mirror of
https://github.com/hedgedoc/hedgedoc.git
synced 2024-12-28 22:22:30 +00:00
d76ea5440a
As it turns out, expressjs doesn't detect the right mimetype and it seems like I didn't bother to test this enough. So lets fix it for the next release. Signed-off-by: Sheogorath <sheogorath@shivering-isles.com>
109 lines
2.8 KiB
JavaScript
109 lines
2.8 KiB
JavaScript
'use strict'
|
|
|
|
const Router = require('express').Router
|
|
|
|
const response = require('../response')
|
|
const realtime = require('../realtime')
|
|
const config = require('../config')
|
|
const models = require('../models')
|
|
const logger = require('../logger')
|
|
|
|
const {urlencodedParser} = require('./utils')
|
|
|
|
const statusRouter = module.exports = Router()
|
|
|
|
// get status
|
|
statusRouter.get('/status', function (req, res, next) {
|
|
realtime.getStatus(function (data) {
|
|
res.set({
|
|
'Cache-Control': 'private', // only cache by client
|
|
'X-Robots-Tag': 'noindex, nofollow', // prevent crawling
|
|
'Content-Type': 'application/json'
|
|
})
|
|
res.send(data)
|
|
})
|
|
})
|
|
// get status
|
|
statusRouter.get('/temp', function (req, res) {
|
|
var host = req.get('host')
|
|
if (config.allowOrigin.indexOf(host) === -1) {
|
|
response.errorForbidden(res)
|
|
} else {
|
|
var tempid = req.query.tempid
|
|
if (!tempid) {
|
|
response.errorForbidden(res)
|
|
} else {
|
|
models.Temp.findOne({
|
|
where: {
|
|
id: tempid
|
|
}
|
|
}).then(function (temp) {
|
|
if (!temp) {
|
|
response.errorNotFound(res)
|
|
} else {
|
|
res.header('Access-Control-Allow-Origin', '*')
|
|
res.send({
|
|
temp: temp.data
|
|
})
|
|
temp.destroy().catch(function (err) {
|
|
if (err) {
|
|
logger.error('remove temp failed: ' + err)
|
|
}
|
|
})
|
|
}
|
|
}).catch(function (err) {
|
|
logger.error(err)
|
|
return response.errorInternalError(res)
|
|
})
|
|
}
|
|
}
|
|
})
|
|
// post status
|
|
statusRouter.post('/temp', urlencodedParser, function (req, res) {
|
|
var host = req.get('host')
|
|
if (config.allowOrigin.indexOf(host) === -1) {
|
|
response.errorForbidden(res)
|
|
} else {
|
|
var data = req.body.data
|
|
if (!data) {
|
|
response.errorForbidden(res)
|
|
} else {
|
|
if (config.debug) {
|
|
logger.info('SERVER received temp from [' + host + ']: ' + req.body.data)
|
|
}
|
|
models.Temp.create({
|
|
data: data
|
|
}).then(function (temp) {
|
|
if (temp) {
|
|
res.header('Access-Control-Allow-Origin', '*')
|
|
res.send({
|
|
status: 'ok',
|
|
id: temp.id
|
|
})
|
|
} else {
|
|
response.errorInternalError(res)
|
|
}
|
|
}).catch(function (err) {
|
|
logger.error(err)
|
|
return response.errorInternalError(res)
|
|
})
|
|
}
|
|
}
|
|
})
|
|
|
|
statusRouter.get('/config', function (req, res) {
|
|
var data = {
|
|
domain: config.domain,
|
|
urlpath: config.urlPath,
|
|
debug: config.debug,
|
|
version: config.version,
|
|
DROPBOX_APP_KEY: config.dropbox.appKey,
|
|
allowedUploadMimeTypes: config.allowedUploadMimeTypes
|
|
}
|
|
res.set({
|
|
'Cache-Control': 'private', // only cache by client
|
|
'X-Robots-Tag': 'noindex, nofollow', // prevent crawling
|
|
'Content-Type': 'application/javascript'
|
|
})
|
|
res.render(config.constantsPath, data)
|
|
})
|