import { OptionsWithUri } from 'request'; import { IExecuteFunctions, IExecuteSingleFunctions, ILoadOptionsFunctions } from 'n8n-core'; import { IDataObject, NodeApiError } from 'n8n-workflow'; import moment from 'moment-timezone'; import jwt from 'jsonwebtoken'; interface IGoogleAuthCredentials { delegatedEmail?: string; email: string; inpersonate: boolean; privateKey: string; } export async function googleApiRequest( this: IExecuteFunctions | IExecuteSingleFunctions | ILoadOptionsFunctions, method: string, resource: string, // tslint:disable-next-line:no-any body: any = {}, qs: IDataObject = {}, uri?: string, headers: IDataObject = {}, // tslint:disable-next-line:no-any ): Promise { const authenticationMethod = this.getNodeParameter( 'authentication', 0, 'serviceAccount', ) as string; const options: OptionsWithUri = { headers: { 'Content-Type': 'application/json', }, method, body, qs, uri: uri || `https://www.googleapis.com/books/${resource}`, json: true, }; try { if (Object.keys(headers).length !== 0) { options.headers = Object.assign({}, options.headers, headers); } if (Object.keys(body).length === 0) { delete options.body; } if (authenticationMethod === 'serviceAccount') { const credentials = (await this.getCredentials('googleApi')) as { email: string; privateKey: string; }; const { access_token } = await getAccessToken.call( this, credentials as unknown as IGoogleAuthCredentials, ); options.headers!.Authorization = `Bearer ${access_token}`; //@ts-ignore return await this.helpers.request(options); } else { //@ts-ignore return await this.helpers.requestOAuth2.call(this, 'googleBooksOAuth2Api', options); } } catch (error) { if (error.code === 'ERR_OSSL_PEM_NO_START_LINE') { error.statusCode = '401'; } throw new NodeApiError(this.getNode(), error); } } export async function googleApiRequestAllItems( this: IExecuteFunctions | ILoadOptionsFunctions, propertyName: string, method: string, endpoint: string, // tslint:disable-next-line:no-any body: any = {}, query: IDataObject = {}, // tslint:disable-next-line:no-any ): Promise { const returnData: IDataObject[] = []; let responseData; query.maxResults = 40; do { responseData = await googleApiRequest.call(this, method, endpoint, body, query); returnData.push.apply(returnData, responseData[propertyName] || []); } while (returnData.length < responseData.totalItems); return returnData; } function getAccessToken( this: IExecuteFunctions | IExecuteSingleFunctions | ILoadOptionsFunctions, credentials: IGoogleAuthCredentials, ): Promise { //https://developers.google.com/identity/protocols/oauth2/service-account#httprest const scopes = ['https://www.googleapis.com/auth/books']; const now = moment().unix(); credentials.email = credentials.email.trim(); const privateKey = (credentials.privateKey as string).replace(/\\n/g, '\n').trim(); const signature = jwt.sign( { iss: credentials.email as string, sub: credentials.delegatedEmail || (credentials.email as string), scope: scopes.join(' '), aud: `https://oauth2.googleapis.com/token`, iat: now, exp: now + 3600, }, privateKey as string, { algorithm: 'RS256', header: { kid: privateKey as string, typ: 'JWT', alg: 'RS256', }, }, ); const options: OptionsWithUri = { headers: { 'Content-Type': 'application/x-www-form-urlencoded', }, method: 'POST', form: { grant_type: 'urn:ietf:params:oauth:grant-type:jwt-bearer', assertion: signature, }, uri: 'https://oauth2.googleapis.com/token', json: true, }; //@ts-ignore return this.helpers.request(options); }