import axios, { AxiosInstance, AxiosRequestConfig, AxiosResponse } from 'axios' import { CsrfToken, JobExecutionError } from '..' import { isAuthorizeFormRequired } from '../auth' import { LoginRequiredError } from '../types' import { AuthorizeError } from '../types/AuthorizeError' import { NotFoundError } from '../types/NotFoundError' export interface HttpClient { get( url: string, accessToken: string | undefined, contentType: string, overrideHeaders: { [key: string]: string | number } ): Promise<{ result: T; etag: string }> post( url: string, data: any, accessToken: string | undefined, contentType: string, overrideHeaders: { [key: string]: string | number } ): Promise<{ result: T; etag: string }> put( url: string, data: any, accessToken: string | undefined, overrideHeaders: { [key: string]: string | number } ): Promise<{ result: T; etag: string }> delete( url: string, accessToken: string | undefined ): Promise<{ result: T; etag: string }> getCsrfToken(type: 'general' | 'file'): CsrfToken | undefined clearCsrfTokens(): void } export class RequestClient implements HttpClient { private csrfToken: CsrfToken = { headerName: '', value: '' } private fileUploadCsrfToken: CsrfToken | undefined private httpClient: AxiosInstance constructor(baseUrl: string) { this.httpClient = axios.create({ baseURL: baseUrl }) } public getCsrfToken(type: 'general' | 'file' = 'general') { return type === 'file' ? this.fileUploadCsrfToken : this.csrfToken } public clearCsrfTokens() { this.csrfToken = { headerName: '', value: '' } this.fileUploadCsrfToken = { headerName: '', value: '' } } public async get( url: string, accessToken: string | undefined, contentType: string = 'application/json', overrideHeaders: { [key: string]: string | number } = {} ): Promise<{ result: T; etag: string }> { const headers = { ...this.getHeaders(accessToken, contentType), ...overrideHeaders } const requestConfig: AxiosRequestConfig = { headers, responseType: contentType === 'text/plain' ? 'text' : 'json', withCredentials: true } if (contentType === 'text/plain') { requestConfig.transformResponse = undefined } return this.httpClient .get(url, requestConfig) .then((response) => { throwIfError(response) const etag = response?.headers ? response.headers['etag'] : '' return { result: response.data as T, etag } }) .catch(async (e) => { const response = e.response as AxiosResponse if (e instanceof AuthorizeError) { const res = await this.get(e.confirmUrl, undefined, 'text/plain') if (isAuthorizeFormRequired(res.result as string)) { await this.authorize(res.result as string) } return this.get(url, accessToken, contentType, overrideHeaders) } if (response?.status === 403 || response?.status === 449) { this.parseAndSetCsrfToken(response) if (this.csrfToken.headerName && this.csrfToken.value) { return this.get(url, accessToken, contentType, overrideHeaders) } throw e } else if (response?.status === 404) { throw new NotFoundError(url) } throw e }) } public post( url: string, data: any, accessToken: string | undefined, contentType = 'application/json', overrideHeaders: { [key: string]: string | number } = {} ): Promise<{ result: T; etag: string }> { const headers = { ...this.getHeaders(accessToken, contentType, url.endsWith('login.do')), ...overrideHeaders } return this.httpClient .post(url, data, { headers, withCredentials: true }) .then((response) => { throwIfError(response) const etag = response?.headers ? response.headers['etag'] : '' return { result: response.data as T, etag } }) .catch(async (e) => { const response = e.response as AxiosResponse if (e instanceof AuthorizeError) { const res = await this.get(e.confirmUrl, undefined, 'text/plain') if (isAuthorizeFormRequired(res.result as string)) { await this.authorize(res.result as string) } return this.post( url, data, accessToken, contentType, overrideHeaders ) } if (e instanceof LoginRequiredError && this.csrfToken) { this.csrfToken.value = '' } if (response?.status === 403 || response?.status === 449) { this.parseAndSetCsrfToken(response) if (this.csrfToken.headerName && this.csrfToken.value) { return this.post(url, data, accessToken) } throw e } throw e }) } public async put( url: string, data: any, accessToken: string | undefined, overrideHeaders: { [key: string]: string | number } = {} ): Promise<{ result: T; etag: string }> { const headers = { ...this.getHeaders(accessToken, 'application/json'), ...overrideHeaders } try { const response = await this.httpClient.put(url, data, { headers, withCredentials: true }) const etag = response?.headers ? response.headers['etag'] : '' return { result: response.data as T, etag } } catch (e) { const response = e.response as AxiosResponse if (response?.status === 403 || response?.status === 449) { this.parseAndSetCsrfToken(response) if (this.csrfToken.headerName && this.csrfToken.value) { return this.put(url, data, accessToken) } throw e } if (response?.status === 401) { throw new LoginRequiredError() } throw e } } public async delete( url: string, accessToken?: string ): Promise<{ result: T; etag: string }> { const headers = this.getHeaders(accessToken, 'application/json') const requestConfig: AxiosRequestConfig = { headers } try { const response = await this.httpClient.delete(url, requestConfig) const etag = response?.headers ? response.headers['etag'] : '' return { result: response.data as T, etag } } catch (e) { const response = e.response as AxiosResponse if (response?.status === 403 || response?.status === 449) { this.parseAndSetCsrfToken(response) if (this.csrfToken.headerName && this.csrfToken.value) { return this.delete(url, accessToken) } throw e } throw e } } public async patch( url: string, data: any = {}, accessToken?: string ): Promise<{ result: T; etag: string }> { const headers = this.getHeaders(accessToken, 'application/json') try { const response = await this.httpClient.patch(url, data, { headers, withCredentials: true }) return { result: response.data as T, etag: response.headers['etag'] as string } } catch (e) { const response = e.response as AxiosResponse if (response?.status === 403 || response?.status === 449) { this.parseAndSetCsrfToken(response) if (this.csrfToken.headerName && this.csrfToken.value) { return this.patch(url, accessToken) } throw e } throw e } } public async uploadFile( url: string, content: string, accessToken?: string ): Promise { const headers = this.getHeaders(accessToken, 'application/json') if (this.fileUploadCsrfToken?.value) { headers[ this.fileUploadCsrfToken.headerName ] = this.fileUploadCsrfToken.value } try { const response = await this.httpClient.post(url, content, { headers }) return { result: response.data, etag: response.headers['etag'] as string } } catch (e) { const response = e.response as AxiosResponse if (response?.status === 403 || response?.status === 449) { this.parseAndSetFileUploadCsrfToken(response) if (this.fileUploadCsrfToken) { return this.uploadFile(url, content, accessToken) } throw e } throw e } } public authorize = async (response: string) => { let authUrl: string | null = null const params: any = {} const responseBody = response.split('')[1].split('')[0] const bodyElement = document.createElement('div') bodyElement.innerHTML = responseBody const form = bodyElement.querySelector('#application_authorization') authUrl = form ? this.httpClient.defaults.baseURL! + form.getAttribute('action') : null const inputs: any = form?.querySelectorAll('input') for (const input of inputs) { if (input.name === 'user_oauth_approval') { input.value = 'true' } params[input.name] = input.value } const csrfTokenKey = Object.keys(params).find((k) => k?.toLowerCase().includes('csrf') ) if (csrfTokenKey) { this.csrfToken.value = params[csrfTokenKey] this.csrfToken.headerName = this.csrfToken.headerName || 'x-csrf-token' } const formData = new FormData() for (const key in params) { if (params.hasOwnProperty(key)) { formData.append(key, params[key]) } } if (!authUrl) { throw new Error('Auth Form URL is null or undefined.') } return await this.httpClient .post(authUrl, formData, { responseType: 'text', headers: { Accept: '*/*', 'Content-Type': 'text/plain' } }) .then((res) => res.data) .catch((error) => { console.log(error) }) } private getHeaders = ( accessToken: string | undefined, contentType: string, appendCsrfToken = true ) => { const headers: any = { 'Content-Type': contentType } if (contentType === 'text/plain') { headers.Accept = '*/*' } else { headers.Accept = 'application/json' } if (accessToken) { headers.Authorization = `Bearer ${accessToken}` } if (this.csrfToken.headerName && this.csrfToken.value) { headers[this.csrfToken.headerName] = this.csrfToken.value } return headers } private parseAndSetFileUploadCsrfToken = (response: AxiosResponse) => { const token = this.parseCsrfToken(response) if (token) { this.fileUploadCsrfToken = token } } private parseAndSetCsrfToken = (response: AxiosResponse) => { const token = this.parseCsrfToken(response) if (token) { this.csrfToken = token } } private parseCsrfToken = (response: AxiosResponse): CsrfToken | undefined => { const tokenHeader = (response.headers[ 'x-csrf-header' ] as string)?.toLowerCase() if (tokenHeader) { const token = response.headers[tokenHeader] const csrfToken = { headerName: tokenHeader, value: token || '' } return csrfToken } } } const throwIfError = (response: AxiosResponse) => { if (response.data?.entityID?.includes('login')) { throw new LoginRequiredError() } if ( typeof response.data === 'string' && response.data.includes('

') ) { throw new LoginRequiredError() } if (response.data?.auth_request) { const authorizeRequestUrl = response.request.responseURL throw new AuthorizeError(response.data.message, authorizeRequestUrl) } const error = parseError(response.data as string) if (error) { throw error } } const parseError = (data: string) => { try { const responseJson = JSON.parse(data?.replace(/[\n\r]/g, ' ')) return responseJson.errorCode && responseJson.message ? new JobExecutionError( responseJson.errorCode, responseJson.message, data?.replace(/[\n\r]/g, ' ') ) : null } catch (_) { try { const hasError = data?.includes('{"errorCode') if (hasError) { const parts = data.split('{"errorCode') if (parts.length > 1) { const error = '{"errorCode' + parts[1].split('"}')[0] + '"}' const errorJson = JSON.parse(error.replace(/[\n\r]/g, ' ')) return new JobExecutionError( errorJson.errorCode, errorJson.message, data?.replace(/[\n\r]/g, '\n') ) } return null } return null } catch (_) { return null } } }