Added API v2 (breaking compatibility with folders).
h3rald h3rald@h3rald.com
Sun, 17 Apr 2016 00:17:57 +0200
4 files changed,
529 insertions(+),
50 deletions(-)
M
lib/api_v1.nim
→
lib/api_v1.nim
@@ -18,9 +18,6 @@
# Helper procs -proc isFolder(id: string): bool = - return (id.len > 0 and id[id.len-1] == '/') - proc orderByClause(clause: string): string = var matches = @["", ""] if clause.find(peg"{[-+ ]} {(id / created / modified)}", matches) != -1:@@ -67,24 +64,6 @@ proc parseQueryOptions(querystring: string, options: var QueryOptions) =
var fragments = querystring.split('&') for f in fragments: f.parseQueryOption(options) - -proc validate(req: Request, LS: LiteStore, resource: string, id: string, cb: proc(req: Request, LS: LiteStore, resource: string, id: string):Response): Response = - if req.reqMethod == "POST" or req.reqMethod == "PUT" or req.reqMethod == "PATCH": - var ct = "" - let body = req.body.strip - if body == "": - return resError(Http400, "Bad request: No content specified for document.") - if req.headers.hasKey("Content-Type"): - ct = req.headers["Content-Type"] - case ct: - of "application/json": - try: - discard body.parseJson() - except: - return resError(Http400, "Invalid JSON content - $1" % getCurrentExceptionMsg()) - else: - discard - return cb(req, LS, resource, id) proc applyPatchOperation(tags: var seq[string], op: string, path: string, value: string): bool = var matches = @[""]@@ -176,8 +155,6 @@ if docs.len == 0:
result = resError(Http404, "No documents found.") else: var content = newJObject() - if options.folder != "": - content["folder"] = %(options.folder) if options.search != "": content["search"] = %(options.search.decodeURL) if options.tags != "":@@ -316,16 +293,7 @@ result.headers = TAB_HEADERS.newStringTable
result.headers["Allow"] = "GET,OPTIONS" result.headers["Access-Control-Allow-Methods"] = "GET,OPTIONS" of "docs": - var folder: string - if id.isFolder: - folder = id - if folder != "": - result.code = Http200 - result.content = "" - result.headers = TAB_HEADERS.newStringTable - result.headers["Allow"] = "HEAD,GET,OPTIONS" - result.headers["Access-Control-Allow-Methods"] = "HEAD,GET,OPTIONS" - elif id != "": + if id != "": result.code = Http200 result.content = "" if LS.readonly:@@ -354,11 +322,9 @@
proc head(req: Request, LS: LiteStore, resource: string, id = ""): Response = var options = newQueryOptions() options.select = @["documents.id AS id", "created", "modified"] - if id.isFolder: - options.folder = id try: parseQueryOptions(req.url.query, options); - if id != "" and options.folder == "": + if id != "": result = LS.getRawDocument(id, options) result.content = "" else:@@ -372,13 +338,11 @@ let id = id.decodeURL
case resource: of "docs": var options = newQueryOptions() - if id.isFolder: - options.folder = id if req.url.query.contains("contents=false"): options.select = @["documents.id AS id", "created", "modified"] try: parseQueryOptions(req.url.query, options); - if id != "" and options.folder == "": + if id != "": if req.url.query.contains("raw=true") or req.headers["Accept"] == "application/json": return LS.getRawDocument(id, options) else:
A
lib/api_v2.nim
@@ -0,0 +1,484 @@
+import + x_asynchttpserver, + asyncdispatch, + strutils, + cgi, + strtabs, + pegs, + json, + os, + times +import + types, + contenttypes, + core, + utils, + logger + + +# Helper procs + +proc isFolder(id: string): bool = + return (id.len > 0 and id[id.len-1] == '/') + +proc orderByClause(clause: string): string = + var matches = @["", ""] + if clause.find(peg"{[-+ ]} {(id / created / modified)}", matches) != -1: + if matches[0] == "-": + return "$1 DESC" % matches[1] + else: + return "$1 ASC" % matches[1] + else: + return "" + +proc parseQueryOption(fragment: string, options: var QueryOptions) = + var pair = fragment.split('=') + if pair.len < 2 or pair[1] == "": + raise newException(EInvalidRequest, "Invalid query string fragment '$1'" % fragment) + try: + pair[1] = pair[1].replace("+", "%2B").decodeURL + except: + raise newException(EInvalidRequest, "Unable to decode query string fragment '$1'" % fragment) + case pair[0]: + of "search": + options.search = pair[1] + of "tags": + options.tags = pair[1] + of "limit": + try: + options.limit = pair[1].parseInt + except: + raise newException(EInvalidRequest, "Invalid limit value: $1" % getCurrentExceptionMsg()) + of "offset": + try: + options.offset = pair[1].parseInt + except: + raise newException(EInvalidRequest, "Invalid offset value: $1" % getCurrentExceptionMsg()) + of "sort": + let orderby = pair[1].orderByClause() + if orderby != "": + options.orderby = orderby + else: + raise newException(EInvalidRequest, "Invalid sort value: $1" % pair[1]) + else: + return + +proc parseQueryOptions(querystring: string, options: var QueryOptions) = + var fragments = querystring.split('&') + for f in fragments: + f.parseQueryOption(options) + +proc validate(req: Request, LS: LiteStore, resource: string, id: string, cb: proc(req: Request, LS: LiteStore, resource: string, id: string):Response): Response = + if req.reqMethod == "POST" or req.reqMethod == "PUT" or req.reqMethod == "PATCH": + var ct = "" + let body = req.body.strip + if body == "": + return resError(Http400, "Bad request: No content specified for document.") + if req.headers.hasKey("Content-Type"): + ct = req.headers["Content-Type"] + case ct: + of "application/json": + try: + discard body.parseJson() + except: + return resError(Http400, "Invalid JSON content - $1" % getCurrentExceptionMsg()) + else: + discard + return cb(req, LS, resource, id) + +proc applyPatchOperation(tags: var seq[string], op: string, path: string, value: string): bool = + var matches = @[""] + if path.find(peg"^\/tags\/{\d+}$", matches) == -1: + raise newException(EInvalidRequest, "cannot patch path '$1'" % path) + let index = matches[0].parseInt + LOG.debug("- PATCH -> $1 tag index '$2' - Total tags: $3." % [op, $index, $tags.len]) + case op: + of "remove": + let tag = tags[index] + if not tag.startsWith("$"): + tags[index] = "" # Not removing element, otherwise subsequent indexes won't work! + else: + raise newException(EInvalidRequest, "Cannot remove system tag: $1" % tag) + of "add": + if value.match(PEG_USER_TAG): + tags.insert(value, index) + else: + if value.strip == "": + raise newException(EInvalidRequest, "tag not specified." % value) + else: + raise newException(EInvalidRequest, "invalid tag: $1" % value) + of "replace": + if value.match(PEG_USER_TAG): + if tags[index].startsWith("$"): + raise newException(EInvalidRequest, "Cannot replace system tag: $1" % tags[index]) + else: + tags[index] = value + else: + if value.strip == "": + raise newException(EInvalidRequest, "tag not specified." % value) + else: + raise newException(EInvalidRequest, "invalid tag: $1" % value) + of "test": + if tags[index] != value: + return false + else: + raise newException(EInvalidRequest, "invalid operation: $1" % op) + return true + +# Low level procs + +proc getRawDocument(LS: LiteStore, id: string, options = newQueryOptions()): Response = + let doc = LS.store.retrieveRawDocument(id, options) + result.headers = ctJsonHeader() + if doc == "": + result = resDocumentNotFound(id) + else: + result.content = doc + result.code = Http200 + +proc getDocument(LS: LiteStore, id: string, options = newQueryOptions()): Response = + let doc = LS.store.retrieveDocument(id, options) + if doc.data == "": + result = resDocumentNotFound(id) + else: + result.headers = doc.contenttype.ctHeader + result.content = doc.data + result.code = Http200 + +proc deleteDocument(LS: LiteStore, id: string): Response = + let doc = LS.store.retrieveDocument(id) + if doc.data == "": + result = resDocumentNotFound(id) + else: + try: + let res = LS.store.destroyDocument(id) + if res == 0: + result = resError(Http500, "Unable to delete document '$1'" % id) + else: + result.headers = TAB_HEADERS.newStringTable + result.headers["Content-Length"] = "0" + result.content = "" + result.code = Http204 + except: + result = resError(Http500, "Unable to delete document '$1'" % id) + +proc getRawDocuments(LS: LiteStore, options: QueryOptions = newQueryOptions()): Response = + var options = options + let t0 = cpuTime() + let docs = LS.store.retrieveRawDocuments(options) + let orig_limit = options.limit + let orig_offset = options.offset + options.limit = 0 + options.offset = 0 + options.select = @["COUNT(docid)"] + let total = LS.store.retrieveRawDocuments(options)[0].num + if docs.len == 0: + result = resError(Http404, "No documents found.") + else: + var content = newJObject() + if options.folder != "": + content["folder"] = %(options.folder) + if options.search != "": + content["search"] = %(options.search.decodeURL) + if options.tags != "": + content["tags"] = newJArray() + for tag in options.tags.replace("+", "%2B").decodeURL.split(","): + content["tags"].add(%tag) + if orig_limit > 0: + content["limit"] = %orig_limit + if orig_offset > 0: + content["offset"] = %orig_offset + if options.orderby != "": + content["sort"] = %options.orderby + content["total"] = %total + content["execution_time"] = %(cputime()-t0) + content["results"] = docs + result.headers = ctJsonHeader() + result.content = content.pretty + result.code = Http200 + +proc getInfo(LS: LiteStore): Response = + let info = LS.store.retrieveInfo() + let version = info[0] + let total_documents = info[1] + let total_tags = LS.store.countTags() + let tags = LS.store.retrieveTagsWithTotals() + var content = newJObject() + content["version"] = %(LS.appname & " v" & LS.appversion) + content["datastore_version"] = %version + content["size"] = %($((LS.file.getFileSize().float/(1024*1024)).formatFloat(ffDecimal, 2)) & " MB") + content["read_only"] = %LS.readonly + content["log_level"] = %LS.loglevel + if LS.directory == nil: + content["directory"] = newJNull() + else: + content["directory"] = %LS.directory + content["mount"] = %LS.mount + content["total_documents"] = %total_documents + content["total_tags"] = %total_tags + content["tags"] = tags + result.headers = ctJsonHeader() + result.content = content.pretty + result.code = Http200 + +proc postDocument(LS: LiteStore, body: string, ct: string): Response = + try: + var doc = LS.store.createDocument("", body, ct) + if doc != "": + result.headers = ctJsonHeader() + result.content = doc + result.code = Http201 + else: + result = resError(Http500, "Unable to create document.") + except: + result = resError(Http500, "Unable to create document.") + +proc putDocument(LS: LiteStore, id: string, body: string, ct: string): Response = + if id.isFolder: + return resError(Http400, "Invalid ID '$1' (Document IDs cannot end with '/')." % id) + let doc = LS.store.retrieveDocument(id) + if doc.data == "": + # Create a new document + var doc = LS.store.createDocument(id, body, ct) + if doc != "": + result.headers = ctJsonHeader() + result.content = doc + result.code = Http201 + else: + result = resError(Http500, "Unable to create document.") + else: + # Update existing document + try: + var doc = LS.store.updateDocument(id, body, ct) + if doc != "": + result.headers = ctJsonHeader() + result.content = doc + result.code = Http200 + else: + result = resError(Http500, "Unable to update document '$1'." % id) + except: + result = resError(Http500, "Unable to update document '$1'." % id) + +proc patchDocument(LS: LiteStore, id: string, body: string): Response = + var apply = true + let jbody = body.parseJson + if jbody.kind != JArray: + return resError(Http400, "Bad request: PATCH request body is not an array.") + var options = newQueryOptions() + options.select = @["documents.id AS id", "created", "modified"] + let doc = LS.store.retrieveRawDocument(id, options) + if doc == "": + return resDocumentNotFound(id) + let jdoc = doc.parseJson + var tags = newSeq[string](0) + for tag in jdoc["tags"].items: + tags.add(tag.str) + var c = 1 + for item in jbody.items: + if item.hasKey("op") and item.hasKey("path"): + if not item.hasKey("value"): + item["value"] = %"" + try: + apply = applyPatchOperation(tags, item["op"].str, item["path"].str, item["value"].str) + if not apply: + break + except: + return resError(Http400, "Bad request - $1" % getCurrentExceptionMsg()) + else: + return resError(Http400, "Bad request: patch operation #$1 is malformed." % $c) + c.inc + if apply: + try: + for t1 in jdoc["tags"].items: + discard LS.store.destroyTag(t1.str, id, true) + for t2 in tags: + if t2 != "": + LS.store.createTag(t2, id, true) + except: + return resError(Http500, "Unable to patch document '$1' - $2" % [id, getCurrentExceptionMsg()]) + return LS.getRawDocument(id) + +# Main routing + +proc options(req: Request, LS: LiteStore, resource: string, id = ""): Response = + case resource: + of "info": + if id != "": + return resError(Http404, "Info '$1' not found." % id) + else: + result.code = Http200 + result.content = "" + result.headers = TAB_HEADERS.newStringTable + result.headers["Allow"] = "GET,OPTIONS" + result.headers["Access-Control-Allow-Methods"] = "GET,OPTIONS" + of "dir": + result.code = Http200 + result.content = "" + result.headers = TAB_HEADERS.newStringTable + result.headers["Allow"] = "GET,OPTIONS" + result.headers["Access-Control-Allow-Methods"] = "GET,OPTIONS" + of "docs": + var folder: string + if id.isFolder: + folder = id + if folder != "": + result.code = Http200 + result.content = "" + result.headers = TAB_HEADERS.newStringTable + result.headers["Allow"] = "HEAD,GET,OPTIONS" + result.headers["Access-Control-Allow-Methods"] = "HEAD,GET,OPTIONS" + elif id != "": + result.code = Http200 + result.content = "" + if LS.readonly: + result.headers = TAB_HEADERS.newStringTable + result.headers["Allow"] = "HEAD,GET,OPTIONS" + result.headers["Access-Control-Allow-Methods"] = "HEAD,GET,OPTIONS" + else: + result.headers = TAB_HEADERS.newStringTable + result.headers["Allow"] = "HEAD,GET,OPTIONS,PUT,PATCH,DELETE" + result.headers["Allow-Patch"] = "application/json-patch+json" + result.headers["Access-Control-Allow-Methods"] = "HEAD,GET,OPTIONS,PUT,PATCH,DELETE" + else: + result.code = Http200 + result.content = "" + if LS.readonly: + result.headers = TAB_HEADERS.newStringTable + result.headers["Allow"] = "HEAD,GET,OPTIONS" + result.headers["Access-Control-Allow-Methods"] = "HEAD,GET,OPTIONS" + else: + result.headers = TAB_HEADERS.newStringTable + result.headers["Allow"] = "HEAD,GET,OPTIONS,POST" + result.headers["Access-Control-Allow-Methods"] = "HEAD,GET,OPTIONS,POST" + else: + discard # never happens really. + +proc head(req: Request, LS: LiteStore, resource: string, id = ""): Response = + var options = newQueryOptions() + options.select = @["documents.id AS id", "created", "modified"] + if id.isFolder: + options.folder = id + try: + parseQueryOptions(req.url.query, options); + if id != "" and options.folder == "": + result = LS.getRawDocument(id, options) + result.content = "" + else: + result = LS.getRawDocuments(options) + result.content = "" + except: + return resError(Http400, "Bad request - $1" % getCurrentExceptionMsg()) + +proc get(req: Request, LS: LiteStore, resource: string, id = ""): Response = + let id = id.decodeURL + case resource: + of "docs": + var options = newQueryOptions() + if id.isFolder: + options.folder = id + if req.url.query.contains("contents=false"): + options.select = @["documents.id AS id", "created", "modified"] + try: + parseQueryOptions(req.url.query, options); + if id != "" and options.folder == "": + if req.url.query.contains("raw=true") or req.headers["Accept"] == "application/json": + return LS.getRawDocument(id, options) + else: + return LS.getDocument(id, options) + else: + return LS.getRawDocuments(options) + except: + return resError(Http500, "Internal Server Error - $1" % getCurrentExceptionMsg()) + of "info": + if id != "": + return resError(Http404, "Info '$1' not found." % id) + return LS.getInfo() + else: + discard # never happens really. + + +proc post(req: Request, LS: LiteStore, resource: string, id = ""): Response = + if id == "": + var ct = "text/plain" + if req.headers.hasKey("Content-Type"): + ct = req.headers["Content-Type"] + return LS.postDocument(req.body.strip, ct) + else: + return resError(Http400, "Bad request: document ID cannot be specified in POST requests.") + +proc put(req: Request, LS: LiteStore, resource: string, id = ""): Response = + if id != "": + var ct = "text/plain" + if req.headers.hasKey("Content-Type"): + ct = req.headers["Content-Type"] + return LS.putDocument(id, req.body.strip, ct) + else: + return resError(Http400, "Bad request: document ID must be specified in PUT requests.") + +proc delete(req: Request, LS: LiteStore, resource: string, id = ""): Response = + if id != "": + return LS.deleteDocument(id) + else: + return resError(Http400, "Bad request: document ID must be specified in DELETE requests.") + +proc patch(req: Request, LS: LiteStore, resource: string, id = ""): Response = + if id != "": + return LS.patchDocument(id, req.body) + else: + return resError(Http400, "Bad request: document ID must be specified in PATCH requests.") + +proc serveFile*(req: Request, LS: LiteStore, id: string): Response = + let path = LS.directory / id + var reqMethod = req.reqMethod + if req.headers.hasKey("X-HTTP-Method-Override"): + reqMethod = req.headers["X-HTTP-Method-Override"] + case reqMethod.toUpper: + of "OPTIONS": + return validate(req, LS, "dir", id, options) + of "GET": + if path.fileExists: + try: + let contents = path.readFile + let parts = path.splitFile + if CONTENT_TYPES.hasKey(parts.ext): + result.headers = CONTENT_TYPES[parts.ext].ctHeader + else: + result.headers = ctHeader("text/plain") + result.content = contents + result.code = Http200 + except: + return resError(Http500, "Unable to read file '$1'." % path) + else: + return resError(Http404, "File '$1' not found." % path) + else: + return resError(Http405, "Method not allowed: $1" % req.reqMethod) + +proc route*(req: Request, LS: LiteStore, resource = "docs", id = ""): Response = + var reqMethod = req.reqMethod + if req.headers.hasKey("X-HTTP-Method-Override"): + reqMethod = req.headers["X-HTTP-Method-Override"] + case reqMethod.toUpper: + of "POST": + if LS.readonly: + return resError(Http405, "Method not allowed: $1" % req.reqMethod) + return validate(req, LS, resource, id, post) + of "PUT": + if LS.readonly: + return resError(Http405, "Method not allowed: $1" % req.reqMethod) + return validate(req, LS, resource, id, put) + of "DELETE": + if LS.readonly: + return resError(Http405, "Method not allowed: $1" % req.reqMethod) + return validate(req, LS, resource, id, delete) + of "HEAD": + return validate(req, LS, resource, id, head) + of "OPTIONS": + return validate(req, LS, resource, id, options) + of "GET": + return validate(req, LS, resource, id, get) + of "PATCH": + if LS.readonly: + return resError(Http405, "Method not allowed: $1" % req.reqMethod) + return validate(req, LS, resource, id, patch) + else: + return resError(Http405, "Method not allowed: $1" % req.reqMethod)
M
lib/server.nim
→
lib/server.nim
@@ -11,7 +11,8 @@ os
import types, utils, - api_v1 + api_v1, + api_v2 proc getReqInfo(req: Request): string = var url = req.url.path@@ -27,22 +28,34 @@ LOG.info("Exiting...")
quit() proc processApiUrl(req: Request, LS: LiteStore, info: ResourceInfo): Response = - if info.version == "v1" and info.resource.match(peg"^docs / info$"): - return api_v1.route(req, LS, info.resource, info.id) - elif info.version == "v1" and info.resource.match(peg"^dir$"): - if LS.directory != nil: - return serveFile(req, LS, info.id) + if info.version == "v2": + if info.resource.match(peg"^docs / info$"): + return api_v2.route(req, LS, info.resource, info.id) + elif info.resource.match(peg"^dir$"): + if LS.directory != nil: + return api_v2.serveFile(req, LS, info.id) + else: + return resError(Http400, "Bad request - Not serving any directory." % info.version) + else: + return resError(Http400, "Bad request - Invalid resource: $1" % info.resource) + elif info.version == "v1": + if info.resource.match(peg"^docs / info$"): + return api_v1.route(req, LS, info.resource, info.id) + elif info.resource.match(peg"^dir$"): + if LS.directory != nil: + return api_v1.serveFile(req, LS, info.id) + else: + return resError(Http400, "Bad request - Not serving any directory." % info.version) else: - return resError(Http400, "Bad request - Not serving any directory." % info.version) + return resError(Http400, "Bad request - Invalid resource: $1" % info.resource) else: - if info.version != "v1": + if info.version == "v1" or info.version == "v2": return resError(Http400, "Bad request - Invalid API version: $1" % info.version) else: if info.resource.decodeURL.strip == "": return resError(Http400, "Bad request - No resource specified." % info.resource) else: return resError(Http400, "Bad request - Invalid resource: $1" % info.resource) - proc process(req: Request, LS: LiteStore): Response {.gcsafe.}= var matches = @["", "", ""]@@ -52,7 +65,7 @@ op
try: var info: ResourceInfo req.route peg"^\/?$": - info.version = "v1" + info.version = "v2" info.resource = "info" return req.processApiUrl(LS, info) req.route peg"^\/favicon.ico$":@@ -61,7 +74,7 @@ result.content = LS.favicon
result.headers = ctHeader("image/x-icon") return result req.route PEG_DEFAULT_URL: - info.version = "v1" + info.version = "v2" info.resource = matches[0] info.id = matches[1] return req.processApiUrl(LS, info)
M
lib/utils.nim
→
lib/utils.nim
@@ -185,6 +185,24 @@ var e = getCurrentException()
LOG.warn(e.msg) LOG.debug(getStackTrace(e)) +proc validate*(req: Request, LS: LiteStore, resource: string, id: string, cb: proc(req: Request, LS: LiteStore, resource: string, id: string):Response): Response = + if req.reqMethod == "POST" or req.reqMethod == "PUT" or req.reqMethod == "PATCH": + var ct = "" + let body = req.body.strip + if body == "": + return resError(Http400, "Bad request: No content specified for document.") + if req.headers.hasKey("Content-Type"): + ct = req.headers["Content-Type"] + case ct: + of "application/json": + try: + discard body.parseJson() + except: + return resError(Http400, "Invalid JSON content - $1" % getCurrentExceptionMsg()) + else: + discard + return cb(req, LS, resource, id) + # Created by Joshua Wilson on 27/05/14. # Copyright (c) 2014 Joshua Wilson. All rights reserved. # https://github.com/neozenith/sqlite-okapi-bm25