jjkiers/cloudron-box
1
0
Fork 0
Code Issues Pull Requests 1 Actions Packages Projects Releases Wiki Activity
Files
78bd819a36b0df7ab7760ba0949d15ed84d2cd10
cloudron-box/src/routes/apps.js

580 lines
25 KiB
JavaScript
Raw Normal View History

app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
'use strict';
exports = module.exports = {
getApp: getApp,
getApps: getApps,
getAppIcon: getAppIcon,
installApp: installApp,
configureApp: configureApp,
uninstallApp: uninstallApp,
restoreApp: restoreApp,
backupApp: backupApp,
updateApp: updateApp,
getLogs: getLogs,
getLogStream: getLogStream,
Add route to list application backups
2016-01-19 13:35:28 +01:00
listBackups: listBackups,
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
stopApp: stopApp,
startApp: startApp,
implement clone
2016-06-17 17:12:55 -05:00
exec: exec,
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
execWebSocket: execWebSocket,
implement clone
2016-06-17 17:12:55 -05:00
Add upload and download for the webterminal
2017-08-18 20:45:52 -07:00
cloneApp: cloneApp,
uploadFile: uploadFile,
downloadFile: downloadFile
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
};
var apps = require('../apps.js'),
AppsError = apps.AppsError,
assert = require('assert'),
debug = require('debug')('box:routes/apps'),
fs = require('fs'),
HttpError = require('connect-lastmile').HttpError,
HttpSuccess = require('connect-lastmile').HttpSuccess,
paths = require('../paths.js'),
safe = require('safetydance'),
Ensure we only write to the websocket if it is open
2017-08-17 11:29:13 +02:00
util = require('util'),
WebSocket = require('ws');
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
add event log in model code
2016-05-01 21:37:08 -07:00
function auditSource(req) {
var ip = req.headers['x-forwarded-for'] || req.connection.remoteAddress || null;
return { ip: ip, username: req.user ? req.user.username : null, userId: req.user ? req.user.id : null };
}
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
function removeInternalAppFields(app) {
return {
id: app.id,
appStoreId: app.appStoreId,
installationState: app.installationState,
installationProgress: app.installationProgress,
runState: app.runState,
health: app.health,
location: app.location,
Send domain as part of the apps routes
2017-11-02 22:17:23 +01:00
domain: app.domain,
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
accessRestriction: app.accessRestriction,
manifest: app.manifest,
portBindings: app.portBindings,
iconUrl: app.iconUrl,
Introduce memoryLimit to apps routes
2016-02-11 17:00:21 +01:00
fqdn: app.fqdn,
return altDomain in response
2016-04-23 00:03:37 -07:00
memoryLimit: app.memoryLimit,
Add xFrameOptions to apps and routes
2016-07-14 15:16:05 +02:00
altDomain: app.altDomain,
Add cnameTarget for apps using an external domain We have 4 properties related to the domain: 1) location, is the subdomain location without information how to craft a fqdn on the client 2) fqdn, the intended domain to reach the app 3) altDomain, just the value for the external domain, merely a db record value 4) cnameTarget, mostly for display purpose on the client, which otherwise has no way to build the original cloudron local fqdn
2017-03-09 15:11:25 +01:00
cnameTarget: app.cnameTarget,
Include sso field in the app object delivered over the rest api
2016-11-22 11:12:46 +01:00
xFrameOptions: app.xFrameOptions,
send readonly and dev mode fields
2017-01-19 19:01:29 -08:00
sso: app.sso,
Allow per-app configuration of robots.txt https://developers.google.com/search/reference/robots_txt has the specification Part of #344
2017-07-14 12:19:27 -05:00
debugMode: app.debugMode,
Add field to skip backup for an app This skips the app from a backup when doing a full box backup and simply reuses the previous backup. The app can still be explicitly backed up using 'cloudron backup' and explicitly restored using 'cloudron restore --backup'. When restoring the box, it all depends on the app's last backup. Fixes #311
2017-08-16 14:12:07 -07:00
robotsTxt: app.robotsTxt,
display last updated in app info
2017-11-19 12:36:05 -08:00
enableBackup: app.enableBackup,
creationTime: app.creationTime.toISOString(),
updateTime: app.updateTime.toISOString()
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
};
}
function getApp(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
apps.get(req.params.id, function (error, app) {
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(200, removeInternalAppFields(app)));
});
}
function getApps(req, res, next) {
Only list apps where a user has access to
2016-02-25 12:20:11 +01:00
assert.strictEqual(typeof req.user, 'object');
var func = req.user.admin ? apps.getAll : apps.getAllByUser.bind(null, req.user);
func(function (error, allApps) {
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error) return next(new HttpError(500, error));
allApps = allApps.map(removeInternalAppFields);
next(new HttpSuccess(200, { apps: allApps }));
});
}
function getAppIcon(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
APPICONS_DIR -> APP_ICONS_DIR
2017-01-24 10:13:25 -08:00
var iconPath = paths.APP_ICONS_DIR + '/' + req.params.id + '.png';
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
fs.exists(iconPath, function (exists) {
if (!exists) return next(new HttpError(404, 'No such icon'));
res.sendFile(iconPath);
});
}
function installApp(req, res, next) {
assert.strictEqual(typeof req.body, 'object');
var data = req.body;
download manifest from appstore when appStoreId is provided
2016-06-04 01:07:43 -07:00
// atleast one
update code path now takes appStoreId
2016-06-04 19:19:00 -07:00
if ('manifest' in data && typeof data.manifest !== 'object') return next(new HttpError(400, 'manifest must be an object'));
if ('appStoreId' in data && typeof data.appStoreId !== 'string') return next(new HttpError(400, 'appStoreId must be a string'));
download manifest from appstore when appStoreId is provided
2016-06-04 01:07:43 -07:00
if (!data.manifest && !data.appStoreId) return next(new HttpError(400, 'appStoreId or manifest is required'));
fix apps.install insane arg list
2016-06-03 23:22:38 -07:00
// required
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (typeof data.location !== 'string') return next(new HttpError(400, 'location is required'));
Make appFqdn() multidomain aware
2017-11-02 22:17:44 +01:00
if (typeof data.domain !== 'string') return next(new HttpError(400, 'domain is required'));
Make accessRestriction a JSON format to prepare for group access control
2015-10-16 15:11:54 +02:00
if (typeof data.accessRestriction !== 'object') return next(new HttpError(400, 'accessRestriction is required'));
fix apps.install insane arg list
2016-06-03 23:22:38 -07:00
// optional
if (('portBindings' in data) && typeof data.portBindings !== 'object') return next(new HttpError(400, 'portBindings must be an object'));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if ('icon' in data && typeof data.icon !== 'string') return next(new HttpError(400, 'icon is not a string'));
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
Allow installing from a backup
2017-04-11 12:49:21 -07:00
if (data.backupId && typeof data.backupId !== 'string') return next(new HttpError(400, 'backupId must be string or null'));
store format information for restoring fixes #483
2017-11-16 14:47:05 -08:00
if (data.backupFormat && typeof data.backupFormat !== 'string') return next(new HttpError(400, 'backupFormat must be string or null'));
Allow installing from a backup
2017-04-11 12:49:21 -07:00
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
// falsy values in cert and key unset the cert
if (data.key && typeof data.cert !== 'string') return next(new HttpError(400, 'cert must be a string'));
if (data.cert && typeof data.key !== 'string') return next(new HttpError(400, 'key must be a string'));
Add cert and key to app install route
2015-10-28 22:09:19 +01:00
if (data.cert && !data.key) return next(new HttpError(400, 'key must be provided'));
if (!data.cert && data.key) return next(new HttpError(400, 'cert must be provided'));
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
Introduce memoryLimit to apps routes
2016-02-11 17:00:21 +01:00
if ('memoryLimit' in data && typeof data.memoryLimit !== 'number') return next(new HttpError(400, 'memoryLimit is not a number'));
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
// falsy value in altDomain unsets it
if (data.altDomain && typeof data.altDomain !== 'string') return next(new HttpError(400, 'altDomain must be a string'));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
Add xFrameOptions to apps and routes
2016-07-14 15:16:05 +02:00
if (data.xFrameOptions && typeof data.xFrameOptions !== 'string') return next(new HttpError(400, 'xFrameOptions must be a string'));
add sso route parameter to app install presumably, we don't allow this to be changed post installation
2016-11-11 10:55:44 +05:30
if ('sso' in data && typeof data.sso !== 'boolean') return next(new HttpError(400, 'sso must be a boolean'));
Add field to skip backup for an app This skips the app from a backup when doing a full box backup and simply reuses the previous backup. The app can still be explicitly backed up using 'cloudron backup' and explicitly restored using 'cloudron restore --backup'. When restoring the box, it all depends on the app's last backup. Fixes #311
2017-08-16 14:12:07 -07:00
if ('enableBackup' in data && typeof data.enableBackup !== 'boolean') return next(new HttpError(400, 'enableBackup must be a boolean'));
take oauthProxy parameter in install and configure routes part of #6
2016-09-06 21:21:56 -07:00
Merge readonlyRootfs and development mode into debug mode The core issue we want to solve is to debug a running app. Let's make it explicit that it is in debugging mode because functions like update/backup/restore don't work. Part of #171
2017-01-20 05:48:25 -08:00
if (('debugMode' in data) && typeof data.debugMode !== 'object') return next(new HttpError(400, 'debugMode must be an object'));
Add readonlyRootfs flag to apps table When turned off, it will put the app in a writable rootfs. This allows us to debug live/production apps (like change start.sh) and just get them up and running. Once turned off, this app cannot be updated anymore (unless the force flag is set). This way we can then update it using the CLI if we are convinced that the upcoming update fixes the problem. Part of #171
2017-01-19 11:20:24 -08:00
Allow per-app configuration of robots.txt https://developers.google.com/search/reference/robots_txt has the specification Part of #344
2017-07-14 12:19:27 -05:00
if (data.robotsTxt && typeof data.robotsTxt !== 'string') return next(new HttpError(400, 'robotsTxt must be a string'));
fix debug
2016-07-27 20:11:45 -07:00
debug('Installing app :%j', data);
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
do not allow appId to be set this is some legacy code
2016-06-04 13:40:43 -07:00
apps.install(data, auditSource(req), function (error, app) {
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error && error.reason === AppsError.ALREADY_EXISTS) return next(new HttpError(409, error.message));
if (error && error.reason === AppsError.PORT_RESERVED) return next(new HttpError(409, 'Port ' + error.message + ' is reserved.'));
if (error && error.reason === AppsError.PORT_CONFLICT) return next(new HttpError(409, 'Port ' + error.message + ' is already in use.'));
if (error && error.reason === AppsError.BAD_FIELD) return next(new HttpError(400, error.message));
Handle 402 response on app installation
2017-06-19 11:45:14 +02:00
if (error && error.reason === AppsError.BILLING_REQUIRED) return next(new HttpError(402, error.message));
Add cert and key to app install route
2015-10-28 22:09:19 +01:00
if (error && error.reason === AppsError.BAD_CERTIFICATE) return next(new HttpError(400, error.message));
download manifest from appstore when appStoreId is provided
2016-06-04 01:07:43 -07:00
if (error && error.reason === AppsError.EXTERNAL_ERROR) return next(new HttpError(503, error.message));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error) return next(new HttpError(500, error));
do not allow appId to be set this is some legacy code
2016-06-04 13:40:43 -07:00
next(new HttpSuccess(202, app));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
});
}
function configureApp(req, res, next) {
assert.strictEqual(typeof req.body, 'object');
assert.strictEqual(typeof req.params.id, 'string');
var data = req.body;
make args optional in configure
2016-06-04 18:07:02 -07:00
if ('location' in data && typeof data.location !== 'string') return next(new HttpError(400, 'location must be string'));
Make appFqdn() multidomain aware
2017-11-02 22:17:44 +01:00
if ('domain' in data && typeof data.domain !== 'string') return next(new HttpError(400, 'domain must be string'));
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
if ('portBindings' in data && typeof data.portBindings !== 'object') return next(new HttpError(400, 'portBindings must be an object'));
better type checking in configure and make accessRestriction optional
2016-06-04 16:27:50 -07:00
if ('accessRestriction' in data && typeof data.accessRestriction !== 'object') return next(new HttpError(400, 'accessRestriction must be an object'));
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
// falsy values in cert and key unset the cert
if (data.key && typeof data.cert !== 'string') return next(new HttpError(400, 'cert must be a string'));
if (data.cert && typeof data.key !== 'string') return next(new HttpError(400, 'key must be a string'));
Add cert and key to app configure route
2015-10-27 15:44:47 +01:00
if (data.cert && !data.key) return next(new HttpError(400, 'key must be provided'));
if (!data.cert && data.key) return next(new HttpError(400, 'cert must be provided'));
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
Introduce memoryLimit to apps routes
2016-02-11 17:00:21 +01:00
if ('memoryLimit' in data && typeof data.memoryLimit !== 'number') return next(new HttpError(400, 'memoryLimit is not a number'));
setting falsy values for cert/key removes it
2016-06-04 18:30:05 -07:00
if (data.altDomain && typeof data.altDomain !== 'string') return next(new HttpError(400, 'altDomain must be a string'));
Add xFrameOptions to apps and routes
2016-07-14 15:16:05 +02:00
if (data.xFrameOptions && typeof data.xFrameOptions !== 'string') return next(new HttpError(400, 'xFrameOptions must be a string'));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
Add field to skip backup for an app This skips the app from a backup when doing a full box backup and simply reuses the previous backup. The app can still be explicitly backed up using 'cloudron backup' and explicitly restored using 'cloudron restore --backup'. When restoring the box, it all depends on the app's last backup. Fixes #311
2017-08-16 14:12:07 -07:00
if ('enableBackup' in data && typeof data.enableBackup !== 'boolean') return next(new HttpError(400, 'enableBackup must be a boolean'));
Merge readonlyRootfs and development mode into debug mode The core issue we want to solve is to debug a running app. Let's make it explicit that it is in debugging mode because functions like update/backup/restore don't work. Part of #171
2017-01-20 05:48:25 -08:00
if (('debugMode' in data) && typeof data.debugMode !== 'object') return next(new HttpError(400, 'debugMode must be an object'));
Add readonlyRootfs flag to apps table When turned off, it will put the app in a writable rootfs. This allows us to debug live/production apps (like change start.sh) and just get them up and running. Once turned off, this app cannot be updated anymore (unless the force flag is set). This way we can then update it using the CLI if we are convinced that the upcoming update fixes the problem. Part of #171
2017-01-19 11:20:24 -08:00
Fix typo in error message
2017-07-15 19:58:52 -05:00
if (data.robotsTxt && typeof data.robotsTxt !== 'string') return next(new HttpError(400, 'robotsTxt must be a string'));
Allow per-app configuration of robots.txt https://developers.google.com/search/reference/robots_txt has the specification Part of #344
2017-07-14 12:19:27 -05:00
make args optional in configure
2016-06-04 18:07:02 -07:00
debug('Configuring app id:%s data:%j', req.params.id, data);
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
fix configure arg insanity
2016-06-04 16:32:27 -07:00
apps.configure(req.params.id, data, auditSource(req), function (error) {
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error && error.reason === AppsError.ALREADY_EXISTS) return next(new HttpError(409, error.message));
if (error && error.reason === AppsError.PORT_RESERVED) return next(new HttpError(409, 'Port ' + error.message + ' is reserved.'));
if (error && error.reason === AppsError.PORT_CONFLICT) return next(new HttpError(409, 'Port ' + error.message + ' is already in use.'));
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
if (error && error.reason === AppsError.BAD_FIELD) return next(new HttpError(400, error.message));
Pass certs down to apps.configure
2015-10-27 16:36:09 +01:00
if (error && error.reason === AppsError.BAD_CERTIFICATE) return next(new HttpError(400, error.message));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(202, { }));
});
}
function restoreApp(req, res, next) {
pass data argument to restore
2016-06-13 10:08:58 -07:00
assert.strictEqual(typeof req.body, 'object');
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
assert.strictEqual(typeof req.params.id, 'string');
pass data argument to restore
2016-06-13 10:08:58 -07:00
var data = req.body;
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
debug('Restore app id:%s', req.params.id);
restore from the backup's config.json To summarize what we are doing is that restore is simply getting old data and old code. Config is not changed. If config is required, then it has to come in the restore REST parameter. Otherwise, there is too much magic. https://blog.smartserver.io/2016/06/13/app-restore/
2016-06-13 13:44:49 -07:00
if (!('backupId' in req.body)) return next(new HttpError(400, 'backupId is required'));
if (data.backupId !== null && typeof data.backupId !== 'string') return next(new HttpError(400, 'backupId must be string or null'));
pass the lastBackupId explicity as the backup to restore to
2016-06-13 10:13:54 -07:00
pass data argument to restore
2016-06-13 10:08:58 -07:00
apps.restore(req.params.id, data, auditSource(req), function (error) {
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_FIELD) return next(new HttpError(400, error.message));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
parse the response
2016-06-13 18:11:11 -07:00
if (error && error.reason === AppsError.EXTERNAL_ERROR) return next(new HttpError(424, error.message));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(202, { }));
});
}
implement clone
2016-06-17 17:12:55 -05:00
function cloneApp(req, res, next) {
assert.strictEqual(typeof req.body, 'object');
assert.strictEqual(typeof req.params.id, 'string');
var data = req.body;
debug('Clone app id:%s', req.params.id);
if (typeof data.backupId !== 'string') return next(new HttpError(400, 'backupId must be a string'));
if (typeof data.location !== 'string') return next(new HttpError(400, 'location is required'));
Make appFqdn() multidomain aware
2017-11-02 22:17:44 +01:00
if (typeof data.domain !== 'string') return next(new HttpError(400, 'domain is required'));
implement clone
2016-06-17 17:12:55 -05:00
if (('portBindings' in data) && typeof data.portBindings !== 'object') return next(new HttpError(400, 'portBindings must be an object'));
apps.clone(req.params.id, data, auditSource(req), function (error, result) {
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_FIELD) return next(new HttpError(400, error.message));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
if (error && error.reason === AppsError.EXTERNAL_ERROR) return next(new HttpError(424, error.message));
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(201, { id: result.id }));
});
}
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
function backupApp(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
debug('Backup app id:%s', req.params.id);
apps.backup(req.params.id, function (error) {
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
if (error && error.reason === AppsError.EXTERNAL_ERROR) return next(new HttpError(503, error));
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(202, { }));
});
}
function uninstallApp(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
debug('Uninstalling app id:%s', req.params.id);
add event log in model code
2016-05-01 21:37:08 -07:00
apps.uninstall(req.params.id, auditSource(req), function (error) {
Better error handling of unpurchase errors
2017-02-08 18:39:29 -08:00
if (error && error.reason === AppsError.BILLING_REQUIRED) return next(new HttpError(402, 'Billing required'));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(202, { }));
});
}
function startApp(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
debug('Start app id:%s', req.params.id);
apps.start(req.params.id, function (error) {
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(202, { }));
});
}
function stopApp(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
debug('Stop app id:%s', req.params.id);
apps.stop(req.params.id, function (error) {
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(202, { }));
});
}
function updateApp(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
assert.strictEqual(typeof req.body, 'object');
var data = req.body;
update code path now takes appStoreId
2016-06-04 19:19:00 -07:00
// atleast one
if ('manifest' in data && typeof data.manifest !== 'object') return next(new HttpError(400, 'manifest must be an object'));
if ('appStoreId' in data && typeof data.appStoreId !== 'string') return next(new HttpError(400, 'appStoreId must be a string'));
if (!data.manifest && !data.appStoreId) return next(new HttpError(400, 'appStoreId or manifest is required'));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if ('icon' in data && typeof data.icon !== 'string') return next(new HttpError(400, 'icon is not a string'));
if ('force' in data && typeof data.force !== 'boolean') return next(new HttpError(400, 'force must be a boolean'));
Do not accept port bindings on update route
2017-10-23 22:06:28 +02:00
debug('Update app id:%s to manifest:%j', req.params.id, data.manifest);
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
pass data object to update
2016-06-04 19:06:16 -07:00
apps.update(req.params.id, req.body, auditSource(req), function (error) {
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_FIELD) return next(new HttpError(400, error.message));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(202, { }));
});
}
// this route is for streaming logs
function getLogStream(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
debug('Getting logstream of app id:%s', req.params.id);
Use journalctl to get app logs
2015-11-02 11:20:50 -08:00
var lines = req.query.lines ? parseInt(req.query.lines, 10) : -10; // we ignore last-event-id
if (isNaN(lines)) return next(new HttpError(400, 'lines must be a valid number'));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
function sse(id, data) { return 'id: ' + id + '\ndata: ' + data + '\n\n'; }
if (req.headers.accept !== 'text/event-stream') return next(new HttpError(400, 'This API call requires EventStream'));
Fix apps.getLogs usage
2017-04-19 21:43:29 -07:00
var options = {
lines: lines,
follow: true
};
apps.getLogs(req.params.id, options, function (error, logStream) {
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(412, error.message));
if (error) return next(new HttpError(500, error));
res.writeHead(200, {
'Content-Type': 'text/event-stream',
'Cache-Control': 'no-cache',
'Connection': 'keep-alive',
'X-Accel-Buffering': 'no', // disable nginx buffering
'Access-Control-Allow-Origin': '*'
});
res.write('retry: 3000\n');
res.on('close', logStream.close);
logStream.on('data', function (data) {
var obj = JSON.parse(data);
send monotonic timestamp as well
2015-11-02 14:26:15 -08:00
res.write(sse(obj.monotonicTimestamp, JSON.stringify(obj))); // send timestamp as id
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
});
logStream.on('end', res.end.bind(res));
logStream.on('error', res.end.bind(res, null));
});
}
function getLogs(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
Use journalctl to get app logs
2015-11-02 11:20:50 -08:00
var lines = req.query.lines ? parseInt(req.query.lines, 10) : 100;
if (isNaN(lines)) return next(new HttpError(400, 'lines must be a number'));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
debug('Getting logs of app id:%s', req.params.id);
Download short format logs from web ui Fixes #304
2017-04-18 20:32:57 -07:00
var options = {
lines: lines,
follow: false,
format: req.query.format
};
apps.getLogs(req.params.id, options, function (error, logStream) {
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(412, error.message));
if (error) return next(new HttpError(500, error));
res.writeHead(200, {
'Content-Type': 'application/x-logs',
'Content-Disposition': 'attachment; filename="log.txt"',
'Cache-Control': 'no-cache',
'X-Accel-Buffering': 'no' // disable nginx buffering
});
logStream.pipe(res);
});
}
Wrap the stdin stream to indicate EOF The docker exec protocol supports half-closing to signal that the stdin is finished. The CLI tool tried to do this by closing it's half of the socket when the stdin finished. Unfortunately, this does not work because nginx immediately terminates a half-close :/ Node itself has no problem. http://mailman.nginx.org/pipermail/nginx/2008-September/007388.html seems to support the hypothesis. Basically, for HTTP and websockets there is no notion of half-close. Websocket protocol itself has no half-close as well: http://www.lenholgate.com/blog/2011/07/websockets---i-miss-the-tcp-half-close.html http://doc.akka.io/docs/akka/2.4.5/scala/http/client-side/websocket-support.html The fix is to implement our own protocol that wrap stdin. We put a length header for every payload. When we hit EOF, the length is set to 0. The server sees this 0 length header and closes the exec container socket.
2016-05-22 21:07:05 -07:00
function demuxStream(stream, stdin) {
var header = null;
stream.on('readable', function() {
header = header || stream.read(4);
while (header !== null) {
var length = header.readUInt32BE(0);
if (length === 0) {
header = null;
return stdin.end(); // EOF
}
var payload = stream.read(length);
if (payload === null) break;
stdin.write(payload);
header = stream.read(4);
}
});
}
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
function exec(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
debug out cmd
2016-05-19 15:54:25 -07:00
debug('Execing into app id:%s and cmd:%s', req.params.id, req.query.cmd);
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
var cmd = null;
if (req.query.cmd) {
cmd = safe.JSON.parse(req.query.cmd);
fix boolean logic
2016-05-19 15:50:17 -07:00
if (!util.isArray(cmd) || cmd.length < 1) return next(new HttpError(400, 'cmd must be array with atleast size 1'));
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
}
var columns = req.query.columns ? parseInt(req.query.columns, 10) : null;
if (isNaN(columns)) return next(new HttpError(400, 'columns must be a number'));
var rows = req.query.rows ? parseInt(req.query.rows, 10) : null;
if (isNaN(rows)) return next(new HttpError(400, 'rows must be a number'));
add tty option to exec
2016-01-18 11:16:06 -08:00
var tty = req.query.tty === 'true' ? true : false;
Wrap the stdin stream to indicate EOF The docker exec protocol supports half-closing to signal that the stdin is finished. The CLI tool tried to do this by closing it's half of the socket when the stdin finished. Unfortunately, this does not work because nginx immediately terminates a half-close :/ Node itself has no problem. http://mailman.nginx.org/pipermail/nginx/2008-September/007388.html seems to support the hypothesis. Basically, for HTTP and websockets there is no notion of half-close. Websocket protocol itself has no half-close as well: http://www.lenholgate.com/blog/2011/07/websockets---i-miss-the-tcp-half-close.html http://doc.akka.io/docs/akka/2.4.5/scala/http/client-side/websocket-support.html The fix is to implement our own protocol that wrap stdin. We put a length header for every payload. When we hit EOF, the length is set to 0. The server sees this 0 length header and closes the exec container socket.
2016-05-22 21:07:05 -07:00
apps.exec(req.params.id, { cmd: cmd, rows: rows, columns: columns, tty: tty }, function (error, duplexStream) {
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
if (error) return next(new HttpError(500, error));
if (req.headers['upgrade'] !== 'tcp') return next(new HttpError(404, 'exec requires TCP upgrade'));
req.clearTimeout();
res.sendUpgradeHandshake();
Wrap the stdin stream to indicate EOF The docker exec protocol supports half-closing to signal that the stdin is finished. The CLI tool tried to do this by closing it's half of the socket when the stdin finished. Unfortunately, this does not work because nginx immediately terminates a half-close :/ Node itself has no problem. http://mailman.nginx.org/pipermail/nginx/2008-September/007388.html seems to support the hypothesis. Basically, for HTTP and websockets there is no notion of half-close. Websocket protocol itself has no half-close as well: http://www.lenholgate.com/blog/2011/07/websockets---i-miss-the-tcp-half-close.html http://doc.akka.io/docs/akka/2.4.5/scala/http/client-side/websocket-support.html The fix is to implement our own protocol that wrap stdin. We put a length header for every payload. When we hit EOF, the length is set to 0. The server sees this 0 length header and closes the exec container socket.
2016-05-22 21:07:05 -07:00
// When tty is disabled, the duplexStream has 2 separate streams. When enabled, it has stdout/stderr merged.
duplexStream.pipe(res.socket);
if (tty) {
res.socket.pipe(duplexStream); // in tty mode, the client always waits for server to exit
} else {
demuxStream(res.socket, duplexStream);
res.socket.on('error', function () { duplexStream.end(); });
res.socket.on('end', function () { duplexStream.end(); });
}
app.portBindings and newManifest.tcpPorts may be null
2015-07-20 00:09:47 -07:00
});
}
Add route to list application backups
2016-01-19 13:35:28 +01:00
Use ws directly to handle new exec ws route
2017-08-18 17:56:01 -07:00
function execWebSocket(req, res, next) {
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
assert.strictEqual(typeof req.params.id, 'string');
Reenable custom tcp upgrade handling
2017-08-17 11:56:51 +02:00
debug('Execing websocket into app id:%s and cmd:%s', req.params.id, req.query.cmd);
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
var cmd = null;
if (req.query.cmd) {
cmd = safe.JSON.parse(req.query.cmd);
Ensure app restarts also close the websocket
2017-08-17 09:29:15 +02:00
if (!util.isArray(cmd) || cmd.length < 1) return next(new HttpError(400, 'cmd must be array with atleast size 1'));
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
}
var columns = req.query.columns ? parseInt(req.query.columns, 10) : null;
Ensure app restarts also close the websocket
2017-08-17 09:29:15 +02:00
if (isNaN(columns)) return next(new HttpError(400, 'columns must be a number'));
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
var rows = req.query.rows ? parseInt(req.query.rows, 10) : null;
Ensure app restarts also close the websocket
2017-08-17 09:29:15 +02:00
if (isNaN(rows)) return next(new HttpError(400, 'rows must be a number'));
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
var tty = req.query.tty === 'true' ? true : false;
apps.exec(req.params.id, { cmd: cmd, rows: rows, columns: columns, tty: tty }, function (error, duplexStream) {
Ensure app restarts also close the websocket
2017-08-17 09:29:15 +02:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error && error.reason === AppsError.BAD_STATE) return next(new HttpError(409, error.message));
if (error) return next(new HttpError(500, error));
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
console.log('Connected to terminal');
Use ws directly to handle new exec ws route
2017-08-18 17:56:01 -07:00
req.clearTimeout();
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
Use ws directly to handle new exec ws route
2017-08-18 17:56:01 -07:00
res.handleUpgrade(function (ws) {
duplexStream.on('end', function () { ws.close(); });
duplexStream.on('close', function () { ws.close(); });
duplexStream.on('error', function (error) {
console.error('duplexStream error:', error);
});
duplexStream.on('data', function (data) {
if (ws.readyState !== WebSocket.OPEN) return;
ws.send(data.toString());
});
ws.on('error', function (error) {
console.error('websocket error:', error);
});
ws.on('message', function (msg) {
duplexStream.write(msg);
});
ws.on('close', function () {
// Clean things up, if any?
});
Integrate the terminal with the logs ui
2017-08-15 20:00:52 +02:00
});
});
}
Add route to list application backups
2016-01-19 13:35:28 +01:00
function listBackups(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
list app backups from db
2016-03-08 08:57:28 -08:00
var page = typeof req.query.page !== 'undefined' ? parseInt(req.query.page) : 1;
if (!page || page < 0) return next(new HttpError(400, 'page query param has to be a postive number'));
var perPage = typeof req.query.per_page !== 'undefined'? parseInt(req.query.per_page) : 25;
if (!perPage || perPage < 0) return next(new HttpError(400, 'per_page query param has to be a postive number'));
apps.listBackups(page, perPage, req.params.id, function (error, result) {
Add route to list application backups
2016-01-19 13:35:28 +01:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, 'No such app'));
if (error) return next(new HttpError(500, error));
next(new HttpSuccess(200, { backups: result }));
});
}
Add upload and download for the webterminal
2017-08-18 20:45:52 -07:00
function uploadFile(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
file is an object
2017-08-21 21:22:45 -07:00
debug('uploadFile: %s %j -> %s', req.params.id, req.files, req.query.file);
Add upload and download for the webterminal
2017-08-18 20:45:52 -07:00
if (typeof req.query.file !== 'string' || !req.query.file) return next(new HttpError(400, 'file query argument must be provided'));
if (!req.files.file) return next(new HttpError(400, 'file must be provided as multipart'));
apps.uploadFile(req.params.id, req.files.file.path, req.query.file, function (error) {
handle app not found
2017-08-23 13:23:04 -07:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, error.message));
Add upload and download for the webterminal
2017-08-18 20:45:52 -07:00
if (error) return next(new HttpError(500, error));
debug('uploadFile: done');
next(new HttpSuccess(202, {}));
});
}
function downloadFile(req, res, next) {
assert.strictEqual(typeof req.params.id, 'string');
debug('downloadFile: ', req.params.id, req.query.file);
if (typeof req.query.file !== 'string' || !req.query.file) return next(new HttpError(400, 'file query argument must be provided'));
Allow dirs to downloaded as tarballs
2017-08-20 18:44:26 -07:00
apps.downloadFile(req.params.id, req.query.file, function (error, stream, info) {
Deliver content-length and file not found errors for file downloads
2017-08-19 10:48:12 +02:00
if (error && error.reason === AppsError.NOT_FOUND) return next(new HttpError(404, error.message));
Add upload and download for the webterminal
2017-08-18 20:45:52 -07:00
if (error) return next(new HttpError(500, error));
Allow dirs to downloaded as tarballs
2017-08-20 18:44:26 -07:00
var headers = {
Add upload and download for the webterminal
2017-08-18 20:45:52 -07:00
'Content-Type': 'application/octet-stream',
Allow dirs to downloaded as tarballs
2017-08-20 18:44:26 -07:00
'Content-Disposition': 'attachment; filename="' + info.filename + '"'
};
if (info.size) headers['Content-Length'] = info.size;
res.writeHead(200, headers);
Add upload and download for the webterminal
2017-08-18 20:45:52 -07:00
Allow dirs to downloaded as tarballs
2017-08-20 18:44:26 -07:00
stream.pipe(res);
Add upload and download for the webterminal
2017-08-18 20:45:52 -07:00
});
}
Reference in New Issue Copy Permalink