
2016-10-11 11:36:25 +02:00
|
|
|
|
2017-04-18 15:33:06 +02:00
|
|
|
function getDownloadStream(apiConfig, backupId, callback) {
|
|
|
|
|
assert.strictEqual(typeof apiConfig, 'object');
|
|
|
|
|
assert.strictEqual(typeof backupId, 'string');
|
|
|
|
|
assert.strictEqual(typeof callback, 'function');
|
|
|
|
|
|
|
|
|
|
var backupFilePath = getBackupFilePath(apiConfig, backupId);
|
|
|
|
|
|
|
|
|
|
debug('[%s] getDownloadStream: %s %s', backupId, backupId, backupFilePath);
|
|
|
|
|
|
|
|
|
|
callback(new Error('not implemented'));
|
|
|
|
|
}
|
|
|
|
|
|
2016-10-11 11:36:25 +02:00
|
|
|
function testConfig(apiConfig, callback) {
|
|
|
|
|
assert.strictEqual(typeof apiConfig, 'object');
|
|
|
|
|
assert.strictEqual(typeof callback, 'function');
|
|
|
|
|
|
|
|
|
|
if (typeof apiConfig.accessKeyId !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'accessKeyId must be a string'));
|
|
|
|
|
if (typeof apiConfig.secretAccessKey !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'secretAccessKey must be a string'));
|
|
|
|
|
if (typeof apiConfig.bucket !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'bucket must be a string'));
|
|
|
|
|
if (typeof apiConfig.prefix !== 'string') return callback(new SettingsError(SettingsError.BAD_FIELD, 'prefix must be a string'));
|
|
|
|
|
|
2016-10-11 11:46:28 +02:00
|
|
|
// attempt to upload and delete a file with new credentials
|
|
|
|
|
getBackupCredentials(apiConfig, function (error, credentials) {
|
|
|
|
|
if (error) return callback(error);
|
|
|
|
|
|
|
|
|
|
var params = {
|
|
|
|
|
Bucket: apiConfig.bucket,
|
2017-04-18 16:51:54 +02:00
|
|
|
Key: apiConfig.prefix + '/cloudron-testfile',
|
2016-10-11 11:46:28 +02:00
|
|
|
Body: 'testcontent'
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
var s3 = new AWS.S3(credentials);
|
|
|
|
|
s3.putObject(params, function (error) {
|
|
|
|
|
if (error) return callback(new SettingsError(SettingsError.EXTERNAL_ERROR, error.message));
|
|
|
|
|
|
|
|
|
|
var params = {
|
|
|
|
|
Bucket: apiConfig.bucket,
|
2017-04-18 16:51:54 +02:00
|
|
|
Key: apiConfig.prefix + '/cloudron-testfile'
|
2016-10-11 11:46:28 +02:00
|
|
|
};
|
|
|
|
|
|
|
|
|
|
s3.deleteObject(params, function (error) {
|
|
|
|
|
if (error) return callback(new SettingsError(SettingsError.EXTERNAL_ERROR, error.message));
|
|
|
|
|
|
2017-04-18 16:51:54 +02:00
|
|
|
callback();
|
2016-10-11 11:46:28 +02:00
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
});
|
2016-10-11 11:36:25 +02:00
|
|
|
}
|
2017-01-04 16:22:58 -08:00
|
|
|
|
|
|
|
|
function backupDone(filename, app, appBackupIds, callback) {
|
|
|
|
|
assert.strictEqual(typeof filename, 'string');
|
|
|
|
|
assert(!app || typeof app === 'object');
|
|
|
|
|
assert(!appBackupIds || Array.isArray(appBackupIds));
|
|
|
|
|
assert.strictEqual(typeof callback, 'function');
|
|
|
|
|
|
|
|
|
|
callback();
|
|
|
|
|
}
|