peertube/server/helpers/express-utils.ts

import express, { RequestHandler } from 'express'
import multer, { diskStorage } from 'multer'
import { getLowercaseExtension } from '@shared/core-utils'
import { CONFIG } from '../initializers/config'
import { REMOTE_SCHEME } from '../initializers/constants'
import { isArray } from './custom-validators/misc'
import { logger } from './logger'
import { deleteFileAndCatch, generateRandomString } from './utils'
import { getExtFromMimetype } from './video'

function buildNSFWFilter (res?: express.Response, paramNSFW?: string) {
  if (paramNSFW === 'true') return true
  if (paramNSFW === 'false') return false
  if (paramNSFW === 'both') return undefined

  if (res?.locals.oauth) {
    const user = res.locals.oauth.token.User

    // User does not want NSFW videos
    if (user.nsfwPolicy === 'do_not_list') return false

    // Both
    return undefined
  }

  if (CONFIG.INSTANCE.DEFAULT_NSFW_POLICY === 'do_not_list') return false

  // Display all
  return null
}

function cleanUpReqFiles (req: express.Request) {
  const filesObject = req.files
  if (!filesObject) return

  if (isArray(filesObject)) {
    filesObject.forEach(f => deleteFileAndCatch(f.path))
    return
  }

  for (const key of Object.keys(filesObject)) {
    const files = filesObject[key]

    files.forEach(f => deleteFileAndCatch(f.path))
  }
}

function getHostWithPort (host: string) {
  const splitted = host.split(':')

  // The port was not specified
  if (splitted.length === 1) {
    if (REMOTE_SCHEME.HTTP === 'https') return host + ':443'

    return host + ':80'
  }

  return host
}

function createReqFiles (
  fieldNames: string[],
  mimeTypes: { [id: string]: string | string[] },
  destination = CONFIG.STORAGE.TMP_DIR
): RequestHandler {
  const storage = diskStorage({
    destination: (req, file, cb) => {
      cb(null, destination)
    },

    filename: (req, file, cb) => {
      return generateReqFilename(file, mimeTypes, cb)
    }
  })

  const fields: { name: string, maxCount: number }[] = []
  for (const fieldName of fieldNames) {
    fields.push({
      name: fieldName,
      maxCount: 1
    })
  }

  return multer({ storage }).fields(fields)
}

function createAnyReqFiles (
  mimeTypes: { [id: string]: string | string[] },
  fileFilter: (req: express.Request, file: Express.Multer.File, cb: (err: Error, result: boolean) => void) => void
): RequestHandler {
  const storage = diskStorage({
    destination: (req, file, cb) => {
      cb(null, CONFIG.STORAGE.TMP_DIR)
    },

    filename: (req, file, cb) => {
      return generateReqFilename(file, mimeTypes, cb)
    }
  })

  return multer({ storage, fileFilter }).any()
}

function isUserAbleToSearchRemoteURI (res: express.Response) {
  const user = res.locals.oauth ? res.locals.oauth.token.User : undefined

  return CONFIG.SEARCH.REMOTE_URI.ANONYMOUS === true ||
    (CONFIG.SEARCH.REMOTE_URI.USERS === true && user !== undefined)
}

function getCountVideos (req: express.Request) {
  return req.query.skipCount !== true
}

// ---------------------------------------------------------------------------

export {
  buildNSFWFilter,
  getHostWithPort,
  createAnyReqFiles,
  isUserAbleToSearchRemoteURI,
  createReqFiles,
  cleanUpReqFiles,
  getCountVideos
}

// ---------------------------------------------------------------------------

async function generateReqFilename (
  file: Express.Multer.File,
  mimeTypes: { [id: string]: string | string[] },
  cb: (err: Error, name: string) => void
) {
  let extension: string
  const fileExtension = getLowercaseExtension(file.originalname)
  const extensionFromMimetype = getExtFromMimetype(mimeTypes, file.mimetype)

  // Take the file extension if we don't understand the mime type
  if (!extensionFromMimetype) {
    extension = fileExtension
  } else {
    // Take the first available extension for this mimetype
    extension = extensionFromMimetype
  }

  let randomString = ''

  try {
    randomString = await generateRandomString(16)
  } catch (err) {
    logger.error('Cannot generate random string for file name.', { err })
    randomString = 'fake-random-string'
  }

  cb(null, randomString + extension)
}
chore(refactor): remove shared folder dependencies to the server Many files from the `shared` folder were importing files from the `server` folder. When attempting to use Typescript project references to describe dependencies, it highlighted a circular dependency beetween `shared` <-> `server`. The Typescript project forbid such usages. Using project references greatly improve performance by rebuilding only the updated project and not all source files. > see https://www.typescriptlang.org/docs/handbook/project-references.html 2021-11-02 18:11:20 +00:00			`import express, { RequestHandler } from 'express'`
esModuleInterop to true 2021-08-27 12:32:44 +00:00			`import multer, { diskStorage } from 'multer'`
Add basic video editor support 2022-02-11 09:51:33 +00:00			`import { getLowercaseExtension } from '@shared/core-utils'`
Refactor a little bit controllers 2021-05-12 12:51:17 +00:00			`import { CONFIG } from '../initializers/config'`
Don't expose constants directly in initializers/ 2019-04-11 12:26:41 +00:00			`import { REMOTE_SCHEME } from '../initializers/constants'`
Refactor a little bit controllers 2021-05-12 12:51:17 +00:00			`import { isArray } from './custom-validators/misc'`
Add account view 2018-04-24 13:10:54 +00:00			`import { logger } from './logger'`
Resumable video uploads (#3933) * WIP: resumable video uploads relates to #324 * fix review comments * video upload: error handling * fix audio upload * fixes after self review * Update server/controllers/api/videos/index.ts Co-authored-by: Rigel Kent <par@rigelk.eu> * Update server/middlewares/validators/videos/videos.ts Co-authored-by: Rigel Kent <par@rigelk.eu> * Update server/controllers/api/videos/index.ts Co-authored-by: Rigel Kent <par@rigelk.eu> * update after code review * refactor upload route - restore multipart upload route - move resumable to dedicated upload-resumable route - move checks to middleware - do not leak internal fs structure in response * fix yarn.lock upon rebase * factorize addVideo for reuse in both endpoints * add resumable upload API to openapi spec * add initial test and test helper for resumable upload * typings for videoAddResumable middleware * avoid including aws and google packages via node-uploadx, by only including uploadx/core * rename ex-isAudioBg to more explicit name mentioning it is a preview file for audio * add video-upload-tmp-folder-cleaner job * stronger typing of video upload middleware * reduce dependency to @uploadx/core * add audio upload test * refactor resumable uploads cleanup from job to scheduler * refactor resumable uploads scheduler to compare to last execution time * make resumable upload validator to always cleanup on failure * move legacy upload request building outside of uploadVideo test helper * filter upload-resumable middlewares down to POST, PUT, DELETE also begin to type metadata * merge add duration functions * stronger typings and documentation for uploadx behaviour, move init validator up * refactor(client/video-edit): options > uploadxOptions * refactor(client/video-edit): remove obsolete else * scheduler/remove-dangling-resum: rename tag * refactor(server/video): add UploadVideoFiles type * refactor(mw/validators): restructure eslint disable * refactor(mw/validators/videos): rename import * refactor(client/vid-upload): rename html elem id * refactor(sched/remove-dangl): move fn to method * refactor(mw/async): add method typing * refactor(mw/vali/video): double quote > single * refactor(server/upload-resum): express use > all * proper http methud enum server/middlewares/async.ts * properly type http methods * factorize common video upload validation steps * add check for maximum partially uploaded file size * fix audioBg use * fix extname(filename) in addVideo * document parameters for uploadx's resumable protocol * clear META files in scheduler * last audio refactor before cramming preview in the initial POST form data * refactor as mulitpart/form-data initial post request this allows preview/thumbnail uploads alongside the initial request, and cleans up the upload form * Add more tests for resumable uploads * Refactor remove dangling resumable uploads * Prepare changelog * Add more resumable upload tests * Remove user quota check for resumable uploads * Fix upload error handler * Update nginx template for upload-resumable * Cleanup comment * Remove unused express methods * Prefer to use got instead of raw http * Don't retry on error 500 Co-authored-by: Rigel Kent <par@rigelk.eu> Co-authored-by: Rigel Kent <sendmemail@rigelk.eu> Co-authored-by: Chocobozzz <me@florianbigard.com> 2021-05-10 09:13:41 +00:00			`import { deleteFileAndCatch, generateRandomString } from './utils'`
Refactor video extensions logic in server 2020-08-10 12:25:29 +00:00			`import { getExtFromMimetype } from './video'`
Add account view 2018-04-24 13:10:54 +00:00
Add sitemap 2018-12-05 16:27:24 +00:00			`function buildNSFWFilter (res?: express.Response, paramNSFW?: string) {`
Add advanced search in client 2018-07-20 16:31:49 +00:00			`if (paramNSFW === 'true') return true`
			`if (paramNSFW === 'false') return false`
			`if (paramNSFW === 'both') return undefined`
Add videos list filters 2018-07-20 12:35:18 +00:00
Move to eslint 2020-01-31 15:56:52 +00:00			`if (res?.locals.oauth) {`
Cleanup express locals typings 2019-03-19 09:35:15 +00:00			`const user = res.locals.oauth.token.User`
Fix nsfw filter 2018-09-04 09:19:19 +00:00
Add videos list filters 2018-07-20 12:35:18 +00:00			`// User does not want NSFW videos`
Fix nsfw filter 2018-09-04 09:19:19 +00:00			`if (user.nsfwPolicy === 'do_not_list') return false`

			`// Both`
			`return undefined`
Add account view 2018-04-24 13:10:54 +00:00			`}`

Add videos list filters 2018-07-20 12:35:18 +00:00			`if (CONFIG.INSTANCE.DEFAULT_NSFW_POLICY === 'do_not_list') return false`

			`// Display all`
			`return null`
Add account view 2018-04-24 13:10:54 +00:00			`}`

Upgrade server dependencies 2021-06-25 15:39:27 +00:00			`function cleanUpReqFiles (req: express.Request) {`
Refactor a little bit controllers 2021-05-12 12:51:17 +00:00			`const filesObject = req.files`
			`if (!filesObject) return`
Cleanup utils helper 2018-08-14 13:28:30 +00:00
Refactor a little bit controllers 2021-05-12 12:51:17 +00:00			`if (isArray(filesObject)) {`
			`filesObject.forEach(f => deleteFileAndCatch(f.path))`
Cleanup utils helper 2018-08-14 13:28:30 +00:00			`return`
			`}`

Refactor a little bit controllers 2021-05-12 12:51:17 +00:00			`for (const key of Object.keys(filesObject)) {`
			`const files = filesObject[key]`
Cleanup utils helper 2018-08-14 13:28:30 +00:00
Refactor a little bit controllers 2021-05-12 12:51:17 +00:00			`files.forEach(f => deleteFileAndCatch(f.path))`
Cleanup utils helper 2018-08-14 13:28:30 +00:00			`}`
			`}`

Add account view 2018-04-24 13:10:54 +00:00			`function getHostWithPort (host: string) {`
			`const splitted = host.split(':')`

			`// The port was not specified`
			`if (splitted.length === 1) {`
			`if (REMOTE_SCHEME.HTTP === 'https') return host + ':443'`

			`return host + ':80'`
			`}`

			`return host`
			`}`

			`function createReqFiles (`
			`fieldNames: string[],`
Refactor video extensions logic in server 2020-08-10 12:25:29 +00:00			`mimeTypes: { [id: string]: string \| string[] },`
Refactor user build and express file middlewares 2022-03-04 09:57:36 +00:00			`destination = CONFIG.STORAGE.TMP_DIR`
chore(refactor): remove shared folder dependencies to the server Many files from the `shared` folder were importing files from the `server` folder. When attempting to use Typescript project references to describe dependencies, it highlighted a circular dependency beetween `shared` <-> `server`. The Typescript project forbid such usages. Using project references greatly improve performance by rebuilding only the updated project and not all source files. > see https://www.typescriptlang.org/docs/handbook/project-references.html 2021-11-02 18:11:20 +00:00			`): RequestHandler {`
esModuleInterop to true 2021-08-27 12:32:44 +00:00			`const storage = diskStorage({`
Add account view 2018-04-24 13:10:54 +00:00			`destination: (req, file, cb) => {`
Refactor user build and express file middlewares 2022-03-04 09:57:36 +00:00			`cb(null, destination)`
Add account view 2018-04-24 13:10:54 +00:00			`},`

Add basic video editor support 2022-02-11 09:51:33 +00:00			`filename: (req, file, cb) => {`
			`return generateReqFilename(file, mimeTypes, cb)`
Add account view 2018-04-24 13:10:54 +00:00			`}`
			`})`

Move to eslint 2020-01-31 15:56:52 +00:00			`const fields: { name: string, maxCount: number }[] = []`
Add account view 2018-04-24 13:10:54 +00:00			`for (const fieldName of fieldNames) {`
			`fields.push({`
			`name: fieldName,`
			`maxCount: 1`
			`})`
			`}`

			`return multer({ storage }).fields(fields)`
			`}`

Add basic video editor support 2022-02-11 09:51:33 +00:00			`function createAnyReqFiles (`
			`mimeTypes: { [id: string]: string \| string[] },`
			`fileFilter: (req: express.Request, file: Express.Multer.File, cb: (err: Error, result: boolean) => void) => void`
			`): RequestHandler {`
			`const storage = diskStorage({`
			`destination: (req, file, cb) => {`
Refactor user build and express file middlewares 2022-03-04 09:57:36 +00:00			`cb(null, CONFIG.STORAGE.TMP_DIR)`
Add basic video editor support 2022-02-11 09:51:33 +00:00			`},`

			`filename: (req, file, cb) => {`
			`return generateReqFilename(file, mimeTypes, cb)`
			`}`
			`})`

			`return multer({ storage, fileFilter }).any()`
			`}`

Fetch outbox when searching an actor 2018-08-24 13:36:50 +00:00			`function isUserAbleToSearchRemoteURI (res: express.Response) {`
Cleanup express locals typings 2019-03-19 09:35:15 +00:00			`const user = res.locals.oauth ? res.locals.oauth.token.User : undefined`
Fetch outbox when searching an actor 2018-08-24 13:36:50 +00:00
			`return CONFIG.SEARCH.REMOTE_URI.ANONYMOUS === true \|\|`
			`(CONFIG.SEARCH.REMOTE_URI.USERS === true && user !== undefined)`
			`}`

Add ability to skip count query 2020-01-08 13:15:16 +00:00			`function getCountVideos (req: express.Request) {`
			`return req.query.skipCount !== true`
			`}`

Add account view 2018-04-24 13:10:54 +00:00			`// ---------------------------------------------------------------------------`

			`export {`
Add videos list filters 2018-07-20 12:35:18 +00:00			`buildNSFWFilter,`
Add account view 2018-04-24 13:10:54 +00:00			`getHostWithPort,`
Add basic video editor support 2022-02-11 09:51:33 +00:00			`createAnyReqFiles,`
Fetch outbox when searching an actor 2018-08-24 13:36:50 +00:00			`isUserAbleToSearchRemoteURI,`
Cleanup utils helper 2018-08-14 13:28:30 +00:00			`createReqFiles,`
Add ability to skip count query 2020-01-08 13:15:16 +00:00			`cleanUpReqFiles,`
Refactor server errors handler 2021-06-02 16:15:41 +00:00			`getCountVideos`
Add account view 2018-04-24 13:10:54 +00:00			`}`
Add basic video editor support 2022-02-11 09:51:33 +00:00
			`// ---------------------------------------------------------------------------`

			`async function generateReqFilename (`
			`file: Express.Multer.File,`
			`mimeTypes: { [id: string]: string \| string[] },`
			`cb: (err: Error, name: string) => void`
			`) {`
			`let extension: string`
			`const fileExtension = getLowercaseExtension(file.originalname)`
			`const extensionFromMimetype = getExtFromMimetype(mimeTypes, file.mimetype)`

			`// Take the file extension if we don't understand the mime type`
			`if (!extensionFromMimetype) {`
			`extension = fileExtension`
			`} else {`
			`// Take the first available extension for this mimetype`
			`extension = extensionFromMimetype`
			`}`

			`let randomString = ''`

			`try {`
			`randomString = await generateRandomString(16)`
			`} catch (err) {`
			`logger.error('Cannot generate random string for file name.', { err })`
			`randomString = 'fake-random-string'`
			`}`

			`cb(null, randomString + extension)`
			`}`