Vieraw
/
Kutt


			
				
					
						
						
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403
							const promisify = require("util").promisify;
const bcrypt = require("bcryptjs");
const isbot = require("isbot");
const URL = require("url");
const dns = require("dns");

const validators = require("./validators");
// const transporter = require("../mail");
const query = require("../queries");
// const queue = require("../queues");
const utils = require("../utils");
const env = require("../env");

const CustomError = utils.CustomError;
const dnsLookup = promisify(dns.lookup);

// export const get: Handler = async (req, res) => {
//   const { limit, skip, all } = req.context;
//   const search = req.query.search as string;
//   const userId = req.user.id;

//   const match = {
//     ...(!all && { user_id: userId })
//   };

//   const [links, total] = await Promise.all([
//     query.link.get(match, { limit, search, skip }),
//     query.link.total(match, { search })
//   ]);

//   const data = links.map(utils.sanitize.link);

//   return res.send({
//     total,
//     limit,
//     skip,
//     data
//   });
// };

/**
 * @type {import("express").Handler}
 */
async function create(req, res) {
  const { reuse, password, customurl, description, target, domain, expire_in } = req.body;
  const domain_id = domain ? domain.id : null;
  
  const targetDomain = utils.removeWww(URL.parse(target).hostname);
  
  const queries = await Promise.all([
    validators.cooldown(req.user),
    validators.malware(req.user, target),
    validators.linksCount(req.user),
    reuse &&
      query.link.find({
        target,
        user_id: req.user.id,
        domain_id
      }),
    customurl &&
      query.link.find({
        address: customurl,
        domain_id
      }),
    !customurl && utils.generateId(domain_id),
    validators.bannedDomain(targetDomain),
    validators.bannedHost(targetDomain)
  ]);
  
  // if "reuse" is true, try to return
  // the existent URL without creating one
  if (queries[3]) {
    return res.json(utils.sanitize.link(queries[3]));
  }
  
  // Check if custom link already exists
  if (queries[4]) {
    throw new CustomError("Custom URL is already in use.");
  }

  const accepts = req.accepts(["json", "html"]);

  // Create new link
  const address = customurl || queries[5];
  const link = await query.link.create({
    password,
    address,
    domain_id,
    description,
    target,
    expire_in,
    user_id: req.user && req.user.id
  });
  
  if (!req.user && env.NON_USER_COOLDOWN) {
    query.ip.add(req.realIP);
  }

  if (accepts === "html") {
    const shortURL = utils.getShortURL(link.address, link.domain);
    return res.render("partials/shorturl", {
      layout: null,
      link: shortURL.link, 
      url: shortURL.url,
    });
  }
  
  return res
    .status(201)
    .send(utils.sanitize.link({ ...link, domain: domain?.address }));
}

// export const edit: Handler = async (req, res) => {
//   const { address, target, description, expire_in, password } = req.body;
//   if (!address && !target) {
//     throw new CustomError("Should at least update one field.");
//   }

//   const link = await query.link.find({
//     uuid: req.params.id,
//     ...(!req.user.admin && { user_id: req.user.id })
//   });

//   if (!link) {
//     throw new CustomError("Link was not found.");
//   }

//   const targetDomain = utils.removeWww(URL.parse(target).hostname);
//   const domain_id = link.domain_id || null;

//   const queries = await Promise.all([
//     validators.cooldown(req.user),
//     validators.malware(req.user, target),
//     address !== link.address &&
//       query.link.find({
//         address,
//         domain_id
//       }),
//     validators.bannedDomain(targetDomain),
//     validators.bannedHost(targetDomain)
//   ]);

//   // Check if custom link already exists
//   if (queries[2]) {
//     throw new CustomError("Custom URL is already in use.");
//   }

//   // Update link
//   const [updatedLink] = await query.link.update(
//     {
//       id: link.id
//     },
//     {
//       ...(address && { address }),
//       ...(description && { description }),
//       ...(target && { target }),
//       ...(expire_in && { expire_in }),
//       ...(password && { password })
//     }
//   );

//   return res.status(200).send(utils.sanitize.link({ ...link, ...updatedLink }));
// };

// export const remove: Handler = async (req, res) => {
//   const link = await query.link.remove({
//     uuid: req.params.id,
//     ...(!req.user.admin && { user_id: req.user.id })
//   });

//   if (!link) {
//     throw new CustomError("Could not delete the link");
//   }

//   return res
//     .status(200)
//     .send({ message: "Link has been deleted successfully." });
// };

// export const report: Handler = async (req, res) => {
//   const { link } = req.body;

//   const mail = await transporter.sendMail({
//     from: env.MAIL_FROM || env.MAIL_USER,
//     to: env.REPORT_EMAIL,
//     subject: "[REPORT]",
//     text: link,
//     html: link
//   });

//   if (!mail.accepted.length) {
//     throw new CustomError("Couldn't submit the report. Try again later.");
//   }
//   return res
//     .status(200)
//     .send({ message: "Thanks for the report, we'll take actions shortly." });
// };

// export const ban: Handler = async (req, res) => {
//   const { id } = req.params;

//   const update = {
//     banned_by_id: req.user.id,
//     banned: true
//   };

//   // 1. Check if link exists
//   const link = await query.link.find({ uuid: id });

//   if (!link) {
//     throw new CustomError("No link has been found.", 400);
//   }

//   if (link.banned) {
//     return res.status(200).send({ message: "Link has been banned already." });
//   }

//   const tasks = [];

//   // 2. Ban link
//   tasks.push(query.link.update({ uuid: id }, update));

//   const domain = utils.removeWww(URL.parse(link.target).hostname);

//   // 3. Ban target's domain
//   if (req.body.domain) {
//     tasks.push(query.domain.add({ ...update, address: domain }));
//   }

//   // 4. Ban target's host
//   if (req.body.host) {
//     const dnsRes = await dnsLookup(domain).catch(() => {
//       throw new CustomError("Couldn't fetch DNS info.");
//     });
//     const host = dnsRes?.address;
//     tasks.push(query.host.add({ ...update, address: host }));
//   }

//   // 5. Ban link owner
//   if (req.body.user && link.user_id) {
//     tasks.push(query.user.update({ id: link.user_id }, update));
//   }

//   // 6. Ban all of owner's links
//   if (req.body.userLinks && link.user_id) {
//     tasks.push(query.link.update({ user_id: link.user_id }, update));
//   }

//   // 7. Wait for all tasks to finish
//   await Promise.all(tasks).catch(() => {
//     throw new CustomError("Couldn't ban entries.");
//   });

//   // 8. Send response
//   return res.status(200).send({ message: "Banned link successfully." });
// };

// export const redirect = (app) => async (
//   req,
//   res,
//   next
// ) => {
//   const isBot = isbot(req.headers["user-agent"]);
//   const isPreservedUrl = validators.preservedUrls.some(
//     item => item === req.path.replace("/", "")
//   );

//   if (isPreservedUrl) return next();

//   // 1. If custom domain, get domain info
//   const host = utils.removeWww(req.headers.host);
//   const domain =
//     host !== env.DEFAULT_DOMAIN
//       ? await query.domain.find({ address: host })
//       : null;

//   // 2. Get link
//   const address = req.params.id.replace("+", "");
//   const link = await query.link.find({
//     address,
//     domain_id: domain ? domain.id : null
//   });

//   // 3. When no link, if has domain redirect to domain's homepage
//   // otherwise redirect to 404
//   if (!link) {
//     return res.redirect(302, domain ? domain.homepage : "/404");
//   }

//   // 4. If link is banned, redirect to banned page.
//   if (link.banned) {
//     return res.redirect("/banned");
//   }

//   // 5. If wants to see link info, then redirect
//   const doesRequestInfo = /.*\+$/gi.test(req.params.id);
//   if (doesRequestInfo && !link.password) {
//     return app.render(req, res, "/url-info", { target: link.target });
//   }

//   // 6. If link is protected, redirect to password page
//   if (link.password) {
//     return res.redirect(`/protected/${link.uuid}`);
//   }

//   // 7. Create link visit
//   if (link.user_id && !isBot) {
//     queue.visit.add({
//       headers: req.headers,
//       realIP: req.realIP,
//       referrer: req.get("Referrer"),
//       link
//     });
//   }

//   // 8. Redirect to target
//   return res.redirect(link.target);
// };

// export const redirectProtected: Handler = async (req, res) => {
//   // 1. Get link
//   const uuid = req.params.id;
//   const link = await query.link.find({ uuid });

//   // 2. Throw error if no link
//   if (!link || !link.password) {
//     throw new CustomError("Couldn't find the link.", 400);
//   }

//   // 3. Check if password matches
//   const matches = await bcrypt.compare(req.body.password, link.password);

//   if (!matches) {
//     throw new CustomError("Password is not correct.", 401);
//   }

//   // 4. Create visit
//   if (link.user_id) {
//     queue.visit.add({
//       headers: req.headers,
//       realIP: req.realIP,
//       referrer: req.get("Referrer"),
//       link
//     });
//   }

//   // 5. Send target
//   return res.status(200).send({ target: link.target });
// };

// export const redirectCustomDomain: Handler = async (req, res, next) => {
//   const { path } = req;
//   const host = utils.removeWww(req.headers.host);

//   if (host === env.DEFAULT_DOMAIN) {
//     return next();
//   }

//   if (
//     path === "/" ||
//     validators.preservedUrls
//       .filter(l => l !== "url-password")
//       .some(item => item === path.replace("/", ""))
//   ) {
//     const domain = await query.domain.find({ address: host });
//     const redirectURL = domain
//       ? domain.homepage
//       : `https://${env.DEFAULT_DOMAIN + path}`;

//     return res.redirect(302, redirectURL);
//   }

//   return next();
// };

// export const stats: Handler = async (req, res) => {
//   const { user } = req;
//   const uuid = req.params.id;

//   const link = await query.link.find({
//     ...(!user.admin && { user_id: user.id }),
//     uuid
//   });

//   if (!link) {
//     throw new CustomError("Link could not be found.");
//   }

//   const stats = await query.visit.find({ link_id: link.id }, link.visit_count);

//   if (!stats) {
//     throw new CustomError("Could not get the short link stats.");
//   }

//   return res.status(200).send({
//     ...stats,
//     ...utils.sanitize.link(link)
//   });
// };

module.exports = {
  create,
}