budibase/packages/server/src/api/routes/row.js

const Router = require("@koa/router")
const rowController = require("../controllers/row")
const authorized = require("../../middleware/authorized")
const usage = require("../../middleware/usageQuota")
const {
  paramResource,
  paramSubResource,
} = require("../../middleware/resourceId")
const {
  PermissionLevels,
  PermissionTypes,
} = require("@budibase/auth/permissions")

const router = Router()

router
  .get(
    "/api/:tableId/:rowId/enrich",
    paramSubResource("tableId", "rowId"),
    authorized(PermissionTypes.TABLE, PermissionLevels.READ),
    rowController.fetchEnrichedRow
  )
  .get(
    "/api/:tableId/rows",
    paramResource("tableId"),
    authorized(PermissionTypes.TABLE, PermissionLevels.READ),
    rowController.fetchTableRows
  )
  .get(
    "/api/:tableId/rows/:rowId",
    paramSubResource("tableId", "rowId"),
    authorized(PermissionTypes.TABLE, PermissionLevels.READ),
    rowController.find
  )
  .post(
    "/api/:tableId/rows",
    paramResource("tableId"),
    authorized(PermissionTypes.TABLE, PermissionLevels.WRITE),
    usage,
    rowController.save
  )
  .patch(
    "/api/:tableId/rows/:rowId",
    paramSubResource("tableId", "rowId"),
    authorized(PermissionTypes.TABLE, PermissionLevels.WRITE),
    rowController.patch
  )
  .post(
    "/api/:tableId/rows/validate",
    paramResource("tableId"),
    authorized(PermissionTypes.TABLE, PermissionLevels.WRITE),
    rowController.validate
  )
  .delete(
    "/api/:tableId/rows/:rowId/:revId",
    paramSubResource("tableId", "rowId"),
    authorized(PermissionTypes.TABLE, PermissionLevels.WRITE),
    usage,
    rowController.destroy
  )

module.exports = router
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`const Router = require("@koa/router")`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`const rowController = require("../controllers/row")`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`const authorized = require("../../middleware/authorized")`
First work towards implementing Dynamo usage in the server when running in the cloud; this is for tracking usage against API keys. 2020-10-07 07:13:41 +13:00			`const usage = require("../../middleware/usageQuota")`
Adding in resource IDs everywhere they should be accessible. 2021-02-09 06:22:07 +13:00			`const {`
			`paramResource,`
			`paramSubResource,`
			`} = require("../../middleware/resourceId")`
WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-12 06:34:15 +13:00			`const {`
			`PermissionLevels,`
			`PermissionTypes,`
A general re-work of some parts of the auth lib, as well as moving roles/permissions around to make it possible to build an admin API which has role knowledge. 2021-05-15 02:43:41 +12:00			`} = require("@budibase/auth/permissions")`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00
			`const router = Router()`

			`router`
Adding routes for getting link records based on a record Id. 2020-09-30 00:02:06 +13:00			`.get(`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`"/api/:tableId/:rowId/enrich",`
Adding in resource IDs everywhere they should be accessible. 2021-02-09 06:22:07 +13:00			`paramSubResource("tableId", "rowId"),`
WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-12 06:34:15 +13:00			`authorized(PermissionTypes.TABLE, PermissionLevels.READ),`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`rowController.fetchEnrichedRow`
Adding routes for getting link records based on a record Id. 2020-09-30 00:02:06 +13:00			`)`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`.get(`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`"/api/:tableId/rows",`
Adding in resource IDs everywhere they should be accessible. 2021-02-09 06:22:07 +13:00			`paramResource("tableId"),`
WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-12 06:34:15 +13:00			`authorized(PermissionTypes.TABLE, PermissionLevels.READ),`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`rowController.fetchTableRows`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`)`
			`.get(`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`"/api/:tableId/rows/:rowId",`
Adding in resource IDs everywhere they should be accessible. 2021-02-09 06:22:07 +13:00			`paramSubResource("tableId", "rowId"),`
WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-12 06:34:15 +13:00			`authorized(PermissionTypes.TABLE, PermissionLevels.READ),`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`rowController.find`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`)`
			`.post(`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`"/api/:tableId/rows",`
Adding in resource IDs everywhere they should be accessible. 2021-02-09 06:22:07 +13:00			`paramResource("tableId"),`
WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-12 06:34:15 +13:00			`authorized(PermissionTypes.TABLE, PermissionLevels.WRITE),`
First work towards implementing Dynamo usage in the server when running in the cloud; this is for tracking usage against API keys. 2020-10-07 07:13:41 +13:00			`usage,`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`rowController.save`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`)`
added PATCH record route 2020-09-10 20:36:14 +12:00			`.patch(`
Adding in resource IDs everywhere they should be accessible. 2021-02-09 06:22:07 +13:00			`"/api/:tableId/rows/:rowId",`
			`paramSubResource("tableId", "rowId"),`
WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-12 06:34:15 +13:00			`authorized(PermissionTypes.TABLE, PermissionLevels.WRITE),`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`rowController.patch`
added PATCH record route 2020-09-10 20:36:14 +12:00			`)`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`.post(`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`"/api/:tableId/rows/validate",`
Adding in resource IDs everywhere they should be accessible. 2021-02-09 06:22:07 +13:00			`paramResource("tableId"),`
WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-12 06:34:15 +13:00			`authorized(PermissionTypes.TABLE, PermissionLevels.WRITE),`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`rowController.validate`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`)`
			`.delete(`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`"/api/:tableId/rows/:rowId/:revId",`
Adding in resource IDs everywhere they should be accessible. 2021-02-09 06:22:07 +13:00			`paramSubResource("tableId", "rowId"),`
WIP - this is working towards the permissions system but stopping here for the night, this is currently not functional. 2020-11-12 06:34:15 +13:00			`authorized(PermissionTypes.TABLE, PermissionLevels.WRITE),`
First work towards implementing Dynamo usage in the server when running in the cloud; this is for tracking usage against API keys. 2020-10-07 07:13:41 +13:00			`usage,`
Changing record -> row in this update, completing the update of renaming in the builder, this release needs further testing. 2020-10-10 07:10:28 +13:00			`rowController.destroy`
removal of appRoot - appId comes in cookie 2020-06-13 07:42:55 +12:00			`)`

			`module.exports = router`