bitcore-wallet-service/lib/expressapp.js

'use strict';

var _ = require('lodash');
var async = require('async');
var log = require('npmlog');
var express = require('express');
var querystring = require('querystring');
var bodyParser = require('body-parser')

var WalletService = require('./server');

log.debug = log.verbose;
log.level = 'debug';

var ExpressApp = function() {};

ExpressApp.start = function(opts) {
  opts = opts || {};


  WalletService.initialize(opts.WalletService);
  var app = express();
  app.use(function(req, res, next) {
    res.setHeader('Access-Control-Allow-Origin', '*');
    res.setHeader('Access-Control-Allow-Methods', 'GET, POST, OPTIONS, PUT, DELETE');
    res.setHeader('Access-Control-Allow-Headers', 'X-Requested-With,Content-Type,Authorization');
    next();
  });
  var allowCORS = function(req, res, next) {
    if ('OPTIONS' == req.method) {
      res.send(200);
      res.end();
      return;
    }
    next();
  }
  app.use(allowCORS);

  var POST_LIMIT = 1024 * 100 /* Max POST 100 kb */ ;

  app.use(bodyParser.json({
    limit: POST_LIMIT
  }));

  app.use(require('morgan')('dev'));


  var router = express.Router();

  function returnError(err, res, req) {
    if (err instanceof WalletService.ClientError) {

      var status = (err.code == 'NOTAUTHORIZED') ? 401 : 400;
      log.error('Err: ' + status + ':' + req.url + ' :' + err.code + ':' + err.message);
      res.status(status).json({
        code: err.code,
        error: err.message,
      }).end();
    } else {
      var code, message;
      if (_.isObject(err)) {
        code = err.code;
        message = err.message;
      }
      var m = message || err.toString();

      log.error('Error: ' + req.url + ' :' + code + ':' + m);
      res.status(code || 500).json({
        error: m,
      }).end();
    }
  };

  function getCredentials(req) {
    var identity = req.header('x-identity');
    if (!identity) return;

    return {
      copayerId: identity,
      signature: req.header('x-signature'),
    };
  };

  function getServerWithAuth(req, res, cb) {
    var credentials = getCredentials(req);
    if (!credentials)
      return returnError(new WalletService.ClientError({
        code: 'NOTAUTHORIZED'
      }), res, req);

    var auth = {
      copayerId: credentials.copayerId,
      message: req.method.toLowerCase() + '|' + req.url + '|' + JSON.stringify(req.body),
      signature: credentials.signature,
    };
    WalletService.getInstanceWithAuth(auth, function(err, server) {
      if (err) return returnError(err, res, req);
      return cb(server);
    });
  };

  router.post('/v1/wallets/', function(req, res) {
    var server = WalletService.getInstance();
    server.createWallet(req.body, function(err, walletId) {
      if (err) return returnError(err, res, req);

      res.json({
        walletId: walletId,
      });
    });
  });

  router.post('/v1/wallets/:id/copayers/', function(req, res) {
    req.body.walletId = req.params['id'];
    var server = WalletService.getInstance();
    server.joinWallet(req.body, function(err, result) {
      if (err) return returnError(err, res, req);

      res.json(result);
    });
  });

  router.get('/v1/wallets/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      var result = {};
      async.parallel([

        function(next) {
          server.getWallet({}, function(err, wallet) {
            if (err) return next(err);
            result.wallet = wallet;
            next();
          });
        },
        function(next) {
          server.getBalance({}, function(err, balance) {
            if (err) return next(err);
            result.balance = balance;
            next();
          });
        },
        function(next) {
          server.getPendingTxs({}, function(err, pendingTxps) {
            if (err) return next(err);
            result.pendingTxps = pendingTxps;
            next();
          });
        },
      ], function(err) {
        if (err) return returnError(err, res, req);
        res.json(result);
      });
    });
  });


  router.get('/v1/txproposals/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      server.getPendingTxs({}, function(err, pendings) {
        if (err) return returnError(err, res, req);
        res.json(pendings);
      });
    });
  });


  router.post('/v1/txproposals/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      server.createTx(req.body, function(err, txp) {
        if (err) return returnError(err, res, req);
        res.json(txp);
      });
    });
  });


  router.post('/v1/addresses/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      server.createAddress(req.body, function(err, address) {
        if (err) return returnError(err, res, req);
        res.json(address);
      });
    });
  });

  router.get('/v1/addresses/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      server.getAddresses({}, function(err, addresses) {
        if (err) return returnError(err, res, req);
        res.json(addresses);
      });
    });
  });

  router.get('/v1/balance/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      server.getBalance({}, function(err, balance) {
        if (err) return returnError(err, res, req);
        res.json(balance);
      });
    });
  });

  router.post('/v1/txproposals/:id/signatures/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      req.body.txProposalId = req.params['id'];
      server.signTx(req.body, function(err, txp) {
        if (err) return returnError(err, res, req);
        res.json(txp);
        res.end();
      });
    });
  });

  // TODO Check HTTP verb and URL name
  router.post('/v1/txproposals/:id/broadcast/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      req.body.txProposalId = req.params['id'];
      server.broadcastTx(req.body, function(err, txp) {
        if (err) return returnError(err, res, req);
        res.json(txp);
        res.end();
      });
    });
  });

  router.post('/v1/txproposals/:id/rejections', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      req.body.txProposalId = req.params['id'];
      server.rejectTx(req.body, function(err, txp) {
        if (err) return returnError(err, res, req);
        res.json(txp);
        res.end();
      });
    });
  });

  router.delete('/v1/txproposals/:id/', function(req, res) {
    getServerWithAuth(req, res, function(server) {
      req.body.txProposalId = req.params['id'];
      server.removePendingTx(req.body, function(err) {
        if (err) return returnError(err, res, req);
        res.end();
      });
    });
  });

  // TODO: DEBUG only!
  router.get('/v1/dump', function(req, res) {
    var server = WalletService.getInstance();
    server.storage._dump(function() {
      res.end();
    });
  });
  app.use(opts.base_path || '/copay/api', router);
  return app;
};

module.exports = ExpressApp;
WIP, supertest testing 2015-02-19 06:00:14 -08:00			`'use strict';`

			`var _ = require('lodash');`
			`var async = require('async');`
			`var log = require('npmlog');`
			`var express = require('express');`
			`var querystring = require('querystring');`
			`var bodyParser = require('body-parser')`

rm CopayServer 2015-02-20 12:32:19 -08:00			`var WalletService = require('./server');`
WIP, supertest testing 2015-02-19 06:00:14 -08:00
			`log.debug = log.verbose;`
			`log.level = 'debug';`

			`var ExpressApp = function() {};`

			`ExpressApp.start = function(opts) {`
			`opts = opts \|\| {};`


rm CopayServer 2015-02-20 12:32:19 -08:00			`WalletService.initialize(opts.WalletService);`
WIP, supertest testing 2015-02-19 06:00:14 -08:00			`var app = express();`
			`app.use(function(req, res, next) {`
			`res.setHeader('Access-Control-Allow-Origin', '*');`
			`res.setHeader('Access-Control-Allow-Methods', 'GET, POST, OPTIONS, PUT, DELETE');`
			`res.setHeader('Access-Control-Allow-Headers', 'X-Requested-With,Content-Type,Authorization');`
			`next();`
			`});`
			`var allowCORS = function(req, res, next) {`
			`if ('OPTIONS' == req.method) {`
			`res.send(200);`
			`res.end();`
			`return;`
			`}`
			`next();`
			`}`
			`app.use(allowCORS);`

			`var POST_LIMIT = 1024 * 100 /* Max POST 100 kb */ ;`

			`app.use(bodyParser.json({`
			`limit: POST_LIMIT`
			`}));`

			`app.use(require('morgan')('dev'));`


			`var router = express.Router();`

			`function returnError(err, res, req) {`
rm CopayServer 2015-02-20 12:32:19 -08:00			`if (err instanceof WalletService.ClientError) {`
WIP, supertest testing 2015-02-19 06:00:14 -08:00
			`var status = (err.code == 'NOTAUTHORIZED') ? 401 : 400;`
			`log.error('Err: ' + status + ':' + req.url + ' :' + err.code + ':' + err.message);`
			`res.status(status).json({`
			`code: err.code,`
			`error: err.message,`
			`}).end();`
			`} else {`
			`var code, message;`
			`if (_.isObject(err)) {`
			`code = err.code;`
			`message = err.message;`
			`}`
			`var m = message \|\| err.toString();`

			`log.error('Error: ' + req.url + ' :' + code + ':' + m);`
			`res.status(code \|\| 500).json({`
			`error: m,`
			`}).end();`
			`}`
			`};`

			`function getCredentials(req) {`
			`var identity = req.header('x-identity');`
			`if (!identity) return;`

			`return {`
			`copayerId: identity,`
			`signature: req.header('x-signature'),`
			`};`
			`};`

			`function getServerWithAuth(req, res, cb) {`
			`var credentials = getCredentials(req);`
api tests working 2015-02-19 07:32:10 -08:00			`if (!credentials)`
rm CopayServer 2015-02-20 12:32:19 -08:00			`return returnError(new WalletService.ClientError({`
api tests working 2015-02-19 07:32:10 -08:00			`code: 'NOTAUTHORIZED'`
			`}), res, req);`

WIP, supertest testing 2015-02-19 06:00:14 -08:00			`var auth = {`
			`copayerId: credentials.copayerId,`
			`message: req.method.toLowerCase() + '\|' + req.url + '\|' + JSON.stringify(req.body),`
			`signature: credentials.signature,`
			`};`
rm CopayServer 2015-02-20 12:32:19 -08:00			`WalletService.getInstanceWithAuth(auth, function(err, server) {`
WIP, supertest testing 2015-02-19 06:00:14 -08:00			`if (err) return returnError(err, res, req);`
			`return cb(server);`
			`});`
			`};`

			`router.post('/v1/wallets/', function(req, res) {`
rm CopayServer 2015-02-20 12:32:19 -08:00			`var server = WalletService.getInstance();`
WIP, supertest testing 2015-02-19 06:00:14 -08:00			`server.createWallet(req.body, function(err, walletId) {`
			`if (err) return returnError(err, res, req);`

			`res.json({`
			`walletId: walletId,`
			`});`
			`});`
			`});`

			`router.post('/v1/wallets/:id/copayers/', function(req, res) {`
			`req.body.walletId = req.params['id'];`
rm CopayServer 2015-02-20 12:32:19 -08:00			`var server = WalletService.getInstance();`
WIP, supertest testing 2015-02-19 06:00:14 -08:00			`server.joinWallet(req.body, function(err, result) {`
			`if (err) return returnError(err, res, req);`

			`res.json(result);`
			`});`
			`});`

			`router.get('/v1/wallets/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`var result = {};`
			`async.parallel([`

			`function(next) {`
			`server.getWallet({}, function(err, wallet) {`
			`if (err) return next(err);`
			`result.wallet = wallet;`
			`next();`
			`});`
			`},`
			`function(next) {`
			`server.getBalance({}, function(err, balance) {`
			`if (err) return next(err);`
			`result.balance = balance;`
			`next();`
			`});`
			`},`
			`function(next) {`
			`server.getPendingTxs({}, function(err, pendingTxps) {`
			`if (err) return next(err);`
			`result.pendingTxps = pendingTxps;`
			`next();`
			`});`
			`},`
			`], function(err) {`
			`if (err) return returnError(err, res, req);`
			`res.json(result);`
			`});`
			`});`
			`});`


			`router.get('/v1/txproposals/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`server.getPendingTxs({}, function(err, pendings) {`
			`if (err) return returnError(err, res, req);`
			`res.json(pendings);`
			`});`
			`});`
			`});`


			`router.post('/v1/txproposals/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`server.createTx(req.body, function(err, txp) {`
			`if (err) return returnError(err, res, req);`
			`res.json(txp);`
			`});`
			`});`
			`});`


			`router.post('/v1/addresses/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`server.createAddress(req.body, function(err, address) {`
			`if (err) return returnError(err, res, req);`
			`res.json(address);`
			`});`
			`});`
			`});`

			`router.get('/v1/addresses/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`server.getAddresses({}, function(err, addresses) {`
			`if (err) return returnError(err, res, req);`
			`res.json(addresses);`
			`});`
			`});`
			`});`

			`router.get('/v1/balance/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`server.getBalance({}, function(err, balance) {`
			`if (err) return returnError(err, res, req);`
			`res.json(balance);`
			`});`
			`});`
			`});`

			`router.post('/v1/txproposals/:id/signatures/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`req.body.txProposalId = req.params['id'];`
			`server.signTx(req.body, function(err, txp) {`
			`if (err) return returnError(err, res, req);`
			`res.json(txp);`
			`res.end();`
			`});`
			`});`
			`});`

			`// TODO Check HTTP verb and URL name`
			`router.post('/v1/txproposals/:id/broadcast/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`req.body.txProposalId = req.params['id'];`
			`server.broadcastTx(req.body, function(err, txp) {`
			`if (err) return returnError(err, res, req);`
			`res.json(txp);`
			`res.end();`
			`});`
			`});`
			`});`

			`router.post('/v1/txproposals/:id/rejections', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`req.body.txProposalId = req.params['id'];`
			`server.rejectTx(req.body, function(err, txp) {`
			`if (err) return returnError(err, res, req);`
			`res.json(txp);`
			`res.end();`
			`});`
			`});`
			`});`

			`router.delete('/v1/txproposals/:id/', function(req, res) {`
			`getServerWithAuth(req, res, function(server) {`
			`req.body.txProposalId = req.params['id'];`
			`server.removePendingTx(req.body, function(err) {`
			`if (err) return returnError(err, res, req);`
			`res.end();`
			`});`
			`});`
			`});`

			`// TODO: DEBUG only!`
			`router.get('/v1/dump', function(req, res) {`
rm CopayServer 2015-02-20 12:32:19 -08:00			`var server = WalletService.getInstance();`
WIP, supertest testing 2015-02-19 06:00:14 -08:00			`server.storage._dump(function() {`
			`res.end();`
			`});`
			`});`
			`app.use(opts.base_path \|\| '/copay/api', router);`
			`return app;`
			`};`

			`module.exports = ExpressApp;`