mirror of
https://framagit.org/fiat-tux/hat-softwares/lutim.git
synced 2026-05-01 02:52:45 +02:00
303 lines
8.6 KiB
Perl
303 lines
8.6 KiB
Perl
package Lutim;
|
|
use Mojo::Base 'Mojolicious';
|
|
use Mojo::Util qw(quote);
|
|
use LutimModel;
|
|
use Crypt::CBC;
|
|
|
|
$ENV{MOJO_TMPDIR} = 'tmp';
|
|
mkdir($ENV{MOJO_TMPDIR}, 0700) unless (-d $ENV{MOJO_TMPDIR});
|
|
# This method will run once at server start
|
|
sub startup {
|
|
my $self = shift;
|
|
|
|
$self->plugin('I18N');
|
|
|
|
my $config = $self->plugin('Config');
|
|
|
|
# Default values
|
|
$config->{provisioning} = 100 unless (defined($config->{provisionning}));
|
|
$config->{provisioning} = 100 unless (defined($config->{provisioning}));
|
|
$config->{provis_step} = 5 unless (defined($config->{provis_step}));
|
|
$config->{length} = 8 unless (defined($config->{length}));
|
|
$config->{always_encrypt} = 0 unless (defined($config->{always_encrypt}));
|
|
|
|
die "You need to provide a contact information in lutim.conf !" unless (defined($config->{contact}));
|
|
|
|
$ENV{MOJO_MAX_MESSAGE_SIZE} = $config->{max_file_size} if (defined($config->{max_file_size}));
|
|
|
|
$self->secrets($config->{secrets});
|
|
|
|
$self->helper(
|
|
render_file => sub {
|
|
my $c = shift;
|
|
my ($filename, $path, $mediatype, $dl, $expires, $nocache, $key) = @_;
|
|
|
|
$filename = quote($filename);
|
|
|
|
my $asset;
|
|
unless ( -f $path && -r _ ) {
|
|
$c->app->log->error("Cannot read file [$path]. error [$!]");
|
|
$c->flash(
|
|
msg => $c->l('image_not_found')
|
|
);
|
|
return 500;
|
|
}
|
|
|
|
$mediatype =~ s/x-//;
|
|
|
|
my $headers = Mojo::Headers->new();
|
|
if ($nocache) {
|
|
$headers->add('Cache-Control' => 'no-cache');
|
|
} else {
|
|
$headers->add('Expires' => $expires);
|
|
}
|
|
$headers->add('Content-Type' => $mediatype.';name='.$filename);
|
|
$headers->add('Content-Disposition' => $dl.';filename='.$filename);
|
|
$c->res->content->headers($headers);
|
|
|
|
$c->app->log->debug($key);
|
|
if ($key) {
|
|
$asset = $c->decrypt($key, $path);
|
|
} else {
|
|
$asset = Mojo::Asset::File->new(path => $path);
|
|
}
|
|
$c->res->content->asset($asset);
|
|
$headers->add('Content-Length' => $asset->size);
|
|
|
|
return $c->rendered(200);
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
ip => sub {
|
|
my $c = shift;
|
|
|
|
my $proxy = '';
|
|
my @x_forward = $c->req->headers->header('X-Forwarded-For');
|
|
for my $x (@x_forward) {
|
|
$proxy .= join(', ', @$x);
|
|
}
|
|
my $ip = ($proxy) ? $proxy : $c->tx->remote_address;
|
|
return $ip.' Remote port: '.$c->tx->remote_port;
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
provisioning => sub {
|
|
my $c = shift;
|
|
|
|
# Create some short patterns for provisioning
|
|
if (LutimModel::Lutim->count('WHERE path IS NULL') < $c->config->{provisioning}) {
|
|
for (my $i = 0; $i < $c->config->{provis_step}; $i++) {
|
|
if (LutimModel->begin) {
|
|
my $short;
|
|
do {
|
|
$short= $c->shortener($c->config->{length});
|
|
} while (LutimModel::Lutim->count('WHERE short = ?', $short) || $short eq 'about' || $short eq 'stats');
|
|
|
|
LutimModel::Lutim->create(
|
|
short => $short,
|
|
counter => 0,
|
|
enabled => 1,
|
|
delete_at_first_view => 0,
|
|
delete_at_day => 0
|
|
);
|
|
LutimModel->commit;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
shortener => sub {
|
|
my $c = shift;
|
|
my $length = shift;
|
|
|
|
my @chars = ('a'..'z','A'..'Z','0'..'9');
|
|
my $result = '';
|
|
foreach (1..$length) {
|
|
$result .= $chars[rand scalar(@chars)];
|
|
}
|
|
return $result;
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
stop_upload => sub {
|
|
my $c = shift;
|
|
|
|
if (-f 'stop-upload' || -f 'stop-upload.manual') {
|
|
$c->stash(
|
|
stop_upload => $c->l('stop_upload', $config->{contact})
|
|
);
|
|
return 1;
|
|
}
|
|
return 0;
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
max_delay => sub {
|
|
my $c = shift;
|
|
|
|
if (defined($c->config->{max_delay})) {
|
|
my $delay = $c->config->{max_delay};
|
|
if ($delay >= 0) {
|
|
return $delay;
|
|
} else {
|
|
warn "max_delay set to a negative value. Default to 0."
|
|
}
|
|
}
|
|
return 0;
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
default_delay => sub {
|
|
my $c = shift;
|
|
|
|
if (defined($c->config->{default_delay})) {
|
|
my $delay = $c->config->{default_delay};
|
|
if ($delay >= 0) {
|
|
return $delay;
|
|
} else {
|
|
warn "default_delay set to a negative value. Default to 0."
|
|
}
|
|
}
|
|
return 0;
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
is_selected => sub {
|
|
my $c = shift;
|
|
my $num = shift;
|
|
|
|
return ($num == $c->default_delay) ? 'selected="selected"' : '';
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
crypt => sub {
|
|
my $c = shift;
|
|
my $upload = shift;
|
|
my $filename = shift;
|
|
|
|
my $key = $c->shortener(8);
|
|
|
|
my $cipher = Crypt::CBC->new(
|
|
-key => $key,
|
|
-cipher => 'Blowfish',
|
|
-header => 'none',
|
|
-iv => 'dupajasi'
|
|
);
|
|
|
|
$cipher->start('encrypting');
|
|
|
|
my $crypt_asset = Mojo::Asset::File->new;
|
|
|
|
$crypt_asset->add_chunk($cipher->crypt($upload->slurp));
|
|
$crypt_asset->add_chunk($cipher->finish);
|
|
|
|
my $crypt_upload = Mojo::Upload->new;
|
|
$crypt_upload->filename($filename);
|
|
$crypt_upload->asset($crypt_asset);
|
|
|
|
return ($crypt_upload, $key);
|
|
}
|
|
);
|
|
|
|
$self->helper(
|
|
decrypt => sub {
|
|
my $c = shift;
|
|
my $key = shift;
|
|
my $file = shift;
|
|
|
|
my $cipher = Crypt::CBC->new(
|
|
-key => $key,
|
|
-cipher => 'Blowfish',
|
|
-header => 'none',
|
|
-iv => 'dupajasi'
|
|
);
|
|
|
|
$cipher->start('decrypting');
|
|
|
|
my $decrypt_asset = Mojo::Asset::File->new;
|
|
|
|
open(my $f, "<",$file) or die "Unable to read encrypted file: $!";
|
|
binmode $f;
|
|
while (read($f, my $buffer,1024)) {
|
|
$decrypt_asset->add_chunk($cipher->crypt($buffer));
|
|
}
|
|
$decrypt_asset->add_chunk($cipher->finish) ;
|
|
|
|
return $decrypt_asset;
|
|
}
|
|
);
|
|
|
|
$self->hook(
|
|
before_dispatch => sub {
|
|
my $c = shift;
|
|
$c->stop_upload();
|
|
if (defined($c->config->{allowed_domains})) {
|
|
if ($c->config->{allowed_domains}->[0] eq '*') {
|
|
$c->res->headers->header('Access-Control-Allow-Origin' => '*');
|
|
} elsif (my $origin = $c->req->headers->origin) {
|
|
for my $domain ($c->config->{allowed_domains}) {
|
|
if ($domain->[0] eq $origin) {
|
|
$c->res->headers->header('Access-Control-Allow-Origin' => $origin);
|
|
last;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
}
|
|
);
|
|
|
|
$self->hook(
|
|
after_dispatch => sub {
|
|
shift->provisioning();
|
|
}
|
|
);
|
|
|
|
|
|
$self->defaults(layout => 'default');
|
|
|
|
$self->provisioning();
|
|
|
|
# Router
|
|
my $r = $self->routes;
|
|
|
|
$r->options(sub {
|
|
my $c = shift;
|
|
$c->res->headers->allow('POST') if (defined($c->config->{allowed_domains}));
|
|
$c->render(data => '', status => 204);
|
|
});
|
|
|
|
$r->get('/')->
|
|
to('Controller#home')->
|
|
name('index');
|
|
|
|
$r->get('/about')->
|
|
to('Controller#about')->
|
|
name('about');
|
|
|
|
$r->get('/stats')->
|
|
to('Controller#stats')->
|
|
name('stats');
|
|
|
|
$r->post('/')->
|
|
to('Controller#add')->
|
|
name('add');
|
|
|
|
$r->get('/:short')->
|
|
to('Controller#short')->
|
|
name('short');
|
|
|
|
$r->get('/:short/:key')->
|
|
to('Controller#short');
|
|
}
|
|
|
|
1;
|