misskey/src/server/api/call.ts

import { performance } from 'perf_hooks';
import limitter from './limitter';
import { IUser } from '../../models/user';
import { IApp } from '../../models/app';
import endpoints from './endpoints';

export default (endpoint: string, user: IUser, app: IApp, data: any, file?: any) => new Promise<any>(async (ok, rej) => {
	const isSecure = user != null && app == null;

	const ep = endpoints.find(e => e.name === endpoint);

	if (ep == null) {
		return rej('ENDPOINT_NOT_FOUND');
	}

	if (ep.meta.secure && !isSecure) {
		return rej('ACCESS_DENIED');
	}

	if (ep.meta.requireCredential && user == null) {
		return rej('CREDENTIAL_REQUIRED');
	}

	if (ep.meta.requireCredential && user.isSuspended) {
		return rej('YOUR_ACCOUNT_HAS_BEEN_SUSPENDED');
	}

	if (ep.meta.requireAdmin && !user.isAdmin) {
		return rej('YOU_ARE_NOT_ADMIN');
	}

	if (ep.meta.requireModerator && !user.isAdmin && !user.isModerator) {
		return rej('YOU_ARE_NOT_MODERATOR');
	}

	if (app && ep.meta.kind && !app.permission.some(p => p === ep.meta.kind)) {
		return rej('PERMISSION_DENIED');
	}

	if (ep.meta.requireCredential && ep.meta.limit) {
		try {
			await limitter(ep, user); // Rate limit
		} catch (e) {
			// drop request if limit exceeded
			return rej('RATE_LIMIT_EXCEEDED');
		}
	}

	let res;

	// API invoking
	try {
		const before = performance.now();
		res = await ep.exec(data, user, app, file);
		const after = performance.now();

		const time = after - before;

		if (time > 1000) {
			console.warn(`SLOW API CALL DETECTED: ${ep.name} (${time}ms)`);
		}
	} catch (e) {
		if (e && e.name == 'INVALID_PARAM') {
			rej({
				code: e.name,
				param: e.param,
				reason: e.message
			});
		} else {
			rej(e);
		}
		return;
	}

	ok(res);
});
#1921 2018-07-19 04:45:55 +02:00			`import { performance } from 'perf_hooks';`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`import limitter from './limitter';`
Clean up 2018-08-21 21:53:02 +02:00			`import { IUser } from '../../models/user';`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`import { IApp } from '../../models/app';`
良い感じに 2018-07-15 20:43:36 +02:00			`import endpoints from './endpoints';`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00
良い感じに 2018-07-15 20:43:36 +02:00			`export default (endpoint: string, user: IUser, app: IApp, data: any, file?: any) => new Promise<any>(async (ok, rej) => {`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`const isSecure = user != null && app == null;`

良い感じに 2018-07-15 20:43:36 +02:00			`const ep = endpoints.find(e => e.name === endpoint);`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00
V10 (#2826) * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * Update CHANGELOG.md * wip * wip * wip * wip * wip * wip * wip * wip * wip * wip * Update CHANGELOG.md * Update CHANGELOG.md * wip * Update CHANGELOG.md * wip * wip * wip * wip 2018-10-07 04:06:17 +02:00			`if (ep == null) {`
			`return rej('ENDPOINT_NOT_FOUND');`
			`}`

良い感じに 2018-07-15 20:25:35 +02:00			`if (ep.meta.secure && !isSecure) {`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`return rej('ACCESS_DENIED');`
			`}`

良い感じに 2018-07-15 20:25:35 +02:00			`if (ep.meta.requireCredential && user == null) {`
Better error code 2018-11-05 17:57:31 +01:00			`return rej('CREDENTIAL_REQUIRED');`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`}`

良い感じに 2018-07-15 20:25:35 +02:00			`if (ep.meta.requireCredential && user.isSuspended) {`
アカウントを凍結されていたらAPIにアクセスできないようにした 2018-07-13 16:44:45 +02:00			`return rej('YOUR_ACCOUNT_HAS_BEEN_SUSPENDED');`
			`}`

#2359 など 2018-08-20 18:03:58 +02:00			`if (ep.meta.requireAdmin && !user.isAdmin) {`
wip 2018-08-13 18:05:58 +02:00			`return rej('YOU_ARE_NOT_ADMIN');`
			`}`

Moderator system Closes #2357 2018-11-14 20:15:42 +01:00			`if (ep.meta.requireModerator && !user.isAdmin && !user.isModerator) {`
			`return rej('YOU_ARE_NOT_MODERATOR');`
			`}`

if elimination (#2635) 2018-09-05 23:06:22 +02:00			`if (app && ep.meta.kind && !app.permission.some(p => p === ep.meta.kind)) {`
			`return rej('PERMISSION_DENIED');`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`}`

良い感じに 2018-07-15 20:25:35 +02:00			`if (ep.meta.requireCredential && ep.meta.limit) {`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`try {`
良い感じに 2018-07-15 20:43:36 +02:00			`await limitter(ep, user); // Rate limit`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`} catch (e) {`
			`// drop request if limit exceeded`
			`return rej('RATE_LIMIT_EXCEEDED');`
			`}`
			`}`

			`let res;`

			`// API invoking`
			`try {`
Improve log 2018-07-20 19:18:35 +02:00			`const before = performance.now();`
Refactor 2018-11-02 05:47:44 +01:00			`res = await ep.exec(data, user, app, file);`
Improve log 2018-07-20 19:18:35 +02:00			`const after = performance.now();`
#1921 2018-07-19 04:45:55 +02:00
Improve log 2018-07-20 19:18:35 +02:00			`const time = after - before;`

:v: 2018-07-26 09:50:50 +02:00			`if (time > 1000) {`
wip 2018-08-13 18:05:58 +02:00			console.warn(`SLOW API CALL DETECTED: ${ep.name} (${time}ms)`);
#1921 2018-07-19 04:45:55 +02:00			`}`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`} catch (e) {`
Fix: notes/create hangs when rejected (#3221) 2018-11-13 11:34:09 +01:00			`if (e && e.name == 'INVALID_PARAM') {`
API: Better error response 2018-10-26 07:38:34 +02:00			`rej({`
			`code: e.name,`
			`param: e.param,`
			`reason: e.message`
			`});`
			`} else {`
			`rej(e);`
			`}`
ストリーム経由でAPIにリクエストできるように 2018-04-11 10:40:01 +02:00			`return;`
			`}`

			`ok(res);`
			`});`