Joplin
/
joplin
mirror of https://github.com/laurent22/joplin.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
joplin/ReactNativeClient/lib/WebDavApi.js

337 lines
12 KiB
JavaScript
Raw Blame History

const { Logger } = require("lib/logger.js");
const { shim } = require("lib/shim.js");
const parseXmlString = require("xml2js").parseString;
const JoplinError = require("lib/JoplinError");
const URL = require("url-parse");
const { rtrimSlashes, ltrimSlashes } = require("lib/path-utils.js");
const base64 = require("base-64");
// Note that the d: namespace (the DAV namespace) is specific to Nextcloud. The RFC for example uses "D:" however
// we make all the tags and attributes lowercase so we handle both the Nextcloud style and RFC. Hopefully other
// implementations use the same namespaces. If not, extra processing can be done in `nameProcessor`, for
// example to convert a custom namespace to "d:" so that it can be used by the rest of the code.
// In general, we should only deal with things in "d:", which is the standard DAV namespace.
class WebDavApi {
constructor(options) {
this.logger_ = new Logger();
this.options_ = options;
}
setLogger(l) {
this.logger_ = l;
}
logger() {
return this.logger_;
}
authToken() {
if (!this.options_.username() || !this.options_.password()) return null;
try {
// Note: Non-ASCII passwords will throw an error about Latin1 characters - https://github.com/laurent22/joplin/issues/246
// Tried various things like the below, but it didn't work on React Native:
//return base64.encode(utf8.encode(this.options_.username() + ':' + this.options_.password()));
return base64.encode(this.options_.username() + ":" + this.options_.password());
} catch (error) {
error.message = "Cannot encode username/password: " + error.message;
throw error;
}
}
baseUrl() {
return this.options_.baseUrl();
}
relativeBaseUrl() {
const url = new URL(this.baseUrl());
return url.pathname + url.query;
}
async xmlToJson(xml) {
let davNamespaces = []; // Yes, there can be more than one... xmlns:a="DAV:" xmlns:D="DAV:"
const nameProcessor = name => {
if (name.indexOf("xmlns:") !== 0) {
// Check if the current name is within the DAV namespace. If it is, normalise it
// by moving it to the "d:" namespace, which is what all the functions are using.
const p = name.split(":");
if (p.length == 2) {
const ns = p[0];
if (davNamespaces.indexOf(ns) >= 0) {
name = "d:" + p[1];
}
}
}
return name.toLowerCase();
};
const attrValueProcessor = (value, name) => {
if (value.toLowerCase() === "dav:") {
const p = name.split(":");
davNamespaces.push(p[p.length - 1]);
}
};
const options = {
tagNameProcessors: [nameProcessor],
attrNameProcessors: [nameProcessor],
attrValueProcessors: [attrValueProcessor],
};
return new Promise((resolve, reject) => {
parseXmlString(xml, options, (error, result) => {
if (error) {
resolve(null); // Error handled by caller which will display the XML text (or plain text) if null is returned from this function
return;
}
resolve(result);
});
});
}
valueFromJson(json, keys, type) {
let output = json;
for (let i = 0; i < keys.length; i++) {
const key = keys[i];
// console.info(key, typeof key, typeof output, typeof output === 'object' && (key in output), Array.isArray(output));
if (typeof key === "number" && !Array.isArray(output)) return null;
if (typeof key === "string" && (typeof output !== "object" || !(key in output))) return null;
output = output[key];
}
if (type === "string") {
// If the XML has not attribute the value is directly a string
// If the XML node has attributes, the value is under "_".
// Eg for this XML, the string will be under {"_":"Thu, 01 Feb 2018 17:24:05 GMT"}:
// <a:getlastmodified b:dt="dateTime.rfc1123">Thu, 01 Feb 2018 17:24:05 GMT</a:getlastmodified>
// For this XML, the value will be "Thu, 01 Feb 2018 17:24:05 GMT"
// <a:getlastmodified>Thu, 01 Feb 2018 17:24:05 GMT</a:getlastmodified>
if (typeof output === "object" && "_" in output) output = output["_"];
if (typeof output !== "string") return null;
return output;
}
if (type === "object") {
if (!Array.isArray(output) && typeof output === "object") return output;
return null;
}
if (type === "array") {
return Array.isArray(output) ? output : null;
}
return null;
}
stringFromJson(json, keys) {
return this.valueFromJson(json, keys, "string");
}
objectFromJson(json, keys) {
return this.valueFromJson(json, keys, "object");
}
arrayFromJson(json, keys) {
return this.valueFromJson(json, keys, "array");
}
resourcePropByName(resource, outputType, propName) {
const propStats = resource["d:propstat"];
let output = null;
if (!Array.isArray(propStats)) throw new Error("Missing d:propstat property");
for (let i = 0; i < propStats.length; i++) {
const props = propStats[i]["d:prop"];
if (!Array.isArray(props) || !props.length) continue;
const prop = props[0];
if (Array.isArray(prop[propName])) {
output = prop[propName];
break;
}
}
if (outputType === "string") {
// If the XML has not attribute the value is directly a string
// If the XML node has attributes, the value is under "_".
// Eg for this XML, the string will be under {"_":"Thu, 01 Feb 2018 17:24:05 GMT"}:
// <a:getlastmodified b:dt="dateTime.rfc1123">Thu, 01 Feb 2018 17:24:05 GMT</a:getlastmodified>
// For this XML, the value will be "Thu, 01 Feb 2018 17:24:05 GMT"
// <a:getlastmodified>Thu, 01 Feb 2018 17:24:05 GMT</a:getlastmodified>
output = output[0];
if (typeof output === "object" && "_" in output) output = output["_"];
if (typeof output !== "string") return null;
return output;
}
if (outputType === "array") {
return output;
}
throw new Error("Invalid output type: " + outputType);
}
async execPropFind(path, depth, fields = null, options = null) {
if (fields === null) fields = ["d:getlastmodified"];
let fieldsXml = "";
for (let i = 0; i < fields.length; i++) {
fieldsXml += "<" + fields[i] + "/>";
}
// To find all available properties:
//
// const body=`<?xml version="1.0" encoding="utf-8" ?>
// <propfind xmlns="DAV:">
// <propname/>
// </propfind>`;
const body =
`<?xml version="1.0" encoding="UTF-8"?>
<d:propfind xmlns:d="DAV:">
<d:prop xmlns:oc="http://owncloud.org/ns">
` +
fieldsXml +
`
</d:prop>
</d:propfind>`;
return this.exec("PROPFIND", path, body, { Depth: depth }, options);
}
requestToCurl_(url, options) {
let output = [];
output.push("curl");
if (options.method) output.push("-X " + options.method);
if (options.headers) {
for (let n in options.headers) {
if (!options.headers.hasOwnProperty(n)) continue;
output.push("-H " + '"' + n + ": " + options.headers[n] + '"');
}
}
if (options.body) output.push("--data " + "'" + options.body + "'");
output.push(url);
return output.join(" ");
}
// curl -u admin:123456 'http://nextcloud.local/remote.php/dav/files/admin/' -X PROPFIND --data '<?xml version="1.0" encoding="UTF-8"?>
// <d:propfind xmlns:d="DAV:">
// <d:prop xmlns:oc="http://owncloud.org/ns">
// <d:getlastmodified/>
// </d:prop>
// </d:propfind>'
async exec(method, path = "", body = null, headers = null, options = null) {
if (headers === null) headers = {};
if (options === null) options = {};
if (!options.responseFormat) options.responseFormat = "json";
if (!options.target) options.target = "string";
const authToken = this.authToken();
if (authToken) headers["Authorization"] = "Basic " + authToken;
// On iOS, the network lib appends a If-None-Match header to PROPFIND calls, which is kind of correct because
// the call is idempotent and thus could be cached. According to RFC-7232 though only GET and HEAD should have
// this header for caching purposes. It makes no mention of PROPFIND.
// So possibly because of this, Seafile (and maybe other WebDAV implementations) responds with a "412 Precondition Failed"
// error when this header is present for PROPFIND call on existing resources. This is also kind of correct because there is a resource
// with this eTag and since this is neither a GET nor HEAD call, it is supposed to respond with 412 if the resource is present.
// The "solution", an ugly one, is to send a purposely invalid string as eTag, which will bypass the If-None-Match check - Seafile
// finds out that no resource has this ID and simply sends the requested data.
// Also add a random value to make sure the eTag is unique for each call.
if (["GET", "HEAD"].indexOf(method) < 0) headers["If-None-Match"] = "JoplinIgnore-" + Math.floor(Math.random() * 100000);
const fetchOptions = {};
fetchOptions.headers = headers;
fetchOptions.method = method;
if (options.path) fetchOptions.path = options.path;
if (body) fetchOptions.body = body;
const url = this.baseUrl() + "/" + path;
let response = null;
// console.info('WebDAV Call', method + ' ' + url, headers, options);
// console.info(this.requestToCurl_(url, fetchOptions));
if (options.source == "file" && (method == "POST" || method == "PUT")) {
if (fetchOptions.path) {
const fileStat = await shim.fsDriver().stat(fetchOptions.path);
if (fileStat) fetchOptions.headers["Content-Length"] = fileStat.size + "";
}
response = await shim.uploadBlob(url, fetchOptions);
} else if (options.target == "string") {
if (typeof body === "string") fetchOptions.headers["Content-Length"] = shim.stringByteLength(body) + "";
response = await shim.fetch(url, fetchOptions);
} else {
// file
response = await shim.fetchBlob(url, fetchOptions);
}
const responseText = await response.text();
// console.info('WebDAV Response', responseText);
// Creates an error object with as much data as possible as it will appear in the log, which will make debugging easier
const newError = (message, code = 0) => {
// Gives a shorter response for error messages. Useful for cases where a full HTML page is accidentally loaded instead of
// JSON. That way the error message will still show there's a problem but without filling up the log or screen.
const shortResponseText = (responseText + "").substr(0, 1024);
return new JoplinError(method + " " + path + ": " + message + " (" + code + "): " + shortResponseText, code);
};
let responseJson_ = null;
const loadResponseJson = async () => {
if (!responseText) return null;
if (responseJson_) return responseJson_;
responseJson_ = await this.xmlToJson(responseText);
if (!responseJson_) throw newError("Cannot parse XML response", response.status);
return responseJson_;
};
if (!response.ok) {
// When using fetchBlob we only get a string (not xml or json) back
if (options.target === "file") throw newError("fetchBlob error", response.status);
let json = null;
try {
json = await loadResponseJson();
} catch (error) {
// Just send back the plain text in newErro()
}
if (json && json["d:error"]) {
const code = json["d:error"]["s:exception"] ? json["d:error"]["s:exception"].join(" ") : response.status;
const message = json["d:error"]["s:message"] ? json["d:error"]["s:message"].join("\n") : "Unknown error 1";
throw newError(message + " (Exception " + code + ")", response.status);
}
throw newError("Unknown error 2", response.status);
}
if (options.responseFormat === "text") return responseText;
// The following methods may have a response depending on the server but it's not
// standard (some return a plain string, other XML, etc.) and we don't check the
// response anyway since we rely on the HTTP status code so return null.
if (["MKCOL", "DELETE", "PUT", "MOVE"].indexOf(method) >= 0) return null;
const output = await loadResponseJson();
// Check that we didn't get for example an HTML page (as an error) instead of the JSON response
// null responses are possible, for example for DELETE calls
if (output !== null && typeof output === "object" && !("d:multistatus" in output)) throw newError("Not a valid WebDAV response");
return output;
}
}
module.exports = WebDavApi;
Reference in New Issue View Git Blame Copy Permalink