src/routes/provision.js

'use strict';

exports = module.exports = {
    providerTokenAuth,
    verifyUnprovisioned,
    setup,
    activate,
    restore,
    getStatus,
    setupTokenAuth,
    getBlockDevices,
    detectIP
};

const assert = require('assert'),
    AuditSource = require('../auditsource.js'),
    BoxError = require('../boxerror.js'),
    HttpError = require('connect-lastmile').HttpError,
    HttpSuccess = require('connect-lastmile').HttpSuccess,
    network = require('../network.js'),
    paths = require('../paths.js'),
    provision = require('../provision.js'),
    safe = require('safetydance'),
    superagent = require('../superagent.js'),
    system = require('../system.js'),
    users = require('../users.js');

function setupTokenAuth(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    const setupToken = safe.fs.readFileSync(paths.SETUP_TOKEN_FILE, 'utf8');
    if (!setupToken) return next();

    if (!req.body.setupToken) return next(new HttpError(400, 'setup token required'));
    if (setupToken.trim() !== req.body.setupToken) return next(new HttpError(422, 'setup token does not match'));

    return next();
}

async function verifyUnprovisioned(req, res, next) {
    const activated = await users.isActivated();
    if (activated) return next(new HttpError(405, 'route unavailable post activation'));

    next();
}

async function providerTokenAuth(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (system.getProvider() === 'ami') {
        if (typeof req.body.providerToken !== 'string' || !req.body.providerToken) return next(new HttpError(400, 'providerToken must be a non empty string'));


        // IMDSv2 https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-options.html
        // https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/
        const imdsIp = req.body.ipv4Config?.provider === 'noop' ? '[fd00:ec2::254]' : '169.254.169.254'; // use ipv4config carefully, it's not validated yet at this point
        const [tokenError, tokenResponse] = await safe(superagent.put(`http://${imdsIp}/latest/api/token`).set('x-aws-ec2-metadata-token-ttl-seconds', 600).timeout(30 * 1000).ok(() => true));
        if (tokenError) return next(new HttpError(422, `Network error getting EC2 metadata session token: ${tokenError.message}`));
        if (tokenResponse.status !== 200) return next(new HttpError(422, `Unable to get EC2 meta data session token. status: ${tokenResponse.status}`));
        const imdsToken = tokenResponse.text;

        const [error, response] = await safe(superagent.get(`http://${imdsIp}/latest/meta-data/instance-id`).set('x-aws-ec2-metadata-token', imdsToken).timeout(30 * 1000).ok(() => true));
        if (error) return next(new HttpError(422, `Network error getting EC2 metadata: ${error.message}`));
        if (response.status !== 200) return next(new HttpError(422, `Unable to get EC2 meta data. status: ${response.status}`));
        if (response.text !== req.body.providerToken) return next(new HttpError(422, 'Instance ID does not match'));

        next();
    } else {
        next();
    }
}

async function setup(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (!req.body.domainConfig || typeof req.body.domainConfig !== 'object') return next(new HttpError(400, 'domainConfig is required'));

    const domainConfig = req.body.domainConfig;

    if (typeof domainConfig.provider !== 'string' || !domainConfig.provider) return next(new HttpError(400, 'provider is required'));
    if (typeof domainConfig.domain !== 'string' || !domainConfig.domain) return next(new HttpError(400, 'domain is required'));

    if ('zoneName' in domainConfig && typeof domainConfig.zoneName !== 'string') return next(new HttpError(400, 'zoneName must be a string'));
    if (!domainConfig.config || typeof domainConfig.config !== 'object') return next(new HttpError(400, 'config must be an object'));

    if ('tlsConfig' in domainConfig && typeof domainConfig.tlsConfig !== 'object') return next(new HttpError(400, 'tlsConfig must be an object'));
    if (domainConfig.tlsConfig && (!domainConfig.tlsConfig.provider || typeof domainConfig.tlsConfig.provider !== 'string')) return next(new HttpError(400, 'tlsConfig.provider must be a string'));

    if ('ipv4Config' in req.body && typeof req.body.ipv4Config !== 'object') return next(new HttpError(400, 'ipv4Config must be an object'));
    if ('ipv6Config' in req.body && typeof req.body.ipv6Config !== 'object') return next(new HttpError(400, 'ipv6Config must be an object'));

    // it can take sometime to setup DNS, register cloudron
    req.clearTimeout();

    const [error] = await safe(provision.setup(domainConfig, req.body.ipv4Config || { provider: 'generic' }, req.body.ipv6Config || { provider: 'generic' }, AuditSource.fromRequest(req)));
    if (error) return next(BoxError.toHttpError(error));

    next(new HttpSuccess(200, {}));
}

async function activate(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (typeof req.body.username !== 'string') return next(new HttpError(400, 'username must be string'));
    if (typeof req.body.password !== 'string') return next(new HttpError(400, 'password must be string'));
    if (typeof req.body.email !== 'string') return next(new HttpError(400, 'email must be string'));
    if ('displayName' in req.body && typeof req.body.displayName !== 'string') return next(new HttpError(400, 'displayName must be string'));

    const { username, password, email } = req.body;
    const displayName = req.body.displayName || '';

    const ip = req.headers['x-forwarded-for'] || req.socket.remoteAddress;

    const [error, info] = await safe(provision.activate(username, password, email, displayName, ip, AuditSource.fromRequest(req)));
    if (error) return next(BoxError.toHttpError(error));

    next(new HttpSuccess(201, info));
}

async function restore(req, res, next) {
    assert.strictEqual(typeof req.body, 'object');

    if (!req.body.backupConfig || typeof req.body.backupConfig !== 'object') return next(new HttpError(400, 'backupConfig is required'));

    const backupConfig = req.body.backupConfig;
    if (typeof backupConfig.provider !== 'string') return next(new HttpError(400, 'provider is required'));
    if (typeof backupConfig.format !== 'string') return next(new HttpError(400, 'format must be a string'));

    if ('password' in backupConfig && typeof backupConfig.password !== 'string') return next(new HttpError(400, 'password must be a string'));
    if ('encryptedFilenames' in req.body && typeof req.body.encryptedFilenames !== 'boolean') return next(new HttpError(400, 'encryptedFilenames must be a boolean'));

    if (typeof req.body.remotePath !== 'string') return next(new HttpError(400, 'remotePath must be a string'));
    if (typeof req.body.version !== 'string') return next(new HttpError(400, 'version must be a string'));

    if ('ipv4Config' in req.body && typeof req.body.ipv4Config !== 'object') return next(new HttpError(400, 'ipv4Config must be an object'));
    if ('ipv6Config' in req.body && typeof req.body.ipv6Config !== 'object') return next(new HttpError(400, 'ipv6Config must be an object'));

    if ('skipDnsSetup' in req.body && typeof req.body.skipDnsSetup !== 'boolean') return next(new HttpError(400, 'skipDnsSetup must be a boolean'));

    const options = {
        skipDnsSetup: req.body.skipDnsSetup || false
    };

    const [error] = await safe(provision.restore(backupConfig, req.body.remotePath, req.body.version, req.body.ipv4Config || { provider: 'generic' }, req.body.ipv6Config || { provider: 'generic' }, options, AuditSource.fromRequest(req)));
    if (error) return next(BoxError.toHttpError(error));

    next(new HttpSuccess(200, {}));
}

async function getStatus(req, res, next) {
    const [error, status] = await safe(provision.getStatus());
    if (error) return next(BoxError.toHttpError(error));

    next(new HttpSuccess(200, status));
}

async function getBlockDevices(req, res, next) {
    const [error, devices] = await safe(system.getBlockDevices());
    if (error) return next(new HttpError(500, error));

    next(new HttpSuccess(200, { devices }));
}

async function detectIP(req, res, next) {
    const result = await network.detectIP();
    next(new HttpSuccess(200, { ipv4: result.ipv4, ipv6: result.ipv6 }));
}
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`'use strict';`

			`exports = module.exports = {`
secure the provision and activation routes with a token fixes #751 2020-12-21 22:36:10 -08:00			`providerTokenAuth,`
provision: add activation guard 2024-04-26 20:06:53 +02:00			`verifyUnprovisioned,`
secure the provision and activation routes with a token fixes #751 2020-12-21 22:36:10 -08:00			`setup,`
			`activate,`
			`restore,`
			`getStatus,`
Add block device selector in restore view 2023-08-08 21:00:13 +02:00			`setupTokenAuth,`
separate the provision status and cloudron status 2023-08-10 18:45:27 +05:30			`getBlockDevices,`
provision: add route to detect ipv4 and ipv6 2024-04-26 20:36:23 +02:00			`detectIP`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`};`

merge maildb.js into mail.js 2021-06-29 14:26:34 -07:00			`const assert = require('assert'),`
make auditsource a class this allows us to use AuditSource for the class and auditSource for the instances! 2021-09-30 09:50:30 -07:00			`AuditSource = require('../auditsource.js'),`
Move ProvisionError to BoxError 2019-10-23 15:45:09 -07:00			`BoxError = require('../boxerror.js'),`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`HttpError = require('connect-lastmile').HttpError,`
			`HttpSuccess = require('connect-lastmile').HttpSuccess,`
provision: add route to detect ipv4 and ipv6 2024-04-26 20:36:23 +02:00			`network = require('../network.js'),`
secure the provision and activation routes with a token fixes #751 2020-12-21 22:36:10 -08:00			`paths = require('../paths.js'),`
setup -> provision 2018-12-11 15:29:47 -08:00			`provision = require('../provision.js'),`
secure the provision and activation routes with a token fixes #751 2020-12-21 22:36:10 -08:00			`safe = require('safetydance'),`
replace with custom superagent based on fetch API 2025-02-14 17:26:54 +01:00			`superagent = require('../superagent.js'),`
Add block device selector in restore view 2023-08-08 21:00:13 +02:00			`system = require('../system.js'),`
			`users = require('../users.js');`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
secure the provision and activation routes with a token fixes #751 2020-12-21 22:36:10 -08:00			`function setupTokenAuth(req, res, next) {`
			`assert.strictEqual(typeof req.body, 'object');`

			`const setupToken = safe.fs.readFileSync(paths.SETUP_TOKEN_FILE, 'utf8');`
			`if (!setupToken) return next();`

			`if (!req.body.setupToken) return next(new HttpError(400, 'setup token required'));`
			`if (setupToken.trim() !== req.body.setupToken) return next(new HttpError(422, 'setup token does not match'));`

			`return next();`
			`}`

provision: add activation guard 2024-04-26 20:06:53 +02:00			`async function verifyUnprovisioned(req, res, next) {`
			`const activated = await users.isActivated();`
			`if (activated) return next(new HttpError(405, 'route unavailable post activation'));`

			`next();`
			`}`

docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00			`async function providerTokenAuth(req, res, next) {`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`assert.strictEqual(typeof req.body, 'object');`

separate the provision status and cloudron status 2023-08-10 18:45:27 +05:30			`if (system.getProvider() === 'ami') {`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`if (typeof req.body.providerToken !== 'string' \|\| !req.body.providerToken) return next(new HttpError(400, 'providerToken must be a non empty string'));`

ami: imdsv2 support https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/ One has to get a token now via PUT. This is because there is a bunch of open proxies out there which blindly forwarded everything to internal network including metadata requests. They have found that PUT requests don't cleanly proxy and also AWS rejects token requests with X-Forwarded-For. 2024-07-26 18:59:32 +02:00
			`// IMDSv2 https://docs.aws.amazon.com/AWSEC2/latest/UserGuide/configuring-instance-metadata-options.html`
			`// https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/`
			`const imdsIp = req.body.ipv4Config?.provider === 'noop' ? '[fd00:ec2::254]' : '169.254.169.254'; // use ipv4config carefully, it's not validated yet at this point`
			const [tokenError, tokenResponse] = await safe(superagent.put(`http://${imdsIp}/latest/api/token`).set('x-aws-ec2-metadata-token-ttl-seconds', 600).timeout(30 * 1000).ok(() => true));
			if (tokenError) return next(new HttpError(422, `Network error getting EC2 metadata session token: ${tokenError.message}`));
replace with custom superagent based on fetch API 2025-02-14 17:26:54 +01:00			if (tokenResponse.status !== 200) return next(new HttpError(422, `Unable to get EC2 meta data session token. status: ${tokenResponse.status}`));
ami: imdsv2 support https://aws.amazon.com/blogs/security/defense-in-depth-open-firewalls-reverse-proxies-ssrf-vulnerabilities-ec2-instance-metadata-service/ One has to get a token now via PUT. This is because there is a bunch of open proxies out there which blindly forwarded everything to internal network including metadata requests. They have found that PUT requests don't cleanly proxy and also AWS rejects token requests with X-Forwarded-For. 2024-07-26 18:59:32 +02:00			`const imdsToken = tokenResponse.text;`

			const [error, response] = await safe(superagent.get(`http://${imdsIp}/latest/meta-data/instance-id`).set('x-aws-ec2-metadata-token', imdsToken).timeout(30 * 1000).ok(() => true));
docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00			if (error) return next(new HttpError(422, `Network error getting EC2 metadata: ${error.message}`));
replace with custom superagent based on fetch API 2025-02-14 17:26:54 +01:00			if (response.status !== 200) return next(new HttpError(422, `Unable to get EC2 meta data. status: ${response.status}`));
ami: fix instance id check 2021-11-17 19:05:26 -08:00			`if (response.text !== req.body.providerToken) return next(new HttpError(422, 'Instance ID does not match'));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
docker.js and services.js: async'ify 2021-08-25 19:41:46 -07:00			`next();`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`} else {`
			`next();`
			`}`
			`}`

sysinfo: async'ify in the process, provision, dyndns, mail, dns also got further asyncified 2021-08-27 09:52:24 -07:00			`async function setup(req, res, next) {`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`assert.strictEqual(typeof req.body, 'object');`

dnsConfig -> domainConfig this prepares for the incoming settings.getDnsConfig() 2022-01-05 22:41:41 -08:00			`if (!req.body.domainConfig \|\| typeof req.body.domainConfig !== 'object') return next(new HttpError(400, 'domainConfig is required'));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
dnsConfig -> domainConfig this prepares for the incoming settings.getDnsConfig() 2022-01-05 22:41:41 -08:00			`const domainConfig = req.body.domainConfig;`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
dnsConfig -> domainConfig this prepares for the incoming settings.getDnsConfig() 2022-01-05 22:41:41 -08:00			`if (typeof domainConfig.provider !== 'string' \|\| !domainConfig.provider) return next(new HttpError(400, 'provider is required'));`
			`if (typeof domainConfig.domain !== 'string' \|\| !domainConfig.domain) return next(new HttpError(400, 'domain is required'));`
Add tlsConfig to domains and setup rest apis 2018-01-31 17:42:26 +01:00
dnsConfig -> domainConfig this prepares for the incoming settings.getDnsConfig() 2022-01-05 22:41:41 -08:00			`if ('zoneName' in domainConfig && typeof domainConfig.zoneName !== 'string') return next(new HttpError(400, 'zoneName must be a string'));`
			`if (!domainConfig.config \|\| typeof domainConfig.config !== 'object') return next(new HttpError(400, 'config must be an object'));`
dnsSetup -> setup It now takes a dnsConfig object. It will end up taking other config objects for provisioning. 2018-10-30 13:36:00 -07:00
dnsConfig -> domainConfig this prepares for the incoming settings.getDnsConfig() 2022-01-05 22:41:41 -08:00			`if ('tlsConfig' in domainConfig && typeof domainConfig.tlsConfig !== 'object') return next(new HttpError(400, 'tlsConfig must be an object'));`
			`if (domainConfig.tlsConfig && (!domainConfig.tlsConfig.provider \|\| typeof domainConfig.tlsConfig.provider !== 'string')) return next(new HttpError(400, 'tlsConfig.provider must be a string'));`
dnsSetup -> setup It now takes a dnsConfig object. It will end up taking other config objects for provisioning. 2018-10-30 13:36:00 -07:00
settings: move ipv6/ipv4 config into network this also rename sysinfo_config to ipv4_config 2023-08-03 06:05:29 +05:30			`if ('ipv4Config' in req.body && typeof req.body.ipv4Config !== 'object') return next(new HttpError(400, 'ipv4Config must be an object'));`
provision: add ipv6 config 2024-04-25 19:33:04 +02:00			`if ('ipv6Config' in req.body && typeof req.body.ipv6Config !== 'object') return next(new HttpError(400, 'ipv6Config must be an object'));`
Get autoconf data as separate object This was done because restore API already takes a backupConfig. So, it's best to split up the primary parameters and the autoconf 2018-10-30 18:43:52 -07:00
bump timeout of setup route 2018-11-02 17:24:38 -07:00			`// it can take sometime to setup DNS, register cloudron`
			`req.clearTimeout();`

provision: add ipv6 config 2024-04-25 19:33:04 +02:00			`const [error] = await safe(provision.setup(domainConfig, req.body.ipv4Config \|\| { provider: 'generic' }, req.body.ipv6Config \|\| { provider: 'generic' }, AuditSource.fromRequest(req)));`
sysinfo: async'ify in the process, provision, dyndns, mail, dns also got further asyncified 2021-08-27 09:52:24 -07:00			`if (error) return next(BoxError.toHttpError(error));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
sysinfo: async'ify in the process, provision, dyndns, mail, dns also got further asyncified 2021-08-27 09:52:24 -07:00			`next(new HttpSuccess(200, {}));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`}`

merge userdb.js into users.js 2021-07-15 09:50:11 -07:00			`async function activate(req, res, next) {`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`assert.strictEqual(typeof req.body, 'object');`

			`if (typeof req.body.username !== 'string') return next(new HttpError(400, 'username must be string'));`
			`if (typeof req.body.password !== 'string') return next(new HttpError(400, 'password must be string'));`
			`if (typeof req.body.email !== 'string') return next(new HttpError(400, 'email must be string'));`
			`if ('displayName' in req.body && typeof req.body.displayName !== 'string') return next(new HttpError(400, 'displayName must be string'));`

merge userdb.js into users.js 2021-07-15 09:50:11 -07:00			`const { username, password, email } = req.body;`
			`const displayName = req.body.displayName \|\| '';`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
req.connection.remoteAddress is deprecated 2025-01-29 10:35:09 +01:00			`const ip = req.headers['x-forwarded-for'] \|\| req.socket.remoteAddress;`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
make auditsource a class this allows us to use AuditSource for the class and auditSource for the instances! 2021-09-30 09:50:30 -07:00			`const [error, info] = await safe(provision.activate(username, password, email, displayName, ip, AuditSource.fromRequest(req)));`
merge userdb.js into users.js 2021-07-15 09:50:11 -07:00			`if (error) return next(BoxError.toHttpError(error));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
merge userdb.js into users.js 2021-07-15 09:50:11 -07:00			`next(new HttpSuccess(201, info));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`}`

sysinfo: async'ify in the process, provision, dyndns, mail, dns also got further asyncified 2021-08-27 09:52:24 -07:00			`async function restore(req, res, next) {`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`assert.strictEqual(typeof req.body, 'object');`

			`if (!req.body.backupConfig \|\| typeof req.body.backupConfig !== 'object') return next(new HttpError(400, 'backupConfig is required'));`

restore: add skipDnsSetup flag part of #737 2021-02-24 14:56:09 -08:00			`const backupConfig = req.body.backupConfig;`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`if (typeof backupConfig.provider !== 'string') return next(new HttpError(400, 'provider is required'));`
restore: acceptSelfSignedCerts is validated by provider 2024-04-09 13:20:01 +02:00			`if (typeof backupConfig.format !== 'string') return next(new HttpError(400, 'format must be a string'));`

rename backup key to password Fixes #579 2020-05-12 10:31:51 -07:00			`if ('password' in backupConfig && typeof backupConfig.password !== 'string') return next(new HttpError(400, 'password must be a string'));`
restore: encrypted filenames 2022-06-27 09:17:01 -07:00			`if ('encryptedFilenames' in req.body && typeof req.body.encryptedFilenames !== 'boolean') return next(new HttpError(400, 'encryptedFilenames must be a boolean'));`

backups: fix restore code path after backup id changes 2022-04-05 09:28:30 -07:00			`if (typeof req.body.remotePath !== 'string') return next(new HttpError(400, 'remotePath must be a string'));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`if (typeof req.body.version !== 'string') return next(new HttpError(400, 'version must be a string'));`

settings: move ipv6/ipv4 config into network this also rename sysinfo_config to ipv4_config 2023-08-03 06:05:29 +05:30			`if ('ipv4Config' in req.body && typeof req.body.ipv4Config !== 'object') return next(new HttpError(400, 'ipv4Config must be an object'));`
provision: add ipv6 config 2024-04-25 19:33:04 +02:00			`if ('ipv6Config' in req.body && typeof req.body.ipv6Config !== 'object') return next(new HttpError(400, 'ipv6Config must be an object'));`

restore: add skipDnsSetup flag part of #737 2021-02-24 14:56:09 -08:00			`if ('skipDnsSetup' in req.body && typeof req.body.skipDnsSetup !== 'boolean') return next(new HttpError(400, 'skipDnsSetup must be a boolean'));`
restore: add sysinfoConfig 2019-11-11 09:49:18 -08:00
restore: add skipDnsSetup flag part of #737 2021-02-24 14:56:09 -08:00			`const options = {`
			`skipDnsSetup: req.body.skipDnsSetup \|\| false`
			`};`

provision: add ipv6 config 2024-04-25 19:33:04 +02:00			`const [error] = await safe(provision.restore(backupConfig, req.body.remotePath, req.body.version, req.body.ipv4Config \|\| { provider: 'generic' }, req.body.ipv6Config \|\| { provider: 'generic' }, options, AuditSource.fromRequest(req)));`
sysinfo: async'ify in the process, provision, dyndns, mail, dns also got further asyncified 2021-08-27 09:52:24 -07:00			`if (error) return next(BoxError.toHttpError(error));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00
sysinfo: async'ify in the process, provision, dyndns, mail, dns also got further asyncified 2021-08-27 09:52:24 -07:00			`next(new HttpSuccess(200, {}));`
move all setup logic to setup.js 2018-01-29 15:47:26 -08:00			`}`
Fix setup and restore to have a task style API 2018-12-15 15:27:16 -08:00
settings: initCache and list are now async 2021-08-18 13:25:42 -07:00			`async function getStatus(req, res, next) {`
			`const [error, status] = await safe(provision.getStatus());`
			`if (error) return next(BoxError.toHttpError(error));`
Fix setup and restore to have a task style API 2018-12-15 15:27:16 -08:00
settings: initCache and list are now async 2021-08-18 13:25:42 -07:00			`next(new HttpSuccess(200, status));`
Fix setup and restore to have a task style API 2018-12-15 15:27:16 -08:00			`}`
Add block device selector in restore view 2023-08-08 21:00:13 +02:00
			`async function getBlockDevices(req, res, next) {`
			`const [error, devices] = await safe(system.getBlockDevices());`
			`if (error) return next(new HttpError(500, error));`

			`next(new HttpSuccess(200, { devices }));`
			`}`
provision: add route to detect ipv4 and ipv6 2024-04-26 20:36:23 +02:00
			`async function detectIP(req, res, next) {`
			`const result = await network.detectIP();`
			`next(new HttpSuccess(200, { ipv4: result.ipv4, ipv6: result.ipv6 }));`
			`}`