-
Notifications
You must be signed in to change notification settings - Fork 279
/
Copy pathediting-config-middleware.ts
74 lines (66 loc) · 2.41 KB
/
editing-config-middleware.ts
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
import { NextApiRequest, NextApiResponse } from 'next';
import { EDITING_ALLOWED_ORIGINS, QUERY_PARAM_EDITING_SECRET } from './constants';
import { getJssEditingSecret } from '../utils/utils';
import { debug } from '@sitecore-jss/sitecore-jss';
import { EditMode } from '@sitecore-jss/sitecore-jss/layout';
import { Metadata } from '@sitecore-jss/sitecore-jss-dev-tools';
import { enforceCors } from '@sitecore-jss/sitecore-jss/utils';
export type EditingConfigMiddlewareConfig = {
/**
* Components available in the application
*/
components: string[] | Map<string, unknown>;
/**
* Application metadata
*/
metadata: Metadata;
/**
* Determines which editing mode should be used by Pages.
* Can be either 'chromes' or 'metadata'.
* By default its 'metadata'
*/
pagesEditMode?: EditMode;
};
/**
* Middleware / handler used in the editing config API route in xmcloud add on (e.g. '/api/editing/config')
* provides configuration information to determine feature compatibility on Pages side.
*/
export class EditingConfigMiddleware {
/**
* @param {EditingConfigMiddlewareConfig} [config] Editing configuration middleware config
*/
constructor(protected config: EditingConfigMiddlewareConfig) {}
/**
* Gets the Next.js API route handler
* @returns middleware handler
*/
public getHandler(): (req: NextApiRequest, res: NextApiResponse) => Promise<void> {
return this.handler;
}
private handler = async (_req: NextApiRequest, res: NextApiResponse): Promise<void> => {
const secret = _req.query[QUERY_PARAM_EDITING_SECRET];
if (!enforceCors(_req, res, EDITING_ALLOWED_ORIGINS)) {
debug.editing(
'invalid origin host - set allowed origins in JSS_ALLOWED_ORIGINS environment variable'
);
return res.status(401).json({ message: 'Invalid origin' });
}
if (secret !== getJssEditingSecret()) {
debug.editing(
'invalid editing secret - sent "%s" expected "%s"',
secret,
getJssEditingSecret()
);
return res.status(401).json({ message: 'Missing or invalid editing secret' });
}
const components = Array.isArray(this.config.components)
? this.config.components
: Array.from(this.config.components.keys());
const editMode = this.config.pagesEditMode || EditMode.Metadata;
return res.status(200).json({
components,
packages: this.config.metadata.packages,
editMode,
});
};
}