Home Explore Help
Sign In
Track3
/
pocketbase-comment
mirror of https://github.com/Track3/pocketbase-comment.git
1
0
Fork 0
Files Issues 0 Wiki
Branch: legacy
Branches Tags
pocketbase-comm...
/
server.ts

server.ts 4.3 KB
Permalink History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155 
  1. // @deno-types="https://unpkg.com/pocketbase@0.8.3/dist/pocketbase.es.d.ts"
    2. 

  2. import PocketBase from "https://unpkg.com/pocketbase@0.8.3/dist/pocketbase.es.mjs";
    3. 

  3. import { serve } from "https://deno.land/std/http/server.ts";
    4. 

  4. import { Md5 } from "https://deno.land/std@0.160.0/hash/md5.ts";
    5. 

  5. import "https://deno.land/std/dotenv/load.ts";
    6. 

  6. 

  7. const allowOrigin = Deno.env.get("ALLOW_ORIGIN")?.split(",");
    8. 

  8. const webhookUrl = Deno.env.get("WEBHOOK_URL");
    9. 

  9. let allowedOrigin = "*";
    10. 

  10. 

  11. const pb = new PocketBase(Deno.env.get("PB_URL"));
    12. 

  12. const _authData = await pb.collection("users").authWithPassword(
    13. 

  13.   Deno.env.get("PB_USER"),
    14. 

  14.   Deno.env.get("PB_PASSWORD"),
    15. 

  15. );
    16. 

  16. 

  17. // Validate Url
    18. 

  18. const isValidUrl = (url: string) => {
    19. 

  19.   if (url === "") {
    20. 

  20.     return true; // "website" filed is optional
    21. 

  21.   } else {
    22. 

  22.     try {
    23. 

  23.       new URL(url);
    24. 

  24.     } catch (e) {
    25. 

  25.       console.error(e);
    26. 

  26.       return false;
    27. 

  27.     }
    28. 

  28.     return true;
    29. 

  29.   }
    30. 

  30. };
    31. 

  31. 

  32. async function handler(req: Request): Promise<Response> {
    33. 

  33.   const url = new URL(req.url);
    34. 

  34.   // console.log(req.method, url.pathname, "uri:", url.searchParams.get("uri"));
    35. 

  35. 

  36.   const reqestOrigin = req.headers.get("origin");
    37. 

  37.   if (reqestOrigin === null || !allowOrigin.includes(reqestOrigin)) {
    38. 

  38.     return new Response("Request is rejected due to CORS policy.");
    39. 

  39.   } else {
    40. 

  40.     allowedOrigin = reqestOrigin;
    41. 

  41.   }
    42. 

  42. 

  43.   // List comments for a given page uri
    44. 

  44.   if (req.method === "GET" && url.searchParams.get("uri") !== null) {
    45. 

  45.     const resultList = await pb.collection("comments").getFullList(0, {
    46. 

  46.       filter: `uri='${url.searchParams.get("uri")}'`,
    47. 

  47.       sort: "created,-parent",
    48. 

  48.     });
    49. 

  49. 

  50.     const commentlist: {
    51. 

  51.       id: string;
    52. 

  52.       author: string;
    53. 

  53.       avatar: string;
    54. 

  54.       website: string;
    55. 

  55.       content: string;
    56. 

  56.       created: string;
    57. 

  57.       reply: unknown[];
    58. 

  58.     }[] = [];
    59. 

  59. 

  60.     resultList.forEach((item) => {
    61. 

  61.       if (item.parent === "") {
    62. 

  62.         commentlist.push({
    63. 

  63.           id: item.id,
    64. 

  64.           author: item.author,
    65. 

  65.           avatar: new Md5().update(item.email).toString(),
    66. 

  66.           website: item.website,
    67. 

  67.           content: item.content,
    68. 

  68.           created: item.created,
    69. 

  69.           reply: [],
    70. 

  70.         });
    71. 

  71.       } else {
    72. 

  72.         const index = commentlist.findIndex((e) => e.id === item.parent);
    73. 

  73.         commentlist[index].reply.push({
    74. 

  74.           id: item.id,
    75. 

  75.           author: item.author,
    76. 

  76.           avatar: new Md5().update(item.email).toString(),
    77. 

  77.           website: item.website,
    78. 

  78.           content: item.content,
    79. 

  79.           created: item.created,
    80. 

  80.         });
    81. 

  81.       }
    82. 

  82.     });
    83. 

  83. 

  84.     const body = JSON.stringify({
    85. 

  85.       count: resultList.length,
    86. 

  86.       list: commentlist.reverse(),
    87. 

  87.     });
    88. 

  88.     return new Response(body, {
    89. 

  89.       status: 200,
    90. 

  90.       headers: {
    91. 

  91.         "Content-Type": "application/json; charset=UTF-8",
    92. 

  92.         "Access-Control-Allow-Origin": allowedOrigin,
    93. 

  93.       },
    94. 

  94.     });
    95. 

  95.   }
    96. 

  96. 

  97.   // handle new comments
    98. 

  98.   if (req.method === "POST") {
    99. 

  99.     const newComment = await req.json();
    100. 

  100. 

  101.     if (!newComment.author || !newComment.email || !newComment.content) {
    102. 

  102.       return new Response("名字、邮箱、评论内容不能为空");
    103. 

  103.     } else if (!isValidUrl(newComment.website)) {
    104. 

  104.       return new Response("网址格式错误");
    105. 

  105.     } else {
    106. 

  106.       const record = await pb.collection("comments").create({
    107. 

  107.         "uri": newComment.uri,
    108. 

  108.         "author": newComment.author,
    109. 

  109.         "email": newComment.email,
    110. 

  110.         "website": newComment.website,
    111. 

  111.         "content": newComment.content,
    112. 

  112.         "parent": newComment.parent,
    113. 

  113.       });
    114. 

  114. 

  115.       const body = JSON.stringify({
    116. 

  116.         id: record.id,
    117. 

  117.         author: record.author,
    118. 

  118.         avatar: new Md5().update(record.email).toString(),
    119. 

  119.         website: record.website,
    120. 

  120.         content: record.content,
    121. 

  121.         created: record.created,
    122. 

  122.       });
    123. 

  123. 

  124.       if (webhookUrl) {
    125. 

  125.         fetch(webhookUrl, {
    126. 

  126.           method: "POST",
    127. 

  127.           body: body,
    128. 

  128.         });
    129. 

  129.       }
    130. 

  130. 

  131.       return new Response(body, {
    132. 

  132.         status: 200,
    133. 

  133.         headers: {
    134. 

  134.           "Content-Type": "application/json; charset=UTF-8",
    135. 

  135.           "Access-Control-Allow-Origin": allowedOrigin,
    136. 

  136.         },
    137. 

  137.       });
    138. 

  138.     }
    139. 

  139.   }
    140. 

  140. 

  141.   if (req.method === "OPTIONS") {
    142. 

  142.     return new Response(null, {
    143. 

  143.       status: 204,
    144. 

  144.       headers: {
    145. 

  145.         "Access-Control-Allow-Methods": "GET, POST",
    146. 

  146.         "Access-Control-Allow-Origin": allowedOrigin,
    147. 

  147.         "Access-Control-Allow-Headers": "Origin, Referer, Content-Type",
    148. 

  148.       },
    149. 

  149.     });
    150. 

  150.   }
    151. 

  151. 

  152.   return new Response("Bad request!");
    153. 

  153. }
    154. 

  154. 

  155. serve(handler);
    156.