writefreely
/
writefreely
дзеркало https://github.com/writefreely/writefreely.git
2
0
Форк 0
Код Проблеми Релізи 25 Вікі Активність
A clean, Markdown-based publishing platform made for writers. Write together, and build a community. https://writefreely.org
Ви не можете вибрати більше 25 тем Теми мають розпочинатися з літери або цифри, можуть містити дефіси (-) і не повинні перевищувати 35 символів.
210 Коміти
45 Гілки
187 MiB
 
 
 
 
 
Дерево: 4b8d5e3e37
Гілки Теги
${ item.name }
Створити гілку ${ searchTerm }
з '4b8d5e3e37'
${ noResults }
writefreely/app.go

522 рядки
13 KiB
Неформатований Звинувачення Історія 

  1. package writefreely

  2. 

  3. import (

  4. 	"database/sql"

  5. 	"flag"

  6. 	"fmt"

  7. 	"html/template"

  8. 	"io/ioutil"

  9. 	"net/http"

  10. 	"net/url"

  11. 	"os"

  12. 	"os/signal"

  13. 	"regexp"

  14. 	"strings"

  15. 	"syscall"

  16. 	"time"

  17. 

  18. 	_ "github.com/go-sql-driver/mysql"

  19. 	_ "github.com/mattn/go-sqlite3"

  20. 

  21. 	"github.com/gorilla/mux"

  22. 	"github.com/gorilla/schema"

  23. 	"github.com/gorilla/sessions"

  24. 	"github.com/manifoldco/promptui"

  25. 	"github.com/writeas/go-strip-markdown"

  26. 	"github.com/writeas/web-core/auth"

  27. 	"github.com/writeas/web-core/converter"

  28. 	"github.com/writeas/web-core/log"

  29. 	"github.com/writeas/writefreely/config"

  30. 	"github.com/writeas/writefreely/page"

  31. )

  32. 

  33. const (

  34. 	staticDir       = "static/"

  35. 	assumedTitleLen = 80

  36. 	postsPerPage    = 10

  37. 

  38. 	serverSoftware = "WriteFreely"

  39. 	softwareURL    = "https://writefreely.org"

  40. )

  41. 

  42. var (

  43. 	debugging bool

  44. 

  45. 	// Software version can be set from git env using -ldflags

  46. 	softwareVer = "0.6.0"

  47. 

  48. 	// DEPRECATED VARS

  49. 	// TODO: pass app.cfg into GetCollection* calls so we can get these values

  50. 	// from Collection methods and we no longer need these.

  51. 	hostName     string

  52. 	isSingleUser bool

  53. )

  54. 

  55. type app struct {

  56. 	router       *mux.Router

  57. 	db           *datastore

  58. 	cfg          *config.Config

  59. 	cfgFile      string

  60. 	keys         *keychain

  61. 	sessionStore *sessions.CookieStore

  62. 	formDecoder  *schema.Decoder

  63. 

  64. 	timeline *localTimeline

  65. }

  66. 

  67. // handleViewHome shows page at root path. Will be the Pad if logged in and the

  68. // catch-all landing page otherwise.

  69. func handleViewHome(app *app, w http.ResponseWriter, r *http.Request) error {

  70. 	if app.cfg.App.SingleUser {

  71. 		// Render blog index

  72. 		return handleViewCollection(app, w, r)

  73. 	}

  74. 

  75. 	// Multi-user instance

  76. 	u := getUserSession(app, r)

  77. 	if u != nil {

  78. 		// User is logged in, so show the Pad

  79. 		return handleViewPad(app, w, r)

  80. 	}

  81. 

  82. 	p := struct {

  83. 		page.StaticPage

  84. 		Flashes []template.HTML

  85. 	}{

  86. 		StaticPage: pageForReq(app, r),

  87. 	}

  88. 

  89. 	// Get error messages

  90. 	session, err := app.sessionStore.Get(r, cookieName)

  91. 	if err != nil {

  92. 		// Ignore this

  93. 		log.Error("Unable to get session in handleViewHome; ignoring: %v", err)

  94. 	}

  95. 	flashes, _ := getSessionFlashes(app, w, r, session)

  96. 	for _, flash := range flashes {

  97. 		p.Flashes = append(p.Flashes, template.HTML(flash))

  98. 	}

  99. 

  100. 	// Show landing page

  101. 	return renderPage(w, "landing.tmpl", p)

  102. }

  103. 

  104. func handleTemplatedPage(app *app, w http.ResponseWriter, r *http.Request, t *template.Template) error {

  105. 	p := struct {

  106. 		page.StaticPage

  107. 		Content      template.HTML

  108. 		PlainContent string

  109. 		Updated      string

  110. 

  111. 		AboutStats *InstanceStats

  112. 	}{

  113. 		StaticPage: pageForReq(app, r),

  114. 	}

  115. 	if r.URL.Path == "/about" || r.URL.Path == "/privacy" {

  116. 		var c string

  117. 		var updated *time.Time

  118. 		var err error

  119. 

  120. 		if r.URL.Path == "/about" {

  121. 			c, err = getAboutPage(app)

  122. 

  123. 			// Fetch stats

  124. 			p.AboutStats = &InstanceStats{}

  125. 			p.AboutStats.NumPosts, _ = app.db.GetTotalPosts()

  126. 			p.AboutStats.NumBlogs, _ = app.db.GetTotalCollections()

  127. 		} else {

  128. 			c, updated, err = getPrivacyPage(app)

  129. 		}

  130. 

  131. 		if err != nil {

  132. 			return err

  133. 		}

  134. 		p.Content = template.HTML(applyMarkdown([]byte(c)))

  135. 		p.PlainContent = shortPostDescription(stripmd.Strip(c))

  136. 		if updated != nil {

  137. 			p.Updated = updated.Format("January 2, 2006")

  138. 		}

  139. 	}

  140. 

  141. 	// Serve templated page

  142. 	err := t.ExecuteTemplate(w, "base", p)

  143. 	if err != nil {

  144. 		log.Error("Unable to render page: %v", err)

  145. 	}

  146. 	return nil

  147. }

  148. 

  149. func pageForReq(app *app, r *http.Request) page.StaticPage {

  150. 	p := page.StaticPage{

  151. 		AppCfg:  app.cfg.App,

  152. 		Path:    r.URL.Path,

  153. 		Version: "v" + softwareVer,

  154. 	}

  155. 

  156. 	// Add user information, if given

  157. 	var u *User

  158. 	accessToken := r.FormValue("t")

  159. 	if accessToken != "" {

  160. 		userID := app.db.GetUserID(accessToken)

  161. 		if userID != -1 {

  162. 			var err error

  163. 			u, err = app.db.GetUserByID(userID)

  164. 			if err == nil {

  165. 				p.Username = u.Username

  166. 			}

  167. 		}

  168. 	} else {

  169. 		u = getUserSession(app, r)

  170. 		if u != nil {

  171. 			p.Username = u.Username

  172. 		}

  173. 	}

  174. 

  175. 	return p

  176. }

  177. 

  178. var shttp = http.NewServeMux()

  179. var fileRegex = regexp.MustCompile("/([^/]*\\.[^/]*)$")

  180. 

  181. func Serve() {

  182. 	debugPtr := flag.Bool("debug", false, "Enables debug logging.")

  183. 	createConfig := flag.Bool("create-config", false, "Creates a basic configuration and exits")

  184. 	doConfig := flag.Bool("config", false, "Run the configuration process")

  185. 	genKeys := flag.Bool("gen-keys", false, "Generate encryption and authentication keys")

  186. 	createSchema := flag.Bool("init-db", false, "Initialize app database")

  187. 	createAdmin := flag.String("create-admin", "", "Create an admin with the given username:password")

  188. 	resetPassUser := flag.String("reset-pass", "", "Reset the given user's password")

  189. 	configFile := flag.String("c", "config.ini", "The configuration file to use")

  190. 	outputVersion := flag.Bool("v", false, "Output the current version")

  191. 	flag.Parse()

  192. 

  193. 	debugging = *debugPtr

  194. 

  195. 	app := &app{

  196. 		cfgFile: *configFile,

  197. 	}

  198. 

  199. 	if *outputVersion {

  200. 		fmt.Println(serverSoftware + " " + softwareVer)

  201. 		os.Exit(0)

  202. 	} else if *createConfig {

  203. 		log.Info("Creating configuration...")

  204. 		c := config.New()

  205. 		log.Info("Saving configuration %s...", app.cfgFile)

  206. 		err := config.Save(c, app.cfgFile)

  207. 		if err != nil {

  208. 			log.Error("Unable to save configuration: %v", err)

  209. 			os.Exit(1)

  210. 		}

  211. 		os.Exit(0)

  212. 	} else if *doConfig {

  213. 		d, err := config.Configure(app.cfgFile)

  214. 		if err != nil {

  215. 			log.Error("Unable to configure: %v", err)

  216. 			os.Exit(1)

  217. 		}

  218. 		if d.User != nil {

  219. 			app.cfg = d.Config

  220. 			connectToDatabase(app)

  221. 			defer shutdown(app)

  222. 

  223. 			u := &User{

  224. 				Username:   d.User.Username,

  225. 				HashedPass: d.User.HashedPass,

  226. 				Created:    time.Now().Truncate(time.Second).UTC(),

  227. 			}

  228. 

  229. 			// Create blog

  230. 			log.Info("Creating user %s...\n", u.Username)

  231. 			err = app.db.CreateUser(u, app.cfg.App.SiteName)

  232. 			if err != nil {

  233. 				log.Error("Unable to create user: %s", err)

  234. 				os.Exit(1)

  235. 			}

  236. 			log.Info("Done!")

  237. 		}

  238. 		os.Exit(0)

  239. 	} else if *genKeys {

  240. 		errStatus := 0

  241. 

  242. 		err := generateKey(emailKeyPath)

  243. 		if err != nil {

  244. 			errStatus = 1

  245. 		}

  246. 		err = generateKey(cookieAuthKeyPath)

  247. 		if err != nil {

  248. 			errStatus = 1

  249. 		}

  250. 		err = generateKey(cookieKeyPath)

  251. 		if err != nil {

  252. 			errStatus = 1

  253. 		}

  254. 

  255. 		os.Exit(errStatus)

  256. 	} else if *createSchema {

  257. 		loadConfig(app)

  258. 		connectToDatabase(app)

  259. 		defer shutdown(app)

  260. 

  261. 		schemaFileName := "schema.sql"

  262. 

  263. 		if app.cfg.Database.Type == "sqlite3" {

  264. 			schemaFileName = "sqlite.sql"

  265. 		}

  266. 

  267. 		schema, err := ioutil.ReadFile(schemaFileName)

  268. 		if err != nil {

  269. 			log.Error("Unable to load schema file: %v", err)

  270. 			os.Exit(1)

  271. 		}

  272. 

  273. 		tblReg := regexp.MustCompile("CREATE TABLE (IF NOT EXISTS )?`([a-z_]+)`")

  274. 

  275. 		queries := strings.Split(string(schema), ";\n")

  276. 		for _, q := range queries {

  277. 			if strings.TrimSpace(q) == "" {

  278. 				continue

  279. 			}

  280. 			parts := tblReg.FindStringSubmatch(q)

  281. 			if len(parts) >= 3 {

  282. 				log.Info("Creating table %s...", parts[2])

  283. 			} else {

  284. 				log.Info("Creating table ??? (Weird query) No match in: %v", parts)

  285. 			}

  286. 			_, err = app.db.Exec(q)

  287. 			if err != nil {

  288. 				log.Error("%s", err)

  289. 			} else {

  290. 				log.Info("Created.")

  291. 			}

  292. 		}

  293. 		os.Exit(0)

  294. 	} else if *createAdmin != "" {

  295. 		// Create an admin user with --create-admin

  296. 		creds := strings.Split(*createAdmin, ":")

  297. 		if len(creds) != 2 {

  298. 			log.Error("usage: writefreely --create-admin username:password")

  299. 			os.Exit(1)

  300. 		}

  301. 

  302. 		loadConfig(app)

  303. 		connectToDatabase(app)

  304. 		defer shutdown(app)

  305. 

  306. 		// Ensure an admin / first user doesn't already exist

  307. 		if u, _ := app.db.GetUserByID(1); u != nil {

  308. 			log.Error("Admin user already exists (%s). Aborting.", u.Username)

  309. 			os.Exit(1)

  310. 		}

  311. 

  312. 		// Create the user

  313. 		username := creds[0]

  314. 		password := creds[1]

  315. 

  316. 		hashedPass, err := auth.HashPass([]byte(password))

  317. 		if err != nil {

  318. 			log.Error("Unable to hash password: %v", err)

  319. 			os.Exit(1)

  320. 		}

  321. 

  322. 		u := &User{

  323. 			Username:   username,

  324. 			HashedPass: hashedPass,

  325. 			Created:    time.Now().Truncate(time.Second).UTC(),

  326. 		}

  327. 

  328. 		log.Info("Creating user %s...\n", u.Username)

  329. 		err = app.db.CreateUser(u, "")

  330. 		if err != nil {

  331. 			log.Error("Unable to create user: %s", err)

  332. 			os.Exit(1)

  333. 		}

  334. 		log.Info("Done!")

  335. 		os.Exit(0)

  336. 	} else if *resetPassUser != "" {

  337. 		// Connect to the database

  338. 		loadConfig(app)

  339. 		connectToDatabase(app)

  340. 		defer shutdown(app)

  341. 

  342. 		// Fetch user

  343. 		u, err := app.db.GetUserForAuth(*resetPassUser)

  344. 		if err != nil {

  345. 			log.Error("Get user: %s", err)

  346. 			os.Exit(1)

  347. 		}

  348. 

  349. 		// Prompt for new password

  350. 		prompt := promptui.Prompt{

  351. 			Templates: &promptui.PromptTemplates{

  352. 				Success: "{{ . | bold | faint }}: ",

  353. 			},

  354. 			Label: "New password",

  355. 			Mask:  '*',

  356. 		}

  357. 		newPass, err := prompt.Run()

  358. 		if err != nil {

  359. 			log.Error("%s", err)

  360. 			os.Exit(1)

  361. 		}

  362. 

  363. 		// Do the update

  364. 		log.Info("Updating...")

  365. 		err = adminResetPassword(app, u, newPass)

  366. 		if err != nil {

  367. 			log.Error("%s", err)

  368. 			os.Exit(1)

  369. 		}

  370. 		log.Info("Success.")

  371. 		os.Exit(0)

  372. 	}

  373. 

  374. 	log.Info("Initializing...")

  375. 

  376. 	loadConfig(app)

  377. 

  378. 	hostName = app.cfg.App.Host

  379. 	isSingleUser = app.cfg.App.SingleUser

  380. 	app.cfg.Server.Dev = *debugPtr

  381. 

  382. 	initTemplates()

  383. 

  384. 	// Load keys

  385. 	log.Info("Loading encryption keys...")

  386. 	err := initKeys(app)

  387. 	if err != nil {

  388. 		log.Error("\n%s\n", err)

  389. 	}

  390. 

  391. 	// Initialize modules

  392. 	app.sessionStore = initSession(app)

  393. 	app.formDecoder = schema.NewDecoder()

  394. 	app.formDecoder.RegisterConverter(converter.NullJSONString{}, converter.ConvertJSONNullString)

  395. 	app.formDecoder.RegisterConverter(converter.NullJSONBool{}, converter.ConvertJSONNullBool)

  396. 	app.formDecoder.RegisterConverter(sql.NullString{}, converter.ConvertSQLNullString)

  397. 	app.formDecoder.RegisterConverter(sql.NullBool{}, converter.ConvertSQLNullBool)

  398. 	app.formDecoder.RegisterConverter(sql.NullInt64{}, converter.ConvertSQLNullInt64)

  399. 	app.formDecoder.RegisterConverter(sql.NullFloat64{}, converter.ConvertSQLNullFloat64)

  400. 

  401. 	// Check database configuration

  402. 	if app.cfg.Database.User == "" || app.cfg.Database.Password == "" {

  403. 		log.Error("Database user or password not set.")

  404. 		os.Exit(1)

  405. 	}

  406. 	if app.cfg.Database.Host == "" {

  407. 		app.cfg.Database.Host = "localhost"

  408. 	}

  409. 	if app.cfg.Database.Database == "" {

  410. 		app.cfg.Database.Database = "writefreely"

  411. 	}

  412. 

  413. 	connectToDatabase(app)

  414. 	defer shutdown(app)

  415. 

  416. 	r := mux.NewRouter()

  417. 	handler := NewHandler(app)

  418. 	handler.SetErrorPages(&ErrorPages{

  419. 		NotFound:            pages["404-general.tmpl"],

  420. 		Gone:                pages["410.tmpl"],

  421. 		InternalServerError: pages["500.tmpl"],

  422. 		Blank:               pages["blank.tmpl"],

  423. 	})

  424. 

  425. 	// Handle app routes

  426. 	initRoutes(handler, r, app.cfg, app.db)

  427. 

  428. 	// Handle local timeline, if enabled

  429. 	if app.cfg.App.LocalTimeline {

  430. 		log.Info("Initializing local timeline...")

  431. 		initLocalTimeline(app)

  432. 	}

  433. 

  434. 	// Handle static files

  435. 	fs := http.FileServer(http.Dir(staticDir))

  436. 	shttp.Handle("/", fs)

  437. 	r.PathPrefix("/").Handler(fs)

  438. 

  439. 	// Handle shutdown

  440. 	c := make(chan os.Signal, 2)

  441. 	signal.Notify(c, os.Interrupt, syscall.SIGTERM)

  442. 	go func() {

  443. 		<-c

  444. 		log.Info("Shutting down...")

  445. 		shutdown(app)

  446. 		log.Info("Done.")

  447. 		os.Exit(0)

  448. 	}()

  449. 

  450. 	http.Handle("/", r)

  451. 

  452. 	// Start web application server

  453. 	var bindAddress = app.cfg.Server.Bind

  454. 	if bindAddress == "" {

  455. 		bindAddress = "localhost"

  456. 	}

  457. 	if app.cfg.IsSecureStandalone() {

  458. 		log.Info("Serving redirects on http://%s:80", bindAddress)

  459. 		go func() {

  460. 			err = http.ListenAndServe(

  461. 				fmt.Sprintf("%s:80", bindAddress), http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {

  462. 					http.Redirect(w, r, app.cfg.App.Host, http.StatusMovedPermanently)

  463. 				}))

  464. 			log.Error("Unable to start redirect server: %v", err)

  465. 		}()

  466. 

  467. 		log.Info("Serving on https://%s:443", bindAddress)

  468. 		log.Info("---")

  469. 		err = http.ListenAndServeTLS(

  470. 			fmt.Sprintf("%s:443", bindAddress), app.cfg.Server.TLSCertPath, app.cfg.Server.TLSKeyPath, nil)

  471. 	} else {

  472. 		log.Info("Serving on http://%s:%d\n", bindAddress, app.cfg.Server.Port)

  473. 		log.Info("---")

  474. 		err = http.ListenAndServe(fmt.Sprintf("%s:%d", bindAddress, app.cfg.Server.Port), nil)

  475. 	}

  476. 	if err != nil {

  477. 		log.Error("Unable to start: %v", err)

  478. 		os.Exit(1)

  479. 	}

  480. }

  481. 

  482. func loadConfig(app *app) {

  483. 	log.Info("Loading %s configuration...", app.cfgFile)

  484. 	cfg, err := config.Load(app.cfgFile)

  485. 	if err != nil {

  486. 		log.Error("Unable to load configuration: %v", err)

  487. 		os.Exit(1)

  488. 	}

  489. 	app.cfg = cfg

  490. }

  491. 

  492. func connectToDatabase(app *app) {

  493. 	log.Info("Connecting to %s database...", app.cfg.Database.Type)

  494. 

  495. 	var db *sql.DB

  496. 	var err error

  497. 	if app.cfg.Database.Type == "mysql" {

  498. 		db, err = sql.Open(app.cfg.Database.Type, fmt.Sprintf("%s:%s@tcp(%s:%d)/%s?charset=utf8mb4&parseTime=true&loc=%s", app.cfg.Database.User, app.cfg.Database.Password, app.cfg.Database.Host, app.cfg.Database.Port, app.cfg.Database.Database, url.QueryEscape(time.Local.String())))

  499. 		db.SetMaxOpenConns(50)

  500. 	} else if app.cfg.Database.Type == "sqlite3" {

  501. 		if app.cfg.Database.FileName == "" {

  502. 			log.Error("SQLite database filename value in config.ini is empty.")

  503. 			os.Exit(1)

  504. 		}

  505. 		db, err = sql.Open("sqlite3", app.cfg.Database.FileName+"?parseTime=true&cached=shared")

  506. 		db.SetMaxOpenConns(1)

  507. 	} else {

  508. 		log.Error("Invalid database type '%s'. Only 'mysql' and 'sqlite3' are supported right now.", app.cfg.Database.Type)

  509. 		os.Exit(1)

  510. 	}

  511. 	if err != nil {

  512. 		log.Error("%s", err)

  513. 		os.Exit(1)

  514. 	}

  515. 	app.db = &datastore{db, app.cfg.Database.Type}

  516. }

  517. 

  518. func shutdown(app *app) {

  519. 	log.Info("Closing database connection...")

  520. 	app.db.Close()

  521. }