mirror of
https://github.com/ToolJet/ToolJet
synced 2026-05-06 14:58:27 +00:00
dcee0885d6
* Initialized OpenApi plugin * Added definition field to manifest file * Added an openapi parser * Implemented JSON/YAML resolver - Removed swagger parser lib - Added a field for choosing definition format type - Implemented a resolver for resolving $ref * Implemented a basic operations drop down from spec paths * Added params and body ui * Now, can view general parameters and servers * Added an option to override general params - Resolved a bug * Implemented basic openapi plugin - Added got lib - Tested basic queries * Added one more method * Resolved a common bug * Working on Parsing definition from datasource modal - Created new form component for openapi - Populated select array from security array * Added ui for authentication * Added bearer & basic plugin code * Resolved some ui issues of Apikeys auth option * Added apikey auth * Resolved an issue - Also replaced validate btn with auto validation - Now spec will be added to db from data-source modal * Added error text to show validation error * Now spec will load from props for query manager * Added some padding to operation description * Added ui for openapi oauth2 auth * Implemented oauth2 * Fixed a state issue with a temporary hack * Now we can show multiple same auth types * added the icon * Resolved a bug & improved multiple apikeys process * Resolved some realtime parsing error * Resolved a bug from options fn * Resolved PR changes * Updated documentation with brief details about the open API plugin * Removed unwanted package * Changed if-else to switch * Code changes * added setLoadingSpec fn to catch section * Solved typos and error in doc * Resolved dropdown issue * Resolved a bug * updated openapi icon
257 lines
8.4 KiB
TypeScript
257 lines
8.4 KiB
TypeScript
import { QueryError, QueryService } from '@tooljet-plugins/common';
|
|
import { SourceOptions, QueryOptions, RestAPIResult } from './types';
|
|
import got, { HTTPError } from 'got';
|
|
import urrl from 'url';
|
|
import { readFileSync } from 'fs';
|
|
import * as tls from 'tls';
|
|
const { CookieJar } = require('tough-cookie');
|
|
|
|
export default class Openapi implements QueryService {
|
|
private resolvePathParams(params: any, path: string) {
|
|
let newString = path;
|
|
Object.entries(params).map(([key, value]) => {
|
|
newString = newString.replace(`{${key}}`, value as any);
|
|
});
|
|
return newString;
|
|
}
|
|
|
|
private sanitizeObject(params: any) {
|
|
Object.keys(params).forEach((key) => (params[key] === '' ? delete params[key] : {}));
|
|
return params;
|
|
}
|
|
|
|
private sanitizeCustomParams(customArray: any) {
|
|
const params = Object.fromEntries(customArray ?? []);
|
|
Object.keys(params).forEach((key) => (params[key] === '' ? delete params[key] : {}));
|
|
return params;
|
|
}
|
|
|
|
private resolveApiKeyParams = (apiKeys, auth_key: string, header: any, url: URL, query: any, cookieJar: any) => {
|
|
const processKey = (type: string, name: string, value: string) => {
|
|
if (type === 'header') {
|
|
header[name] = value;
|
|
} else if (type === 'query') {
|
|
query[name] = value;
|
|
} else if (type === 'cookie') {
|
|
cookieJar.setCookie(`${name}=${value}`, url);
|
|
}
|
|
};
|
|
apiKeys.map((key: any) => {
|
|
if (key.parentKey && key.parentKey === auth_key) {
|
|
//process multiple keys
|
|
key.fields.map((field: any) => {
|
|
processKey(field.in, field.name, field.value);
|
|
});
|
|
} else {
|
|
if (auth_key === key.key) {
|
|
processKey(key.in, key.name, key.value);
|
|
return;
|
|
}
|
|
}
|
|
});
|
|
|
|
return { header, query, cookieJar };
|
|
};
|
|
|
|
async run(sourceOptions: SourceOptions, queryOptions: QueryOptions, dataSourceId: string): Promise<RestAPIResult> {
|
|
const { host, path, operation, params } = queryOptions;
|
|
const { request } = params;
|
|
let { query, header } = params;
|
|
const pathParams = params.path;
|
|
const authType = sourceOptions['auth_type'];
|
|
const requiresOauth = authType === 'oauth2';
|
|
let cookieJar = new CookieJar();
|
|
|
|
const url = new URL(host + this.resolvePathParams(pathParams, path));
|
|
const json = operation !== 'get' ? this.sanitizeObject(request) : undefined;
|
|
const customQueryParams = this.sanitizeCustomParams(sourceOptions['custom_query_params']);
|
|
|
|
let result = {};
|
|
let requestObject = {};
|
|
let responseObject = {};
|
|
let responseHeaders = {};
|
|
|
|
if (authType === 'bearer') {
|
|
header['Authorization'] = `Bearer ${sourceOptions.bearer_token}`;
|
|
}
|
|
|
|
if (authType === 'apiKey') {
|
|
const resolved = this.resolveApiKeyParams(
|
|
sourceOptions.api_keys,
|
|
sourceOptions.auth_key,
|
|
header,
|
|
url,
|
|
query,
|
|
cookieJar
|
|
);
|
|
header = resolved.header;
|
|
query = resolved.query;
|
|
cookieJar = resolved.cookieJar;
|
|
}
|
|
|
|
/* Chceck if OAuth tokens exists for the source if query requires OAuth */
|
|
if (requiresOauth) {
|
|
const tokenData = sourceOptions['tokenData'];
|
|
|
|
if (!tokenData) {
|
|
const tooljetHost = process.env.TOOLJET_HOST;
|
|
const authUrl = new URL(
|
|
`${sourceOptions['auth_url']}?response_type=code&client_id=${sourceOptions['client_id']}&redirect_uri=${tooljetHost}/oauth2/authorize&scope=${sourceOptions['scopes']}`
|
|
);
|
|
Object.entries(customQueryParams).map(([key, value]) => authUrl.searchParams.append(key, value));
|
|
|
|
return {
|
|
status: 'needs_oauth',
|
|
data: { auth_url: authUrl },
|
|
};
|
|
} else {
|
|
const accessToken = tokenData['access_token'];
|
|
if (sourceOptions['add_token_to'] === 'header') {
|
|
const headerPrefix = sourceOptions['header_prefix'];
|
|
header['Authorization'] = `${headerPrefix}${accessToken}`;
|
|
}
|
|
}
|
|
}
|
|
|
|
try {
|
|
const response = await got(url, {
|
|
method: operation,
|
|
headers: header,
|
|
username: authType === 'basic' ? sourceOptions.username : undefined,
|
|
password: authType === 'basic' ? sourceOptions.password : undefined,
|
|
searchParams: {
|
|
...query,
|
|
},
|
|
json,
|
|
cookieJar,
|
|
});
|
|
|
|
result = JSON.parse(response.body);
|
|
requestObject = {
|
|
requestUrl: response.request.requestUrl,
|
|
method: response.request.options.method,
|
|
headers: response.request.options.headers,
|
|
params: urrl.parse(response.request.requestUrl.toString(), true).query,
|
|
};
|
|
|
|
responseObject = {
|
|
body: response.body,
|
|
statusCode: response.statusCode,
|
|
};
|
|
|
|
responseHeaders = response.headers;
|
|
} catch (error) {
|
|
console.log(error);
|
|
|
|
if (error instanceof HTTPError) {
|
|
result = {
|
|
requestObject: {
|
|
requestUrl: error.request.requestUrl,
|
|
requestHeaders: error.request.options.headers,
|
|
requestParams: urrl.parse(error.request.requestUrl.toString(), true).query,
|
|
},
|
|
responseObject: {
|
|
statusCode: error.response.statusCode,
|
|
responseBody: error.response.body,
|
|
},
|
|
responseHeaders: error.response.headers,
|
|
};
|
|
}
|
|
throw new QueryError('Query could not be completed', error.message, result);
|
|
}
|
|
|
|
return {
|
|
status: 'ok',
|
|
data: result,
|
|
request: requestObject,
|
|
response: responseObject,
|
|
responseHeaders,
|
|
};
|
|
}
|
|
|
|
/* This function fetches the access token from the token url set in REST API (oauth) datasource */
|
|
private async fetchOAuthToken(sourceOptions: any, code: string): Promise<any> {
|
|
const tooljetHost = process.env.TOOLJET_HOST;
|
|
const accessTokenUrl = sourceOptions['access_token_url'];
|
|
|
|
const customParams = this.sanitizeCustomParams(sourceOptions['custom_auth_params']);
|
|
|
|
const response = await got(accessTokenUrl, {
|
|
method: 'post',
|
|
json: {
|
|
code,
|
|
client_id: sourceOptions['client_id'],
|
|
client_secret: sourceOptions['client_secret'],
|
|
grant_type: sourceOptions['grant_type'],
|
|
redirect_uri: `${tooljetHost}/oauth2/authorize`,
|
|
...this.fetchHttpsCertsForCustomCA(),
|
|
...customParams,
|
|
},
|
|
});
|
|
|
|
const result = JSON.parse(response.body);
|
|
return { access_token: result['access_token'] };
|
|
}
|
|
|
|
private fetchHttpsCertsForCustomCA() {
|
|
if (!process.env.NODE_EXTRA_CA_CERTS) return {};
|
|
|
|
return {
|
|
https: {
|
|
certificateAuthority: [...tls.rootCertificates, readFileSync(process.env.NODE_EXTRA_CA_CERTS)].join('\n'),
|
|
},
|
|
};
|
|
}
|
|
|
|
private checkIfContentTypeIsURLenc(headers: []) {
|
|
const objectHeaders = Object.fromEntries(headers);
|
|
const contentType = objectHeaders['content-type'] ?? objectHeaders['Content-Type'];
|
|
return contentType === 'application/x-www-form-urlencoded';
|
|
}
|
|
|
|
private async refreshToken(sourceOptions, error) {
|
|
const refreshToken = sourceOptions['tokenData']['refresh_token'];
|
|
if (!refreshToken) {
|
|
throw new QueryError('Refresh token not found', error.response, {});
|
|
}
|
|
const accessTokenUrl = sourceOptions['access_token_url'];
|
|
const clientId = sourceOptions['client_id'];
|
|
const clientSecret = sourceOptions['client_secret'];
|
|
const grantType = 'refresh_token';
|
|
const isUrlEncoded = this.checkIfContentTypeIsURLenc(sourceOptions['headers']);
|
|
|
|
const data = {
|
|
client_id: clientId,
|
|
client_secret: clientSecret,
|
|
grant_type: grantType,
|
|
refresh_token: refreshToken,
|
|
};
|
|
|
|
const accessTokenDetails = {};
|
|
|
|
try {
|
|
const response = await got(accessTokenUrl, {
|
|
method: 'post',
|
|
headers: {
|
|
'Content-Type': isUrlEncoded ? 'application/x-www-form-urlencoded' : 'application/json',
|
|
},
|
|
form: isUrlEncoded ? data : undefined,
|
|
json: !isUrlEncoded ? data : undefined,
|
|
});
|
|
const result = JSON.parse(response.body);
|
|
|
|
if (!(response.statusCode >= 200 || response.statusCode < 300)) {
|
|
throw new QueryError('could not connect to Oauth server', error.response, {});
|
|
}
|
|
|
|
if (result['access_token']) {
|
|
accessTokenDetails['access_token'] = result['access_token'];
|
|
accessTokenDetails['refresh_token'] = refreshToken;
|
|
}
|
|
} catch (error) {
|
|
console.log(error.response.body);
|
|
throw new QueryError('could not connect to Oauth server', error.response, {});
|
|
}
|
|
return accessTokenDetails;
|
|
}
|
|
}
|