s3-share/internal/web/web.go

package web

import (
	"encoding/json"
	"errors"
	"io"
	"net/http"
	"strconv"

	"git.kapelle.org/niklas/s3share/internal/client"
	"git.kapelle.org/niklas/s3share/internal/types"
	"github.com/gorilla/mux"
	"github.com/sirupsen/logrus"
)

type createShare struct {
	Key string `json:"key"`
}

func StartWebserver(addr string, client *client.Client, username, password string) error {
	if username == "" || password == "" {
		return errors.New("API username and password must be set")
	}

	r := CreateRouter(client, username, password)

	return http.ListenAndServe(addr, r)
}

func CreateRouter(client *client.Client, username, password string) *mux.Router {
	r := mux.NewRouter()

	r.HandleFunc("/{slug:[a-zA-Z0-9]{6}}", func(w http.ResponseWriter, r *http.Request) {
		http.ServeFile(w, r, "./public/index.html")
	})

	r.HandleFunc("/s/{path:.{6,}}", func(w http.ResponseWriter, r *http.Request) {
		share := getShareHead(client, w, r)
		if share == nil {
			return
		}

		obj, err := client.GetObjectFromShare(r.Context(), share)
		if err != nil {
			logrus.Error(err.Error())
			http.Error(w, err.Error(), http.StatusInternalServerError)
			return
		}

		_, err = io.Copy(w, obj)

		if err != nil {
			logrus.Error(err.Error())
			return
		}
	})

	r.HandleFunc("/s/{path:.{6,}}", func(w http.ResponseWriter, r *http.Request) {
		getShareHead(client, w, r)
	}).Methods("HEAD")

	r.HandleFunc("/api/share", func(w http.ResponseWriter, r *http.Request) {
		if !checkAuth(w, r, username, password) {
			return
		}

		shares, err := client.GetAllShares(r.Context())

		if err != nil {
			logrus.Error(err.Error())
			http.Error(w, err.Error(), http.StatusInternalServerError)
			return
		}

		w.Header().Set("Content-Type", "application/json")
		json.NewEncoder(w).Encode(shares)
	}).Methods("GET")

	r.HandleFunc("/api/share/{slug:[a-zA-Z0-9]{6}}", func(w http.ResponseWriter, r *http.Request) {
		if !checkAuth(w, r, username, password) {
			return
		}

		vars := mux.Vars(r)
		slug := vars["slug"]

		share, err := client.GetShare(r.Context(), slug)

		if err != nil {
			logrus.Error(err.Error())
			http.Error(w, err.Error(), http.StatusInternalServerError)
			return
		}

		if share == nil {
			http.NotFound(w, r)
			return
		}

		w.Header().Set("Content-Type", "application/json")
		json.NewEncoder(w).Encode(share)
	}).Methods("GET")

	r.HandleFunc("/api/share", func(w http.ResponseWriter, r *http.Request) {
		if !checkAuth(w, r, username, password) {
			return
		}

		var shareParams createShare
		err := json.NewDecoder(r.Body).Decode(&shareParams)
		if err != nil {
			logrus.Error(err.Error())
			http.Error(w, err.Error(), http.StatusBadRequest)
			return
		}

		share, err := client.CreateShare(r.Context(), shareParams.Key)

		if err != nil {
			if err == types.ErrKeyNotFound {
				http.Error(w, "The specified key does not exist", http.StatusBadRequest)
				return
			}
			logrus.Error(err.Error())
			http.Error(w, err.Error(), http.StatusInternalServerError)
			return
		}

		w.Header().Set("Content-Type", "application/json")
		w.WriteHeader(http.StatusCreated)
		json.NewEncoder(w).Encode(share)
	}).Methods("POST", "PUT")

	r.HandleFunc("/api/share/{slug:[a-zA-Z0-9]{6}}", func(w http.ResponseWriter, r *http.Request) {
		if !checkAuth(w, r, username, password) {
			return
		}

		vars := mux.Vars(r)

		err := client.DeleteShare(r.Context(), vars["slug"])
		if err != nil {
			if err == types.ErrShareNotFound {
				http.NotFound(w, r)
				return
			}
			logrus.Error(err.Error())
			http.Error(w, err.Error(), http.StatusInternalServerError)
			return
		}

		w.WriteHeader(http.StatusNoContent)
	}).Methods("DELETE")

	r.PathPrefix("/").Handler(http.FileServer(http.Dir("./public/")))

	return r
}

func getShareHead(client *client.Client, w http.ResponseWriter, r *http.Request) *types.Share {
	vars := mux.Vars(r)
	slug := vars["path"][0:6]
	share, err := client.GetShare(r.Context(), slug)
	if err != nil {
		logrus.Error(err.Error())
		http.Error(w, err.Error(), http.StatusInternalServerError)
		return nil
	}

	if share == nil {
		http.NotFound(w, r)
		return nil
	}

	metadata, err := client.GetObjectMetadata(r.Context(), share.Key)
	if err != nil {
		logrus.Error(err.Error())
		http.Error(w, err.Error(), http.StatusInternalServerError)
		return nil
	}

	// Prevent using the default Content-Type. Can cause some confusion when the browser tries to open images in a new tab.
	if metadata.ContentType != "application/octet-stream" {
		w.Header().Set("Content-Type", metadata.ContentType)
	}
	w.Header().Set("Content-Length", strconv.FormatInt(metadata.Size, 10))
	w.Header().Set("Content-Disposition", "inline; filename=\""+metadata.Filename+"\"")
	if metadata.ETag != "" {
		w.Header().Set("ETag", metadata.ETag)
	}

	return share
}

func checkAuth(w http.ResponseWriter, r *http.Request, username, password string) bool {
	authUsername, authPassword, ok := r.BasicAuth()
	if !ok {
		w.WriteHeader(http.StatusUnauthorized)
		return false
	}

	if username != authUsername || password != authPassword {
		w.WriteHeader(http.StatusUnauthorized)
		return false
	}

	return true
}
inital commit 2022-05-09 12:52:18 +00:00			`package web`

			`import (`
			`"encoding/json"`
added basic auth 2022-05-12 21:37:59 +00:00			`"errors"`
inital commit 2022-05-09 12:52:18 +00:00			`"io"`
			`"net/http"`
added metadata 2022-05-10 10:49:34 +00:00			`"strconv"`
inital commit 2022-05-09 12:52:18 +00:00
			`"git.kapelle.org/niklas/s3share/internal/client"`
display a text share 2022-05-10 20:37:30 +00:00			`"git.kapelle.org/niklas/s3share/internal/types"`
inital commit 2022-05-09 12:52:18 +00:00			`"github.com/gorilla/mux"`
			`"github.com/sirupsen/logrus"`
			`)`

			`type createShare struct {`
			Key string `json:"key"`
			`}`

minor fixes in webserver 2022-06-01 13:02:52 +00:00			`func StartWebserver(addr string, client *client.Client, username, password string) error {`
added basic auth 2022-05-12 21:37:59 +00:00			`if username == "" \|\| password == "" {`
			`return errors.New("API username and password must be set")`
			`}`

minor fixes in webserver 2022-06-01 13:02:52 +00:00			`r := CreateRouter(client, username, password)`

			`return http.ListenAndServe(addr, r)`
			`}`

			`func CreateRouter(client client.Client, username, password string) mux.Router {`
inital commit 2022-05-09 12:52:18 +00:00			`r := mux.NewRouter()`

			`r.HandleFunc("/{slug:[a-zA-Z0-9]{6}}", func(w http.ResponseWriter, r *http.Request) {`
added static file serv 2022-05-10 14:03:24 +00:00			`http.ServeFile(w, r, "./public/index.html")`
inital commit 2022-05-09 12:52:18 +00:00			`})`

improved opening images 2022-05-14 21:06:16 +00:00			`r.HandleFunc("/s/{path:.{6,}}", func(w http.ResponseWriter, r *http.Request) {`
display a text share 2022-05-10 20:37:30 +00:00			`share := getShareHead(client, w, r)`
inital commit 2022-05-09 12:52:18 +00:00			`if share == nil {`
added metadata 2022-05-10 10:49:34 +00:00			`return`
			`}`

inital commit 2022-05-09 12:52:18 +00:00			`obj, err := client.GetObjectFromShare(r.Context(), share)`
			`if err != nil {`
added metadata 2022-05-10 10:49:34 +00:00			`logrus.Error(err.Error())`
inital commit 2022-05-09 12:52:18 +00:00			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return`
			`}`

			`_, err = io.Copy(w, obj)`

			`if err != nil {`
improved opening images 2022-05-14 21:06:16 +00:00			`logrus.Error(err.Error())`
inital commit 2022-05-09 12:52:18 +00:00			`return`
			`}`
			`})`

improved opening images 2022-05-14 21:06:16 +00:00			`r.HandleFunc("/s/{path:.{6,}}", func(w http.ResponseWriter, r *http.Request) {`
display a text share 2022-05-10 20:37:30 +00:00			`getShareHead(client, w, r)`
			`}).Methods("HEAD")`

inital commit 2022-05-09 12:52:18 +00:00			`r.HandleFunc("/api/share", func(w http.ResponseWriter, r *http.Request) {`
added basic auth 2022-05-12 21:37:59 +00:00			`if !checkAuth(w, r, username, password) {`
			`return`
			`}`
inital commit 2022-05-09 12:52:18 +00:00
implemented get all shares 2022-05-14 21:25:50 +00:00			`shares, err := client.GetAllShares(r.Context())`

			`if err != nil {`
			`logrus.Error(err.Error())`
			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return`
			`}`

			`w.Header().Set("Content-Type", "application/json")`
			`json.NewEncoder(w).Encode(shares)`
inital commit 2022-05-09 12:52:18 +00:00			`}).Methods("GET")`

get single share 2022-05-16 23:14:45 +00:00			`r.HandleFunc("/api/share/{slug:[a-zA-Z0-9]{6}}", func(w http.ResponseWriter, r *http.Request) {`
			`if !checkAuth(w, r, username, password) {`
			`return`
			`}`

			`vars := mux.Vars(r)`
			`slug := vars["slug"]`

			`share, err := client.GetShare(r.Context(), slug)`

			`if err != nil {`
			`logrus.Error(err.Error())`
			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return`
			`}`

			`if share == nil {`
			`http.NotFound(w, r)`
			`return`
			`}`

			`w.Header().Set("Content-Type", "application/json")`
			`json.NewEncoder(w).Encode(share)`
			`}).Methods("GET")`

inital commit 2022-05-09 12:52:18 +00:00			`r.HandleFunc("/api/share", func(w http.ResponseWriter, r *http.Request) {`
added basic auth 2022-05-12 21:37:59 +00:00			`if !checkAuth(w, r, username, password) {`
			`return`
			`}`
inital commit 2022-05-09 12:52:18 +00:00
			`var shareParams createShare`
			`err := json.NewDecoder(r.Body).Decode(&shareParams)`
			`if err != nil {`
added metadata 2022-05-10 10:49:34 +00:00			`logrus.Error(err.Error())`
inital commit 2022-05-09 12:52:18 +00:00			`http.Error(w, err.Error(), http.StatusBadRequest)`
			`return`
			`}`

			`share, err := client.CreateShare(r.Context(), shareParams.Key)`

			`if err != nil {`
better error handling 2022-06-03 12:27:40 +00:00			`if err == types.ErrKeyNotFound {`
			`http.Error(w, "The specified key does not exist", http.StatusBadRequest)`
			`return`
			`}`
added metadata 2022-05-10 10:49:34 +00:00			`logrus.Error(err.Error())`
inital commit 2022-05-09 12:52:18 +00:00			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return`
			`}`

			`w.Header().Set("Content-Type", "application/json")`
minor fixes in webserver 2022-06-01 13:02:52 +00:00			`w.WriteHeader(http.StatusCreated)`
inital commit 2022-05-09 12:52:18 +00:00			`json.NewEncoder(w).Encode(share)`
minor fixes in webserver 2022-06-01 13:02:52 +00:00			`}).Methods("POST", "PUT")`
inital commit 2022-05-09 12:52:18 +00:00
changed delete share url 2022-05-16 23:10:36 +00:00			`r.HandleFunc("/api/share/{slug:[a-zA-Z0-9]{6}}", func(w http.ResponseWriter, r *http.Request) {`
added basic auth 2022-05-12 21:37:59 +00:00			`if !checkAuth(w, r, username, password) {`
			`return`
			`}`
inital commit 2022-05-09 12:52:18 +00:00
changed delete share url 2022-05-16 23:10:36 +00:00			`vars := mux.Vars(r)`
implemented delete share 2022-05-09 13:36:43 +00:00
changed delete share url 2022-05-16 23:10:36 +00:00			`err := client.DeleteShare(r.Context(), vars["slug"])`
implemented delete share 2022-05-09 13:36:43 +00:00			`if err != nil {`
better error handling 2022-06-03 12:27:40 +00:00			`if err == types.ErrShareNotFound {`
			`http.NotFound(w, r)`
			`return`
			`}`
added metadata 2022-05-10 10:49:34 +00:00			`logrus.Error(err.Error())`
implemented delete share 2022-05-09 13:36:43 +00:00			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return`
			`}`
minor fixes in webserver 2022-06-01 13:02:52 +00:00
			`w.WriteHeader(http.StatusNoContent)`
inital commit 2022-05-09 12:52:18 +00:00			`}).Methods("DELETE")`

added static file serv 2022-05-10 14:03:24 +00:00			`r.PathPrefix("/").Handler(http.FileServer(http.Dir("./public/")))`

minor fixes in webserver 2022-06-01 13:02:52 +00:00			`return r`
inital commit 2022-05-09 12:52:18 +00:00			`}`
display a text share 2022-05-10 20:37:30 +00:00
minor fixes in webserver 2022-06-01 13:02:52 +00:00			`func getShareHead(client client.Client, w http.ResponseWriter, r http.Request) *types.Share {`
display a text share 2022-05-10 20:37:30 +00:00			`vars := mux.Vars(r)`
improved opening images 2022-05-14 21:06:16 +00:00			`slug := vars["path"][0:6]`
			`share, err := client.GetShare(r.Context(), slug)`
display a text share 2022-05-10 20:37:30 +00:00			`if err != nil {`
			`logrus.Error(err.Error())`
			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return nil`
			`}`

			`if share == nil {`
			`http.NotFound(w, r)`
			`return nil`
			`}`

			`metadata, err := client.GetObjectMetadata(r.Context(), share.Key)`
			`if err != nil {`
			`logrus.Error(err.Error())`
			`http.Error(w, err.Error(), http.StatusInternalServerError)`
			`return nil`
			`}`

improved opening images 2022-05-14 21:06:16 +00:00			`// Prevent using the default Content-Type. Can cause some confusion when the browser tries to open images in a new tab.`
			`if metadata.ContentType != "application/octet-stream" {`
			`w.Header().Set("Content-Type", metadata.ContentType)`
			`}`
display a text share 2022-05-10 20:37:30 +00:00			`w.Header().Set("Content-Length", strconv.FormatInt(metadata.Size, 10))`
improved opening images 2022-05-14 21:06:16 +00:00			`w.Header().Set("Content-Disposition", "inline; filename=\""+metadata.Filename+"\"")`
added etag to metadata 2022-05-10 20:46:28 +00:00			`if metadata.ETag != "" {`
			`w.Header().Set("ETag", metadata.ETag)`
			`}`
display a text share 2022-05-10 20:37:30 +00:00
			`return share`
			`}`
added basic auth 2022-05-12 21:37:59 +00:00
			`func checkAuth(w http.ResponseWriter, r *http.Request, username, password string) bool {`
fixed auth check thats why we test 2022-06-03 17:56:07 +00:00			`authUsername, authPassword, ok := r.BasicAuth()`
added basic auth 2022-05-12 21:37:59 +00:00			`if !ok {`
			`w.WriteHeader(http.StatusUnauthorized)`
			`return false`
			`}`

fixed auth check thats why we test 2022-06-03 17:56:07 +00:00			`if username != authUsername \|\| password != authPassword {`
added basic auth 2022-05-12 21:37:59 +00:00			`w.WriteHeader(http.StatusUnauthorized)`
			`return false`
			`}`

			`return true`
			`}`