lotus/api/api.go

package api

import (
	"bytes"
	"encoding/json"
	"github.com/gorilla/websocket"
	"github.com/julienschmidt/httprouter"
	"log"
	"net/http"
	"time"
)

var upgrader = websocket.Upgrader{}

func SetupApiServer(listen string, auth *AuthChecker, send Smtp, recv Imap) *http.Server {
	r := httprouter.New()

	// === ACCOUNT ===
	r.GET("/identities", auth.Middleware(func(rw http.ResponseWriter, req *http.Request, params httprouter.Params, b AuthClaims) {
		// TODO(melon): find users aliases and other account data
	}))

	// === SMTP ===
	r.POST("/smtp", auth.Middleware(MessageSender(send)))

	r.GET("/imap", func(rw http.ResponseWriter, req *http.Request, params httprouter.Params) {
		// upgrade to websocket conn and defer close
		c, err := upgrader.Upgrade(rw, req, nil)
		if err != nil {
			log.Println("[Imap] Failed to upgrade to websocket:", err)
			return
		}
		defer c.Close()

		// set a really short deadline to refuse unauthenticated clients
		deadline := time.Now().Add(5 * time.Second)
		_ = c.SetReadDeadline(deadline)
		_ = c.SetWriteDeadline(deadline)

		// close on all possible errors, assume we are being attacked
		mt, msg, err := c.ReadMessage()
		if err != nil {
			return
		}
		if mt != websocket.TextMessage {
			return
		}
		if len(msg) >= 2000 {
			return
		}

		// parse token from message
		var tokenMsg struct {
			Token string `json:"token"`
		}
		dec := json.NewDecoder(bytes.NewReader(msg))
		dec.DisallowUnknownFields()
		err = dec.Decode(&tokenMsg)
		if err != nil {
			_ = c.WriteJSON(map[string]string{"error": "Authentication missing"})
			return
		}

		// get a "possible" auth token value
		// exit on empty token value
		if tokenMsg.Token == "" {
			_ = c.WriteJSON(map[string]string{"error": "Authentication missing"})
			return
		}

		// check the token
		authUser, err := auth.Check(tokenMsg.Token)
		if err != nil {
			_ = c.WriteJSON(map[string]string{"error": "Authentication invalid"})
			return
		}

		// open imap client
		client, err := recv.MakeClient(authUser.Subject)
		if err != nil {
			_ = c.WriteJSON(map[string]string{"error": "Making client failed"})
			return
		}

		// auth was ok
		err = c.WriteJSON(map[string]string{"auth": "ok"})
		if err != nil {
			return
		}

		for {
			// authenticated users get longer to reply
			// a simple ping/pong setup bypasses this
			d := time.Now().Add(5 * time.Minute)
			_ = c.SetReadDeadline(d)
			_ = c.SetWriteDeadline(d)

			// read incoming message
			var m struct {
				Action string   `json:"action"`
				Args   []string `json:"args"`
			}
			err := c.ReadJSON(&m)
			if err != nil {
				_ = c.WriteJSON(map[string]string{"error": "Invalid input"})
				return
			}

			// handle action
			j, err := client.HandleWS(m.Action, m.Args)
			if err != nil {
				_ = c.WriteJSON(map[string]string{"error": "Action failed"})
				return
			}

			// write outgoing message
			err = c.WriteJSON(j)
			if err != nil {
				_ = c.WriteJSON(map[string]string{"error": "Invalid output"})
				return
			}
		}
	})

	return &http.Server{
		Addr:              listen,
		Handler:           r,
		ReadTimeout:       time.Minute,
		ReadHeaderTimeout: time.Minute,
		WriteTimeout:      time.Minute,
		IdleTimeout:       time.Minute,
		MaxHeaderBytes:    2500,
	}
}

// apiError outputs a generic JSON error message
func apiError(rw http.ResponseWriter, code int, m string) {
	rw.WriteHeader(code)
	_ = json.NewEncoder(rw).Encode(map[string]string{
		"error": m,
	})
}
Start coding the mailbox api 2023-08-13 03:04:16 +01:00			`package api`

			`import (`
Read token from json 2023-09-11 17:45:37 +01:00			`"bytes"`
Start coding the mailbox api 2023-08-13 03:04:16 +01:00			`"encoding/json"`
Try websockets 2023-09-11 17:23:44 +01:00			`"github.com/gorilla/websocket"`
Start coding the mailbox api 2023-08-13 03:04:16 +01:00			`"github.com/julienschmidt/httprouter"`
Better list messages encoding 2023-09-11 11:55:52 +01:00			`"log"`
Start coding the mailbox api 2023-08-13 03:04:16 +01:00			`"net/http"`
			`"time"`
			`)`

Try websockets 2023-09-11 17:23:44 +01:00			`var upgrader = websocket.Upgrader{}`

			`func SetupApiServer(listen string, auth AuthChecker, send Smtp, recv Imap) http.Server {`
Start coding the mailbox api 2023-08-13 03:04:16 +01:00			`r := httprouter.New()`

Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`// === ACCOUNT ===`
Try websockets 2023-09-11 17:23:44 +01:00			`r.GET("/identities", auth.Middleware(func(rw http.ResponseWriter, req *http.Request, params httprouter.Params, b AuthClaims) {`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`// TODO(melon): find users aliases and other account data`
			`}))`

			`// === SMTP ===`
Try websockets 2023-09-11 17:23:44 +01:00			`r.POST("/smtp", auth.Middleware(MessageSender(send)))`
Save before recoding imap to use websockets 2023-09-11 14:55:12 +01:00
Use get instead of connect 2023-09-11 17:35:29 +01:00			`r.GET("/imap", func(rw http.ResponseWriter, req *http.Request, params httprouter.Params) {`
Try websockets 2023-09-11 17:23:44 +01:00			`// upgrade to websocket conn and defer close`
			`c, err := upgrader.Upgrade(rw, req, nil)`
Save before recoding imap to use websockets 2023-09-11 14:55:12 +01:00			`if err != nil {`
Try websockets 2023-09-11 17:23:44 +01:00			`log.Println("[Imap] Failed to upgrade to websocket:", err)`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`return`
			`}`
Try websockets 2023-09-11 17:23:44 +01:00			`defer c.Close()`

			`// set a really short deadline to refuse unauthenticated clients`
			`deadline := time.Now().Add(5 * time.Second)`
			`_ = c.SetReadDeadline(deadline)`
			`_ = c.SetWriteDeadline(deadline)`

			`// close on all possible errors, assume we are being attacked`
			`mt, msg, err := c.ReadMessage()`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`if err != nil {`
			`return`
			`}`
Try websockets 2023-09-11 17:23:44 +01:00			`if mt != websocket.TextMessage {`
			`return`
Better list messages encoding 2023-09-11 11:55:52 +01:00			`}`
Try websockets 2023-09-11 17:23:44 +01:00			`if len(msg) >= 2000 {`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`return`
			`}`
Try websockets 2023-09-11 17:23:44 +01:00
Read token from json 2023-09-11 17:45:37 +01:00			`// parse token from message`
			`var tokenMsg struct {`
			Token string `json:"token"`
			`}`
			`dec := json.NewDecoder(bytes.NewReader(msg))`
			`dec.DisallowUnknownFields()`
			`err = dec.Decode(&tokenMsg)`
			`if err != nil {`
Add logging error messages 2023-09-11 17:49:44 +01:00			`_ = c.WriteJSON(map[string]string{"error": "Authentication missing"})`
Read token from json 2023-09-11 17:45:37 +01:00			`return`
			`}`
Try websockets 2023-09-11 17:23:44 +01:00
Read token from json 2023-09-11 17:45:37 +01:00			`// get a "possible" auth token value`
			`// exit on empty token value`
			`if tokenMsg.Token == "" {`
Add logging error messages 2023-09-11 17:49:44 +01:00			`_ = c.WriteJSON(map[string]string{"error": "Authentication missing"})`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`return`
			`}`
Try websockets 2023-09-11 17:23:44 +01:00
			`// check the token`
Read token from json 2023-09-11 17:45:37 +01:00			`authUser, err := auth.Check(tokenMsg.Token)`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`if err != nil {`
Add logging error messages 2023-09-11 17:49:44 +01:00			`_ = c.WriteJSON(map[string]string{"error": "Authentication invalid"})`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`return`
			`}`
Try websockets 2023-09-11 17:23:44 +01:00
Respond incase of ok auth 2023-09-11 17:46:53 +01:00			`// open imap client`
Try websockets 2023-09-11 17:23:44 +01:00			`client, err := recv.MakeClient(authUser.Subject)`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`if err != nil {`
Read token from json 2023-09-11 17:45:37 +01:00			`_ = c.WriteJSON(map[string]string{"error": "Making client failed"})`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`return`
			`}`
Try websockets 2023-09-11 17:23:44 +01:00
Respond incase of ok auth 2023-09-11 17:46:53 +01:00			`// auth was ok`
			`err = c.WriteJSON(map[string]string{"auth": "ok"})`
			`if err != nil {`
			`return`
			`}`

Try websockets 2023-09-11 17:23:44 +01:00			`for {`
			`// authenticated users get longer to reply`
			`// a simple ping/pong setup bypasses this`
			`d := time.Now().Add(5 * time.Minute)`
			`_ = c.SetReadDeadline(d)`
			`_ = c.SetWriteDeadline(d)`

			`// read incoming message`
			`var m struct {`
			Action string `json:"action"`
			Args []string `json:"args"`
			`}`
			`err := c.ReadJSON(&m)`
			`if err != nil {`
Add logging error messages 2023-09-11 17:49:44 +01:00			`_ = c.WriteJSON(map[string]string{"error": "Invalid input"})`
Try websockets 2023-09-11 17:23:44 +01:00			`return`
			`}`

			`// handle action`
			`j, err := client.HandleWS(m.Action, m.Args)`
			`if err != nil {`
Add logging error messages 2023-09-11 17:49:44 +01:00			`_ = c.WriteJSON(map[string]string{"error": "Action failed"})`
Try websockets 2023-09-11 17:23:44 +01:00			`return`
			`}`

			`// write outgoing message`
			`err = c.WriteJSON(j)`
			`if err != nil {`
Add logging error messages 2023-09-11 17:49:44 +01:00			`_ = c.WriteJSON(map[string]string{"error": "Invalid output"})`
Try websockets 2023-09-11 17:23:44 +01:00			`return`
			`}`
			`}`
			`})`
Start coding the mailbox api 2023-08-13 03:04:16 +01:00
			`return &http.Server{`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00			`Addr: listen,`
Start coding the mailbox api 2023-08-13 03:04:16 +01:00			`Handler: r,`
			`ReadTimeout: time.Minute,`
			`ReadHeaderTimeout: time.Minute,`
			`WriteTimeout: time.Minute,`
			`IdleTimeout: time.Minute,`
			`MaxHeaderBytes: 2500,`
			`}`
			`}`
Start coding postfix config reader 2023-08-21 00:26:22 +01:00
			`// apiError outputs a generic JSON error message`
			`func apiError(rw http.ResponseWriter, code int, m string) {`
			`rw.WriteHeader(code)`
			`_ = json.NewEncoder(rw).Encode(map[string]string{`
			`"error": m,`
			`})`
			`}`