richard
/
wiki
mirror of https://github.com/Requarks/wiki.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1330 Commits
3 Branches
119 Tags
73 MiB
Tree: 4e9d4071fd
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4e9d4071fd'
${ noResults }
wiki/server/controllers/common.js

286 lines
8.1 KiB
Raw Normal View History

Standard JS code conversion + fixes
7 years ago
feat: new page UI + db fixes + installer improvements
6 years ago
feat: seo meta + page titles
5 years ago
feat: new page UI + db fixes + installer improvements
6 years ago
feat: history browse diffs
7 years ago
feat: guest + user permissions
5 years ago
fix: missing guest global permissions (#788)
5 years ago
feat: guest + user permissions
5 years ago
feat: healthz endpoint
5 years ago
feat: pages admin + path parsing fixes
5 years ago
feat: editor-code component
6 years ago
feat: editor - existing content
6 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
feat: block creating pages with system reserved paths
5 years ago
feat: pages admin + path parsing fixes
5 years ago
fix: UI localization on load + update all namespaced locales
5 years ago
feat: block creating pages with system reserved paths
5 years ago
feat: editor - existing content
6 years ago
feat: page locale migration + deps update
5 years ago
feat: editor - existing content
6 years ago
fix: missing write:pages perm for edit existing pages (#1228)
4 years ago
fix: root admin access deny bug + patreon link
5 years ago
fix: missing guest global permissions (#788)
5 years ago
feat: guest + user permissions
5 years ago
fix: tags load from editor
5 years ago
feat: seo meta + page titles
5 years ago
feat: editor - existing content
6 years ago
feat: guest + user permissions
5 years ago
fix: root admin access deny bug + patreon link
5 years ago
fix: missing guest global permissions (#788)
5 years ago
feat: guest + user permissions
5 years ago
feat: seo meta + page titles
5 years ago
feat: editor - existing content
6 years ago
feat: page locale migration + deps update
5 years ago
feat: editor-code component
6 years ago
feat: page history UI + nav links fix
6 years ago
feat: source + history (wip)
5 years ago
feat: page history UI + nav links fix
6 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
feat: guest + user permissions
5 years ago
feat: pages admin + path parsing fixes
5 years ago
fix: UI localization on load + update all namespaced locales
5 years ago
fix: admin contribute list + source permission
4 years ago
fix: root admin access deny bug + patreon link
5 years ago
fix: missing guest global permissions (#788)
5 years ago
feat: guest + user permissions
5 years ago
feat: source + history (wip)
5 years ago
feat: page history UI + nav links fix
6 years ago
feat: seo meta + page titles
5 years ago
feat: page history UI + nav links fix
6 years ago
feat: browse page by ID
4 years ago
feat: pages admin + path parsing fixes
5 years ago
feat: source + history (wip)
5 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
feat: guest + user permissions
5 years ago
feat: pages admin + path parsing fixes
5 years ago
fix: UI localization on load + update all namespaced locales
5 years ago
fix: admin contribute list + source permission
4 years ago
fix: missing guest global permissions (#788)
5 years ago
feat: guest + user permissions
5 years ago
feat: source + history (wip)
5 years ago
feat: seo meta + page titles
5 years ago
feat: source + history (wip)
5 years ago
feat: tags UI (wip) + save tags from page
5 years ago
Base server logic
8 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
Base server logic
8 years ago
feat: new page UI + db fixes + installer improvements
6 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
feat: guest + user permissions
5 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
feat: pages admin + path parsing fixes
5 years ago
fix: editor locale redirect + welcome page localization
5 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
fix: auto redirect to login from homepage
5 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
feat: guest + user permissions
5 years ago
fix: handle duplicate page entries without render content
5 years ago
feat: locales availability + IE display mode
5 years ago
fix: legacy login errors + logout button
5 years ago
feat: locales availability + IE display mode
5 years ago
fix: handle duplicate page entries without render content
5 years ago
fix: editor locale redirect + welcome page localization
5 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
fix: handle duplicate page entries without render content
5 years ago
misc: migrate to vuetify 2.0 (wip)
5 years ago
fix: handle duplicate page entries without render content
5 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
fix: handle duplicate page entries without render content
5 years ago
feat: theme code injection
5 years ago
feat: new page UI + db fixes + installer improvements
6 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
feat: page Rules access check
5 years ago
feat: access cached upload file + ignore common page extensions
5 years ago
feat: new page UI + db fixes + installer improvements
6 years ago
feat: view page layout (wip) + footer component + fixes
6 years ago
Standard JS code conversion + fixes
7 years ago
  1. const express = require('express')
  2. const router = express.Router()
  3. const pageHelper = require('../helpers/page')
  4. const _ = require('lodash')
  6. /* global WIKI */
  8. /**
  9. * Robots.txt
  10. */
  11. router.get('/robots.txt', (req, res, next) => {
  12. res.type('text/plain')
  13. if (_.includes(WIKI.config.seo.robots, 'noindex')) {
  14. res.send('User-agent: *\nDisallow: /')
  15. } else {
  16. res.status(200).end()
  17. }
  18. })
  20. /**
  21. * Health Endpoint
  22. */
  23. router.get('/healthz', (req, res, next) => {
  24. if (WIKI.models.knex.client.pool.numFree() < 1 && WIKI.models.knex.client.pool.numUsed() < 1) {
  25. res.status(503).json({ ok: false }).end()
  26. } else {
  27. res.status(200).json({ ok: true }).end()
  28. }
  29. })
  31. /**
  32. * Administration
  33. */
  34. router.get(['/a', '/a/*'], (req, res, next) => {
  35. _.set(res.locals, 'pageMeta.title', 'Admin')
  36. res.render('admin')
  37. })
  39. /**
  40. * Create/Edit document
  41. */
  42. router.get(['/e', '/e/*'], async (req, res, next) => {
  43. const pageArgs = pageHelper.parsePath(req.path, { stripExt: true })
  45. if (WIKI.config.lang.namespacing && !pageArgs.explicitLocale) {
  46. return res.redirect(`/e/${pageArgs.locale}/${pageArgs.path}`)
  47. }
  49. _.set(res, 'locals.siteConfig.lang', pageArgs.locale)
  51. if (pageHelper.isReservedPath(pageArgs.path)) {
  52. return next(new Error('Cannot create this page because it starts with a system reserved path.'))
  53. }
  55. let page = await WIKI.models.pages.getPageFromDb({
  56. path: pageArgs.path,
  57. locale: pageArgs.locale,
  58. userId: req.user.id,
  59. isPrivate: false
  60. })
  62. const injectCode = {
  63. css: WIKI.config.theming.injectCSS,
  64. head: WIKI.config.theming.injectHead,
  65. body: WIKI.config.theming.injectBody
  66. }
  68. if (page) {
  69. if (!WIKI.auth.checkAccess(req.user, ['write:pages', 'manage:pages'], pageArgs)) {
  70. _.set(res.locals, 'pageMeta.title', 'Unauthorized')
  71. return res.render('unauthorized', { action: 'edit' })
  72. }
  74. await page.$relatedQuery('tags')
  75. page.tags = _.map(page.tags, 'tag')
  77. _.set(res.locals, 'pageMeta.title', `Edit ${page.title}`)
  78. _.set(res.locals, 'pageMeta.description', page.description)
  79. page.mode = 'update'
  80. page.isPublished = (page.isPublished === true || page.isPublished === 1) ? 'true' : 'false'
  81. page.content = Buffer.from(page.content).toString('base64')
  82. } else {
  83. if (!WIKI.auth.checkAccess(req.user, ['write:pages'], pageArgs)) {
  84. _.set(res.locals, 'pageMeta.title', 'Unauthorized')
  85. return res.render('unauthorized', { action: 'create' })
  86. }
  88. _.set(res.locals, 'pageMeta.title', `New Page`)
  89. page = {
  90. path: pageArgs.path,
  91. localeCode: pageArgs.locale,
  92. editorKey: null,
  93. mode: 'create',
  94. content: null
  95. }
  96. }
  97. res.render('editor', { page, injectCode })
  98. })
  100. /**
  101. * History
  102. */
  103. router.get(['/h', '/h/*'], async (req, res, next) => {
  104. const pageArgs = pageHelper.parsePath(req.path, { stripExt: true })
  106. if (WIKI.config.lang.namespacing && !pageArgs.explicitLocale) {
  107. return res.redirect(`/h/${pageArgs.locale}/${pageArgs.path}`)
  108. }
  110. _.set(res, 'locals.siteConfig.lang', pageArgs.locale)
  112. if (!WIKI.auth.checkAccess(req.user, ['read:history'], pageArgs)) {
  113. _.set(res.locals, 'pageMeta.title', 'Unauthorized')
  114. return res.render('unauthorized', { action: 'history' })
  115. }
  117. const page = await WIKI.models.pages.getPageFromDb({
  118. path: pageArgs.path,
  119. locale: pageArgs.locale,
  120. userId: req.user.id,
  121. isPrivate: false
  122. })
  123. if (page) {
  124. _.set(res.locals, 'pageMeta.title', page.title)
  125. _.set(res.locals, 'pageMeta.description', page.description)
  126. res.render('history', { page })
  127. } else {
  128. res.redirect(`/${pageArgs.path}`)
  129. }
  130. })
  132. /**
  133. * Page ID redirection
  134. */
  135. router.get(['/i', '/i/:id'], async (req, res, next) => {
  136. const pageId = _.toSafeInteger(req.params.id)
  137. if (pageId <= 0) {
  138. return res.redirect('/')
  139. }
  141. const page = await WIKI.models.pages.query().column(['path', 'localeCode', 'isPrivate', 'privateNS']).findById(pageId)
  142. if (!page) {
  143. _.set(res.locals, 'pageMeta.title', 'Page Not Found')
  144. return res.status(404).render('notfound', { action: 'view' })
  145. }
  147. if (!WIKI.auth.checkAccess(req.user, ['read:pages'], {
  148. locale: page.localeCode,
  149. path: page.path,
  150. private: page.isPrivate,
  151. privateNS: page.privateNS,
  152. explicitLocale: false
  153. })) {
  154. _.set(res.locals, 'pageMeta.title', 'Unauthorized')
  155. return res.render('unauthorized', { action: 'view' })
  156. }
  158. if (WIKI.config.lang.namespacing) {
  159. return res.redirect(`/${page.localeCode}/${page.path}`)
  160. } else {
  161. return res.redirect(`/${page.path}`)
  162. }
  163. })
  165. /**
  166. * Profile
  167. */
  168. router.get(['/p', '/p/*'], (req, res, next) => {
  169. _.set(res.locals, 'pageMeta.title', 'User Profile')
  170. res.render('profile')
  171. })
  173. /**
  174. * Source
  175. */
  176. router.get(['/s', '/s/*'], async (req, res, next) => {
  177. const pageArgs = pageHelper.parsePath(req.path, { stripExt: true })
  179. if (WIKI.config.lang.namespacing && !pageArgs.explicitLocale) {
  180. return res.redirect(`/s/${pageArgs.locale}/${pageArgs.path}`)
  181. }
  183. _.set(res, 'locals.siteConfig.lang', pageArgs.locale)
  185. if (!WIKI.auth.checkAccess(req.user, ['read:source'], pageArgs)) {
  186. return res.render('unauthorized', { action: 'source' })
  187. }
  189. const page = await WIKI.models.pages.getPageFromDb({
  190. path: pageArgs.path,
  191. locale: pageArgs.locale,
  192. userId: req.user.id,
  193. isPrivate: false
  194. })
  195. if (page) {
  196. _.set(res.locals, 'pageMeta.title', page.title)
  197. _.set(res.locals, 'pageMeta.description', page.description)
  198. res.render('source', { page })
  199. } else {
  200. res.redirect(`/${pageArgs.path}`)
  201. }
  202. })
  204. /**
  205. * Tags
  206. */
  207. router.get(['/t', '/t/*'], (req, res, next) => {
  208. _.set(res.locals, 'pageMeta.title', 'Tags')
  209. res.render('tags')
  210. })
  212. /**
  213. * View document / asset
  214. */
  215. router.get('/*', async (req, res, next) => {
  216. const stripExt = _.some(WIKI.data.pageExtensions, ext => _.endsWith(req.path, `.${ext}`))
  217. const pageArgs = pageHelper.parsePath(req.path, { stripExt })
  218. const isPage = (stripExt || pageArgs.path.indexOf('.') === -1)
  220. if (isPage) {
  221. if (WIKI.config.lang.namespacing && !pageArgs.explicitLocale) {
  222. return res.redirect(`/${pageArgs.locale}/${pageArgs.path}`)
  223. }
  225. req.i18n.changeLanguage(pageArgs.locale)
  227. if (!WIKI.auth.checkAccess(req.user, ['read:pages'], pageArgs)) {
  228. if (pageArgs.path === 'home') {
  229. return res.redirect('/login')
  230. }
  231. _.set(res.locals, 'pageMeta.title', 'Unauthorized')
  232. return res.status(403).render('unauthorized', { action: 'view' })
  233. }
  235. try {
  236. const page = await WIKI.models.pages.getPage({
  237. path: pageArgs.path,
  238. locale: pageArgs.locale,
  239. userId: req.user.id,
  240. isPrivate: false
  241. })
  243. _.set(res, 'locals.siteConfig.lang', pageArgs.locale)
  245. if (page) {
  246. _.set(res.locals, 'pageMeta.title', page.title)
  247. _.set(res.locals, 'pageMeta.description', page.description)
  248. const sidebar = await WIKI.models.navigation.getTree({ cache: true })
  249. const injectCode = {
  250. css: WIKI.config.theming.injectCSS,
  251. head: WIKI.config.theming.injectHead,
  252. body: WIKI.config.theming.injectBody
  253. }
  255. if (req.query.legacy || req.get('user-agent').indexOf('Trident') >= 0) {
  256. if (_.isString(page.toc)) {
  257. page.toc = JSON.parse(page.toc)
  258. }
  259. res.render('legacy/page', { page, sidebar, injectCode, isAuthenticated: req.user && req.user.id !== 2 })
  260. } else {
  261. res.render('page', { page, sidebar, injectCode })
  262. }
  263. } else if (pageArgs.path === 'home') {
  264. _.set(res.locals, 'pageMeta.title', 'Welcome')
  265. res.render('welcome', { locale: pageArgs.locale })
  266. } else {
  267. _.set(res.locals, 'pageMeta.title', 'Page Not Found')
  268. if (WIKI.auth.checkAccess(req.user, ['write:pages'], pageArgs)) {
  269. res.status(404).render('new', { path: pageArgs.path, locale: pageArgs.locale })
  270. } else {
  271. res.status(404).render('notfound', { action: 'view' })
  272. }
  273. }
  274. } catch (err) {
  275. next(err)
  276. }
  277. } else {
  278. if (!WIKI.auth.checkAccess(req.user, ['read:assets'], pageArgs)) {
  279. return res.sendStatus(403)
  280. }
  282. await WIKI.models.assets.getAsset(pageArgs.path, res)
  283. }
  284. })
  286. module.exports = router