import { contextPath } from "./urls"; import { createBackendError, ForbiddenError, isBackendError, UnauthorizedError } from "./errors"; import { BackendErrorContent } from "./errors"; const extractXsrfTokenFromJwt = (jwt: string) => { const parts = jwt.split("."); if (parts.length === 3) { return JSON.parse(atob(parts[1])).xsrf; } }; // @VisibleForTesting export const extractXsrfTokenFromCookie = (cookieString?: string) => { if (cookieString) { const cookies = cookieString.split(";"); for (const c of cookies) { const parts = c.trim().split("="); if (parts[0] === "X-Bearer-Token") { return extractXsrfTokenFromJwt(parts[1]); } } } }; const extractXsrfToken = () => { return extractXsrfTokenFromCookie(document.cookie); }; const applyFetchOptions: (p: RequestInit) => RequestInit = o => { const headers: { [key: string]: string } = { Cache: "no-cache", // identify the request as ajax request "X-Requested-With": "XMLHttpRequest", // identify the web interface "X-SCM-Client": "WUI" }; const xsrf = extractXsrfToken(); if (xsrf) { headers["X-XSRF-Token"] = xsrf; } o.credentials = "same-origin"; o.headers = headers; return o; }; function handleFailure(response: Response) { if (!response.ok) { if (isBackendError(response)) { return response.json().then((content: BackendErrorContent) => { throw createBackendError(content, response.status); }); } else { if (response.status === 401) { throw new UnauthorizedError("Unauthorized", 401); } else if (response.status === 403) { throw new ForbiddenError("Forbidden", 403); } throw new Error("server returned status code " + response.status); } } return response; } export function createUrl(url: string) { if (url.includes("://")) { return url; } let urlWithStartingSlash = url; if (url.indexOf("/") !== 0) { urlWithStartingSlash = "/" + urlWithStartingSlash; } return `${contextPath}/api/v2${urlWithStartingSlash}`; } class ApiClient { get(url: string): Promise { return fetch(createUrl(url), applyFetchOptions({})).then(handleFailure); } post(url: string, payload?: any, contentType = "application/json") { return this.httpRequestWithJSONBody("POST", url, contentType, payload); } postBinary(url: string, fileAppender: (p: FormData) => void) { const formData = new FormData(); fileAppender(formData); const options: RequestInit = { method: "POST", body: formData }; return this.httpRequestWithBinaryBody(options, url); } put(url: string, payload: any, contentType = "application/json") { return this.httpRequestWithJSONBody("PUT", url, contentType, payload); } head(url: string) { let options: RequestInit = { method: "HEAD" }; options = applyFetchOptions(options); return fetch(createUrl(url), options).then(handleFailure); } delete(url: string): Promise { let options: RequestInit = { method: "DELETE" }; options = applyFetchOptions(options); return fetch(createUrl(url), options).then(handleFailure); } httpRequestWithJSONBody(method: string, url: string, contentType: string, payload?: any): Promise { const options: RequestInit = { method: method }; if (payload) { options.body = JSON.stringify(payload); } return this.httpRequestWithBinaryBody(options, url, contentType); } httpRequestWithBinaryBody(options: RequestInit, url: string, contentType?: string) { options = applyFetchOptions(options); if (contentType) { if (!options.headers) { options.headers = new Headers(); } // @ts-ignore options.headers["Content-Type"] = contentType; } return fetch(createUrl(url), options).then(handleFailure); } } export const apiClient = new ApiClient();