Ghost/core/server/services/apps/proxy.js

var _ = require('lodash'),
    api = require('../../api'),
    helpers = require('../../helpers/register'),
    filters = require('../../filters'),
    common = require('../../lib/common'),
    router = require('../route').appRouter,
    generateProxyFunctions;

generateProxyFunctions = function (name, permissions, isInternal) {
    var getPermission = function (perm) {
            return permissions[perm];
        },
        getPermissionToMethod = function (perm, method) {
            var perms = getPermission(perm);

            if (!perms) {
                return false;
            }

            return _.find(perms, function (name) {
                return name === method;
            });
        },
        runIfPermissionToMethod = function (perm, method, wrappedFunc, context, args) {
            // internal apps get all permissions
            if (isInternal) {
                return wrappedFunc.apply(context, args);
            }

            var permValue = getPermissionToMethod(perm, method);

            if (!permValue) {
                throw new Error(common.i18n.t('errors.apps.accessResourceWithoutPermission.error', {
                    name: name,
                    perm: perm,
                    method: method
                }));
            }

            return wrappedFunc.apply(context, args);
        },
        checkRegisterPermissions = function (perm, registerMethod) {
            return _.wrap(registerMethod, function (origRegister, name) {
                return runIfPermissionToMethod(perm, name, origRegister, this, _.toArray(arguments).slice(1));
            });
        },
        passThruAppContextToApi = function (perm, apiMethods) {
            var appContext = {
                app: name
            };

            return _.reduce(apiMethods, function (memo, apiMethod, methodName) {
                memo[methodName] = function () {
                    var args = _.toArray(arguments),
                        options = args[args.length - 1];

                    if (_.isObject(options)) {
                        options.context = _.clone(appContext);
                    }
                    return apiMethod.apply({}, args);
                };

                return memo;
            }, {});
        },
        proxy;

    proxy = {
        filters: {
            register: checkRegisterPermissions('filters', filters.registerFilter.bind(filters)),
            deregister: checkRegisterPermissions('filters', filters.deregisterFilter.bind(filters))
        },
        helpers: {
            register: checkRegisterPermissions('helpers', helpers.registerThemeHelper.bind(helpers)),
            registerAsync: checkRegisterPermissions('helpers', helpers.registerAsyncThemeHelper.bind(helpers))
        },
        // Expose the route service...
        routeService: {
            // This allows for mounting an entirely new Router at a path...
            registerRouter: checkRegisterPermissions('routes', router.mountRouter.bind(router))
        },
        // Mini proxy to the API - needs review
        api: {
            posts: passThruAppContextToApi('posts',
                _.pick(api.posts, 'browse', 'read', 'edit', 'add', 'destroy')
            ),
            tags: passThruAppContextToApi('tags',
                _.pick(api.tags, 'browse')
            ),
            notifications: passThruAppContextToApi('notifications',
                _.pick(api.notifications, 'browse', 'add', 'destroy')
            ),
            settings: passThruAppContextToApi('settings',
                _.pick(api.settings, 'browse', 'read', 'edit')
            )
        }
    };

    return proxy;
};

function AppProxy(options) {
    if (!options.name) {
        throw new Error(common.i18n.t('errors.apps.mustProvideAppName.error'));
    }

    if (!options.permissions) {
        throw new Error(common.i18n.t('errors.apps.mustProvideAppPermissions.error'));
    }

    _.extend(this, generateProxyFunctions(options.name, options.permissions, options.internal));
}

module.exports = AppProxy;
Moved apps to /services/ & moved individual tests (#9187) refs #9178 * Moved app handling code into services/apps - Apps is a service, that allows for the App lifecycle - /server/apps = contains internal apps - /server/services/apps = contains code for managing/handling app life cycle, providing the proxy, etc * Split apps service tests into separate files * Moved internal app tests into test folders - Problem: Not all the tests in apps were unit tests, yet they were treated like they were in Gruntfile.js - Unit tests now live in /test/unit/apps - Route tests now live in /test/functional/routes/apps - Gruntfile.js has been updated to match * Switch api.read usage for settingsCache * Add tests to cover the basic App lifecycle * Simplify some of the init logic 2017-10-30 15:31:04 +03:00			`var _ = require('lodash'),`
			`api = require('../../api'),`
			`helpers = require('../../helpers/register'),`
			`filters = require('../../filters'),`
Import lib/common only refs #9178 - avoid importing 4 modules (logging, errors, events and i18n) - simply require common in each file 2017-12-12 00:47:46 +03:00			`common = require('../../lib/common'),`
Refactored apps to have access to a router refs #9192 - Instead of `setupRoutes` function in apps that gets passed a router, there is now a registerRouter function as part of the proxy - Moved towards a route service, which will know about all routes - Using classes to abstract away shared behaviour Notes: - changing the app proxy didn't result in a test failure! - structure of route service is totally new and may change a lot yet 2017-10-31 12:46:59 +03:00			`router = require('../route').appRouter,`
Add jscs task to grunt file and clean up files to adhere to jscs rules. resolves #1920 - updates all files to conform to style settings. 2014-09-10 08:06:24 +04:00			`generateProxyFunctions;`
Pass proxy Ghost interface to Apps Closes #1478 - Create new proxy.js that exposes createProxy method - Pass proxy to App activate/install in lieu of Ghost instance 2013-11-15 06:17:33 +04:00
Minor internal apps improvements refs #6589 - add internalAppsPath as a proper config path - middleware/routes will be setup for any internal apps which have the function - this should be refactored into some sort of proper hooks system as part of apps - internal apps get permission to do anything the proxy allows 2016-04-14 20:32:43 +03:00			`generateProxyFunctions = function (name, permissions, isInternal) {`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`var getPermission = function (perm) {`
			`return permissions[perm];`
			`},`
			`getPermissionToMethod = function (perm, method) {`
			`var perms = getPermission(perm);`

			`if (!perms) {`
			`return false;`
			`}`

			`return _.find(perms, function (name) {`
			`return name === method;`
			`});`
			`},`
			`runIfPermissionToMethod = function (perm, method, wrappedFunc, context, args) {`
Minor internal apps improvements refs #6589 - add internalAppsPath as a proper config path - middleware/routes will be setup for any internal apps which have the function - this should be refactored into some sort of proper hooks system as part of apps - internal apps get permission to do anything the proxy allows 2016-04-14 20:32:43 +03:00			`// internal apps get all permissions`
			`if (isInternal) {`
			`return wrappedFunc.apply(context, args);`
			`}`

AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`var permValue = getPermissionToMethod(perm, method);`

			`if (!permValue) {`
Import lib/common only refs #9178 - avoid importing 4 modules (logging, errors, events and i18n) - simply require common in each file 2017-12-12 00:47:46 +03:00			`throw new Error(common.i18n.t('errors.apps.accessResourceWithoutPermission.error', {`
			`name: name,`
			`perm: perm,`
			`method: method`
			`}));`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`}`

			`return wrappedFunc.apply(context, args);`
			`},`
			`checkRegisterPermissions = function (perm, registerMethod) {`
			`return _.wrap(registerMethod, function (origRegister, name) {`
			`return runIfPermissionToMethod(perm, name, origRegister, this, _.toArray(arguments).slice(1));`
			`});`
			`},`
			`passThruAppContextToApi = function (perm, apiMethods) {`
			`var appContext = {`
Switch to Eslint (#9197) refs #9178 * Add eslint deps, remove old lint deps * Add eslint config, remove old lint configs * Config for server and tests are different * Tweaked rules to suit us * Fix linting in codebase - lots of indent changes. * Fix a real broken test 2017-11-01 16:44:54 +03:00			`app: name`
			`};`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00
			`return _.reduce(apiMethods, function (memo, apiMethod, methodName) {`
			`memo[methodName] = function () {`
Refactor API arguments closes #2610, refs #2697 - cleanup API index.js, and add docs - all API methods take consistent arguments: object & options - browse, read, destroy take options, edit and add take object and options - the context is passed as part of options, meaning no more .call everywhere - destroy expects an object, rather than an id all the way down to the model layer - route params such as :id, :slug, and :key are passed as an option & used to perform reads, updates and deletes where possible - settings / themes may need work here still - HTTP posts api can find a post by slug - Add API utils for checkData 2014-05-08 16:41:19 +04:00			`var args = _.toArray(arguments),`
			`options = args[args.length - 1];`

			`if (_.isObject(options)) {`
			`options.context = _.clone(appContext);`
			`}`
			`return apiMethod.apply({}, args);`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`};`

			`return memo;`
			`}, {});`
			`},`
			`proxy;`

			`proxy = {`
			`filters: {`
			`register: checkRegisterPermissions('filters', filters.registerFilter.bind(filters)),`
			`deregister: checkRegisterPermissions('filters', filters.deregisterFilter.bind(filters))`
			`},`
			`helpers: {`
			`register: checkRegisterPermissions('helpers', helpers.registerThemeHelper.bind(helpers)),`
			`registerAsync: checkRegisterPermissions('helpers', helpers.registerAsyncThemeHelper.bind(helpers))`
			`},`
Refactored apps to have access to a router refs #9192 - Instead of `setupRoutes` function in apps that gets passed a router, there is now a registerRouter function as part of the proxy - Moved towards a route service, which will know about all routes - Using classes to abstract away shared behaviour Notes: - changing the app proxy didn't result in a test failure! - structure of route service is totally new and may change a lot yet 2017-10-31 12:46:59 +03:00			`// Expose the route service...`
			`routeService: {`
			`// This allows for mounting an entirely new Router at a path...`
Wrapped express router & expose from route service (#9206) refs #9192 - Moving towards a centralised concept of routing / routes - The base router now wraps express router, and offers us the features we need - Site Router is the parent router, it gets initialised with all of our default routing - App Router is a sub router for apps - apps register their routes/routers onto it. - TODO: refactor channels subrouter to work this same way - MAYBE: move the app router to the apps service 2017-11-09 13:08:11 +03:00			`registerRouter: checkRegisterPermissions('routes', router.mountRouter.bind(router))`
Refactored apps to have access to a router refs #9192 - Instead of `setupRoutes` function in apps that gets passed a router, there is now a registerRouter function as part of the proxy - Moved towards a route service, which will know about all routes - Using classes to abstract away shared behaviour Notes: - changing the app proxy didn't result in a test failure! - structure of route service is totally new and may change a lot yet 2017-10-31 12:46:59 +03:00			`},`
			`// Mini proxy to the API - needs review`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`api: {`
Refactor API arguments closes #2610, refs #2697 - cleanup API index.js, and add docs - all API methods take consistent arguments: object & options - browse, read, destroy take options, edit and add take object and options - the context is passed as part of options, meaning no more .call everywhere - destroy expects an object, rather than an id all the way down to the model layer - route params such as :id, :slug, and :key are passed as an option & used to perform reads, updates and deletes where possible - settings / themes may need work here still - HTTP posts api can find a post by slug - Add API utils for checkData 2014-05-08 16:41:19 +04:00			`posts: passThruAppContextToApi('posts',`
			`_.pick(api.posts, 'browse', 'read', 'edit', 'add', 'destroy')`
			`),`
			`tags: passThruAppContextToApi('tags',`
			`_.pick(api.tags, 'browse')`
			`),`
			`notifications: passThruAppContextToApi('notifications',`
			`_.pick(api.notifications, 'browse', 'add', 'destroy')`
			`),`
			`settings: passThruAppContextToApi('settings',`
			`_.pick(api.settings, 'browse', 'read', 'edit')`
			`)`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`}`
			`};`

			`return proxy;`
Direct api access for app proxy - proxy doesn't need a ghost object :) 2013-11-29 20:26:56 +04:00			`};`
Pass proxy Ghost interface to Apps Closes #1478 - Create new proxy.js that exposes createProxy method - Pass proxy to App activate/install in lieu of Ghost instance 2013-11-15 06:17:33 +04:00
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`function AppProxy(options) {`
			`if (!options.name) {`
Import lib/common only refs #9178 - avoid importing 4 modules (logging, errors, events and i18n) - simply require common in each file 2017-12-12 00:47:46 +03:00			`throw new Error(common.i18n.t('errors.apps.mustProvideAppName.error'));`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`}`

			`if (!options.permissions) {`
Import lib/common only refs #9178 - avoid importing 4 modules (logging, errors, events and i18n) - simply require common in each file 2017-12-12 00:47:46 +03:00			`throw new Error(common.i18n.t('errors.apps.mustProvideAppPermissions.error'));`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`}`

Minor internal apps improvements refs #6589 - add internalAppsPath as a proper config path - middleware/routes will be setup for any internal apps which have the function - this should be refactored into some sort of proper hooks system as part of apps - internal apps get permission to do anything the proxy allows 2016-04-14 20:32:43 +03:00			`_.extend(this, generateProxyFunctions(options.name, options.permissions, options.internal));`
AppProxy with permissions checks and app context Ref #2059 - Refactor appProxy into class that is instantiated per App - Check for permissions before doing proxied filter/helper calls - Add all currently existing api methods, let api check for permissions - Basic unit tests for filter and helper register/deregister - Adjusted proxy api method existence unit tests 2014-04-22 04:22:13 +04:00			`}`

			`module.exports = AppProxy;`