budibase/packages/server/src/api/routes/public/index.js

const appEndpoints = require("./applications")
const queryEndpoints = require("./queries")
const tableEndpoints = require("./tables")
const rowEndpoints = require("./rows")
const userEndpoints = require("./users")
const Router = require("@koa/router")
const usage = require("../../../middleware/usageQuota")
const authorized = require("../../../middleware/authorized")
const {
  paramResource,
  paramSubResource,
} = require("../../../middleware/resourceId")
const {
  PermissionLevels,
  PermissionTypes,
} = require("@budibase/backend-core/permissions")

const PREFIX = "/api/public/v1"

const publicRouter = new Router({
  prefix: PREFIX,
})

function addMiddleware(endpoints, middleware) {
  for (let endpoint of endpoints) {
    endpoint.addMiddleware(middleware)
  }
}

function addToRouter(endpoints) {
  for (let endpoint of endpoints) {
    endpoint.apply(publicRouter)
  }
}

function applyRoutes(endpoints, permType, resource, subResource = null) {
  const paramMiddleware = subResource
    ? paramSubResource(resource, subResource)
    : paramResource(resource)
  addMiddleware(endpoints.read, paramMiddleware)
  addMiddleware(endpoints.write, paramMiddleware)
  addMiddleware(endpoints.read, authorized(permType, PermissionLevels.READ))
  addMiddleware(endpoints.write, authorized(permType, PermissionLevels.WRITE))
  addMiddleware(endpoints.write, usage)
  addToRouter(endpoints.read)
  addToRouter(endpoints.write)
}

applyRoutes(appEndpoints, PermissionTypes.APP, "appId")
applyRoutes(tableEndpoints, PermissionTypes.TABLE, "tableId")
applyRoutes(userEndpoints, PermissionTypes.USER, "userId")
applyRoutes(queryEndpoints, PermissionTypes.QUERY, "queryId")
//applyRoutes(rowEndpoints, PermissionTypes.TABLE, "tableId", "rowId")

module.exports = publicRouter
Refactoring how endpoints are specified so that the middlewares can be applied in a more generic fashion. 2022-02-23 07:40:09 +13:00			`const appEndpoints = require("./applications")`
			`const queryEndpoints = require("./queries")`
			`const tableEndpoints = require("./tables")`
			`const rowEndpoints = require("./rows")`
			`const userEndpoints = require("./users")`
Adding in public endpoint definitions. 2022-02-18 07:58:09 +13:00			`const Router = require("@koa/router")`
Getting prettier running on the public routes. 2022-02-23 06:38:27 +13:00			`const usage = require("../../../middleware/usageQuota")`
Refactoring how endpoints are specified so that the middlewares can be applied in a more generic fashion. 2022-02-23 07:40:09 +13:00			`const authorized = require("../../../middleware/authorized")`
			`const {`
			`paramResource,`
			`paramSubResource,`
			`} = require("../../../middleware/resourceId")`
			`const {`
			`PermissionLevels,`
			`PermissionTypes,`
			`} = require("@budibase/backend-core/permissions")`
Adding in public endpoint definitions. 2022-02-18 07:58:09 +13:00
			`const PREFIX = "/api/public/v1"`

Refactoring how endpoints are specified so that the middlewares can be applied in a more generic fashion. 2022-02-23 07:40:09 +13:00			`const publicRouter = new Router({`
Adding in public endpoint definitions. 2022-02-18 07:58:09 +13:00			`prefix: PREFIX,`
			`})`
Refactoring how endpoints are specified so that the middlewares can be applied in a more generic fashion. 2022-02-23 07:40:09 +13:00
			`function addMiddleware(endpoints, middleware) {`
			`for (let endpoint of endpoints) {`
			`endpoint.addMiddleware(middleware)`
			`}`
			`}`

			`function addToRouter(endpoints) {`
			`for (let endpoint of endpoints) {`
			`endpoint.apply(publicRouter)`
			`}`
Adding in public endpoint definitions. 2022-02-18 07:58:09 +13:00			`}`

Refactoring how endpoints are specified so that the middlewares can be applied in a more generic fashion. 2022-02-23 07:40:09 +13:00			`function applyRoutes(endpoints, permType, resource, subResource = null) {`
			`const paramMiddleware = subResource`
			`? paramSubResource(resource, subResource)`
			`: paramResource(resource)`
			`addMiddleware(endpoints.read, paramMiddleware)`
			`addMiddleware(endpoints.write, paramMiddleware)`
			`addMiddleware(endpoints.read, authorized(permType, PermissionLevels.READ))`
			`addMiddleware(endpoints.write, authorized(permType, PermissionLevels.WRITE))`
			`addMiddleware(endpoints.write, usage)`
			`addToRouter(endpoints.read)`
			`addToRouter(endpoints.write)`
			`}`

			`applyRoutes(appEndpoints, PermissionTypes.APP, "appId")`
			`applyRoutes(tableEndpoints, PermissionTypes.TABLE, "tableId")`
			`applyRoutes(userEndpoints, PermissionTypes.USER, "userId")`
			`applyRoutes(queryEndpoints, PermissionTypes.QUERY, "queryId")`
Adding controllers for row, query and applications public APIs. 2022-02-24 07:31:32 +13:00			`//applyRoutes(rowEndpoints, PermissionTypes.TABLE, "tableId", "rowId")`
Refactoring how endpoints are specified so that the middlewares can be applied in a more generic fashion. 2022-02-23 07:40:09 +13:00
			`module.exports = publicRouter`