budibase/packages/server/src/utilities/workerRequests.ts

import fetch from "node-fetch"
import env from "../environment"
import { checkSlashesInUrl } from "./index"
import {
  db as dbCore,
  constants,
  tenancy,
  logging,
} from "@budibase/backend-core"
import { updateAppRole } from "./global"
import { BBContext, User } from "@budibase/types"

export function request(ctx?: BBContext, request?: any) {
  if (!request.headers) {
    request.headers = {}
  }
  if (!ctx) {
    request.headers[constants.Header.API_KEY] = env.INTERNAL_API_KEY
    if (tenancy.isTenantIdSet()) {
      request.headers[constants.Header.TENANT_ID] = tenancy.getTenantId()
    }
  }
  if (request.body && Object.keys(request.body).length > 0) {
    request.headers["Content-Type"] = "application/json"
    request.body =
      typeof request.body === "object"
        ? JSON.stringify(request.body)
        : request.body
  } else {
    delete request.body
  }
  if (ctx && ctx.headers) {
    request.headers = ctx.headers
  }

  // add x-budibase-correlation-id header
  logging.correlation.setHeader(request.headers)

  return request
}

async function checkResponse(
  response: any,
  errorMsg: string,
  { ctx }: { ctx?: BBContext } = {}
) {
  if (response.status !== 200) {
    let error
    try {
      error = await response.json()
    } catch (err) {
      error = await response.text()
    }
    const msg = `Unable to ${errorMsg} - ${
      error.message ? error.message : error
    }`
    if (ctx) {
      ctx.throw(400, msg)
    } else {
      throw msg
    }
  }
  return response.json()
}

// have to pass in the tenant ID as this could be coming from an automation
export async function sendSmtpEmail(
  to: string,
  from: string,
  subject: string,
  contents: string,
  cc: string,
  bcc: string,
  automation: boolean
) {
  // tenant ID will be set in header
  const response = await fetch(
    checkSlashesInUrl(env.WORKER_URL + `/api/global/email/send`),
    request(undefined, {
      method: "POST",
      body: {
        email: to,
        from,
        contents,
        subject,
        cc,
        bcc,
        purpose: "custom",
        automation,
      },
    })
  )
  return checkResponse(response, "send email")
}

export async function getGlobalSelf(ctx: BBContext, appId?: string) {
  const endpoint = `/api/global/self`
  const response = await fetch(
    checkSlashesInUrl(env.WORKER_URL + endpoint),
    // we don't want to use API key when getting self
    request(ctx, { method: "GET" })
  )
  let json = await checkResponse(response, "get self globally", { ctx })
  if (appId) {
    json = updateAppRole(json)
  }
  return json
}

export async function removeAppFromUserRoles(ctx: BBContext, appId: string) {
  const prodAppId = dbCore.getProdAppID(appId)
  const response = await fetch(
    checkSlashesInUrl(env.WORKER_URL + `/api/global/roles/${prodAppId}`),
    request(ctx, {
      method: "DELETE",
    })
  )
  return checkResponse(response, "remove app role")
}

export async function allGlobalUsers(ctx: BBContext) {
  const response = await fetch(
    checkSlashesInUrl(env.WORKER_URL + "/api/global/users"),
    // we don't want to use API key when getting self
    request(ctx, { method: "GET" })
  )
  return checkResponse(response, "get users", { ctx })
}

export async function saveGlobalUser(ctx: BBContext) {
  const response = await fetch(
    checkSlashesInUrl(env.WORKER_URL + "/api/global/users"),
    // we don't want to use API key when getting self
    request(ctx, { method: "POST", body: ctx.request.body })
  )
  return checkResponse(response, "save user", { ctx })
}

export async function deleteGlobalUser(ctx: BBContext) {
  const response = await fetch(
    checkSlashesInUrl(
      env.WORKER_URL + `/api/global/users/${ctx.params.userId}`
    ),
    // we don't want to use API key when getting self
    request(ctx, { method: "DELETE" })
  )
  return checkResponse(response, "delete user", { ctx })
}

export async function readGlobalUser(ctx: BBContext): Promise<User> {
  const response = await fetch(
    checkSlashesInUrl(
      env.WORKER_URL + `/api/global/users/${ctx.params.userId}`
    ),
    // we don't want to use API key when getting self
    request(ctx, { method: "GET" })
  )
  return checkResponse(response, "get user", { ctx })
}

export async function createAdminUser(
  email: string,
  password: string,
  tenantId: string
) {
  const response = await fetch(
    checkSlashesInUrl(env.WORKER_URL + "/api/global/users/init"),
    request(undefined, { method: "POST", body: { email, password, tenantId } })
  )
  return checkResponse(response, "create admin user")
}

export async function getChecklist() {
  const response = await fetch(
    checkSlashesInUrl(env.WORKER_URL + "/api/global/configs/checklist"),
    request(undefined, { method: "GET" })
  )
  return checkResponse(response, "get checklist")
}

export async function generateApiKey(userId: string) {
  const response = await fetch(
    checkSlashesInUrl(env.WORKER_URL + "/api/global/self/api_key"),
    request(undefined, { method: "POST", body: { userId } })
  )
  return checkResponse(response, "generate API key")
}
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`import fetch from "node-fetch"`
			`import env from "../environment"`
			`import { checkSlashesInUrl } from "./index"`
Correlation id's and log context (#7232) * Correlation id's and log context * fix build * Remove redundant fields from LoggingProcessor.ts * Only log correlation id when present e.g. this is not present on startup / shutdown / automations 2023-01-12 09:39:33 +13:00			`import {`
			`db as dbCore,`
			`constants,`
			`tenancy,`
			`logging,`
			`} from "@budibase/backend-core"`
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`import { updateAppRole } from "./global"`
Fix for #7732 - as well as some tests for it, make sure that it is working as expected. 2022-12-07 06:20:26 +13:00			`import { BBContext, User } from "@budibase/types"`
Global users now working through the server, all requests proxied. 2021-04-10 02:11:49 +12:00
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export function request(ctx?: BBContext, request?: any) {`
Global users now working through the server, all requests proxied. 2021-04-10 02:11:49 +12:00			`if (!request.headers) {`
			`request.headers = {}`
			`}`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 20:59:08 +12:00			`if (!ctx) {`
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`request.headers[constants.Header.API_KEY] = env.INTERNAL_API_KEY`
			`if (tenancy.isTenantIdSet()) {`
			`request.headers[constants.Header.TENANT_ID] = tenancy.getTenantId()`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 20:59:08 +12:00			`}`
Fixing issue with builder not always having the correct roles to view an app - global builders are now admins in all apps. 2021-06-04 23:13:29 +12:00			`}`
Other minor fixes after doing some initial setup testing. 2021-05-11 00:18:05 +12:00			`if (request.body && Object.keys(request.body).length > 0) {`
Global users now working through the server, all requests proxied. 2021-04-10 02:11:49 +12:00			`request.headers["Content-Type"] = "application/json"`
			`request.body =`
			`typeof request.body === "object"`
			`? JSON.stringify(request.body)`
			`: request.body`
Other minor fixes after doing some initial setup testing. 2021-05-11 00:18:05 +12:00			`} else {`
			`delete request.body`
Global users now working through the server, all requests proxied. 2021-04-10 02:11:49 +12:00			`}`
Some updates, working towards supporting automation send smtp email also removing the styling template, adding to base. 2021-05-11 23:02:29 +12:00			`if (ctx && ctx.headers) {`
Adding controllers for row, query and applications public APIs. 2022-02-24 07:31:32 +13:00			`request.headers = ctx.headers`
Updating some test cases to work with new system. 2021-04-10 04:33:21 +12:00			`}`
Correlation id's and log context (#7232) * Correlation id's and log context * fix build * Remove redundant fields from LoggingProcessor.ts * Only log correlation id when present e.g. this is not present on startup / shutdown / automations 2023-01-12 09:39:33 +13:00
			`// add x-budibase-correlation-id header`
			`logging.correlation.setHeader(request.headers)`

Global users now working through the server, all requests proxied. 2021-04-10 02:11:49 +12:00			`return request`
			`}`

More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`async function checkResponse(`
			`response: any,`
			`errorMsg: string,`
			`{ ctx }: { ctx?: BBContext } = {}`
			`) {`
Users implementation added. 2022-02-26 08:00:12 +13:00			`if (response.status !== 200) {`
			`let error`
			`try {`
			`error = await response.json()`
			`} catch (err) {`
			`error = await response.text()`
			`}`
Adding test cases for user implementation with mocks. 2022-02-26 08:01:17 +13:00			const msg = `Unable to ${errorMsg} - ${
			`error.message ? error.message : error`
			}`
Users implementation added. 2022-02-26 08:00:12 +13:00			`if (ctx) {`
			`ctx.throw(400, msg)`
			`} else {`
			`throw msg`
			`}`
			`}`
			`return response.json()`
			`}`

Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 20:59:08 +12:00			`// have to pass in the tenant ID as this could be coming from an automation`
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function sendSmtpEmail(`
			`to: string,`
			`from: string,`
			`subject: string,`
			`contents: string,`
			`cc: string,`
			`bcc: string,`
Automation overhaul to Typescript, plus type updates. 2022-11-26 08:57:07 +13:00			`automation: boolean`
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`) {`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 20:59:08 +12:00			`// tenant ID will be set in header`
Some updates, working towards supporting automation send smtp email also removing the styling template, adding to base. 2021-05-11 23:02:29 +12:00			`const response = await fetch(`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 20:59:08 +12:00			checkSlashesInUrl(env.WORKER_URL + `/api/global/email/send`),
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`request(undefined, {`
Some updates, working towards supporting automation send smtp email also removing the styling template, adding to base. 2021-05-11 23:02:29 +12:00			`method: "POST",`
Updating to support SMTP email automation action, as well as some general work around from and subject which previously we'ren't fully implemented. 2021-05-12 02:08:59 +12:00			`body: {`
			`email: to,`
			`from,`
			`contents,`
			`subject,`
CC and BCC interface 2022-09-22 02:58:04 +12:00			`cc,`
			`bcc,`
Updating to support SMTP email automation action, as well as some general work around from and subject which previously we'ren't fully implemented. 2021-05-12 02:08:59 +12:00			`purpose: "custom",`
prevent SMTP fallback for automations 2021-09-28 04:28:39 +13:00			`automation,`
Updating to support SMTP email automation action, as well as some general work around from and subject which previously we'ren't fully implemented. 2021-05-12 02:08:59 +12:00			`},`
Some updates, working towards supporting automation send smtp email also removing the styling template, adding to base. 2021-05-11 23:02:29 +12:00			`})`
			`)`
Users implementation added. 2022-02-26 08:00:12 +13:00			`return checkResponse(response, "send email")`
Some updates, working towards supporting automation send smtp email also removing the styling template, adding to base. 2021-05-11 23:02:29 +12:00			`}`

More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function getGlobalSelf(ctx: BBContext, appId?: string) {`
Shifting over all of self API, deprecating old endpoints. 2022-02-15 07:11:35 +13:00			const endpoint = `/api/global/self`
Adding the ability to get all apps, with the status attached. 2021-05-20 02:09:57 +12:00			`const response = await fetch(`
			`checkSlashesInUrl(env.WORKER_URL + endpoint),`
Fixing issue with builder not always having the correct roles to view an app - global builders are now admins in all apps. 2021-06-04 23:13:29 +12:00			`// we don't want to use API key when getting self`
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 20:59:08 +12:00			`request(ctx, { method: "GET" })`
Adding the ability to get all apps, with the status attached. 2021-05-20 02:09:57 +12:00			`)`
Users implementation added. 2022-02-26 08:00:12 +13:00			`let json = await checkResponse(response, "get self globally", { ctx })`
Updating permissions to allow roles other than builder/admin to use apps properly. 2021-05-28 01:53:41 +12:00			`if (appId) {`
Main body of work, refactoring most usages. 2022-01-28 07:18:31 +13:00			`json = updateAppRole(json)`
Updating permissions to allow roles other than builder/admin to use apps properly. 2021-05-28 01:53:41 +12:00			`}`
Adding the ability to get all apps, with the status attached. 2021-05-20 02:09:57 +12:00			`return json`
			`}`

More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function removeAppFromUserRoles(ctx: BBContext, appId: string) {`
			`const prodAppId = dbCore.getProdAppID(appId)`
Fixing issue with roles not being added correctly to global users and cleaning up roles when an app is deleted. 2021-06-02 02:58:40 +12:00			`const response = await fetch(`
Review comments, renaming deployed -> prod in terms of app IDs. 2022-02-01 06:42:51 +13:00			checkSlashesInUrl(env.WORKER_URL + `/api/global/roles/${prodAppId}`),
Revert "Merge pull request #2253 from Budibase/revert-2076-feature/multi-tenants" This reverts commit 4834b765be85b95d9e102f8e7964604ea2f78a90, reversing changes made to 2456e6948340e409ff07f3712acbaec0448082bf. 2021-08-05 20:59:08 +12:00			`request(ctx, {`
Fixing issue with roles not being added correctly to global users and cleaning up roles when an app is deleted. 2021-06-02 02:58:40 +12:00			`method: "DELETE",`
			`})`
			`)`
Users implementation added. 2022-02-26 08:00:12 +13:00			`return checkResponse(response, "remove app role")`
			`}`

More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function allGlobalUsers(ctx: BBContext) {`
Users implementation added. 2022-02-26 08:00:12 +13:00			`const response = await fetch(`
			`checkSlashesInUrl(env.WORKER_URL + "/api/global/users"),`
			`// we don't want to use API key when getting self`
			`request(ctx, { method: "GET" })`
			`)`
			`return checkResponse(response, "get users", { ctx })`
			`}`

More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function saveGlobalUser(ctx: BBContext) {`
Users implementation added. 2022-02-26 08:00:12 +13:00			`const response = await fetch(`
			`checkSlashesInUrl(env.WORKER_URL + "/api/global/users"),`
			`// we don't want to use API key when getting self`
			`request(ctx, { method: "POST", body: ctx.request.body })`
			`)`
			`return checkResponse(response, "save user", { ctx })`
			`}`

More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function deleteGlobalUser(ctx: BBContext) {`
Users implementation added. 2022-02-26 08:00:12 +13:00			`const response = await fetch(`
Adding test cases for user implementation with mocks. 2022-02-26 08:01:17 +13:00			`checkSlashesInUrl(`
			env.WORKER_URL + `/api/global/users/${ctx.params.userId}`
			`),`
Users implementation added. 2022-02-26 08:00:12 +13:00			`// we don't want to use API key when getting self`
			`request(ctx, { method: "DELETE" })`
			`)`
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`return checkResponse(response, "delete user", { ctx })`
Users implementation added. 2022-02-26 08:00:12 +13:00			`}`

Fix for #7732 - as well as some tests for it, make sure that it is working as expected. 2022-12-07 06:20:26 +13:00			`export async function readGlobalUser(ctx: BBContext): Promise<User> {`
Users implementation added. 2022-02-26 08:00:12 +13:00			`const response = await fetch(`
Adding test cases for user implementation with mocks. 2022-02-26 08:01:17 +13:00			`checkSlashesInUrl(`
			env.WORKER_URL + `/api/global/users/${ctx.params.userId}`
			`),`
Users implementation added. 2022-02-26 08:00:12 +13:00			`// we don't want to use API key when getting self`
			`request(ctx, { method: "GET" })`
			`)`
			`return checkResponse(response, "get user", { ctx })`
Global users now working through the server, all requests proxied. 2021-04-10 02:11:49 +12:00			`}`
Add env vars to automatically create initial admin user on first run 2022-06-30 22:28:52 +12:00
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function createAdminUser(`
			`email: string,`
			`password: string,`
			`tenantId: string`
			`) {`
Add env vars to automatically create initial admin user on first run 2022-06-30 22:28:52 +12:00			`const response = await fetch(`
			`checkSlashesInUrl(env.WORKER_URL + "/api/global/users/init"),`
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`request(undefined, { method: "POST", body: { email, password, tenantId } })`
Add env vars to automatically create initial admin user on first run 2022-06-30 22:28:52 +12:00			`)`
			`return checkResponse(response, "create admin user")`
			`}`

More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function getChecklist() {`
Add env vars to automatically create initial admin user on first run 2022-06-30 22:28:52 +12:00			`const response = await fetch(`
			`checkSlashesInUrl(env.WORKER_URL + "/api/global/configs/checklist"),`
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`request(undefined, { method: "GET" })`
Add env vars to automatically create initial admin user on first run 2022-06-30 22:28:52 +12:00			`)`
			`return checkResponse(response, "get checklist")`
			`}`
QA Core repo, and Jest API tests running end to end 2022-09-06 05:28:53 +12:00
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`export async function generateApiKey(userId: string) {`
QA Core repo, and Jest API tests running end to end 2022-09-06 05:28:53 +12:00			`const response = await fetch(`
			`checkSlashesInUrl(env.WORKER_URL + "/api/global/self/api_key"),`
More Typescript conversion, as part of backend-core importing improvements. 2022-11-23 01:41:36 +13:00			`request(undefined, { method: "POST", body: { userId } })`
QA Core repo, and Jest API tests running end to end 2022-09-06 05:28:53 +12:00			`)`
			`return checkResponse(response, "generate API key")`
			`}`