Added support for file scanning

File scanning support

Author: nagarjun

src/base.ts

@@ -0,0 +1,40 @@
+export class Base {
+  protected readonly API_HOST = 'https://api.nightfall.ai'
+  protected readonly API_KEY: string = ''
+  protected readonly AXIOS_HEADERS: { [key: string]: string | number } = {}
+
+  constructor(apiKey?: string) {
+    if (!apiKey && !process.env.hasOwnProperty('NIGHTFALL_API_KEY')) {
+      throw new Error('Please provide an API Key or configure your key as an environment variable.')
+    }
+
+    this.API_KEY = apiKey || process.env.NIGHTFALL_API_KEY as string
+
+    // Set Axios request headers since we will reuse this quite a lot
+    this.AXIOS_HEADERS = {
+      'Authorization': `Bearer ${this.API_KEY}`,
+      'Content-Type': 'application/json',
+      "User-Agent": "nightfall-nodejs-sdk/1.0.0"
+    }
+  }
+
+  /**
+   * A helpder function to determine whether the error is a generic JavaScript error or a
+   * Nightfall API error.
+   * 
+   * @param error The error object
+   * @returns A boolean that indicates if the error is a Nightfall error
+   */
+  protected isNightfallError(error: any): boolean {
+    if (
+      error.hasOwnProperty('isAxiosError')
+      && error.isAxiosError
+      && error.response.data.hasOwnProperty('code')
+      && error.response.data.hasOwnProperty('message')
+    ) {
+      return true
+    }
+
+    return false
+  }
+}

src/filesScanner.ts

@@ -0,0 +1,131 @@
+import axios, { AxiosResponse } from "axios"
+import fs from 'fs'
+import { Base } from './base'
+import { ScanFile } from './types'
+
+export class FileScanner extends Base {
+  filePath: string
+  fileId: string = ''
+  chunkSize: number = 0
+
+  /**
+   * Create an instance of the FileScanner helper.
+   * 
+   * @param apiKey Your Nightfall API key
+   * @param filePath The path of the file that needs to be scanned
+   */
+  constructor(apiKey: string, filePath: string) {
+    super(apiKey)
+    this.filePath = filePath
+  }
+
+  /**
+   * Reads the file from disk and creates a new file upload session. If this operation
+   * returns successfully, the ID returned as part of the response object shall be used
+   * to refer to the file in all subsequent upload and scanning operations.
+   * 
+   * @returns A promise representing the Nightfall response
+   */
+  async initialize(): Promise<AxiosResponse<ScanFile.InitializeResponse>> {
+    try {
+      // Get the file size and mime type
+      const stats = fs.statSync(this.filePath)
+
+      // Call API
+      const response = await axios.post<ScanFile.InitializeResponse>(
+        `${this.API_HOST}/v3/upload`,
+        {
+          fileSizeBytes: stats.size,
+        },
+        { headers: this.AXIOS_HEADERS },
+      )
+
+      // Save file ID and chunk size
+      this.fileId = response.data.id
+      this.chunkSize = response.data.chunkSize
+
+      return Promise.resolve(response)
+    } catch (error) {
+      return Promise.reject(error)
+    }
+  }
+
+  /**
+   * Read the file, break it up into chunks and upload each chunk.
+   */
+  async uploadChunks() {
+    try {
+      // Read the file in chunks
+      const stream = fs.createReadStream(this.filePath, {
+        highWaterMark: this.chunkSize,
+        encoding: 'utf8'
+      })
+
+      // Upload chunks
+      let uploadOffset = 0
+
+      for await (const chunk of stream) {
+        await axios.patch(`${this.API_HOST}/v3/upload/${this.fileId}`, chunk, {
+          headers: {
+            ...this.AXIOS_HEADERS,
+            'Content-Type': 'application/octet-stream',
+            'X-Upload-Offset': uploadOffset
+          }
+        })
+
+        uploadOffset += this.chunkSize
+      }
+
+      return Promise.resolve()
+    } catch (error) {
+      return Promise.reject(error)
+    }
+  }
+
+  /**
+   * Marks an upload as 'finished' once all the chunks are uploaded.
+   * This step is necessary to begin scanning.
+   * 
+   * @returns A promise representing the API response
+   */
+  async finish(): Promise<AxiosResponse<ScanFile.FinishUploadResponse>> {
+    try {
+      const response = await axios.post<ScanFile.FinishUploadResponse>(
+        `${this.API_HOST}/v3/upload/${this.fileId}/finish`,
+        {},
+        { headers: this.AXIOS_HEADERS }
+      )
+
+      return Promise.resolve(response)
+    } catch (error) {
+      return Promise.reject(error)
+    }
+  }
+
+  /**
+   * Triggers a scan of the uploaded file.
+   * 
+   * @param policy An object containing the scan policy
+   * @param requestMetadata The optional request metadata
+   * @returns A promise representing the API response
+   */
+  async scan(policy: ScanFile.ScanPolicy, requestMetadata?: string): Promise<AxiosResponse<ScanFile.ScanResponse>> {
+    try {
+      // Only send the requestMetadata if provided
+      const data: ScanFile.ScanRequest = { policy }
+      if (requestMetadata) {
+        data.requestMetadata = requestMetadata
+      }
+
+      const response = await axios.post<ScanFile.ScanResponse>(
+        `${this.API_HOST}/v3/upload/${this.fileId}/scan`,
+        data,
+        { headers: this.AXIOS_HEADERS },
+      )
+
+      return Promise.resolve(response)
+    } catch (error) {
+      return Promise.reject(error)
+    }
+  }
+}

src/nightfall.ts

@@ -1,25 +1,20 @@
 import axios, { AxiosError } from 'axios'
-import { NightfallResponse, NightfallError, ScanText } from './types'
-
-export class Nightfall {
-  private readonly API_HOST = 'https://api.nightfall.ai'
-  private readonly API_KEY: string = ''
-  private readonly AXIOS_HEADERS: { [key: string]: string } = {}
+import { Base } from './base'
+import { FileScanner } from './filesScanner'
+import { NightfallResponse, NightfallError, ScanText, ScanFile } from './types'
 
+export class Nightfall extends Base {
   /**
-   * Create an instance of the Nightfall client.
+   * Create an instance of the Nightfall client. Although you can supply
+   * your API key manually when you initiate the client, we recommend that
+   * you configure your API key as an environment variable named
+   * NIGHTFALL_API_KEY. The client automatically reads `process.env.NIGHTFALL_API_KEY`
+   * when you initiate the client like so: `const client = new Nightfall()`.
    * 
    * @param apiKey Your Nightfall API key
    */
-  constructor(apiKey: string) {
-    this.API_KEY = apiKey
-
-    // Set Axios request headers since we will reuse this quite a lot
-    this.AXIOS_HEADERS = {
-      'Authorization': `Bearer ${this.API_KEY}`,
-      'Content-Type': 'application/json',
-      "User-Agent": "nightfall-nodejs-sdk/1.0.0"
-    }
+  constructor(apiKey?: string) {
+    super(apiKey)
   }
 
   /**
@@ -30,7 +25,7 @@ export class Nightfall {
    * 
    * @param payload An array of strings that you would like to scan
    * @param config The configuration to use to scan the payload
-   * @returns A promise object representing the Nightfall response
+   * @returns A promise that contains the API response
    */
   async scanText(payload: string[], config: ScanText.RequestConfig): Promise<NightfallResponse<ScanText.Response>> {
     try {
@@ -54,17 +49,38 @@ export class Nightfall {
   }
 
   /**
-   * A helpder function to determine whether the error is a generic JavaScript error or a
-   * Nightfall API error.
+   * A utility method that wraps the four steps related to uploading and scanning files.
+   * As the underlying file might be arbitrarily large, this scan is conducted
+   * asynchronously. Results from the scan are delivered to the webhook URL provided in
+   * the request.
+   * 
+   * @see https://docs.nightfall.ai/docs/scanning-files
    * 
-   * @param error The error object
-   * @returns A boolean that indicates if the error is a Nightfall error
+   * @param filePath The path of the file that you wish to scan
+   * @param policy An object containing the scan policy
+   * @param requestMetadata Optional - A string containing arbitrary metadata. You may opt to use
+   *                        this to help identify your input file upon receiving a webhook response.
+   *                        Maximum length 10 KB.
+   * @returns A promise that contains the API response
    */
-  private isNightfallError(error: any): boolean {
-    if (error.hasOwnProperty('isAxiosError') && error.isAxiosError && error.response.data.hasOwnProperty('code')) {
-      return true
-    }
+  async scanFile(filePath: string, policy: ScanFile.ScanPolicy, requestMetadata?: string): Promise<NightfallResponse<ScanFile.ScanResponse>> {
+    try {
+      const fileScanner = new FileScanner(this.API_KEY, filePath)
+      await fileScanner.initialize()
+      await fileScanner.uploadChunks()
+      await fileScanner.finish()
+      const response = await fileScanner.scan(policy, requestMetadata)
 
-    return false
+      return Promise.resolve(new NightfallResponse<ScanFile.ScanResponse>(response.data))
+    } catch (error) {
+      if (this.isNightfallError(error)) {
+        const axiosError = error as AxiosError<NightfallError>
+        const errorResponse = new NightfallResponse<ScanFile.ScanResponse>()
+        errorResponse.setError(axiosError.response?.data as NightfallError)
+        return Promise.resolve(errorResponse)
+      }
+
+      return Promise.reject(error)
+    }
   }
 }

src/types/detectors.ts

@@ -75,4 +75,10 @@ export namespace Detector {
     exclusionRules?: ExclusionRule[]
     redactionConfig?: RedactionConfig
   }
+
+  export interface Rule {
+    detectors: Properties[]
+    name: string
+    logicalOp: 'ANY' | 'ALL'
+  }
 }

src/types/index.ts

@@ -1,3 +1,4 @@
 export * from './detectors'
 export * from './global'
-export * from './scanText'
+export * from './scanFile'
+export * from './scanText'

src/types/scanFile.ts

@@ -0,0 +1,33 @@
+import { Detector } from ".";
+
+export namespace ScanFile {
+  export interface ScanRequest {
+    policy: ScanPolicy
+    requestMetadata?: string
+  }
+
+  export interface ScanPolicy {
+    detectionRuleUUIDs?: string[]
+    detectionRules?: Detector.Rule[]
+    webhookURL: string
+  }
+
+  export interface InitializeResponse {
+    id: string
+    fileSizeBytes: number
+    chunkSize: number
+    mimeType: string
+  }
+
+  export interface FinishUploadResponse {
+    id: string,
+    fileSizeBytes: number
+    chunkSize: number
+    mimeType: string
+  }
+
+  export interface ScanResponse {
+    id: string
+    message: string
+  }
+}

src/types/scanText.ts

@@ -3,16 +3,10 @@ import { Detector } from ".";
 export namespace ScanText {
   export interface RequestConfig {
     detectionRuleUUIDs?: string[]
-    detectionRules?: DetectionRule[]
+    detectionRules?: Detector.Rule[]
     contextBytes?: number
   }
 
-  export interface DetectionRule {
-    detectors: Detector.Properties[]
-    name: string
-    logicalOp: 'ANY' | 'ALL'
-  }
-
   export interface Response {
     findings: Finding[][]
     redactedPayload: string[]