package ctrl
import (
"bytes"
"embed"
"errors"
"fmt"
"io"
"io/fs"
"net/http"
"os"
"path/filepath"
"regexp"
"strings"
"text/template"
. "github.com/mickael-kerjean/filestash"
. "github.com/mickael-kerjean/filestash/server/common"
"github.com/bluekeyes/go-gitdiff/gitdiff"
)
var (
WWWDir fs.FS
//go:embed static/www
WWWEmbed embed.FS
//go:embed static/404.html
HtmlPage404 []byte
)
func init() {
WWWDir = os.DirFS(GetAbsolutePath("../"))
}
func LegacyStaticHandler(_path string) func(*App, http.ResponseWriter, *http.Request) { // TODO: migrate away
return func(ctx *App, res http.ResponseWriter, req *http.Request) {
var chroot string = GetAbsolutePath(_path)
if srcPath := JoinPath(chroot, req.URL.Path); strings.HasPrefix(srcPath, chroot) == false {
http.NotFound(res, req)
return
}
legacyServeFile(res, req, JoinPath(_path, TrimBase(req.URL.Path)))
}
}
func LegacyIndexHandler(ctx *App, res http.ResponseWriter, req *http.Request) { // TODO: migrate away
url := TrimBase(req.URL.Path)
if url != URL_SETUP && Config.Get("auth.admin").String() == "" {
http.Redirect(res, req, URL_SETUP, http.StatusTemporaryRedirect)
return
} else if url != "/" && strings.HasPrefix(url, "/s/") == false &&
strings.HasPrefix(url, "/view/") == false && strings.HasPrefix(url, "/files/") == false &&
url != "/login" && url != "/logout" && strings.HasPrefix(url, "/admin") == false && strings.HasPrefix(url, "/tags") == false {
NotFoundHandler(ctx, res, req)
return
}
ua := req.Header.Get("User-Agent")
if strings.Contains(ua, "MSIE ") || strings.Contains(ua, "Trident/") || strings.Contains(ua, "Edge/") {
// Microsoft is behaving on many occasion differently than Firefox / Chrome.
// I have neither the time / motivation for it to work properly
res.WriteHeader(http.StatusBadRequest)
res.Write([]byte(Page(`
Internet explorer is not supported
We don't support IE / Edge at this time
Please use either Chromium, Firefox or Chrome
`)))
return
}
legacyServeFile(res, req, "/index.html")
}
func legacyServeFile(res http.ResponseWriter, req *http.Request, filePath string) { // TODO: migrate away
staticConfig := []struct {
ContentType string
FileExt string
}{
{"br", ".br"},
{"gzip", ".gz"},
{"", ""},
}
statusCode := 200
if req.URL.Path == "/" {
if errName := req.URL.Query().Get("error"); errName != "" {
statusCode = HTTPError(errors.New(errName)).Status()
}
}
head := res.Header()
acceptEncoding := req.Header.Get("Accept-Encoding")
for _, cfg := range staticConfig {
if strings.Contains(acceptEncoding, cfg.ContentType) == false {
continue
}
curPath := filePath + cfg.FileExt
var (
file fs.File
err error
)
if env := os.Getenv("DEBUG"); env == "true" {
file, err = WWWDir.Open("server/ctrl/static/www" + curPath)
} else {
file, err = WWWEmbed.Open("static/www" + curPath)
}
if err != nil {
continue
} else if stat, err := file.Stat(); err == nil {
etag := QuickHash(fmt.Sprintf(
"%s %d %d %s",
curPath, stat.Size(), stat.Mode(), stat.ModTime()), 10,
)
if etag == req.Header.Get("If-None-Match") {
res.WriteHeader(http.StatusNotModified)
return
}
head.Set("Etag", etag)
}
if cfg.ContentType != "" {
head.Set("Content-Encoding", cfg.ContentType)
}
res.WriteHeader(statusCode)
io.Copy(res, file)
file.Close()
return
}
http.NotFound(res, req)
}
func ServeBackofficeHandler(ctx *App, res http.ResponseWriter, req *http.Request) {
url := req.URL.Path
if filepath.Ext(filepath.Base(url)) != "" {
req.URL.Path = strings.TrimPrefix(TrimBase(req.URL.Path), "/admin/")
ServeFile("/")(ctx, res, req)
return
}
if url != URL_SETUP && Config.Get("auth.admin").String() == "" {
http.Redirect(res, req, URL_SETUP, http.StatusTemporaryRedirect)
return
}
preloadScripts := []string{
"/admin/assets/boot/router_backoffice.js", "/admin/assets/boot/router_backoffice.js", "/admin/assets/boot/ctrl_boot_backoffice.js", "/admin/assets/boot/common.js",
"/admin/assets/pages/adminpage/decorator.js", "/admin/assets/pages/adminpage/decorator_sidemenu.js", "/admin/assets/pages/adminpage/decorator_admin_only.js",
"/admin/assets/components/icon.js", "/admin/assets/locales/index.js", "/admin/assets/lib/animate.js",
"/admin/assets/lib/skeleton/router.js", "/admin/assets/lib/skeleton/lifecycle.js",
"/admin/assets/lib/vendor/rxjs/rxjs-shared.min.js", "/admin/assets/lib/vendor/rxjs/rxjs-ajax.min.js", "/admin/assets/lib/ajax.js",
"/admin/assets/lib/rx.js", "/admin/assets/lib/vendor/rxjs/rxjs.min.js",
}
switch TrimBase(url) {
case "/admin/backend":
preloadScripts = append(
preloadScripts,
"/admin/assets/pages/adminpage/ctrl_backend.js", "/admin/assets/pages/adminpage/ctrl_backend_component_storage.js", "/admin/assets/pages/adminpage/ctrl_backend_component_authentication.js",
"/admin/assets/model/config.js", "/admin/assets/model/backend.js",
"/admin/assets/pages/adminpage/model_backend.js", "/admin/assets/pages/adminpage/model_auth_middleware.js",
"/admin/assets/lib/random.js", "/admin/assets/lib/form.js", "/admin/assets/components/form.js",
"/admin/assets/components/skeleton.js", "/admin/assets/pages/adminpage/ctrl_backend_state.js", "/admin/assets/pages/adminpage/component_box-item.js", "/admin/assets/pages/adminpage/helper_form.js",
)
case "/admin/settings":
preloadScripts = append(
preloadScripts,
"/admin/assets/pages/adminpage/ctrl_settings.js", "/admin/assets/model/config.js",
"/admin/assets/lib/random.js", "/admin/assets/lib/form.js", "/admin/assets/components/form.js",
"/admin/assets/components/skeleton.js", "/admin/assets/pages/adminpage/helper_form.js",
)
case "/admin/logs":
preloadScripts = append(
preloadScripts,
"/admin/assets/pages/adminpage/ctrl_log.js", "/admin/assets/model/config.js", "/admin/assets/lib/random.js",
"/admin/assets/pages/adminpage/helper_form.js", "/admin/assets/pages/adminpage/model_log.js",
"/admin/assets/pages/adminpage/ctrl_log_form.js", "/admin/assets/pages/adminpage/ctrl_log_viewer.js", "/admin/assets/pages/adminpage/ctrl_log_audit.js",
"/admin/assets/lib/form.js", "/admin/assets/components/form.js", "/admin/assets/components/skeleton.js",
)
case "/admin/about":
preloadScripts = append(preloadScripts, "/admin/assets/pages/adminpage/ctrl_about.js")
default:
preloadScripts = append(preloadScripts, "/admin/assets/pages/ctrl_adminpage.js")
}
preloadScripts = append(
preloadScripts,
"/admin/assets/pages/ctrl_error.js", "/admin/assets/pages/adminpage/ctrl_login.js", "/admin/assets/lib/dom.js", "/admin/assets/lib/error.js",
"/admin/assets/pages/adminpage/animate.js", "/admin/assets/helpers/log.js", "/admin/assets/helpers/loader.js",
"/admin/assets/pages/adminpage/model_config.js", "/admin/assets/pages/adminpage/model_admin_session.js", "/admin/assets/pages/adminpage/model_release.js",
"/admin/assets/pages/adminpage/model_audit.js",
)
head := res.Header()
head.Set("Cache-Control", "no-cache")
head.Set("Pragma", "no-cache")
head.Set("Expires", "0")
for _, href := range preloadScripts {
head.Add(
"Link",
fmt.Sprintf(`<%s>; rel="preload"; as="script"; crossorigin="anonymous";`, WithBase(
strings.Replace(href, "/assets/", "/assets/"+version()+"/", 1),
)),
)
}
head.Add("Link", `<`+WithBase("/about")+`>; rel="preload"; as="fetch"; crossorigin="use-credentials";`)
ServeIndex("index.backoffice.html")(ctx, res, req)
return
}
func ServeFrontofficeHandler(ctx *App, res http.ResponseWriter, req *http.Request) {
ua := req.Header.Get("User-Agent")
if strings.Contains(ua, "MSIE ") || strings.Contains(ua, "Trident/") || strings.Contains(ua, "Edge/") {
// Microsoft is behaving on many occasion differently than Firefox / Chrome.
// I have neither the time / motivation for it to work properly
res.WriteHeader(http.StatusBadRequest)
res.Write([]byte(Page(`
Internet explorer is not supported
We don't support IE / Edge at this time
Please use either Chromium, Firefox or Chrome
`)))
return
}
url := TrimBase(req.URL.Path)
if url != "/" && strings.HasPrefix(url, "/s/") == false &&
strings.HasPrefix(url, "/view/") == false && strings.HasPrefix(url, "/files/") == false &&
url != "/login" && url != "/logout" && strings.HasPrefix(url, "/tags") == false {
NotFoundHandler(ctx, res, req)
return
}
if url != URL_SETUP && Config.Get("auth.admin").String() == "" {
http.Redirect(res, req, URL_SETUP, http.StatusTemporaryRedirect)
return
}
preloadScripts := []string{
"/assets/boot/router_frontoffice.js", "/assets/boot/ctrl_boot_frontoffice.js",
"/assets/lib/skeleton/index.js", "/assets/lib/skeleton/router.js", "/assets/lib/skeleton/lifecycle.js",
"/assets/lib/vendor/rxjs/rxjs.min.js", "/assets/lib/vendor/rxjs/rxjs-ajax.min.js", "/assets/lib/vendor/rxjs/rxjs-shared.min.js",
"/assets/lib/rx.js", "/assets/lib/ajax.js",
"/assets/lib/path.js", "/assets/lib/error.js", "/assets/lib/assert.js",
"/assets/lib/dom.js", "/assets/lib/animate.js",
"/assets/components/loader.js", "/assets/components/modal.js", "/assets/components/notification.js",
"/assets/components/icon.js",
}
turl := TrimBase(url)
if strings.HasPrefix(turl, "/login") {
preloadScripts = append(
preloadScripts,
"/assets/pages/ctrl_connectpage.js",
"/assets/pages/connectpage/ctrl_form.js", "/assets/pages/connectpage/ctrl_forkme.js",
"/assets/pages/connectpage/ctrl_poweredby.js",
"/assets/pages/connectpage/model_config.js", "/assets/pages/connectpage/model_backend.js", "/assets/pages/connectpage/ctrl_form_state.js",
"/assets/lib/form.js", "/assets/lib/settings.js", "/assets/lib/random.js", "/assets/helpers/log.js",
"/assets/model/session.js", "/assets/components/form.js",
"/assets/pages/ctrl_error.js",
)
} else if strings.HasPrefix(turl, "/files/") {
preloadScripts = append(
preloadScripts,
"/assets/pages/filespage/ctrl_filesystem.js", "/assets/pages/filespage/modal_share.js",
"/assets/pages/filespage/ctrl_upload.js", "/assets/components/sidebar.js", "/assets/components/breadcrumb.js",
"/assets/lib/form.js", "/assets/components/dropdown.js", "/assets/components/decorator_shell_filemanager.js",
"/assets/lib/random.js",
"/assets/pages/filespage/ctrl_submenu.js", "/assets/pages/filespage/ctrl_newitem.js",
"/assets/pages/filespage/cache.js", "/assets/pages/ctrl_filespage.js",
"/assets/pages/filespage/thing.js", "/assets/pages/ctrl_error.js", "/assets/pages/filespage/model_virtual_layer.js",
"/assets/pages/filespage/model_files.js", "/assets/pages/filespage/helper.js",
"/assets/pages/filespage/model_acl.js", "/assets/pages/filespage/state_config.js",
"/assets/pages/filespage/state_newthing.js", "/assets/pages/filespage/state_selection.js",
"/assets/pages/filespage/modal_delete.js", "/assets/pages/filespage/modal_rename.js", "/assets/pages/filespage/modal_tag.js",
"/assets/components/form.js",
"/assets/helpers/log.js", "/assets/lib/error.js", "/assets/model/config.js",
"/assets/lib/assert.js", "/assets/model/session.js", "/assets/lib/store.js",
"/assets/pages/filespage/state_config.js",
)
}
head := res.Header()
head.Set("Cache-Control", "no-cache")
head.Set("Pragma", "no-cache")
head.Set("Expires", "0")
for _, href := range preloadScripts {
head.Add(
"Link",
fmt.Sprintf(`<%s>; rel="preload"; as="script"; crossorigin="anonymous";`, WithBase(
strings.Replace(href, "/assets/", "/assets/"+version()+"/", 1),
)),
)
}
ServeIndex("index.frontoffice.html")(ctx, res, req)
}
func NotFoundHandler(ctx *App, res http.ResponseWriter, req *http.Request) {
if strings.Contains(req.Header.Get("accept"), "text/html") {
res.WriteHeader(http.StatusNotFound)
res.Write(HtmlPage404)
return
}
SendErrorResult(res, ErrNotFound)
}
var listOfPlugins map[string][]string = map[string][]string{
"oss": []string{},
"enterprise": []string{},
"custom": []string{},
}
func AboutHandler(ctx *App, res http.ResponseWriter, req *http.Request) {
t, _ := template.
New("about").
Funcs(map[string]interface{}{
"renderPlugin": func(lstr string, commit string) string {
if len(lstr) == 0 {
return "N/A"
} else if commit == "" {
return lstr
}
list := strings.Split(lstr, " ")
for i, _ := range list {
list[i] = `` + list[i] + ``
}
return strings.Join(list, " ")
},
}).
Parse(Page(`
{{ .Version }}
| Commit hash | {{ .CommitHash }} |
| Binary hash | {{ index .Checksum 0}} |
| Config hash | {{ index .Checksum 1}} |
| License | {{ .License }} |
| Plugins |
{{ $oss := (index .Plugins 0) }}
{{ $enterprise := (index .Plugins 1) }}
{{ $custom := (index .Plugins 2) }}
STANDARD[{{ renderPlugin (index .Plugins 0) .CommitHash }}]
EXTENDED[{{ renderPlugin (index .Plugins 1) "" }}]
CUSTOM[{{ renderPlugin (index .Plugins 2) "" }}]
|
`))
hashFileContent := func(path string, n int) string {
f, err := os.OpenFile(path, os.O_RDONLY, os.ModePerm)
if err != nil {
return ""
}
defer f.Close()
return HashStream(f, n)
}
t.Execute(res, struct {
Version string
CommitHash string
Checksum []string
License string
Plugins []string
}{
Version: fmt.Sprintf("Filestash %s.%s", APP_VERSION, BUILD_DATE),
CommitHash: BUILD_REF,
Checksum: []string{
hashFileContent(GetAbsolutePath("filestash"), 0),
hashFileContent(GetAbsolutePath(CONFIG_PATH, "config.json"), 0),
},
License: strings.ToUpper(LICENSE),
Plugins: []string{
strings.Join(listOfPlugins["oss"], " "),
strings.Join(listOfPlugins["enterprise"], " "),
strings.Join(listOfPlugins["custom"], " "),
},
})
}
func ManifestHandler(ctx *App, res http.ResponseWriter, req *http.Request) {
res.WriteHeader(http.StatusOK)
res.Write([]byte(fmt.Sprintf(`{
"name": "%s",
"short_name": "%s",
"icons": [
{
"src": "/assets/logo/android-chrome-192x192.png",
"type": "image/png",
"sizes": "192x192"
},
{
"src": "/assets/logo/android-chrome-512x512.png",
"type": "image/png",
"sizes": "512x512"
}
],
"theme_color": "#f2f3f5",
"background_color": "#f2f3f5",
"orientation": "any",
"display": "standalone",
"start_url": "/"
}`, Config.Get("general.name"), Config.Get("general.name"))))
}
func RobotsHandler(ctx *App, res http.ResponseWriter, req *http.Request) {
res.Write([]byte(""))
}
func CustomCssHandler(ctx *App, res http.ResponseWriter, req *http.Request) {
res.Header().Set("Content-Type", "text/css")
io.WriteString(res, Hooks.Get.CSS())
io.WriteString(res, Config.Get("general.custom_css").String())
}
func ServeFile(chroot string) func(*App, http.ResponseWriter, *http.Request) {
return func(ctx *App, res http.ResponseWriter, req *http.Request) {
filePath := JoinPath(
chroot,
strings.Replace(
TrimBase(req.URL.Path),
"assets/"+version()+"/",
"assets/",
1,
),
)
head := res.Header()
// case: patch must be apply because of a "StaticPatch" plugin
for _, patch := range Hooks.Get.StaticPatch() {
patchFile, err := patch.Open(strings.TrimPrefix(filePath, "/"))
if err != nil {
continue
}
defer patchFile.Close()
patchFiles, _, err := gitdiff.Parse(patchFile)
if err != nil {
Log.Debug("ctrl::static cannot parse patch file - %s", err.Error())
break
} else if len(patchFiles) != 1 {
Log.Debug("ctrl::static unepected patch file size - must be 1, got %d", len(patchFiles))
break
}
origFile, err := WWWPublic.Open(filePath)
if err != nil {
Log.Debug("ctrl::static cannot open public file - %+v", err.Error())
continue
}
originalBuffer, err := io.ReadAll(origFile)
if err != nil {
Log.Debug("ctrl::static cannot read public file - %+v", err.Error())
continue
}
var output bytes.Buffer
origFile.Close()
if err := gitdiff.Apply(
&output,
bytes.NewReader(originalBuffer),
patchFiles[0],
); err != nil {
Log.Debug("ctrl::static cannot apply patch - %s", err.Error())
break
}
head.Set("Content-Type", GetMimeType(filepath.Ext(filePath)))
head.Set("Cache-Control", "no-cache")
head.Set("Pragma", "no-cache")
head.Set("Expires", "0")
res.WriteHeader(http.StatusOK)
res.Write(output.Bytes())
return
}
// case: main path
acceptEncoding := req.Header.Get("Accept-Encoding")
staticConfig := []struct {
ContentType string
FileExt string
}{
{"br", ".br"},
{"gzip", ".gz"},
{"", ""},
}
for _, cfg := range staticConfig {
if strings.Contains(acceptEncoding, cfg.ContentType) == false {
continue
}
curPath := filePath + cfg.FileExt
file, err := WWWPublic.Open(curPath)
if err != nil {
continue
} else if stat, err := file.Stat(); err == nil {
etag := QuickHash(fmt.Sprintf(
"%s %d %d %s",
curPath, stat.Size(), stat.Mode(), stat.ModTime()), 10,
)
if etag == req.Header.Get("If-None-Match") {
res.WriteHeader(http.StatusNotModified)
return
}
head.Set("Etag", etag)
}
head.Set("Content-Type", GetMimeType(filepath.Ext(filePath)))
if cfg.ContentType != "" {
head.Set("Content-Encoding", cfg.ContentType)
}
res.WriteHeader(http.StatusOK)
io.Copy(res, file)
file.Close()
return
}
http.NotFound(res, req)
}
}
func ServeIndex(indexPath string) func(*App, http.ResponseWriter, *http.Request) {
return func(ctx *App, res http.ResponseWriter, req *http.Request) {
head := res.Header()
// STEP1: pull the data from the embed
file, err := WWWPublic.Open(indexPath)
if err != nil {
http.NotFound(res, req)
return
}
defer file.Close()
// STEP2: compile the template
b, err := io.ReadAll(file)
if err != nil {
SendErrorResult(res, err)
return
}
head.Set("Content-Type", "text/html")
res.WriteHeader(http.StatusOK)
template.Must(template.New(indexPath).Parse(string(b))).Execute(res, map[string]any{
"base": WithBase("/"),
"version": version(),
"license": LICENSE,
})
}
}
func InitPluginList(code []byte) {
listOfPackages := regexp.MustCompile(`github.com/mickael-kerjean/([^\"]+)`).FindAllString(string(code), -1)
for _, packageName := range listOfPackages {
if packageName == "github.com/mickael-kerjean/filestash/server/common" {
continue
}
if strings.HasPrefix(packageName, "github.com/mickael-kerjean/filestash/server/plugin/") {
listOfPlugins["oss"] = append(
listOfPlugins["oss"],
strings.TrimPrefix(packageName, "github.com/mickael-kerjean/filestash/server/plugin/"),
)
} else if strings.HasPrefix(packageName, "github.com/mickael-kerjean/filestash/filestash-enterprise/plugins/") {
listOfPlugins["enterprise"] = append(
listOfPlugins["enterprise"],
strings.TrimPrefix(packageName, "github.com/mickael-kerjean/filestash/filestash-enterprise/plugins/"),
)
} else if strings.HasPrefix(packageName, "github.com/mickael-kerjean/filestash/filestash-enterprise/customers/") {
listOfPlugins["custom"] = append(
listOfPlugins["custom"],
strings.TrimPrefix(packageName, "github.com/mickael-kerjean/filestash/filestash-enterprise/customers/"),
)
} else {
listOfPlugins["custom"] = append(
listOfPlugins["custom"],
packageName,
)
}
}
}
func version() string {
return BUILD_REF[:7]
}