dsql-admin/dsql-app/.local_dist/server/pages/api/admin/runUserDbQuery.js
Benjamin Toby 8b7ea057d0 Updates
2024-12-06 14:24:26 +01:00

16 lines
7.6 KiB
JavaScript

"use strict";(()=>{var e={};e.id=6799,e.ids=[6799],e.modules={75600:e=>{e.exports=require("next/dist/compiled/next-server/pages-api.runtime.prod.js")},9973:e=>{e.exports=require("serverless-mysql")},79428:e=>{e.exports=require("buffer")},55511:e=>{e.exports=require("crypto")},29021:e=>{e.exports=require("fs")},81630:e=>{e.exports=require("http")},33873:e=>{e.exports=require("path")},96762:(e,r)=>{Object.defineProperty(r,"M",{enumerable:!0,get:function(){return function e(r,t){return t in r?r[t]:"then"in r&&"function"==typeof r.then?r.then(r=>e(r,t)):"function"==typeof r&&"default"===t?r:void 0}}})},89496:(e,r,t)=>{t.r(r),t.d(r,{config:()=>m,default:()=>S,routeModule:()=>f});var s={};t.r(s),t.d(s,{default:()=>_});var n=t(89947),o=t(2706),a=t(96762),c=t(57638),l=t.n(c),i=t(48225),u=t.n(i),p=t(19131),d=t.n(p);async function _(e,r){if("POST"!==e.method)return r.json({success:!1,msg:"Wrong Method"});let t=await d()(e);if(!t?.logged_in_status)return r.json({success:!1,log:"No Logs"});let{database:s,query:n}=e.body;e.body.user;try{if(!n?.match(/^select .* from .*|^show tables$|^show indexes from .*|show columns from .*|^update |^delete from /i)||n?.match(/^create user|INFORMATION_SCHEMA/i))return r.json({success:!1,msg:"Disallowed query"});let e=await l()({database:s,queryString:n});if(!e)return r.json({success:!1,msg:"Query Failed!"});r.json({success:!0,result:e})}catch(e){console.log(e.message),u()({component:"/api/runUserDbQuery/main-catch-error",message:e.message}),r.json({success:!1})}}t(29021);let S=(0,a.M)(s,"default"),m=(0,a.M)(s,"config"),f=new n.PagesAPIRouteModule({definition:{kind:o.A.PAGES_API,page:"/api/admin/runUserDbQuery",pathname:"/api/admin/runUserDbQuery",bundlePath:"",filename:""},userland:s})},19131:(e,r,t)=>{let{IncomingMessage:s}=t(81630),n=t(72835),o=t(31341);e.exports=async function(e){let{keyCookieName:r,csrfCookieName:t}=o(),s=`${r}_su`;if(!e.cookies?.[s])return console.log("No auth key cookie found"),null;let a=n({encryptedString:e.cookies[s]});if(!a)return console.log("No user payload found"),null;let c=JSON.parse(a);return c.password!==process.env.DSQL_USER_KEY?(console.log("Invalid password"),null):c.authKey!==process.env.DSQL_SPECIAL_KEY?(console.log("Invalid auth key"),null):c}},31341:e=>{e.exports=function(){let e=process.env.DSQL_COOKIES_PREFIX||"dsql_";return{keyCookieName:e+(process.env.DSQL_COOKIES_KEY_NAME||"key"),csrfCookieName:e+(process.env.DSQL_COOKIES_CSRF_NAME||"csrf")}}},30003:e=>{e.exports=/^id$|^uuid$|^date_created$|^date_created_code$|^date_created_timestamp$|^date_updated$|^date_updated_code$|^date_updated_timestamp$/},6061:(e,r,t)=>{let s=t(72835),n=t(30003);e.exports=async function({unparsedResults:e,tableSchema:r}){let t=[];try{for(let o=0;o<e.length;o++){let a=e[o],c=Object.keys(a);for(let e=0;e<c.length;e++){let t=c[e],o=r?.fields[e];if(t?.match(n))continue;let l=a[t];("number"==typeof l||l)&&o?.encrypted&&l?.match(/./)&&(a[t]=s({encryptedString:l}))}t.push(a)}return t}catch(r){return console.log("ERROR in parseDbResults Function =>",r.message),e}}},48225:(e,r,t)=>{let s=t(29021),{IncomingMessage:n}=t(81630);e.exports=async function({user:e,message:r,component:t,noMail:n,req:o}){let a=new Date,c=(()=>{if(!o)return null;try{let e=o.headers["x-forwarded-for"],r=o.headers["x-real-ip"],t=o.headers["cf-connecting-ip"],s=Array.isArray(e)?e[0]:e?.split(",")[0],n=t||s||r||o.socket.remoteAddress;if(!n)return null;return String(n)}catch(e){return null}})();try{let n=`🚀 SERVER ERROR ===========================
Error Message: ${r}
Component: ${t}`;e?.id&&e?.first_name&&e?.last_name&&e?.email&&(n+=`
User Id: ${e?.id}
User Name: ${e?.first_name} ${e?.last_name}
User Email: ${e?.email}`),o?.url&&(n+=`
URL: ${o.url}`),o?.body&&(n+=`
Request Body: ${JSON.stringify(o.body,null,4)}`),c&&(n+=`
IP: ${c}`),n+=`
Date: ${a.toDateString()}
========================================`,s.existsSync("./.tmp/error.log")||s.writeFileSync("./.tmp/error.log","","utf-8");let l=s.readFileSync("./.tmp/error.log","utf-8");s.writeFileSync("./.tmp/error.log",n),s.appendFileSync("./.tmp/error.log",`
${l}`)}catch(e){console.log("Server Error Reporting Error:",e.message)}}},57638:(e,r,t)=>{t(29021);let s=t(6061),n=t(48225),o=t(51348),a=t(21339);e.exports=async function({queryString:e,queryValuesArray:r,database:t,tableSchema:c}){let l;let i=!!t?.match(/^datasquirel$/),u=i?o:a;try{l=e&&r&&Array.isArray(r)&&r[0]?i?await u(e,r):await u({paradigm:"Full Access",database:t,queryString:e,queryValues:r}):i?await u(e):await u({paradigm:"Full Access",database:t,queryString:e})}catch(e){n({component:"varDatabaseDbHandler/lines-29-32",message:e.message})}if(l&&c)try{let e=l;return await s({unparsedResults:e,tableSchema:c})}catch(e){return console.log("\x1b[31mvarDatabaseDbHandler ERROR\x1b[0m =>",t,e),n({component:"varDatabaseDbHandler/lines-52-53",message:e.message}),null}else if(l)return l;else return null}},72835:(e,r,t)=>{let{scryptSync:s,createDecipheriv:n}=t(55511),{Buffer:o}=t(79428);e.exports=({encryptedString:e,encryptionKey:r,encryptionSalt:t})=>{if(!e?.match(/./))return console.log("Encrypted string is invalid"),e;let a=r||process.env.DSQL_ENCRYPTION_PASSWORD,c=t||process.env.DSQL_ENCRYPTION_SALT,l=process.env.DSQL_ENCRYPTION_KEY_LENGTH?Number(process.env.DSQL_ENCRYPTION_KEY_LENGTH):24;if(!a?.match(/.{8,}/))return console.log("Decrption key is invalid"),e;if(!c?.match(/.{8,}/))return console.log("Decrption salt is invalid"),e;let i=n("aes-192-cbc",s(a,c,l),o.alloc(16,0));try{let r=i.update(e,"hex","utf8");return r+=i.final("utf8")}catch(r){return console.log("Error in decrypting =>",r.message),e}}},51348:(e,r,t)=>{let s=t(9973),n=t(21580),o=s({config:{host:process.env.DSQL_DB_HOST,user:process.env.DSQL_DB_USERNAME,password:process.env.DSQL_DB_PASSWORD,database:process.env.DSQL_DB_NAME,port:process.env.DSQL_DB_PORT?Number(process.env.DSQL_DB_PORT):void 0,charset:"utf8mb4",ssl:n()}});async function a(...e){try{let r=await o.query(...e);return await o.end(),JSON.parse(JSON.stringify(r))}catch(e){return console.log("DB Error =>",e),{success:!1,error:e.message}}}e.exports=a},21339:(e,r,t)=>{let s=t(29021);t(33873);let n=t(9973),o=t(21580),a=n({config:{host:process.env.DSQL_DB_HOST,user:process.env.DSQL_DB_READ_ONLY_USERNAME,password:process.env.DSQL_DB_READ_ONLY_PASSWORD,charset:"utf8mb4",ssl:o()}});e.exports=function({paradigm:e,database:r,queryString:t,queryValues:c}){try{return new Promise((l,i)=>{let u=!!e?.match(/full.access|^fa$/i);try{function p(e){a.end(),l(JSON.parse(JSON.stringify(e)))}function d(e){a.end(),l({error:e.message,queryStringGenerated:t,queryValuesGenerated:c,sql:e.sql})}a=u?n({config:{host:process.env.DSQL_DB_HOST,user:process.env.DSQL_DB_FULL_ACCESS_USERNAME,password:process.env.DSQL_DB_FULL_ACCESS_PASSWORD,database:r,ssl:o()}}):n({config:{host:process.env.DSQL_DB_HOST,user:process.env.DSQL_DB_READ_ONLY_USERNAME,password:process.env.DSQL_DB_READ_ONLY_PASSWORD,database:r,ssl:o()}}),c&&Array.isArray(c)&&c[0]?a.query(t,c).then(p).catch(d):a.query(t).then(p).catch(d)}catch(e){s.appendFileSync("./.tmp/dbErrorLogs.txt",e.message+"\n"+Date()+"\n\n\n","utf8"),l({error:e.message})}})}catch(e){return{success:!1,error:e.message}}}},21580:(e,r,t)=>{let s=t(29021);e.exports=function(){let e=process.env.DSQL_SSL_DIR;if(!e?.match(/./))return;let r=`${e}/ca-cert.pem`;if(!s.existsSync(r)){console.log(`${r} does not exist`);return}return{ca:s.readFileSync(`${e}/ca-cert.pem`)}}},2706:(e,r)=>{var t;Object.defineProperty(r,"A",{enumerable:!0,get:function(){return t}}),function(e){e.PAGES="PAGES",e.PAGES_API="PAGES_API",e.APP_PAGE="APP_PAGE",e.APP_ROUTE="APP_ROUTE",e.IMAGE="IMAGE"}(t||(t={}))},89947:(e,r,t)=>{e.exports=t(75600)}};var r=require("../../../webpack-api-runtime.js");r.C(e);var t=r(r.s=89496);module.exports=t})();