routes/api/script.js

"use strict";

const express = require('express');
const router = express.Router();
const auth = require('../../services/auth');
const wrap = require('express-promise-wrap').wrap;
const log = require('../../services/log');
const sql = require('../../services/sql');
const notes = require('../../services/notes');
const protected_session = require('../../services/protected_session');

router.post('/exec', auth.checkApiAuth, wrap(async (req, res, next) => {
    log.info('Executing script: ' + req.body.script);

    const ret = await eval("(" + req.body.script + ")()");

    log.info('Execution result: ' + ret);

    res.send(ret);
}));

router.get('/subtree/:noteId', auth.checkApiAuth, wrap(async (req, res, next) => {
    const noteId = req.params.noteId;

    const noteScript = (await notes.getNoteById(noteId, req)).note_text;

    const subTreeScripts = await getSubTreeScripts(noteId, [noteId], req);

    res.send(subTreeScripts + noteScript);
}));

async function getSubTreeScripts(parentId, includedNoteIds, dataKey) {
    const children = await sql.getAll(`SELECT notes.note_id, notes.note_title, notes.note_text, notes.is_protected 
                                     FROM notes JOIN notes_tree USING(note_id)
                                     WHERE notes_tree.is_deleted = 0 AND notes.is_deleted = 0
                                           AND notes_tree.parent_note_id = ? AND notes.type = 'code'
                                           AND (notes.mime = 'application/javascript' OR notes.mime = 'text/html')`, [parentId]);

    protected_session.decryptNotes(dataKey, children);

    let script = "\r\n";

    for (const child of children) {
        if (includedNoteIds.includes(child.note_id)) {
            return;
        }

        includedNoteIds.push(child.note_id);

        script += await getSubTreeScripts(child.note_id, includedNoteIds, dataKey);

        script += child.note_text + "\r\n";
    }

    return script;
}

module.exports = router;
support for execution of async functions + integration with backend through server.exec() 2018-01-23 21:59:30 -05:00			`"use strict";`

			`const express = require('express');`
			`const router = express.Router();`
			`const auth = require('../../services/auth');`
			`const wrap = require('express-promise-wrap').wrap;`
			`const log = require('../../services/log');`
support of including JS subnotes when executing 2018-01-23 22:53:27 -05:00			`const sql = require('../../services/sql');`
refactoring of script subtree execution 2018-01-25 23:22:19 -05:00			`const notes = require('../../services/notes');`
support of including JS subnotes when executing 2018-01-23 22:53:27 -05:00			`const protected_session = require('../../services/protected_session');`
support for execution of async functions + integration with backend through server.exec() 2018-01-23 21:59:30 -05:00
			`router.post('/exec', auth.checkApiAuth, wrap(async (req, res, next) => {`
			`log.info('Executing script: ' + req.body.script);`

			`const ret = await eval("(" + req.body.script + ")()");`

			`log.info('Execution result: ' + ret);`

			`res.send(ret);`
			`}));`

support of including JS subnotes when executing 2018-01-23 22:53:27 -05:00			`router.get('/subtree/:noteId', auth.checkApiAuth, wrap(async (req, res, next) => {`
			`const noteId = req.params.noteId;`

refactoring of script subtree execution 2018-01-25 23:22:19 -05:00			`const noteScript = (await notes.getNoteById(noteId, req)).note_text;`

			`const subTreeScripts = await getSubTreeScripts(noteId, [noteId], req);`

			`res.send(subTreeScripts + noteScript);`
support of including JS subnotes when executing 2018-01-23 22:53:27 -05:00			`}));`

			`async function getSubTreeScripts(parentId, includedNoteIds, dataKey) {`
refactoring / unification of note encryption / decryption 2018-01-24 22:13:41 -05:00			const children = await sql.getAll(`SELECT notes.note_id, notes.note_title, notes.note_text, notes.is_protected
support of including JS subnotes when executing 2018-01-23 22:53:27 -05:00			`FROM notes JOIN notes_tree USING(note_id)`
			`WHERE notes_tree.is_deleted = 0 AND notes.is_deleted = 0`
			`AND notes_tree.parent_note_id = ? AND notes.type = 'code'`
new note type: render HTML note 2018-01-23 23:41:22 -05:00			AND (notes.mime = 'application/javascript' OR notes.mime = 'text/html')`, [parentId]);
support of including JS subnotes when executing 2018-01-23 22:53:27 -05:00
refactoring / unification of note encryption / decryption 2018-01-24 22:13:41 -05:00			`protected_session.decryptNotes(dataKey, children);`

support of including JS subnotes when executing 2018-01-23 22:53:27 -05:00			`let script = "\r\n";`

refactoring / unification of note encryption / decryption 2018-01-24 22:13:41 -05:00			`for (const child of children) {`
support of including JS subnotes when executing 2018-01-23 22:53:27 -05:00			`if (includedNoteIds.includes(child.note_id)) {`
			`return;`
			`}`

			`includedNoteIds.push(child.note_id);`

			`script += await getSubTreeScripts(child.note_id, includedNoteIds, dataKey);`

			`script += child.note_text + "\r\n";`
			`}`

			`return script;`
			`}`

support for execution of async functions + integration with backend through server.exec() 2018-01-23 21:59:30 -05:00			`module.exports = router;`