Hynes/Void-Homelab
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
65fd71dc0d846da9a4f1573a8af3a20a541774ad
Void-Homelab/lib/api/index.js
root afc20712cb feat(api): capture POST + upload + SSRF-safe URL fetch 
safe_fetch.js validates URLs before fetch: rejects non-http(s), literal
or DNS-resolved loopback / RFC1918 / link-local / CGNAT / metadata
addresses; follows redirects manually with the same checks on each hop.
Test fixtures gate the check with VOID_INGEST_ALLOW_PRIVATE for offline
fixtures that hit 127.0.0.1.

Co-Authored-By: Claude Opus 4.7 <noreply@anthropic.com>
2026-06-01 03:42:54 +10:00

62 lines
3.0 KiB
JavaScript
Raw Blame History

import { Router } from 'express';
import { agentOrOwner } from './middleware/agent_auth.js';
import { errorMiddleware, NotFoundError } from './errors.js';
import { router as spacesRouter } from './routes/spaces.js';
import { router as projectsRouter, spacesScopedRouter as projectsBySpaceRouter } from './routes/projects.js';
import {
router as tasksRouter,
spacesScopedRouter as tasksBySpaceRouter,
projectsScopedRouter as tasksByProjectRouter
} from './routes/tasks.js';
import { router as pagesRouter, spacesScopedRouter as pagesBySpaceRouter } from './routes/pages.js';
import { router as refsRouter } from './routes/refs.js';
import { router as resourcesRouter, spacesScopedRouter as resourcesBySpaceRouter } from './routes/resources.js';
import { router as sourceDocsRouter, resourcesScopedRouter as sourceDocsByResourceRouter } from './routes/source_docs.js';
import { router as agentsRouter, tokensRouter as agentTokensRouter } from './routes/agents.js';
import { router as conversationsRouter } from './routes/conversations.js';
import { conversationsScopedRouter as messagesByConvRouter } from './routes/messages.js';
import { router as tagsRouter, entityScopedRouter as tagsByEntityRouter } from './routes/tags.js';
import { router as linksRouter } from './routes/links.js';
import { router as pendingChangesRouter } from './routes/pending_changes.js';
import { router as auditRouter } from './routes/audit.js';
import { router as searchRouter } from './routes/search.js';
import { router as jobsRouter } from './routes/jobs.js';
import { router as captureRouter } from './routes/capture.js';
export function mountApi(app) {
const api = Router();
api.use(agentOrOwner);
api.use('/spaces', spacesRouter);
api.use('/spaces/:space_id/projects', projectsBySpaceRouter);
api.use('/spaces/:space_id/tasks', tasksBySpaceRouter);
api.use('/spaces/:space_id/pages', pagesBySpaceRouter);
api.use('/spaces/:space_id/resources', resourcesBySpaceRouter);
api.use('/projects', projectsRouter);
api.use('/projects/:project_id/tasks', tasksByProjectRouter);
api.use('/tasks', tasksRouter);
api.use('/pages', pagesRouter);
api.use('/refs', refsRouter);
api.use('/resources', resourcesRouter);
api.use('/resources/:resource_id/source-docs', sourceDocsByResourceRouter);
api.use('/source-docs', sourceDocsRouter);
api.use('/agents', agentsRouter);
api.use('/agent-tokens', agentTokensRouter);
api.use('/conversations', conversationsRouter);
api.use('/conversations/:conversation_id/messages', messagesByConvRouter);
api.use('/tags', tagsRouter);
api.use('/links', linksRouter);
api.use('/pending-changes', pendingChangesRouter);
api.use('/audit', auditRouter);
api.use('/search', searchRouter);
api.use('/jobs', jobsRouter);
api.use('/capture', captureRouter);
api.use('/:entity_type/:entity_id/tags', tagsByEntityRouter);
api.use((_req, _res, next) => next(new NotFoundError('route not found')));
api.use(errorMiddleware);
app.use('/api', api);
return api;
}
Reference in New Issue View Git Blame Copy Permalink