waveringana/embedder
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions 1

Move middlewear to seperate file, Files can expire

Browse source
This commit is contained in:
anarch3 2022-11-19 07:53:47 -05:00
parent da127b3118
commit 521390fde7
10 changed files with 2044 additions and 375 deletions
Download patch file Download diff file Expand all files Collapse all files

33
routes/auth.js
View file

@ -1,29 +1,30 @@
let express = require('express');
let passport = require('passport');
let LocalStrategy = require('passport-local');
let crypto = require('crypto');
let db = require('../db');
let crypto = require("crypto");
let express = require("express");
let passport = require("passport");
let LocalStrategy = require("passport-local");
let db = require("../db");
let router = express.Router();
passport.use(new LocalStrategy(function verify(username, password, cb) {
db.get('SELECT * FROM users WHERE username = ?', [username], function(err, row) {
db.get("SELECT * FROM users WHERE username = ?", [username], function(err, row) {
if (err) {
return cb(err);
}
if (!row) {
return cb(null, false, {
message: 'Incorrect username or password.'
message: "Incorrect username or password."
});
}
crypto.pbkdf2(password, row.salt, 310000, 32, 'sha256', function(err, hashedPassword) {
crypto.pbkdf2(password, row.salt, 310000, 32, "sha256", function(err, hashedPassword) {
if (err) {
return cb(err);
}
if (!crypto.timingSafeEqual(row.hashed_password, hashedPassword)) {
return cb(null, false, {
message: 'Incorrect username or password.'
message: "Incorrect username or password."
});
}
return cb(null, row);
@ -46,21 +47,21 @@ passport.deserializeUser(function(user, cb) {
});
});
router.get('/login', function(req, res, next) {
res.render('login');
router.get("/login", function(req, res) {
res.render("login");
});
router.post('/login/password', passport.authenticate('local', {
successRedirect: '/',
failureRedirect: '/login'
router.post("/login/password", passport.authenticate("local", {
successRedirect: "/",
failureRedirect: "/login"
}));
router.post('/logout', function(req, res, next) {
router.post("/logout", function(req, res, next) {
req.logout(function(err) {
if (err) {
return next(err);
}
res.redirect('/');
res.redirect("/");
});
});

366
routes/index.js
View file

@ -1,268 +1,164 @@
let express = require('express');
let multer = require('multer');
let ffmpegpath = require('@ffmpeg-installer/ffmpeg').path;
let ffprobepath = require('@ffprobe-installer/ffprobe').path;
let ffmpeg = require('fluent-ffmpeg');
let multer = require("multer");
let express = require("express");
let ffmpeg = require("fluent-ffmpeg");
let ffmpegpath = require("@ffmpeg-installer/ffmpeg").path;
let ffprobepath = require("@ffprobe-installer/ffprobe").path;
ffmpeg.setFfmpegPath(ffmpegpath);
ffmpeg.setFfprobePath(ffprobepath);
let db = require('../db');
let fs = require('fs');
let fs = require("fs");
let db = require("../db");
let {checkAuth, convert, handleUpload} = require("../middleware");
function extension(str){
let file = str.split('/').pop();
return [file.substr(0,file.lastIndexOf('.')),file.substr(file.lastIndexOf('.'),file.length).toLowerCase()]
let file = str.split("/").pop();
return [file.substr(0,file.lastIndexOf(".")),file.substr(file.lastIndexOf("."),file.length).toLowerCase()];
}
const storage = multer.diskStorage({
destination: function (req, file, cb) {
cb(null, 'uploads/')
},
filename : function(req, file, cb) {
let nameAndExtension = extension(file.originalname);
db.all('SELECT * FROM media WHERE path = ?', [nameAndExtension[0] + nameAndExtension[1]], function (err, exists) {
if (exists.length != 0) {
let suffix = new Date().getTime() / 1000;
destination: function (req, file, cb) {
cb(null, "uploads/");
},
filename : function(req, file, cb) {
let nameAndExtension = extension(file.originalname);
db.all("SELECT * FROM media WHERE path = ?", [nameAndExtension[0] + nameAndExtension[1]], function (err, exists) {
if (exists.length != 0) {
let suffix = new Date().getTime() / 1000;
if (req.body.title == '' || req.body.title == null || req.body.title == undefined)
cb(null, nameAndExtension[0] + '-' + suffix + nameAndExtension[1])
else
cb(null, req.body.title + '-' + suffix + nameAndExtension[1])
} else {
if (req.body.title == '' || req.body.title == null || req.body.title == undefined)
cb(null, nameAndExtension[0] + nameAndExtension[1])
else
cb(null, req.body.title + nameAndExtension[1])
}
})
}
if (req.body.title == "" || req.body.title == null || req.body.title == undefined)
cb(null, nameAndExtension[0] + "-" + suffix + nameAndExtension[1]);
else
cb(null, req.body.title + "-" + suffix + nameAndExtension[1]);
} else {
if (req.body.title == "" || req.body.title == null || req.body.title == undefined)
cb(null, nameAndExtension[0] + nameAndExtension[1]);
else
cb(null, req.body.title + nameAndExtension[1]);
}
});
}
});
let allowedMimeTypes = [
'image/png',
'image/jpg',
'image/jpeg',
'image/gif',
'image/webp',
'video/mp4',
'video/mov',
'video/webm',
'audio/mpeg',
'audio/ogg'
]
/**let allowedMimeTypes = [
"image/png",
"image/jpg",
"image/jpeg",
"image/gif",
"image/webp",
"video/mp4",
"video/mov",
"video/webm",
"audio/mpeg",
"audio/ogg"
];
const fileFilter = function(req, file, cb) {
if (allowedMimeTypes.includes(file.mimetype)) {
cb(null, true);
} else {
cb(null, false);
}
}
if (allowedMimeTypes.includes(file.mimetype)) {
cb(null, true);
} else {
cb(null, false);
}
};**/
let upload = multer({ storage: storage /**, fileFilter: fileFilter**/ }); //maybe make this a env variable?
function fetchMedia(req, res, next) {
db.all('SELECT * FROM media', (err, rows) => {
if (err) return next(err);
let files = rows.map((row)=> {
return {
id: row.id,
path: row.path,
expire: row.expire,
url: '/' + row.id
}
});
res.locals.files = files.reverse(); //reverse so newest files appear first
res.locals.Count = files.length;
next();
});
db.all("SELECT * FROM media", (err, rows) => {
if (err) return next(err);
let files = rows.map((row)=> {
return {
id: row.id,
path: row.path,
expire: row.expire,
url: "/" + row.id
};
});
res.locals.files = files.reverse(); //reverse so newest files appear first
res.locals.Count = files.length;
next();
});
}
//middleware
//Checks ShareX key
function checkAuth(req, res, next) {
let auth = process.env.EBAPI_KEY || process.env.EBPASS || 'pleaseSetAPI_KEY';
let key = null;
if (req.headers['key']) {
key = req.headers['key'];
} else {
return res.status(400).send('{success: false, message: "No key provided", fix: "Provide a key"}');
}
if (auth != key) {
return res.status(401).send('{success: false, message: "Invalid key", fix: "Provide a valid key"}');
}
shortKey = key.substr(0, 3) + '...';
console.log('Authenicated user with key: ' + shortKey);
next();
}
//Converts mp4 to gif and vice versa with ffmpeg
function convert(req, res, next) {
for (file in req.files) {
let nameAndExtension = extension(req.files[file].originalname);
let oembed = {
type: "video",
version: "1.0",
provider_name: "embedder",
provider_url: "https://github.com/WaveringAna/embedder",
cache_age: 86400,
html: "<iframe src='" + req.protocol + "://" + req.get('host') + "/gifv/" + nameAndExtension[0] + "'></iframe>",
width: 640,
height: 360
};
fs.writeFile('uploads/oembed-' + nameAndExtension[0] + '.json', JSON.stringify(oembed), function (err) {
if (err) return next(err);
console.log('oembed file created ' + nameAndExtension[0] + '.json');
});
if (nameAndExtension[1] == '.mp4') {
console.log('Converting ' + nameAndExtension[0] + nameAndExtension[1] + ' to gif');
console.log(nameAndExtension[0] + nameAndExtension[1]);
ffmpeg()
.input('uploads/' + req.files[file].originalname)
.inputFormat('mp4')
.outputFormat('gif')
.output('uploads/' + nameAndExtension[0] + '.gif')
.on('end', function() {
console.log('Conversion complete');
console.log('Uploaded to uploads/' + nameAndExtension[0] + '.gif');
})
.on('error', (e) => console.log(e))
.run();
} else if (nameAndExtension[1] == '.gif') {
console.log('Converting ' + nameAndExtension[0] + nameAndExtension[1] + ' to mp4');
ffmpeg('uploads/' + req.files[file].originalname)
.inputFormat('gif')
.outputFormat('mp4')
.outputOptions([
'-pix_fmt yuv420p',
'-c:v libx264',
'-movflags +faststart'
])
.noAudio()
.output('uploads/' + nameAndExtension[0] + '.mp4')
.on('end', function() {
console.log('Conversion complete');
console.log('Uploaded to uploads/' + nameAndExtension[0] + '.mp4');
})
.run();
}
}
next();
};
let router = express.Router();
router.get('/', function (req, res, next) {
if (!req.user) { return res.render('home'); }
next();
}, fetchMedia, function(req, res, next) {
res.locals.filter = null;
res.render('index', { user: req.user });
router.get("/", function (req, res, next) {
if (!req.user) { return res.render("home"); }
next();
}, fetchMedia, function(req, res) {
res.locals.filter = null;
res.render("index", { user: req.user });
});
router.get('/gifv/:file', function (req, res, next) {
let url = req.protocol + '://' + req.get('host') + '/uploads/' + req.params.file;
let width; let height;
router.get("/gifv/:file", function (req, res, next) {
let url = req.protocol + "://" + req.get("host") + "/uploads/" + req.params.file;
let width; let height;
nameAndExtension = extension('uploads/' + req.params.file);
if (nameAndExtension[1] == '.mp4') {
ffmpeg()
.input('uploads/' + req.params.file)
.inputFormat('mp4')
.ffprobe(function(err, data) {
if (err) return next(err);
width = data.streams[0].width;
height = data.streams[0].height;
console.log(width + 'x' + height);
return res.render('gifv', { url: url, host: req.protocol + '://' + req.get('host'), width: width, height: height });
});
} else if (nameAndExtension[1] == '.gif') {
ffmpeg()
.input('uploads/' + req.params.file)
.inputFormat('gif')
.ffprobe(function(err, data) {
if (err) return next(err);
width = data.streams[0].width;
height = data.streams[0].height;
console.log(width + 'x' + height);
return res.render('gifv', { url: url, host: req.protocol + '://' + req.get('host'), width: width, height: height });
});
}
let nameAndExtension = extension("uploads/" + req.params.file);
if (nameAndExtension[1] == ".mp4") {
ffmpeg()
.input("uploads/" + req.params.file)
.inputFormat("mp4")
.ffprobe(function(err, data) {
if (err) return next(err);
width = data.streams[0].width;
height = data.streams[0].height;
console.log(width + "x" + height);
return res.render("gifv", { url: url, host: req.protocol + "://" + req.get("host"), width: width, height: height });
});
} else if (nameAndExtension[1] == ".gif") {
ffmpeg()
.input("uploads/" + req.params.file)
.inputFormat("gif")
.ffprobe(function(err, data) {
if (err) return next(err);
width = data.streams[0].width;
height = data.streams[0].height;
console.log(width + "x" + height);
return res.render("gifv", { url: url, host: req.protocol + "://" + req.get("host"), width: width, height: height });
});
}
});
router.post('/', [upload.array('fileupload'), convert], function(req, res, next) {
if (!req.files || Object.keys(req.files).length === 0) {
console.log(req)
return res.status(400).send('No files were uploaded.');
}
for (file in req.files) {
db.run('INSERT INTO media (path) VALUES (?)', [req.files[file].filename], function (err) {
if (err) {
console.log(err);
return next(err);
}
return res.redirect('/');
})
}
router.post("/", [upload.array("fileupload"), convert, handleUpload], function(req, res) {
return res.redirect("/");
});
router.post('/sharex', [checkAuth, upload.array('fileupload')], function(req, res, next) {
if (!req.files || Object.keys(req.files).length === 0) {
console.log(req);
return res.status(400).send('No files were uploaded.');
}
for (file in req.files) {
db.run('INSERT INTO media (path) VALUES (?)', [req.files[file].filename], function (err) {
if (err) {
console.log(err);
return next(err);
}
console.log(req.protocol + '://' + req.get('host') + '/uploads/' + req.files[file].filename);
return res.send(req.protocol + '://' + req.get('host') + '/uploads/' + req.files[file].filename);
});
}
router.post("/sharex", [checkAuth, upload.array("fileupload"), convert, handleUpload], function(req, res) {
return res.send(`${req.protocol}://${req.get("host")}/uploads/${req.files[0].filename}`);
});
router.post('/:id(\\d+)/delete', function(req, res, next) {
db.all('SELECT path FROM media WHERE id = ?', [ req.params.id ], function(err, path) {
if (err) { return next(err); }
fs.unlink('uploads/' + path[0].path, (err => {
if (err) {
console.log(err)
if (err.errno = -4058) { //File just doesnt exist anymore
db.run('DELETE FROM media WHERE id = ?', [
req.params.id
], function(err) {
if (err) { return next(err); }
return res.redirect('/');
});
} else {
console.log(err)
return res.redirect('/');
}
}
else {
console.log(`Deleted ${path}`);
//Callback Hell :D
db.run('DELETE FROM media WHERE id = ?', [
req.params.id
], function(err) {
if (err) { return next(err); }
return res.redirect('/');
});
}
}));
});
router.post("/:id(\\d+)/delete", function(req, res, next) {
db.all("SELECT path FROM media WHERE id = ?", [ req.params.id ], function(err, path) {
if (err) { return next(err); }
fs.unlink("uploads/" + path[0].path, (err => {
if (err) {
console.log(err);
if (err.errno == -4058) { //File just doesnt exist anymore
db.run("DELETE FROM media WHERE id = ?", [
req.params.id
], function(err) {
if (err) { return next(err); }
return res.redirect("/");
});
} else {
console.log(err);
return res.redirect("/");
}
}
else {
console.log(`Deleted ${path}`);
//Callback Hell :D
db.run("DELETE FROM media WHERE id = ?", [
req.params.id
], function(err) {
if (err) { return next(err); }
return res.redirect("/");
});
}
}));
});
});
module.exports = router;