467 lines
11 KiB
Go
467 lines
11 KiB
Go
package server
|
|
|
|
import (
|
|
"bytes"
|
|
"embed"
|
|
"encoding/json"
|
|
"errors"
|
|
"fmt"
|
|
"html/template"
|
|
"io"
|
|
"log/slog"
|
|
"net/http"
|
|
"strconv"
|
|
"strings"
|
|
|
|
"git.riou.xyz/jriou/coller/internal"
|
|
"github.com/gorilla/mux"
|
|
"github.com/prometheus/client_golang/prometheus/promhttp"
|
|
)
|
|
|
|
var passwordLength = internal.MIN_PASSWORD_LENGTH
|
|
|
|
type Server struct {
|
|
logger *slog.Logger
|
|
db *Database
|
|
config *Config
|
|
version string
|
|
metrics *Metrics
|
|
}
|
|
|
|
func NewServer(logger *slog.Logger, db *Database, config *Config, version string) (*Server, error) {
|
|
l := logger.With("module", "server")
|
|
|
|
return &Server{
|
|
logger: l,
|
|
db: db,
|
|
config: config,
|
|
version: version,
|
|
}, nil
|
|
}
|
|
|
|
func (s *Server) SetIDLength(length int) {
|
|
idLength = length
|
|
}
|
|
|
|
func (s *Server) SetPasswordLength(length int) {
|
|
passwordLength = length
|
|
}
|
|
|
|
func (s *Server) SetMetrics(metrics *Metrics) {
|
|
s.metrics = metrics
|
|
}
|
|
|
|
type ErrorResponse struct {
|
|
Message string `json:"message"`
|
|
Error string `json:"error"`
|
|
}
|
|
|
|
func (e ErrorResponse) ToJSON() string {
|
|
b, err := json.Marshal(e)
|
|
if err == nil {
|
|
return string(b)
|
|
}
|
|
return fmt.Sprintf("{\"message\":\"could not serialize response to JSON\", \"error\":\"%v\"}", err)
|
|
}
|
|
|
|
func WriteError(w http.ResponseWriter, message string, err error) {
|
|
w.Header().Set("Content-Type", "application/json")
|
|
w.WriteHeader(http.StatusInternalServerError)
|
|
fmt.Fprint(w, ErrorResponse{
|
|
Message: message,
|
|
Error: fmt.Sprintf("%v", err),
|
|
}.ToJSON())
|
|
}
|
|
|
|
func HealthHandler(w http.ResponseWriter, r *http.Request) {
|
|
fmt.Fprintf(w, "OK")
|
|
}
|
|
|
|
type CreateNoteHandler struct {
|
|
logger *slog.Logger
|
|
db *Database
|
|
maxUploadSize int64
|
|
}
|
|
|
|
type CreateNotePayload struct {
|
|
Content string `json:"content"`
|
|
Password string `json:"password"`
|
|
Encrypted bool `json:"encrypted"`
|
|
Expiration int `json:"expiration"`
|
|
DeleteAfterRead bool `json:"delete_after_read"`
|
|
Language string `json:"language"`
|
|
}
|
|
|
|
type CreateNoteResponse struct {
|
|
ID string `json:"id"`
|
|
}
|
|
|
|
func (h *CreateNoteHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
w.Header().Set("Content-Type", "application/json")
|
|
|
|
bodyReader := http.MaxBytesReader(w, r.Body, h.maxUploadSize)
|
|
defer r.Body.Close()
|
|
|
|
var body CreateNotePayload
|
|
err := json.NewDecoder(bodyReader).Decode(&body)
|
|
if err != nil {
|
|
WriteError(w, "could not decode payload to create note", err)
|
|
return
|
|
}
|
|
|
|
content, err := internal.Decode(body.Content)
|
|
|
|
if err != nil {
|
|
WriteError(w, "could not decode content", err)
|
|
return
|
|
}
|
|
|
|
note, err := h.db.Create(content, body.Password, body.Encrypted, body.Expiration, body.DeleteAfterRead, body.Language)
|
|
if err != nil {
|
|
WriteError(w, "could not create note", err)
|
|
return
|
|
}
|
|
|
|
w.WriteHeader(http.StatusOK)
|
|
json.NewEncoder(w).Encode(CreateNoteResponse{ID: note.ID})
|
|
}
|
|
|
|
type GetNoteHandler struct {
|
|
logger *slog.Logger
|
|
db *Database
|
|
}
|
|
|
|
func (h *GetNoteHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
w.Header().Set("Content-Type", "text/plain; charset=utf-8")
|
|
|
|
id := mux.Vars(r)["id"]
|
|
|
|
note, err := h.db.Get(id)
|
|
|
|
if err != nil {
|
|
WriteError(w, "could not get note", err)
|
|
} else if note == nil {
|
|
w.WriteHeader(http.StatusNotFound)
|
|
} else {
|
|
if note.Encrypted {
|
|
w.Header().Set("Content-Type", "application/octet-stream")
|
|
}
|
|
w.WriteHeader(http.StatusOK)
|
|
fmt.Fprint(w, string(note.Content))
|
|
}
|
|
}
|
|
|
|
type GetProtectedNoteHandler struct {
|
|
logger *slog.Logger
|
|
db *Database
|
|
}
|
|
|
|
func (h *GetProtectedNoteHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
w.Header().Set("Content-Type", "text/plain; charset=utf-8")
|
|
|
|
vars := mux.Vars(r)
|
|
id := vars["id"]
|
|
password := vars["password"]
|
|
|
|
note, err := h.db.Get(id)
|
|
|
|
if err != nil {
|
|
WriteError(w, "could not get note", err)
|
|
return
|
|
} else if note == nil {
|
|
w.WriteHeader(http.StatusNotFound)
|
|
return
|
|
}
|
|
|
|
if password != "" && note.Encrypted {
|
|
note.Content, err = internal.Decrypt(note.Content, password)
|
|
if err != nil {
|
|
WriteError(w, "could not decrypt note", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
w.WriteHeader(http.StatusOK)
|
|
fmt.Fprint(w, string(note.Content))
|
|
}
|
|
|
|
type PageData struct {
|
|
Title string
|
|
Version string
|
|
Expirations []int
|
|
Languages []string
|
|
Err error
|
|
URL string
|
|
Note *Note
|
|
}
|
|
|
|
type HomeHandler struct {
|
|
Templates *template.Template
|
|
PageData PageData
|
|
}
|
|
|
|
func (h *HomeHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
h.Templates.ExecuteTemplate(w, "index", h.PageData)
|
|
}
|
|
|
|
type CreateNoteWithFormHandler struct {
|
|
Templates *template.Template
|
|
PageData PageData
|
|
logger *slog.Logger
|
|
db *Database
|
|
maxUploadSize int64
|
|
}
|
|
|
|
func (h *CreateNoteWithFormHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
h.PageData.Err = nil
|
|
templateName := "create"
|
|
|
|
h.logger.Debug("parsing multipart form")
|
|
err := r.ParseMultipartForm(h.maxUploadSize)
|
|
if err != nil {
|
|
h.PageData.Err = err
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
h.logger.Debug("parsing content")
|
|
content := []byte(r.FormValue("content"))
|
|
|
|
h.logger.Debug("parsing file")
|
|
file, handler, err := r.FormFile("file")
|
|
if err != nil && !errors.Is(err, http.ErrMissingFile) {
|
|
h.PageData.Err = err
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
if !errors.Is(err, http.ErrMissingFile) {
|
|
defer file.Close()
|
|
|
|
h.logger.Debug("checking file size")
|
|
if handler.Size > h.maxUploadSize {
|
|
h.PageData.Err = fmt.Errorf("file too large (%d > %d)", handler.Size, h.maxUploadSize)
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
h.logger.Debug("checking file content type")
|
|
if !strings.HasPrefix(handler.Header.Get("Content-Type"), "text/") {
|
|
h.PageData.Err = fmt.Errorf("text file expected (got %s)", handler.Header.Get("Content-Type"))
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
h.logger.Debug("reading uploaded file")
|
|
var fileContent bytes.Buffer
|
|
n, err := io.Copy(&fileContent, file)
|
|
if err != nil {
|
|
h.PageData.Err = err
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
h.logger.Debug("file uploaded", slog.Any("bytes", n))
|
|
if n != 0 {
|
|
content = fileContent.Bytes()
|
|
}
|
|
}
|
|
|
|
h.logger.Debug("checking content")
|
|
if content == nil || len(content) == 0 {
|
|
h.PageData.Err = fmt.Errorf("empty note")
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
h.logger.Debug("checking inputs")
|
|
noPassword := r.FormValue("no-password")
|
|
password := r.FormValue("password")
|
|
expiration := r.FormValue("expiration")
|
|
deleteAfterRead := r.FormValue("delete-after-read")
|
|
language := r.FormValue("language")
|
|
|
|
if password == "" && noPassword == "" {
|
|
h.logger.Debug("generating password")
|
|
password = internal.GenerateChars(passwordLength)
|
|
}
|
|
|
|
h.logger.Debug("computing expiration")
|
|
var expirationInt int
|
|
if expiration == "Expiration" {
|
|
expirationInt = 0
|
|
} else {
|
|
expirationInt, _ = strconv.Atoi(expiration)
|
|
}
|
|
|
|
h.logger.Debug("saving note to the database")
|
|
note, err := h.db.Create(content, password, password != "", expirationInt, deleteAfterRead != "", language)
|
|
if err != nil {
|
|
h.PageData.Err = err
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
h.logger.Debug("building note url")
|
|
var scheme = "http://"
|
|
if r.TLS != nil {
|
|
scheme = "https://"
|
|
}
|
|
|
|
h.PageData.URL = fmt.Sprintf("%s%s/%s", scheme, r.Host, note.ID)
|
|
if password != "" {
|
|
h.PageData.URL += "/" + password
|
|
}
|
|
|
|
h.logger.Debug("rendering page")
|
|
h.Templates.ExecuteTemplate(w, "create", h.PageData)
|
|
}
|
|
|
|
type GetWebNoteHandler struct {
|
|
Templates *template.Template
|
|
PageData PageData
|
|
logger *slog.Logger
|
|
db *Database
|
|
}
|
|
|
|
func (h *GetWebNoteHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
h.PageData.Err = nil
|
|
templateName := "note"
|
|
|
|
vars := mux.Vars(r)
|
|
id := vars["id"]
|
|
|
|
note, err := h.db.Get(id)
|
|
|
|
if err != nil {
|
|
h.PageData.Err = fmt.Errorf("could not find note: %v", err)
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
if note.Encrypted {
|
|
h.PageData.Err = fmt.Errorf("note is encrypted")
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
h.PageData.Note = note
|
|
|
|
h.logger.Debug("rendering note web page")
|
|
h.Templates.ExecuteTemplate(w, "note", h.PageData)
|
|
}
|
|
|
|
type GetProtectedWebNoteHandler struct {
|
|
Templates *template.Template
|
|
PageData PageData
|
|
logger *slog.Logger
|
|
db *Database
|
|
}
|
|
|
|
func (h *GetProtectedWebNoteHandler) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
h.PageData.Err = nil
|
|
templateName := "note"
|
|
|
|
vars := mux.Vars(r)
|
|
id := vars["id"]
|
|
password := vars["password"]
|
|
|
|
note, err := h.db.Get(id)
|
|
|
|
if err != nil {
|
|
h.PageData.Err = fmt.Errorf("could not find note: %v", err)
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
if note == nil {
|
|
h.PageData.Err = fmt.Errorf("Note doesn't exist or has been deleted")
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
|
|
if password != "" && note.Encrypted {
|
|
note.Content, err = internal.Decrypt(note.Content, password)
|
|
if err != nil {
|
|
h.PageData.Err = fmt.Errorf("could not decrypt note: %v", err)
|
|
h.Templates.ExecuteTemplate(w, templateName, h.PageData)
|
|
return
|
|
}
|
|
}
|
|
|
|
h.PageData.Note = note
|
|
|
|
h.logger.Debug("rendering protected note web page")
|
|
h.Templates.ExecuteTemplate(w, "note", h.PageData)
|
|
}
|
|
|
|
//go:embed templates/*
|
|
var templatesFS embed.FS
|
|
|
|
func (s *Server) Start() error {
|
|
r := mux.NewRouter().StrictSlash(true)
|
|
|
|
// Healthchecks
|
|
r.HandleFunc("/health", HealthHandler)
|
|
|
|
// Metrics
|
|
if s.metrics != nil && s.metrics.reg != nil {
|
|
r.Path(s.config.PrometheusRoute).Handler(promhttp.HandlerFor(s.metrics.reg, promhttp.HandlerOpts{Registry: s.metrics.reg})).Methods("GET")
|
|
}
|
|
|
|
// API
|
|
r.Path("/api/note").Handler(&CreateNoteHandler{logger: s.logger, db: s.db, maxUploadSize: s.config.MaxUploadSize}).Methods("POST")
|
|
r.Path("/{id:[a-zA-Z0-9]+}/{password:[a-zA-Z0-9]+}").Handler(&GetProtectedNoteHandler{logger: s.logger, db: s.db}).Methods("GET")
|
|
r.Path("/{id:[a-zA-Z0-9]+}").Handler(&GetNoteHandler{logger: s.logger, db: s.db}).Methods("GET")
|
|
|
|
// Web pages
|
|
funcs := template.FuncMap{
|
|
"HumanDuration": internal.HumanDuration,
|
|
"lower": strings.ToLower,
|
|
"string": func(b []byte) string { return string(b) },
|
|
}
|
|
p := PageData{
|
|
Title: s.config.Title,
|
|
Expirations: s.config.Expirations,
|
|
Languages: s.config.Languages,
|
|
}
|
|
|
|
if s.config.ShowVersion {
|
|
p.Version = s.version
|
|
}
|
|
|
|
templates, err := template.New("templates").Funcs(funcs).ParseFS(templatesFS, "templates/*.html")
|
|
if err != nil {
|
|
return err
|
|
}
|
|
createNoteWithFormHandler := &CreateNoteWithFormHandler{
|
|
Templates: templates,
|
|
PageData: p,
|
|
logger: s.logger,
|
|
db: s.db,
|
|
maxUploadSize: s.config.MaxUploadSize,
|
|
}
|
|
r.Path("/create").Handler(createNoteWithFormHandler).Methods("POST")
|
|
|
|
protectedWebNoteHandler := &GetProtectedWebNoteHandler{
|
|
Templates: templates,
|
|
PageData: p,
|
|
logger: s.logger,
|
|
db: s.db,
|
|
}
|
|
r.Path("/{id:[a-zA-Z0-9]+}/{password:[a-zA-Z0-9]+}.html").Handler(protectedWebNoteHandler).Methods("GET")
|
|
|
|
webNoteHandler := &GetWebNoteHandler{
|
|
Templates: templates,
|
|
PageData: p,
|
|
logger: s.logger,
|
|
db: s.db,
|
|
}
|
|
r.Path("/{id:[a-zA-Z0-9]+}.html").Handler(webNoteHandler).Methods("GET")
|
|
|
|
r.Path("/").Handler(&HomeHandler{Templates: templates, PageData: p}).Methods("GET")
|
|
|
|
addr := fmt.Sprintf("%s:%d", s.config.ListenAddress, s.config.ListenPort)
|
|
s.logger.Info(fmt.Sprintf("listening to %s:%d", s.config.ListenAddress, s.config.ListenPort))
|
|
return http.ListenAndServe(addr, r)
|
|
}
|