c218a0dfe3
* WIP on mobile connections todo: register devices todo: data sync or connection * improve connection flow and registration add streaming from service TODO: user scoping * dev build mobile support * fix path * handle relative URLs * handle localhost access in product * add device de-register * sync styles * move UI to be out of the normal path since beta only * Add user scoping to mobile connection requests Remigrate DB for user associations Implement temp token registration to prevent unauthorized device registration requests cleanup middlewares
161 lines
4.4 KiB
JavaScript
161 lines
4.4 KiB
JavaScript
const { validatedRequest } = require("../../utils/middleware/validatedRequest");
|
|
const { MobileDevice } = require("../../models/mobileDevice");
|
|
const { handleMobileCommand } = require("./utils");
|
|
const { validDeviceToken, validRegistrationToken } = require("./middleware");
|
|
const { reqBody } = require("../../utils/http");
|
|
const {
|
|
flexUserRoleValid,
|
|
ROLES,
|
|
} = require("../../utils/middleware/multiUserProtected");
|
|
|
|
function mobileEndpoints(app) {
|
|
if (!app) return;
|
|
|
|
/**
|
|
* Gets all the devices from the database.
|
|
* @param {import("express").Request} request
|
|
* @param {import("express").Response} response
|
|
*/
|
|
app.get(
|
|
"/mobile/devices",
|
|
[validatedRequest, flexUserRoleValid([ROLES.admin])],
|
|
async (_request, response) => {
|
|
try {
|
|
const devices = await MobileDevice.where({}, null, null, {
|
|
user: { select: { id: true, username: true } },
|
|
});
|
|
return response.status(200).json({ devices });
|
|
} catch (e) {
|
|
console.error(e);
|
|
response.sendStatus(500).end();
|
|
}
|
|
}
|
|
);
|
|
|
|
/**
|
|
* Updates the device status via an updates object.
|
|
* @param {import("express").Request} request
|
|
* @param {import("express").Response} response
|
|
*/
|
|
app.post(
|
|
"/mobile/update/:id",
|
|
[validatedRequest, flexUserRoleValid([ROLES.admin])],
|
|
async (request, response) => {
|
|
try {
|
|
const body = reqBody(request);
|
|
const updates = await MobileDevice.update(
|
|
Number(request.params.id),
|
|
body
|
|
);
|
|
if (updates.error)
|
|
return response.status(400).json({ error: updates.error });
|
|
return response.status(200).json({ updates });
|
|
} catch (e) {
|
|
console.error(e);
|
|
response.sendStatus(500).end();
|
|
}
|
|
}
|
|
);
|
|
|
|
/**
|
|
* Deletes a device from the database.
|
|
* @param {import("express").Request} request
|
|
* @param {import("express").Response} response
|
|
*/
|
|
app.delete(
|
|
"/mobile/:id",
|
|
[validatedRequest, flexUserRoleValid([ROLES.admin])],
|
|
async (request, response) => {
|
|
try {
|
|
const device = await MobileDevice.get({
|
|
id: Number(request.params.id),
|
|
});
|
|
if (!device)
|
|
return response.status(404).json({ error: "Device not found" });
|
|
await MobileDevice.delete(device.id);
|
|
return response.status(200).json({ message: "Device deleted" });
|
|
} catch (e) {
|
|
console.error(e);
|
|
response.sendStatus(500).end();
|
|
}
|
|
}
|
|
);
|
|
|
|
app.get(
|
|
"/mobile/connect-info",
|
|
[validatedRequest, flexUserRoleValid([ROLES.admin])],
|
|
async (_request, response) => {
|
|
try {
|
|
return response.status(200).json({
|
|
connectionUrl: MobileDevice.connectionURL(response.locals?.user),
|
|
});
|
|
} catch (e) {
|
|
console.error(e);
|
|
response.sendStatus(500).end();
|
|
}
|
|
}
|
|
);
|
|
|
|
/**
|
|
* Checks if the device auth token is valid
|
|
* against approved devices.
|
|
*/
|
|
app.get("/mobile/auth", [validDeviceToken], async (_, response) => {
|
|
try {
|
|
return response
|
|
.status(200)
|
|
.json({ success: true, message: "Device authenticated" });
|
|
} catch (e) {
|
|
console.error(e);
|
|
response.sendStatus(500).end();
|
|
}
|
|
});
|
|
|
|
/**
|
|
* Registers a new device (is open so that the mobile app can register itself)
|
|
* Will create a new device in the database but requires approval by the user
|
|
* before it can be used.
|
|
* @param {import("express").Request} request
|
|
* @param {import("express").Response} response
|
|
*/
|
|
app.post(
|
|
"/mobile/register",
|
|
[validRegistrationToken],
|
|
async (request, response) => {
|
|
try {
|
|
const body = reqBody(request);
|
|
const result = await MobileDevice.create({
|
|
deviceOs: body.deviceOs,
|
|
deviceName: body.deviceName,
|
|
userId: response.locals?.user?.id,
|
|
});
|
|
|
|
if (result.error)
|
|
return response.status(400).json({ error: result.error });
|
|
return response.status(200).json({
|
|
token: result.device.token,
|
|
platform: MobileDevice.platform,
|
|
});
|
|
} catch (e) {
|
|
console.error(e);
|
|
response.sendStatus(500).end();
|
|
}
|
|
}
|
|
);
|
|
|
|
app.post(
|
|
"/mobile/send/:command",
|
|
[validDeviceToken],
|
|
async (request, response) => {
|
|
try {
|
|
return handleMobileCommand(request, response);
|
|
} catch (e) {
|
|
console.error(e);
|
|
response.sendStatus(500).end();
|
|
}
|
|
}
|
|
);
|
|
}
|
|
|
|
module.exports = { mobileEndpoints };
|