rxdb-server 15.4.3

package/dist/cjs/plugins/server/endpoint-rest.js

@@ -0,0 +1,219 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RxServerRestEndpoint = exports.REST_PATHS = void 0;
+var _core = require("rxdb/plugins/core");
+var _rxjs = require("rxjs");
+var _utils = require("rxdb/plugins/utils");
+var _helper = require("./helper.js");
+var REST_PATHS = exports.REST_PATHS = ['query', 'query/observe', 'get', 'set', 'delete'
+
+// TODO
+/*
+'attachments/add',
+'attachments/delete',
+'events'
+*/];
+var RxServerRestEndpoint = exports.RxServerRestEndpoint = function RxServerRestEndpoint(server, name, collection, queryModifier, changeValidator, serverOnlyFields, cors) {
+  var _this = this;
+  this.type = 'rest';
+  this.server = server;
+  this.name = name;
+  this.collection = collection;
+  this.serverOnlyFields = serverOnlyFields;
+  this.cors = cors;
+  (0, _helper.setCors)(this.server, [this.name].join('/'), cors);
+  (0, _helper.blockPreviousVersionPaths)(this.server, [this.name].join('/'), collection.schema.version);
+  this.urlPath = [this.name, collection.schema.version].join('/');
+  var primaryPath = this.collection.schema.primaryPath;
+  var authDataByRequest = (0, _helper.addAuthMiddleware)(this.server, this.urlPath);
+  this.queryModifier = (authData, query) => {
+    if ((0, _helper.doesContainRegexQuerySelector)(query.selector)) {
+      throw new Error('$regex queries not allowed because of DOS-attacks');
+    }
+    return queryModifier(authData, query);
+  };
+  this.changeValidator = (authData, change) => {
+    if (change.assumedMasterState && (0, _helper.docContainsServerOnlyFields)(serverOnlyFields, change.assumedMasterState) || (0, _helper.docContainsServerOnlyFields)(serverOnlyFields, change.newDocumentState)) {
+      return false;
+    }
+    return changeValidator(authData, change);
+  };
+  var removeServerOnlyFields = (0, _helper.removeServerOnlyFieldsMonad)(this.serverOnlyFields);
+  this.server.expressApp.post('/' + this.urlPath + '/query', async (req, res) => {
+    var authData = (0, _utils.getFromMapOrThrow)(authDataByRequest, req);
+    var useQuery;
+    try {
+      useQuery = this.queryModifier((0, _utils.ensureNotFalsy)(authData), (0, _core.normalizeMangoQuery)(this.collection.schema.jsonSchema, req.body));
+    } catch (err) {
+      (0, _helper.closeConnection)(res, 400, 'Bad Request');
+      return;
+    }
+    var rxQuery = this.collection.find(useQuery);
+    var result = await rxQuery.exec();
+    res.setHeader('Content-Type', 'application/json');
+    res.json({
+      documents: result.map(d => removeServerOnlyFields(d.toJSON()))
+    });
+  });
+
+  /**
+   * It is not possible to send data with server send events,
+   * so we send the query as query parameter in base64
+   * like ?query=e3NlbGVjdG9yOiB7fX0=
+   */
+  this.server.expressApp.get('/' + this.urlPath + '/query/observe', async (req, res) => {
+    var authData = (0, _utils.getFromMapOrThrow)(authDataByRequest, req);
+    (0, _helper.writeSSEHeaders)(res);
+    var useQuery = this.queryModifier((0, _utils.ensureNotFalsy)(authData), (0, _core.normalizeMangoQuery)(this.collection.schema.jsonSchema, JSON.parse(atob(req.query.query))));
+    var rxQuery = this.collection.find(useQuery);
+    var subscription = rxQuery.$.pipe((0, _rxjs.mergeMap)(async result => {
+      var resultData = result.map(doc => removeServerOnlyFields(doc.toJSON()));
+
+      /**
+       * The auth-data might be expired
+       * so we re-run the auth parsing each time
+       * before emitting the new results.
+       */
+      try {
+        authData = await server.authHandler(req.headers);
+      } catch (err) {
+        (0, _helper.closeConnection)(res, 401, 'Unauthorized');
+        return null;
+      }
+      return resultData;
+    }), (0, _rxjs.filter)(f => f !== null)).subscribe(resultData => {
+      res.write('data: ' + JSON.stringify(resultData) + '\n\n');
+    });
+
+    /**
+     * @link https://youtu.be/0PcMuYGJPzM?si=AxkczxcMaUwhh8k9&t=363
+     */
+    req.on('close', () => {
+      subscription.unsubscribe();
+      res.end();
+    });
+  });
+  this.server.expressApp.post('/' + this.urlPath + '/get', async (req, res) => {
+    var authData = (0, _utils.getFromMapOrThrow)(authDataByRequest, req);
+    var ids = req.body;
+    var rxQuery = this.collection.findByIds(ids);
+    var resultMap = await rxQuery.exec();
+    var resultValues = Array.from(resultMap.values());
+    var docMatcher = (0, _helper.getDocAllowedMatcher)(this, (0, _utils.ensureNotFalsy)(authData));
+    var useDocs = resultValues.map(d => d.toJSON());
+    useDocs = useDocs.filter(d => docMatcher(d));
+    useDocs = useDocs.map(d => removeServerOnlyFields(d));
+    res.setHeader('Content-Type', 'application/json');
+    res.json({
+      documents: useDocs
+    });
+  });
+  this.server.expressApp.post('/' + this.urlPath + '/set', async (req, res) => {
+    var authData = (0, _utils.getFromMapOrThrow)(authDataByRequest, req);
+    var docDataMatcherWrite = (0, _helper.getDocAllowedMatcher)(this, (0, _utils.ensureNotFalsy)(authData));
+    var docsData = req.body;
+    for (var docData of docsData) {
+      var allowed = docDataMatcherWrite(docData);
+      if (!allowed) {
+        (0, _helper.closeConnection)(res, 403, 'Forbidden');
+        return;
+      }
+    }
+    function onWriteError(err, docData) {
+      if (err.rxdb && err.code === 'CONFLICT') {
+        // just retry on conflicts
+        docsData.push(docData);
+      } else {
+        (0, _helper.closeConnection)(res, 500, 'Internal Server Error');
+        throw err;
+      }
+    }
+    while (docsData.length > 0) {
+      var promises = [];
+      var docs = await collection.findByIds(docsData.map(d => d[primaryPath])).exec();
+      var useDocsData = docsData.slice();
+      docsData = [];
+      var _loop = async function (_docData) {
+          var id = _docData[primaryPath];
+          var doc = docs.get(id);
+          if (!doc) {
+            promises.push(_this.collection.insert(_docData).catch(err => onWriteError(err, _docData)));
+          } else {
+            var isAllowed = _this.changeValidator(authData, {
+              newDocumentState: removeServerOnlyFields(_docData),
+              assumedMasterState: removeServerOnlyFields(doc.toJSON(true))
+            });
+            if (!isAllowed) {
+              (0, _helper.closeConnection)(res, 403, 'Forbidden');
+              return {
+                v: void 0
+              };
+            }
+            promises.push(doc.patch(_docData).catch(err => onWriteError(err, _docData)));
+          }
+        },
+        _ret;
+      for (var _docData of useDocsData) {
+        _ret = await _loop(_docData);
+        if (_ret) return _ret.v;
+      }
+      await Promise.all(promises);
+    }
+    res.setHeader('Content-Type', 'application/json');
+    res.json({});
+  });
+  this.server.expressApp.post('/' + this.urlPath + '/delete', async (req, res) => {
+    var authData = (0, _utils.getFromMapOrThrow)(authDataByRequest, req);
+    var docDataMatcherWrite = (0, _helper.getDocAllowedMatcher)(this, (0, _utils.ensureNotFalsy)(authData));
+    var ids = req.body;
+    while (ids.length > 0) {
+      var useIds = ids.slice(0);
+      ids = [];
+      var promises = [];
+      var docsMap = await this.collection.findByIds(useIds).exec();
+      var _loop2 = async function (id) {
+          var doc = docsMap.get(id);
+          if (doc) {
+            var isAllowedDoc = docDataMatcherWrite(doc.toJSON(true));
+            if (!isAllowedDoc) {
+              (0, _helper.closeConnection)(res, 403, 'Forbidden');
+              return {
+                v: void 0
+              };
+            }
+            var isAllowedChange = _this.changeValidator(authData, {
+              newDocumentState: doc.toJSON(true),
+              assumedMasterState: doc.toJSON(true)
+            });
+            if (!isAllowedChange) {
+              (0, _helper.closeConnection)(res, 403, 'Forbidden');
+              return {
+                v: void 0
+              };
+            }
+            promises.push(doc.remove().catch(err => {
+              if (err.rxdb && err.code === 'CONFLICT') {
+                // just retry on conflicts
+                ids.push(id);
+              } else {
+                (0, _helper.closeConnection)(res, 500, 'Internal Server Error');
+                throw err;
+              }
+            }));
+          }
+        },
+        _ret2;
+      for (var id of useIds) {
+        _ret2 = await _loop2(id);
+        if (_ret2) return _ret2.v;
+      }
+      await Promise.all(promises);
+    }
+    res.setHeader('Content-Type', 'application/json');
+    res.json({});
+  });
+};
+//# sourceMappingURL=endpoint-rest.js.map

package/dist/cjs/plugins/server/endpoint-rest.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"endpoint-rest.js","names":["_core","require","_rxjs","_utils","_helper","REST_PATHS","exports","RxServerRestEndpoint","server","name","collection","queryModifier","changeValidator","serverOnlyFields","cors","_this","type","setCors","join","blockPreviousVersionPaths","schema","version","urlPath","primaryPath","authDataByRequest","addAuthMiddleware","authData","query","doesContainRegexQuerySelector","selector","Error","change","assumedMasterState","docContainsServerOnlyFields","newDocumentState","removeServerOnlyFields","removeServerOnlyFieldsMonad","expressApp","post","req","res","getFromMapOrThrow","useQuery","ensureNotFalsy","normalizeMangoQuery","jsonSchema","body","err","closeConnection","rxQuery","find","result","exec","setHeader","json","documents","map","d","toJSON","get","writeSSEHeaders","JSON","parse","atob","subscription","$","pipe","mergeMap","resultData","doc","authHandler","headers","filter","f","subscribe","write","stringify","on","unsubscribe","end","ids","findByIds","resultMap","resultValues","Array","from","values","docMatcher","getDocAllowedMatcher","useDocs","docDataMatcherWrite","docsData","docData","allowed","onWriteError","rxdb","code","push","length","promises","docs","useDocsData","slice","_loop","_docData","id","insert","catch","isAllowed","v","patch","_ret","Promise","all","useIds","docsMap","_loop2","isAllowedDoc","isAllowedChange","remove","_ret2"],"sources":["../../../../src/plugins/server/endpoint-rest.ts"],"sourcesContent":["import {\n    FilledMangoQuery,\n    RxCollection,\n    RxError,\n    normalizeMangoQuery\n} from 'rxdb/plugins/core';\nimport type { RxServer } from './rx-server.ts';\nimport type {\n    RxServerChangeValidator,\n    RxServerEndpoint,\n    RxServerQueryModifier\n} from './types.ts';\nimport { filter, mergeMap } from 'rxjs';\nimport {\n    ensureNotFalsy,\n    getFromMapOrThrow\n} from 'rxdb/plugins/utils';\n\nimport {\n    addAuthMiddleware,\n    blockPreviousVersionPaths,\n    closeConnection,\n    docContainsServerOnlyFields,\n    doesContainRegexQuerySelector,\n    getDocAllowedMatcher,\n    removeServerOnlyFieldsMonad,\n    setCors,\n    writeSSEHeaders\n} from './helper.ts';\n\n\nexport const REST_PATHS = [\n    'query',\n    'query/observe',\n    'get',\n    'set',\n    'delete',\n\n    // TODO\n    /*\n    'attachments/add',\n    'attachments/delete',\n    'events'\n    */\n] as const;\n\n\nexport class RxServerRestEndpoint<AuthType, RxDocType> implements RxServerEndpoint<AuthType, RxDocType> {\n    readonly type = 'rest';\n    readonly urlPath: string;\n    readonly changeValidator: RxServerChangeValidator<AuthType, RxDocType>;\n    readonly queryModifier: RxServerQueryModifier<AuthType, RxDocType>;\n    constructor(\n        public readonly server: RxServer<AuthType>,\n        public readonly name: string,\n        public readonly collection: RxCollection<RxDocType>,\n        queryModifier: RxServerQueryModifier<AuthType, RxDocType>,\n        changeValidator: RxServerChangeValidator<AuthType, RxDocType>,\n        public readonly serverOnlyFields: string[],\n        public readonly cors?: string\n    ) {\n        setCors(this.server, [this.name].join('/'), cors);\n        blockPreviousVersionPaths(this.server, [this.name].join('/'), collection.schema.version);\n\n        this.urlPath = [this.name, collection.schema.version].join('/');\n        const primaryPath = this.collection.schema.primaryPath;\n        const authDataByRequest = addAuthMiddleware(\n            this.server,\n            this.urlPath\n        );\n\n        this.queryModifier = (authData, query) => {\n            if (doesContainRegexQuerySelector(query.selector)) {\n                throw new Error('$regex queries not allowed because of DOS-attacks');\n            }\n            return queryModifier(authData, query);\n        }\n        this.changeValidator = (authData, change) => {\n            if (\n                (\n                    change.assumedMasterState &&\n                    docContainsServerOnlyFields(serverOnlyFields, change.assumedMasterState)\n                ) ||\n                docContainsServerOnlyFields(serverOnlyFields, change.newDocumentState)\n            ) {\n                return false;\n            }\n            return changeValidator(authData, change);\n        }\n        const removeServerOnlyFields = removeServerOnlyFieldsMonad(this.serverOnlyFields);\n\n        this.server.expressApp.post('/' + this.urlPath + '/query', async (req, res) => {\n            const authData = getFromMapOrThrow(authDataByRequest, req);\n            let useQuery: FilledMangoQuery<RxDocType>\n            try {\n                useQuery = this.queryModifier(\n                    ensureNotFalsy(authData),\n                    normalizeMangoQuery(\n                        this.collection.schema.jsonSchema,\n                        req.body\n                    )\n                );\n            } catch (err) {\n                closeConnection(res, 400, 'Bad Request');\n                return;\n            }\n            const rxQuery = this.collection.find(useQuery as any);\n            const result = await rxQuery.exec();\n            res.setHeader('Content-Type', 'application/json');\n            res.json({\n                documents: result.map(d => removeServerOnlyFields(d.toJSON()))\n            });\n        });\n\n        /**\n         * It is not possible to send data with server send events,\n         * so we send the query as query parameter in base64\n         * like ?query=e3NlbGVjdG9yOiB7fX0=\n         */\n        this.server.expressApp.get('/' + this.urlPath + '/query/observe', async (req, res) => {\n            let authData = getFromMapOrThrow(authDataByRequest, req);\n            writeSSEHeaders(res);\n\n            const useQuery: FilledMangoQuery<RxDocType> = this.queryModifier(\n                ensureNotFalsy(authData),\n                normalizeMangoQuery(\n                    this.collection.schema.jsonSchema,\n                    JSON.parse(atob(req.query.query as string))\n                )\n            );\n\n            const rxQuery = this.collection.find(useQuery as any);\n            const subscription = rxQuery.$.pipe(\n                mergeMap(async (result) => {\n                    const resultData = result.map(doc => removeServerOnlyFields(doc.toJSON()));\n\n                    /**\n                     * The auth-data might be expired\n                     * so we re-run the auth parsing each time\n                     * before emitting the new results.\n                     */\n                    try {\n                        authData = await server.authHandler(req.headers);\n                    } catch (err) {\n                        closeConnection(res, 401, 'Unauthorized');\n                        return null;\n                    }\n\n                    return resultData;\n                }),\n                filter(f => f !== null)\n            ).subscribe(resultData => {\n                res.write('data: ' + JSON.stringify(resultData) + '\\n\\n');\n            });\n\n            /**\n             * @link https://youtu.be/0PcMuYGJPzM?si=AxkczxcMaUwhh8k9&t=363\n             */\n            req.on('close', () => {\n                subscription.unsubscribe();\n                res.end();\n            });\n        });\n\n\n        this.server.expressApp.post('/' + this.urlPath + '/get', async (req, res) => {\n            const authData = getFromMapOrThrow(authDataByRequest, req);\n            const ids: string[] = req.body;\n\n            const rxQuery = this.collection.findByIds(ids);\n            const resultMap = await rxQuery.exec();\n            const resultValues = Array.from(resultMap.values());\n            const docMatcher = getDocAllowedMatcher(this, ensureNotFalsy(authData));\n            let useDocs = resultValues.map(d => d.toJSON());\n            useDocs = useDocs.filter(d => docMatcher(d as any));\n            useDocs = useDocs.map(d => removeServerOnlyFields(d))\n\n            res.setHeader('Content-Type', 'application/json');\n            res.json({\n                documents: useDocs\n            });\n        });\n\n        this.server.expressApp.post('/' + this.urlPath + '/set', async (req, res) => {\n            const authData = getFromMapOrThrow(authDataByRequest, req);\n            const docDataMatcherWrite = getDocAllowedMatcher(this, ensureNotFalsy(authData));\n\n            let docsData: RxDocType[] = req.body;\n\n            for (const docData of docsData) {\n                const allowed = docDataMatcherWrite(docData as any);\n                if (!allowed) {\n                    closeConnection(res, 403, 'Forbidden');\n                    return;\n                }\n            }\n\n            function onWriteError(err: RxError, docData: RxDocType) {\n                if (err.rxdb && err.code === 'CONFLICT') {\n                    // just retry on conflicts\n                    docsData.push(docData);\n                } else {\n                    closeConnection(res, 500, 'Internal Server Error');\n                    throw err;\n                }\n            }\n\n            while (docsData.length > 0) {\n                const promises: Promise<any>[] = [];\n                const docs = await collection.findByIds(docsData.map(d => (d as any)[primaryPath])).exec();\n                let useDocsData = docsData.slice();\n                docsData = [];\n                for (const docData of useDocsData) {\n                    const id = (docData as any)[primaryPath];\n                    const doc = docs.get(id);\n                    if (!doc) {\n                        promises.push(this.collection.insert(docData).catch(err => onWriteError(err, docData)));\n                    } else {\n                        const isAllowed = this.changeValidator(authData, {\n                            newDocumentState: removeServerOnlyFields(docData as any),\n                            assumedMasterState: removeServerOnlyFields(doc.toJSON(true))\n                        });\n                        if (!isAllowed) {\n                            closeConnection(res, 403, 'Forbidden');\n                            return;\n                        }\n                        promises.push(doc.patch(docData).catch(err => onWriteError(err, docData)));\n                    }\n                }\n                await Promise.all(promises);\n            }\n\n            res.setHeader('Content-Type', 'application/json');\n            res.json({\n            });\n        });\n\n        this.server.expressApp.post('/' + this.urlPath + '/delete', async (req, res) => {\n            const authData = getFromMapOrThrow(authDataByRequest, req);\n            const docDataMatcherWrite = getDocAllowedMatcher(this, ensureNotFalsy(authData));\n\n            let ids: string[] = req.body;\n            while (ids.length > 0) {\n                const useIds = ids.slice(0);\n                ids = [];\n                const promises: Promise<any>[] = [];\n                const docsMap = await this.collection.findByIds(useIds).exec();\n                for (const id of useIds) {\n                    const doc = docsMap.get(id);\n                    if (doc) {\n                        const isAllowedDoc = docDataMatcherWrite(doc.toJSON(true) as any);\n                        if (!isAllowedDoc) {\n                            closeConnection(res, 403, 'Forbidden');\n                            return;\n                        }\n\n                        const isAllowedChange = this.changeValidator(authData, {\n                            newDocumentState: doc.toJSON(true) as any,\n                            assumedMasterState: doc.toJSON(true) as any\n                        });\n                        if (!isAllowedChange) {\n                            closeConnection(res, 403, 'Forbidden');\n                            return;\n                        }\n\n                        promises.push(doc.remove().catch((err: RxError) => {\n                            if (err.rxdb && err.code === 'CONFLICT') {\n                                // just retry on conflicts\n                                ids.push(id);\n                            } else {\n                                closeConnection(res, 500, 'Internal Server Error');\n                                throw err;\n                            }\n                        }));\n                    }\n                }\n                await Promise.all(promises);\n            }\n            res.setHeader('Content-Type', 'application/json');\n            res.json({});\n        });\n    }\n}\n"],"mappings":";;;;;;AAAA,IAAAA,KAAA,GAAAC,OAAA;AAYA,IAAAC,KAAA,GAAAD,OAAA;AACA,IAAAE,MAAA,GAAAF,OAAA;AAKA,IAAAG,OAAA,GAAAH,OAAA;AAaO,IAAMI,UAAU,GAAAC,OAAA,CAAAD,UAAA,GAAG,CACtB,OAAO,EACP,eAAe,EACf,KAAK,EACL,KAAK,EACL;;AAEA;AACA;AACJ;AACA;AACA;AACA,EAJI,CAKM;AAAC,IAGEE,oBAAoB,GAAAD,OAAA,CAAAC,oBAAA,GAK7B,SAAAA,qBACoBC,MAA0B,EAC1BC,IAAY,EACZC,UAAmC,EACnDC,aAAyD,EACzDC,eAA6D,EAC7CC,gBAA0B,EAC1BC,IAAa,EAC/B;EAAA,IAAAC,KAAA;EAAA,KAZOC,IAAI,GAAG,MAAM;EAAA,KAKFR,MAA0B,GAA1BA,MAA0B;EAAA,KAC1BC,IAAY,GAAZA,IAAY;EAAA,KACZC,UAAmC,GAAnCA,UAAmC;EAAA,KAGnCG,gBAA0B,GAA1BA,gBAA0B;EAAA,KAC1BC,IAAa,GAAbA,IAAa;EAE7B,IAAAG,eAAO,EAAC,IAAI,CAACT,MAAM,EAAE,CAAC,IAAI,CAACC,IAAI,CAAC,CAACS,IAAI,CAAC,GAAG,CAAC,EAAEJ,IAAI,CAAC;EACjD,IAAAK,iCAAyB,EAAC,IAAI,CAACX,MAAM,EAAE,CAAC,IAAI,CAACC,IAAI,CAAC,CAACS,IAAI,CAAC,GAAG,CAAC,EAAER,UAAU,CAACU,MAAM,CAACC,OAAO,CAAC;EAExF,IAAI,CAACC,OAAO,GAAG,CAAC,IAAI,CAACb,IAAI,EAAEC,UAAU,CAACU,MAAM,CAACC,OAAO,CAAC,CAACH,IAAI,CAAC,GAAG,CAAC;EAC/D,IAAMK,WAAW,GAAG,IAAI,CAACb,UAAU,CAACU,MAAM,CAACG,WAAW;EACtD,IAAMC,iBAAiB,GAAG,IAAAC,yBAAiB,EACvC,IAAI,CAACjB,MAAM,EACX,IAAI,CAACc,OACT,CAAC;EAED,IAAI,CAACX,aAAa,GAAG,CAACe,QAAQ,EAAEC,KAAK,KAAK;IACtC,IAAI,IAAAC,qCAA6B,EAACD,KAAK,CAACE,QAAQ,CAAC,EAAE;MAC/C,MAAM,IAAIC,KAAK,CAAC,mDAAmD,CAAC;IACxE;IACA,OAAOnB,aAAa,CAACe,QAAQ,EAAEC,KAAK,CAAC;EACzC,CAAC;EACD,IAAI,CAACf,eAAe,GAAG,CAACc,QAAQ,EAAEK,MAAM,KAAK;IACzC,IAEQA,MAAM,CAACC,kBAAkB,IACzB,IAAAC,mCAA2B,EAACpB,gBAAgB,EAAEkB,MAAM,CAACC,kBAAkB,CAAC,IAE5E,IAAAC,mCAA2B,EAACpB,gBAAgB,EAAEkB,MAAM,CAACG,gBAAgB,CAAC,EACxE;MACE,OAAO,KAAK;IAChB;IACA,OAAOtB,eAAe,CAACc,QAAQ,EAAEK,MAAM,CAAC;EAC5C,CAAC;EACD,IAAMI,sBAAsB,GAAG,IAAAC,mCAA2B,EAAC,IAAI,CAACvB,gBAAgB,CAAC;EAEjF,IAAI,CAACL,MAAM,CAAC6B,UAAU,CAACC,IAAI,CAAC,GAAG,GAAG,IAAI,CAAChB,OAAO,GAAG,QAAQ,EAAE,OAAOiB,GAAG,EAAEC,GAAG,KAAK;IAC3E,IAAMd,QAAQ,GAAG,IAAAe,wBAAiB,EAACjB,iBAAiB,EAAEe,GAAG,CAAC;IAC1D,IAAIG,QAAqC;IACzC,IAAI;MACAA,QAAQ,GAAG,IAAI,CAAC/B,aAAa,CACzB,IAAAgC,qBAAc,EAACjB,QAAQ,CAAC,EACxB,IAAAkB,yBAAmB,EACf,IAAI,CAAClC,UAAU,CAACU,MAAM,CAACyB,UAAU,EACjCN,GAAG,CAACO,IACR,CACJ,CAAC;IACL,CAAC,CAAC,OAAOC,GAAG,EAAE;MACV,IAAAC,uBAAe,EAACR,GAAG,EAAE,GAAG,EAAE,aAAa,CAAC;MACxC;IACJ;IACA,IAAMS,OAAO,GAAG,IAAI,CAACvC,UAAU,CAACwC,IAAI,CAACR,QAAe,CAAC;IACrD,IAAMS,MAAM,GAAG,MAAMF,OAAO,CAACG,IAAI,CAAC,CAAC;IACnCZ,GAAG,CAACa,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC;IACjDb,GAAG,CAACc,IAAI,CAAC;MACLC,SAAS,EAAEJ,MAAM,CAACK,GAAG,CAACC,CAAC,IAAItB,sBAAsB,CAACsB,CAAC,CAACC,MAAM,CAAC,CAAC,CAAC;IACjE,CAAC,CAAC;EACN,CAAC,CAAC;;EAEF;AACR;AACA;AACA;AACA;EACQ,IAAI,CAAClD,MAAM,CAAC6B,UAAU,CAACsB,GAAG,CAAC,GAAG,GAAG,IAAI,CAACrC,OAAO,GAAG,gBAAgB,EAAE,OAAOiB,GAAG,EAAEC,GAAG,KAAK;IAClF,IAAId,QAAQ,GAAG,IAAAe,wBAAiB,EAACjB,iBAAiB,EAAEe,GAAG,CAAC;IACxD,IAAAqB,uBAAe,EAACpB,GAAG,CAAC;IAEpB,IAAME,QAAqC,GAAG,IAAI,CAAC/B,aAAa,CAC5D,IAAAgC,qBAAc,EAACjB,QAAQ,CAAC,EACxB,IAAAkB,yBAAmB,EACf,IAAI,CAAClC,UAAU,CAACU,MAAM,CAACyB,UAAU,EACjCgB,IAAI,CAACC,KAAK,CAACC,IAAI,CAACxB,GAAG,CAACZ,KAAK,CAACA,KAAe,CAAC,CAC9C,CACJ,CAAC;IAED,IAAMsB,OAAO,GAAG,IAAI,CAACvC,UAAU,CAACwC,IAAI,CAACR,QAAe,CAAC;IACrD,IAAMsB,YAAY,GAAGf,OAAO,CAACgB,CAAC,CAACC,IAAI,CAC/B,IAAAC,cAAQ,EAAC,MAAOhB,MAAM,IAAK;MACvB,IAAMiB,UAAU,GAAGjB,MAAM,CAACK,GAAG,CAACa,GAAG,IAAIlC,sBAAsB,CAACkC,GAAG,CAACX,MAAM,CAAC,CAAC,CAAC,CAAC;;MAE1E;AACpB;AACA;AACA;AACA;MACoB,IAAI;QACAhC,QAAQ,GAAG,MAAMlB,MAAM,CAAC8D,WAAW,CAAC/B,GAAG,CAACgC,OAAO,CAAC;MACpD,CAAC,CAAC,OAAOxB,GAAG,EAAE;QACV,IAAAC,uBAAe,EAACR,GAAG,EAAE,GAAG,EAAE,cAAc,CAAC;QACzC,OAAO,IAAI;MACf;MAEA,OAAO4B,UAAU;IACrB,CAAC,CAAC,EACF,IAAAI,YAAM,EAACC,CAAC,IAAIA,CAAC,KAAK,IAAI,CAC1B,CAAC,CAACC,SAAS,CAACN,UAAU,IAAI;MACtB5B,GAAG,CAACmC,KAAK,CAAC,QAAQ,GAAGd,IAAI,CAACe,SAAS,CAACR,UAAU,CAAC,GAAG,MAAM,CAAC;IAC7D,CAAC,CAAC;;IAEF;AACZ;AACA;IACY7B,GAAG,CAACsC,EAAE,CAAC,OAAO,EAAE,MAAM;MAClBb,YAAY,CAACc,WAAW,CAAC,CAAC;MAC1BtC,GAAG,CAACuC,GAAG,CAAC,CAAC;IACb,CAAC,CAAC;EACN,CAAC,CAAC;EAGF,IAAI,CAACvE,MAAM,CAAC6B,UAAU,CAACC,IAAI,CAAC,GAAG,GAAG,IAAI,CAAChB,OAAO,GAAG,MAAM,EAAE,OAAOiB,GAAG,EAAEC,GAAG,KAAK;IACzE,IAAMd,QAAQ,GAAG,IAAAe,wBAAiB,EAACjB,iBAAiB,EAAEe,GAAG,CAAC;IAC1D,IAAMyC,GAAa,GAAGzC,GAAG,CAACO,IAAI;IAE9B,IAAMG,OAAO,GAAG,IAAI,CAACvC,UAAU,CAACuE,SAAS,CAACD,GAAG,CAAC;IAC9C,IAAME,SAAS,GAAG,MAAMjC,OAAO,CAACG,IAAI,CAAC,CAAC;IACtC,IAAM+B,YAAY,GAAGC,KAAK,CAACC,IAAI,CAACH,SAAS,CAACI,MAAM,CAAC,CAAC,CAAC;IACnD,IAAMC,UAAU,GAAG,IAAAC,4BAAoB,EAAC,IAAI,EAAE,IAAA7C,qBAAc,EAACjB,QAAQ,CAAC,CAAC;IACvE,IAAI+D,OAAO,GAAGN,YAAY,CAAC3B,GAAG,CAACC,CAAC,IAAIA,CAAC,CAACC,MAAM,CAAC,CAAC,CAAC;IAC/C+B,OAAO,GAAGA,OAAO,CAACjB,MAAM,CAACf,CAAC,IAAI8B,UAAU,CAAC9B,CAAQ,CAAC,CAAC;IACnDgC,OAAO,GAAGA,OAAO,CAACjC,GAAG,CAACC,CAAC,IAAItB,sBAAsB,CAACsB,CAAC,CAAC,CAAC;IAErDjB,GAAG,CAACa,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC;IACjDb,GAAG,CAACc,IAAI,CAAC;MACLC,SAAS,EAAEkC;IACf,CAAC,CAAC;EACN,CAAC,CAAC;EAEF,IAAI,CAACjF,MAAM,CAAC6B,UAAU,CAACC,IAAI,CAAC,GAAG,GAAG,IAAI,CAAChB,OAAO,GAAG,MAAM,EAAE,OAAOiB,GAAG,EAAEC,GAAG,KAAK;IACzE,IAAMd,QAAQ,GAAG,IAAAe,wBAAiB,EAACjB,iBAAiB,EAAEe,GAAG,CAAC;IAC1D,IAAMmD,mBAAmB,GAAG,IAAAF,4BAAoB,EAAC,IAAI,EAAE,IAAA7C,qBAAc,EAACjB,QAAQ,CAAC,CAAC;IAEhF,IAAIiE,QAAqB,GAAGpD,GAAG,CAACO,IAAI;IAEpC,KAAK,IAAM8C,OAAO,IAAID,QAAQ,EAAE;MAC5B,IAAME,OAAO,GAAGH,mBAAmB,CAACE,OAAc,CAAC;MACnD,IAAI,CAACC,OAAO,EAAE;QACV,IAAA7C,uBAAe,EAACR,GAAG,EAAE,GAAG,EAAE,WAAW,CAAC;QACtC;MACJ;IACJ;IAEA,SAASsD,YAAYA,CAAC/C,GAAY,EAAE6C,OAAkB,EAAE;MACpD,IAAI7C,GAAG,CAACgD,IAAI,IAAIhD,GAAG,CAACiD,IAAI,KAAK,UAAU,EAAE;QACrC;QACAL,QAAQ,CAACM,IAAI,CAACL,OAAO,CAAC;MAC1B,CAAC,MAAM;QACH,IAAA5C,uBAAe,EAACR,GAAG,EAAE,GAAG,EAAE,uBAAuB,CAAC;QAClD,MAAMO,GAAG;MACb;IACJ;IAEA,OAAO4C,QAAQ,CAACO,MAAM,GAAG,CAAC,EAAE;MACxB,IAAMC,QAAwB,GAAG,EAAE;MACnC,IAAMC,IAAI,GAAG,MAAM1F,UAAU,CAACuE,SAAS,CAACU,QAAQ,CAACnC,GAAG,CAACC,CAAC,IAAKA,CAAC,CAASlC,WAAW,CAAC,CAAC,CAAC,CAAC6B,IAAI,CAAC,CAAC;MAC1F,IAAIiD,WAAW,GAAGV,QAAQ,CAACW,KAAK,CAAC,CAAC;MAClCX,QAAQ,GAAG,EAAE;MAAC,IAAAY,KAAA,kBAAAA,CAAAC,QAAA,EACqB;UAC/B,IAAMC,EAAE,GAAIb,QAAO,CAASrE,WAAW,CAAC;UACxC,IAAM8C,GAAG,GAAG+B,IAAI,CAACzC,GAAG,CAAC8C,EAAE,CAAC;UACxB,IAAI,CAACpC,GAAG,EAAE;YACN8B,QAAQ,CAACF,IAAI,CAAClF,KAAI,CAACL,UAAU,CAACgG,MAAM,CAACd,QAAO,CAAC,CAACe,KAAK,CAAC5D,GAAG,IAAI+C,YAAY,CAAC/C,GAAG,EAAE6C,QAAO,CAAC,CAAC,CAAC;UAC3F,CAAC,MAAM;YACH,IAAMgB,SAAS,GAAG7F,KAAI,CAACH,eAAe,CAACc,QAAQ,EAAE;cAC7CQ,gBAAgB,EAAEC,sBAAsB,CAACyD,QAAc,CAAC;cACxD5D,kBAAkB,EAAEG,sBAAsB,CAACkC,GAAG,CAACX,MAAM,CAAC,IAAI,CAAC;YAC/D,CAAC,CAAC;YACF,IAAI,CAACkD,SAAS,EAAE;cACZ,IAAA5D,uBAAe,EAACR,GAAG,EAAE,GAAG,EAAE,WAAW,CAAC;cAAC;gBAAAqE,CAAA;cAAA;YAE3C;YACAV,QAAQ,CAACF,IAAI,CAAC5B,GAAG,CAACyC,KAAK,CAAClB,QAAO,CAAC,CAACe,KAAK,CAAC5D,GAAG,IAAI+C,YAAY,CAAC/C,GAAG,EAAE6C,QAAO,CAAC,CAAC,CAAC;UAC9E;QACJ,CAAC;QAAAmB,IAAA;MAhBD,KAAK,IAAMnB,QAAO,IAAIS,WAAW;QAAAU,IAAA,SAAAR,KAAA,CAAAC,QAAA;QAAA,IAAAO,IAAA,SAAAA,IAAA,CAAAF,CAAA;MAAA;MAiBjC,MAAMG,OAAO,CAACC,GAAG,CAACd,QAAQ,CAAC;IAC/B;IAEA3D,GAAG,CAACa,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC;IACjDb,GAAG,CAACc,IAAI,CAAC,CACT,CAAC,CAAC;EACN,CAAC,CAAC;EAEF,IAAI,CAAC9C,MAAM,CAAC6B,UAAU,CAACC,IAAI,CAAC,GAAG,GAAG,IAAI,CAAChB,OAAO,GAAG,SAAS,EAAE,OAAOiB,GAAG,EAAEC,GAAG,KAAK;IAC5E,IAAMd,QAAQ,GAAG,IAAAe,wBAAiB,EAACjB,iBAAiB,EAAEe,GAAG,CAAC;IAC1D,IAAMmD,mBAAmB,GAAG,IAAAF,4BAAoB,EAAC,IAAI,EAAE,IAAA7C,qBAAc,EAACjB,QAAQ,CAAC,CAAC;IAEhF,IAAIsD,GAAa,GAAGzC,GAAG,CAACO,IAAI;IAC5B,OAAOkC,GAAG,CAACkB,MAAM,GAAG,CAAC,EAAE;MACnB,IAAMgB,MAAM,GAAGlC,GAAG,CAACsB,KAAK,CAAC,CAAC,CAAC;MAC3BtB,GAAG,GAAG,EAAE;MACR,IAAMmB,QAAwB,GAAG,EAAE;MACnC,IAAMgB,OAAO,GAAG,MAAM,IAAI,CAACzG,UAAU,CAACuE,SAAS,CAACiC,MAAM,CAAC,CAAC9D,IAAI,CAAC,CAAC;MAAC,IAAAgE,MAAA,kBAAAA,CAAAX,EAAA,EACtC;UACrB,IAAMpC,GAAG,GAAG8C,OAAO,CAACxD,GAAG,CAAC8C,EAAE,CAAC;UAC3B,IAAIpC,GAAG,EAAE;YACL,IAAMgD,YAAY,GAAG3B,mBAAmB,CAACrB,GAAG,CAACX,MAAM,CAAC,IAAI,CAAQ,CAAC;YACjE,IAAI,CAAC2D,YAAY,EAAE;cACf,IAAArE,uBAAe,EAACR,GAAG,EAAE,GAAG,EAAE,WAAW,CAAC;cAAC;gBAAAqE,CAAA;cAAA;YAE3C;YAEA,IAAMS,eAAe,GAAGvG,KAAI,CAACH,eAAe,CAACc,QAAQ,EAAE;cACnDQ,gBAAgB,EAAEmC,GAAG,CAACX,MAAM,CAAC,IAAI,CAAQ;cACzC1B,kBAAkB,EAAEqC,GAAG,CAACX,MAAM,CAAC,IAAI;YACvC,CAAC,CAAC;YACF,IAAI,CAAC4D,eAAe,EAAE;cAClB,IAAAtE,uBAAe,EAACR,GAAG,EAAE,GAAG,EAAE,WAAW,CAAC;cAAC;gBAAAqE,CAAA;cAAA;YAE3C;YAEAV,QAAQ,CAACF,IAAI,CAAC5B,GAAG,CAACkD,MAAM,CAAC,CAAC,CAACZ,KAAK,CAAE5D,GAAY,IAAK;cAC/C,IAAIA,GAAG,CAACgD,IAAI,IAAIhD,GAAG,CAACiD,IAAI,KAAK,UAAU,EAAE;gBACrC;gBACAhB,GAAG,CAACiB,IAAI,CAACQ,EAAE,CAAC;cAChB,CAAC,MAAM;gBACH,IAAAzD,uBAAe,EAACR,GAAG,EAAE,GAAG,EAAE,uBAAuB,CAAC;gBAClD,MAAMO,GAAG;cACb;YACJ,CAAC,CAAC,CAAC;UACP;QACJ,CAAC;QAAAyE,KAAA;MA5BD,KAAK,IAAMf,EAAE,IAAIS,MAAM;QAAAM,KAAA,SAAAJ,MAAA,CAAAX,EAAA;QAAA,IAAAe,KAAA,SAAAA,KAAA,CAAAX,CAAA;MAAA;MA6BvB,MAAMG,OAAO,CAACC,GAAG,CAACd,QAAQ,CAAC;IAC/B;IACA3D,GAAG,CAACa,SAAS,CAAC,cAAc,EAAE,kBAAkB,CAAC;IACjDb,GAAG,CAACc,IAAI,CAAC,CAAC,CAAC,CAAC;EAChB,CAAC,CAAC;AACN,CAAC"}

package/dist/cjs/plugins/server/helper.js

@@ -0,0 +1,173 @@
+"use strict";
+
+var _interopRequireDefault = require("@babel/runtime/helpers/interopRequireDefault");
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.addAuthMiddleware = addAuthMiddleware;
+exports.blockPreviousVersionPaths = blockPreviousVersionPaths;
+exports.closeConnection = closeConnection;
+exports.docContainsServerOnlyFields = docContainsServerOnlyFields;
+exports.doesContainRegexQuerySelector = doesContainRegexQuerySelector;
+exports.getDocAllowedMatcher = getDocAllowedMatcher;
+exports.mergeServerDocumentFieldsMonad = mergeServerDocumentFieldsMonad;
+exports.removeServerOnlyFieldsMonad = removeServerOnlyFieldsMonad;
+exports.setCors = setCors;
+exports.writeSSEHeaders = writeSSEHeaders;
+var _cors = _interopRequireDefault(require("cors"));
+var _core = require("rxdb/plugins/core");
+function setCors(server, path, cors) {
+  var useCors = cors;
+  if (!useCors) {
+    useCors = server.cors;
+  }
+  if (useCors) {
+    server.expressApp.options('/' + path + '/*', (0, _cors.default)({
+      origin: useCors,
+      // some legacy browsers (IE11, various SmartTVs) choke on 204
+      optionsSuccessStatus: 200
+    }));
+  }
+}
+
+/**
+ * "block" the previous version urls and send a 426 on them so that
+ * the clients know they must update.
+ */
+function blockPreviousVersionPaths(server, path, currentVersion) {
+  var v = 0;
+  var _loop = function () {
+    var version = v;
+    server.expressApp.all('/' + path + '/' + version + '/*', (req, res) => {
+      closeConnection(res, 426, 'Outdated version ' + version + ' (newest is ' + currentVersion + ')');
+    });
+    v++;
+  };
+  while (v < currentVersion) {
+    _loop();
+  }
+}
+async function closeConnection(response, code, message) {
+  var responseWrite = {
+    code,
+    error: true,
+    message
+  };
+  response.statusCode = code;
+  response.set("Connection", "close");
+  await response.write(JSON.stringify(responseWrite));
+  response.end();
+}
+function addAuthMiddleware(server, path) {
+  var authDataByRequest = new WeakMap();
+  async function auth(req, res, next) {
+    try {
+      var authData = await server.authHandler(req.headers);
+      authDataByRequest.set(req, authData);
+      next();
+    } catch (err) {
+      closeConnection(res, 401, 'Unauthorized');
+      return;
+    }
+  }
+  server.expressApp.all('/' + path + '/*', auth, function (req, res, next) {
+    next();
+  });
+  return authDataByRequest;
+}
+var defaultMatchingQuery = {
+  selector: {},
+  skip: 0,
+  sort: []
+};
+function getDocAllowedMatcher(endpoint, authData) {
+  var useQuery = endpoint.queryModifier ? endpoint.queryModifier(authData, (0, _core.normalizeMangoQuery)(endpoint.collection.schema.jsonSchema, {})) : defaultMatchingQuery;
+  var docDataMatcher = (0, _core.getQueryMatcher)(endpoint.collection.schema.jsonSchema, useQuery);
+  return docDataMatcher;
+}
+function writeSSEHeaders(res) {
+  res.writeHead(200, {
+    /**
+     * Use exact these headers to make is less likely
+     * for people to have problems.
+     * @link https://www.youtube.com/watch?v=0PcMuYGJPzM
+     */
+    'Content-Type': 'text/event-stream; charset=utf-8',
+    'Connection': 'keep-alive',
+    'Cache-Control': 'no-cache',
+    /**
+     * Required for nginx
+     * @link https://stackoverflow.com/q/61029079/3443137
+     */
+    'X-Accel-Buffering': 'no'
+  });
+  res.flushHeaders();
+}
+function docContainsServerOnlyFields(serverOnlyFields, doc) {
+  var has = serverOnlyFields.find(field => {
+    return typeof doc[field] !== 'undefined';
+  });
+  return has;
+}
+function removeServerOnlyFieldsMonad(serverOnlyFields) {
+  var serverOnlyFieldsStencil = {
+    _meta: undefined,
+    _rev: undefined,
+    _attachments: undefined
+  };
+  serverOnlyFields.forEach(field => serverOnlyFieldsStencil[field] = undefined);
+  return docData => {
+    if (!docData) {
+      return docData;
+    }
+    return Object.assign({}, docData, serverOnlyFieldsStencil);
+  };
+}
+function mergeServerDocumentFieldsMonad(serverOnlyFields) {
+  var useFields = serverOnlyFields.slice(0);
+  // useFields.push('_rev');
+  // useFields.push('_meta');
+  // useFields.push('_attachments');
+  useFields = (0, _core.uniqueArray)(useFields);
+  return (clientDoc, serverDoc) => {
+    if (!serverDoc) {
+      return clientDoc;
+    }
+    var ret = (0, _core.flatClone)(clientDoc);
+    useFields.forEach(field => {
+      ret[field] = serverDoc[field];
+    });
+    return ret;
+  };
+}
+
+/**
+ * $regex queries are dangerous because they can dos-attach the 
+ * 
+ * @param selector 
+ */
+function doesContainRegexQuerySelector(selector) {
+  if (!selector) {
+    return false;
+  }
+  if (Array.isArray(selector)) {
+    var found = !!selector.find(item => doesContainRegexQuerySelector(item));
+    return found;
+  }
+  if (typeof selector !== 'object') {
+    return false;
+  }
+  var entries = Object.entries(selector);
+  for (var [key, value] of entries) {
+    if (key === '$regex') {
+      return true;
+    } else {
+      var has = doesContainRegexQuerySelector(value);
+      if (has) {
+        return true;
+      }
+    }
+  }
+  return false;
+}
+//# sourceMappingURL=helper.js.map

package/dist/cjs/plugins/server/helper.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"helper.js","names":["_cors","_interopRequireDefault","require","_core","setCors","server","path","cors","useCors","expressApp","options","expressCors","origin","optionsSuccessStatus","blockPreviousVersionPaths","currentVersion","v","_loop","version","all","req","res","closeConnection","response","code","message","responseWrite","error","statusCode","set","write","JSON","stringify","end","addAuthMiddleware","authDataByRequest","WeakMap","auth","next","authData","authHandler","headers","err","defaultMatchingQuery","selector","skip","sort","getDocAllowedMatcher","endpoint","useQuery","queryModifier","normalizeMangoQuery","collection","schema","jsonSchema","docDataMatcher","getQueryMatcher","writeSSEHeaders","writeHead","flushHeaders","docContainsServerOnlyFields","serverOnlyFields","doc","has","find","field","removeServerOnlyFieldsMonad","serverOnlyFieldsStencil","_meta","undefined","_rev","_attachments","forEach","docData","Object","assign","mergeServerDocumentFieldsMonad","useFields","slice","uniqueArray","clientDoc","serverDoc","ret","flatClone","doesContainRegexQuerySelector","Array","isArray","found","item","entries","key","value"],"sources":["../../../../src/plugins/server/helper.ts"],"sourcesContent":["import { RxServer } from './rx-server';\nimport expressCors from 'cors';\nimport type {\n    Request,\n    Response,\n    NextFunction\n} from 'express';\nimport { RxServerAuthData, RxServerEndpoint } from './types';\nimport {\n    FilledMangoQuery,\n    MangoQuerySelector,\n    RxDocumentData,\n    RxReplicationWriteToMasterRow,\n    flatClone,\n    getQueryMatcher,\n    normalizeMangoQuery,\n    uniqueArray\n} from 'rxdb/plugins/core';\n\nexport function setCors(\n    server: RxServer<any>,\n    path: string,\n    cors?: string\n) {\n    let useCors = cors;\n    if (!useCors) {\n        useCors = server.cors;\n    }\n    if (useCors) {\n        server.expressApp.options('/' + path + '/*', expressCors({\n            origin: useCors,\n            // some legacy browsers (IE11, various SmartTVs) choke on 204\n            optionsSuccessStatus: 200\n        }));\n    }\n}\n\n/**\n * \"block\" the previous version urls and send a 426 on them so that\n * the clients know they must update.\n */\nexport function blockPreviousVersionPaths(\n    server: RxServer<any>,\n    path: string,\n    currentVersion: number\n\n) {\n    let v = 0;\n    while (v < currentVersion) {\n        const version = v;\n        server.expressApp.all('/' + path + '/' + version + '/*', (req, res) => {\n            closeConnection(res, 426, 'Outdated version ' + version + ' (newest is ' + currentVersion + ')');\n        });\n        v++;\n    }\n}\n\n\nexport async function closeConnection(response: Response, code: number, message: string) {\n    const responseWrite = {\n        code,\n        error: true,\n        message\n    };\n    response.statusCode = code;\n    response.set(\"Connection\", \"close\");\n    await response.write(JSON.stringify(responseWrite));\n    response.end();\n}\n\n\nexport function addAuthMiddleware<AuthType>(\n    server: RxServer<AuthType>,\n    path: string,\n): WeakMap<Request, RxServerAuthData<AuthType>> {\n    const authDataByRequest = new WeakMap<Request, RxServerAuthData<AuthType>>();\n    async function auth(req: Request, res: Response, next: NextFunction) {\n        try {\n            const authData = await server.authHandler(req.headers);\n            authDataByRequest.set(req, authData);\n            next();\n        } catch (err) {\n            closeConnection(res, 401, 'Unauthorized');\n            return;\n        }\n    }\n    server.expressApp.all('/' + path + '/*', auth, function (req, res, next) {\n        next();\n    });\n    return authDataByRequest;\n}\n\nconst defaultMatchingQuery: FilledMangoQuery<any> = {\n    selector: {},\n    skip: 0,\n    sort: []\n} as const;\n\nexport function getDocAllowedMatcher<RxDocType, AuthType>(\n    endpoint: RxServerEndpoint<AuthType, RxDocType>,\n    authData: RxServerAuthData<AuthType>\n) {\n    const useQuery: FilledMangoQuery<RxDocType> = endpoint.queryModifier ? endpoint.queryModifier(\n        authData,\n        normalizeMangoQuery(\n            endpoint.collection.schema.jsonSchema,\n            {}\n        )\n    ) : defaultMatchingQuery;\n    const docDataMatcher = getQueryMatcher(endpoint.collection.schema.jsonSchema, useQuery);\n    return docDataMatcher;\n}\n\nexport function writeSSEHeaders(res: Response) {\n    res.writeHead(200, {\n        /**\n         * Use exact these headers to make is less likely\n         * for people to have problems.\n         * @link https://www.youtube.com/watch?v=0PcMuYGJPzM\n         */\n        'Content-Type': 'text/event-stream; charset=utf-8',\n        'Connection': 'keep-alive',\n        'Cache-Control': 'no-cache',\n        /**\n         * Required for nginx\n         * @link https://stackoverflow.com/q/61029079/3443137\n         */\n        'X-Accel-Buffering': 'no'\n    });\n    res.flushHeaders();\n}\n\nexport function docContainsServerOnlyFields(\n    serverOnlyFields: string[],\n    doc: any\n) {\n    const has = serverOnlyFields.find(field => {\n        return typeof doc[field] !== 'undefined'\n    });\n    return has;\n}\n\nexport function removeServerOnlyFieldsMonad<RxDocType>(serverOnlyFields: string[]) {\n    const serverOnlyFieldsStencil: any = {\n        _meta: undefined,\n        _rev: undefined,\n        _attachments: undefined\n    };\n    serverOnlyFields.forEach(field => serverOnlyFieldsStencil[field] = undefined);\n    return (\n        docData?: RxDocType | RxDocumentData<RxDocType>\n    ) => {\n        if (!docData) {\n            return docData;\n        }\n        return Object.assign({}, docData, serverOnlyFieldsStencil);\n    }\n}\n\nexport function mergeServerDocumentFieldsMonad<RxDocType>(serverOnlyFields: string[]) {\n    let useFields = serverOnlyFields.slice(0);\n    // useFields.push('_rev');\n    // useFields.push('_meta');\n    // useFields.push('_attachments');\n    useFields = uniqueArray(useFields);\n\n    return (\n        clientDoc: RxDocType | RxDocumentData<RxDocType>,\n        serverDoc?: RxDocType | RxDocumentData<RxDocType>\n    ) => {\n        if (!serverDoc) {\n            return clientDoc;\n        }\n        const ret = flatClone(clientDoc);\n        useFields.forEach(field => {\n            (ret as any)[field] = (serverDoc as any)[field];\n        });\n        return ret;\n    }\n}\n\n\n/**\n * $regex queries are dangerous because they can dos-attach the \n * \n * @param selector \n */\nexport function doesContainRegexQuerySelector(selector: MangoQuerySelector<any> | any): boolean {\n    if (!selector) {\n        return false;\n    }\n    if (Array.isArray(selector)) {\n        const found = !!selector.find(item => doesContainRegexQuerySelector(item));\n        return found;\n    }\n\n    if (typeof selector !== 'object') {\n        return false;\n    }\n\n    const entries = Object.entries(selector);\n    for (const [key, value] of entries) {\n        if (key === '$regex') {\n            return true;\n        } else {\n            const has = doesContainRegexQuerySelector(value);\n            if (has) {\n                return true;\n            }\n        }\n    }\n\n    return false;\n}\n"],"mappings":";;;;;;;;;;;;;;;;AACA,IAAAA,KAAA,GAAAC,sBAAA,CAAAC,OAAA;AAOA,IAAAC,KAAA,GAAAD,OAAA;AAWO,SAASE,OAAOA,CACnBC,MAAqB,EACrBC,IAAY,EACZC,IAAa,EACf;EACE,IAAIC,OAAO,GAAGD,IAAI;EAClB,IAAI,CAACC,OAAO,EAAE;IACVA,OAAO,GAAGH,MAAM,CAACE,IAAI;EACzB;EACA,IAAIC,OAAO,EAAE;IACTH,MAAM,CAACI,UAAU,CAACC,OAAO,CAAC,GAAG,GAAGJ,IAAI,GAAG,IAAI,EAAE,IAAAK,aAAW,EAAC;MACrDC,MAAM,EAAEJ,OAAO;MACf;MACAK,oBAAoB,EAAE;IAC1B,CAAC,CAAC,CAAC;EACP;AACJ;;AAEA;AACA;AACA;AACA;AACO,SAASC,yBAAyBA,CACrCT,MAAqB,EACrBC,IAAY,EACZS,cAAsB,EAExB;EACE,IAAIC,CAAC,GAAG,CAAC;EAAC,IAAAC,KAAA,YAAAA,CAAA,EACiB;IACvB,IAAMC,OAAO,GAAGF,CAAC;IACjBX,MAAM,CAACI,UAAU,CAACU,GAAG,CAAC,GAAG,GAAGb,IAAI,GAAG,GAAG,GAAGY,OAAO,GAAG,IAAI,EAAE,CAACE,GAAG,EAAEC,GAAG,KAAK;MACnEC,eAAe,CAACD,GAAG,EAAE,GAAG,EAAE,mBAAmB,GAAGH,OAAO,GAAG,cAAc,GAAGH,cAAc,GAAG,GAAG,CAAC;IACpG,CAAC,CAAC;IACFC,CAAC,EAAE;EACP,CAAC;EAND,OAAOA,CAAC,GAAGD,cAAc;IAAAE,KAAA;EAAA;AAO7B;AAGO,eAAeK,eAAeA,CAACC,QAAkB,EAAEC,IAAY,EAAEC,OAAe,EAAE;EACrF,IAAMC,aAAa,GAAG;IAClBF,IAAI;IACJG,KAAK,EAAE,IAAI;IACXF;EACJ,CAAC;EACDF,QAAQ,CAACK,UAAU,GAAGJ,IAAI;EAC1BD,QAAQ,CAACM,GAAG,CAAC,YAAY,EAAE,OAAO,CAAC;EACnC,MAAMN,QAAQ,CAACO,KAAK,CAACC,IAAI,CAACC,SAAS,CAACN,aAAa,CAAC,CAAC;EACnDH,QAAQ,CAACU,GAAG,CAAC,CAAC;AAClB;AAGO,SAASC,iBAAiBA,CAC7B7B,MAA0B,EAC1BC,IAAY,EACgC;EAC5C,IAAM6B,iBAAiB,GAAG,IAAIC,OAAO,CAAsC,CAAC;EAC5E,eAAeC,IAAIA,CAACjB,GAAY,EAAEC,GAAa,EAAEiB,IAAkB,EAAE;IACjE,IAAI;MACA,IAAMC,QAAQ,GAAG,MAAMlC,MAAM,CAACmC,WAAW,CAACpB,GAAG,CAACqB,OAAO,CAAC;MACtDN,iBAAiB,CAACN,GAAG,CAACT,GAAG,EAAEmB,QAAQ,CAAC;MACpCD,IAAI,CAAC,CAAC;IACV,CAAC,CAAC,OAAOI,GAAG,EAAE;MACVpB,eAAe,CAACD,GAAG,EAAE,GAAG,EAAE,cAAc,CAAC;MACzC;IACJ;EACJ;EACAhB,MAAM,CAACI,UAAU,CAACU,GAAG,CAAC,GAAG,GAAGb,IAAI,GAAG,IAAI,EAAE+B,IAAI,EAAE,UAAUjB,GAAG,EAAEC,GAAG,EAAEiB,IAAI,EAAE;IACrEA,IAAI,CAAC,CAAC;EACV,CAAC,CAAC;EACF,OAAOH,iBAAiB;AAC5B;AAEA,IAAMQ,oBAA2C,GAAG;EAChDC,QAAQ,EAAE,CAAC,CAAC;EACZC,IAAI,EAAE,CAAC;EACPC,IAAI,EAAE;AACV,CAAU;AAEH,SAASC,oBAAoBA,CAChCC,QAA+C,EAC/CT,QAAoC,EACtC;EACE,IAAMU,QAAqC,GAAGD,QAAQ,CAACE,aAAa,GAAGF,QAAQ,CAACE,aAAa,CACzFX,QAAQ,EACR,IAAAY,yBAAmB,EACfH,QAAQ,CAACI,UAAU,CAACC,MAAM,CAACC,UAAU,EACrC,CAAC,CACL,CACJ,CAAC,GAAGX,oBAAoB;EACxB,IAAMY,cAAc,GAAG,IAAAC,qBAAe,EAACR,QAAQ,CAACI,UAAU,CAACC,MAAM,CAACC,UAAU,EAAEL,QAAQ,CAAC;EACvF,OAAOM,cAAc;AACzB;AAEO,SAASE,eAAeA,CAACpC,GAAa,EAAE;EAC3CA,GAAG,CAACqC,SAAS,CAAC,GAAG,EAAE;IACf;AACR;AACA;AACA;AACA;IACQ,cAAc,EAAE,kCAAkC;IAClD,YAAY,EAAE,YAAY;IAC1B,eAAe,EAAE,UAAU;IAC3B;AACR;AACA;AACA;IACQ,mBAAmB,EAAE;EACzB,CAAC,CAAC;EACFrC,GAAG,CAACsC,YAAY,CAAC,CAAC;AACtB;AAEO,SAASC,2BAA2BA,CACvCC,gBAA0B,EAC1BC,GAAQ,EACV;EACE,IAAMC,GAAG,GAAGF,gBAAgB,CAACG,IAAI,CAACC,KAAK,IAAI;IACvC,OAAO,OAAOH,GAAG,CAACG,KAAK,CAAC,KAAK,WAAW;EAC5C,CAAC,CAAC;EACF,OAAOF,GAAG;AACd;AAEO,SAASG,2BAA2BA,CAAYL,gBAA0B,EAAE;EAC/E,IAAMM,uBAA4B,GAAG;IACjCC,KAAK,EAAEC,SAAS;IAChBC,IAAI,EAAED,SAAS;IACfE,YAAY,EAAEF;EAClB,CAAC;EACDR,gBAAgB,CAACW,OAAO,CAACP,KAAK,IAAIE,uBAAuB,CAACF,KAAK,CAAC,GAAGI,SAAS,CAAC;EAC7E,OACII,OAA+C,IAC9C;IACD,IAAI,CAACA,OAAO,EAAE;MACV,OAAOA,OAAO;IAClB;IACA,OAAOC,MAAM,CAACC,MAAM,CAAC,CAAC,CAAC,EAAEF,OAAO,EAAEN,uBAAuB,CAAC;EAC9D,CAAC;AACL;AAEO,SAASS,8BAA8BA,CAAYf,gBAA0B,EAAE;EAClF,IAAIgB,SAAS,GAAGhB,gBAAgB,CAACiB,KAAK,CAAC,CAAC,CAAC;EACzC;EACA;EACA;EACAD,SAAS,GAAG,IAAAE,iBAAW,EAACF,SAAS,CAAC;EAElC,OAAO,CACHG,SAAgD,EAChDC,SAAiD,KAChD;IACD,IAAI,CAACA,SAAS,EAAE;MACZ,OAAOD,SAAS;IACpB;IACA,IAAME,GAAG,GAAG,IAAAC,eAAS,EAACH,SAAS,CAAC;IAChCH,SAAS,CAACL,OAAO,CAACP,KAAK,IAAI;MACtBiB,GAAG,CAASjB,KAAK,CAAC,GAAIgB,SAAS,CAAShB,KAAK,CAAC;IACnD,CAAC,CAAC;IACF,OAAOiB,GAAG;EACd,CAAC;AACL;;AAGA;AACA;AACA;AACA;AACA;AACO,SAASE,6BAA6BA,CAACxC,QAAuC,EAAW;EAC5F,IAAI,CAACA,QAAQ,EAAE;IACX,OAAO,KAAK;EAChB;EACA,IAAIyC,KAAK,CAACC,OAAO,CAAC1C,QAAQ,CAAC,EAAE;IACzB,IAAM2C,KAAK,GAAG,CAAC,CAAC3C,QAAQ,CAACoB,IAAI,CAACwB,IAAI,IAAIJ,6BAA6B,CAACI,IAAI,CAAC,CAAC;IAC1E,OAAOD,KAAK;EAChB;EAEA,IAAI,OAAO3C,QAAQ,KAAK,QAAQ,EAAE;IAC9B,OAAO,KAAK;EAChB;EAEA,IAAM6C,OAAO,GAAGf,MAAM,CAACe,OAAO,CAAC7C,QAAQ,CAAC;EACxC,KAAK,IAAM,CAAC8C,GAAG,EAAEC,KAAK,CAAC,IAAIF,OAAO,EAAE;IAChC,IAAIC,GAAG,KAAK,QAAQ,EAAE;MAClB,OAAO,IAAI;IACf,CAAC,MAAM;MACH,IAAM3B,GAAG,GAAGqB,6BAA6B,CAACO,KAAK,CAAC;MAChD,IAAI5B,GAAG,EAAE;QACL,OAAO,IAAI;MACf;IACJ;EACJ;EAEA,OAAO,KAAK;AAChB"}

package/dist/cjs/plugins/server/index.js

@@ -0,0 +1,84 @@
+"use strict";
+
+var _interopRequireDefault = require("@babel/runtime/helpers/interopRequireDefault");
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+var _exportNames = {
+  startRxServer: true
+};
+exports.startRxServer = startRxServer;
+var _utils = require("rxdb/plugins/utils");
+var _rxServer = require("./rx-server.js");
+var _express = _interopRequireDefault(require("express"));
+var _types = require("./types.js");
+Object.keys(_types).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _types[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _types[key];
+    }
+  });
+});
+var _endpointReplication = require("./endpoint-replication.js");
+Object.keys(_endpointReplication).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _endpointReplication[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _endpointReplication[key];
+    }
+  });
+});
+var _endpointRest = require("./endpoint-rest.js");
+Object.keys(_endpointRest).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _endpointRest[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _endpointRest[key];
+    }
+  });
+});
+var _helper = require("./helper.js");
+Object.keys(_helper).forEach(function (key) {
+  if (key === "default" || key === "__esModule") return;
+  if (Object.prototype.hasOwnProperty.call(_exportNames, key)) return;
+  if (key in exports && exports[key] === _helper[key]) return;
+  Object.defineProperty(exports, key, {
+    enumerable: true,
+    get: function () {
+      return _helper[key];
+    }
+  });
+});
+async function startRxServer(options) {
+  options = (0, _utils.flatClone)(options);
+  if (!options.serverApp) {
+    var app = (0, _express.default)();
+    options.serverApp = app;
+  }
+  options.serverApp.use(_express.default.json());
+  var httpServer = await new Promise((res, rej) => {
+    var hostname = options.hostname ? options.hostname : 'localhost';
+    var ret = (0, _utils.ensureNotFalsy)(options.serverApp).listen(options.port, hostname, () => {
+      res(ret);
+    });
+  });
+  var authHandler = options.authHandler ? options.authHandler : () => {
+    return {
+      data: {},
+      validUntil: Date.now() * 2
+    };
+  };
+  var server = new _rxServer.RxServer(options.database, authHandler, httpServer, (0, _utils.ensureNotFalsy)(options.serverApp), options.cors);
+  return server;
+}
+//# sourceMappingURL=index.js.map

package/dist/cjs/plugins/server/index.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"index.js","names":["_utils","require","_rxServer","_express","_interopRequireDefault","_types","Object","keys","forEach","key","prototype","hasOwnProperty","call","_exportNames","exports","defineProperty","enumerable","get","_endpointReplication","_endpointRest","_helper","startRxServer","options","flatClone","serverApp","app","express","use","json","httpServer","Promise","res","rej","hostname","ret","ensureNotFalsy","listen","port","authHandler","data","validUntil","Date","now","server","RxServer","database","cors"],"sources":["../../../../src/plugins/server/index.ts"],"sourcesContent":["import { ensureNotFalsy, flatClone } from 'rxdb/plugins/utils';\nimport { RxServer } from './rx-server.ts';\nimport { RxServerAuthHandler, RxServerOptions } from './types.ts';\nimport express from 'express';\nimport {\n    Server as HttpServer\n} from 'http';\n\nexport * from './types.ts';\nexport * from './endpoint-replication.ts';\nexport * from './endpoint-rest.ts';\nexport * from './helper.ts';\n\nexport async function startRxServer<AuthType>(options: RxServerOptions<AuthType>): Promise<RxServer<AuthType>> {\n    options = flatClone(options);\n    if (!options.serverApp) {\n        const app = express();\n        options.serverApp = app;\n    }\n\n    options.serverApp.use(express.json());\n\n\n    const httpServer: HttpServer = await new Promise((res, rej) => {\n        const hostname = options.hostname ? options.hostname : 'localhost';\n        const ret = ensureNotFalsy(options.serverApp).listen(options.port, hostname, () => {\n            res(ret);\n        });\n    });\n\n    const authHandler: RxServerAuthHandler<AuthType> = options.authHandler ? options.authHandler : () => {\n        return {\n            data: {} as any,\n            validUntil: Date.now() * 2\n        };\n    };\n\n    const server = new RxServer<AuthType>(\n        options.database,\n        authHandler,\n        httpServer,\n        ensureNotFalsy(options.serverApp),\n        options.cors\n    );\n\n    return server;\n}\n"],"mappings":";;;;;;;;;;AAAA,IAAAA,MAAA,GAAAC,OAAA;AACA,IAAAC,SAAA,GAAAD,OAAA;AAEA,IAAAE,QAAA,GAAAC,sBAAA,CAAAH,OAAA;AAKA,IAAAI,MAAA,GAAAJ,OAAA;AAAAK,MAAA,CAAAC,IAAA,CAAAF,MAAA,EAAAG,OAAA,WAAAC,GAAA;EAAA,IAAAA,GAAA,kBAAAA,GAAA;EAAA,IAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAC,YAAA,EAAAJ,GAAA;EAAA,IAAAA,GAAA,IAAAK,OAAA,IAAAA,OAAA,CAAAL,GAAA,MAAAJ,MAAA,CAAAI,GAAA;EAAAH,MAAA,CAAAS,cAAA,CAAAD,OAAA,EAAAL,GAAA;IAAAO,UAAA;IAAAC,GAAA,WAAAA,CAAA;MAAA,OAAAZ,MAAA,CAAAI,GAAA;IAAA;EAAA;AAAA;AACA,IAAAS,oBAAA,GAAAjB,OAAA;AAAAK,MAAA,CAAAC,IAAA,CAAAW,oBAAA,EAAAV,OAAA,WAAAC,GAAA;EAAA,IAAAA,GAAA,kBAAAA,GAAA;EAAA,IAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAC,YAAA,EAAAJ,GAAA;EAAA,IAAAA,GAAA,IAAAK,OAAA,IAAAA,OAAA,CAAAL,GAAA,MAAAS,oBAAA,CAAAT,GAAA;EAAAH,MAAA,CAAAS,cAAA,CAAAD,OAAA,EAAAL,GAAA;IAAAO,UAAA;IAAAC,GAAA,WAAAA,CAAA;MAAA,OAAAC,oBAAA,CAAAT,GAAA;IAAA;EAAA;AAAA;AACA,IAAAU,aAAA,GAAAlB,OAAA;AAAAK,MAAA,CAAAC,IAAA,CAAAY,aAAA,EAAAX,OAAA,WAAAC,GAAA;EAAA,IAAAA,GAAA,kBAAAA,GAAA;EAAA,IAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAC,YAAA,EAAAJ,GAAA;EAAA,IAAAA,GAAA,IAAAK,OAAA,IAAAA,OAAA,CAAAL,GAAA,MAAAU,aAAA,CAAAV,GAAA;EAAAH,MAAA,CAAAS,cAAA,CAAAD,OAAA,EAAAL,GAAA;IAAAO,UAAA;IAAAC,GAAA,WAAAA,CAAA;MAAA,OAAAE,aAAA,CAAAV,GAAA;IAAA;EAAA;AAAA;AACA,IAAAW,OAAA,GAAAnB,OAAA;AAAAK,MAAA,CAAAC,IAAA,CAAAa,OAAA,EAAAZ,OAAA,WAAAC,GAAA;EAAA,IAAAA,GAAA,kBAAAA,GAAA;EAAA,IAAAH,MAAA,CAAAI,SAAA,CAAAC,cAAA,CAAAC,IAAA,CAAAC,YAAA,EAAAJ,GAAA;EAAA,IAAAA,GAAA,IAAAK,OAAA,IAAAA,OAAA,CAAAL,GAAA,MAAAW,OAAA,CAAAX,GAAA;EAAAH,MAAA,CAAAS,cAAA,CAAAD,OAAA,EAAAL,GAAA;IAAAO,UAAA;IAAAC,GAAA,WAAAA,CAAA;MAAA,OAAAG,OAAA,CAAAX,GAAA;IAAA;EAAA;AAAA;AAEO,eAAeY,aAAaA,CAAWC,OAAkC,EAA+B;EAC3GA,OAAO,GAAG,IAAAC,gBAAS,EAACD,OAAO,CAAC;EAC5B,IAAI,CAACA,OAAO,CAACE,SAAS,EAAE;IACpB,IAAMC,GAAG,GAAG,IAAAC,gBAAO,EAAC,CAAC;IACrBJ,OAAO,CAACE,SAAS,GAAGC,GAAG;EAC3B;EAEAH,OAAO,CAACE,SAAS,CAACG,GAAG,CAACD,gBAAO,CAACE,IAAI,CAAC,CAAC,CAAC;EAGrC,IAAMC,UAAsB,GAAG,MAAM,IAAIC,OAAO,CAAC,CAACC,GAAG,EAAEC,GAAG,KAAK;IAC3D,IAAMC,QAAQ,GAAGX,OAAO,CAACW,QAAQ,GAAGX,OAAO,CAACW,QAAQ,GAAG,WAAW;IAClE,IAAMC,GAAG,GAAG,IAAAC,qBAAc,EAACb,OAAO,CAACE,SAAS,CAAC,CAACY,MAAM,CAACd,OAAO,CAACe,IAAI,EAAEJ,QAAQ,EAAE,MAAM;MAC/EF,GAAG,CAACG,GAAG,CAAC;IACZ,CAAC,CAAC;EACN,CAAC,CAAC;EAEF,IAAMI,WAA0C,GAAGhB,OAAO,CAACgB,WAAW,GAAGhB,OAAO,CAACgB,WAAW,GAAG,MAAM;IACjG,OAAO;MACHC,IAAI,EAAE,CAAC,CAAQ;MACfC,UAAU,EAAEC,IAAI,CAACC,GAAG,CAAC,CAAC,GAAG;IAC7B,CAAC;EACL,CAAC;EAED,IAAMC,MAAM,GAAG,IAAIC,kBAAQ,CACvBtB,OAAO,CAACuB,QAAQ,EAChBP,WAAW,EACXT,UAAU,EACV,IAAAM,qBAAc,EAACb,OAAO,CAACE,SAAS,CAAC,EACjCF,OAAO,CAACwB,IACZ,CAAC;EAED,OAAOH,MAAM;AACjB"}

package/dist/cjs/plugins/server/rx-server.js

@@ -0,0 +1,51 @@
+"use strict";
+
+Object.defineProperty(exports, "__esModule", {
+  value: true
+});
+exports.RxServer = void 0;
+var _endpointReplication = require("./endpoint-replication.js");
+var _endpointRest = require("./endpoint-rest.js");
+var RxServer = exports.RxServer = /*#__PURE__*/function () {
+  function RxServer(database, authHandler, httpServer, expressApp, cors = '*') {
+    this.endpoints = [];
+    this.closeFn = (() => this.close()).bind(this);
+    this.database = database;
+    this.authHandler = authHandler;
+    this.httpServer = httpServer;
+    this.expressApp = expressApp;
+    this.cors = cors;
+    database.onDestroy.push(this.closeFn);
+  }
+  var _proto = RxServer.prototype;
+  _proto.addReplicationEndpoint = async function addReplicationEndpoint(opts) {
+    var endpoint = new _endpointReplication.RxServerReplicationEndpoint(this, opts.name, opts.collection, opts.queryModifier ? opts.queryModifier : (_a, q) => q, opts.changeValidator ? opts.changeValidator : () => true, opts.serverOnlyFields ? opts.serverOnlyFields : [], opts.cors);
+    this.endpoints.push(endpoint);
+    return endpoint;
+  };
+  _proto.addRestEndpoint = async function addRestEndpoint(opts) {
+    var endpoint = new _endpointRest.RxServerRestEndpoint(this, opts.name, opts.collection, opts.queryModifier ? opts.queryModifier : (_a, q) => q, opts.changeValidator ? opts.changeValidator : () => true, opts.serverOnlyFields ? opts.serverOnlyFields : [], opts.cors);
+    this.endpoints.push(endpoint);
+    return endpoint;
+  };
+  _proto.close = async function close() {
+    this.database.onDestroy = this.database.onDestroy.filter(fn => fn !== this.closeFn);
+    await new Promise((res, rej) => {
+      this.httpServer.close(err => {
+        if (err) {
+          rej(err);
+        } else {
+          res();
+        }
+      });
+      /**
+       * By default it will await all ongoing connections
+       * before it closes. So we have to close it directly.
+       * @link https://stackoverflow.com/a/36830072/3443137
+       */
+      setImmediate(() => this.httpServer.emit('close'));
+    });
+  };
+  return RxServer;
+}();
+//# sourceMappingURL=rx-server.js.map

package/dist/cjs/plugins/server/rx-server.js.map

@@ -0,0 +1 @@
+{"version":3,"file":"rx-server.js","names":["_endpointReplication","require","_endpointRest","RxServer","exports","database","authHandler","httpServer","expressApp","cors","endpoints","closeFn","close","bind","onDestroy","push","_proto","prototype","addReplicationEndpoint","opts","endpoint","RxServerReplicationEndpoint","name","collection","queryModifier","_a","q","changeValidator","serverOnlyFields","addRestEndpoint","RxServerRestEndpoint","filter","fn","Promise","res","rej","err","setImmediate","emit"],"sources":["../../../../src/plugins/server/rx-server.ts"],"sourcesContent":["import type {\n    RxCollection,\n    RxDatabase\n} from 'rxdb/plugins/core';\nimport { RxServerReplicationEndpoint } from './endpoint-replication.ts';\nimport type {\n    RxServerAuthHandler,\n    RxServerChangeValidator,\n    RxServerEndpoint,\n    RxServerQueryModifier\n} from './types.ts';\nimport {\n    Server as HttpServer\n} from 'http';\nimport { Express } from 'express';\nimport { RxServerRestEndpoint } from './endpoint-rest.ts';\n\nexport class RxServer<AuthType> {\n    public readonly endpoints: RxServerEndpoint<AuthType, any>[] = [];\n\n    private closeFn = (() => this.close()).bind(this);\n\n    constructor(\n        public readonly database: RxDatabase,\n        public readonly authHandler: RxServerAuthHandler<AuthType>,\n        public readonly httpServer: HttpServer,\n        public readonly expressApp: Express,\n        public readonly cors: string = '*'\n    ) {\n        database.onDestroy.push(this.closeFn);\n    }\n\n    public async addReplicationEndpoint<RxDocType>(opts: {\n        name: string,\n        collection: RxCollection<RxDocType>,\n        queryModifier?: RxServerQueryModifier<AuthType, RxDocType>,\n        changeValidator?: RxServerChangeValidator<AuthType, RxDocType>,\n        /**\n         * Set a origin for allowed CORS requests.\n         * Overwrites the cors option of the server.\n         * [default='*']\n         */\n        cors?: '*' | string,\n        serverOnlyFields?: string[]\n    }) {\n        const endpoint = new RxServerReplicationEndpoint(\n            this,\n            opts.name,\n            opts.collection,\n            opts.queryModifier ? opts.queryModifier : (_a, q) => q,\n            opts.changeValidator ? opts.changeValidator : () => true,\n            opts.serverOnlyFields ? opts.serverOnlyFields : [],\n            opts.cors\n        );\n        this.endpoints.push(endpoint);\n        return endpoint;\n    }\n\n    public async addRestEndpoint<RxDocType>(opts: {\n        name: string,\n        collection: RxCollection<RxDocType>,\n        queryModifier?: RxServerQueryModifier<AuthType, RxDocType>,\n        changeValidator?: RxServerChangeValidator<AuthType, RxDocType>,\n        /**\n         * Set a origin for allowed CORS requests.\n         * Overwrites the cors option of the server.\n         * [default='*']\n         */\n        cors?: '*' | string,\n        serverOnlyFields?: string[]\n    }) {\n        const endpoint = new RxServerRestEndpoint(\n            this,\n            opts.name,\n            opts.collection,\n            opts.queryModifier ? opts.queryModifier : (_a, q) => q,\n            opts.changeValidator ? opts.changeValidator : () => true,\n            opts.serverOnlyFields ? opts.serverOnlyFields : [],\n            opts.cors\n        );\n        this.endpoints.push(endpoint);\n        return endpoint;\n    }\n\n    async close() {\n        this.database.onDestroy = this.database.onDestroy.filter(fn => fn !== this.closeFn);\n        await new Promise<void>((res, rej) => {\n            this.httpServer.close((err) => {\n                if (err) { rej(err); } else { res(); }\n            });\n            /**\n             * By default it will await all ongoing connections\n             * before it closes. So we have to close it directly.\n             * @link https://stackoverflow.com/a/36830072/3443137\n             */\n            setImmediate(() => this.httpServer.emit('close'));\n        });\n\n    }\n}\n"],"mappings":";;;;;;AAIA,IAAAA,oBAAA,GAAAC,OAAA;AAWA,IAAAC,aAAA,GAAAD,OAAA;AAA0D,IAE7CE,QAAQ,GAAAC,OAAA,CAAAD,QAAA;EAKjB,SAAAA,SACoBE,QAAoB,EACpBC,WAA0C,EAC1CC,UAAsB,EACtBC,UAAmB,EACnBC,IAAY,GAAG,GAAG,EACpC;IAAA,KAVcC,SAAS,GAAsC,EAAE;IAAA,KAEzDC,OAAO,GAAG,CAAC,MAAM,IAAI,CAACC,KAAK,CAAC,CAAC,EAAEC,IAAI,CAAC,IAAI,CAAC;IAAA,KAG7BR,QAAoB,GAApBA,QAAoB;IAAA,KACpBC,WAA0C,GAA1CA,WAA0C;IAAA,KAC1CC,UAAsB,GAAtBA,UAAsB;IAAA,KACtBC,UAAmB,GAAnBA,UAAmB;IAAA,KACnBC,IAAY,GAAZA,IAAY;IAE5BJ,QAAQ,CAACS,SAAS,CAACC,IAAI,CAAC,IAAI,CAACJ,OAAO,CAAC;EACzC;EAAC,IAAAK,MAAA,GAAAb,QAAA,CAAAc,SAAA;EAAAD,MAAA,CAEYE,sBAAsB,GAAnC,eAAAA,uBAA+CC,IAY9C,EAAE;IACC,IAAMC,QAAQ,GAAG,IAAIC,gDAA2B,CAC5C,IAAI,EACJF,IAAI,CAACG,IAAI,EACTH,IAAI,CAACI,UAAU,EACfJ,IAAI,CAACK,aAAa,GAAGL,IAAI,CAACK,aAAa,GAAG,CAACC,EAAE,EAAEC,CAAC,KAAKA,CAAC,EACtDP,IAAI,CAACQ,eAAe,GAAGR,IAAI,CAACQ,eAAe,GAAG,MAAM,IAAI,EACxDR,IAAI,CAACS,gBAAgB,GAAGT,IAAI,CAACS,gBAAgB,GAAG,EAAE,EAClDT,IAAI,CAACV,IACT,CAAC;IACD,IAAI,CAACC,SAAS,CAACK,IAAI,CAACK,QAAQ,CAAC;IAC7B,OAAOA,QAAQ;EACnB,CAAC;EAAAJ,MAAA,CAEYa,eAAe,GAA5B,eAAAA,gBAAwCV,IAYvC,EAAE;IACC,IAAMC,QAAQ,GAAG,IAAIU,kCAAoB,CACrC,IAAI,EACJX,IAAI,CAACG,IAAI,EACTH,IAAI,CAACI,UAAU,EACfJ,IAAI,CAACK,aAAa,GAAGL,IAAI,CAACK,aAAa,GAAG,CAACC,EAAE,EAAEC,CAAC,KAAKA,CAAC,EACtDP,IAAI,CAACQ,eAAe,GAAGR,IAAI,CAACQ,eAAe,GAAG,MAAM,IAAI,EACxDR,IAAI,CAACS,gBAAgB,GAAGT,IAAI,CAACS,gBAAgB,GAAG,EAAE,EAClDT,IAAI,CAACV,IACT,CAAC;IACD,IAAI,CAACC,SAAS,CAACK,IAAI,CAACK,QAAQ,CAAC;IAC7B,OAAOA,QAAQ;EACnB,CAAC;EAAAJ,MAAA,CAEKJ,KAAK,GAAX,eAAAA,MAAA,EAAc;IACV,IAAI,CAACP,QAAQ,CAACS,SAAS,GAAG,IAAI,CAACT,QAAQ,CAACS,SAAS,CAACiB,MAAM,CAACC,EAAE,IAAIA,EAAE,KAAK,IAAI,CAACrB,OAAO,CAAC;IACnF,MAAM,IAAIsB,OAAO,CAAO,CAACC,GAAG,EAAEC,GAAG,KAAK;MAClC,IAAI,CAAC5B,UAAU,CAACK,KAAK,CAAEwB,GAAG,IAAK;QAC3B,IAAIA,GAAG,EAAE;UAAED,GAAG,CAACC,GAAG,CAAC;QAAE,CAAC,MAAM;UAAEF,GAAG,CAAC,CAAC;QAAE;MACzC,CAAC,CAAC;MACF;AACZ;AACA;AACA;AACA;MACYG,YAAY,CAAC,MAAM,IAAI,CAAC9B,UAAU,CAAC+B,IAAI,CAAC,OAAO,CAAC,CAAC;IACrD,CAAC,CAAC;EAEN,CAAC;EAAA,OAAAnC,QAAA;AAAA"}