mirror of
https://github.com/1f349/violet.git
synced 2024-09-19 18:36:48 +01:00
89 lines
3.2 KiB
Go
89 lines
3.2 KiB
Go
|
package api
|
||
|
|
|
||
|
|
import (
|
||
|
|
"encoding/json"
|
||
|
|
"github.com/MrMelon54/mjwt"
|
||
|
|
"github.com/MrMelon54/violet/router"
|
||
|
|
"github.com/MrMelon54/violet/target"
|
||
|
|
"github.com/MrMelon54/violet/utils"
|
||
|
|
"github.com/julienschmidt/httprouter"
|
||
|
|
"log"
|
||
|
|
"net/http"
|
||
|
|
"strings"
|
||
|
|
)
|
||
|
|
|
||
|
|
type TargetApis struct {
|
||
|
|
CreateRoute httprouter.Handle
|
||
|
|
DeleteRoute httprouter.Handle
|
||
|
|
CreateRedirect httprouter.Handle
|
||
|
|
DeleteRedirect httprouter.Handle
|
||
|
|
}
|
||
|
|
|
||
|
|
func SetupTargetApis(verify mjwt.Verifier, manager *router.Manager) *TargetApis {
|
||
|
|
r := &TargetApis{
|
||
|
|
CreateRoute: parseJsonAndCheckOwnership[routeSource](verify, "route", func(rw http.ResponseWriter, req *http.Request, params httprouter.Params, b AuthClaims, t routeSource) {
|
||
|
|
err := manager.InsertRoute(target.Route(t))
|
||
|
|
if err != nil {
|
||
|
|
log.Printf("[Violet] Failed to insert route into database: %s\n", err)
|
||
|
|
apiError(rw, http.StatusInternalServerError, "Failed to insert route into database")
|
||
|
|
return
|
||
|
|
}
|
||
|
|
manager.Compile()
|
||
|
|
}),
|
||
|
|
DeleteRoute: parseJsonAndCheckOwnership[sourceJson](verify, "route", func(rw http.ResponseWriter, req *http.Request, params httprouter.Params, b AuthClaims, t sourceJson) {
|
||
|
|
err := manager.DeleteRoute(t.Src)
|
||
|
|
if err != nil {
|
||
|
|
log.Printf("[Violet] Failed to delete route from database: %s\n", err)
|
||
|
|
apiError(rw, http.StatusInternalServerError, "Failed to delete route from database")
|
||
|
|
return
|
||
|
|
}
|
||
|
|
manager.Compile()
|
||
|
|
}),
|
||
|
|
CreateRedirect: parseJsonAndCheckOwnership[redirectSource](verify, "redirect", func(rw http.ResponseWriter, req *http.Request, params httprouter.Params, b AuthClaims, t redirectSource) {
|
||
|
|
err := manager.InsertRedirect(target.Redirect(t))
|
||
|
|
if err != nil {
|
||
|
|
log.Printf("[Violet] Failed to insert redirect into database: %s\n", err)
|
||
|
|
apiError(rw, http.StatusInternalServerError, "Failed to insert redirect into database")
|
||
|
|
return
|
||
|
|
}
|
||
|
|
manager.Compile()
|
||
|
|
}),
|
||
|
|
DeleteRedirect: parseJsonAndCheckOwnership[sourceJson](verify, "redirect", func(rw http.ResponseWriter, req *http.Request, params httprouter.Params, b AuthClaims, t sourceJson) {
|
||
|
|
err := manager.DeleteRedirect(t.Src)
|
||
|
|
if err != nil {
|
||
|
|
log.Printf("[Violet] Failed to delete redirect from database: %s\n", err)
|
||
|
|
apiError(rw, http.StatusInternalServerError, "Failed to delete redirect from database")
|
||
|
|
return
|
||
|
|
}
|
||
|
|
manager.Compile()
|
||
|
|
}),
|
||
|
|
}
|
||
|
|
return r
|
||
|
|
}
|
||
|
|
|
||
|
|
type AuthWithJsonCallback[T any] func(rw http.ResponseWriter, req *http.Request, params httprouter.Params, b AuthClaims, t T)
|
||
|
|
|
||
|
|
func parseJsonAndCheckOwnership[T sourceGetter](verify mjwt.Verifier, t string, cb AuthWithJsonCallback[T]) httprouter.Handle {
|
||
|
|
return checkAuthWithPerm(verify, "violet:"+t, func(rw http.ResponseWriter, req *http.Request, params httprouter.Params, b AuthClaims) {
|
||
|
|
var j T
|
||
|
|
if json.NewDecoder(req.Body).Decode(&j) != nil {
|
||
|
|
apiError(rw, http.StatusBadRequest, "Invalid request body")
|
||
|
|
return
|
||
|
|
}
|
||
|
|
|
||
|
|
// check token owns this domain
|
||
|
|
host, _ := utils.SplitHostPath(j.GetSource())
|
||
|
|
if strings.IndexByte(host, ':') != -1 {
|
||
|
|
apiError(rw, http.StatusBadRequest, "Invalid route source")
|
||
|
|
return
|
||
|
|
}
|
||
|
|
|
||
|
|
if !validateDomainOwnershipClaims(host, b.Claims.Perms) {
|
||
|
|
apiError(rw, http.StatusBadRequest, "Token cannot modify the specified domain")
|
||
|
|
return
|
||
|
|
}
|
||
|
|
|
||
|
|
cb(rw, req, params, b, j)
|
||
|
|
})
|
||
|
|
}
|