import type { ICredentialTestFunctions, ICredentialsDecrypted, IDataObject, IExecuteFunctions, INodeCredentialTestResult, INodeExecutionData, INodeType, INodeTypeDescription, } from 'n8n-workflow'; import { BINARY_ENCODING, NodeOperationError } from 'n8n-workflow'; import { formatPrivateKey } from '@utils/utilities'; import { rm, writeFile } from 'fs/promises'; import { file as tmpFile } from 'tmp-promise'; import type { Config } from 'node-ssh'; import { NodeSSH } from 'node-ssh'; import type { Readable } from 'stream'; async function resolveHomeDir( this: IExecuteFunctions, path: string, ssh: NodeSSH, itemIndex: number, ) { if (path.startsWith('~/')) { let homeDir = (await ssh.execCommand('echo $HOME')).stdout; if (homeDir.charAt(homeDir.length - 1) !== '/') { homeDir += '/'; } return path.replace('~/', homeDir); } if (path.startsWith('~')) { throw new NodeOperationError( this.getNode(), 'Invalid path. Replace "~" with home directory or "~/"', { itemIndex, }, ); } return path; } export class Ssh implements INodeType { description: INodeTypeDescription = { displayName: 'SSH', name: 'ssh', icon: 'fa:terminal', group: ['input'], version: 1, subtitle: '={{$parameter["operation"] + ": " + $parameter["resource"]}}', description: 'Execute commands via SSH', defaults: { name: 'SSH', color: '#000000', }, inputs: ['main'], outputs: ['main'], credentials: [ { name: 'sshPassword', required: true, testedBy: 'sshConnectionTest', displayOptions: { show: { authentication: ['password'], }, }, }, { name: 'sshPrivateKey', required: true, testedBy: 'sshConnectionTest', displayOptions: { show: { authentication: ['privateKey'], }, }, }, ], properties: [ { displayName: 'Authentication', name: 'authentication', type: 'options', options: [ { name: 'Password', value: 'password', }, { name: 'Private Key', value: 'privateKey', }, ], default: 'password', }, { displayName: 'Resource', name: 'resource', type: 'options', noDataExpression: true, options: [ { name: 'Command', value: 'command', }, { name: 'File', value: 'file', }, ], default: 'command', }, { displayName: 'Operation', name: 'operation', type: 'options', noDataExpression: true, displayOptions: { show: { resource: ['command'], }, }, options: [ { name: 'Execute', value: 'execute', description: 'Execute a command', action: 'Execute a command', }, ], default: 'execute', }, { displayName: 'Command', name: 'command', type: 'string', displayOptions: { show: { resource: ['command'], operation: ['execute'], }, }, default: '', description: 'The command to be executed on a remote device', }, { displayName: 'Working Directory', name: 'cwd', type: 'string', displayOptions: { show: { resource: ['command'], operation: ['execute'], }, }, default: '/', required: true, }, { displayName: 'Operation', name: 'operation', type: 'options', noDataExpression: true, displayOptions: { show: { resource: ['file'], }, }, options: [ { name: 'Download', value: 'download', description: 'Download a file', action: 'Download a file', }, { name: 'Upload', value: 'upload', description: 'Upload a file', action: 'Upload a file', }, ], default: 'upload', }, { displayName: 'Binary Property', name: 'binaryPropertyName', type: 'string', default: 'data', required: true, displayOptions: { show: { operation: ['upload'], resource: ['file'], }, }, placeholder: '', description: 'Name of the binary property which contains the data for the file to be uploaded', }, { displayName: 'Target Directory', name: 'path', type: 'string', displayOptions: { show: { resource: ['file'], operation: ['upload'], }, }, default: '', required: true, placeholder: '/home/user', description: 'The directory to upload the file to. The name of the file does not need to be specified, it\'s taken from the binary data file name. To override this behavior, set the parameter "File Name" under options.', }, { displayName: 'Path', displayOptions: { show: { resource: ['file'], operation: ['download'], }, }, name: 'path', type: 'string', default: '', placeholder: '/home/user/invoice.txt', description: 'The file path of the file to download. Has to contain the full path including file name.', required: true, }, { displayName: 'Binary Property', displayOptions: { show: { resource: ['file'], operation: ['download'], }, }, name: 'binaryPropertyName', type: 'string', default: 'data', description: 'Object property name which holds binary data', required: true, }, { displayName: 'Options', name: 'options', type: 'collection', placeholder: 'Add Option', displayOptions: { show: { resource: ['file'], operation: ['upload', 'download'], }, }, default: {}, options: [ { displayName: 'File Name', name: 'fileName', type: 'string', default: '', description: 'Overrides the binary data file name', }, ], }, ], }; methods = { credentialTest: { async sshConnectionTest( this: ICredentialTestFunctions, credential: ICredentialsDecrypted, ): Promise { const credentials = credential.data as IDataObject; const ssh = new NodeSSH(); const temporaryFiles: string[] = []; try { if (!credentials.privateKey) { await ssh.connect({ host: credentials.host as string, username: credentials.username as string, port: credentials.port as number, password: credentials.password as string, }); } else { const options: Config = { host: credentials.host as string, username: credentials.username as string, port: credentials.port as number, privateKey: formatPrivateKey(credentials.privateKey as string), }; if (credentials.passphrase) { options.passphrase = credentials.passphrase as string; } await ssh.connect(options); } } catch (error) { const message = `SSH connection failed: ${error.message}`; return { status: 'Error', message, }; } finally { ssh.dispose(); for (const tempFile of temporaryFiles) await rm(tempFile); } return { status: 'OK', message: 'Connection successful!', }; }, }, }; async execute(this: IExecuteFunctions): Promise { const items = this.getInputData(); const returnItems: INodeExecutionData[] = []; const resource = this.getNodeParameter('resource', 0); const operation = this.getNodeParameter('operation', 0); const authentication = this.getNodeParameter('authentication', 0) as string; const temporaryFiles: string[] = []; const ssh = new NodeSSH(); try { if (authentication === 'password') { const credentials = await this.getCredentials('sshPassword'); await ssh.connect({ host: credentials.host as string, username: credentials.username as string, port: credentials.port as number, password: credentials.password as string, }); } else if (authentication === 'privateKey') { const credentials = await this.getCredentials('sshPrivateKey'); const options: Config = { host: credentials.host as string, username: credentials.username as string, port: credentials.port as number, privateKey: formatPrivateKey(credentials.privateKey as string), }; if (credentials.passphrase) { options.passphrase = credentials.passphrase as string; } await ssh.connect(options); } for (let i = 0; i < items.length; i++) { try { if (resource === 'command') { if (operation === 'execute') { const command = this.getNodeParameter('command', i) as string; const cwd = await resolveHomeDir.call( this, this.getNodeParameter('cwd', i) as string, ssh, i, ); returnItems.push({ json: (await ssh.execCommand(command, { cwd })) as unknown as IDataObject, pairedItem: { item: i, }, }); } } if (resource === 'file') { if (operation === 'download') { const dataPropertyNameDownload = this.getNodeParameter('binaryPropertyName', i); const parameterPath = await resolveHomeDir.call( this, this.getNodeParameter('path', i) as string, ssh, i, ); const { path } = await tmpFile({ prefix: 'n8n-ssh-' }); temporaryFiles.push(path); await ssh.getFile(path, parameterPath); const newItem: INodeExecutionData = { json: items[i].json, binary: {}, pairedItem: { item: i, }, }; if (items[i].binary !== undefined && newItem.binary) { // Create a shallow copy of the binary data so that the old // data references which do not get changed still stay behind // but the incoming data does not get changed. Object.assign(newItem.binary, items[i].binary); } items[i] = newItem; const fileName = this.getNodeParameter('options.fileName', i, '') as string; items[i].binary![dataPropertyNameDownload] = await this.nodeHelpers.copyBinaryFile( path, fileName || parameterPath, ); } if (operation === 'upload') { const parameterPath = await resolveHomeDir.call( this, this.getNodeParameter('path', i) as string, ssh, i, ); const fileName = this.getNodeParameter('options.fileName', i, '') as string; const binaryPropertyName = this.getNodeParameter('binaryPropertyName', i); const binaryData = this.helpers.assertBinaryData(i, binaryPropertyName); let uploadData: Buffer | Readable; if (binaryData.id) { uploadData = this.helpers.getBinaryStream(binaryData.id); } else { uploadData = Buffer.from(binaryData.data, BINARY_ENCODING); } const { path } = await tmpFile({ prefix: 'n8n-ssh-' }); temporaryFiles.push(path); await writeFile(path, uploadData); await ssh.putFile( path, `${parameterPath}${ parameterPath.charAt(parameterPath.length - 1) === '/' ? '' : '/' }${fileName || binaryData.fileName}`, ); returnItems.push({ json: { success: true, }, pairedItem: { item: i, }, }); } } } catch (error) { if (this.continueOnFail()) { if (resource === 'file' && operation === 'download') { items[i] = { json: { error: error.message, }, }; } else { returnItems.push({ json: { error: error.message, }, pairedItem: { item: i, }, }); } continue; } throw error; } } } catch (error) { ssh.dispose(); for (const tempFile of temporaryFiles) await rm(tempFile); throw error; } for (const tempFile of temporaryFiles) await rm(tempFile); ssh.dispose(); if (resource === 'file' && operation === 'download') { // For file downloads the files get attached to the existing items return this.prepareOutputData(items); } else { return this.prepareOutputData(returnItems); } } }