mirrors/misskey
1
0
Fork 1
mirror of https://github.com/misskey-dev/misskey synced 2024-07-03 15:46:37 +02:00
Code Issues Packages Projects Releases Wiki Activity

refactor: APIで非JSON入力の型変換はendpointに渡す前に行うように (#8229)

Browse source 
* Resolve #8228

* fix
This commit is contained in:
MeiMei 2022-01-31 01:40:27 +09:00 committed by GitHub
parent 943ff2dfdb
commit f2b40b51c2
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
3 changed files with 17 additions and 7 deletions
Show stats Download patch file Download diff file Expand all files Collapse all files

2
packages/backend/src/server/api/api-handler.ts
View file

@ -32,7 +32,7 @@ export default (endpoint: IEndpoint, ctx: Koa.Context) => new Promise((res) => {
// Authentication // Authentication
authenticate(body['i']).then(([user, app]) => { authenticate(body['i']).then(([user, app]) => {
// API invoking // API invoking
call(endpoint.name, user, app, body, (ctx as any).file).then((res: any) => { call(endpoint.name, user, app, body, ctx).then((res: any) => {
reply(res); reply(res);
}).catch((e: ApiError) => { }).catch((e: ApiError) => {
reply(e.httpStatusCode ? e.httpStatusCode : e.kind === 'client' ? 400 : 500, e); reply(e.httpStatusCode ? e.httpStatusCode : e.kind === 'client' ? 400 : 500, e);

16
packages/backend/src/server/api/call.ts
View file

@ -1,3 +1,4 @@
import * as Koa from 'koa';
import { performance } from 'perf_hooks'; import { performance } from 'perf_hooks';
import { limiter } from './limiter'; import { limiter } from './limiter';
import { User } from '@/models/entities/user'; import { User } from '@/models/entities/user';
@ -12,7 +13,7 @@ const accessDenied = {
id: '56f35758-7dd5-468b-8439-5d6fb8ec9b8e', id: '56f35758-7dd5-468b-8439-5d6fb8ec9b8e',
}; };
export default async (endpoint: string, user: User | null | undefined, token: AccessToken | null | undefined, data: any, file?: any) => { export default async (endpoint: string, user: User | null | undefined, token: AccessToken | null | undefined, data: any, ctx?: Koa.Context) => {
const isSecure = user != null && token == null; const isSecure = user != null && token == null;
const ep = endpoints.find(e => e.name === endpoint); const ep = endpoints.find(e => e.name === endpoint);
@ -76,9 +77,20 @@ export default async (endpoint: string, user: User | null | undefined, token: Ac
}); });
} }
// Cast non JSON input
if (ep.meta.requireFile && ep.meta.params) {
const body = (ctx!.request as any).body;
for (const k of Object.keys(ep.meta.params)) {
const param = ep.meta.params[k];
if (['Boolean', 'Number'].includes(param.validator.name) && typeof body[k] === 'string') {
body[k] = JSON.parse(body[k]);
}
}
}
// API invoking // API invoking
const before = performance.now(); const before = performance.now();
return await ep.exec(data, user, token, file).catch((e: Error) => { return await ep.exec(data, user, token, ctx!.file).catch((e: Error) => {
if (e instanceof ApiError) { if (e instanceof ApiError) {
throw e; throw e;
} else { } else {

6
packages/backend/src/server/api/endpoints/drive/files/create.ts
View file

@ -39,15 +39,13 @@ export const meta = {
}, },
isSensitive: { isSensitive: {
validator: $.optional.either($.bool, $.str), validator: $.optional.bool,
default: false, default: false,
transform: (v: any): boolean => v === true || v === 'true',
}, },
force: { force: {
validator: $.optional.either($.bool, $.str), validator: $.optional.bool,
default: false, default: false,
transform: (v: any): boolean => v === true || v === 'true',
}, },
}, },