@joystick.js/node-canary 0.0.0-canary.47 → 0.0.0-canary.471

package/src/app/middleware/generate_insecure_page.js

@@ -0,0 +1,71 @@
+const generate_insecure_page = (hostname = '', path = '') => {
+	const url = `https://${hostname}${path}`;
+
+	return `
+    <html>
+      <head>
+        <title>Insecure Connection</title>
+        <style type="text/css">
+          body {
+            font-family: "Helvetica Neue", "Helvetica", "Arial", sans-serif;
+            font-size: 16px;
+            line-height: 24px;
+            background: #fafafa;
+            display: flex;
+            margin: 0;
+            padding: 20px;
+            justify-content: center;
+          }
+
+          .warning {
+            width: 100%;
+            max-width: 500px;
+            background: #fff;
+            border: 1px solid #eee;
+            border-radius: 3px;
+            padding: 35px;
+            align-self: flex-start;
+          }
+
+          .warning h1 {
+            color: #000;
+            font-size: 22px;
+            line-height: 30px;
+            margin: 0;
+          }
+
+          .warning p {
+            font-size: 16px;
+            line-height: 25px;
+            font-weight: 400;
+            color: #555;
+            margin: 10px 0 0;
+          }
+
+          .warning p a {
+            color: #555;
+          }
+
+          @media screen and (min-width: 768px) {
+            body {
+              padding: 40px;
+            }
+          }
+        </style>
+      </head>
+      <body>
+        <div class="warning">
+          <h1>Insecure Connection<h1>
+          <p>The site at this URL requires an SSL-secured connection. Please visit <a href="${url}">${url}</a> instead. You will be automatically redirected in 15 seconds.</p>
+        </div>
+        <script>
+          setTimeout(() => {
+            location.href = '${url}';
+          }, 15 * 1000);
+        </script>
+      </body>
+    </html>
+  `;
+};
+
+export default generate_insecure_page;

package/{dist/lib/generateErrorPage.js → src/app/middleware/generate_joystick_error_page.js}

@@ -1,18 +1,20 @@
-const getErrorTitle = (type = "build") => {
+const get_error_title = (type = 'build') => {
   return {
-    build: "Build Error",
-    layoutNotFound: "Layout Not Found",
-    pageNotFound: "Page Not Found"
+    build: 'Build Error',
+    layout_not_found: 'Layout Not Found',
+    page_not_found: 'Page Not Found'
   }[type];
 };
-var generateErrorPage_default = ({ type = "build", frame, path, stack }) => {
-  const errorTitle = getErrorTitle(type);
+
+const generate_joystick_error_page = ({ type = 'build', path, frame, stack }) => {
+  const error_title = get_error_title(type);
+
   return `
     <html>
       <head>
-        <title>${errorTitle}</title>
+        <title>${error_title}</title>
         <link rel="stylesheet" href="//cdnjs.cloudflare.com/ajax/libs/highlight.js/11.2.0/styles/atom-one-dark.min.css" />
-        <script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/11.2.0/highlight.min.js"><\/script>
+        <script src="//cdnjs.cloudflare.com/ajax/libs/highlight.js/11.2.0/highlight.min.js"></script>
         <style>
           body {
             background: #fff;
@@ -103,6 +105,10 @@ var generateErrorPage_default = ({ type = "build", frame, path, stack }) => {
             border-radius: 0px 0px 3px 3px;
           }
 
+          .code-block pre code.hljs {
+            padding: 15px 20px 20px !important;
+          }
+
           @media screen and (min-width: 768px) {
             .container {
               max-width: 728px;
@@ -125,33 +131,31 @@ var generateErrorPage_default = ({ type = "build", frame, path, stack }) => {
             width: 100%;
           }
         </style>
-        <script src="https://kit.fontawesome.com/225f49d71f.js" crossorigin="anonymous"><\/script>
       </head>
       <body>
         <div class="container">
           <header>
-            <h1><i class="fas fa-exclamation-triangle"></i> ${errorTitle}</h1>
-            <h4>${type === "build" ? "in" : "at"} ${path}</h4>
-            <p><strong>Your app is failing to build</strong>. Review the output below, correct the issue displayed, and then refresh the page:</p>
+            <h1>${error_title}</h1>
+            <h4>${type === 'build' ? 'in' : 'at'} ${path}</h4>
+            ${type === 'build' ? `<p><strong>Your app is failing to build</strong>. Review the output below, correct the issue displayed, and then refresh the page:</p>` : ''}
           </header>
           ${frame ? `<div class="code-block">
             <header>
-              <h4><i class="fas fa-code"></i> Code Frame</h4>
+              <h4>Code Frame</h4>
             </header>
             <pre><code>${frame}</code></pre>
-          </div>` : ""}
+          </div>` : ''}
           ${stack ? `<div class="code-block">
             <header>
-              <h4><i class="fas fa-layer-group"></i> Stack Trace</h4>
+              <h4>Stack Trace</h4>
             </header>
-            <pre><code class="${type !== "build" ? "language-plaintext" : ""}">${stack}</code></pre>
-          </div>` : ""}
+            <pre><code class="${type !== 'build' ? 'language-plaintext' : ''}">${stack}</code></pre>
+          </div>` : ''}
         </div>
-        <script>hljs.highlightAll();<\/script>
+        <script>hljs.highlightAll();</script>
       </body>
     </html>
   `;
 };
-export {
-  generateErrorPage_default as default
-};
+
+export default generate_joystick_error_page;

package/src/app/middleware/hmr_client.js

@@ -0,0 +1,12 @@
+import fs from 'fs';
+import node_path_polyfills from '../../lib/node_path_polyfills.js';
+
+const { readFile } = fs.promises;
+const hmr_client_script = await readFile(`${node_path_polyfills?.__package}/app/browser/hmr_client.js`, 'utf-8');
+
+const hmr_client_middleware = (_req, res) => {
+  res.set('Content-Type', 'text/javascript');
+  res.send(hmr_client_script);
+};
+
+export default hmr_client_middleware;

package/src/app/middleware/insecure.js

@@ -0,0 +1,22 @@
+import generate_insecure_page from './generate_insecure_page.js';
+
+const insecure_middleware = (req, res, next) => {
+  /*
+    NOTE:
+
+    This middleware solves two problems:
+
+    1. We're redirecting to or directly accessing an instance that *will* have https but doesn't yet.
+    2. The server has SSL set up properly, but a user typed in http and we want to redirect them.
+
+    In both cases, we want to render a warning and then after 15 seconds, redirect the user to HTTPS.
+  */
+
+  if (!req.secure) {
+    return res.send(generate_insecure_page(req?.headers?.host, req?.url));
+  }
+
+  next();
+};
+
+export default insecure_middleware;

package/src/app/middleware/process_browser_polyfill.js

@@ -0,0 +1,12 @@
+import fs from 'fs';
+import node_path_polyfills from '../../lib/node_path_polyfills.js';
+
+const { readFile } = fs.promises;
+const polyfill = await readFile(`${node_path_polyfills.__package}/app/browser/process_polyfill.js`, 'utf-8');
+
+const process_browser_polyfill_middleware = (_req, res) => {
+	res.set('Content-Type', 'text/javascript');
+	res.send(polyfill?.replace('${NODE_ENV}', process.env.NODE_ENV));
+};
+
+export default process_browser_polyfill_middleware;

package/src/app/middleware/render/get_url.js

@@ -0,0 +1,15 @@
+import escape_html from "../../../lib/escape_html.js";
+import escape_key_value_pair from "../../../lib/escape_key_value_pair.js";
+
+const get_url = (request = {}) => {
+  const [path = null] = request.url?.split('?');
+
+  return {
+    params: escape_key_value_pair(request.params),
+    query: escape_key_value_pair(request.query),
+    route: escape_html(request.route.path),
+    path: escape_html(path),
+  };
+};
+
+export default get_url;

package/src/app/middleware/render/index.js

@@ -0,0 +1,93 @@
+import fs from 'fs';
+import dynamic_import from '../../../lib/dynamic_import.js';
+import generate_joystick_error_page from '../generate_joystick_error_page.js';
+import get_joystick_build_path from '../../../lib/get_joystick_build_path.js';
+import get_translations from '../../../lib/get_translations.js';
+import get_url from './get_url.js';
+import path_exists from '../../../lib/path_exists.js';
+import ssr from '../../ssr/index.js';
+import get_browser_safe_request from '../../../lib/get_browser_safe_request.js';
+
+const { readFile } = fs.promises;
+
+const joystick_build_path = get_joystick_build_path();
+
+const get_base_html = () => {
+  return readFile('index.html', 'utf-8');
+};
+
+const render_middleware = (req, res, next, app_instance = {}) => {
+  // NOTE: Set res.render here so we have access to req, res, and
+  // app_instance objects inside of the definition.
+  res.render = async (render_component_path = '', render_options = {}) => {
+    // NOTE: Safety mechanism. Don't punish a developer if the path they pass to res.render()
+    // has a forward slash prepended, just strip it for them.
+    const sanitized_render_component_path = render_component_path?.substring(0, 1) === '/' ? render_component_path?.replace('/', '') : render_component_path;
+    const sanitized_render_layout_path = render_options?.layout?.substring(0, 1) === '/' ? render_options?.layout?.replace('/', '') : render_options?.layout;
+    const component_path = `${joystick_build_path}${sanitized_render_component_path}`;
+    const layout_path = render_options?.layout ? `${joystick_build_path}${sanitized_render_layout_path}` : null;
+
+    if (!(await path_exists(component_path))) {
+      return res.status(404).send(
+        generate_joystick_error_page({
+          type: 'page_not_found',
+          path: `res.render('${component_path}')`,
+          frame: null,
+          stack: `A page component at the path ${component_path} could not be found.`,
+        })
+      );
+    }
+
+    if (layout_path && !(await path_exists(layout_path))) {
+      return res.status(404).send(
+        generate_joystick_error_page({
+          type: 'layout_not_found',
+          path: `res.render('${component_path}', { layout: '${sanitized_render_layout_path}' })`,
+          frame: null,
+          stack: `A layout component at the path ${render_options?.layout} could not be found.`,
+        })
+      );
+    }
+
+    const Component = await dynamic_import(`${component_path}?v=${new Date().getTime()}`);
+    const Layout = layout_path ? await dynamic_import(`${layout_path}?v=${new Date().getTime()}`) : null;
+    const props = { ...(render_options?.props || {}) };
+
+    if (layout_path) {
+      props.page = Component;
+    }
+
+    const base_html = await get_base_html();
+    const translations = await get_translations({
+      joystick_build_path,
+      render_component_path,
+      req,
+    });
+
+    const url = get_url(req);
+
+    const html = await ssr({
+      api_schema: app_instance?.options?.api,
+      attributes: render_options?.attributes,
+      base_html,
+      component_options: {
+        props,
+        translations,
+        url,
+      },
+      // NOTE: If we have a layout, we want to render that as it will have the page embedded
+      // via props. If not, fall back to the Component (either a page or an email template).
+      component_to_render: Layout || Component,
+      head: render_options?.head,
+      render_component_path: sanitized_render_component_path,
+      render_layout_path: sanitized_render_layout_path,
+      req,
+    });
+
+    return res.status(200).send(html);
+  };
+
+  next();
+};
+
+export default render_middleware;

package/src/app/middleware/request_methods.js

@@ -0,0 +1,21 @@
+const request_methods_middleware = (req, res, next) => {
+  // NOTE: Exclude TRACE and TRACK methods to avoid XST attacks.
+  const allowed_methods = [
+    "OPTIONS",
+    "HEAD",
+    "CONNECT",
+    "GET",
+    "POST",
+    "PUT",
+    "DELETE",
+    "PATCH",
+  ];
+
+  if (!allowed_methods.includes(req.method)) {
+    res.status(405).send(`${req.method} not allowed.`);
+  }
+
+  next();
+};
+
+export default request_methods_middleware;

package/src/app/middleware/session.js

@@ -0,0 +1,31 @@
+import sessions_query from "../databases/queries/sessions.js";
+import set_cookie from '../../lib/set_cookie.js';
+
+const session_middleware = async (req, res, next) => {
+  let session_id = req?.cookies?.joystick_session;
+
+  const existing_session = session_id ? await sessions_query('get_session', {
+    session_id,
+  }) : null;
+
+  // NOTE: If cookie didn't exist, generate a fresh session and add it to the
+  // sessions database along with a new CSRF token.
+  if (!existing_session) {
+    session_id = await sessions_query('create_session');
+    set_cookie(res, 'joystick_session', session_id);
+  }
+  
+  req.cookies = {
+    ...(req?.cookies || {}),
+    joystick_session: session_id,
+  }
+  
+  req.context = {
+    ...(req?.context || {}),
+    session: await sessions_query('get_session', { session_id }),
+  };
+  
+  next();
+};
+
+export default session_middleware;

package/src/app/push_logs.js

@@ -0,0 +1,44 @@
+import winston from 'winston';
+import fs from 'fs';
+import path_exists from '../lib/path_exists.js';
+
+const { mkdir } = fs.promises;
+
+const push_logs = async () => {
+  if (!(await path_exists('/root/push/logs'))) {
+    await mkdir('/root/push/logs', { recursive: true });
+  }
+
+  const logger = winston.createLogger({
+    format: winston.format.combine(
+      winston.format.timestamp(),
+      winston.format.json(),
+    ),
+    transports: [
+      new winston.transports.File({
+        filename: '/root/push/logs/app.log',
+        maxsize: 1024 * 1024 * 20, // 20MB,
+        maxFiles: 1,
+        tailable: true,
+      })
+    ],
+  });
+
+  process.stdout.write = (data) => {
+    logger.info(data);
+  };
+
+  process.stderr.write = (data) => {
+    logger.error(data);
+  };
+  
+  process.on('uncaughtException', (error) => {
+    logger.error(error instanceof Error ? error?.toString() : error);
+  });
+
+  process.on('unhandledRejection', (error) => {
+    logger.error(error instanceof Error ? error?.toString() : error);
+  });
+};
+
+export default push_logs;

package/src/app/queues/index.js

@@ -0,0 +1,268 @@
+import chalk from "chalk";
+import fs from "fs";
+import os from "os";
+import generate_id from "../../lib/generate_id.js";
+import get_target_database_connection from "../databases/get_target_database_connection.js";
+import query_map from "../databases/queries/map.js";
+import timestamps from "../../lib/timestamps.js";
+import types from "../../lib/types.js";
+import track_function_call from '../../test/track_function_call.js';
+
+class Queue {
+  constructor(queue_name = "", queue_options = {}) {
+    this.init_database = this.init_database.bind(this);
+
+    this.machine_id = fs
+      .readFileSync(`${os.homedir()}/.cheatcode/MACHINE_ID`, "utf-8")
+      ?.trim()
+      .replace(/\n/g, "");
+    this.name = queue_name;
+    this.options = {
+      concurrent_jobs: 1,
+      ...queue_options,
+    };
+
+    this.init_database(this?.options?.external, this?.options?.database?.provider);
+  }
+
+  async init_database(is_external = false, database_provider = null) {
+    const queues_database = database_provider || (get_target_database_connection("queues"))?.provider;
+    const queue_queries_for_database_provider = query_map[queues_database]?.queues;
+    const db = this._get_database_connection();
+
+    if (types.is_object(db) && types.is_object(queue_queries_for_database_provider)) {
+      this.db = Object.entries(queue_queries_for_database_provider || {})?.reduce(
+        (bound_queries = {}, [query_function_name, query_function]) => {
+          bound_queries[query_function_name] = query_function.bind({
+            db,
+            machine_id: this.machine_id,
+            queue: {
+              name: this.name,
+              options: this.options,
+            },
+          });
+
+          return bound_queries;
+        },
+        { _connection: db },
+      );
+
+      // NOTE: Let an external queue manage its own configuration and operation. We only want
+      // a connection to it so we can add jobs remotely.
+      if (!is_external) {
+        await this.db.initialize_database(queues_database);
+
+        if (this?.options?.runOnStartup || this?.options?.run_on_startup) {
+          this.run();
+        }
+      }
+    }
+  }
+
+  _get_database_connection() {
+    // NOTE: This applies to both external and internal databases being specified. If this is passed,
+    // we assume that the database exists on the process.
+    if (this?.options?.database) {
+      const { provider, name } = this?.options?.database;
+      const existing_connection = process.databases && process.databases[provider] && process.databases[provider][name];
+
+      if (!existing_connection) {
+        console.warn(chalk.red(`Connection to database ${provider}.${name} not found on process. Cannot start queue.`));
+      }
+
+      return existing_connection || null;
+    }
+
+    // NOTE: Fallback to a default which assumes a single database flagged as queues: true in the
+    // app's settings.<env>.json file.
+    return process.databases._queues;
+  }
+
+  async add(options = {}) {
+    // NOTE: If no next_run_at specified, run the job ASAP.
+    const next_run_at =
+      (options?.nextRunAt || options?.next_run_at) === "now" || (!options?.nextRunAt && !options?.next_run_at)
+        ? timestamps.get_future_time()
+        : (options?.nextRunAt || options?.next_run_at);
+
+    const job_to_add = {
+      _id: generate_id(16),
+      status: "pending",
+      environment: process.env.NODE_ENV,
+      next_run_at,
+      job: options?.job,
+      payload: options?.payload,
+    };
+
+    const job_definition = this?.options?.jobs && this?.options?.jobs[options?.job];
+
+    // NOTE: This doesn't work on an external queue because external queues
+    // do not define the job, only the remote job does. In an external setup,
+    // we don't have access to the queue config, only a pointer to the
+    // database for the queue. We opt to just add the job blindly, trusting
+    // that the external queue will handle validation of the job run.
+    if (
+      job_definition && (
+      	types.is_function(job_definition?.preflight?.onBeforeAdd) ||
+      	types.is_function(job_definition?.preflight?.on_before_add)
+      )
+    ) {
+      const can_add_job = await (job_definition?.preflight?.onBeforeAdd || job_definition?.preflight?.on_before_add)(
+      	job_to_add,
+      	this.db._connection,
+      	`queue_${this.name}`
+      );
+
+      if (!can_add_job) {
+        return null;
+      }
+    }
+    
+    this.db.add_job(job_to_add);
+  }
+
+  async _check_if_okay_to_run_jobs() {
+    const jobs_running = await this._get_number_of_jobs_running();
+    return jobs_running < (this.options.concurrentJobs || this.options.concurrent_jobs || 1);
+  }
+
+  _get_number_of_jobs_running() {
+    return this.db.count_jobs("running");
+  }
+
+  _handle_requeue_jobs_running_before_restart() {
+    // NOTE: If we don't want to rerun jobs that were running before restart,
+    // mark them as incomplete and then return.
+    if (!this.db) {
+      return;
+    }
+
+    if (!this.options.retryJobsRunningBeforeRestart && !this.options.retry_jobs_running_before_restart) {
+      return this.db.delete_incomplete_jobs_for_machine();
+    }
+
+    return this.db.set_jobs_for_machine_pending();
+  }
+
+  run() {
+    if (!this.db) {
+      return;
+    }
+
+    if (process.env.NODE_ENV !== 'test') {
+      console.log(`Starting ${this.name} queue...`);
+    }
+
+    this._handle_requeue_jobs_running_before_restart().then(() => {
+      setInterval(async () => {
+        // NOTE: We want to respect concurrent_jobs limit here. If we've maxed out the concurrent
+        // jobs limit for this queue, don't run anything until the number running is < than the
+        // specified concurrent_jobs threshold.
+        const okay_to_run_jobs = await this._check_if_okay_to_run_jobs();
+        if (okay_to_run_jobs && !process.env.HALT_QUEUES) {
+          const next_job = await this.db.get_next_job_to_run();
+          this.handle_next_job(next_job);
+        }
+      }, 300);
+    });
+  }
+
+  async handle_next_job(next_job = {}) {
+    const job_definition = this.options.jobs[next_job?.job];
+
+    if (
+      next_job &&
+      next_job?.job &&
+      job_definition &&
+      types.is_function(job_definition?.run)
+    ) {
+      try {
+        if (types.is_function(job_definition?.preflight?.okayToRun) || types.is_function(job_definition?.preflight?.okay_to_run)) {
+          const okay_to_run = await (job_definition?.preflight?.okayToRun || job_definition?.preflight?.okay_to_run)(
+          	next_job?.payload,
+          	next_job
+          );
+
+          if (!okay_to_run) {
+            return this._handle_requeue_job(
+            	next_job,
+            	timestamps.get_future_time(
+            		'seconds',
+            		(job_definition?.preflight?.requeueDelayInSeconds || job_definition?.preflight?.requeue_delay_in_seconds) || 10
+            	)
+            );
+          }
+        }
+
+        if (types.is_number(job_definition?.maxAttempts) || types.is_number(job_definition?.max_attempts)) {
+          if (next_job?.attempts >= parseInt(job_definition?.maxAttempts || job_definition?.max_attempts, 10)) {
+            if (
+            	types.is_function(job_definition?.onMaxAttemptsExhausted ) ||
+            	types.is_function(job_definition?.on_max_attempts_exhausted)
+            ) {
+              await (job_definition.onMaxAttemptsExhausted || job_definition.on_max_attempts_exhausted)(next_job);
+            }
+
+            return this._handle_delete_job(next_job?._id);
+          }
+        }
+
+        await this._log_attempt(next_job?._id);
+        track_function_call(`node.queues.${this?.name}.jobs.${next_job?.job}`, [
+          next_job?.payload,
+        ]);
+
+        await job_definition.run(next_job?.payload, {
+          ...next_job,
+          queue: this,
+          completed: () => this._handle_job_completed(next_job?._id),
+          failed: (error) => this._handle_job_failed(next_job, job_definition, error),
+          delete: () => this._handle_delete_job(next_job?._id),
+          requeue: (next_run_at = "") => this._handle_requeue_job(next_job, next_run_at),
+        });
+      } catch (exception) {
+        console.warn(exception);
+        this._handle_job_failed(next_job, job_definition, exception);
+      }
+    }
+  }
+
+  _log_attempt(job_id = "") {
+    return this.db.log_attempt(job_id);
+  }
+
+  _handle_job_completed(job_id = "") {
+    return this.db.set_job_completed(job_id);
+  }
+
+  _handle_job_failed(next_job = {}, job_definition = {}, error = "") {
+    if (job_definition?.requeueOnFailure || job_definition?.requeue_on_failure) {
+      return this._handle_requeue_job(
+        next_job,
+        timestamps.get_future_time('seconds', 10),
+      );
+    }
+
+    return this.db.set_job_failed(next_job?._id, error);
+  }
+
+  _handle_delete_job(job_id = "") {
+    return this.db.delete_job(job_id);
+  }
+
+  _handle_requeue_job(job = {}, next_run_at = null) {
+    return this.db.requeue_job(job?._id, next_run_at || timestamps.get_future_time());
+  }
+
+  list(status = "") {
+    const query = {};
+
+    if (status) {
+      query.status = status;
+    }
+
+    return this.db.get_jobs(query);
+  }
+}
+
+export default Queue;