You've already forked matrix-js-sdk
mirror of
https://github.com/matrix-org/matrix-js-sdk.git
synced 2025-11-28 05:03:59 +03:00
42be793a56
* Support MatrixClient-specific loggers. Signed-off-by: Patrick Cloke <clokep@patrick.cloke.us> * Use client-specific logger in client.ts. Signed-off-by: Patrick Cloke <clokep@patrick.cloke.us> * Log `fetch` requests to the per-client logger * Use client-specific logger in rust-crypto
346 lines
12 KiB
TypeScript
346 lines
12 KiB
TypeScript
/*
|
|
Copyright 2022 The Matrix.org Foundation C.I.C.
|
|
|
|
Licensed under the Apache License, Version 2.0 (the "License");
|
|
you may not use this file except in compliance with the License.
|
|
You may obtain a copy of the License at
|
|
|
|
http://www.apache.org/licenses/LICENSE-2.0
|
|
|
|
Unless required by applicable law or agreed to in writing, software
|
|
distributed under the License is distributed on an "AS IS" BASIS,
|
|
WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
See the License for the specific language governing permissions and
|
|
limitations under the License.
|
|
*/
|
|
|
|
/**
|
|
* This is an internal module. See {@link MatrixHttpApi} for the public class.
|
|
*/
|
|
|
|
import { checkObjectHasKeys, encodeParams } from "../utils";
|
|
import { TypedEventEmitter } from "../models/typed-event-emitter";
|
|
import { Method } from "./method";
|
|
import { ConnectionError, MatrixError } from "./errors";
|
|
import { HttpApiEvent, HttpApiEventHandlerMap, IHttpOpts, IRequestOpts, Body } from "./interface";
|
|
import { anySignal, parseErrorResponse, timeoutSignal } from "./utils";
|
|
import { QueryDict } from "../utils";
|
|
|
|
interface TypedResponse<T> extends Response {
|
|
json(): Promise<T>;
|
|
}
|
|
|
|
export type ResponseType<T, O extends IHttpOpts> = O extends undefined
|
|
? T
|
|
: O extends { onlyData: true }
|
|
? T
|
|
: TypedResponse<T>;
|
|
|
|
export class FetchHttpApi<O extends IHttpOpts> {
|
|
private abortController = new AbortController();
|
|
|
|
public constructor(
|
|
private eventEmitter: TypedEventEmitter<HttpApiEvent, HttpApiEventHandlerMap>,
|
|
public readonly opts: O,
|
|
) {
|
|
checkObjectHasKeys(opts, ["baseUrl", "prefix"]);
|
|
opts.onlyData = !!opts.onlyData;
|
|
opts.useAuthorizationHeader = opts.useAuthorizationHeader ?? true;
|
|
}
|
|
|
|
public abort(): void {
|
|
this.abortController.abort();
|
|
this.abortController = new AbortController();
|
|
}
|
|
|
|
public fetch(resource: URL | string, options?: RequestInit): ReturnType<typeof global.fetch> {
|
|
if (this.opts.fetchFn) {
|
|
return this.opts.fetchFn(resource, options);
|
|
}
|
|
return global.fetch(resource, options);
|
|
}
|
|
|
|
/**
|
|
* Sets the base URL for the identity server
|
|
* @param url - The new base url
|
|
*/
|
|
public setIdBaseUrl(url?: string): void {
|
|
this.opts.idBaseUrl = url;
|
|
}
|
|
|
|
public idServerRequest<T extends {} = Record<string, unknown>>(
|
|
method: Method,
|
|
path: string,
|
|
params: Record<string, string | string[]> | undefined,
|
|
prefix: string,
|
|
accessToken?: string,
|
|
): Promise<ResponseType<T, O>> {
|
|
if (!this.opts.idBaseUrl) {
|
|
throw new Error("No identity server base URL set");
|
|
}
|
|
|
|
let queryParams: QueryDict | undefined = undefined;
|
|
let body: Record<string, string | string[]> | undefined = undefined;
|
|
if (method === Method.Get) {
|
|
queryParams = params;
|
|
} else {
|
|
body = params;
|
|
}
|
|
|
|
const fullUri = this.getUrl(path, queryParams, prefix, this.opts.idBaseUrl);
|
|
|
|
const opts: IRequestOpts = {
|
|
json: true,
|
|
headers: {},
|
|
};
|
|
if (accessToken) {
|
|
opts.headers!.Authorization = `Bearer ${accessToken}`;
|
|
}
|
|
|
|
return this.requestOtherUrl(method, fullUri, body, opts);
|
|
}
|
|
|
|
/**
|
|
* Perform an authorised request to the homeserver.
|
|
* @param method - The HTTP method e.g. "GET".
|
|
* @param path - The HTTP path <b>after</b> the supplied prefix e.g.
|
|
* "/createRoom".
|
|
*
|
|
* @param queryParams - A dict of query params (these will NOT be
|
|
* urlencoded). If unspecified, there will be no query params.
|
|
*
|
|
* @param body - The HTTP JSON body.
|
|
*
|
|
* @param opts - additional options. If a number is specified,
|
|
* this is treated as `opts.localTimeoutMs`.
|
|
*
|
|
* @returns Promise which resolves to
|
|
* ```
|
|
* {
|
|
* data: {Object},
|
|
* headers: {Object},
|
|
* code: {Number},
|
|
* }
|
|
* ```
|
|
* If `onlyData` is set, this will resolve to the `data` object only.
|
|
* @returns Rejects with an error if a problem occurred.
|
|
* This includes network problems and Matrix-specific error JSON.
|
|
*/
|
|
public authedRequest<T>(
|
|
method: Method,
|
|
path: string,
|
|
queryParams?: QueryDict,
|
|
body?: Body,
|
|
opts: IRequestOpts = {},
|
|
): Promise<ResponseType<T, O>> {
|
|
if (!queryParams) queryParams = {};
|
|
|
|
if (this.opts.accessToken) {
|
|
if (this.opts.useAuthorizationHeader) {
|
|
if (!opts.headers) {
|
|
opts.headers = {};
|
|
}
|
|
if (!opts.headers.Authorization) {
|
|
opts.headers.Authorization = "Bearer " + this.opts.accessToken;
|
|
}
|
|
if (queryParams.access_token) {
|
|
delete queryParams.access_token;
|
|
}
|
|
} else if (!queryParams.access_token) {
|
|
queryParams.access_token = this.opts.accessToken;
|
|
}
|
|
}
|
|
|
|
const requestPromise = this.request<T>(method, path, queryParams, body, opts);
|
|
|
|
requestPromise.catch((err: MatrixError) => {
|
|
if (err.errcode == "M_UNKNOWN_TOKEN" && !opts?.inhibitLogoutEmit) {
|
|
this.eventEmitter.emit(HttpApiEvent.SessionLoggedOut, err);
|
|
} else if (err.errcode == "M_CONSENT_NOT_GIVEN") {
|
|
this.eventEmitter.emit(HttpApiEvent.NoConsent, err.message, err.data.consent_uri);
|
|
}
|
|
});
|
|
|
|
// return the original promise, otherwise tests break due to it having to
|
|
// go around the event loop one more time to process the result of the request
|
|
return requestPromise;
|
|
}
|
|
|
|
/**
|
|
* Perform a request to the homeserver without any credentials.
|
|
* @param method - The HTTP method e.g. "GET".
|
|
* @param path - The HTTP path <b>after</b> the supplied prefix e.g.
|
|
* "/createRoom".
|
|
*
|
|
* @param queryParams - A dict of query params (these will NOT be
|
|
* urlencoded). If unspecified, there will be no query params.
|
|
*
|
|
* @param body - The HTTP JSON body.
|
|
*
|
|
* @param opts - additional options
|
|
*
|
|
* @returns Promise which resolves to
|
|
* ```
|
|
* {
|
|
* data: {Object},
|
|
* headers: {Object},
|
|
* code: {Number},
|
|
* }
|
|
* ```
|
|
* If `onlyData</code> is set, this will resolve to the <code>data`
|
|
* object only.
|
|
* @returns Rejects with an error if a problem
|
|
* occurred. This includes network problems and Matrix-specific error JSON.
|
|
*/
|
|
public request<T>(
|
|
method: Method,
|
|
path: string,
|
|
queryParams?: QueryDict,
|
|
body?: Body,
|
|
opts?: IRequestOpts,
|
|
): Promise<ResponseType<T, O>> {
|
|
const fullUri = this.getUrl(path, queryParams, opts?.prefix, opts?.baseUrl);
|
|
return this.requestOtherUrl<T>(method, fullUri, body, opts);
|
|
}
|
|
|
|
/**
|
|
* Perform a request to an arbitrary URL.
|
|
* @param method - The HTTP method e.g. "GET".
|
|
* @param url - The HTTP URL object.
|
|
*
|
|
* @param body - The HTTP JSON body.
|
|
*
|
|
* @param opts - additional options
|
|
*
|
|
* @returns Promise which resolves to data unless `onlyData` is specified as false,
|
|
* where the resolved value will be a fetch Response object.
|
|
* @returns Rejects with an error if a problem
|
|
* occurred. This includes network problems and Matrix-specific error JSON.
|
|
*/
|
|
public async requestOtherUrl<T>(
|
|
method: Method,
|
|
url: URL | string,
|
|
body?: Body,
|
|
opts: Pick<IRequestOpts, "headers" | "json" | "localTimeoutMs" | "keepAlive" | "abortSignal" | "priority"> = {},
|
|
): Promise<ResponseType<T, O>> {
|
|
const urlForLogs = this.sanitizeUrlForLogs(url);
|
|
this.opts.logger?.debug(`FetchHttpApi: --> ${method} ${urlForLogs}`);
|
|
|
|
const headers = Object.assign({}, opts.headers || {});
|
|
const json = opts.json ?? true;
|
|
// We can't use getPrototypeOf here as objects made in other contexts e.g. over postMessage won't have same ref
|
|
const jsonBody = json && body?.constructor?.name === Object.name;
|
|
|
|
if (json) {
|
|
if (jsonBody && !headers["Content-Type"]) {
|
|
headers["Content-Type"] = "application/json";
|
|
}
|
|
|
|
if (!headers["Accept"]) {
|
|
headers["Accept"] = "application/json";
|
|
}
|
|
}
|
|
|
|
const timeout = opts.localTimeoutMs ?? this.opts.localTimeoutMs;
|
|
const keepAlive = opts.keepAlive ?? false;
|
|
const signals = [this.abortController.signal];
|
|
if (timeout !== undefined) {
|
|
signals.push(timeoutSignal(timeout));
|
|
}
|
|
if (opts.abortSignal) {
|
|
signals.push(opts.abortSignal);
|
|
}
|
|
|
|
let data: BodyInit;
|
|
if (jsonBody) {
|
|
data = JSON.stringify(body);
|
|
} else {
|
|
data = body as BodyInit;
|
|
}
|
|
|
|
const { signal, cleanup } = anySignal(signals);
|
|
|
|
let res: Response;
|
|
const start = Date.now();
|
|
try {
|
|
res = await this.fetch(url, {
|
|
signal,
|
|
method,
|
|
body: data,
|
|
headers,
|
|
mode: "cors",
|
|
redirect: "follow",
|
|
referrer: "",
|
|
referrerPolicy: "no-referrer",
|
|
cache: "no-cache",
|
|
credentials: "omit", // we send credentials via headers
|
|
keepalive: keepAlive,
|
|
priority: opts.priority,
|
|
});
|
|
|
|
this.opts.logger?.debug(
|
|
`FetchHttpApi: <-- ${method} ${urlForLogs} [${Date.now() - start}ms ${res.status}]`,
|
|
);
|
|
} catch (e) {
|
|
this.opts.logger?.debug(`FetchHttpApi: <-- ${method} ${urlForLogs} [${Date.now() - start}ms ${e}]`);
|
|
if ((<Error>e).name === "AbortError") {
|
|
throw e;
|
|
}
|
|
throw new ConnectionError("fetch failed", <Error>e);
|
|
} finally {
|
|
cleanup();
|
|
}
|
|
|
|
if (!res.ok) {
|
|
throw parseErrorResponse(res, await res.text());
|
|
}
|
|
|
|
if (this.opts.onlyData) {
|
|
return json ? res.json() : res.text();
|
|
}
|
|
return res as ResponseType<T, O>;
|
|
}
|
|
|
|
private sanitizeUrlForLogs(url: URL | string): string {
|
|
try {
|
|
let asUrl: URL;
|
|
if (typeof url === "string") {
|
|
asUrl = new URL(url);
|
|
} else {
|
|
asUrl = url;
|
|
}
|
|
// Remove the values of any URL params that could contain potential secrets
|
|
const sanitizedQs = new URLSearchParams();
|
|
for (const key of asUrl.searchParams.keys()) {
|
|
sanitizedQs.append(key, "xxx");
|
|
}
|
|
const sanitizedQsString = sanitizedQs.toString();
|
|
const sanitizedQsUrlPiece = sanitizedQsString ? `?${sanitizedQsString}` : "";
|
|
|
|
return asUrl.origin + asUrl.pathname + sanitizedQsUrlPiece;
|
|
} catch (error) {
|
|
// defensive coding for malformed url
|
|
return "??";
|
|
}
|
|
}
|
|
/**
|
|
* Form and return a homeserver request URL based on the given path params and prefix.
|
|
* @param path - The HTTP path <b>after</b> the supplied prefix e.g. "/createRoom".
|
|
* @param queryParams - A dict of query params (these will NOT be urlencoded).
|
|
* @param prefix - The full prefix to use e.g. "/_matrix/client/v2_alpha", defaulting to this.opts.prefix.
|
|
* @param baseUrl - The baseUrl to use e.g. "https://matrix.org", defaulting to this.opts.baseUrl.
|
|
* @returns URL
|
|
*/
|
|
public getUrl(path: string, queryParams?: QueryDict, prefix?: string, baseUrl?: string): URL {
|
|
const baseUrlWithFallback = baseUrl ?? this.opts.baseUrl;
|
|
const baseUrlWithoutTrailingSlash = baseUrlWithFallback.endsWith("/")
|
|
? baseUrlWithFallback.slice(0, -1)
|
|
: baseUrlWithFallback;
|
|
const url = new URL(baseUrlWithoutTrailingSlash + (prefix ?? this.opts.prefix) + path);
|
|
if (queryParams) {
|
|
encodeParams(queryParams, url.searchParams);
|
|
}
|
|
return url;
|
|
}
|
|
}
|