mirror of
https://github.com/thomiceli/opengist.git
synced 2025-01-09 10:02:39 +00:00
207 lines
7.2 KiB
Go
207 lines
7.2 KiB
Go
package server
|
|
|
|
import (
|
|
"github.com/labstack/echo/v4"
|
|
"github.com/thomiceli/opengist/internal/config"
|
|
"github.com/thomiceli/opengist/internal/index"
|
|
"github.com/thomiceli/opengist/internal/web/context"
|
|
"github.com/thomiceli/opengist/internal/web/handler"
|
|
"github.com/thomiceli/opengist/public"
|
|
"net/http"
|
|
"os"
|
|
"path"
|
|
"path/filepath"
|
|
"strings"
|
|
"time"
|
|
)
|
|
|
|
func (s *Server) setupRoutes() {
|
|
r := NewRouter(s.echo.Group(""))
|
|
|
|
// Web based routes
|
|
{
|
|
|
|
r.GET("/", handler.Create, logged)
|
|
r.POST("/", handler.ProcessCreate, logged)
|
|
r.POST("/preview", handler.Preview, logged)
|
|
|
|
r.GET("/healthcheck", handler.Healthcheck)
|
|
r.GET("/metrics", handler.Metrics)
|
|
|
|
r.GET("/register", handler.Register)
|
|
r.POST("/register", handler.ProcessRegister)
|
|
r.GET("/login", handler.Login)
|
|
r.POST("/login", handler.ProcessLogin)
|
|
r.GET("/logout", handler.Logout)
|
|
r.GET("/oauth/:provider", handler.Oauth)
|
|
r.GET("/oauth/:provider/callback", handler.OauthCallback)
|
|
r.GET("/oauth/:provider/unlink", handler.OauthUnlink, logged)
|
|
r.POST("/webauthn/bind", handler.BeginWebAuthnBinding, logged)
|
|
r.POST("/webauthn/bind/finish", handler.FinishWebAuthnBinding, logged)
|
|
r.POST("/webauthn/login", handler.BeginWebAuthnLogin)
|
|
r.POST("/webauthn/login/finish", handler.FinishWebAuthnLogin)
|
|
r.POST("/webauthn/assertion", handler.BeginWebAuthnAssertion, inMFASession)
|
|
r.POST("/webauthn/assertion/finish", handler.FinishWebAuthnAssertion, inMFASession)
|
|
r.GET("/mfa", handler.Mfa, inMFASession)
|
|
r.POST("/mfa/totp/assertion", handler.AssertTotp, inMFASession)
|
|
|
|
r.GET("/settings", handler.UserSettings, logged)
|
|
r.POST("/settings/email", handler.EmailProcess, logged)
|
|
r.DELETE("/settings/account", handler.AccountDeleteProcess, logged)
|
|
r.POST("/settings/ssh-keys", handler.SshKeysProcess, logged)
|
|
r.DELETE("/settings/ssh-keys/:id", handler.SshKeysDelete, logged)
|
|
r.DELETE("/settings/passkeys/:id", handler.PasskeyDelete, logged)
|
|
r.PUT("/settings/password", handler.PasswordProcess, logged)
|
|
r.PUT("/settings/username", handler.UsernameProcess, logged)
|
|
r.GET("/settings/totp/generate", handler.BeginTotp, logged)
|
|
r.POST("/settings/totp/generate", handler.FinishTotp, logged)
|
|
r.DELETE("/settings/totp", handler.DisableTotp, logged)
|
|
r.POST("/settings/totp/regenerate", handler.RegenerateTotpRecoveryCodes, logged)
|
|
|
|
g2 := r.SubGroup("/admin-panel")
|
|
{
|
|
g2.Use(adminPermission)
|
|
g2.GET("", handler.AdminIndex)
|
|
g2.GET("/users", handler.AdminUsers)
|
|
g2.POST("/users/:user/delete", handler.AdminUserDelete)
|
|
g2.GET("/gists", handler.AdminGists)
|
|
g2.POST("/gists/:gist/delete", handler.AdminGistDelete)
|
|
g2.GET("/invitations", handler.AdminInvitations)
|
|
g2.POST("/invitations", handler.AdminInvitationsCreate)
|
|
g2.POST("/invitations/:id/delete", handler.AdminInvitationsDelete)
|
|
g2.POST("/sync-fs", handler.AdminSyncReposFromFS)
|
|
g2.POST("/sync-db", handler.AdminSyncReposFromDB)
|
|
g2.POST("/gc-repos", handler.AdminGcRepos)
|
|
g2.POST("/sync-previews", handler.AdminSyncGistPreviews)
|
|
g2.POST("/reset-hooks", handler.AdminResetHooks)
|
|
g2.POST("/index-gists", handler.AdminIndexGists)
|
|
g2.GET("/configuration", handler.AdminConfig)
|
|
g2.PUT("/set-config", handler.AdminSetConfig)
|
|
}
|
|
|
|
if config.C.HttpGit {
|
|
r.Any("/init/*", handler.GitHttp, GistNewPushSoftInit)
|
|
}
|
|
|
|
r.GET("/all", handler.AllGists, checkRequireLogin)
|
|
|
|
if index.Enabled() {
|
|
r.GET("/search", handler.Search, checkRequireLogin)
|
|
} else {
|
|
r.GET("/search", handler.AllGists, checkRequireLogin)
|
|
}
|
|
|
|
r.GET("/:user", handler.AllGists, checkRequireLogin)
|
|
r.GET("/:user/liked", handler.AllGists, checkRequireLogin)
|
|
r.GET("/:user/forked", handler.AllGists, checkRequireLogin)
|
|
|
|
g3 := r.SubGroup("/:user/:gistname")
|
|
{
|
|
g3.Use(makeCheckRequireLogin(true), GistInit)
|
|
g3.GET("", handler.GistIndex)
|
|
g3.GET("/rev/:revision", handler.GistIndex)
|
|
g3.GET("/revisions", handler.Revisions)
|
|
g3.GET("/archive/:revision", handler.DownloadZip)
|
|
g3.POST("/visibility", handler.EditVisibility, logged, writePermission)
|
|
g3.POST("/delete", handler.DeleteGist, logged, writePermission)
|
|
g3.GET("/raw/:revision/:file", handler.RawFile)
|
|
g3.GET("/download/:revision/:file", handler.DownloadFile)
|
|
g3.GET("/edit", handler.Edit, logged, writePermission)
|
|
g3.POST("/edit", handler.ProcessCreate, logged, writePermission)
|
|
g3.POST("/like", handler.Like, logged)
|
|
g3.GET("/likes", handler.Likes, checkRequireLogin)
|
|
g3.POST("/fork", handler.Fork, logged)
|
|
g3.GET("/forks", handler.Forks, checkRequireLogin)
|
|
g3.PUT("/checkbox", handler.Checkbox, logged, writePermission)
|
|
}
|
|
}
|
|
|
|
customFs := os.DirFS(filepath.Join(config.GetHomeDir(), "custom"))
|
|
r.GET("/assets/*", func(ctx *context.OGContext) error {
|
|
if _, err := public.Files.Open(path.Join("assets", ctx.Param("*"))); !s.dev && err == nil {
|
|
ctx.Response().Header().Set("Cache-Control", "public, max-age=31536000")
|
|
ctx.Response().Header().Set("Expires", time.Now().AddDate(1, 0, 0).Format(http.TimeFormat))
|
|
|
|
return echo.WrapHandler(http.FileServer(http.FS(public.Files)))(ctx)
|
|
}
|
|
|
|
// if the custom file is an .html template, render it
|
|
if strings.HasSuffix(ctx.Param("*"), ".html") {
|
|
if err := ctx.HTML_(ctx.Param("*")); err != nil {
|
|
return ctx.NotFound("Page not found")
|
|
}
|
|
return nil
|
|
}
|
|
|
|
return echo.WrapHandler(http.StripPrefix("/assets/", http.FileServer(http.FS(customFs))))(ctx)
|
|
})
|
|
|
|
// Git HTTP routes
|
|
if config.C.HttpGit {
|
|
r.Any("/:user/:gistname/*", handler.GitHttp, GistSoftInit)
|
|
}
|
|
|
|
r.Any("/*", noRouteFound)
|
|
}
|
|
|
|
// Router wraps echo.Group to provide custom Handler support
|
|
type Router struct {
|
|
*echo.Group
|
|
}
|
|
|
|
// NewRouter creates a new Router instance
|
|
func NewRouter(g *echo.Group) *Router {
|
|
return &Router{Group: g}
|
|
}
|
|
|
|
// SubGroup returns a new Router group with the given prefix and middleware
|
|
func (r *Router) SubGroup(prefix string, m ...Middleware) *Router {
|
|
// Convert middleware only when creating group
|
|
echoMiddleware := make([]echo.MiddlewareFunc, len(m))
|
|
for i, mw := range m {
|
|
mw := mw // capture for closure
|
|
echoMiddleware[i] = func(next echo.HandlerFunc) echo.HandlerFunc {
|
|
return Chain(func(c *context.OGContext) error {
|
|
return next(c)
|
|
}, mw).toEchoHandler()
|
|
}
|
|
}
|
|
return NewRouter(r.Group.Group(prefix, echoMiddleware...))
|
|
}
|
|
|
|
// Route registration methods
|
|
func (r *Router) GET(path string, h Handler, m ...Middleware) {
|
|
r.Group.GET(path, Chain(h, m...).toEchoHandler())
|
|
}
|
|
|
|
func (r *Router) POST(path string, h Handler, m ...Middleware) {
|
|
r.Group.POST(path, Chain(h, m...).toEchoHandler())
|
|
}
|
|
|
|
func (r *Router) PUT(path string, h Handler, m ...Middleware) {
|
|
r.Group.PUT(path, Chain(h, m...).toEchoHandler())
|
|
}
|
|
|
|
func (r *Router) DELETE(path string, h Handler, m ...Middleware) {
|
|
r.Group.DELETE(path, Chain(h, m...).toEchoHandler())
|
|
}
|
|
|
|
func (r *Router) PATCH(path string, h Handler, m ...Middleware) {
|
|
r.Group.PATCH(path, Chain(h, m...).toEchoHandler())
|
|
}
|
|
|
|
func (r *Router) Any(path string, h Handler, m ...Middleware) {
|
|
r.Group.Any(path, Chain(h, m...).toEchoHandler())
|
|
}
|
|
|
|
// Use registers middleware for the entire router group
|
|
func (r *Router) Use(middleware ...Middleware) {
|
|
for _, m := range middleware {
|
|
m := m // capture for closure
|
|
r.Group.Use(func(next echo.HandlerFunc) echo.HandlerFunc {
|
|
return Chain(func(c *context.OGContext) error {
|
|
return next(c)
|
|
}, m).toEchoHandler()
|
|
})
|
|
}
|
|
}
|