All files / controllers attachment.js

16.48% Statements 15/91
0% Branches 0/28
4.17% Functions 1/24
16.48% Lines 15/91

Press n or j to go to the next uncovered block, b, p or k for the previous block.

1 2 3 4 5 6 7 8 9 10 11 12 13 14 15 16 17 18 19 20 21 22 23 24 25 26 27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42 43 44 45 46 47 48 49 50 51 52 53 54 55 56 57 58 59 60 61 62 63 64 65 66 67 68 69 70 71 72 73 74 75 76 77 78 79 80 81 82 83 84 85 86 87 88 89 90 91 92 93 94 95 96 97 98 99 100 101 102 103 104 105 106 107 108 109 110 111 112 113 114 115 116 117 118 119 120 121 122 123 124 125 126 127 128 129 130 131 132 133 134 135 136 137 138 139 140 141 142 143 144 145 146 147 148 149 150 151 152 153 154 155 156 157 158 159 160 161 162 163 164 165 166 167 168 169 170 171 172 173 174 175 176 177 178 179 180 181 182 183 184 185 186 187 188 189 190 191 192 193 194 195 196 197 198 199 200 201 202 203 204 205 206 207 208 209 210 211 212 213 214 215 216 217 218 219 220 221 222 223 224 22515x     15x 15x 15x 15x 15x 15x 15x 15x   15x   15x                                                                                         15x                                                           15x                                                                                                                                                                                                                             15x                                           15x    
module.exports = function(crowi, app) {
  'use strict'
 
  var debug = require('debug')('crowi:routs:attachment')
  var Attachment = crowi.model('Attachment')
  var Page = crowi.model('Page')
  var fs = require('fs')
  var fileUploader = require('../util/fileUploader')(crowi, app)
  var ApiResponse = require('../util/apiResponse')
  var actions = {}
  var api = {}
 
  actions.api = api
 
  api.redirector = function(req, res, next) {
    var id = req.params.id
 
    Attachment.findById(id)
      .then(function(data) {
        // TODO: file delivery plugin for cdn
        Attachment.findDeliveryFile(data)
          .then(fileName => {
            const encodedFileName = encodeURIComponent(data.originalName)
 
            var deliveryFile = {
              fileName: fileName,
              options: {
                headers: {
                  'Content-Type': data.fileFormat,
                  'Content-Disposition': `inline;filename*=UTF-8''${encodedFileName}`,
                },
              },
            }
 
            if (deliveryFile.fileName.match(/^\/uploads/)) {
              debug('Using loacal file module, just redirecting.')
              return res.redirect(deliveryFile.fileName)
            } else {
              return res.sendFile(deliveryFile.fileName, deliveryFile.options)
            }
          })
          .catch(err => {
            // debug('error', err);
          })
      })
      .catch(err => {
        // debug('err', err);
        // not found
        return res.status(404).sendFile(crowi.publicDir + '/images/file-not-found.png')
      })
  }
 
  /**
   * @api {get} /attachments.list Get attachments of the page
   * @apiName ListAttachments
   * @apiGroup Attachment
   *
   * @apiParam {String} page_id
   */
  api.list = function(req, res) {
    var id = req.query.page_id || null
    if (!id) {
      return res.json(ApiResponse.error('Parameters page_id is required.'))
    }
 
    Attachment.getListByPageId(id).then(function(attachments) {
      var config = crowi.getConfig()
      var baseUrl = config.crowi['app:url'] || ''
      return res.json(
        ApiResponse.success({
          attachments: attachments.map(at => {
            var fileUrl = at.fileUrl
            at = at.toObject()
            at.url = baseUrl + fileUrl
            return at
          }),
        }),
      )
    })
  }
 
  /**
   * @api {post} /attachments.add Add attachment to the page
   * @apiName AddAttachments
   * @apiGroup Attachment
   *
   * @apiParam {String} page_id
   * @apiParam {File} file
   */
  api.add = function(req, res) {
    var id = req.body.page_id || 0
    var path = decodeURIComponent(req.body.path) || null
    var pageCreated = false
    var page = {}
 
    debug('id and path are: ', id, path)
 
    var tmpFile = req.file || null
    debug('Uploaded tmpFile: ', tmpFile)
    if (!tmpFile) {
      return res.json(ApiResponse.error('File error.'))
    }
 
    new Promise(function(resolve, reject) {
      if (id == 0) {
        if (path === null) {
          throw new Error('path required if page_id is not specified.')
        }
        debug('Create page before file upload')
        Page.create(path, '# ' + path, req.user, { grant: Page.GRANT_OWNER })
          .then(function(page) {
            pageCreated = true
            resolve(page)
          })
          .catch(reject)
      } else {
        Page.findPageById(id)
          .then(resolve)
          .catch(reject)
      }
    })
      .then(function(pageData) {
        page = pageData
        id = pageData._id
 
        var tmpPath = tmpFile.path
        var originalName = tmpFile.originalname
        var fileName = tmpFile.filename + tmpFile.originalname
        var fileType = tmpFile.mimetype
        var fileSize = tmpFile.size
        var filePath = Attachment.createAttachmentFilePath(id, fileName, fileType)
        var tmpFileStream = fs.createReadStream(tmpPath, {
          flags: 'r',
          encoding: null,
          fd: null,
          mode: '0666',
          autoClose: true,
        })
 
        return fileUploader
          .uploadFile(filePath, fileType, tmpFileStream, {})
          .then(function(data) {
            debug('Uploaded data is: ', data)
 
            // TODO size
            return Attachment.create(id, req.user, filePath, originalName, fileName, fileType, fileSize)
          })
          .then(function(data) {
            var fileUrl = data.fileUrl
            var config = crowi.getConfig()
 
            // isLocalUrl??
            if (!fileUrl.match(/^https?/)) {
              fileUrl = (config.crowi['app:url'] || '') + fileUrl
            }
 
            var result = {
              page: page.toObject(),
              attachment: data.toObject(),
              url: fileUrl,
              pageCreated: pageCreated,
            }
 
            // delete anyway
            fs.unlink(tmpPath, function(err) {
              if (err) {
                debug('Error while deleting tmp file.')
              }
            })
 
            return res.json(ApiResponse.success(result))
          })
          .catch(function(err) {
            debug('Error on saving attachment data', err)
            // @TODO
            // Remove from S3
 
            // delete anyway
            fs.unlink(tmpPath, function(err) {
              if (err) {
                debug('Error while deleting tmp file.')
              }
            })
 
            return res.json(ApiResponse.error('Error while uploading.'))
          })
      })
      .catch(function(err) {
        debug('Attachement upload error', err)
        return res.json(ApiResponse.error('Error.'))
      })
  }
 
  /**
   * @api {post} /attachments.remove Remove attachments
   * @apiName RemoveAttachments
   * @apiGroup Attachment
   *
   * @apiParam {String} attachment_id
   */
  api.remove = function(req, res) {
    const id = req.body.attachment_id
 
    Attachment.findById(id)
      .then(function(data) {
        const attachment = data
 
        Attachment.removeAttachment(attachment)
          .then(data => {
            debug('removeAttachment', data)
            return res.json(ApiResponse.success({}))
          })
          .catch(err => {
            return res.status(500).json(ApiResponse.error('Error while deleting file'))
          })
      })
      .catch(err => {
        debug('Error', err)
        return res.status(404)
      })
  }
 
  return actions
}