mirror of https://github.com/Squidex/squidex.git
You can not select more than 25 topics
Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
303 lines
11 KiB
303 lines
11 KiB
// ==========================================================================
|
|
// Squidex Headless CMS
|
|
// ==========================================================================
|
|
// Copyright (c) Squidex UG (haftungsbeschränkt)
|
|
// All rights reserved. Licensed under the MIT license.
|
|
// ==========================================================================
|
|
|
|
using System;
|
|
using System.Collections.Generic;
|
|
using System.IO;
|
|
using System.Linq;
|
|
using System.Threading.Tasks;
|
|
using Microsoft.AspNetCore.Authorization;
|
|
using Microsoft.AspNetCore.Http;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.Net.Http.Headers;
|
|
using NSwag.Annotations;
|
|
using Squidex.Areas.Api.Controllers.Apps.Models;
|
|
using Squidex.Domain.Apps.Core.Apps;
|
|
using Squidex.Domain.Apps.Entities;
|
|
using Squidex.Domain.Apps.Entities.Apps;
|
|
using Squidex.Domain.Apps.Entities.Apps.Commands;
|
|
using Squidex.Domain.Apps.Entities.Apps.Services;
|
|
using Squidex.Infrastructure.Assets;
|
|
using Squidex.Infrastructure.Commands;
|
|
using Squidex.Infrastructure.Log;
|
|
using Squidex.Infrastructure.Security;
|
|
using Squidex.Infrastructure.Validation;
|
|
using Squidex.Shared;
|
|
using Squidex.Web;
|
|
|
|
namespace Squidex.Areas.Api.Controllers.Apps
|
|
{
|
|
/// <summary>
|
|
/// Manages and configures apps.
|
|
/// </summary>
|
|
[ApiExplorerSettings(GroupName = nameof(Apps))]
|
|
public sealed class AppsController : ApiController
|
|
{
|
|
private readonly IAssetStore assetStore;
|
|
private readonly IAssetThumbnailGenerator assetThumbnailGenerator;
|
|
private readonly IAppProvider appProvider;
|
|
private readonly IAppPlansProvider appPlansProvider;
|
|
|
|
public AppsController(ICommandBus commandBus,
|
|
IAssetStore assetStore,
|
|
IAssetThumbnailGenerator assetThumbnailGenerator,
|
|
IAppProvider appProvider,
|
|
IAppPlansProvider appPlansProvider)
|
|
: base(commandBus)
|
|
{
|
|
this.assetStore = assetStore;
|
|
this.assetThumbnailGenerator = assetThumbnailGenerator;
|
|
this.appProvider = appProvider;
|
|
this.appPlansProvider = appPlansProvider;
|
|
}
|
|
|
|
/// <summary>
|
|
/// Get your apps.
|
|
/// </summary>
|
|
/// <returns>
|
|
/// 200 => Apps returned.
|
|
/// </returns>
|
|
/// <remarks>
|
|
/// You can only retrieve the list of apps when you are authenticated as a user (OpenID implicit flow).
|
|
/// You will retrieve all apps, where you are assigned as a contributor.
|
|
/// </remarks>
|
|
[HttpGet]
|
|
[Route("apps/")]
|
|
[ProducesResponseType(typeof(AppDto[]), 200)]
|
|
[ApiPermission]
|
|
[ApiCosts(0)]
|
|
public async Task<IActionResult> GetApps()
|
|
{
|
|
var userOrClientId = HttpContext.User.UserOrClientId();
|
|
var userPermissions = HttpContext.Permissions();
|
|
|
|
var apps = await appProvider.GetUserAppsAsync(userOrClientId, userPermissions);
|
|
|
|
var response = Deferred.Response(() =>
|
|
{
|
|
return apps.OrderBy(x => x.Name).Select(a => AppDto.FromApp(a, userOrClientId, userPermissions, appPlansProvider, this)).ToArray();
|
|
});
|
|
|
|
Response.Headers[HeaderNames.ETag] = apps.ToEtag();
|
|
|
|
return Ok(response);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Create a new app.
|
|
/// </summary>
|
|
/// <param name="request">The app object that needs to be added to squidex.</param>
|
|
/// <returns>
|
|
/// 201 => App created.
|
|
/// 400 => App request not valid.
|
|
/// 409 => App name is already in use.
|
|
/// </returns>
|
|
/// <remarks>
|
|
/// You can only create an app when you are authenticated as a user (OpenID implicit flow).
|
|
/// You will be assigned as owner of the new app automatically.
|
|
/// </remarks>
|
|
[HttpPost]
|
|
[Route("apps/")]
|
|
[ProducesResponseType(typeof(AppDto), 201)]
|
|
[ApiPermission]
|
|
[ApiCosts(0)]
|
|
public async Task<IActionResult> PostApp([FromBody] CreateAppDto request)
|
|
{
|
|
var response = await InvokeCommandAsync(request.ToCommand());
|
|
|
|
return CreatedAtAction(nameof(GetApps), response);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Update the app.
|
|
/// </summary>
|
|
/// <param name="app">The name of the app to update.</param>
|
|
/// <param name="request">The values to update.</param>
|
|
/// <returns>
|
|
/// 200 => App updated.
|
|
/// 404 => App not found.
|
|
/// </returns>
|
|
[HttpPut]
|
|
[Route("apps/{app}/")]
|
|
[ProducesResponseType(typeof(AppDto), 200)]
|
|
[ApiPermission(Permissions.AppUpdateGeneral)]
|
|
[ApiCosts(0)]
|
|
public async Task<IActionResult> UpdateApp(string app, [FromBody] UpdateAppDto request)
|
|
{
|
|
var response = await InvokeCommandAsync(request.ToCommand());
|
|
|
|
return Ok(response);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Get the app image.
|
|
/// </summary>
|
|
/// <param name="app">The name of the app to update.</param>
|
|
/// <param name="file">The file to upload.</param>
|
|
/// <returns>
|
|
/// 200 => App image uploaded.
|
|
/// 404 => App not found.
|
|
/// </returns>
|
|
[HttpPost]
|
|
[Route("apps/{app}/image")]
|
|
[ProducesResponseType(typeof(AppDto), 201)]
|
|
[ApiPermission(Permissions.AppUpdateImage)]
|
|
[ApiCosts(0)]
|
|
public async Task<IActionResult> UploadImage(string app, [OpenApiIgnore] List<IFormFile> file)
|
|
{
|
|
var response = await InvokeCommandAsync(CreateCommand(file));
|
|
|
|
return Ok(response);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Get the app image.
|
|
/// </summary>
|
|
/// <param name="app">The name of the app.</param>
|
|
/// <returns>
|
|
/// 200 => App image found and content or (resized) image returned.
|
|
/// 404 => App not found.
|
|
/// </returns>
|
|
[HttpGet]
|
|
[Route("apps/{app}/image")]
|
|
[ProducesResponseType(typeof(FileResult), 200)]
|
|
[AllowAnonymous]
|
|
[ApiCosts(0)]
|
|
public IActionResult GetImage(string app)
|
|
{
|
|
if (App.Image == null)
|
|
{
|
|
return NotFound();
|
|
}
|
|
|
|
var etag = App.Image.Etag;
|
|
|
|
Response.Headers[HeaderNames.ETag] = etag;
|
|
|
|
var handler = new Func<Stream, Task>(async bodyStream =>
|
|
{
|
|
var assetId = App.Id.ToString();
|
|
var assetResizedId = $"{assetId}_{etag}_Resized";
|
|
|
|
try
|
|
{
|
|
await assetStore.DownloadAsync(assetResizedId, bodyStream);
|
|
}
|
|
catch (AssetNotFoundException)
|
|
{
|
|
using (Profiler.Trace("Resize"))
|
|
{
|
|
using (var sourceStream = GetTempStream())
|
|
{
|
|
using (var destinationStream = GetTempStream())
|
|
{
|
|
using (Profiler.Trace("ResizeDownload"))
|
|
{
|
|
await assetStore.DownloadAsync(assetId, sourceStream);
|
|
sourceStream.Position = 0;
|
|
}
|
|
|
|
using (Profiler.Trace("ResizeImage"))
|
|
{
|
|
await assetThumbnailGenerator.CreateThumbnailAsync(sourceStream, destinationStream, 150, 150, "Crop");
|
|
destinationStream.Position = 0;
|
|
}
|
|
|
|
using (Profiler.Trace("ResizeUpload"))
|
|
{
|
|
await assetStore.UploadAsync(assetResizedId, destinationStream);
|
|
destinationStream.Position = 0;
|
|
}
|
|
|
|
await destinationStream.CopyToAsync(bodyStream);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
});
|
|
|
|
return new FileCallbackResult(App.Image.MimeType, null, true, handler);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Remove the app image.
|
|
/// </summary>
|
|
/// <param name="app">The name of the app to update.</param>
|
|
/// <returns>
|
|
/// 200 => App image removed.
|
|
/// 404 => App not found.
|
|
/// </returns>
|
|
[HttpDelete]
|
|
[Route("apps/{app}/image")]
|
|
[ProducesResponseType(typeof(AppDto), 201)]
|
|
[ApiPermission(Permissions.AppUpdate)]
|
|
[ApiCosts(0)]
|
|
public async Task<IActionResult> DeleteImage(string app)
|
|
{
|
|
var response = await InvokeCommandAsync(new RemoveAppImage());
|
|
|
|
return Ok(response);
|
|
}
|
|
|
|
/// <summary>
|
|
/// Archive the app.
|
|
/// </summary>
|
|
/// <param name="app">The name of the app to archive.</param>
|
|
/// <returns>
|
|
/// 204 => App archived.
|
|
/// 404 => App not found.
|
|
/// </returns>
|
|
[HttpDelete]
|
|
[Route("apps/{app}/")]
|
|
[ApiPermission(Permissions.AppDelete)]
|
|
[ApiCosts(0)]
|
|
public async Task<IActionResult> DeleteApp(string app)
|
|
{
|
|
await CommandBus.PublishAsync(new ArchiveApp());
|
|
|
|
return NoContent();
|
|
}
|
|
|
|
private async Task<AppDto> InvokeCommandAsync(ICommand command)
|
|
{
|
|
var context = await CommandBus.PublishAsync(command);
|
|
|
|
var userOrClientId = HttpContext.User.UserOrClientId();
|
|
var userPermissions = HttpContext.Permissions();
|
|
|
|
var result = context.Result<IAppEntity>();
|
|
var response = AppDto.FromApp(result, userOrClientId, userPermissions, appPlansProvider, this);
|
|
|
|
return response;
|
|
}
|
|
|
|
private static UploadAppImage CreateCommand(IReadOnlyList<IFormFile> file)
|
|
{
|
|
if (file.Count != 1)
|
|
{
|
|
var error = new ValidationError($"Can only upload one file, found {file.Count} files.");
|
|
|
|
throw new ValidationException("Cannot create asset.", error);
|
|
}
|
|
|
|
return new UploadAppImage { File = file[0].OpenReadStream, Image = new AppImage(file[0].ContentType) };
|
|
}
|
|
|
|
private static FileStream GetTempStream()
|
|
{
|
|
var tempFileName = Path.GetTempFileName();
|
|
|
|
return new FileStream(tempFileName,
|
|
FileMode.Create,
|
|
FileAccess.ReadWrite,
|
|
FileShare.Delete, 1024 * 16,
|
|
FileOptions.Asynchronous |
|
|
FileOptions.DeleteOnClose |
|
|
FileOptions.SequentialScan);
|
|
}
|
|
}
|
|
}
|
|
|