Merge pull request #192 from madfish-solutions/TW-1733-evm-integrate-google-auth-for-import-create-wallet-flows-in-extension

TW-1733 Create a proxy for requests to Google API

Author: keshan3262

.env.dist

@@ -13,3 +13,4 @@ ADMIN_PASSWORD=
 TEMPLE_TAP_API_URL=
 EVM_API_URL=
 WERT_API_KEY=
+GOOGLE_DRIVE_API_KEY=

src/config.ts

@@ -15,7 +15,8 @@ export const EnvVars = {
   ADMIN_PASSWORD: getEnv('ADMIN_PASSWORD'),
   TEMPLE_TAP_API_URL: getEnv('TEMPLE_TAP_API_URL'),
   EVM_API_URL: getEnv('EVM_API_URL'),
-  WERT_API_KEY: getEnv('WERT_API_KEY')
+  WERT_API_KEY: getEnv('WERT_API_KEY'),
+  GOOGLE_DRIVE_API_KEY: getEnv('GOOGLE_DRIVE_API_KEY')
 };
 
 for (const name in EnvVars) {

src/index.ts

@@ -21,6 +21,7 @@ import { getParsedContent } from './notifications/utils/get-parsed-content.util'
 import { getPlatforms } from './notifications/utils/get-platforms.util';
 import { redisClient } from './redis';
 import { evmRouter } from './routers/evm';
+import { googleDriveRouter } from './routers/google-drive';
 import { adRulesRouter } from './routers/slise-ad-rules';
 import { templeWalletAdsRouter } from './routers/temple-wallet-ads';
 import { getSigningNonce, tezosSigAuthMiddleware } from './sig-auth';
@@ -350,6 +351,8 @@ app.use('/api/slise-ad-rules', adRulesRouter);
 
 app.use('/api/evm', evmRouter);
 
+app.use('/api/google-drive', googleDriveRouter);
+
 app.use('/api/temple-wallet-ads', templeWalletAdsRouter);
 
 app.post('/api/magic-square-quest/start', async (req, res) => {

src/routers/google-drive.ts

@@ -0,0 +1,92 @@
+import axios, { AxiosRequestHeaders, AxiosResponse } from 'axios';
+import { Router } from 'express';
+import { IncomingHttpHeaders } from 'http';
+import { omit } from 'lodash';
+import { object as objectSchema, mixed as mixedSchema, string as stringSchema } from 'yup';
+
+import { EnvVars } from '../config';
+import { isDefined } from '../utils/helpers';
+import logger from '../utils/logger';
+
+export const googleDriveRouter = Router();
+
+const googleDriveApi = axios.create({
+  baseURL: 'https://www.googleapis.com'
+});
+
+class NotAllowedMethodError extends Error {
+  constructor(message: string) {
+    super(message);
+    this.name = 'NotAllowedMethodError';
+  }
+}
+
+const allowedBodyMethods = ['post', 'patch'];
+const isAllowedBodyMethod = (method: string): method is 'post' | 'patch' => allowedBodyMethods.includes(method);
+const allowedNoBodyMethods = ['get', 'delete'];
+const isAllowedNoBodyMethod = (method: string): method is 'get' | 'delete' => allowedNoBodyMethods.includes(method);
+
+const toAxiosRequestHeaders = (headers: IncomingHttpHeaders): AxiosRequestHeaders => {
+  const axiosHeaders: AxiosRequestHeaders = {};
+  for (const key in headers) {
+    if (key !== 'host') {
+      const value = headers[key];
+      if (value === undefined) continue;
+
+      axiosHeaders[key] = typeof value === 'string' ? value : value.join(', ');
+    }
+  }
+
+  return axiosHeaders;
+};
+
+const wrappedBodySchema = objectSchema({
+  body: mixedSchema(),
+  contentType: stringSchema().required()
+}).required();
+
+googleDriveRouter.use(async (req, res) => {
+  const methodName = req.method.toLowerCase();
+  try {
+    const commonRequestConfig = {
+      params: {
+        ...req.query,
+        key: req.path.startsWith('/oauth2') ? undefined : EnvVars.GOOGLE_DRIVE_API_KEY
+      },
+      headers: omit(toAxiosRequestHeaders(req.headers), 'connection', 'Connection', 'content-length', 'Content-Length')
+    };
+
+    let response: AxiosResponse;
+    if (isAllowedNoBodyMethod(methodName)) {
+      response = await googleDriveApi[methodName](req.path, commonRequestConfig);
+    } else if (isAllowedBodyMethod(methodName)) {
+      const requestConfig = { ...commonRequestConfig };
+      let body = req.body;
+      try {
+        const { body: newBody, contentType } = await wrappedBodySchema.validate(req.body);
+        body = newBody;
+        const headersContentTypeKey = isDefined(req.headers['content-type']) ? 'content-type' : 'Content-Type';
+        requestConfig.headers[headersContentTypeKey] = contentType;
+      } catch {}
+      response = await googleDriveApi[methodName](req.path, body, requestConfig);
+    } else {
+      throw new NotAllowedMethodError('Method Not Allowed');
+    }
+
+    // TODO: add setting headers to response if needed
+    res.status(response.status).send(response.data);
+  } catch (error) {
+    logger.error('Google Drive API error', error);
+
+    if (error instanceof NotAllowedMethodError) {
+      return res.status(405).json({ error: 'Method Not Allowed' });
+    }
+
+    if (axios.isAxiosError(error) && error.response) {
+      // TODO: add setting headers to response if needed
+      res.status(error.response.status).send(error.response.data);
+    } else {
+      res.status(500).json({ error: 'Internal Server Error' });
+    }
+  }
+});