mirror of
https://github.com/scm-manager/scm-manager.git
synced 2025-12-23 00:39:47 +01:00
f1b34eb502
* prepare license-maven-plugin for license migration * added license mapping for tsx files and added some more excludes * Changeover to MIT license * Fix build problems * Delete old remaining licenses * Add more exclude path for license checker * Rename included netbeans license, add exclude .m2/repository/ * Specify .m2 exclude because not only repository/, also wrapper/ must match * Add .cache/ exclude for license check * Modify formatting of license in java classes to comply with convention and IDE * Add IntelliJ documentation for license configuration * Update CHANGELOG.md * Exclude tmp/workspace/ dir for license check * Edit README.md Co-authored-by: Sebastian Sdorra <sebastian.sdorra@cloudogu.com>
277 lines
7.9 KiB
TypeScript
277 lines
7.9 KiB
TypeScript
/*
|
|
* MIT License
|
|
*
|
|
* Copyright (c) 2020-present Cloudogu GmbH and Contributors
|
|
*
|
|
* Permission is hereby granted, free of charge, to any person obtaining a copy
|
|
* of this software and associated documentation files (the "Software"), to deal
|
|
* in the Software without restriction, including without limitation the rights
|
|
* to use, copy, modify, merge, publish, distribute, sublicense, and/or sell
|
|
* copies of the Software, and to permit persons to whom the Software is
|
|
* furnished to do so, subject to the following conditions:
|
|
*
|
|
* The above copyright notice and this permission notice shall be included in all
|
|
* copies or substantial portions of the Software.
|
|
*
|
|
* THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR
|
|
* IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY,
|
|
* FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE
|
|
* AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER
|
|
* LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM,
|
|
* OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE
|
|
* SOFTWARE.
|
|
*/
|
|
|
|
import { contextPath } from "./urls";
|
|
import { createBackendError, ForbiddenError, isBackendError, UnauthorizedError, BackendErrorContent } from "./errors";
|
|
|
|
type SubscriptionEvent = {
|
|
type: string;
|
|
};
|
|
|
|
type OpenEvent = SubscriptionEvent;
|
|
|
|
type ErrorEvent = SubscriptionEvent & {
|
|
error: Error;
|
|
};
|
|
|
|
type MessageEvent = SubscriptionEvent & {
|
|
data: string;
|
|
lastEventId?: string;
|
|
};
|
|
|
|
type MessageListeners = {
|
|
[eventType: string]: (event: MessageEvent) => void;
|
|
};
|
|
|
|
type SubscriptionContext = {
|
|
onOpen?: OpenEvent;
|
|
onMessage: MessageListeners;
|
|
onError?: ErrorEvent;
|
|
};
|
|
|
|
type SubscriptionArgument = MessageListeners | SubscriptionContext;
|
|
|
|
type Cancel = () => void;
|
|
|
|
const sessionId = (
|
|
Date.now().toString(36) +
|
|
Math.random()
|
|
.toString(36)
|
|
.substr(2, 5)
|
|
).toUpperCase();
|
|
|
|
const extractXsrfTokenFromJwt = (jwt: string) => {
|
|
const parts = jwt.split(".");
|
|
if (parts.length === 3) {
|
|
return JSON.parse(atob(parts[1])).xsrf;
|
|
}
|
|
};
|
|
|
|
// @VisibleForTesting
|
|
export const extractXsrfTokenFromCookie = (cookieString?: string) => {
|
|
if (cookieString) {
|
|
const cookies = cookieString.split(";");
|
|
for (const c of cookies) {
|
|
const parts = c.trim().split("=");
|
|
if (parts[0] === "X-Bearer-Token") {
|
|
return extractXsrfTokenFromJwt(parts[1]);
|
|
}
|
|
}
|
|
}
|
|
};
|
|
|
|
const extractXsrfToken = () => {
|
|
return extractXsrfTokenFromCookie(document.cookie);
|
|
};
|
|
|
|
const createRequestHeaders = () => {
|
|
const headers: { [key: string]: string } = {
|
|
// disable caching for now
|
|
Cache: "no-cache",
|
|
// identify the request as ajax request
|
|
"X-Requested-With": "XMLHttpRequest",
|
|
// identify the web interface
|
|
"X-SCM-Client": "WUI",
|
|
// identify the window session
|
|
"X-SCM-Session-ID": sessionId
|
|
};
|
|
|
|
const xsrf = extractXsrfToken();
|
|
if (xsrf) {
|
|
headers["X-XSRF-Token"] = xsrf;
|
|
}
|
|
return headers;
|
|
};
|
|
|
|
const applyFetchOptions: (p: RequestInit) => RequestInit = o => {
|
|
if (o.headers) {
|
|
o.headers = {
|
|
...createRequestHeaders()
|
|
};
|
|
} else {
|
|
o.headers = createRequestHeaders();
|
|
}
|
|
o.credentials = "same-origin";
|
|
return o;
|
|
};
|
|
|
|
function handleFailure(response: Response) {
|
|
if (!response.ok) {
|
|
if (isBackendError(response)) {
|
|
return response.json().then((content: BackendErrorContent) => {
|
|
throw createBackendError(content, response.status);
|
|
});
|
|
} else {
|
|
if (response.status === 401) {
|
|
throw new UnauthorizedError("Unauthorized", 401);
|
|
} else if (response.status === 403) {
|
|
throw new ForbiddenError("Forbidden", 403);
|
|
}
|
|
|
|
throw new Error("server returned status code " + response.status);
|
|
}
|
|
}
|
|
return response;
|
|
}
|
|
|
|
export function createUrl(url: string) {
|
|
if (url.includes("://")) {
|
|
return url;
|
|
}
|
|
let urlWithStartingSlash = url;
|
|
if (url.indexOf("/") !== 0) {
|
|
urlWithStartingSlash = "/" + urlWithStartingSlash;
|
|
}
|
|
return `${contextPath}/api/v2${urlWithStartingSlash}`;
|
|
}
|
|
|
|
export function createUrlWithIdentifiers(url: string): string {
|
|
return createUrl(url) + "?X-SCM-Client=WUI&X-SCM-Session-ID=" + sessionId;
|
|
}
|
|
|
|
class ApiClient {
|
|
get(url: string): Promise<Response> {
|
|
return fetch(createUrl(url), applyFetchOptions({})).then(handleFailure);
|
|
}
|
|
|
|
post(url: string, payload?: any, contentType = "application/json", additionalHeaders: Record<string, string> = {}) {
|
|
return this.httpRequestWithJSONBody("POST", url, contentType, additionalHeaders, payload);
|
|
}
|
|
|
|
postText(url: string, payload: string, additionalHeaders: Record<string, string> = {}) {
|
|
return this.httpRequestWithTextBody("POST", url, additionalHeaders, payload);
|
|
}
|
|
|
|
putText(url: string, payload: string, additionalHeaders: Record<string, string> = {}) {
|
|
return this.httpRequestWithTextBody("PUT", url, additionalHeaders, payload);
|
|
}
|
|
|
|
postBinary(url: string, fileAppender: (p: FormData) => void, additionalHeaders: Record<string, string> = {}) {
|
|
const formData = new FormData();
|
|
fileAppender(formData);
|
|
|
|
const options: RequestInit = {
|
|
method: "POST",
|
|
body: formData,
|
|
headers: additionalHeaders
|
|
};
|
|
return this.httpRequestWithBinaryBody(options, url);
|
|
}
|
|
|
|
put(url: string, payload: any, contentType = "application/json", additionalHeaders: Record<string, string> = {}) {
|
|
return this.httpRequestWithJSONBody("PUT", url, contentType, additionalHeaders, payload);
|
|
}
|
|
|
|
head(url: string) {
|
|
let options: RequestInit = {
|
|
method: "HEAD"
|
|
};
|
|
options = applyFetchOptions(options);
|
|
return fetch(createUrl(url), options).then(handleFailure);
|
|
}
|
|
|
|
delete(url: string): Promise<Response> {
|
|
let options: RequestInit = {
|
|
method: "DELETE"
|
|
};
|
|
options = applyFetchOptions(options);
|
|
return fetch(createUrl(url), options).then(handleFailure);
|
|
}
|
|
|
|
httpRequestWithJSONBody(
|
|
method: string,
|
|
url: string,
|
|
contentType: string,
|
|
additionalHeaders: Record<string, string>,
|
|
payload?: any
|
|
): Promise<Response> {
|
|
const options: RequestInit = {
|
|
method: method,
|
|
headers: additionalHeaders
|
|
};
|
|
if (payload) {
|
|
options.body = JSON.stringify(payload);
|
|
}
|
|
return this.httpRequestWithBinaryBody(options, url, contentType);
|
|
}
|
|
|
|
httpRequestWithTextBody(
|
|
method: string,
|
|
url: string,
|
|
additionalHeaders: Record<string, string> = {},
|
|
payload: string
|
|
) {
|
|
const options: RequestInit = {
|
|
method: method,
|
|
headers: additionalHeaders
|
|
};
|
|
options.body = payload;
|
|
return this.httpRequestWithBinaryBody(options, url, "text/plain");
|
|
}
|
|
|
|
httpRequestWithBinaryBody(options: RequestInit, url: string, contentType?: string) {
|
|
options = applyFetchOptions(options);
|
|
if (contentType) {
|
|
if (!options.headers) {
|
|
options.headers = {};
|
|
}
|
|
// @ts-ignore We are sure that here we only get headers of type {[name:string]: string}
|
|
options.headers["Content-Type"] = contentType;
|
|
}
|
|
|
|
return fetch(createUrl(url), options).then(handleFailure);
|
|
}
|
|
|
|
subscribe(url: string, argument: SubscriptionArgument): Cancel {
|
|
const es = new EventSource(createUrlWithIdentifiers(url), {
|
|
withCredentials: true
|
|
});
|
|
|
|
let listeners: MessageListeners;
|
|
// type guard, to identify that argument is of type SubscriptionContext
|
|
if ("onMessage" in argument) {
|
|
listeners = (argument as SubscriptionContext).onMessage;
|
|
if (argument.onError) {
|
|
// @ts-ignore typing of EventSource is weird
|
|
es.onerror = argument.onError;
|
|
}
|
|
if (argument.onOpen) {
|
|
// @ts-ignore typing of EventSource is weird
|
|
es.onopen = argument.onOpen;
|
|
}
|
|
} else {
|
|
listeners = argument;
|
|
}
|
|
|
|
for (const type in listeners) {
|
|
// @ts-ignore typing of EventSource is weird
|
|
es.addEventListener(type, listeners[type]);
|
|
}
|
|
|
|
return () => es.close();
|
|
}
|
|
}
|
|
|
|
export const apiClient = new ApiClient();
|