/* eslint-disable n8n-nodes-base/node-execute-block-wrong-error-thrown */ import { pipeline } from 'stream/promises'; import { createWriteStream } from 'fs'; import { stat } from 'fs/promises'; import type { IWebhookFunctions, ICredentialDataDecryptedObject, IDataObject, INodeExecutionData, INodeTypeDescription, IWebhookResponseData, MultiPartFormData, } from 'n8n-workflow'; import { BINARY_ENCODING, NodeOperationError, Node } from 'n8n-workflow'; import { v4 as uuid } from 'uuid'; import basicAuth from 'basic-auth'; import isbot from 'isbot'; import { file as tmpFile } from 'tmp-promise'; import { authenticationProperty, credentialsProperty, defaultWebhookDescription, httpMethodsProperty, optionsProperty, responseBinaryPropertyNameProperty, responseCodeProperty, responseDataProperty, responseModeProperty, } from './description'; import { WebhookAuthorizationError } from './error'; export class Webhook extends Node { authPropertyName = 'authentication'; description: INodeTypeDescription = { displayName: 'Webhook', icon: 'file:webhook.svg', name: 'webhook', group: ['trigger'], version: [1, 1.1], description: 'Starts the workflow when a webhook is called', eventTriggerDescription: 'Waiting for you to call the Test URL', activationMessage: 'You can now make calls to your production webhook URL.', defaults: { name: 'Webhook', }, supportsCORS: true, triggerPanel: { header: '', executionsHelp: { inactive: 'Webhooks have two modes: test and production.

Use test mode while you build your workflow. Click the \'listen\' button, then make a request to the test URL. The executions will show up in the editor.

Use production mode to run your workflow automatically. Activate the workflow, then make requests to the production URL. These executions will show up in the executions list, but not in the editor.', active: 'Webhooks have two modes: test and production.

Use test mode while you build your workflow. Click the \'listen\' button, then make a request to the test URL. The executions will show up in the editor.

Use production mode to run your workflow automatically. Since the workflow is activated, you can make requests to the production URL. These executions will show up in the executions list, but not in the editor.', }, activationHint: 'Once you’ve finished building your workflow, run it without having to click this button by using the production webhook URL.', }, // eslint-disable-next-line n8n-nodes-base/node-class-description-inputs-wrong-regular-node inputs: [], outputs: ['main'], credentials: credentialsProperty(this.authPropertyName), webhooks: [defaultWebhookDescription], properties: [ authenticationProperty(this.authPropertyName), httpMethodsProperty, { displayName: 'Path', name: 'path', type: 'string', default: '', placeholder: 'webhook', required: true, description: 'The path to listen to', }, responseModeProperty, { displayName: 'Insert a \'Respond to Webhook\' node to control when and how you respond. More details', name: 'webhookNotice', type: 'notice', displayOptions: { show: { responseMode: ['responseNode'], }, }, default: '', }, responseCodeProperty, responseDataProperty, responseBinaryPropertyNameProperty, optionsProperty, ], }; async webhook(context: IWebhookFunctions): Promise { const options = context.getNodeParameter('options', {}) as { binaryData: boolean; ignoreBots: boolean; rawBody: Buffer; responseData?: string; }; const req = context.getRequestObject(); const resp = context.getResponseObject(); try { if (options.ignoreBots && isbot(req.headers['user-agent'])) throw new WebhookAuthorizationError(403); await this.validateAuth(context); } catch (error) { if (error instanceof WebhookAuthorizationError) { resp.writeHead(error.responseCode, { 'WWW-Authenticate': 'Basic realm="Webhook"' }); resp.end(error.message); return { noWebhookResponse: true }; } throw error; } if (options.binaryData) { return this.handleBinaryData(context); } if (req.contentType === 'multipart/form-data') { return this.handleFormData(context); } const nodeVersion = context.getNode().typeVersion; if (nodeVersion > 1 && !req.body && !options.rawBody) { try { return await this.handleBinaryData(context); } catch (error) {} } if (options.rawBody && !req.rawBody) { await req.readRawBody(); } const response: INodeExecutionData = { json: { headers: req.headers, params: req.params, query: req.query, body: req.body, }, binary: options.rawBody ? { data: { data: (req.rawBody ?? '').toString(BINARY_ENCODING), mimeType: req.contentType ?? 'application/json', }, } : undefined, }; return { webhookResponse: options.responseData, workflowData: [[response]], }; } private async validateAuth(context: IWebhookFunctions) { const authentication = context.getNodeParameter(this.authPropertyName) as string; if (authentication === 'none') return; const req = context.getRequestObject(); const headers = context.getHeaderData(); if (authentication === 'basicAuth') { // Basic authorization is needed to call webhook let expectedAuth: ICredentialDataDecryptedObject | undefined; try { expectedAuth = await context.getCredentials('httpBasicAuth'); } catch {} if (expectedAuth === undefined || !expectedAuth.user || !expectedAuth.password) { // Data is not defined on node so can not authenticate throw new WebhookAuthorizationError(500, 'No authentication data defined on node!'); } const providedAuth = basicAuth(req); // Authorization data is missing if (!providedAuth) throw new WebhookAuthorizationError(401); if (providedAuth.name !== expectedAuth.user || providedAuth.pass !== expectedAuth.password) { // Provided authentication data is wrong throw new WebhookAuthorizationError(403); } } else if (authentication === 'headerAuth') { // Special header with value is needed to call webhook let expectedAuth: ICredentialDataDecryptedObject | undefined; try { expectedAuth = await context.getCredentials('httpHeaderAuth'); } catch {} if (expectedAuth === undefined || !expectedAuth.name || !expectedAuth.value) { // Data is not defined on node so can not authenticate throw new WebhookAuthorizationError(500, 'No authentication data defined on node!'); } const headerName = (expectedAuth.name as string).toLowerCase(); const expectedValue = expectedAuth.value as string; if ( !headers.hasOwnProperty(headerName) || (headers as IDataObject)[headerName] !== expectedValue ) { // Provided authentication data is wrong throw new WebhookAuthorizationError(403); } } } private async handleFormData(context: IWebhookFunctions) { const req = context.getRequestObject() as MultiPartFormData.Request; const options = context.getNodeParameter('options', {}) as IDataObject; const { data, files } = req.body; const returnItem: INodeExecutionData = { json: { headers: req.headers, params: req.params, query: req.query, body: data, }, }; if (files?.length) { returnItem.binary = {}; } let count = 0; for (const key of Object.keys(files)) { const processFiles: MultiPartFormData.File[] = []; let multiFile = false; if (Array.isArray(files[key])) { processFiles.push(...(files[key] as MultiPartFormData.File[])); multiFile = true; } else { processFiles.push(files[key] as MultiPartFormData.File); } let fileCount = 0; for (const file of processFiles) { let binaryPropertyName = key; if (binaryPropertyName.endsWith('[]')) { binaryPropertyName = binaryPropertyName.slice(0, -2); } if (multiFile) { binaryPropertyName += fileCount++; } if (options.binaryPropertyName) { binaryPropertyName = `${options.binaryPropertyName}${count}`; } returnItem.binary![binaryPropertyName] = await context.nodeHelpers.copyBinaryFile( file.filepath, file.originalFilename ?? file.newFilename, file.mimetype, ); count += 1; } } return { workflowData: [[returnItem]] }; } private async handleBinaryData(context: IWebhookFunctions): Promise { const req = context.getRequestObject(); const options = context.getNodeParameter('options', {}) as IDataObject; // TODO: create empty binaryData placeholder, stream into that path, and then finalize the binaryData const binaryFile = await tmpFile({ prefix: 'n8n-webhook-' }); try { await pipeline(req, createWriteStream(binaryFile.path)); const returnItem: INodeExecutionData = { json: { headers: req.headers, params: req.params, query: req.query, body: {}, }, }; const stats = await stat(binaryFile.path); if (stats.size) { const binaryPropertyName = (options.binaryPropertyName ?? 'data') as string; const fileName = req.contentDisposition?.filename ?? uuid(); const binaryData = await context.nodeHelpers.copyBinaryFile( binaryFile.path, fileName, req.contentType ?? 'application/octet-stream', ); returnItem.binary = { [binaryPropertyName]: binaryData }; } return { workflowData: [[returnItem]] }; } catch (error) { throw new NodeOperationError(context.getNode(), error as Error); } finally { await binaryFile.cleanup(); } } }