src/routes/settings.js

'use strict';

exports = module.exports = {
    getAutoupdatePattern: getAutoupdatePattern,
    setAutoupdatePattern: setAutoupdatePattern,

    getCloudronName: getCloudronName,
    setCloudronName: setCloudronName,

    getCloudronAvatar: getCloudronAvatar,
    setCloudronAvatar: setCloudronAvatar,

    getEmailStatus: getEmailStatus,

    getDnsConfig: getDnsConfig,
    setDnsConfig: setDnsConfig,

    getBackupConfig: getBackupConfig,
    setBackupConfig: setBackupConfig,

    getTimeZone: getTimeZone,
    setTimeZone: setTimeZone,

    getMailConfig: getMailConfig,
    setMailConfig: setMailConfig,

    getAppstoreConfig: getAppstoreConfig,
    setAppstoreConfig: setAppstoreConfig,

    setFallbackCertificate: setFallbackCertificate,
    setAdminCertificate: setAdminCertificate
};

var assert = require('assert'),
    certificates = require('../certificates.js'),
    CertificatesError = require('../certificates.js').CertificatesError,
    config = require('../config.js'),
    HttpError = require('connect-lastmile').HttpError,
    HttpSuccess = require('connect-lastmile').HttpSuccess,
    safe = require('safetydance'),
    settings = require('../settings.js'),
    SettingsError = settings.SettingsError;

function getAutoupdatePattern(req, res, next) {
    settings.getAutoupdatePattern(function (error, pattern) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200, { pattern: pattern }));
    });
}

function setAutoupdatePattern(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (typeof req.body.pattern !== 'string') return next(new HttpError(400, 'pattern is required'));

    settings.setAutoupdatePattern(req.body.pattern, function (error) {
        if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200));
    });
}

function setCloudronName(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (typeof req.body.name !== 'string') return next(new HttpError(400, 'name is required'));

    settings.setCloudronName(req.body.name, function (error) {
        if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(202));
    });
}

function getCloudronName(req, res, next) {
    settings.getCloudronName(function (error, name) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200, { name: name }));
    });
}

function getTimeZone(req, res, next) {
    settings.getTimeZone(function (error, tz) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200, { timeZone: tz }));
    });
}

function setTimeZone(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (typeof req.body.timeZone !== 'string') return next(new HttpError(400, 'timeZone is required'));

    settings.setTimeZone(req.body.timeZone, function (error) {
        if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200));
    });
}

function getMailConfig(req, res, next) {
    settings.getMailConfig(function (error, mail) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200, mail));
    });
}

function setMailConfig(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (typeof req.body.enabled !== 'boolean') return next(new HttpError(400, 'enabled is required'));

    settings.setMailConfig({ enabled: req.body.enabled }, function (error) {
        if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200));
    });
}

function setCloudronAvatar(req, res, next) {
    assert.strictEqual(typeof req.files, 'object');

    if (!req.files.avatar) return next(new HttpError(400, 'avatar must be provided'));
    var avatar = safe.fs.readFileSync(req.files.avatar.path);

    settings.setCloudronAvatar(avatar, function (error) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(202, {}));
    });
}

function getCloudronAvatar(req, res, next) {
    settings.getCloudronAvatar(function (error, avatar) {
        if (error) return next(new HttpError(500, error));

        // avoid caching the avatar on the client to see avatar changes immediately
        res.set('Cache-Control', 'no-cache');

        res.set('Content-Type', 'image/png');
        res.status(200).send(avatar);
    });
}

function getEmailStatus(req, res, next) {
    settings.getEmailStatus(function (error, records) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200, records));
    });
}

function getDnsConfig(req, res, next) {
    settings.getDnsConfig(function (error, config) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200, config));
    });
}

function setDnsConfig(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (typeof req.body.provider !== 'string') return next(new HttpError(400, 'provider is required'));

    settings.setDnsConfig(req.body, config.fqdn(), function (error) {
        if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200));
    });
}

function getBackupConfig(req, res, next) {
    settings.getBackupConfig(function (error, config) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200, config));
    });
}

function setBackupConfig(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (typeof req.body.provider !== 'string') return next(new HttpError(400, 'provider is required'));
    if ('key' in req.body && typeof req.body.key !== 'string') return next(new HttpError(400, 'key must be a string'));

    settings.setBackupConfig(req.body, function (error) {
        if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));
        if (error && error.reason === SettingsError.EXTERNAL_ERROR) return next(new HttpError(402, error.message));
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200));
    });
}

function getAppstoreConfig(req, res, next) {
    settings.getAppstoreConfig(function (error, result) {
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(200, result));
    });
}

function setAppstoreConfig(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (typeof req.body.userId !== 'string') return next(new HttpError(400, 'userId is required'));
    if (typeof req.body.token !== 'string') return next(new HttpError(400, 'token is required'));

    var options = {
        userId: req.body.userId,
        token: req.body.token
    };

    settings.setAppstoreConfig(options, function (error) {
        if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));
        if (error && error.reason === SettingsError.EXTERNAL_ERROR) return next(new HttpError(406, error.message));
        if (error) return next(new HttpError(500, error));

        settings.getAppstoreConfig(function (error, result) {
            if (error) return next(new HttpError(500, error));

            next(new HttpSuccess(202, result));
        });
    });
}

// default fallback cert
function setFallbackCertificate(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (!req.body.cert || typeof req.body.cert !== 'string') return next(new HttpError(400, 'cert must be a string'));
    if (!req.body.key || typeof req.body.key !== 'string') return next(new HttpError(400, 'key must be a string'));

    certificates.setFallbackCertificate(req.body.cert, req.body.key, function (error) {
        if (error && error.reason === CertificatesError.INVALID_CERT) return next(new HttpError(400, error.message));
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(202, {}));
    });
}

// only webadmin cert, until it can be treated just like a normal app
function setAdminCertificate(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (!req.body.cert || typeof req.body.cert !== 'string') return next(new HttpError(400, 'cert must be a string'));
    if (!req.body.key || typeof req.body.key !== 'string') return next(new HttpError(400, 'key must be a string'));

    certificates.setAdminCertificate(req.body.cert, req.body.key, function (error) {
        if (error && error.reason === CertificatesError.INVALID_CERT) return next(new HttpError(400, error.message));
        if (error) return next(new HttpError(500, error));

        next(new HttpSuccess(202, {}));
    });
}
app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`'use strict';`

			`exports = module.exports = {`
			`getAutoupdatePattern: getAutoupdatePattern,`
			`setAutoupdatePattern: setAutoupdatePattern,`

			`getCloudronName: getCloudronName,`
			`setCloudronName: setCloudronName,`

			`getCloudronAvatar: getCloudronAvatar,`
add route for setting/getting dns settings 2015-10-26 00:59:20 -07:00			`setCloudronAvatar: setCloudronAvatar,`

Check outbound port 25 Fixes #243 2017-03-09 15:43:13 -08:00			`getEmailStatus: getEmailStatus,`
Check dns records for generic dns providers 2016-12-09 09:19:23 +01:00
add route for setting/getting dns settings 2015-10-26 00:59:20 -07:00			`getDnsConfig: getDnsConfig,`
Move cert upload route to /settings 2015-10-27 18:38:13 +01:00			`setDnsConfig: setDnsConfig,`

make migrate test work 2015-11-09 20:34:25 -08:00			`getBackupConfig: getBackupConfig,`
			`setBackupConfig: setBackupConfig,`

add route to get the timezone 2016-05-03 12:10:16 -07:00			`getTimeZone: getTimeZone,`
add time_zone setter route 2016-06-02 13:36:47 -07:00			`setTimeZone: setTimeZone,`
add route to get the timezone 2016-05-03 12:10:16 -07:00
add route to enable/disable mail mail is disabled by default Part of #16 2016-08-30 19:09:13 -07:00			`getMailConfig: getMailConfig,`
			`setMailConfig: setMailConfig,`

Fix typo 2016-07-26 15:32:36 +02:00			`getAppstoreConfig: getAppstoreConfig,`
			`setAppstoreConfig: setAppstoreConfig,`
Add settings/appstore routes 2016-07-26 14:42:40 +02:00
rename func 2017-01-17 09:51:04 -08:00			`setFallbackCertificate: setFallbackCertificate,`
Add route to set the admin certificate This route is separate until we can treat the webadmin just like any other app 2015-10-29 12:27:54 +01:00			`setAdminCertificate: setAdminCertificate`
app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`};`

			`var assert = require('assert'),`
refactor certificate settings 2015-12-11 13:52:21 -08:00			`certificates = require('../certificates.js'),`
			`CertificatesError = require('../certificates.js').CertificatesError,`
Fix crash 2017-01-10 18:39:40 -08:00			`config = require('../config.js'),`
app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`HttpError = require('connect-lastmile').HttpError,`
			`HttpSuccess = require('connect-lastmile').HttpSuccess,`
			`safe = require('safetydance'),`
			`settings = require('../settings.js'),`
			`SettingsError = settings.SettingsError;`

			`function getAutoupdatePattern(req, res, next) {`
			`settings.getAutoupdatePattern(function (error, pattern) {`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200, { pattern: pattern }));`
			`});`
			`}`

			`function setAutoupdatePattern(req, res, next) {`
			`assert.strictEqual(typeof req.body, 'object');`

			`if (typeof req.body.pattern !== 'string') return next(new HttpError(400, 'pattern is required'));`

			`settings.setAutoupdatePattern(req.body.pattern, function (error) {`
use error.message 2016-06-02 13:00:23 -07:00			`if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));`
app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200));`
			`});`
			`}`

			`function setCloudronName(req, res, next) {`
			`assert.strictEqual(typeof req.body, 'object');`

			`if (typeof req.body.name !== 'string') return next(new HttpError(400, 'name is required'));`

			`settings.setCloudronName(req.body.name, function (error) {`
use error.message 2016-06-02 13:00:23 -07:00			`if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));`
app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`if (error) return next(new HttpError(500, error));`
use error.message 2016-06-02 13:00:23 -07:00
Return 202 when setting the cloudron name 2016-07-28 12:40:36 +02:00			`next(new HttpSuccess(202));`
app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`});`
			`}`

			`function getCloudronName(req, res, next) {`
			`settings.getCloudronName(function (error, name) {`
			`if (error) return next(new HttpError(500, error));`
use error.message 2016-06-02 13:00:23 -07:00
app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`next(new HttpSuccess(200, { name: name }));`
			`});`
			`}`

add route to get the timezone 2016-05-03 12:10:16 -07:00			`function getTimeZone(req, res, next) {`
			`settings.getTimeZone(function (error, tz) {`
			`if (error) return next(new HttpError(500, error));`
use error.message 2016-06-02 13:00:23 -07:00
add route to get the timezone 2016-05-03 12:10:16 -07:00			`next(new HttpSuccess(200, { timeZone: tz }));`
			`});`
			`}`

add time_zone setter route 2016-06-02 13:36:47 -07:00			`function setTimeZone(req, res, next) {`
			`assert.strictEqual(typeof req.body, 'object');`

			`if (typeof req.body.timeZone !== 'string') return next(new HttpError(400, 'timeZone is required'));`

			`settings.setTimeZone(req.body.timeZone, function (error) {`
			`if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200));`
			`});`
			`}`

add route to enable/disable mail mail is disabled by default Part of #16 2016-08-30 19:09:13 -07:00			`function getMailConfig(req, res, next) {`
			`settings.getMailConfig(function (error, mail) {`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200, mail));`
			`});`
			`}`

			`function setMailConfig(req, res, next) {`
			`assert.strictEqual(typeof req.body, 'object');`

			`if (typeof req.body.enabled !== 'boolean') return next(new HttpError(400, 'enabled is required'));`

			`settings.setMailConfig({ enabled: req.body.enabled }, function (error) {`
			`if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200));`
			`});`
			`}`

app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`function setCloudronAvatar(req, res, next) {`
			`assert.strictEqual(typeof req.files, 'object');`

			`if (!req.files.avatar) return next(new HttpError(400, 'avatar must be provided'));`
			`var avatar = safe.fs.readFileSync(req.files.avatar.path);`

			`settings.setCloudronAvatar(avatar, function (error) {`
			`if (error) return next(new HttpError(500, error));`
use error.message 2016-06-02 13:00:23 -07:00
app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`next(new HttpSuccess(202, {}));`
			`});`
			`}`

			`function getCloudronAvatar(req, res, next) {`
			`settings.getCloudronAvatar(function (error, avatar) {`
			`if (error) return next(new HttpError(500, error));`

Set no-cache for the avatar 2015-07-23 14:44:05 +02:00			`// avoid caching the avatar on the client to see avatar changes immediately`
			`res.set('Cache-Control', 'no-cache');`

app.portBindings and newManifest.tcpPorts may be null 2015-07-20 00:09:47 -07:00			`res.set('Content-Type', 'image/png');`
			`res.status(200).send(avatar);`
			`});`
			`}`
add route for setting/getting dns settings 2015-10-26 00:59:20 -07:00
Check outbound port 25 Fixes #243 2017-03-09 15:43:13 -08:00			`function getEmailStatus(req, res, next) {`
			`settings.getEmailStatus(function (error, records) {`
Check dns records for generic dns providers 2016-12-09 09:19:23 +01:00			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200, records));`
			`});`
			`}`

add route for setting/getting dns settings 2015-10-26 00:59:20 -07:00			`function getDnsConfig(req, res, next) {`
			`settings.getDnsConfig(function (error, config) {`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200, config));`
			`});`
			`}`

			`function setDnsConfig(req, res, next) {`
			`assert.strictEqual(typeof req.body, 'object');`

dnsConfig provider can be caas 2015-10-29 12:25:04 -07:00			`if (typeof req.body.provider !== 'string') return next(new HttpError(400, 'provider is required'));`
add route for setting/getting dns settings 2015-10-26 00:59:20 -07:00
Fix crash 2017-01-10 18:39:40 -08:00			`settings.setDnsConfig(req.body, config.fqdn(), function (error) {`
add route for setting/getting dns settings 2015-10-26 00:59:20 -07:00			`if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200));`
			`});`
			`}`
Move cert upload route to /settings 2015-10-27 18:38:13 +01:00
make migrate test work 2015-11-09 20:34:25 -08:00			`function getBackupConfig(req, res, next) {`
			`settings.getBackupConfig(function (error, config) {`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200, config));`
			`});`
			`}`

			`function setBackupConfig(req, res, next) {`
			`assert.strictEqual(typeof req.body, 'object');`

			`if (typeof req.body.provider !== 'string') return next(new HttpError(400, 'provider is required'));`
settings api: key if present must be a string 2016-10-13 15:32:18 -07:00			`if ('key' in req.body && typeof req.body.key !== 'string') return next(new HttpError(400, 'key must be a string'));`
make migrate test work 2015-11-09 20:34:25 -08:00
			`settings.setBackupConfig(req.body, function (error) {`
			`if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));`
Report with a distinguished status code if upstream validation failed 2016-10-11 11:49:30 +02:00			`if (error && error.reason === SettingsError.EXTERNAL_ERROR) return next(new HttpError(402, error.message));`
make migrate test work 2015-11-09 20:34:25 -08:00			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200));`
			`});`
			`}`

Fix typo 2016-07-26 15:32:36 +02:00			`function getAppstoreConfig(req, res, next) {`
			`settings.getAppstoreConfig(function (error, result) {`
Add settings/appstore routes 2016-07-26 14:42:40 +02:00			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200, result));`
			`});`
			`}`

Fix typo 2016-07-26 15:32:36 +02:00			`function setAppstoreConfig(req, res, next) {`
Add settings/appstore routes 2016-07-26 14:42:40 +02:00			`assert.strictEqual(typeof req.body, 'object');`

			`if (typeof req.body.userId !== 'string') return next(new HttpError(400, 'userId is required'));`
			`if (typeof req.body.token !== 'string') return next(new HttpError(400, 'token is required'));`

			`var options = {`
			`userId: req.body.userId,`
			`token: req.body.token`
			`};`

Fix typo 2016-07-26 15:32:36 +02:00			`settings.setAppstoreConfig(options, function (error) {`
Add settings/appstore routes 2016-07-26 14:42:40 +02:00			`if (error && error.reason === SettingsError.BAD_FIELD) return next(new HttpError(400, error.message));`
Setting the appstore config also deals with appstore registration - First time it registers the cloudron - Resetting the account will verify that the Cloudron belongs to this user - If cloudronId is invalid/unknown we reregister 2016-08-01 15:10:45 +02:00			`if (error && error.reason === SettingsError.EXTERNAL_ERROR) return next(new HttpError(406, error.message));`
Add settings/appstore routes 2016-07-26 14:42:40 +02:00			`if (error) return next(new HttpError(500, error));`

Setting the appstore config also deals with appstore registration - First time it registers the cloudron - Resetting the account will verify that the Cloudron belongs to this user - If cloudronId is invalid/unknown we reregister 2016-08-01 15:10:45 +02:00			`settings.getAppstoreConfig(function (error, result) {`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(202, result));`
			`});`
Add settings/appstore routes 2016-07-26 14:42:40 +02:00			`});`
			`}`

Add route to set the admin certificate This route is separate until we can treat the webadmin just like any other app 2015-10-29 12:27:54 +01:00			`// default fallback cert`
rename func 2017-01-17 09:51:04 -08:00			`function setFallbackCertificate(req, res, next) {`
Make settings certificate upload route also just using the json body 2015-10-28 12:12:06 +01:00			`assert.strictEqual(typeof req.body, 'object');`
Move cert upload route to /settings 2015-10-27 18:38:13 +01:00
Make settings certificate upload route also just using the json body 2015-10-28 12:12:06 +01:00			`if (!req.body.cert \|\| typeof req.body.cert !== 'string') return next(new HttpError(400, 'cert must be a string'));`
			`if (!req.body.key \|\| typeof req.body.key !== 'string') return next(new HttpError(400, 'key must be a string'));`
Move cert upload route to /settings 2015-10-27 18:38:13 +01:00
rename app.setAppCertificate 2015-12-11 14:13:24 -08:00			`certificates.setFallbackCertificate(req.body.cert, req.body.key, function (error) {`
refactor certificate settings 2015-12-11 13:52:21 -08:00			`if (error && error.reason === CertificatesError.INVALID_CERT) return next(new HttpError(400, error.message));`
Add route to set the admin certificate This route is separate until we can treat the webadmin just like any other app 2015-10-29 12:27:54 +01:00			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(202, {}));`
			`});`
			`}`

			`// only webadmin cert, until it can be treated just like a normal app`
			`function setAdminCertificate(req, res, next) {`
			`assert.strictEqual(typeof req.body, 'object');`

			`if (!req.body.cert \|\| typeof req.body.cert !== 'string') return next(new HttpError(400, 'cert must be a string'));`
			`if (!req.body.key \|\| typeof req.body.key !== 'string') return next(new HttpError(400, 'key must be a string'));`

refactor certificate settings 2015-12-11 13:52:21 -08:00			`certificates.setAdminCertificate(req.body.cert, req.body.key, function (error) {`
			`if (error && error.reason === CertificatesError.INVALID_CERT) return next(new HttpError(400, error.message));`
Move cert upload route to /settings 2015-10-27 18:38:13 +01:00			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(202, {}));`
			`});`
			`}`