src/volumes.js

'use strict';

exports = module.exports = {
    add,
    get,
    update,
    del,
    list,
    remount,
    getStatus,
    removePrivateFields,

    mountAll,

    // exported for testing
    _validateHostPath: validateHostPath
};

const assert = require('assert'),
    BoxError = require('./boxerror.js'),
    constants = require('./constants.js'),
    database = require('./database.js'),
    debug = require('debug')('box:volumes'),
    eventlog = require('./eventlog.js'),
    mounts = require('./mounts.js'),
    path = require('path'),
    paths = require('./paths.js'),
    safe = require('safetydance'),
    services = require('./services.js'),
    uuid = require('uuid');

const VOLUMES_FIELDS = [ 'id', 'name', 'hostPath', 'creationTime', 'mountType', 'mountOptionsJson' ].join(',');

function postProcess(result) {
    assert.strictEqual(typeof result, 'object');

    result.mountOptions = safe.JSON.parse(result.mountOptionsJson) || {};
    delete result.mountOptionsJson;

    return result;
}

function validateName(name) {
    assert.strictEqual(typeof name, 'string');

    if (!/^[-\w^&'@{}[\],$=!#().%+~ ]+$/.test(name)) return new BoxError(BoxError.BAD_FIELD, 'Invalid name');

    return null;
}

function validateHostPath(hostPath) {
    assert.strictEqual(typeof hostPath, 'string');

    if (path.normalize(hostPath) !== hostPath) return new BoxError(BoxError.BAD_FIELD, 'hostPath must contain a normalized path');
    if (!path.isAbsolute(hostPath)) return new BoxError(BoxError.BAD_FIELD, 'hostPath must be an absolute path');
    // otherwise, we could follow some symlink to mount paths outside the allowed paths
    if (safe.fs.realpathSync(hostPath) !== hostPath) return new BoxError(BoxError.BAD_FIELD, 'hostPath must be a realpath without symlinks');

    if (hostPath === '/') return new BoxError(BoxError.BAD_FIELD, 'hostPath cannot be /');

    const allowedPaths = [ '/mnt', '/media', '/srv', '/opt' ];
    if (!allowedPaths.some(p => hostPath.startsWith(p + '/'))) return new BoxError(BoxError.BAD_FIELD, 'hostPath must be under /mnt, /media, /opt or /srv');

    const reservedPaths = [ `${paths.VOLUMES_MOUNT_DIR}` ];
    if (reservedPaths.some(p => hostPath === p || hostPath.startsWith(p + '/'))) return new BoxError(BoxError.BAD_FIELD, 'hostPath is reserved');

    const stat = safe.fs.lstatSync(hostPath);
    if (!stat) return new BoxError(BoxError.BAD_FIELD, 'hostPath does not exist. Please create it on the server first');
    if (!stat.isDirectory()) return new BoxError(BoxError.BAD_FIELD, 'hostPath is not a directory');

    return null;
}

async function add(volume, auditSource) {
    assert.strictEqual(typeof volume, 'object');
    assert.strictEqual(typeof auditSource, 'object');

    const {name, mountType, mountOptions} = volume;

    let error = validateName(name);
    if (error) throw error;

    error = mounts.validateMountOptions(mountType, mountOptions);
    if (error) throw error;

    const id = uuid.v4().replace(/-/g, ''); // to make systemd mount file names more readable

    let hostPath;
    if (mountType === mounts.MOUNT_TYPE_MOUNTPOINT || mountType === mounts.MOUNT_TYPE_FILESYSTEM) {
        error = validateHostPath(mountOptions.hostPath);
        if (error) throw error;
        hostPath = mountOptions.hostPath;
    } else {
        hostPath = path.join(paths.VOLUMES_MOUNT_DIR, id);
        const mount = { name, hostPath, mountType, mountOptions };
        await mounts.tryAddMount(mount, { timeout: 10 }); // 10 seconds
    }

    [error] = await safe(database.query('INSERT INTO volumes (id, name, hostPath, mountType, mountOptionsJson) VALUES (?, ?, ?, ?, ?)', [ id, name, hostPath, mountType, JSON.stringify(mountOptions) ]));
    if (error && error.code === 'ER_DUP_ENTRY' && error.sqlMessage.indexOf('name') !== -1) throw new BoxError(BoxError.ALREADY_EXISTS, 'name already exists');
    if (error && error.code === 'ER_DUP_ENTRY' && error.sqlMessage.indexOf('hostPath') !== -1) throw new BoxError(BoxError.ALREADY_EXISTS, 'hostPath already exists');
    if (error && error.code === 'ER_DUP_ENTRY' && error.sqlMessage.indexOf('PRIMARY') !== -1) throw new BoxError(BoxError.ALREADY_EXISTS, 'id already exists');
    if (error) throw error;

    await eventlog.add(eventlog.ACTION_VOLUME_ADD, auditSource, { id, name, hostPath });
    // in theory, we only need to do this mountpoint volumes. but for some reason a restart is required to detect new "mounts"
    safe(services.rebuildService('sftp', auditSource), { debug });

    return id;
}

async function remount(volume, auditSource) {
    assert.strictEqual(typeof volume, 'object');
    assert.strictEqual(typeof auditSource, 'object');

    await eventlog.add(eventlog.ACTION_VOLUME_REMOUNT, auditSource, { volume });

    if (!mounts.isManagedProvider(volume.mountType)) throw new BoxError(BoxError.NOT_SUPPORTED, 'Volume does not support remount');

    await mounts.remount(volume);
}

async function getStatus(volume) {
    assert.strictEqual(typeof volume, 'object');

    return await mounts.getStatus(volume.mountType, volume.hostPath); // { state, message }
}

function removePrivateFields(volume) {
    const newVolume = Object.assign({}, volume);

    if (newVolume.mountType === mounts.MOUNT_TYPE_SSHFS) {
        newVolume.mountOptions.privateKey = constants.SECRET_PLACEHOLDER;
    } else if (newVolume.mountType === mounts.MOUNT_TYPE_CIFS) {
        newVolume.mountOptions.password = constants.SECRET_PLACEHOLDER;
    }

    return newVolume;
}

// only network mounts can be updated here through mountOptions to update logon information
async function update(id, mountOptions, auditSource) {
    assert.strictEqual(typeof id, 'string');
    assert.strictEqual(typeof mountOptions, 'object');
    assert.strictEqual(typeof auditSource, 'object');

    const volume = await get(id);
    const { name, mountType } = volume;

    if (mountType !== mounts.MOUNT_TYPE_CIFS && mountType !== mounts.MOUNT_TYPE_SSHFS && mountType !== mounts.MOUNT_TYPE_NFS) throw new BoxError(BoxError.BAD_FIELD, 'Only network mounts can be updated');

    const error = mounts.validateMountOptions(mountType, mountOptions);
    if (error) throw error;

    // put old secret back in place if no new secret is provided
    if (mountType === mounts.MOUNT_TYPE_SSHFS) {
        if (mountOptions.privateKey === constants.SECRET_PLACEHOLDER) mountOptions.privateKey = volume.mountOptions.privateKey;
    } else if (mountType === mounts.MOUNT_TYPE_CIFS) {
        if (mountOptions.password === constants.SECRET_PLACEHOLDER) mountOptions.password = volume.mountOptions.password;
    }

    const hostPath = path.join(paths.VOLUMES_MOUNT_DIR, id);
    const mount = { name, hostPath, mountType: mountType, mountOptions };

    // first try to mount at /mnt/volumes/<volumeId>-validation
    const testMount = Object.assign({}, mount, { hostPath: `${hostPath}-validation` });
    await mounts.tryAddMount(testMount, { timeout: 10 }); // 10 seconds
    await mounts.removeMount(testMount);

    // update the mount
    await mounts.tryAddMount(mount, { timeout: 10 }); // 10 seconds
    await database.query('UPDATE volumes SET hostPath=?,mountOptionsJson=? WHERE id=?', [ hostPath, JSON.stringify(mountOptions), id ]);
    await eventlog.add(eventlog.ACTION_VOLUME_UPDATE, auditSource, { id, name, hostPath });
    // in theory, we only need to do this mountpoint volumes. but for some reason a restart is required to detect new "mounts"
    safe(services.rebuildService('sftp', auditSource), { debug });
}

async function get(id) {
    assert.strictEqual(typeof id, 'string');

    const result = await database.query(`SELECT ${VOLUMES_FIELDS} FROM volumes WHERE id=?`, [ id ]);
    if (result.length === 0) return null;

    return postProcess(result[0]);
}

async function list() {
    const results = await database.query(`SELECT ${VOLUMES_FIELDS} FROM volumes ORDER BY name`);
    results.forEach(postProcess);
    return results;
}

async function del(volume, auditSource) {
    assert.strictEqual(typeof volume, 'object');
    assert.strictEqual(typeof auditSource, 'object');

    const [error, result] = await safe(database.query('DELETE FROM volumes WHERE id=?', [ volume.id ]));
    if (error && error.code === 'ER_ROW_IS_REFERENCED_2') throw new BoxError(BoxError.CONFLICT, 'Volume is in use');
    if (error) throw error;
    if (result.affectedRows !== 1) throw new BoxError(BoxError.NOT_FOUND, 'Volume not found');

    await eventlog.add(eventlog.ACTION_VOLUME_REMOVE, auditSource, { volume });

    if (volume.mountType === mounts.MOUNT_TYPE_MOUNTPOINT || volume.mountType === mounts.MOUNT_TYPE_FILESYSTEM) {
        safe(services.rebuildService('sftp', auditSource), { debug });
    } else {
        await safe(mounts.removeMount(volume));
    }
}

async function mountAll() {
    debug('mountAll: mouting all volumes');

    for (const volume of await list()) {
        await mounts.tryAddMount(volume, { timeout: 10, skipCleanup: true }); // have to wait to avoid race with apptask
    }
}
Add volume management 2020-10-27 22:39:05 -07:00			`'use strict';`

			`exports = module.exports = {`
			`add,`
			`get,`
Add rest api to update volume mount options 2023-09-20 15:48:11 +02:00			`update,`
Add volume management 2020-10-27 22:39:05 -07:00			`del,`
volumes: generate systemd mount files based on mount type 2021-05-12 18:00:43 -07:00			`list,`
add volume remount 2021-10-11 15:51:16 +02:00			`remount,`
volume: get status 2021-05-13 15:33:16 -07:00			`getStatus,`
restore: mount all volumes before restoring apps 2021-09-28 11:51:01 -07:00			`removePrivateFields,`

volumes: test host path validation 2025-01-02 11:46:11 +01:00			`mountAll,`

			`// exported for testing`
			`_validateHostPath: validateHostPath`
Add volume management 2020-10-27 22:39:05 -07:00			`};`

			`const assert = require('assert'),`
			`BoxError = require('./boxerror.js'),`
fix volume test 2021-05-17 16:23:24 -07:00			`constants = require('./constants.js'),`
volumes: async'ify 2021-05-11 17:50:48 -07:00			`database = require('./database.js'),`
Use debug instead of console.error 2020-10-30 11:07:24 -07:00			`debug = require('debug')('box:volumes'),`
Add volume management 2020-10-27 22:39:05 -07:00			`eventlog = require('./eventlog.js'),`
backups: add mounting config 2021-05-14 15:07:29 -07:00			`mounts = require('./mounts.js'),`
volumes: better hostPath validation 2020-12-03 23:05:06 -08:00			`path = require('path'),`
volumes: set hostPath based on volume id 2021-06-24 16:59:47 -07:00			`paths = require('./paths.js'),`
volume: hostPath must exist on server 2020-12-03 23:13:20 -08:00			`safe = require('safetydance'),`
Fixes to service configuration 2021-01-21 12:53:38 -08:00			`services = require('./services.js'),`
volumes: async'ify 2021-05-11 17:50:48 -07:00			`uuid = require('uuid');`

volumes: generate systemd mount files based on mount type 2021-05-12 18:00:43 -07:00			`const VOLUMES_FIELDS = [ 'id', 'name', 'hostPath', 'creationTime', 'mountType', 'mountOptionsJson' ].join(',');`
Add volume management 2020-10-27 22:39:05 -07:00
volumes: generate systemd mount files based on mount type 2021-05-12 18:00:43 -07:00			`function postProcess(result) {`
			`assert.strictEqual(typeof result, 'object');`

			`result.mountOptions = safe.JSON.parse(result.mountOptionsJson) \|\| {};`
			`delete result.mountOptionsJson;`

			`return result;`
			`}`

Add volume management 2020-10-27 22:39:05 -07:00			`function validateName(name) {`
			`assert.strictEqual(typeof name, 'string');`

			`if (!/^[-\w^&'@{}[\],$=!#().%+~ ]+$/.test(name)) return new BoxError(BoxError.BAD_FIELD, 'Invalid name');`

			`return null;`
			`}`

volumes: test host path validation 2025-01-02 11:46:11 +01:00			`function validateHostPath(hostPath) {`
Add volume management 2020-10-27 22:39:05 -07:00			`assert.strictEqual(typeof hostPath, 'string');`

remove field from errors 2022-02-07 13:19:59 -08:00			`if (path.normalize(hostPath) !== hostPath) return new BoxError(BoxError.BAD_FIELD, 'hostPath must contain a normalized path');`
			`if (!path.isAbsolute(hostPath)) return new BoxError(BoxError.BAD_FIELD, 'hostPath must be an absolute path');`
security: fix issue where '/' symlink allows admins to get ssh access 2025-01-02 11:17:24 +01:00			`// otherwise, we could follow some symlink to mount paths outside the allowed paths`
			`if (safe.fs.realpathSync(hostPath) !== hostPath) return new BoxError(BoxError.BAD_FIELD, 'hostPath must be a realpath without symlinks');`
volumes: better hostPath validation 2020-12-03 23:05:06 -08:00
remove field from errors 2022-02-07 13:19:59 -08:00			`if (hostPath === '/') return new BoxError(BoxError.BAD_FIELD, 'hostPath cannot be /');`
volumes: better hostPath validation 2020-12-03 23:05:06 -08:00
do not modify hostPath variable 2025-01-02 11:22:09 +01:00			`const allowedPaths = [ '/mnt', '/media', '/srv', '/opt' ];`
volumes: test host path validation 2025-01-02 11:46:11 +01:00			`if (!allowedPaths.some(p => hostPath.startsWith(p + '/'))) return new BoxError(BoxError.BAD_FIELD, 'hostPath must be under /mnt, /media, /opt or /srv');`
volumes: better hostPath validation 2020-12-03 23:05:06 -08:00
do not modify hostPath variable 2025-01-02 11:22:09 +01:00			const reservedPaths = [ `${paths.VOLUMES_MOUNT_DIR}` ];
			`if (reservedPaths.some(p => hostPath === p \|\| hostPath.startsWith(p + '/'))) return new BoxError(BoxError.BAD_FIELD, 'hostPath is reserved');`
volumes: /mnt/volumes is reserved 2024-08-08 14:45:50 +02:00
volumes: test host path validation 2025-01-02 11:46:11 +01:00			`const stat = safe.fs.lstatSync(hostPath);`
			`if (!stat) return new BoxError(BoxError.BAD_FIELD, 'hostPath does not exist. Please create it on the server first');`
			`if (!stat.isDirectory()) return new BoxError(BoxError.BAD_FIELD, 'hostPath is not a directory');`
volume: hostPath must exist on server 2020-12-03 23:13:20 -08:00
Add volume management 2020-10-27 22:39:05 -07:00			`return null;`
			`}`

volumes: generate systemd mount files based on mount type 2021-05-12 18:00:43 -07:00			`async function add(volume, auditSource) {`
			`assert.strictEqual(typeof volume, 'object');`
Add volume management 2020-10-27 22:39:05 -07:00			`assert.strictEqual(typeof auditSource, 'object');`

volumes: set hostPath based on volume id 2021-06-24 16:59:47 -07:00			`const {name, mountType, mountOptions} = volume;`
volumes: generate systemd mount files based on mount type 2021-05-12 18:00:43 -07:00
Add volume management 2020-10-27 22:39:05 -07:00			`let error = validateName(name);`
volumes: async'ify 2021-05-11 17:50:48 -07:00			`if (error) throw error;`
Add volume management 2020-10-27 22:39:05 -07:00
backups: add mounting config 2021-05-14 15:07:29 -07:00			`error = mounts.validateMountOptions(mountType, mountOptions);`
volumes: async'ify 2021-05-11 17:50:48 -07:00			`if (error) throw error;`
Add volume management 2020-10-27 22:39:05 -07:00
volumes: set hostPath based on volume id 2021-06-24 16:59:47 -07:00			`const id = uuid.v4().replace(/-/g, ''); // to make systemd mount file names more readable`

Fix validation of hostPath 2023-02-25 23:14:54 +01:00			`let hostPath;`
mount: use enums for mount types 2025-01-12 17:41:17 +01:00			`if (mountType === mounts.MOUNT_TYPE_MOUNTPOINT \|\| mountType === mounts.MOUNT_TYPE_FILESYSTEM) {`
volumes: test host path validation 2025-01-02 11:46:11 +01:00			`error = validateHostPath(mountOptions.hostPath);`
volumes: set hostPath based on volume id 2021-06-24 16:59:47 -07:00			`if (error) throw error;`
Fix validation of hostPath 2023-02-25 23:14:54 +01:00			`hostPath = mountOptions.hostPath;`
volumes: set hostPath based on volume id 2021-06-24 16:59:47 -07:00			`} else {`
Fix validation of hostPath 2023-02-25 23:14:54 +01:00			`hostPath = path.join(paths.VOLUMES_MOUNT_DIR, id);`
			`const mount = { name, hostPath, mountType, mountOptions };`
			`await mounts.tryAddMount(mount, { timeout: 10 }); // 10 seconds`
volumes: set hostPath based on volume id 2021-06-24 16:59:47 -07:00			`}`
Add volume management 2020-10-27 22:39:05 -07:00
Fix validation of hostPath 2023-02-25 23:14:54 +01:00			`[error] = await safe(database.query('INSERT INTO volumes (id, name, hostPath, mountType, mountOptionsJson) VALUES (?, ?, ?, ?, ?)', [ id, name, hostPath, mountType, JSON.stringify(mountOptions) ]));`
Use safe instead of try/catch 2021-09-01 15:29:35 -07:00			`if (error && error.code === 'ER_DUP_ENTRY' && error.sqlMessage.indexOf('name') !== -1) throw new BoxError(BoxError.ALREADY_EXISTS, 'name already exists');`
			`if (error && error.code === 'ER_DUP_ENTRY' && error.sqlMessage.indexOf('hostPath') !== -1) throw new BoxError(BoxError.ALREADY_EXISTS, 'hostPath already exists');`
			`if (error && error.code === 'ER_DUP_ENTRY' && error.sqlMessage.indexOf('PRIMARY') !== -1) throw new BoxError(BoxError.ALREADY_EXISTS, 'id already exists');`
			`if (error) throw error;`
Add volume management 2020-10-27 22:39:05 -07:00
Fix validation of hostPath 2023-02-25 23:14:54 +01:00			`await eventlog.add(eventlog.ACTION_VOLUME_ADD, auditSource, { id, name, hostPath });`
volume: add filesystem type for shared folders 2021-06-24 23:01:18 -07:00			`// in theory, we only need to do this mountpoint volumes. but for some reason a restart is required to detect new "mounts"`
eventlog: add service rebuild/restart/configure events 2021-09-24 10:22:45 -07:00			`safe(services.rebuildService('sftp', auditSource), { debug });`
volumes: collect du data 2021-01-04 11:05:42 -08:00
volumes: async'ify 2021-05-11 17:50:48 -07:00			`return id;`
Add volume management 2020-10-27 22:39:05 -07:00			`}`

add volume remount 2021-10-11 15:51:16 +02:00			`async function remount(volume, auditSource) {`
			`assert.strictEqual(typeof volume, 'object');`
			`assert.strictEqual(typeof auditSource, 'object');`

add missing awaits for eventlog.add 2022-02-24 20:04:46 -08:00			`await eventlog.add(eventlog.ACTION_VOLUME_REMOUNT, auditSource, { volume });`
add volume remount 2021-10-11 15:51:16 +02:00
isMountProvider -> isManagedProvider 2022-01-26 12:40:28 -08:00			`if (!mounts.isManagedProvider(volume.mountType)) throw new BoxError(BoxError.NOT_SUPPORTED, 'Volume does not support remount');`
add volume remount 2021-10-11 15:51:16 +02:00
Fix usage of await 2021-10-11 10:29:46 -07:00			`await mounts.remount(volume);`
add volume remount 2021-10-11 15:51:16 +02:00			`}`

volumes: wait for mount during add/update 2021-05-19 09:50:50 -07:00			`async function getStatus(volume) {`
			`assert.strictEqual(typeof volume, 'object');`

			`return await mounts.getStatus(volume.mountType, volume.hostPath); // { state, message }`
			`}`

volume: remove private fields 2021-06-21 16:35:08 -07:00			`function removePrivateFields(volume) {`
			`const newVolume = Object.assign({}, volume);`

mount: use enums for mount types 2025-01-12 17:41:17 +01:00			`if (newVolume.mountType === mounts.MOUNT_TYPE_SSHFS) {`
volume: remove private fields 2021-06-21 16:35:08 -07:00			`newVolume.mountOptions.privateKey = constants.SECRET_PLACEHOLDER;`
mount: use enums for mount types 2025-01-12 17:41:17 +01:00			`} else if (newVolume.mountType === mounts.MOUNT_TYPE_CIFS) {`
volume: remove private fields 2021-06-21 16:35:08 -07:00			`newVolume.mountOptions.password = constants.SECRET_PLACEHOLDER;`
			`}`

			`return newVolume;`
			`}`

Show volume edit options for network mounts 2023-09-20 16:27:39 +02:00			`// only network mounts can be updated here through mountOptions to update logon information`
Add rest api to update volume mount options 2023-09-20 15:48:11 +02:00			`async function update(id, mountOptions, auditSource) {`
			`assert.strictEqual(typeof id, 'string');`
			`assert.strictEqual(typeof mountOptions, 'object');`
			`assert.strictEqual(typeof auditSource, 'object');`

			`const volume = await get(id);`
volumes: throw error for unsupported update 2023-10-09 10:26:24 +05:30			`const { name, mountType } = volume;`
Add rest api to update volume mount options 2023-09-20 15:48:11 +02:00
mount: use enums for mount types 2025-01-12 17:41:17 +01:00			`if (mountType !== mounts.MOUNT_TYPE_CIFS && mountType !== mounts.MOUNT_TYPE_SSHFS && mountType !== mounts.MOUNT_TYPE_NFS) throw new BoxError(BoxError.BAD_FIELD, 'Only network mounts can be updated');`
Show volume edit options for network mounts 2023-09-20 16:27:39 +02:00
			`const error = mounts.validateMountOptions(mountType, mountOptions);`
Add rest api to update volume mount options 2023-09-20 15:48:11 +02:00			`if (error) throw error;`

Show volume edit options for network mounts 2023-09-20 16:27:39 +02:00			`// put old secret back in place if no new secret is provided`
mount: use enums for mount types 2025-01-12 17:41:17 +01:00			`if (mountType === mounts.MOUNT_TYPE_SSHFS) {`
Show volume edit options for network mounts 2023-09-20 16:27:39 +02:00			`if (mountOptions.privateKey === constants.SECRET_PLACEHOLDER) mountOptions.privateKey = volume.mountOptions.privateKey;`
mount: use enums for mount types 2025-01-12 17:41:17 +01:00			`} else if (mountType === mounts.MOUNT_TYPE_CIFS) {`
Show volume edit options for network mounts 2023-09-20 16:27:39 +02:00			`if (mountOptions.password === constants.SECRET_PLACEHOLDER) mountOptions.password = volume.mountOptions.password;`
Add rest api to update volume mount options 2023-09-20 15:48:11 +02:00			`}`

Show volume edit options for network mounts 2023-09-20 16:27:39 +02:00			`const hostPath = path.join(paths.VOLUMES_MOUNT_DIR, id);`
			`const mount = { name, hostPath, mountType: mountType, mountOptions };`

backups: remove validation mount point after testing it 2023-09-29 06:49:55 +05:30			`// first try to mount at /mnt/volumes/<volumeId>-validation`
			const testMount = Object.assign({}, mount, { hostPath: `${hostPath}-validation` });
			`await mounts.tryAddMount(testMount, { timeout: 10 }); // 10 seconds`
			`await mounts.removeMount(testMount);`
Add rest api to update volume mount options 2023-09-20 15:48:11 +02:00
backups: remove validation mount point after testing it 2023-09-29 06:49:55 +05:30			`// update the mount`
			`await mounts.tryAddMount(mount, { timeout: 10 }); // 10 seconds`
			`await database.query('UPDATE volumes SET hostPath=?,mountOptionsJson=? WHERE id=?', [ hostPath, JSON.stringify(mountOptions), id ]);`
Add rest api to update volume mount options 2023-09-20 15:48:11 +02:00			`await eventlog.add(eventlog.ACTION_VOLUME_UPDATE, auditSource, { id, name, hostPath });`
			`// in theory, we only need to do this mountpoint volumes. but for some reason a restart is required to detect new "mounts"`
			`safe(services.rebuildService('sftp', auditSource), { debug });`
			`}`

volumes: async'ify 2021-05-11 17:50:48 -07:00			`async function get(id) {`
Add volume management 2020-10-27 22:39:05 -07:00			`assert.strictEqual(typeof id, 'string');`

volumes: async'ify 2021-05-11 17:50:48 -07:00			const result = await database.query(`SELECT ${VOLUMES_FIELDS} FROM volumes WHERE id=?`, [ id ]);
			`if (result.length === 0) return null;`
Add volume management 2020-10-27 22:39:05 -07:00
volumes: generate systemd mount files based on mount type 2021-05-12 18:00:43 -07:00			`return postProcess(result[0]);`
Add volume management 2020-10-27 22:39:05 -07:00			`}`

volumes: async'ify 2021-05-11 17:50:48 -07:00			`async function list() {`
volumes: generate systemd mount files based on mount type 2021-05-12 18:00:43 -07:00			const results = await database.query(`SELECT ${VOLUMES_FIELDS} FROM volumes ORDER BY name`);
			`results.forEach(postProcess);`
			`return results;`
Add volume management 2020-10-27 22:39:05 -07:00			`}`

volumes: async'ify 2021-05-11 17:50:48 -07:00			`async function del(volume, auditSource) {`
volume: use the load pattern 2020-10-28 15:51:43 -07:00			`assert.strictEqual(typeof volume, 'object');`
Add volume management 2020-10-27 22:39:05 -07:00			`assert.strictEqual(typeof auditSource, 'object');`

merge settingsdb into settings code 2021-08-19 13:24:38 -07:00			`const [error, result] = await safe(database.query('DELETE FROM volumes WHERE id=?', [ volume.id ]));`
			`if (error && error.code === 'ER_ROW_IS_REFERENCED_2') throw new BoxError(BoxError.CONFLICT, 'Volume is in use');`
			`if (error) throw error;`
			`if (result.affectedRows !== 1) throw new BoxError(BoxError.NOT_FOUND, 'Volume not found');`
volumes: async'ify 2021-05-11 17:50:48 -07:00
add missing awaits for eventlog.add 2022-02-24 20:04:46 -08:00			`await eventlog.add(eventlog.ACTION_VOLUME_REMOVE, auditSource, { volume });`
sftp: rework appdata and volume mounting logic 2021-06-24 16:19:30 -07:00
mount: use enums for mount types 2025-01-12 17:41:17 +01:00			`if (volume.mountType === mounts.MOUNT_TYPE_MOUNTPOINT \|\| volume.mountType === mounts.MOUNT_TYPE_FILESYSTEM) {`
eventlog: add service rebuild/restart/configure events 2021-09-24 10:22:45 -07:00			`safe(services.rebuildService('sftp', auditSource), { debug });`
sftp: rework appdata and volume mounting logic 2021-06-24 16:19:30 -07:00			`} else {`
			`await safe(mounts.removeMount(volume));`
			`}`
Add volume management 2020-10-27 22:39:05 -07:00			`}`
restore: mount all volumes before restoring apps 2021-09-28 11:51:01 -07:00
			`async function mountAll() {`
			`debug('mountAll: mouting all volumes');`

			`for (const volume of await list()) {`
			`await mounts.tryAddMount(volume, { timeout: 10, skipCleanup: true }); // have to wait to avoid race with apptask`
			`}`
isMountProvider -> isManagedProvider 2022-01-26 12:40:28 -08:00			`}`