silverbullet/packages/server/express_server.ts

628 lines
19 KiB
TypeScript
Raw Normal View History

import express, { Express } from "express";
2022-04-27 01:04:36 +08:00
import { Manifest, SilverBulletHooks } from "@silverbulletmd/common/manifest";
2022-04-25 16:33:38 +08:00
import { EndpointHook } from "@plugos/plugos/hooks/endpoint";
2022-04-27 02:31:31 +08:00
import { readdir, readFile } from "fs/promises";
2022-04-25 16:33:38 +08:00
import { System } from "@plugos/plugos/system";
import cors from "cors";
import { DiskSpacePrimitives } from "@silverbulletmd/common/spaces/disk_space_primitives";
import path from "path";
import bodyParser from "body-parser";
2022-04-25 16:33:38 +08:00
import { EventHook } from "@plugos/plugos/hooks/event";
import spaceSyscalls from "./syscalls/space";
2022-04-25 16:33:38 +08:00
import { eventSyscalls } from "@plugos/plugos/syscalls/event";
import { ensureTable as ensureIndexTable, pageIndexSyscalls } from "./syscalls";
import knex, { Knex } from "knex";
2022-04-25 16:33:38 +08:00
import shellSyscalls from "@plugos/plugos/syscalls/shell.node";
import { NodeCronHook } from "@plugos/plugos/hooks/node_cron";
import { markdownSyscalls } from "@silverbulletmd/common/syscalls/markdown";
import { EventedSpacePrimitives } from "@silverbulletmd/common/spaces/evented_space_primitives";
import { Space } from "@silverbulletmd/common/spaces/space";
import {
createSandbox,
nodeModulesDir,
} from "@plugos/plugos/environments/node_sandbox";
2022-04-25 16:33:38 +08:00
import { jwtSyscalls } from "@plugos/plugos/syscalls/jwt";
2022-04-30 00:54:27 +08:00
import buildMarkdown from "@silverbulletmd/common/parser";
import { loadMarkdownExtensions } from "@silverbulletmd/common/markdown_ext";
2022-04-25 00:06:34 +08:00
import http, { Server } from "http";
2022-04-26 01:46:08 +08:00
import { esbuildSyscalls } from "@plugos/plugos/syscalls/esbuild";
2022-04-27 01:04:36 +08:00
import { systemSyscalls } from "./syscalls/system";
2022-04-27 02:31:31 +08:00
import { plugPrefix } from "@silverbulletmd/common/spaces/constants";
2022-03-21 22:21:34 +08:00
2022-05-09 20:59:12 +08:00
import sandboxSyscalls from "@plugos/plugos/syscalls/sandbox";
2022-08-02 18:43:39 +08:00
// @ts-ignore
2022-08-02 19:37:18 +08:00
import settingsTemplate from "bundle-text:./SETTINGS_template.md";
const globalModules: any = JSON.parse(
readFileSync(
nodeModulesDir + "/node_modules/@silverbulletmd/web/dist/global.plug.json",
"utf-8"
)
);
2022-05-13 20:36:26 +08:00
import { safeRun } from "./util";
2022-05-16 21:09:36 +08:00
import {
ensureFTSTable,
fullTextSearchSyscalls,
} from "@plugos/plugos/syscalls/fulltext.knex_sqlite";
2022-05-17 17:53:17 +08:00
import { PlugSpacePrimitives } from "./hooks/plug_space_primitives";
import { PageNamespaceHook } from "./hooks/page_namespace";
import { readFileSync } from "fs";
import fileSystemSyscalls from "@plugos/plugos/syscalls/fs.node";
import {
storeSyscalls,
ensureTable as ensureStoreTable,
} from "@plugos/plugos/syscalls/store.knex_node";
2022-08-02 18:43:39 +08:00
import { parseYamlSettings } from "@silverbulletmd/common/util";
2022-05-13 20:36:26 +08:00
2022-04-30 00:54:27 +08:00
const safeFilename = /^[a-zA-Z0-9_\-\.]+$/;
export type ServerOptions = {
port: number;
pagesPath: string;
distDir: string;
builtinPlugDir: string;
2022-06-28 20:14:15 +08:00
password?: string;
2022-04-30 00:54:27 +08:00
};
2022-03-21 22:21:34 +08:00
export class ExpressServer {
app: Express;
system: System<SilverBulletHooks>;
private space: Space;
private distDir: string;
private eventHook: EventHook;
private db: Knex<any, unknown[]>;
2022-04-25 00:06:34 +08:00
private port: number;
private server?: Server;
2022-04-27 01:04:36 +08:00
builtinPlugDir: string;
2022-06-28 20:14:15 +08:00
password?: string;
2022-08-02 18:43:39 +08:00
settings: { [key: string]: any } = {};
2022-03-21 22:21:34 +08:00
2022-04-30 00:54:27 +08:00
constructor(options: ServerOptions) {
this.port = options.port;
2022-04-25 00:06:34 +08:00
this.app = express();
2022-04-30 00:54:27 +08:00
this.builtinPlugDir = options.builtinPlugDir;
this.distDir = options.distDir;
2022-06-28 20:14:15 +08:00
this.password = options.password;
// Set up the PlugOS System
2022-04-25 00:06:34 +08:00
this.system = new System<SilverBulletHooks>("server");
2022-03-21 22:21:34 +08:00
2022-06-28 20:14:15 +08:00
// Instantiate the event bus hook
this.eventHook = new EventHook();
2022-04-25 00:06:34 +08:00
this.system.addHook(this.eventHook);
2022-06-28 20:14:15 +08:00
// And the page namespace hook
2022-05-17 17:53:17 +08:00
let namespaceHook = new PageNamespaceHook();
this.system.addHook(namespaceHook);
2022-06-28 20:14:15 +08:00
// The space
this.space = new Space(
new EventedSpacePrimitives(
2022-05-17 17:53:17 +08:00
new PlugSpacePrimitives(
new DiskSpacePrimitives(options.pagesPath),
namespaceHook
),
this.eventHook
),
true
);
2022-06-28 20:14:15 +08:00
// The database used for persistence (SQLite)
this.db = knex({
client: "better-sqlite3",
connection: {
2022-04-30 00:54:27 +08:00
filename: path.join(options.pagesPath, "data.db"),
},
useNullAsDefault: true,
});
2022-03-31 23:25:34 +08:00
2022-06-28 20:14:15 +08:00
// The cron hook
2022-04-25 00:06:34 +08:00
this.system.addHook(new NodeCronHook());
2022-03-31 23:25:34 +08:00
2022-07-11 19:50:55 +08:00
// Register syscalls available on the server side
2022-04-30 00:54:27 +08:00
this.system.registerSyscalls(
[],
pageIndexSyscalls(this.db),
storeSyscalls(this.db, "store"),
2022-05-16 21:09:36 +08:00
fullTextSearchSyscalls(this.db, "fts"),
2022-04-30 00:54:27 +08:00
spaceSyscalls(this.space),
eventSyscalls(this.eventHook),
markdownSyscalls(buildMarkdown([])),
esbuildSyscalls(),
systemSyscalls(this),
2022-05-09 20:59:12 +08:00
sandboxSyscalls(this.system),
2022-04-30 00:54:27 +08:00
jwtSyscalls()
);
2022-07-11 19:50:55 +08:00
// Danger zone
this.system.registerSyscalls(["shell"], shellSyscalls(options.pagesPath));
this.system.registerSyscalls(["fs"], fileSystemSyscalls("/"));
2022-06-28 20:14:15 +08:00
// Register the HTTP endpoint hook (with "/_/<plug-name>"" prefix, hardcoded for now)
2022-05-11 17:49:27 +08:00
this.system.addHook(new EndpointHook(this.app, "/_"));
2022-05-13 20:36:26 +08:00
this.system.on({
plugLoaded: (plug) => {
2022-06-28 20:14:15 +08:00
// Automatically inject some modules into each plug
2022-05-13 20:36:26 +08:00
safeRun(async () => {
for (let [modName, code] of Object.entries(
globalModules.dependencies
)) {
await plug.sandbox.loadDependency(modName, code as string);
2022-05-13 20:36:26 +08:00
}
});
},
});
2022-06-28 20:14:15 +08:00
// Hook into some "get-plug:" to allow loading plugs from disk (security of this TBD)
// First, for builtins (loaded from the packages/plugs/ folder)
2022-04-27 01:04:36 +08:00
this.eventHook.addLocalListener(
"get-plug:builtin",
async (plugName: string): Promise<Manifest> => {
2022-04-30 00:54:27 +08:00
if (!safeFilename.test(plugName)) {
throw new Error(`Invalid plug name: ${plugName}`);
}
2022-04-27 01:04:36 +08:00
try {
let manifestJson = await readFile(
path.join(this.builtinPlugDir, `${plugName}.plug.json`),
"utf8"
2022-04-25 17:24:13 +08:00
);
2022-04-27 01:04:36 +08:00
return JSON.parse(manifestJson);
} catch (e) {
throw new Error(`No such builtin: ${plugName}`);
}
}
);
2022-06-28 20:14:15 +08:00
// Second, for loading plug JSON files with absolute or relative (from CWD) paths
this.eventHook.addLocalListener(
"get-plug:file",
async (plugPath: string): Promise<Manifest> => {
let resolvedPath = path.resolve(plugPath);
if (!resolvedPath.startsWith(process.cwd())) {
throw new Error(
`Plugin path outside working directory, this is disallowed: ${resolvedPath}`
);
}
try {
let manifestJson = await readFile(resolvedPath, "utf8");
return JSON.parse(manifestJson);
} catch (e) {
throw new Error(
`No such file: ${resolvedPath} or could not parse as JSON`
);
}
}
);
2022-06-28 20:14:15 +08:00
// Rescan disk every 5s to detect any out-of-process file changes
setInterval(() => {
2022-04-27 01:04:36 +08:00
this.space.updatePageList().catch(console.error);
}, 5000);
2022-06-28 20:14:15 +08:00
// Load plugs
2022-04-27 01:04:36 +08:00
this.reloadPlugs().catch(console.error);
}
2022-04-12 02:34:09 +08:00
rebuildMdExtensions() {
this.system.registerSyscalls(
[],
markdownSyscalls(buildMarkdown(loadMarkdownExtensions(this.system)))
);
}
2022-06-28 20:14:15 +08:00
// In case of a new space with no `PLUGS` file, generate a default one based on all built-in plugs
2022-04-27 02:31:31 +08:00
private async bootstrapBuiltinPlugs() {
let allPlugFiles = await readdir(this.builtinPlugDir);
let pluginNames = [];
for (let file of allPlugFiles) {
if (file.endsWith(".plug.json")) {
let manifestJson = await readFile(
path.join(this.builtinPlugDir, file),
"utf8"
);
let manifest: Manifest = JSON.parse(manifestJson);
pluginNames.push(manifest.name);
await this.space.writePage(
`${plugPrefix}${manifest.name}`,
manifestJson
);
}
}
2022-08-10 18:03:58 +08:00
try {
await this.space.getPageMeta("PLUGS");
console.log("PLUGS file already exists, won't override it.");
return;
} catch {
console.log("Writing fresh PLUGS file.");
await this.space.writePage(
"PLUGS",
"This file lists all plugs that SilverBullet will load. Run the `Plugs: Update` command to update and reload this list of plugs.\n\n```yaml\n- " +
pluginNames.map((name) => `builtin:${name}`).join("\n- ") +
"\n```"
);
}
2022-04-27 02:31:31 +08:00
}
2022-04-27 01:04:36 +08:00
async reloadPlugs() {
await this.space.updatePageList();
2022-04-27 02:31:31 +08:00
let allPlugs = this.space.listPlugs();
if (allPlugs.size === 0) {
await this.bootstrapBuiltinPlugs();
allPlugs = this.space.listPlugs();
}
2022-04-27 01:04:36 +08:00
await this.system.unloadAll();
2022-06-28 20:34:25 +08:00
console.log("Loading plugs");
2022-04-27 02:31:31 +08:00
for (let pageInfo of allPlugs) {
2022-04-27 01:04:36 +08:00
let { text } = await this.space.readPage(pageInfo.name);
2022-05-13 20:36:26 +08:00
await this.system.load(JSON.parse(text), createSandbox);
2022-04-27 01:04:36 +08:00
}
this.rebuildMdExtensions();
}
2022-04-25 00:06:34 +08:00
async start() {
2022-06-28 20:14:15 +08:00
const passwordMiddleware: (req: any, res: any, next: any) => void = this
.password
2022-04-30 00:54:27 +08:00
? (req, res, next) => {
2022-06-28 20:14:15 +08:00
if (req.headers.authorization === `Bearer ${this.password}`) {
2022-04-30 00:54:27 +08:00
next();
} else {
res.status(401).send("Unauthorized");
}
}
: (req, res, next) => {
next();
};
await ensureIndexTable(this.db);
await ensureStoreTable(this.db, "store");
2022-05-16 21:09:36 +08:00
await ensureFTSTable(this.db, "fts");
2022-08-02 18:43:39 +08:00
await this.ensureAndLoadSettings();
2022-04-30 00:54:27 +08:00
// Serve static files (javascript, css, html)
2022-04-25 00:06:34 +08:00
this.app.use("/", express.static(this.distDir));
// Pages API
this.app.use(
"/page",
passwordMiddleware,
cors({
methods: "GET,HEAD,PUT,OPTIONS,POST,DELETE",
preflightContinue: true,
}),
this.buildFsRouter()
);
// Attachment API
this.app.use(
"/attachment",
passwordMiddleware,
cors({
methods: "GET,HEAD,PUT,OPTIONS,POST,DELETE",
preflightContinue: true,
}),
this.buildAttachmentRouter()
);
// Plug API
this.app.use(
"/plug",
passwordMiddleware,
cors({
methods: "GET,HEAD,PUT,OPTIONS,POST,DELETE",
preflightContinue: true,
}),
this.buildPlugRouter()
);
// Fallback, serve index.html
this.app.get("/*", async (req, res) => {
res.sendFile(`${this.distDir}/index.html`, {});
});
this.server = http.createServer(this.app);
this.server.listen(this.port, () => {
console.log(
`Silver Bullet is now running: http://localhost:${this.port}`
);
console.log("--------------");
});
}
private buildPlugRouter() {
let plugRouter = express.Router();
plugRouter.post(
"/:plug/syscall/:name",
bodyParser.json(),
async (req, res) => {
const name = req.params.name;
const plugName = req.params.plug;
const args = req.body as any;
const plug = this.system.loadedPlugs.get(plugName);
if (!plug) {
res.status(404);
return res.send(`Plug ${plugName} not found`);
}
try {
const result = await this.system.syscallWithContext(
{ plug },
name,
args
);
res.status(200);
res.header("Content-Type", "application/json");
res.send(JSON.stringify(result));
} catch (e: any) {
res.status(500);
return res.send(e.message);
}
}
);
plugRouter.post(
"/:plug/function/:name",
bodyParser.json(),
async (req, res) => {
const name = req.params.name;
const plugName = req.params.plug;
const args = req.body as any[];
const plug = this.system.loadedPlugs.get(plugName);
if (!plug) {
res.status(404);
return res.send(`Plug ${plugName} not found`);
}
try {
const result = await plug.invoke(name, args);
res.status(200);
res.header("Content-Type", "application/json");
res.send(JSON.stringify(result));
} catch (e: any) {
res.status(500);
// console.log("Error invoking function", e);
return res.send(e.message);
}
}
);
return plugRouter;
}
private buildFsRouter() {
let fsRouter = express.Router();
// Page list
fsRouter.route("/").get(async (req, res) => {
let { nowTimestamp, pages } = await this.space.fetchPageList();
res.header("Now-Timestamp", "" + nowTimestamp);
res.json([...pages]);
});
fsRouter
.route(/\/(.+)/)
.get(async (req, res) => {
let pageName = req.params[0];
2022-03-31 23:25:34 +08:00
// console.log("Getting", pageName);
try {
let pageData = await this.space.readPage(pageName);
res.status(200);
res.header("Last-Modified", "" + pageData.meta.lastModified);
2022-05-17 17:53:17 +08:00
res.header("X-Permission", pageData.meta.perm);
res.header("Content-Type", "text/markdown");
res.send(pageData.text);
} catch (e) {
// CORS
res.status(200);
res.header("X-Status", "404");
res.send("");
}
2022-04-01 21:02:35 +08:00
})
.put(bodyParser.text({ type: "*/*" }), async (req, res) => {
let pageName = req.params[0];
console.log("Saving", pageName);
try {
let meta = await this.space.writePage(
pageName,
req.body,
false,
req.header("Last-Modified")
? +req.header("Last-Modified")!
: undefined
);
res.status(200);
res.header("Last-Modified", "" + meta.lastModified);
2022-05-17 17:53:17 +08:00
res.header("X-Permission", meta.perm);
res.send("OK");
} catch (err) {
res.status(500);
res.send("Write failed");
console.error("Pipeline failed", err);
}
})
.options(async (req, res) => {
let pageName = req.params[0];
try {
const meta = await this.space.getPageMeta(pageName);
res.status(200);
res.header("Last-Modified", "" + meta.lastModified);
2022-05-17 17:53:17 +08:00
res.header("X-Permission", meta.perm);
res.header("Content-Type", "text/markdown");
res.send("");
} catch (e) {
// CORS
res.status(200);
res.header("X-Status", "404");
res.send("Not found");
}
})
.delete(async (req, res) => {
let pageName = req.params[0];
try {
await this.space.deletePage(pageName);
res.status(200);
res.send("OK");
} catch (e) {
console.error("Error deleting file", e);
res.status(500);
res.send("OK");
}
});
return fsRouter;
}
// Build attachment router
private buildAttachmentRouter() {
let fsaRouter = express.Router();
// Page list
fsaRouter.route("/").get(async (req, res) => {
let { nowTimestamp, attachments } =
await this.space.fetchAttachmentList();
res.header("Now-Timestamp", "" + nowTimestamp);
res.json([...attachments]);
});
fsaRouter
.route(/\/(.+)/)
.get(async (req, res) => {
let attachmentName = req.params[0];
if (!this.attachmentCheck(attachmentName, res)) {
return;
}
console.log("Getting", attachmentName);
try {
let attachmentData = await this.space.readAttachment(attachmentName);
res.status(200);
res.header("Last-Modified", "" + attachmentData.meta.lastModified);
res.header("X-Permission", attachmentData.meta.perm);
res.header("Content-Type", attachmentData.meta.contentType);
// res.header("X-Content-Length", "" + attachmentData.meta.size);
res.send(Buffer.from(attachmentData.buffer));
} catch (e) {
// CORS
res.status(200);
res.header("X-Status", "404");
res.send("");
}
})
.put(
bodyParser.raw({ type: "*/*", limit: "100mb" }),
async (req, res) => {
let attachmentName = req.params[0];
if (!this.attachmentCheck(attachmentName, res)) {
return;
}
console.log("Saving attachment", attachmentName);
try {
let meta = await this.space.writeAttachment(
attachmentName,
req.body,
false,
req.header("Last-Modified")
? +req.header("Last-Modified")!
: undefined
);
res.status(200);
res.header("Last-Modified", "" + meta.lastModified);
res.header("Content-Type", meta.contentType);
res.header("Content-Length", "" + meta.size);
res.header("X-Permission", meta.perm);
res.send("OK");
} catch (err) {
res.status(500);
res.send("Write failed");
console.error("Pipeline failed", err);
}
}
)
.options(async (req, res) => {
let attachmentName = req.params[0];
if (!this.attachmentCheck(attachmentName, res)) {
return;
}
try {
const meta = await this.space.getAttachmentMeta(attachmentName);
res.status(200);
res.header("Last-Modified", "" + meta.lastModified);
res.header("X-Permission", meta.perm);
res.header("Content-Length", "" + meta.size);
res.header("Content-Type", meta.contentType);
res.send("");
} catch (e) {
// CORS
res.status(200);
res.header("X-Status", "404");
res.send("Not found");
}
})
.delete(async (req, res) => {
let attachmentName = req.params[0];
if (!this.attachmentCheck(attachmentName, res)) {
return;
}
try {
await this.space.deleteAttachment(attachmentName);
res.status(200);
res.send("OK");
} catch (e) {
console.error("Error deleting attachment", e);
res.status(500);
res.send("OK");
}
});
return fsaRouter;
}
2022-04-25 00:06:34 +08:00
attachmentCheck(attachmentName: string, res: express.Response): boolean {
if (attachmentName.endsWith(".md")) {
res.status(405);
res.send("No markdown files allowed through the attachment API");
return false;
}
return true;
2022-04-25 00:06:34 +08:00
}
2022-08-02 18:43:39 +08:00
async ensureAndLoadSettings() {
try {
await this.space.getPageMeta("SETTINGS");
} catch (e) {
await this.space.writePage("SETTINGS", settingsTemplate, true);
}
let { text: settingsText } = await this.space.readPage("SETTINGS");
this.settings = parseYamlSettings(settingsText);
if (!this.settings.indexPage) {
this.settings.indexPage = "index";
}
2022-06-28 20:14:15 +08:00
try {
2022-08-02 18:43:39 +08:00
await this.space.getPageMeta(this.settings.indexPage);
2022-06-28 20:14:15 +08:00
} catch (e) {
2022-08-02 18:43:39 +08:00
await this.space.writePage(
this.settings.indexPage,
`Welcome to your new space!`
);
2022-06-28 20:14:15 +08:00
}
}
2022-04-25 00:06:34 +08:00
async stop() {
if (this.server) {
console.log("Stopping");
await this.system.unloadAll();
console.log("Stopped plugs");
return new Promise<void>((resolve, reject) => {
this.server!.close((err) => {
this.server = undefined;
console.log("stopped server");
if (err) {
reject(err);
} else {
resolve();
}
});
});
}
2022-03-21 22:21:34 +08:00
}
}