mirror of
https://github.com/cloudreve/cloudreve.git
synced 2025-10-31 16:49:03 +08:00
bfd2340732
* Update conf.go * Update driver.go * Update session.go * Update defaults.go * Update main.go * Update conf.go * Update defaults.go
57 lines
1.6 KiB
Go
57 lines
1.6 KiB
Go
package middleware
|
||
|
||
import (
|
||
"github.com/HFO4/cloudreve/pkg/conf"
|
||
"github.com/HFO4/cloudreve/pkg/serializer"
|
||
"github.com/HFO4/cloudreve/pkg/util"
|
||
"github.com/gin-contrib/sessions"
|
||
"github.com/gin-contrib/sessions/memstore"
|
||
"github.com/gin-contrib/sessions/redis"
|
||
"github.com/gin-gonic/gin"
|
||
)
|
||
|
||
// Store session存储
|
||
var Store memstore.Store
|
||
|
||
// Session 初始化session
|
||
func Session(secret string) gin.HandlerFunc {
|
||
// Redis设置不为空,且非测试模式时使用Redis
|
||
if conf.RedisConfig.Server != "" && gin.Mode() != gin.TestMode {
|
||
var err error
|
||
Store, err = redis.NewStoreWithDB(10, conf.RedisConfig.Network, conf.RedisConfig.Server, conf.RedisConfig.Password, conf.RedisConfig.DB, []byte(secret))
|
||
if err != nil {
|
||
util.Log().Panic("无法连接到 Redis:%s", err)
|
||
}
|
||
|
||
util.Log().Info("已连接到 Redis 服务器:%s", conf.RedisConfig.Server)
|
||
} else {
|
||
Store = memstore.NewStore([]byte(secret))
|
||
}
|
||
|
||
// Also set Secure: true if using SSL, you should though
|
||
// TODO:same-site policy
|
||
Store.Options(sessions.Options{HttpOnly: true, MaxAge: 7 * 86400, Path: "/"})
|
||
return sessions.Sessions("cloudreve-session", Store)
|
||
}
|
||
|
||
// CSRFInit 初始化CSRF标记
|
||
func CSRFInit() gin.HandlerFunc {
|
||
return func(c *gin.Context) {
|
||
util.SetSession(c, map[string]interface{}{"CSRF": true})
|
||
c.Next()
|
||
}
|
||
}
|
||
|
||
// CSRFCheck 检查CSRF标记
|
||
func CSRFCheck() gin.HandlerFunc {
|
||
return func(c *gin.Context) {
|
||
if check, ok := util.GetSession(c, "CSRF").(bool); ok && check {
|
||
c.Next()
|
||
return
|
||
}
|
||
|
||
c.JSON(200, serializer.Err(serializer.CodeNoPermissionErr, "来源非法", nil))
|
||
c.Abort()
|
||
}
|
||
}
|