freeway/src/middleware/withContentClaimsDagula.js at 3262e8a64cc193702a17ce4a4adf659c8c2f6c56 · storacha/freeway · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
import { Dagula } from 'dagula'
import * as BatchingFetcher from '@web3-storage/blob-fetcher/fetcher/batching'
import { HttpError } from 'http-errors'
import { ContentClaimsLocator } from '@web3-storage/gateway-lib'

/**
 * @import {
 *   IpfsUrlContext,
 *   BlockContext,
 *   DagContext,
 *   UnixfsContext,
 *   Middleware,
 * } from '@web3-storage/gateway-lib'
 * @import { LocatorContext } from './withLocator.types.js'
 * @import { Environment } from './withContentClaimsDagula.types.js'
 */

/**
 * Error categories for content claims
 */
const ERROR_TYPES = {
  NOT_FOUND: 'NotFound',
  UNAUTHORIZED: 'Unauthorized',
  RATE_LIMITED: 'RateLimited',
  VALIDATION_ERROR: 'ValidationError',
  INTERNAL_ERROR: 'InternalError'
}

/**
 * Sanitizes error messages for external consumption
 * @param {Error} error - The original error
 * @returns {string} - Sanitized error message
 */
function sanitizeErrorMessage(error) {
  // Remove any internal paths or sensitive info
  return error.message.replace(/\/internal\/.*\//, '[path]/')
    .replace(/key=[\w-]+/, 'key=[redacted]')
}

/**
 * Creates a dagula instance backed by content claims.
 *
 * @type {import('@web3-storage/gateway-lib').Middleware<BlockContext & DagContext & UnixfsContext & IpfsUrlContext, IpfsUrlContext, Environment>}
 */
export function withContentClaimsDagula(handler) {
  return async (request, env, ctx) => {
    const { dataCid } = ctx

    try {
      const locator = ContentClaimsLocator.create({
        serviceURL: env.CONTENT_CLAIMS_SERVICE_URL ? new URL(env.CONTENT_CLAIMS_SERVICE_URL) : undefined,
        retryOptions: {
          retries: 3,
          minTimeout: 1000,
          maxTimeout: 5000
        }
      })

      const locRes = await locator.locate(dataCid.multihash)

      if (locRes.error) {
        const errorType = locRes.error.name || ERROR_TYPES.INTERNAL_ERROR
        console.error(`Content claims error: ${errorType}`, {
          cid: dataCid.toString(),
          error: locRes.error
        })

        switch (errorType) {
          case ERROR_TYPES.NOT_FOUND:
            throw new HttpError('Not Found', { status: 404 })
          case ERROR_TYPES.UNAUTHORIZED:
            throw new HttpError('Unauthorized', { status: 401 })
          case ERROR_TYPES.RATE_LIMITED:
            throw new HttpError('Too Many Requests', { status: 429 })
          case ERROR_TYPES.VALIDATION_ERROR:
            throw new HttpError('Bad Request', { status: 400 })
          default:
            // Log the full error internally but return a sanitized message
            console.error('Internal content claims error:', locRes.error)
            throw new HttpError('Internal Server Error', { status: 500 })
        }
      }

      const fetcher = BatchingFetcher.create(locator)
      const dagula = new Dagula({
        async get(cid) {
          try {
            const res = await fetcher.fetch(cid.multihash)
            return res.ok ? { cid, bytes: await res.ok.bytes() } : undefined
          } catch (error) {
            console.error('Block fetch error:', {
              cid: cid.toString(),
              error: sanitizeErrorMessage(error)
            })
            throw new HttpError('Failed to fetch block', { status: 502 })
          }
        },
        async stream(cid, options) {
          try {
            const res = await fetcher.fetch(cid.multihash, options)
            return res.ok ? res.ok.stream() : undefined
          } catch (error) {
            console.error('Stream error:', {
              cid: cid.toString(),
              error: sanitizeErrorMessage(error)
            })
            throw new HttpError('Failed to stream content', { status: 502 })
          }
        },
        async stat(cid) {
          try {
            const res = await locator.locate(cid.multihash)
            return res.ok ? { size: res.ok.site[0].range.length } : undefined
          } catch (error) {
            console.error('Stat error:', {
              cid: cid.toString(),
              error: sanitizeErrorMessage(error)
            })
            throw new HttpError('Failed to get content stats', { status: 502 })
          }
        }
      })

      return handler(request, env, { ...ctx, blocks: dagula, dag: dagula, unixfs: dagula })
    } catch (error) {
      // Catch any unhandled errors
      console.error('Unhandled content claims error:', {
        cid: dataCid.toString(),
        error: sanitizeErrorMessage(error)
      })
      throw new HttpError('Service Unavailable', { status: 503 })
    }
  }
}