budibase/packages/server/src/api/index.js

94 lines
2.3 KiB
JavaScript
Raw Normal View History

const Router = require("@koa/router")
const {
buildAuthMiddleware,
auditLog,
buildTenancyMiddleware,
} = require("@budibase/backend-core/auth")
const { errors } = require("@budibase/backend-core")
const currentApp = require("../middleware/currentapp")
2020-05-07 11:53:34 +02:00
const compress = require("koa-compress")
const zlib = require("zlib")
2022-02-16 19:23:38 +01:00
const { mainRoutes, staticRoutes, publicRoutes } = require("./routes")
2021-01-27 14:55:46 +01:00
const pkg = require("../../package.json")
const env = require("../environment")
const { middleware: pro } = require("@budibase/pro")
2021-03-26 15:56:34 +01:00
2020-05-07 15:04:32 +02:00
const router = new Router()
2022-03-24 15:24:56 +01:00
router.get("/health", ctx => (ctx.status = 200))
router.get("/version", ctx => (ctx.body = pkg.version))
2020-05-07 15:04:32 +02:00
router
.use(
compress({
threshold: 2048,
gzip: {
2021-03-29 16:06:00 +02:00
flush: zlib.constants.Z_SYNC_FLUSH,
2020-05-07 15:04:32 +02:00
},
deflate: {
2021-03-29 16:06:00 +02:00
flush: zlib.constants.Z_SYNC_FLUSH,
2020-05-07 15:04:32 +02:00
},
2020-05-18 15:58:39 +02:00
br: false,
2020-05-06 21:29:47 +02:00
})
2020-05-07 15:04:32 +02:00
)
.use(async (ctx, next) => {
ctx.config = {
2020-05-14 16:12:30 +02:00
jwtSecret: env.JWT_SECRET,
useAppRootPath: true,
2020-04-08 17:57:27 +02:00
}
2020-05-07 15:04:32 +02:00
await next()
2020-05-07 11:53:34 +02:00
})
// re-direct before any middlewares occur
.redirect("/", "/builder")
.use(
buildAuthMiddleware(null, {
publicAllowed: true,
})
)
// nothing in the server should allow query string tenants
// the server can be public anywhere, so nowhere should throw errors
// if the tenancy has not been set, it'll have to be discovered at application layer
.use(
buildTenancyMiddleware(null, null, {
noTenancyRequired: true,
})
)
.use(currentApp)
.use(pro.licensing())
2021-05-28 11:09:32 +02:00
.use(auditLog)
2020-05-07 15:04:32 +02:00
// error handling middleware
router.use(async (ctx, next) => {
try {
await next()
} catch (err) {
ctx.status = err.status || err.statusCode || 500
const error = errors.getPublicError(err)
2020-05-07 15:04:32 +02:00
ctx.body = {
message: err.message,
status: ctx.status,
2021-08-16 22:07:15 +02:00
validationErrors: err.validation,
error,
2020-05-07 15:04:32 +02:00
}
if (env.NODE_ENV !== "jest") {
ctx.log.error(err)
console.trace(err)
}
2020-05-07 15:04:32 +02:00
}
})
2020-04-08 17:57:27 +02:00
2020-05-07 15:04:32 +02:00
// authenticated routes
for (let route of mainRoutes) {
router.use(route.routes())
router.use(route.allowedMethods())
}
2022-02-16 19:23:38 +01:00
router.use(publicRoutes.routes())
router.use(publicRoutes.allowedMethods())
// WARNING - static routes will catch everything else after them this must be last
2020-05-07 15:04:32 +02:00
router.use(staticRoutes.routes())
router.use(staticRoutes.allowedMethods())
2020-04-06 15:05:57 +02:00
2020-05-07 15:04:32 +02:00
module.exports = router