const logger = require('winston'); const multipart = require('connect-multiparty'); const multipartMiddleware = multipart(); const publishController = require('../controllers/publishController.js'); const lbryApi = require('../helpers/libraries/lbryApi.js'); const publishHelpers = require('../helpers/libraries/publishHelpers.js'); const errorHandlers = require('../helpers/libraries/errorHandlers.js'); const postToAnalytics = require('../helpers/libraries/analytics'); module.exports = app => { // route to run a claim_list request on the daemon app.get('/api/claim_list/:claim', ({ originalUrl, params, ip }, res) => { logger.debug(`GET request on ${originalUrl} from ${ip}`); lbryApi .getClaimsList(params.claim) .then(claimsList => { postToAnalytics('publish', originalUrl, ip, 'success'); res.status(200).json(claimsList); }) .catch(error => { errorHandlers.handleRequestError('publish', originalUrl, ip, error, res); }); }); // route to run a resolve request on the daemon app.get('/api/resolve/:uri', ({ originalUrl, params, ip }, res) => { logger.debug(`GET request on ${originalUrl} from ${ip}`); lbryApi .resolveUri(params.uri) .then(resolvedUri => { postToAnalytics('publish', originalUrl, ip, 'success'); res.status(200).json(resolvedUri); }) .catch(error => { errorHandlers.handleRequestError('publish', originalUrl, ip, error, res); }); }); // route to run a publish request on the daemon app.post('/api/publish', multipartMiddleware, ({ originalUrl, body, files, ip }, res) => { logger.debug(`POST request on ${originalUrl} from ${ip}`); // validate that a file was provided const file = files.speech || files.null; if (!file) { postToAnalytics('publish', originalUrl, ip, 'Error: file'); res.status(400).send('Error: No file was submitted or the key used was incorrect. Files posted through this route must use a key of "speech" or null'); return; } // validate name const name = body.name || file.name.substring(0, file.name.indexOf('.')); const invalidCharacters = /[^\w,-]/.exec(name); if (invalidCharacters) { postToAnalytics('publish', originalUrl, ip, 'Error: name'); res.status(400).send('Error: The name you provided is not allowed. Please use A-Z, a-z, 0-9, "_" and "-" only.'); return; } // validate license const license = body.license || 'No License Provided'; if ((license.indexOf('Public Domain') === -1) && (license.indexOf('Creative Commons') === -1)) { postToAnalytics('puplish', originalUrl, ip, 'Error: license'); res.status(400).send('Error: Only posts with a license of "Public Domain" or "Creative Commons" are eligible for publishing through spee.ch'); return; } const nsfw = body.nsfw || true; switch (nsfw) { case true: case false: case 'true': case 'false': case 'on': case 'off': case 0: case '0': case 1: case '1': break; default: postToAnalytics('publish', originalUrl, ip, 'Error: nsfw'); res.status(400).send('Error: NSFW value was not accepted. NSFW must be set to either true, false, "on", or "off"'); return; } const fileName = file.name; const filePath = file.path; const fileType = file.type; /* note: make sure it's not a harmful file type */ // prepare the publish parameters const publishParams = publishHelpers.createPublishParams(name, filePath, license, nsfw); // publish the file publishController .publish(publishParams, fileName, fileType) .then(result => { postToAnalytics('publish', originalUrl, ip, 'success'); res.status(200).json(result); }) .catch(error => { errorHandlers.handleRequestError('publish', originalUrl, ip, error, res); }); }); };