X-Git-Url: https://git.immae.eu/?a=blobdiff_plain;f=server%2Fhelpers%2Fcustom-validators%2Fmisc.ts;h=effdd98cb9c4b3c8b222138f8e97bbf4c0b80e87;hb=e62f03ae0412f4efa62917d8741bc1a39e8ed7fc;hp=3a3deab0c8f7b152ac56d08348d003b84286c247;hpb=97567dd81f508dd6295ac4d73d849aa2ce0a6549;p=github%2FChocobozzz%2FPeerTube.git diff --git a/server/helpers/custom-validators/misc.ts b/server/helpers/custom-validators/misc.ts index 3a3deab0c..effdd98cb 100644 --- a/server/helpers/custom-validators/misc.ts +++ b/server/helpers/custom-validators/misc.ts @@ -1,10 +1,18 @@ import 'multer' -import * as validator from 'validator' +import validator from 'validator' +import { sep } from 'path' function exists (value: any) { return value !== undefined && value !== null } +function isSafePath (p: string) { + return exists(p) && + (p + '').split(sep).every(part => { + return [ '..' ].includes(part) === false + }) +} + function isArray (value: any) { return Array.isArray(value) } @@ -37,10 +45,26 @@ function isBooleanValid (value: any) { return typeof value === 'boolean' || (typeof value === 'string' && validator.isBoolean(value)) } +function isIntOrNull (value: any) { + return value === null || validator.isInt('' + value) +} + function toIntOrNull (value: string) { - if (value === 'null') return null + const v = toValueOrNull(value) + + if (v === null || v === undefined) return v + if (typeof v === 'number') return v - return validator.toInt(value) + return validator.toInt('' + v) +} + +function toBooleanOrNull (value: any) { + const v = toValueOrNull(value) + + if (v === null || v === undefined) return v + if (typeof v === 'boolean') return v + + return validator.toBoolean('' + v) } function toValueOrNull (value: string) { @@ -62,6 +86,50 @@ function toIntArray (value: any) { return value.map(v => validator.toInt(v)) } +function isFileFieldValid ( + files: { [ fieldname: string ]: Express.Multer.File[] } | Express.Multer.File[], + field: string, + optional = false +) { + // Should have files + if (!files) return optional + if (isArray(files)) return optional + + // Should have a file + const fileArray = files[field] + if (!fileArray || fileArray.length === 0) { + return optional + } + + // The file should exist + const file = fileArray[0] + if (!file || !file.originalname) return false + return file +} + +function isFileMimeTypeValid ( + files: { [ fieldname: string ]: Express.Multer.File[] } | Express.Multer.File[], + mimeTypeRegex: string, + field: string, + optional = false +) { + // Should have files + if (!files) return optional + if (isArray(files)) return optional + + // Should have a file + const fileArray = files[field] + if (!fileArray || fileArray.length === 0) { + return optional + } + + // The file should exist + const file = fileArray[0] + if (!file || !file.originalname) return false + + return new RegExp(`^${mimeTypeRegex}$`, 'i').test(file.mimetype) +} + function isFileValid ( files: { [ fieldname: string ]: Express.Multer.File[] } | Express.Multer.File[], mimeTypeRegex: string, @@ -74,13 +142,13 @@ function isFileValid ( if (isArray(files)) return optional // Should have a file - const fileArray = files[ field ] + const fileArray = files[field] if (!fileArray || fileArray.length === 0) { return optional } // The file should exist - const file = fileArray[ 0 ] + const file = fileArray[0] if (!file || !file.originalname) return false // Check size @@ -96,14 +164,19 @@ export { isArrayOf, isNotEmptyIntArray, isArray, + isIntOrNull, isIdValid, + isSafePath, isUUIDValid, isIdOrUUIDValid, isDateValid, toValueOrNull, + toBooleanOrNull, isBooleanValid, toIntOrNull, toArray, toIntArray, + isFileFieldValid, + isFileMimeTypeValid, isFileValid }