func RecordsUpdateHandler(c echo.Context) error {
session := session.NewSession(c)
if !session.AuthFailed {
endpoint := session.GetEndpoint()
request := session.GetParam("request").(map[string]interface{})
bypass_plugin := false
if session.User.SuperUser && request["content"].(map[string]interface{})["$bypass_plugin"] != nil {
bypass_plugin = true
delete(request["content"].(map[string]interface{}), "$bypass_plugin")
}
if !bypass_plugin && plugin.CheckPlugin("update", endpoint) {
plugin.RunPlugin("update", endpoint, session)
} else {
id := bson.ObjectIdHex(session.GetParam("record_id").(string))
record := endpoint.FindWriteRecordById(id, session.User)
if request != nil && request["content"] != nil {
request_content := request["content"].(map[string]interface{})
request_permissions := request["permissions"].(map[string]interface{})
var trigger = false
if request_content["$trigger"] != nil {
trigger = request_content["$trigger"].(bool)
delete(request_content, "$trigger")
} else {
trigger = !session.TriggerSession
}
if session.User.SuperUser != true {
if request_content["protected"] != nil {
request_content["protected"] = record.Content["protected"]
}
}
record.Content = request_content
record.Permissions.UpdatePermissions(request_permissions)
record.UpdateReferenceMaps()
record.StripReferenceData()
record.SaveAndTrigger(endpoint.Name, trigger)
session.SetRecordsAndCalculateCapabilitiesForUser(session.GetEndpoint().Name, []model.Record{record}, session.User)
}
session.SetRecordsAndCalculateCapabilitiesForUser(session.GetEndpoint().Name, []model.Record{record}, session.User)
}
}
session.Write()
return nil
}
func RecordsQueryHandler(c echo.Context) error {
session := session.NewSession(c)
if !session.AuthFailed {
endpoint := session.GetEndpoint()
request := session.GetParam("request").(map[string]interface{})
bypass_plugin := false
if session.User.SuperUser && request["where"].(map[string]interface{})["$bypass_plugin"] != nil {
bypass_plugin = true
delete(request["where"].(map[string]interface{}), "$bypass_plugin")
}
if !bypass_plugin && plugin.CheckPlugin("query", endpoint) {
plugin.RunPlugin("query", endpoint, session)
} else {
records, count := endpoint.FindReadRecordsWhere(request["where"].(map[string]interface{}), session.User)
session.SetRecordsAndCalculateCapabilitiesForUser(endpoint.Name, records, session.User)
session.SetRecordCount(count)
}
}
session.Write()
return nil
}
func RecordsTriggerHandler(c echo.Context) error {
session := session.NewSession(c)
if !session.AuthFailed {
endpoint := session.GetEndpoint()
request := session.GetParam("request").(map[string]interface{})
bypass_plugin := false
if session.User.SuperUser && request["content"] != nil && request["content"].(map[string]interface{})["$bypass_plugin"] != nil {
bypass_plugin = true
delete(request["content"].(map[string]interface{}), "$bypass_plugin")
}
if !bypass_plugin && plugin.CheckPlugin("trigger", endpoint) {
plugin.RunPlugin("trigger", endpoint, session)
} else {
id := bson.ObjectIdHex(session.GetParam("record_id").(string))
record := endpoint.FindWriteRecordById(id, session.User)
record.UpdateReferenceMaps()
record.SaveAndTriggerCreate(endpoint.Name, false)
go record.FindAndExecuteTriggerForEvent(endpoint.Name + ":update")
}
}
session.Write()
return nil
}
func RecordsDeleteHandler(c echo.Context) error {
session := session.NewSession(c)
if !session.AuthFailed {
endpoint := session.GetEndpoint()
request := session.GetParam("request").(map[string]interface{})
bypass_plugin := false
if session.User.SuperUser && request["content"] != nil && request["content"].(map[string]interface{})["$bypass_plugin"] != nil {
bypass_plugin = true
delete(request["content"].(map[string]interface{}), "$bypass_plugin")
}
if !bypass_plugin && plugin.CheckPlugin("delete", endpoint) {
plugin.RunPlugin("delete", endpoint, session)
} else {
id := bson.ObjectIdHex(session.GetParam("record_id").(string))
record := endpoint.FindDestroyRecordById(id, session.User)
record.DeleteAndTrigger(endpoint.Name, !session.TriggerSession)
}
}
session.Write()
return nil
}
func FilesCreateHandler(c echo.Context) error {
session := session.NewSession(c)
request := session.GetParam("request").(map[string]interface{})
file_params := request["file"].(map[string]interface{})
var size int64
url := ""
if file_params["size"] != nil {
size, _ = file_params["size"].(json.Number).Int64()
}
if file_params["url"] != nil {
url = file_params["url"].(string)
}
if url != "" || size != 0 {
if !session.AuthFailed {
record_id := bson.ObjectIdHex(session.GetParam("record_id").(string))
endpoint := session.GetEndpoint()
record := endpoint.FindWriteRecordById(record_id, session.User)
if record.Id != bson.ObjectId("") {
file := model.File{}
file.ApplicationId = session.GetApplication().Id
file.RecordId = record.Id
file.EndpointId = endpoint.Id
file.Name = file_params["name"].(string)
if size != 0 {
file.Size = size
} else {
file.URL = url
}
file.Save()
if file_params["size"] != nil {
file.GenerateRequest()
}
record.AddFile(file)
session.SetRecords("files", []model.File{file})
}
}
} else {
session.SetError(1400)
}
session.Write()
return nil
}
func FilesGetHandler(c echo.Context) error {
// Create the User Session
session := session.NewSession(c)
// Validate that the request signature is valid
session.ValidateFileRequest()
redirect := false
if !session.AuthFailed {
// Get the endpoint for that record
endpoint := session.GetEndpoint()
if plugin.CheckPlugin("get_file", endpoint) {
plugin.RunPlugin("get_file", endpoint, session)
} else {
// Get the ID of the record that owns the file
record_id := bson.ObjectIdHex(session.GetParam("record_id").(string))
// Get the record from the endpoint collection
record := endpoint.FindReadRecordById(record_id, session.User)
// Check if the record exists
if record.Id != bson.ObjectId("") {
// Get the ID of the file
file_id := bson.ObjectIdHex(session.GetParam("file_id").(string))
// Get the file from the database
file := record.FindFileById(file_id)
// Validate that the file exists
if file.Id != bson.ObjectId("") {
// Redirect to the file path
c.Redirect(301, file.DownloadURL())
redirect = true
// Log the request
session.LogRequest()
}
}
if !redirect {
session.Write()
}
}
}
return nil
}
func FilesDeleteHandler(c echo.Context) error {
session := session.NewSession(c)
if !session.AuthFailed {
record_id := bson.ObjectIdHex(session.GetParam("record_id").(string))
endpoint := session.GetEndpoint()
record := endpoint.FindReadRecordById(record_id, session.User)
if record.Id != bson.ObjectId("") {
file_id := bson.ObjectIdHex(session.GetParam("file_id").(string))
file := record.FindFileById(file_id)
if file.Id != bson.ObjectId("") {
file.Delete()
record.RemoveFile(file)
}
}
}
session.Write()
return nil
}
func RecordsCreateHandler(c echo.Context) error {
session := session.NewSession(c)
if !session.AuthFailed {
endpoint := session.GetEndpoint()
request := session.GetParam("request").(map[string]interface{})
bypass_plugin := false
if session.User.SuperUser && request["content"].(map[string]interface{})["$bypass_plugin"] != nil {
bypass_plugin = true
delete(request["content"].(map[string]interface{}), "$bypass_plugin")
}
if !bypass_plugin && plugin.CheckPlugin("create", endpoint) {
plugin.RunPlugin("create", endpoint, session)
} else {
if endpoint.CanCreate(session.User) {
record := endpoint.NewRecord()
if session.User.Id != bson.ObjectId("") {
record.CreatedBy = session.User.Id
}
if request != nil && request["content"] != nil {
var trigger = false
if request["content"].(map[string]interface{})["$trigger"] != nil {
trigger = request["content"].(map[string]interface{})["$trigger"].(bool)
delete(request["content"].(map[string]interface{}), "$trigger")
} else {
trigger = !session.TriggerSession
}
if request["content"].(map[string]interface{})["$created_by"] != nil &&
session.User.SuperUser == true {
record.CreatedBy = bson.ObjectIdHex(request["content"].(map[string]interface{})["$created_by"].(string))
delete(request["content"].(map[string]interface{}), "$created_by")
}
request_content := request["content"].(map[string]interface{})
request_permissions := request["permissions"].(map[string]interface{})
record.Content = request_content
record.Permissions.UpdatePermissions(request_permissions)
record.SaveAndTrigger("", false)
record.UpdateReferenceMaps()
record.SaveAndTriggerCreate(endpoint.Name, trigger)
session.SetRecordsAndCalculateCapabilitiesForUser(session.GetEndpoint().Name, []model.Record{record}, session.User)
}
}
}
}
session.Write()
return nil
}