mirror of
https://github.com/n8n-io/n8n.git
synced 2024-12-27 13:39:44 -08:00
99a9ea497a
node-850 https://community.n8n.io/t/add-ability-to-set-cors-allow-list-in-n8n-webhooks/7610 https://community.n8n.io/t/configure-cors-pre-flight-request-option-method-in-the-roadmap/32189 --------- Co-authored-by: कारतोफ्फेलस्क्रिप्ट™ <aditya@netroy.in>
289 lines
9.2 KiB
TypeScript
289 lines
9.2 KiB
TypeScript
/* eslint-disable n8n-nodes-base/node-execute-block-wrong-error-thrown */
|
||
import { pipeline } from 'stream/promises';
|
||
import { createWriteStream } from 'fs';
|
||
import type {
|
||
IWebhookFunctions,
|
||
ICredentialDataDecryptedObject,
|
||
IDataObject,
|
||
INodeExecutionData,
|
||
INodeTypeDescription,
|
||
IWebhookResponseData,
|
||
MultiPartFormData,
|
||
} from 'n8n-workflow';
|
||
import { BINARY_ENCODING, NodeOperationError, Node } from 'n8n-workflow';
|
||
|
||
import { v4 as uuid } from 'uuid';
|
||
import basicAuth from 'basic-auth';
|
||
import isbot from 'isbot';
|
||
import { file as tmpFile } from 'tmp-promise';
|
||
|
||
import {
|
||
authenticationProperty,
|
||
credentialsProperty,
|
||
defaultWebhookDescription,
|
||
httpMethodsProperty,
|
||
optionsProperty,
|
||
responseBinaryPropertyNameProperty,
|
||
responseCodeProperty,
|
||
responseDataProperty,
|
||
responseModeProperty,
|
||
} from './description';
|
||
import { WebhookAuthorizationError } from './error';
|
||
|
||
export class Webhook extends Node {
|
||
authPropertyName = 'authentication';
|
||
|
||
description: INodeTypeDescription = {
|
||
displayName: 'Webhook',
|
||
icon: 'file:webhook.svg',
|
||
name: 'webhook',
|
||
group: ['trigger'],
|
||
version: 1,
|
||
description: 'Starts the workflow when a webhook is called',
|
||
eventTriggerDescription: 'Waiting for you to call the Test URL',
|
||
activationMessage: 'You can now make calls to your production webhook URL.',
|
||
defaults: {
|
||
name: 'Webhook',
|
||
},
|
||
supportsCORS: true,
|
||
triggerPanel: {
|
||
header: '',
|
||
executionsHelp: {
|
||
inactive:
|
||
'Webhooks have two modes: test and production. <br /> <br /> <b>Use test mode while you build your workflow</b>. Click the \'listen\' button, then make a request to the test URL. The executions will show up in the editor.<br /> <br /> <b>Use production mode to run your workflow automatically</b>. <a data-key="activate">Activate</a> the workflow, then make requests to the production URL. These executions will show up in the executions list, but not in the editor.',
|
||
active:
|
||
'Webhooks have two modes: test and production. <br /> <br /> <b>Use test mode while you build your workflow</b>. Click the \'listen\' button, then make a request to the test URL. The executions will show up in the editor.<br /> <br /> <b>Use production mode to run your workflow automatically</b>. Since the workflow is activated, you can make requests to the production URL. These executions will show up in the <a data-key="executions">executions list</a>, but not in the editor.',
|
||
},
|
||
activationHint:
|
||
'Once you’ve finished building your workflow, run it without having to click this button by using the production webhook URL.',
|
||
},
|
||
// eslint-disable-next-line n8n-nodes-base/node-class-description-inputs-wrong-regular-node
|
||
inputs: [],
|
||
outputs: ['main'],
|
||
credentials: credentialsProperty(this.authPropertyName),
|
||
webhooks: [defaultWebhookDescription],
|
||
properties: [
|
||
authenticationProperty(this.authPropertyName),
|
||
httpMethodsProperty,
|
||
{
|
||
displayName: 'Path',
|
||
name: 'path',
|
||
type: 'string',
|
||
default: '',
|
||
placeholder: 'webhook',
|
||
required: true,
|
||
description: 'The path to listen to',
|
||
},
|
||
responseModeProperty,
|
||
{
|
||
displayName:
|
||
'Insert a \'Respond to Webhook\' node to control when and how you respond. <a href="https://docs.n8n.io/integrations/builtin/core-nodes/n8n-nodes-base.respondtowebhook/" target="_blank">More details</a>',
|
||
name: 'webhookNotice',
|
||
type: 'notice',
|
||
displayOptions: {
|
||
show: {
|
||
responseMode: ['responseNode'],
|
||
},
|
||
},
|
||
default: '',
|
||
},
|
||
responseCodeProperty,
|
||
responseDataProperty,
|
||
responseBinaryPropertyNameProperty,
|
||
optionsProperty,
|
||
],
|
||
};
|
||
|
||
async webhook(context: IWebhookFunctions): Promise<IWebhookResponseData> {
|
||
const options = context.getNodeParameter('options', {}) as {
|
||
binaryData: boolean;
|
||
ignoreBots: boolean;
|
||
rawBody: Buffer;
|
||
responseData?: string;
|
||
};
|
||
const req = context.getRequestObject();
|
||
const resp = context.getResponseObject();
|
||
|
||
try {
|
||
if (options.ignoreBots && isbot(req.headers['user-agent']))
|
||
throw new WebhookAuthorizationError(403);
|
||
await this.validateAuth(context);
|
||
} catch (error) {
|
||
if (error instanceof WebhookAuthorizationError) {
|
||
resp.writeHead(error.responseCode, { 'WWW-Authenticate': 'Basic realm="Webhook"' });
|
||
resp.end(error.message);
|
||
return { noWebhookResponse: true };
|
||
}
|
||
throw error;
|
||
}
|
||
|
||
if (options.binaryData) {
|
||
return this.handleBinaryData(context);
|
||
}
|
||
|
||
if (req.contentType === 'multipart/form-data') {
|
||
return this.handleFormData(context);
|
||
}
|
||
|
||
const response: INodeExecutionData = {
|
||
json: {
|
||
headers: req.headers,
|
||
params: req.params,
|
||
query: req.query,
|
||
body: req.body,
|
||
},
|
||
binary: options.rawBody
|
||
? {
|
||
data: {
|
||
data: req.rawBody.toString(BINARY_ENCODING),
|
||
mimeType: req.contentType ?? 'application/json',
|
||
},
|
||
}
|
||
: undefined,
|
||
};
|
||
|
||
return {
|
||
webhookResponse: options.responseData,
|
||
workflowData: [[response]],
|
||
};
|
||
}
|
||
|
||
private async validateAuth(context: IWebhookFunctions) {
|
||
const authentication = context.getNodeParameter(this.authPropertyName) as string;
|
||
if (authentication === 'none') return;
|
||
|
||
const req = context.getRequestObject();
|
||
const headers = context.getHeaderData();
|
||
|
||
if (authentication === 'basicAuth') {
|
||
// Basic authorization is needed to call webhook
|
||
let expectedAuth: ICredentialDataDecryptedObject | undefined;
|
||
try {
|
||
expectedAuth = await context.getCredentials('httpBasicAuth');
|
||
} catch {}
|
||
|
||
if (expectedAuth === undefined || !expectedAuth.user || !expectedAuth.password) {
|
||
// Data is not defined on node so can not authenticate
|
||
throw new WebhookAuthorizationError(500, 'No authentication data defined on node!');
|
||
}
|
||
|
||
const providedAuth = basicAuth(req);
|
||
// Authorization data is missing
|
||
if (!providedAuth) throw new WebhookAuthorizationError(401);
|
||
|
||
if (providedAuth.name !== expectedAuth.user || providedAuth.pass !== expectedAuth.password) {
|
||
// Provided authentication data is wrong
|
||
throw new WebhookAuthorizationError(403);
|
||
}
|
||
} else if (authentication === 'headerAuth') {
|
||
// Special header with value is needed to call webhook
|
||
let expectedAuth: ICredentialDataDecryptedObject | undefined;
|
||
try {
|
||
expectedAuth = await context.getCredentials('httpHeaderAuth');
|
||
} catch {}
|
||
|
||
if (expectedAuth === undefined || !expectedAuth.name || !expectedAuth.value) {
|
||
// Data is not defined on node so can not authenticate
|
||
throw new WebhookAuthorizationError(500, 'No authentication data defined on node!');
|
||
}
|
||
const headerName = (expectedAuth.name as string).toLowerCase();
|
||
const expectedValue = expectedAuth.value as string;
|
||
|
||
if (
|
||
!headers.hasOwnProperty(headerName) ||
|
||
(headers as IDataObject)[headerName] !== expectedValue
|
||
) {
|
||
// Provided authentication data is wrong
|
||
throw new WebhookAuthorizationError(403);
|
||
}
|
||
}
|
||
}
|
||
|
||
private async handleFormData(context: IWebhookFunctions) {
|
||
const req = context.getRequestObject() as MultiPartFormData.Request;
|
||
const options = context.getNodeParameter('options', {}) as IDataObject;
|
||
const { data, files } = req.body;
|
||
|
||
const returnItem: INodeExecutionData = {
|
||
binary: {},
|
||
json: {
|
||
headers: req.headers,
|
||
params: req.params,
|
||
query: req.query,
|
||
body: data,
|
||
},
|
||
};
|
||
|
||
let count = 0;
|
||
for (const key of Object.keys(files)) {
|
||
const processFiles: MultiPartFormData.File[] = [];
|
||
let multiFile = false;
|
||
if (Array.isArray(files[key])) {
|
||
processFiles.push(...(files[key] as MultiPartFormData.File[]));
|
||
multiFile = true;
|
||
} else {
|
||
processFiles.push(files[key] as MultiPartFormData.File);
|
||
}
|
||
|
||
let fileCount = 0;
|
||
for (const file of processFiles) {
|
||
let binaryPropertyName = key;
|
||
if (binaryPropertyName.endsWith('[]')) {
|
||
binaryPropertyName = binaryPropertyName.slice(0, -2);
|
||
}
|
||
if (multiFile) {
|
||
binaryPropertyName += fileCount++;
|
||
}
|
||
if (options.binaryPropertyName) {
|
||
binaryPropertyName = `${options.binaryPropertyName}${count}`;
|
||
}
|
||
|
||
returnItem.binary![binaryPropertyName] = await context.nodeHelpers.copyBinaryFile(
|
||
file.filepath,
|
||
file.originalFilename ?? file.newFilename,
|
||
file.mimetype,
|
||
);
|
||
|
||
count += 1;
|
||
}
|
||
}
|
||
return { workflowData: [[returnItem]] };
|
||
}
|
||
|
||
private async handleBinaryData(context: IWebhookFunctions): Promise<IWebhookResponseData> {
|
||
const req = context.getRequestObject();
|
||
const options = context.getNodeParameter('options', {}) as IDataObject;
|
||
|
||
// TODO: create empty binaryData placeholder, stream into that path, and then finalize the binaryData
|
||
const binaryFile = await tmpFile({ prefix: 'n8n-webhook-' });
|
||
|
||
try {
|
||
await pipeline(req, createWriteStream(binaryFile.path));
|
||
|
||
const returnItem: INodeExecutionData = {
|
||
binary: {},
|
||
json: {
|
||
headers: req.headers,
|
||
params: req.params,
|
||
query: req.query,
|
||
body: {},
|
||
},
|
||
};
|
||
|
||
const binaryPropertyName = (options.binaryPropertyName || 'data') as string;
|
||
const fileName = req.contentDisposition?.filename ?? uuid();
|
||
returnItem.binary![binaryPropertyName] = await context.nodeHelpers.copyBinaryFile(
|
||
binaryFile.path,
|
||
fileName,
|
||
req.contentType ?? 'application/octet-stream',
|
||
);
|
||
|
||
return { workflowData: [[returnItem]] };
|
||
} catch (error) {
|
||
throw new NodeOperationError(context.getNode(), error as Error);
|
||
} finally {
|
||
await binaryFile.cleanup();
|
||
}
|
||
}
|
||
}
|