loop
/
alps
1
0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
A webmail client. Forked from https://git.sr.ht/~migadu/alps
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
68 Commits
1 Branch
708 KiB
 
 
 
 
Tree: f07ab52632
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'f07ab52632'
${ noResults }
alps/server.go

222 lines
4.6 KiB
Raw Blame History 

  1. package koushin

  2. 

  3. import (

  4. 	"fmt"

  5. 	"net/http"

  6. 	"net/url"

  7. 	"strings"

  8. 	"time"

  9. 

  10. 	"github.com/labstack/echo/v4"

  11. )

  12. 

  13. const cookieName = "koushin_session"

  14. 

  15. const messagesPerPage = 50

  16. 

  17. // Server holds all the koushin server state.

  18. type Server struct {

  19. 	Sessions *SessionManager

  20. 	Plugins  []Plugin

  21. 

  22. 	imap struct {

  23. 		host     string

  24. 		tls      bool

  25. 		insecure bool

  26. 	}

  27. 

  28. 	smtp struct {

  29. 		host     string

  30. 		tls      bool

  31. 		insecure bool

  32. 	}

  33. }

  34. 

  35. func (s *Server) parseIMAPURL(imapURL string) error {

  36. 	u, err := url.Parse(imapURL)

  37. 	if err != nil {

  38. 		return fmt.Errorf("failed to parse IMAP server URL: %v", err)

  39. 	}

  40. 

  41. 	s.imap.host = u.Host

  42. 	switch u.Scheme {

  43. 	case "imap":

  44. 		// This space is intentionally left blank

  45. 	case "imaps":

  46. 		s.imap.tls = true

  47. 	case "imap+insecure":

  48. 		s.imap.insecure = true

  49. 	default:

  50. 		return fmt.Errorf("unrecognized IMAP URL scheme: %s", u.Scheme)

  51. 	}

  52. 

  53. 	return nil

  54. }

  55. 

  56. func (s *Server) parseSMTPURL(smtpURL string) error {

  57. 	u, err := url.Parse(smtpURL)

  58. 	if err != nil {

  59. 		return fmt.Errorf("failed to parse SMTP server URL: %v", err)

  60. 	}

  61. 

  62. 	s.smtp.host = u.Host

  63. 	switch u.Scheme {

  64. 	case "smtp":

  65. 		// This space is intentionally left blank

  66. 	case "smtps":

  67. 		s.smtp.tls = true

  68. 	case "smtp+insecure":

  69. 		s.smtp.insecure = true

  70. 	default:

  71. 		return fmt.Errorf("unrecognized SMTP URL scheme: %s", u.Scheme)

  72. 	}

  73. 

  74. 	return nil

  75. }

  76. 

  77. func newServer(imapURL, smtpURL string) (*Server, error) {

  78. 	s := &Server{}

  79. 	s.Sessions = newSessionManager(s.connectIMAP)

  80. 

  81. 	if err := s.parseIMAPURL(imapURL); err != nil {

  82. 		return nil, err

  83. 	}

  84. 

  85. 	if smtpURL != "" {

  86. 		if err := s.parseSMTPURL(smtpURL); err != nil {

  87. 			return nil, err

  88. 		}

  89. 	}

  90. 

  91. 	return s, nil

  92. }

  93. 

  94. // Context is the context used by HTTP handlers.

  95. //

  96. // Use a type assertion to get it from a echo.Context:

  97. //

  98. //     ctx := ectx.(*koushin.Context)

  99. type Context struct {

  100. 	echo.Context

  101. 	Server  *Server

  102. 	Session *Session // nil if user isn't logged in

  103. }

  104. 

  105. var aLongTimeAgo = time.Unix(233431200, 0)

  106. 

  107. // SetSession sets a cookie for the provided session. Passing a nil session

  108. // unsets the cookie.

  109. func (ctx *Context) SetSession(s *Session) {

  110. 	cookie := http.Cookie{

  111. 		Name:     cookieName,

  112. 		HttpOnly: true,

  113. 		// TODO: domain, secure

  114. 	}

  115. 	if s != nil {

  116. 		cookie.Value = s.token

  117. 	} else {

  118. 		cookie.Expires = aLongTimeAgo // unset the cookie

  119. 	}

  120. 	ctx.SetCookie(&cookie)

  121. }

  122. 

  123. func isPublic(path string) bool {

  124. 	return path == "/login" || strings.HasPrefix(path, "/assets/") ||

  125. 		strings.HasPrefix(path, "/themes/")

  126. }

  127. 

  128. type Options struct {

  129. 	IMAPURL, SMTPURL string

  130. 	Theme            string

  131. }

  132. 

  133. // New creates a new server.

  134. func New(e *echo.Echo, options *Options) error {

  135. 	s, err := newServer(options.IMAPURL, options.SMTPURL)

  136. 	if err != nil {

  137. 		return err

  138. 	}

  139. 

  140. 	s.Plugins, err = loadAllLuaPlugins(e.Logger)

  141. 	if err != nil {

  142. 		return fmt.Errorf("failed to load plugins: %v", err)

  143. 	}

  144. 

  145. 	e.Renderer, err = loadTemplates(e.Logger, options.Theme, s.Plugins)

  146. 	if err != nil {

  147. 		return fmt.Errorf("failed to load templates: %v", err)

  148. 	}

  149. 

  150. 	e.HTTPErrorHandler = func(err error, c echo.Context) {

  151. 		code := http.StatusInternalServerError

  152. 		if he, ok := err.(*echo.HTTPError); ok {

  153. 			code = he.Code

  154. 		} else {

  155. 			c.Logger().Error(err)

  156. 		}

  157. 		// TODO: hide internal errors

  158. 		c.String(code, err.Error())

  159. 	}

  160. 

  161. 	e.Use(func(next echo.HandlerFunc) echo.HandlerFunc {

  162. 		return func(ectx echo.Context) error {

  163. 			ctx := &Context{Context: ectx, Server: s}

  164. 			ctx.Set("context", ctx)

  165. 

  166. 			cookie, err := ctx.Cookie(cookieName)

  167. 			if err == http.ErrNoCookie {

  168. 				// Require auth for all pages except /login

  169. 				if isPublic(ctx.Path()) {

  170. 					return next(ctx)

  171. 				} else {

  172. 					return ctx.Redirect(http.StatusFound, "/login")

  173. 				}

  174. 			} else if err != nil {

  175. 				return err

  176. 			}

  177. 

  178. 			ctx.Session, err = ctx.Server.Sessions.get(cookie.Value)

  179. 			if err == ErrSessionExpired {

  180. 				ctx.SetSession(nil)

  181. 				return ctx.Redirect(http.StatusFound, "/login")

  182. 			} else if err != nil {

  183. 				return err

  184. 			}

  185. 			ctx.Session.ping()

  186. 

  187. 			return next(ctx)

  188. 		}

  189. 	})

  190. 

  191. 	e.GET("/mailbox/:mbox", handleGetMailbox)

  192. 

  193. 	e.GET("/message/:mbox/:uid", func(ectx echo.Context) error {

  194. 		ctx := ectx.(*Context)

  195. 		return handleGetPart(ctx, false)

  196. 	})

  197. 	e.GET("/message/:mbox/:uid/raw", func(ectx echo.Context) error {

  198. 		ctx := ectx.(*Context)

  199. 		return handleGetPart(ctx, true)

  200. 	})

  201. 

  202. 	e.GET("/login", handleLogin)

  203. 	e.POST("/login", handleLogin)

  204. 

  205. 	e.GET("/logout", handleLogout)

  206. 

  207. 	e.GET("/compose", handleCompose)

  208. 	e.POST("/compose", handleCompose)

  209. 

  210. 	e.GET("/message/:mbox/:uid/reply", handleCompose)

  211. 	e.POST("/message/:mbox/:uid/reply", handleCompose)

  212. 

  213. 	e.Static("/assets", "public/assets")

  214. 	e.Static("/themes", "public/themes")

  215. 

  216. 	for _, p := range s.Plugins {

  217. 		p.SetRoutes(e.Group(""))

  218. 	}

  219. 

  220. 	return nil

  221. }