General settings

This sections allows you to configure several general security settings for your Syncplify Server!, grouped into 3 main categories:

• Protector™: allows you to configure various aspects regarding how the Protector™ subsystem operates, together with its automatic block-listing capabilities
• Connections and sessions: allows you to define certain settings and limits regarding how your Server! handles incoming client connections and sessions
• VFS Quotas: allows you to configure the interval between refresh operations to verify (and, if needed, auto-update) the quotas of your virtual file systems (VFS)

Safe/Allow lists

This section allows you to configure your Server!’s Safe-List and Allow-List. It’s very important, for correct server operation, to understand exactly what these lists are, how they work, and how to correctly configure them.

• Safe-List: this is a list of IP addresses and networks (CIDR) that can never be blacklisted by Protector™ regardless of whether or not their activity is suspicious. Please bear in mind that if a client acts suspiciously Protector™ will still kick its session and disconnect it, but if that client IP address is Safe-Listed it will not be automatically added to the Block-List.
• Allow-List: if this list is empty, then no restrictions apply to the source of your client connections; but if there’s even just one IP address or network (CIDR) in this list, then those listed are the only IP addresses and/or networks that clients are allowed to connect to your Server! from. In other words, when not empty this list becomes restrictive and only allows clients to connect from Allow-Listed IP addresses.

General SSH/SFTP settings

This section allows you to configure some basic/general SSH/SFTP/SCP protocol handler settings; here’s a few things you need to know about them:

• Software ID: this field must follow the SSH2 protocol standard requirements for the software identification field
• Welcome message: this is a free text field that will be shown by SSH/SFTP clients that support this functionality (not all of them do); this field supports pre-processor variables
• Open tunnels prevent session timeout: this setting instruct the server to override and completely bypass the session timeout setting if a client has open SSH2 tunnels with/through this server
• Use allocator: pre-allocate memory slices, which results in higher memory usage under small server loads, but may help decrease memory consumption under very high server loads

Advanced SSH/SFTP settings

This section is to be considered for expers only as it allows you to configure aspects of your Syncplify Server!’s SSH2 (SFTP/SCP) protocol handler that require a thorough understanding of the SSH2 protocol standard as defined in its various RFCs. Please do not attempt to modify any of this section’s settings unless you are intimately familiar with such RFCs.

General FTP(E/S) settings

This section allows you to configure various common settings for the FTP(E/S) protocol handler, most of which are fairly intuitive to anyone familiar with the protocol itself.

The settings that might require some clarification are:

• IPs/Networks to be considered LAN: the FTP protocol (and all of its secure variations, like FTPS and FTPES) operate by establishing multiple client-server connections for each session; these connections occur differently depending on whether client and server are in the same network (LAN) or the client is connecting from outside of the router/firewall via the public Internet. It is therefore essential for the server to be able to tell LAN and WAN connections apart, this can be accomplished by explicitly telling the server which IPs and networks are to be considered part of the server’s LAN.
• External IP settings: for the same reaons expressed here above, the FTP(E/S) server must also know what piblic IP address it should report to the client when said client is connected from the public Intenet (and not from the LAN). These may be different based on whether the client is using plain unencrypted FTP or the TLS-encrypted versions of the protocol (FTPS/FTPES) as many routers/firewalls handle them differently.
• Banners: there are 4 banners, one that is sent to the client when it connects, one that is sent upon successful login, one that is sent upon failed login, and one that is sent when the user logs out; all of these fields support pre-processor variables

Advanced FTP(E/S) settings

This section is to be considered for expers only as it allows you to configure aspects of your Syncplify Server!’s FTP(E/S) protocol handler that require a thorough understanding of the FTP protocol standard as defined in its various RFCs.

There are many settings in this section, here’s a brief overview of what each of them means:

• Same IP on PASV: instructs the server to require that each passive (PASV) data connection is performed from the same IP address as its relative control connection
• Same IP on PORT: instructs the server to require that each active (PORT) data connection is performed towards the same IP address as its relative control connection
• Enable PORT: enables active FTP(E/S); this can only work in a LAN or non-routed environment, so keep that in mind when toggling this setting
• Enable HASH: enables the HASH protocol extension, allowing clients to request that the server computes and return a file’s hash code (this can potentially use up a ton of server resources, so be careful with it)
• Enable COMB: enables the COMB protocol extension, allowing clients to request that the server combines two or more files into one
• Enable STAT: enables the STAT standard FTP command on the server
• Enable SYST: enables the SYST standard FTP command on the server
• Enable SITE: enables the SITE standard FTP command on the server
• Enable MLSD: enables the MLSD standard FTP command on the server
• Enable MLST: enables the MLST standard FTP command on the server
• Enable MFMT: enables the MFMT standard FTP command on the server

In addition to these settings here above, this section also allows to configure several technical aspects of the server’s support for TLS encryption security.

General HTTP(S) settings

This section allows you to specify some essential settings for the HTTPS protocol handler, also known as WebClient! sybsystem.

Since plain unencrypted HTTP is not supported (only secure HTTPS is) you will have to define a certificate, and choose which cipher-suites are allowed; by default only strong ones are enabled, but you can further limit them as you see fit.

Furthermore, this is where you define the parameters (TTL, number of auto-refreshes, etc…) for your JWT authentication, keeping in mind that the secret for the full WebClient! (where users log in) and the secret used for sharing files with external people who don’t have a user account in your Syncplify Server! are different, and must be specified separately.

Advanced HTTP(S) settings

Here is where you configure some advanced settings for the HTTPS protocol handler (aka WebClient!). These settings are for experts only, in most cases the default ones are perfectly fine to operate your Syncplify Server! reliably.

These advanced settings are sub-divided in the following categories:

• Security: include some very advanced security settings for expert users who are intimately familiar with the HTTP protocol standard.
• CORS: typical CORS settings that all web servers have, the only one you may want to typically modify is the host name which should correspond to the actual host name your machine is registered with on the DNS.
• Other settings: this is where you define granular and finely-tuned settings, like the rate-limit, the maximum file upload size, the maximum number of files that can be downloaded in a single ZIP archive, the maximum size of data the server will allow to ZIP at once, and your WebClient!’s custom logo and disclaimer.

Password constraints

In this section you can define the minimum length for your users’ passwords, as well as additional (optional) constraints, like - for example - whether or not such password shall include:

• at least 1 uppercase character
• at least 1 lowercase character
• at least 1 numerical digit
• at least 1 special character

Scripts

In this section you can manage your SyncJS scripts. You can create new ones, edit existing ones, or delete the ones you no longer need.

This manual also contains a full and detailed section about the SyncJS language.

Event handlers

The scripts you wrote will not run automagically, you need to define event-handlers to trigger the execution of specific scripts upon occurrence of specific events during a client-server session.

For example you may want to run a certain script when a client connects, or when a user authenticates, or after a file has been uploaded… and so on.

There are dozens of events defined in Syncplify Server! that you can use to trigger the execution of your custom scripts.

Global speed limits

In this sub-section you can defined speed limits that apply globally to your entire Syncplify Server!, regardless of what user is logged in at any given time.

As always, these speed limits can differ based upon the source IP address or network (CIDR) each client connection comes from.

SMTP settings

If your license (software edition) allows scripting and event handling, then you may want your scripts to be able to send out emails. This is where you configure the mail (SMTP) server that your Syncplify Server! will use to send out emails when a script instructs it to do so.

Logging

Syncplify Server! has a pretty flexible logging subsystem. This sub-section allows you to specify its detailed configuration based on the log output you choose.

In general there are 5 possible levels of log detail, each level includes all the levels above it, plus additional information:

• Error: only logs errors, doesn’t even log user activity or client sessions
• Warning: in addition to errors, also logs warnings… but nothing else
• Information: this is the recommended log detail for normal operation, logs errors, warning, as well as users’ activity
• Debug: this level logs all of the above, plus some additional information used for troubleshooting dubious operational scenarios
• Trace: this level logs everything possible, produces a very large output, and should only be used by developers (or when instructed by a Syncplify customer support representative)

Here’s the settings available when you choose to output your logs to stdout:

These, instead, are the settings available when you choose to output your logs to file:

These are the settings available when you choose to output your logs to database:

And these are the settings available when you choose to output your logs to syslog:

SSL/TLS Certificates

This sub-section allows you to manage, import, create, and request your Server!’s X.509 certificates.

The main sub-section is where you do most of the work: generate self-signed certificates, import self-signed or CA-issued ones, or export any certificate you already have.

The CSR sub-section is where you can create your CSR (and private key) that you will send to a Certification Authority (CA) so that they can issue an official X.509 certificate for you.

SSH Host Keys

This sub-section allows you to define, create and import/export your SSH2/SFTP/SCP protocol handler’s host keys.

Dynamic "banners"

Some protocols feature so-called “banners”, which are short pieces of textual information that is sent to the client upon occurrence of certain events.

For example, the SSH2 protocol can send one such banner upon successful user authentication.

The FTP protocol has a richer set of banners: one that can be sent to the client upon connection (before authentication), one upon successful login, once upon failed login, and once when the user logs out.

All of these banners can be crafted by the Syncplify Server! Administrator to be dynamically built at run-time, using certain variables, at the exact time they are sent to each client. All of these variables must be enclosed between double curly braces.

For example, the following banner configured in the Admin UI:

{{software_name}} v{{software_ver}} FTP(E/S) Service Ready

will be sent to the client like this:

Syncplify Server! v6.0.8 FTP(E/S) Service Ready

So, what are the variable names that you can use? And what do they mean?

EventHandler()

function EventHandler(): string;

This function returns the name of the event-handler that triggered the execution of the script currently being run.

Example

{
  var evth = EventHandler();
  Log(evth); // will log (for example): AfterFileUpload
}

ScriptID()

function ScriptID(): string;

This function returns the ID of the script currently being run.

Example

{
  var sid = ScriptID();
  Log(sid); // will log (for example): 8f56234fwerg425yg873
}

ScriptName()

function ScriptName(): string;

This function returns the name (short description) of the script currently being run.

Example

{
  var snam = ScriptName();
  Log(snam); // will log (for example): Send email notification
}

HandlerPriority()

function HandlerPriority(): number;

This function returns the priority of the event-handler that triggered the execution of the script currently being run.

Example

{
  var hpri = HandlerPriority();
  Log(hpri); // will log (for example): 10
}

ExecutionTimeout()

function ExecutionTimeout(): number;

This function returns the pre-set (by configuration) execution timeout in seconds for the script currently being run.

Please note that if you set the timeout to 0 (zero) which means that the script can run indefinitely, in order to avoid dead-loops the software will still internally force this timeout equal to 9999999 seconds (~115 days).

Example

{
  var hpri = ExecutionTimeout();
  Log(hpri); // will log (for example): 30
}

SecondsLeft()

function SecondsLeft(): number;

This function returns the number of seconds left in the execution loop for the current script; this is a floating point value indicating the number of seconds and fractions of second left.

Example

{
  // let's hypothesize we have roughly just about 29 and a half seconds left to run this script
  var sleft = SecondsLeft();
  Log(sleft); // will log (for example): 29.56437
}

GetID()

// in class: Session
function GetID() string;

Retrieves the current session’s ID, which is a unique ID in string format.

Example

{
  var sid = Session.GetID()
  // sid will contain a string like "prDqzL4V5jkauJZP9Nmt2e"
}

GetUser()

// in class: Session
function GetUser() User;

This function returns a pointer to an object that represents the authenticated User, if any, for the current session.

Example

{
  var user = Session.GetUser();
  if (user !== null) {
    // we have a valid User object, so we can use it here...
  }
}

Certain event-handlers can only be triggered by conditions that can never happen without an authenticated user. Think about AfterFileUpload for example: it runs a script after a file has been uploaded, and no upload can ever occur unless a user has already authenticated. So, when the script is run by one of these event-handlers, the developer may skip the null-check.

GetCurrentVFS()

// in class: Session
function GetCurrentVFS(): VFS;

This function returns a pointer to an object that represents the current Virtual File System (VFS), if any, for the current session.

Example

{
  var vfs = Session.GetCurrentVFS();
  if (vfs !== null) {
    // we have a valid VFS object, so we can use it here...
  }
}

Certain event-handlers can only be triggered by conditions that can never happen without an active/selected VFS. Think about AfterFileUpload for example: it runs a script after a file has been uploaded, and no upload can ever occur unless a VFS has already been selected during a file-transfer session. So, when the script is run by one of these event-handlers, the developer may skip the null-check.

GetVirtualSite()

// in class: Session
function GetVirtualSite(): string;

This function returns the ID of the virtual site in which context the session is running.

Example

{
  var vSiteId = Session.GetVirtualSite();
  Log('Virtual site is: ' + vSiteId);
}

GetRemoteAddress()

// in class: Session
function GetRemoteAddress(): string;

This function returns the remote (client) IP address. In case of a reverse-proxed environment the software will make a best-effort to return the actual client IP address, but when this is not possible the IP address of the reverse-proxy will be returned instead.

Example

{
  var clientIP = Session.GetRemoteAddress();
  Log('Client IP is: ' + clientIP);  // ex: 192.168.99.10 or fe80::a117:3373:7fa5:177c
}

GetClientVersion()

// in class: Session
function GetClientVersion(): string;

This function returns the client software and version, if available.

Example

{
  var client = Session.GetClientVersion();
  Log('Client software is: ' + client);  // ex: WinSCP_5.10.12
}

GetProtocol()

// in class: Session
function GetProtocol(): string;

This function returns the current protocol the ongoing client-server communication is using.

Example

{
  var proto = Session.GetProtocol();
  Log('Protocol is: ' + proto);  // ex: ssh_sftp
}

GetStartTime()

// in class: Session
function GetStartTime(): Date;

This function returns the start-time as a JavaScript Date object.

Example

{
  var ts = Session.GetStartTime();
  Log('Session started on: ' + ts.toString());
}

GetLastActivity()

// in class: Session
function GetLastActivity(): Date;

This function returns the timestamp of the last client-server activity (interaction) as a JavaScript Date object.

Example

{
  var ts = Session.GetLastActivity();
  Log('Last activity in this session occurred on: ' + ts.toString());
}

BlockOperation()

// in class: Session
function BlockOperation();

At any point in a script, invoked by any event-hanlder, a call to this Session method will instruct the server (virtual site worker process) to block the next operation, whatever that operation is.

A few examples (but truly this list could go on forever):

• Block a directory list operation (in the OnDirList event-handler)
• Block a file upload (in the BeforeFileUpload event-handler)
• Block a certain type of authentication (in the OnAuthRequest event-hanlder)
• …and so on

AddCustomData()

// in class: Session
function AddCustomData(s: string);

This function adds a custom piece of information (in string format) to the Session’s custom data storage. This is basically a list of string values that the Session object provides in order for Syncplify’s scripting engine to be able to store temporary information in one event-handler that can later on be retrieved from a different script running within the context of a different event-handler.

In a nutshell it’s a clever way for different scripts and event-handlers to pass data to each other down the chain.

Example

{
  // Store the name of the file being uploaded for later use
  Session.AddCustomData(Session.GetRelPath());
}

GetCustomData()

// in class: Session
function GetCustomData(idx: number): string;

This function retrieves (by index) a piece of custom data information previously stored via the AddCustomData function.

Example

{
  var cd = Session.GetCustomData(9);
  Log(cd);
}

GetAllCustomData()

// in class: Session
function GetAllCustomData(): string[];

This function retrieves all of the custom data information previously stored via the AddCustomData function. The returned custom data is in the form of an array of strings.

Example

{
  var cd = Session.GetAllCustomData();
  for (let i = 0; i < cd.length; i++) {
    Log(cd[i]);
  }
}

AddQuestion()

// in class: Session
function AddQuestion(pos: number, q, a: string, echo: boolean): void;

This function adds a custom question with a precise pre-defined answer to the list of questions that will be asked during keyboard-interactive authentication.

The parameters are as follows:

Example

{
  // First, ask for the user's password
  Session.AddQuestionPassword(0, 'Type your password:');
  // Next, ask for Google Authenticator OTP (for 2FA/MFA)
  Session.AddQuestionTOTP(1, 'Type your Authenticator OTP:');
  // Then ask for any question we want
  Session.AddQuestion(2, 'Life, the Universe and Everything:', 42, true);
}

AddQuestionPassword()

// in class: Session
function AddQuestionPassword(pos: number, q: string): void;

This function adds a question to the list of questions that will be asked during keyboard-interactive authentication, specifically to ask for the user to provide their account password (the same one defined for password authentication).

The parameters are as follows:

Example

{
  // First, ask for the user's password
  Session.AddQuestionPassword(0, 'Type your password:');
  // Next, ask for Google Authenticator OTP (for 2FA/MFA)
  Session.AddQuestionTOTP(1, 'Type your Authenticator OTP:');
  // Then ask for any question we want
  Session.AddQuestion(2, 'Life, the Universe and Everything:', 42, true);
}

AddQuestionTOTP()

// in class: Session
function AddQuestionTOTP(pos: number, q: string): void;

This function adds a question to the list of questions that will be asked during keyboard-interactive authentication, specifically to ask for the user TOTP (time-based one time password) generated by Google Authenticator. To be able to provide this TOTP, clearly, the user must already be enrolled in 2FA/MFA via WebClient!

The parameters are as follows:

Example

{
  // First, ask for the user's password
  Session.AddQuestionPassword(0, 'Type your password:');
  // Next, ask for Google Authenticator OTP (for 2FA/MFA)
  Session.AddQuestionTOTP(1, 'Type your Authenticator OTP:');
  // Then ask for any question we want
  Session.AddQuestion(2, 'Life, the Universe and Everything:', 42, true);
}

AuthenticateUserFromScript()

// in class: Session
function AuthenticateUserFromScript(): void;

This function forcefully authenticates a user from within a script. Even if the user has failed authentication, typed the wrong password, had the wrong key… this function will force a successful authentication.

GetAbsPath()

// in class: Session
function GetAbsPath(): string;

This function returns the absolute path of the last file operation as pointed to by the current VFS.

Example

{
  // Let's say the current VFS is of type `Disk` and has its root in `C:\SFTPData`
  // and the last file operation occurred on file `/docs/resume.pdf`
  var ap = Session.GetAbsPath();
  Log(ap); // Will log `C:\SFTPData\docs\resume.pdf`
}

GetAbsTargetPath()

// in class: Session
function GetAbsTargetPath(): string;

This function returns the absolute path of the target file in the last file operation as pointed to by the current VFS.

So what is a target file? Only copy/rename/move operations have a source and a target path. For example, if you move file /docs/resume.pdf to /archive/oldresume.pdf then the target path is /archive/oldresume.pdf.

Example

{
  // Let's say the current VFS is of type `Disk` and has its root in `C:\SFTPData`
  // and the last file operation was a move of a file from `/docs/resume.pdf`
  // to `/archive/oldresume.pdf`, then...
  var atp = Session.GetAbsTargetPath();
  Log(atp); // Will log `C:\SFTPData\archive\oldresume.pdf`
}

GetRelPath()

// in class: Session
function GetRelPath(): string;

This function returns the relative VFS-root-based path of the last file operation as pointed to by the current VFS.

Example

{
  // Let's say the last file operation occurred on file `/docs/resume.pdf`
  var rp = Session.GetRelPath();
  Log(rp); // Will log `/docs/resume.pdf`
}

GetRelTargetPath()

// in class: Session
function GetRelTargetPath(): string;

This function returns the relative VFS-root-based path of the target file in the last file operation as pointed to by the current VFS.

So what is a target file? Only copy/rename/move operations have a source and a target path. For example, if you move file /docs/resume.pdf to /archive/oldresume.pdf then the target path is /archive/oldresume.pdf.

Example

{
  // Let's say the last file operation was a move of a file from `/docs/resume.pdf`
  // to `/archive/oldresume.pdf`, then...
  var rtp = Session.GetRelTargetPath();
  Log(rtp); // Will log `/archive/oldresume.pdf`
}

RemoveFromDirList()

// in class: Session
function RemoveFromDirList(what: string): string;

This function removes the specified items from a directory list that’s about to be returned to the client.

Example

{
  // Let's remove a specific file from the directory list
  Session.RemoveFromDirList('resume.pdf');
  // Let's also remove all .png files from the directory list
  Session.RemoveFromDirList('*.png');
}

GetLastCommand()

// in class: Session
function GetLastCommand(): string;

This function returns the last command (in full) that was issued by the client and correctly received and handled by the server.

Example

{
  // Let's say the last command the client sent and was successfully carried out
  // by the server was a list of the archive directory (LIST /archive)
  var lc = Session.GetLastCommand();
  Log(lc); // Will log `LIST /archive`
}

GetLastCommandTime()

// in class: Session
function GetLastCommandTime(): Date;

This function returns the timestamp of the last command that was issued by the client and correctly received and handled by the server, as a JavaScript Date object.

Example

{
  var lct = Session.GetLastCommandTime();
  Log(lct.toString()); // Will log something like `Sat Mar 18 2023 06:12:38 GMT-0700`
}

GetLastError()

// in class: Session
function GetLastError(): string;

This function returns the last error encountered by the server during the operation of the current session.

Example

{
  var lc = Session.GetLastCommand();
  var le = Session.GetLastError();
  Log(lc + '-' + le); // Log command and error (ex: `GET /file.zip - Error 5: access denied`)
}

GetLastErrorTime()

// in class: Session
function GetLastErrorTime(): Date;

This function returns the timestamp of the last command that was issued by the client and caused an error in the server, as a JavaScript Date object.

Example

{
  var lerrt = Session.GetLastErrorTime();
  Log(lerrt.toString()); // Will log something like `Sat Mar 18 2023 06:12:38 GMT-0700`
}

GetID()

var userId = User.GetID();

This method, defined on the User object, returns the user’s ID, which is its full username.

Example

{
  var user = Session.GetUser();
  if (user !== null) {
    var id = user.GetID();
    Log(id); // will log the user's ID, which is the full username
  }
}

Directory list items

type DirListItem = {
  Name:      string;    // fully qualified path and file name (ex: "/docs/resume.docx")
  Type:      string;    // "FILE" or "DIR"
  Size:      number;    // the file size (integer)
  TimeStamp: time.Time; // timestamp of the item, can be converted to a JS `Date()` object via ToDate()
}

All functions that return directory lists always return an array of DirListItem objects.

Once a resulting array has been obtained, you can use the typical JavaScript ways to iterate over it, and check the various property of each one of its items.

Example 1

One way to iterate over a directory list, using a for cycle:

{
  // ...  
  // Acquire directory list
  var dirList = cli.ListDir('/docs');
  // Log each item in the list
  for (var i = 0; i < dirList.length; i++) {
    Log(dirList[i].Name);
  }
  // ...
}

Example 2

A different way to iterate over a directory list, using forEach:

{
  // ...  
  // Acquire directory list
  var dirList = cli.ListDir('/docs');
  // Log each item in the list
  dirList.forEach(myFunction);
    function myFunction(item, index, array) {
      Log(item.Name + ' [' + item.Size + ' bytes] [' + item.Type + ']');
    }
  }
  // ...
}

ListDir (list directory)

function ListDir(what, mask: string): DirListItem[];

The ListDir function lists the contents of a directory in the local file system, and returns the results in a JavaScript array of DirListItem objects.

This function accepts either 1 or 2 parameters:

Example

{
  // ...  
  // Acquire directory list
  var dirList = cli.ListDir('/docs');
  // Log each item in the list
  for (var i = 0; i < dirList.length; i++) {
    Log(dirList[i].Name);
  }
  // ...
}

Example (with mask parameter)

{
  // ...  
  // Acquire directory list
  var dirList = cli.ListDir('/docs', '*.docx'); // only list *.docx files
  // Log each item in the list
  for (var i = 0; i < dirList.length; i++) {
    Log(dirList[i].Name);
  }
  // ...
}

ListDirR (recursive ListDir)

function ListDirR(what, mask: string): DirListItem[];

The ListDirR function lists the contents of a directory in the local file system, recursively incluiding the contents of all of its subdirectories, and returns the results in a JavaScript array of DirListItem objects.

This function accepts either 1 or 2 parameters:

Example

{
  // ...  
  // Acquire directory list
  var dirList = cli.ListDirR('/docs');
  // Log each item in the list
  for (var i = 0; i < dirList.length; i++) {
    Log(dirList[i].Name);
  }
  // ...
}

Example (with mask parameter)

{
  // ...  
  // Acquire directory list
  var dirList = cli.ListDirR('/docs', '*.docx'); // only list *.docx files, including those in subfolders
  // Log each item in the list
  for (var i = 0; i < dirList.length; i++) {
    Log(dirList[i].Name);
  }
  // ...
}

CopyFile (copy a file)

function CopyFile(what, toWhere: string): boolean;

This function copies the what file to the toWhere destination directory in the local file system, and returns true if the copy is successful, or false if the copy fails.

This function accepts the following parameters:

Possible return values:

MoveFile (move/rename a file)

function MoveFile(what, toWhere: string): boolean;

This function moves or renames the what file to the toWhere destination path in the local file system, and returns true if the operation is successful, or false if it fails.

This function accepts the following parameters:

Possible return values:

DelFile (delete a file)

function DelFile(what: string): boolean;

This function tries to delete the what file from a local file system, and returns true if the operation is successful, or false if it fails.

This function accepts the following parameters:

Possible return values:

SecureErase (delete file)

function SecureErase(what: string, passes: number): boolean;

This function tries to delete the what file from the local file-system using a secure erasure algorithm. This means that the file will be overwritten with crypto-secure pseudo-random data before it’s actually deleted from the storage medium, in order to make it unrecoverable. For this reason, depending on the size of the file, this function may take a while to complete.

The second parameter passes is optional, and specifies how many times the file needs to be overwritten with crypto-secure pseudo-random data before the actual deletion occurs. If left unspecified, the file will be overwritten only once and then deleted.

This function accepts the following parameters:

Possible return values:

Example (Windows file system, no optional parameter)

{
  if (SecureErase('C:\\Data\\SomeFile.docx')) {
    // ...
  }
}

Example (Linux file system, with optional parameter)

{
  if (SecureErase('/home/someuser/data/SomeFile.pdf')) {
    // ...
  }
}

MakeDir (create a directory)

function MakeDir(what: string): boolean;

This function attempts to create the what directory in the local file-system, and returns true if the creation is successful, or false if the function fails.

This function accepts the following parameters:

Possible return values:

DelDir (delete a directory)

function DelDir(what: string): boolean;

This function attempts to delete the what directory in the local file-system, and returns true if the deleteion is successful, or false if the function fails.

This function accepts the following parameters:

Possible return values:

DelTree (delete directory-tree)

function DelTree(what: string): boolean;

This function attempts to delete the what directory in the local file-system and all of the files and subdirectories in it, and returns true if the deleteion is successful, or false if the function fails.

This function accepts the following parameters:

Possible return values:

ReadTextFile (read a text file)

function ReadTextFile(what: string): string;

This function reads the what text file and returns its entire contents as a string. If the file doesn’t exist or if the operating system returns an I/O error, this function returns an empty string.

This function accepts the following parameters:

Return value:

ReadFileAsHex (read file bytes)

function ReadFileAsHex(what: string; offset, count: number): string;

This function reads count bytes, starting at offset position, from what file. The read bytes are returned as a hexadecimal (base16-encoded) string.

This function accepts the following parameters:

Return value:

Write text to file (2 ways)

SyncJS actually does offer 2 distinct functions to write text to file:

function AppendTextToFile(filename, text: string): boolean;
function WriteTextToFile(filename, text: string): boolean;

Both of these functions write text to a file and return true if the operation was successful, otherwise they return false. Also, both functions automatically create the file if it doesn’t exist.

The main difference is that the AppendTextToFile function will append text at the end of a file (if it exists) whereas the WriteTextToFile will overwrite whatever contents are already in a file with the specified text, and all pre-existing file content will be lost.

Both functions support escaped strings, so, for example, if you want to write a sentence and then a NEWLINE special control character, you can simply add \n to the text to be written to file. String escaping follows this convention.

This function accepts the following parameters:

Possible return values:

Example

{
  AppendTextFile('/home/someuser/docs/somefile.txt', 'Hello world!\n');
}

Zip (compress files)

function Zip(what, zipArchive, password: string): boolean;

The Zip function creates a compressed (zip) archive with the files that are passed to it in the what argument (supports wildcards). If the destination zip archive already exists it will be overwritten and replaced.

This function accepts the following parameters:

Possible return values:

Example

{
  Zip('./documents/*.docx', './archives/dox.zip');
}

FileType (identify MIME-type)

function FileType(filename: string): string;

Most file types can be identified regardless of the file name or extension, by simply reading the first 261 bytes (at most) of the file itself. Since there is no need to read the whole file, this process is extremely quick even for very large files, and doesn’t waste any RAM.

This function accepts the following parameters:

This function returns a string containing the MIME-Type of the file, if it is identified. Here’s a list of file types that this function can identify:

StatFileSystemObject (file/dir)

function StatFileSystemObject(what: string): DirListItem;

This function returns the stat information for the what file/directory in the local file-system. If the object doesn’t exist the returned information contains an empty/blank DirListItem record.

This function accepts the following parameters:

Example return value:

{
  "Name": "testfile.txt",
  "Type": "FILE",
  "Size": 1777,
  "TimeStamp": 1683729626897 // use ToDate() to convert this to a JS Date() object if needed
}

HashFile (file hashing)

function HashFile(hashType, fileName: string): string;

The HashFile function computes the hash value of a file. The hash value is returned as a string.

This function accepts the following parameters:

Example

{
  var h = HashFile('sha256', './documents/resume.pdf');
  // if the file exists and the hashType is valid, h will contain the hash value of the file
}

Configuration methods

Before you call any of the http/https verbs to actually make the HttpCli do something, you must first create the object and configure it according to what you actually intend it to do. This means, for example, specifying the URL you want to call, or the request body you want to send to such URL, or even a timeout past which you want this call to give up.

The HttpCli object is quite flexible in these regards; let’s assume you’ve created your object like this:

{
  // create HttpCli object, let's call it "hc"
  var hc = new HttpCli();
  // time to configure our "hc" object...
  // ...
  // ...
}

Then, all the configuration methods are as follows:

Url

hc.Url(fullyQualifiedUrl: string): HttpCli;

This configuration is mandatory, every time you want to perform an http/https call, you have to set the URL property, which is the full address of the web resource you’re addressing your call to (ex: hc.Url("https://www.example.com")). Calling this method more than once will substitute the previous URL, so only the most recent call to .Url() will be considered.

Accept

hc.Accept(contentType: string): HttpCli;

You may set this configuration if you want your HttpCli to only accept from the server a response that has a certain MIME-type. Calling with method more than once will substitute the previous value of Accept, so only the most recent call to .Accpet() will be considered.

ApiKey

hc.ApiKey(yourApiKey: string): HttpCli;

If the server requires an API Key to serve a certain resource, you may specify such API Key using this method. Calling with method more than once will substitute the previous value of ApiKey, so only the most recent call to .ApiKey() will be considered.

BasicAuth

hc.BasicAuth(username, password: string): HttpCli;

If the server requires basic authentication to serve a certain resource, you may specify username and password using this method. Calling with method more than once will substitute the previous value of BasicAuth, so only the most recent call to .BasicAuth() will be considered.

Bearer

hc.Bearer(bearerToken: string): HttpCli;

If the server requires a Bearer Token to serve a certain resource, you may specify such Bearer Token using this method. Calling with method more than once will substitute the previous value of the Bearer Token, so only the most recent call to .Bearer() will be considered.

FormField

hc.FormField(fieldName, fieldValue: string): HttpCli;

If you want to send your request body with a multipart/form in it (typical with POST request), you may call this method to add a form field and its value to the request body payload. This call is additive, so you can call .FormField() multiple times to add multiple form fields and values.

Header

hc.Header(headerName, headerValue: string): HttpCli;

If you want to send your http/https request with additional headers in it, you may call this method to add a header and its value to the request itself before it is sent to the server. This call is additive, so you can call .Header() multiple times to add multiple headers to the outgoing http/https call.

InsecureSkipVerify

hc.InsecureSkipVerify(): HttpCli;

Adding .InsecureSkipVerify() to your object configuration instructs the client to accept any server certificate, even self-signed ones, when performing https:// requests.

ReqBody

hc.ReqBody(body: string): HttpCli;

This method allows you to specify the raw body payload to be sent with this request; if the string you pass to it is recognized as a valid JSON structure, the HttpCli object will also automatically add/set the Content-Type header to application/json. Calling with method more than once will substitute the previous body payload, so only the most recent call to .ReqBody() will be considered.

Timeout

hc.Timeout(seconds: number): HttpCli;

This simply sets a timeout past which HttpCli will give up if it hasn’t received a response from the server yet. Calling with method more than once will substitute the previous timeout value, so only the most recent call to .Timeout() will be considered.

UserAgent

hc.UserAgent(softwareId: string): HttpCli;

This method allows you to set a custom User-Agent for your http/https call. Calling with method more than once will substitute the previous user agent value, so only the most recent call to .UserAgent() will be considered.

HTTP/HTTPS verbs

The HTTP(S) protocol defines the following “verbs” (that typically all web servers honor, although restrictions may apply because of security configurations): GET, POST, PUT, PATCH, DELETE, HEAD.

AFT!’s HttpCli object, therefore, has a method for each one of the above verbs, plus one extra method to allow you to send custom verbs to web servers that may be custom-built to support them. Every call to a “verb” method produces a response of type HttpRes.

.Get(): HttpRes
.Post(): HttpRes
.Put(): HttpRes
.Patch(): HttpRes
.Delete(): HttpRes
.Head(): HttpRes
.Do(customVerb: string): HttpRes

In order to make the best use of the HttpCli object, it’s important to understand the structure of its HttpRes response object.

Here’s a few examples of valid usages of HttpCli’s verb methods:

Example #1 (a simple GET)

{
  var hc = new HttpCli();
  var res = hc.Url("https://www.example.com").Timeout(30).Get();
  if (res.IsValid() && (res.StatusCode() == 200)) {
    Log(res.BodyAsString());
  }
}

Example #2 (POST with JSON payload)

{
  var hc = new HttpCli();
  var res = hc.Url("https://www.some.host").Timeout(30).ReqBody('{"name":"John","age":42}').Post();
  if (res.IsValid() && (res.StatusCode() == 201)) {
    Log('Success!');
  }
}

Example #3 (custom verb)

{
  var hc = new HttpCli();
  // Let's pretend your custom web server supports a "HELLO" verb
  var res = hc.Url("https://www.your.host").Timeout(30).Do("HELLO");
  if (res.IsValid() && (res.StatusCode() == 200)) {
    Log(res.BodyAsString());
  }
}

HttpRes response object

Every time an HttpCli verb method is called, it will produce an HttpRes object as a result.

Let’s consider the following simple script as an example:

{
  var hc = new HttpCli();
  var res = hc.Url("https://www.example.com").Timeout(30).Get();
  // "res" here above is an HttpRes object with its own methods
}

Following the example here above, the res object returned by the .Get() call will have the following methods:

IsValid

res.IsValid(): boolean;

This method simply returns true if the http/https call was completed, or false otherwise (for example, if the call times out).

StatusCode

res.StatusCode(): number;

This method returns the status code resulting from the http/https call, for example if everything went well a .Get() request will probably return 200, while a .Post() request will likely return 201. Other common and well-known codes are 403 (unauthorized), 404 (not found), and 500 (internal server error). Learn more about HTTP status codes.

BodyAsString

res.BodyAsString(): string;

This method returns the body of the response as a string (useful when the body is a web page or a JSON object for example).

BodyAsBytes

res.BodyAsBytes(): []number;

This method returns the body of the response as an array of bytes (useful when the body is a binary object, like an image for example).

BodySaveToFile

res.BodySaveToFile(filePath: string): boolean;

This method saves the body of the response to a file which fully-qualified path is passed as an argument (ex: /downloads/budget.csv).

ContentType

res.ContentType(): string;

This method returns a string containing the MIME Content-Type as reported by the server.

ContentLength

res.ContentLength(): number;

This method returns the Content-Length as reported by the server (some servers and CDNs fail to report this).

Encoding

res.Encoding(): string;

This method returns the Content-Transfer-Encoding as reported by the server (this also may be missing in some cases).

Headers

res.Headers(): object;

This method returns a single JSON object in which each property represents one response header. Example:

{
  "Cache-Control": "max-age=604800",
  "Content-Type": "text/html; charset=UTF-8",
  "Date": "Sun, 30 Aug 2020 16:24:06 GMT",
  "X-Cache": "HIT",
  "Age": "512004",
  "Etag": "\"3147526947+gzip\"",
  "Expires": "Sun, 06 Sep 2020 16:24:06 GMT",
  "Server": "ECS (sjc/4E76)",
  "Last-Modified": "Thu, 17 Oct 2019 07:18:26 GMT",
  "Vary": "Accept-Encoding"
}

Cookies

res.Cookies(): []object

This method returns an array of JSON object, in which each object represents a cookie returned by the web server in this response. For example, Google returns an array of cookies like this one:

[
  {
    "Name": "1P_JAR",
    "Value": "2020-08-30-16",
    "Path": "/",
    "Domain": ".google.com",
    "Expires": "2020-09-29T16:32:11Z",
    "RawExpires": "Tue, 29-Sep-2020 16:32:11 GMT",
    "MaxAge": 0,
    "Secure": true,
    "HttpOnly": false,
    "SameSite": 0,
    "Raw": "1P_JAR=2020-08-30-16; expires=Tue, 29-Sep-2020 16:32:11 GMT; path=/; domain=.google.com; Secure",
    "Unparsed": []
  },
  {
    "Name": "NID",
    "Value": "204=EHXBqKVUuskC5fcv3UnbLPB7oN0LU-nTODKDhuvBF5WzonZJToiwoBK12N7gr3Pycq8jCZDNS6PW9SV57GtIeCYw488",
    "Path": "/",
    "Domain": ".google.com",
    "Expires": "2021-03-01T16:32:11Z",
    "RawExpires": "Mon, 01-Mar-2021 16:32:11 GMT",
    "MaxAge": 0,
    "Secure": false,
    "HttpOnly": true,
    "SameSite": 0,
    "Raw": "NID=204=EHXBqKVUuskC5fcv3UnbLPB7oN0LU-nTODKDhuvBF5WzonZJToiwoBK12N7gr3Pycq8jCZDNS6PW9SV57GtIeCYw488; expires=Mon, 01-Mar-2021 16:32:11 GMT; path=/; domain=.google.com; HttpOnly",
    "Unparsed": []
  }
]

Supported database servers

Here’s a list of database servers supported by the SqlCli object, with their respective driver names next to them:

Configuring SqlCli

In order for an SqlCli client object to be able to connect and interact with a SQL database, the object needs to be configured first. Essentially, it needs to know two things:

• A “driver” (to know which database to connect to)
• A “connection string” (to connect and access the database)

The driver is specified via the Driver() configuration function, while the connection string is configured via the ConnString() configuration function.

A list of drivers is available in this manual. For each one of such drivers, here below we’re going to document how to build a proper/suitable connection string.

Driver: “n1ql” (Couchbase)

When using the n1ql driver, the connection string can either be the host name (or IP address) and port of a standalone Couchbase instance, or the URL of a Couchbase cluster.

Example of standalone Couchbase connection:

{
  var cli = new SqlCli();
  cli.Driver("n1ql");
  cli.ConnString("localhost:8093");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Example of connecting to a Couchbase cluster:

{
  var cli = new SqlCli();
  cli.Driver("n1ql");
  cli.ConnString("http://localhost:9000/");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Driver: “firebirdsql” (FirebirdSQL)

When using the firebirdsql driver, the connection string must be in the following format:

user:password@servername/foo/bar.fdb

Example of standalone FirebirdSQL connection:

{
  var cli = new SqlCli();
  cli.Driver("firebirdsql");
  cli.ConnString("user:password@servername/foo/bar.fdb");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Driver: “bigquery” (Google BigQuery)

When using the bigquery driver, the connection string must be in the following format:

bigquery://projectid/location/dataset

Example of standalone BigQuery connection:

{
  var cli = new SqlCli();
  cli.Driver("bigquery");
  cli.ConnString("bigquery://projectid/location/dataset");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Driver: “mssql” (MS SQL Server)

When using the mssql driver, the general rule to build your connection string is to build it as a URL following this general specification:

sqlserver://username:password@host/instance?param1=valueparam2=value

So, for example, if you’re connecting to a local instance of SQLExpress, you’ll use a connection string that looks like this:

sqlserver://sa@localhost/SQLExpress?database=masterconnection+timeout=30

Whereas if you’re connecting to a SQL server on localhost (but want to specify a non-standard port) you’ll use a connection string like this:

sqlserver://sa:mypass@localhost:1234?database=masterconnection+timeout=30

Remember to URL-encode any and every part of the connection string, because it’s ultimately a URL and must follow the rules of all URLs.

Example of standalone SQL Server connection:

{
  var cli = new SqlCli();
  cli.Driver("mssql");
  cli.ConnString("sqlserver://sa:mypass@localhost?database=master&connection+timeout=30");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Driver: “mysql” (MySQL/MariaDB)

When using the mysql driver, the connection string must be in the following format:

user:password@(hostname_or_ipaddr:port)/dbname

Example of standalone MySQL connection:

{
  var cli = new SqlCli();
  cli.Driver("mysql");
  cli.ConnString("user:pass@(localhost:3306)/testdb");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Driver: “oracle” (Oracle)

When using the oracle driver, the connection string must be in the following format:

user/pass@hostname_or_ipaddr:port/database

Example of standalone Oracle connection:

{
  var cli = new SqlCli();
  cli.Driver("oracle");
  cli.ConnString("user/pass@localhost:1521/mydb");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Driver: “pq” (Postgres)

When using the pg driver, the connection string may contain the following information fields:

• host: the host name or IP address of the machine/VM running Postgres
• port: the port your Postgres listens on (default 5432)
• user: a username to accedd the database
• password: a password to accedd the database
• dbname: the name of the database you want to access
• sslmode: enable || disable

Depending on your database server configuration you may or may not include some of the fields here above in your connection string.

Example of standalone Postgres connection:

{
  var cli = new SqlCli();
  cli.Driver("pq");
  cli.ConnString("host=localhost port=5432 user=your_db_user password=your_db_passwrod dbname=db_name sslmode=disable");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Driver: “sqlite” (SQLite)

When using the sqlite driver, the connection string can either be a fully qualified path to the database data file, or the special keyword :memory: if you wish to use a volatile in-memory DB.

Example of in-memory SQLite DB:

{
  var cli = new SqlCli();
  cli.Driver("sqlite");
  cli.ConnString(":memory:");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Example of file-based SQLite DB:

{
  var cli = new SqlCli();
  cli.Driver("sqlite");
  cli.ConnString("/home/someuser/mydata.sqlite");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Connecting to a DB server

The connection to a database (after having configured the SqlCli object) is performed via the Connect() method which returns true if the connection is successful, or false if the connection fails.

{
  var cli = new SqlCli().Driver("sqlite").ConnString(":memory:");
  if (cli.Connect()) {
    // Perform SQL tasks....
    cli.Close();
  }
}

Querying a dataset

Querying and extracting data from a database you’re connected to is done via the Query function of the SqlCli client object.

This command accepts a query in whichever SQL dialect your database server speaks, and returns the result set as a JSON array of objects, in which each object is a row in the result set.

The query may contain parameters. Each parameter is passed to the query via an array of untyped values, and each value substitutes a ? (question mark placeholder) in the select statement, in order of appearance.

Example

{
  var cli = new SqlCli();
  cli.Driver("sqlite");
  cli.ConnString("/var/sqlitedbs/mydb.sqlite");
  if (cli.Connect()) {
    var res = cli.Query('SELECT * FROM places WHERE code=?', [42]);
    Log(JSON.stringify(res));
    // Output:
    // [{"place":"universe","code":42},{"place":"milky way","code":42}]
    cli.Close();
  }
}

The untyped array of values is optional, and can be skipped when the query doesn’t contain any ? placeholder. For example, the following query is totally valid:

var res = cli.Query('SELECT * FROM places');

And this one with values of different types is valid as well:

var res = cli.Query('SELECT * FROM places WHERE code=? AND place=?', [42, "universe"]);

Insert/Update/Delete

Any other database operation except for querying the DB is performed via the Exec() function. This function can also intake parameters via an optional array of untyped values.

This command accepts a query in whichever SQL dialect your database speaks, and returns an object of type SqlResult which is defined as follows:

type SqlResult = {
  LastInsertedId: any; // typically a number or a string
  RowsAffected:   number;
}

Example (inserting data into DB)

{
  var cli = new SqlCli();
  cli.Driver("sqlite");
  cli.ConnString("/var/sqlitedbs/mydb.sqlite");
  if (cli.Connect()) {
    var res = cli.Exec('INSERT INTO places (place, code) VALUES (?,?)', ['universe', 42]);
    Log(res.LastInsertedId); // Output: 12345
    Log(res.RowsAffected);   // Output: 1
    cli.Close();
  }
}

Example (deleting data from DB)

{
  var cli = new SqlCli();
  cli.Driver("sqlite");
  cli.ConnString("/var/sqlitedbs/mydb.sqlite");
  if (cli.Connect()) {
    var res = cli.Exec('DELETE FROM places WHERE code=?', [42]);
    Log(res.RowsAffected); // Output: 1
    cli.Close();
  }
}

AMQP object properties

Both the AmqpClient091 and the AmqpClient10 objects have the exact same properties:

URL:            string // ex: amqp://amqp.myhost.com:5672 or amqps://amqp.myhost.com:5672
User:           string // username if session must authenticate
Pass:           string // password (but it's better to use PassFromSecret)
PassFromSecret: string // name of the secret to retrieve the password at runtime

Connecting to an AMQP queue

function Connect(): boolean;

Before calling the Connect() method of any AmqpClinentXX object of your choice it is necessary to populate the object properties.

The Connect() method returns true if the connection to the AMQP message queue is successful, otherwise it returns false.

Example

{
  ConsoleFeedback = true;
  var cli = new AmqpClient091();
  cli.URL = 'amqp://localhost:5672';
  cli.User = 'guest';
  cli.Pass = 'guest';
  if (cli.Connect()) {
    cli.MonitorQueue('myqueue');
    while (true) {
      Sleep(1000);
      if (HaltSignalReceived()) {
        break;
      }
      var msgs = cli.GetMessages();
      if (msgs.length > 0) {
        Log(JSON.stringify(msgs));
      }
    }
    cli.Close();
  }
  cli = null;
}

Monitoring a queue

function MonitorQueue(queueName: string);

The MonitorQueue() function instructs the client object to start monitoring the specified queue for incoming messages.

Example

{
  ConsoleFeedback = true;
  var cli = new AmqpClient091();
  cli.URL = 'amqp://localhost:5672';
  cli.User = 'guest';
  cli.Pass = 'guest';
  if (cli.Connect()) {
    cli.MonitorQueue('myqueue');
    while (true) {
      Sleep(1000);
      if (HaltSignalReceived()) {
        break;
      }
      var msgs = cli.GetMessages();
      if (msgs.length > 0) {
        Log(JSON.stringify(msgs));
      }
    }
    cli.Close();
  }
  cli = null;
}

Processing messages

function GetMessages(): QueueMsg;

type QueueMsg = {
  receivedAt: Date; // JavaScript date object
  queue:      string;
  message:    string;
}

It is recommended, inside the loop in which GetMessages() is called iteratively, to also monitor whether a “halt” request has been issued and the script must terminate.

Example

{
  ConsoleFeedback = true;
  var cli = new AmqpClient091();
  cli.URL = 'amqp://localhost:5672';
  cli.User = 'guest';
  cli.Pass = 'guest';
  if (cli.Connect()) {
    cli.MonitorQueue('myqueue');
    while (true) {
      Sleep(1000);
      if (HaltSignalReceived()) {
        break;
      }
      var msgs = cli.GetMessages();
      if (msgs.length > 0) {
        Log(JSON.stringify(msgs));
      }
    }
    cli.Close();
  }
  cli = null;
}

Send to Slack (webhook)

function SendToSlackWebHook(
  webhookURL: string, // mandatory
  message:    string, // mandatory
  sender:     string, // optional
  icon:       string  // optional
): boolean;

This function posts a notification to a Slack channel via Slack’s “Incoming WebHooks”.

The webhookURL and message parameters are mandatory. You may, if you wish, also specify a sender (free-text string), and an icon name using the standard emoji icon name format.

This function returns true if the notification was successfully posted to the desired Slack channel, otherwise it returns false.

Example

{
  SendToSlackWebHook('https://hooks.slack.com/services/*****/*******/**************',
    'Some message', 'Syncplify.me AFT!', ':smile:');
}

Send SMS via Twilio

function SendSMSViaTwilio(
  twilioSid:    string,
  twilioToken:  string,
  senderNum:    string,
  recipientNum: string,
  message:      string
): boolean;

This function sends an SMS (text) message to a recipient (cell)phone number via Twilio.

The twilioSid and twilioToken parameters are the SID and AuthToken issued to you by Twilio when you signed up for the service.

The senderNum is one of the Twilio numbers you’ve been assigned; this number will be the phone number of the sender of the SMS.

The recipientNum is the phone number to which you are trying to send the SMS. Both of these numbers shall be in the international phone number standard format (example: +15550005555).

The message parameter is a short string (SMS texts may have a limited length that varies based upon technology and carrier, typically 140 or 280 characters). This is the actual message that Twilio will try to deliver to the intended recipient.