n8n/packages/nodes-base/nodes/Aws/Textract/GenericFunctions.ts

import {
	URL,
} from 'url';

import {
	Request,
	sign,
} from 'aws4';

import {
	OptionsWithUri,
} from 'request';

import {
	parseString,
} from 'xml2js';

import {
	IExecuteFunctions,
	IHookFunctions,
	ILoadOptionsFunctions,
	IWebhookFunctions,
} from 'n8n-core';

import {
	ICredentialDataDecryptedObject,
	ICredentialTestFunctions,
	NodeApiError,
	NodeOperationError,
} from 'n8n-workflow';

function getEndpointForService(service: string, credentials: ICredentialDataDecryptedObject): string {
	let endpoint;
	if (service === 'lambda' && credentials.lambdaEndpoint) {
		endpoint = credentials.lambdaEndpoint;
	} else if (service === 'sns' && credentials.snsEndpoint) {
		endpoint = credentials.snsEndpoint;
	} else {
		endpoint = `https://${service}.${credentials.region}.amazonaws.com`;
	}
	return (endpoint as string).replace('{region}', credentials.region as string);
}

export async function awsApiRequest(this: IHookFunctions | IExecuteFunctions | ILoadOptionsFunctions | IWebhookFunctions, service: string, method: string, path: string, body?: string, headers?: object): Promise<any> { // tslint:disable-line:no-any
	const credentials = await this.getCredentials('aws');

	// Concatenate path and instantiate URL object so it parses correctly query strings
	const endpoint = new URL(getEndpointForService(service, credentials) + path);

	// Sign AWS API request with the user credentials
	const signOpts = { headers: headers || {}, host: endpoint.host, method, path, body } as Request;
	sign(signOpts, { accessKeyId: `${credentials.accessKeyId}`.trim(), secretAccessKey: `${credentials.secretAccessKey}`.trim() });


	const options: OptionsWithUri = {
		headers: signOpts.headers,
		method,
		uri: endpoint.href,
		body: signOpts.body,
	};

	try {
		return await this.helpers.request!(options);
	} catch (error) {
		if (error?.response?.data || error?.response?.body) {
			const errorMessage = error?.response?.data || error?.response?.body;
			if (errorMessage.includes('AccessDeniedException')) {
				const user = JSON.parse(errorMessage).Message.split(' ')[1];
				throw new NodeApiError(this.getNode(), error, {
					message: 'Unauthorized — please check your AWS policy configuration',
					description: `Make sure an identity-based policy allows user ${user} to perform textract:AnalyzeExpense` });
			}
		}

		throw new NodeApiError(this.getNode(), error); // no XML parsing needed
	}
}

export async function awsApiRequestREST(this: IHookFunctions | IExecuteFunctions | ILoadOptionsFunctions, service: string, method: string, path: string, body?: string, headers?: object): Promise<any> { // tslint:disable-line:no-any
	const response = await awsApiRequest.call(this, service, method, path, body, headers);
	try {
		return JSON.parse(response);
	} catch (error) {
		return response;
	}
}

export async function awsApiRequestSOAP(this: IHookFunctions | IExecuteFunctions | ILoadOptionsFunctions | IWebhookFunctions, service: string, method: string, path: string, body?: string, headers?: object): Promise<any> { // tslint:disable-line:no-any
	const response = await awsApiRequest.call(this, service, method, path, body, headers);
	try {
		return await new Promise((resolve, reject) => {
			parseString(response, { explicitArray: false }, (err, data) => {
				if (err) {
					return reject(err);
				}
				resolve(data);
			});
		});
	} catch (error) {
		return response;
	}
}

export function simplify(data: IExpenseDocument) {
	const result: { [key: string]: string } = {};
	for (const document of data.ExpenseDocuments) {
		for (const field of document.SummaryFields) {
			result[field?.Type?.Text || field?.LabelDetection?.Text] = field.ValueDetection.Text;
		}
	}
	return result;
}

export interface IExpenseDocument {
	ExpenseDocuments: [
		{
			SummaryFields: [
				{
					LabelDetection: { Text: string },
					ValueDetection: { Text: string },
					Type: { Text: string }
				}]
		}];
}

export async function validateCrendetials(this: ICredentialTestFunctions, decryptedCredentials: ICredentialDataDecryptedObject, service: string): Promise<any> { // tslint:disable-line:no-any
	const credentials = decryptedCredentials;

	// Concatenate path and instantiate URL object so it parses correctly query strings
	const endpoint = new URL(getEndpointForService(service, credentials) + `?Action=GetCallerIdentity&Version=2011-06-15`);

	// Sign AWS API request with the user credentials
	const signOpts = { host: endpoint.host, method: 'POST', path: '?Action=GetCallerIdentity&Version=2011-06-15' } as Request;
	sign(signOpts, { accessKeyId: `${credentials.accessKeyId}`.trim(), secretAccessKey: `${credentials.secretAccessKey}`.trim() });

	const options: OptionsWithUri = {
		headers: signOpts.headers,
		method: 'POST',
		uri: endpoint.href,
		body: signOpts.body,
	};

	const response = await this.helpers.request!(options);

	return await new Promise((resolve, reject) => {
		parseString(response, { explicitArray: false }, (err, data) => {
			if (err) {
				return reject(err);
			}
			resolve(data);
		});
	});
}
:sparkles: Add AWS Textract node (#2330) * :sparkles: AWS Textract node * :zap: Fix issue with types * :zap: Small change to labels * :zap: Improvements * :zap: Improve error message * :zap: Improve description Co-authored-by: Jan Oberhauser <jan.oberhauser@gmail.com> 2021-10-21 14:32:40 -07:00			`import {`
			`URL,`
			`} from 'url';`

			`import {`
			`Request,`
			`sign,`
			`} from 'aws4';`

			`import {`
			`OptionsWithUri,`
			`} from 'request';`

			`import {`
			`parseString,`
			`} from 'xml2js';`

			`import {`
			`IExecuteFunctions,`
			`IHookFunctions,`
			`ILoadOptionsFunctions,`
			`IWebhookFunctions,`
			`} from 'n8n-core';`

			`import {`
			`ICredentialDataDecryptedObject,`
			`ICredentialTestFunctions,`
			`NodeApiError,`
			`NodeOperationError,`
			`} from 'n8n-workflow';`

			`function getEndpointForService(service: string, credentials: ICredentialDataDecryptedObject): string {`
			`let endpoint;`
			`if (service === 'lambda' && credentials.lambdaEndpoint) {`
			`endpoint = credentials.lambdaEndpoint;`
			`} else if (service === 'sns' && credentials.snsEndpoint) {`
			`endpoint = credentials.snsEndpoint;`
			`} else {`
			endpoint = `https://${service}.${credentials.region}.amazonaws.com`;
			`}`
			`return (endpoint as string).replace('{region}', credentials.region as string);`
			`}`

			`export async function awsApiRequest(this: IHookFunctions \| IExecuteFunctions \| ILoadOptionsFunctions \| IWebhookFunctions, service: string, method: string, path: string, body?: string, headers?: object): Promise<any> { // tslint:disable-line:no-any`
			`const credentials = await this.getCredentials('aws');`

			`// Concatenate path and instantiate URL object so it parses correctly query strings`
			`const endpoint = new URL(getEndpointForService(service, credentials) + path);`

			`// Sign AWS API request with the user credentials`
			`const signOpts = { headers: headers \|\| {}, host: endpoint.host, method, path, body } as Request;`
			sign(signOpts, { accessKeyId: `${credentials.accessKeyId}`.trim(), secretAccessKey: `${credentials.secretAccessKey}`.trim() });


			`const options: OptionsWithUri = {`
			`headers: signOpts.headers,`
			`method,`
			`uri: endpoint.href,`
			`body: signOpts.body,`
			`};`

			`try {`
			`return await this.helpers.request!(options);`
			`} catch (error) {`
			`if (error?.response?.data \|\| error?.response?.body) {`
			`const errorMessage = error?.response?.data \|\| error?.response?.body;`
			`if (errorMessage.includes('AccessDeniedException')) {`
			`const user = JSON.parse(errorMessage).Message.split(' ')[1];`
:art: Centralize error throwing for encryption keys and credentials (#3105) * Centralized error throwing for encryption key * Unifying the error message used by cli and core packages * Improvements to error messages to make it more DRY * Removed unnecessary throw * Throwing error when credential does not exist to simplify node behavior (#3112) Co-authored-by: Iván Ovejero <ivov.src@gmail.com> 2022-04-14 23:00:47 -07:00			`throw new NodeApiError(this.getNode(), error, {`
:sparkles: Add AWS Textract node (#2330) * :sparkles: AWS Textract node * :zap: Fix issue with types * :zap: Small change to labels * :zap: Improvements * :zap: Improve error message * :zap: Improve description Co-authored-by: Jan Oberhauser <jan.oberhauser@gmail.com> 2021-10-21 14:32:40 -07:00			`message: 'Unauthorized — please check your AWS policy configuration',`
			description: `Make sure an identity-based policy allows user ${user} to perform textract:AnalyzeExpense` });
			`}`
			`}`

			`throw new NodeApiError(this.getNode(), error); // no XML parsing needed`
			`}`
			`}`

			`export async function awsApiRequestREST(this: IHookFunctions \| IExecuteFunctions \| ILoadOptionsFunctions, service: string, method: string, path: string, body?: string, headers?: object): Promise<any> { // tslint:disable-line:no-any`
			`const response = await awsApiRequest.call(this, service, method, path, body, headers);`
			`try {`
			`return JSON.parse(response);`
			`} catch (error) {`
			`return response;`
			`}`
			`}`

			`export async function awsApiRequestSOAP(this: IHookFunctions \| IExecuteFunctions \| ILoadOptionsFunctions \| IWebhookFunctions, service: string, method: string, path: string, body?: string, headers?: object): Promise<any> { // tslint:disable-line:no-any`
			`const response = await awsApiRequest.call(this, service, method, path, body, headers);`
			`try {`
			`return await new Promise((resolve, reject) => {`
			`parseString(response, { explicitArray: false }, (err, data) => {`
			`if (err) {`
			`return reject(err);`
			`}`
			`resolve(data);`
			`});`
			`});`
			`} catch (error) {`
			`return response;`
			`}`
			`}`

			`export function simplify(data: IExpenseDocument) {`
			`const result: { [key: string]: string } = {};`
			`for (const document of data.ExpenseDocuments) {`
			`for (const field of document.SummaryFields) {`
			`result[field?.Type?.Text \|\| field?.LabelDetection?.Text] = field.ValueDetection.Text;`
			`}`
			`}`
			`return result;`
			`}`

			`export interface IExpenseDocument {`
			`ExpenseDocuments: [`
			`{`
			`SummaryFields: [`
			`{`
			`LabelDetection: { Text: string },`
			`ValueDetection: { Text: string },`
			`Type: { Text: string }`
			`}]`
			`}];`
			`}`

			`export async function validateCrendetials(this: ICredentialTestFunctions, decryptedCredentials: ICredentialDataDecryptedObject, service: string): Promise<any> { // tslint:disable-line:no-any`
			`const credentials = decryptedCredentials;`

			`// Concatenate path and instantiate URL object so it parses correctly query strings`
			const endpoint = new URL(getEndpointForService(service, credentials) + `?Action=GetCallerIdentity&Version=2011-06-15`);

			`// Sign AWS API request with the user credentials`
			`const signOpts = { host: endpoint.host, method: 'POST', path: '?Action=GetCallerIdentity&Version=2011-06-15' } as Request;`
			sign(signOpts, { accessKeyId: `${credentials.accessKeyId}`.trim(), secretAccessKey: `${credentials.secretAccessKey}`.trim() });

			`const options: OptionsWithUri = {`
			`headers: signOpts.headers,`
			`method: 'POST',`
			`uri: endpoint.href,`
			`body: signOpts.body,`
			`};`

			`const response = await this.helpers.request!(options);`

			`return await new Promise((resolve, reject) => {`
			`parseString(response, { explicitArray: false }, (err, data) => {`
			`if (err) {`
			`return reject(err);`
			`}`
			`resolve(data);`
			`});`
			`});`
			`}`