budibase/packages/worker/src/api/index.js

const Router = require("@koa/router")
const compress = require("koa-compress")
const zlib = require("zlib")
const { routes } = require("./routes")
const { buildAuthMiddleware } = require("@budibase/auth").auth

const NO_AUTH_ENDPOINTS = [
  {
    route: "/api/admin/users/first",
    method: "POST",
  },
  {
    route: "/api/admin/auth",
    method: "POST",
  },
  {
    route: "/api/admin/auth/google",
    method: "GET",
  },
  {
    route: "/api/admin/auth/google/callback",
    method: "GET",
  },
]

const router = new Router()

router
  .use(
    compress({
      threshold: 2048,
      gzip: {
        flush: zlib.constants.Z_SYNC_FLUSH,
      },
      deflate: {
        flush: zlib.constants.Z_SYNC_FLUSH,
      },
      br: false,
    })
  )
  .use("/health", ctx => (ctx.status = 200))
  .use(buildAuthMiddleware(NO_AUTH_ENDPOINTS))
  // for now no public access is allowed to worker (bar health check)
  .use((ctx, next) => {
    if (!ctx.isAuthenticated) {
      ctx.throw(403, "Unauthorized - no public worker access")
    }
    return next()
  })

// error handling middleware
router.use(async (ctx, next) => {
  try {
    await next()
  } catch (err) {
    ctx.log.error(err)
    ctx.status = err.status || err.statusCode || 500
    ctx.body = {
      message: err.message,
      status: ctx.status,
    }
  }
})

router.get("/health", ctx => (ctx.status = 200))

// authenticated routes
for (let route of routes) {
  router.use(route.routes())
  router.use(route.allowedMethods())
}

module.exports = router
Adding a deployment service which takes over from the lambdas in local operation, this may become part of the hosting portal if we ever decide to opensource that part of it. 2020-12-17 08:50:02 +13:00			`const Router = require("@koa/router")`
			`const compress = require("koa-compress")`
			`const zlib = require("zlib")`
			`const { routes } = require("./routes")`
Some re-work of the auth package, making it a bit easier to use/less likely to make a mistake. 2021-04-22 03:42:44 +12:00			`const { buildAuthMiddleware } = require("@budibase/auth").auth`

Adding auth endpoints to no auth list. 2021-04-27 02:44:28 +12:00			`const NO_AUTH_ENDPOINTS = [`
Updating auth middleware to accomodate public endpoints for the server properly and some refactoring. 2021-04-29 05:13:21 +12:00			`{`
			`route: "/api/admin/users/first",`
			`method: "POST",`
			`},`
			`{`
			`route: "/api/admin/auth",`
			`method: "POST",`
			`},`
			`{`
			`route: "/api/admin/auth/google",`
			`method: "GET",`
			`},`
			`{`
			`route: "/api/admin/auth/google/callback",`
			`method: "GET",`
			`},`
Adding auth endpoints to no auth list. 2021-04-27 02:44:28 +12:00			`]`
Adding a deployment service which takes over from the lambdas in local operation, this may become part of the hosting portal if we ever decide to opensource that part of it. 2020-12-17 08:50:02 +13:00
			`const router = new Router()`

			`router`
			`.use(`
			`compress({`
			`threshold: 2048,`
			`gzip: {`
Replacing deprecated symbols. 2021-03-30 03:06:00 +13:00			`flush: zlib.constants.Z_SYNC_FLUSH,`
Adding a deployment service which takes over from the lambdas in local operation, this may become part of the hosting portal if we ever decide to opensource that part of it. 2020-12-17 08:50:02 +13:00			`},`
			`deflate: {`
Replacing deprecated symbols. 2021-03-30 03:06:00 +13:00			`flush: zlib.constants.Z_SYNC_FLUSH,`
Adding a deployment service which takes over from the lambdas in local operation, this may become part of the hosting portal if we ever decide to opensource that part of it. 2020-12-17 08:50:02 +13:00			`},`
			`br: false,`
			`})`
			`)`
			`.use("/health", ctx => (ctx.status = 200))`
Some re-work of the auth package, making it a bit easier to use/less likely to make a mistake. 2021-04-22 03:42:44 +12:00			`.use(buildAuthMiddleware(NO_AUTH_ENDPOINTS))`
Updating test cases and some re-work of the email system. 2021-04-24 05:07:39 +12:00			`// for now no public access is allowed to worker (bar health check)`
			`.use((ctx, next) => {`
			`if (!ctx.isAuthenticated) {`
			`ctx.throw(403, "Unauthorized - no public worker access")`
			`}`
			`return next()`
			`})`
Adding a deployment service which takes over from the lambdas in local operation, this may become part of the hosting portal if we ever decide to opensource that part of it. 2020-12-17 08:50:02 +13:00
			`// error handling middleware`
			`router.use(async (ctx, next) => {`
			`try {`
			`await next()`
			`} catch (err) {`
			`ctx.log.error(err)`
			`ctx.status = err.status \|\| err.statusCode \|\| 500`
			`ctx.body = {`
			`message: err.message,`
			`status: ctx.status,`
			`}`
			`}`
			`})`

			`router.get("/health", ctx => (ctx.status = 200))`

			`// authenticated routes`
			`for (let route of routes) {`
			`router.use(route.routes())`
			`router.use(route.allowedMethods())`
			`}`

			`module.exports = router`