Home Explore Help
Register Sign In
sbakhtina
/
SQL
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 11527f89a7
Branches Tags
SQL
/
node_modules
/
@apollographql
/
graphql-upload-8-fork
/
lib
/
processRequest.mjs

processRequest.mjs 7.9 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286 
  1. import util from 'util'
    2. 

  2. import Busboy from 'busboy'
    3. 

  3. import { WriteStream } from 'fs-capacitor'
    4. 

  4. import createError from 'http-errors'
    5. 

  5. import objectPath from 'object-path'
    6. 

  6. import { SPEC_URL } from './constants'
    7. 

  7. import { ignoreStream } from './ignoreStream'
    8. 

  8. import { isEnumerableObject } from './isEnumerableObject'
    9. 

  9. 

  10. class Upload {
    11. 

  11.   constructor() {
    12. 

  12.     this.promise = new Promise((resolve, reject) => {
    13. 

  13.       this.resolve = file => {
    14. 

  14.         this.file = file
    15. 

  15.         resolve(file)
    16. 

  16.       }
    17. 

  17. 

  18.       this.reject = reject
    19. 

  19.     })
    20. 

  20.     this.promise.catch(() => {})
    21. 

  21.   }
    22. 

  22. }
    23. 

  23. 

  24. export const processRequest = (
    25. 

  25.   request,
    26. 

  26.   response,
    27. 

  27.   { maxFieldSize = 1000000, maxFileSize = Infinity, maxFiles = Infinity } = {}
    28. 

  28. ) =>
    29. 

  29.   new Promise((resolve, reject) => {
    30. 

  30.     let released
    31. 

  31.     let exitError
    32. 

  32.     let currentStream
    33. 

  33.     let operations
    34. 

  34.     let operationsPath
    35. 

  35.     let map
    36. 

  36.     const parser = new Busboy({
    37. 

  37.       headers: request.headers,
    38. 

  38.       limits: {
    39. 

  39.         fieldSize: maxFieldSize,
    40. 

  40.         fields: 2,
    41. 

  41.         fileSize: maxFileSize,
    42. 

  42.         files: maxFiles
    43. 

  43.       }
    44. 

  44.     })
    45. 

  45. 

  46.     const exit = error => {
    47. 

  47.       if (exitError) return
    48. 

  48.       exitError = error
    49. 

  49.       reject(exitError)
    50. 

  50.       parser.destroy()
    51. 

  51.       if (currentStream) currentStream.destroy(exitError)
    52. 

  52.       if (map)
    53. 

  53.         for (const upload of map.values())
    54. 

  54.           if (!upload.file) upload.reject(exitError)
    55. 

  55.       request.unpipe(parser)
    56. 

  56.       setImmediate(() => {
    57. 

  57.         request.resume()
    58. 

  58.       })
    59. 

  59.     }
    60. 

  60. 

  61.     const release = () => {
    62. 

  62.       // istanbul ignore next
    63. 

  63.       if (released) return
    64. 

  64.       released = true
    65. 

  65.       if (map)
    66. 

  66.         for (const upload of map.values())
    67. 

  67.           if (upload.file) upload.file.capacitor.destroy()
    68. 

  68.     }
    69. 

  69. 

  70.     const abort = () => {
    71. 

  71.       exit(
    72. 

  72.         createError(
    73. 

  73.           499,
    74. 

  74.           'Request disconnected during file upload stream parsing.'
    75. 

  75.         )
    76. 

  76.       )
    77. 

  77.     }
    78. 

  78. 

  79.     parser.on(
    80. 

  80.       'field',
    81. 

  81.       (fieldName, value, fieldNameTruncated, valueTruncated) => {
    82. 

  82.         if (exitError) return
    83. 

  83.         if (valueTruncated)
    84. 

  84.           return exit(
    85. 

  85.             createError(
    86. 

  86.               413,
    87. 

  87.               `The ‘${fieldName}’ multipart field value exceeds the ${maxFieldSize} byte size limit.`
    88. 

  88.             )
    89. 

  89.           )
    90. 

  90. 

  91.         switch (fieldName) {
    92. 

  92.           case 'operations':
    93. 

  93.             try {
    94. 

  94.               operations = JSON.parse(value)
    95. 

  95.             } catch (error) {
    96. 

  96.               return exit(
    97. 

  97.                 createError(
    98. 

  98.                   400,
    99. 

  99.                   `Invalid JSON in the ‘operations’ multipart field (${SPEC_URL}).`
    100. 

  100.                 )
    101. 

  101.               )
    102. 

  102.             }
    103. 

  103. 

  104.             if (!isEnumerableObject(operations) && !Array.isArray(operations))
    105. 

  105.               return exit(
    106. 

  106.                 createError(
    107. 

  107.                   400,
    108. 

  108.                   `Invalid type for the ‘operations’ multipart field (${SPEC_URL}).`
    109. 

  109.                 )
    110. 

  110.               )
    111. 

  111.             operationsPath = objectPath(operations)
    112. 

  112.             break
    113. 

  113. 

  114.           case 'map': {
    115. 

  115.             if (!operations)
    116. 

  116.               return exit(
    117. 

  117.                 createError(
    118. 

  118.                   400,
    119. 

  119.                   `Misordered multipart fields; ‘map’ should follow ‘operations’ (${SPEC_URL}).`
    120. 

  120.                 )
    121. 

  121.               )
    122. 

  122.             let parsedMap
    123. 

  123. 

  124.             try {
    125. 

  125.               parsedMap = JSON.parse(value)
    126. 

  126.             } catch (error) {
    127. 

  127.               return exit(
    128. 

  128.                 createError(
    129. 

  129.                   400,
    130. 

  130.                   `Invalid JSON in the ‘map’ multipart field (${SPEC_URL}).`
    131. 

  131.                 )
    132. 

  132.               )
    133. 

  133.             }
    134. 

  134. 

  135.             if (!isEnumerableObject(parsedMap))
    136. 

  136.               return exit(
    137. 

  137.                 createError(
    138. 

  138.                   400,
    139. 

  139.                   `Invalid type for the ‘map’ multipart field (${SPEC_URL}).`
    140. 

  140.                 )
    141. 

  141.               )
    142. 

  142.             const mapEntries = Object.entries(parsedMap)
    143. 

  143.             if (mapEntries.length > maxFiles)
    144. 

  144.               return exit(
    145. 

  145.                 createError(413, `${maxFiles} max file uploads exceeded.`)
    146. 

  146.               )
    147. 

  147.             map = new Map()
    148. 

  148. 

  149.             for (const [fieldName, paths] of mapEntries) {
    150. 

  150.               if (!Array.isArray(paths))
    151. 

  151.                 return exit(
    152. 

  152.                   createError(
    153. 

  153.                     400,
    154. 

  154.                     `Invalid type for the ‘map’ multipart field entry key ‘${fieldName}’ array (${SPEC_URL}).`
    155. 

  155.                   )
    156. 

  156.                 )
    157. 

  157.               map.set(fieldName, new Upload())
    158. 

  158. 

  159.               for (const [index, path] of paths.entries()) {
    160. 

  160.                 if (typeof path !== 'string')
    161. 

  161.                   return exit(
    162. 

  162.                     createError(
    163. 

  163.                       400,
    164. 

  164.                       `Invalid type for the ‘map’ multipart field entry key ‘${fieldName}’ array index ‘${index}’ value (${SPEC_URL}).`
    165. 

  165.                     )
    166. 

  166.                   )
    167. 

  167. 

  168.                 try {
    169. 

  169.                   operationsPath.set(path, map.get(fieldName).promise)
    170. 

  170.                 } catch (error) {
    171. 

  171.                   return exit(
    172. 

  172.                     createError(
    173. 

  173.                       400,
    174. 

  174.                       `Invalid object path for the ‘map’ multipart field entry key ‘${fieldName}’ array index ‘${index}’ value ‘${path}’ (${SPEC_URL}).`
    175. 

  175.                     )
    176. 

  176.                   )
    177. 

  177.                 }
    178. 

  178.               }
    179. 

  179.             }
    180. 

  180. 

  181.             resolve(operations)
    182. 

  182.           }
    183. 

  183.         }
    184. 

  184.       }
    185. 

  185.     )
    186. 

  186.     parser.on('file', (fieldName, stream, filename, encoding, mimetype) => {
    187. 

  187.       if (exitError) {
    188. 

  188.         ignoreStream(stream)
    189. 

  189.         return
    190. 

  190.       }
    191. 

  191. 

  192.       if (!map) {
    193. 

  193.         ignoreStream(stream)
    194. 

  194.         return exit(
    195. 

  195.           createError(
    196. 

  196.             400,
    197. 

  197.             `Misordered multipart fields; files should follow ‘map’ (${SPEC_URL}).`
    198. 

  198.           )
    199. 

  199.         )
    200. 

  200.       }
    201. 

  201. 

  202.       currentStream = stream
    203. 

  203.       stream.on('end', () => {
    204. 

  204.         currentStream = null
    205. 

  205.       })
    206. 

  206.       const upload = map.get(fieldName)
    207. 

  207. 

  208.       if (!upload) {
    209. 

  209.         ignoreStream(stream)
    210. 

  210.         return
    211. 

  211.       }
    212. 

  212. 

  213.       const capacitor = new WriteStream()
    214. 

  214.       capacitor.on('error', () => {
    215. 

  215.         stream.unpipe()
    216. 

  216.         stream.resume()
    217. 

  217.       })
    218. 

  218.       stream.on('limit', () => {
    219. 

  219.         stream.unpipe()
    220. 

  220.         capacitor.destroy(
    221. 

  221.           createError(
    222. 

  222.             413,
    223. 

  223.             `File truncated as it exceeds the ${maxFileSize} byte size limit.`
    224. 

  224.           )
    225. 

  225.         )
    226. 

  226.       })
    227. 

  227.       stream.on('error', error => {
    228. 

  228.         stream.unpipe() // istanbul ignore next
    229. 

  229. 

  230.         capacitor.destroy(exitError || error)
    231. 

  231.       })
    232. 

  232.       stream.pipe(capacitor)
    233. 

  233.       const file = {
    234. 

  234.         filename,
    235. 

  235.         mimetype,
    236. 

  236.         encoding,
    237. 

  237. 

  238.         createReadStream() {
    239. 

  239.           const error = capacitor.error || (released ? exitError : null)
    240. 

  240.           if (error) throw error
    241. 

  241.           return capacitor.createReadStream()
    242. 

  242.         }
    243. 

  243.       }
    244. 

  244.       let capacitorStream
    245. 

  245.       Object.defineProperty(file, 'stream', {
    246. 

  246.         get: util.deprecate(function() {
    247. 

  247.           if (!capacitorStream) capacitorStream = this.createReadStream()
    248. 

  248.           return capacitorStream
    249. 

  249.         }, 'File upload property ‘stream’ is deprecated. Use ‘createReadStream()’ instead.')
    250. 

  250.       })
    251. 

  251.       Object.defineProperty(file, 'capacitor', {
    252. 

  252.         value: capacitor
    253. 

  253.       })
    254. 

  254.       upload.resolve(file)
    255. 

  255.     })
    256. 

  256.     parser.once('filesLimit', () =>
    257. 

  257.       exit(createError(413, `${maxFiles} max file uploads exceeded.`))
    258. 

  258.     )
    259. 

  259.     parser.once('finish', () => {
    260. 

  260.       request.unpipe(parser)
    261. 

  261.       request.resume()
    262. 

  262.       if (!operations)
    263. 

  263.         return exit(
    264. 

  264.           createError(
    265. 

  265.             400,
    266. 

  266.             `Missing multipart field ‘operations’ (${SPEC_URL}).`
    267. 

  267.           )
    268. 

  268.         )
    269. 

  269.       if (!map)
    270. 

  270.         return exit(
    271. 

  271.           createError(400, `Missing multipart field ‘map’ (${SPEC_URL}).`)
    272. 

  272.         )
    273. 

  273. 

  274.       for (const upload of map.values())
    275. 

  275.         if (!upload.file)
    276. 

  276.           upload.reject(createError(400, 'File missing in the request.'))
    277. 

  277.     })
    278. 

  278.     parser.once('error', exit)
    279. 

  279.     response.once('finish', release)
    280. 

  280.     response.once('close', release)
    281. 

  281.     request.once('close', abort)
    282. 

  282.     request.once('end', () => {
    283. 

  283.       request.removeListener('close', abort)
    284. 

  284.     })
    285. 

  285.     request.pipe(parser)
    286. 

  286.   })
    287.