diff options
| author | Remi <6680627+riseremi@users.noreply.github.com> | 2025-04-07 19:58:46 +0500 |
|---|---|---|
| committer | GitHub <noreply@github.com> | 2025-04-07 17:58:46 +0300 |
| commit | f61717fcc48fe7039cab5e183da29653e445f691 (patch) | |
| tree | b1c03132d9e76554f898b82c02a5987e40388917 /src/server/HttpServer.hx | |
| parent | f874dcd3de368e7e512ab1c0defdd17bc3026ce5 (diff) | |
Ask to create admin user on fresh install (#62)
* Ask to create admin user on fresh install
* Implement client form submitting
* minimize diff, simplify impl
* Check json typing and clean stuff
---------
Co-authored-by: RblSb <msrblsb@gmail.com>
Diffstat (limited to 'src/server/HttpServer.hx')
| -rw-r--r-- | src/server/HttpServer.hx | 103 |
1 files changed, 95 insertions, 8 deletions
diff --git a/src/server/HttpServer.hx b/src/server/HttpServer.hx index dd8c178..b15018b 100644 --- a/src/server/HttpServer.hx +++ b/src/server/HttpServer.hx @@ -1,7 +1,6 @@ package server; import Types.UploadResponse; -import haxe.Json; import haxe.io.Path; import js.node.Buffer; import js.node.Fs.Fs; @@ -12,6 +11,8 @@ import js.node.http.ClientRequest; import js.node.http.IncomingMessage; import js.node.http.ServerResponse; import js.node.url.URL; +import json2object.ErrorUtils; +import json2object.JsonParser; import server.cache.Cache; import sys.FileSystem; @@ -23,6 +24,12 @@ private class HttpServerConfig { public final cache:Cache = null; } +typedef SetupAdminRequest = { + name:String, + password:String, + passwordConfirmation:String, +} + class HttpServer { static final mimeTypes = [ "html" => "text/html", @@ -87,6 +94,8 @@ class HttpServer { uploadFileLastChunk(req, res); case "/upload": uploadFile(req, res); + case "/setup": + finishSetup(req, res); } return; } @@ -106,6 +115,20 @@ class HttpServer { return; } + if (url.pathname == "/setup") { + if (main.hasAdmins()) { + res.redirect("/"); + return; + } + + Fs.readFile('$dir/setup.html', (err:Dynamic, data:Buffer) -> { + data = Buffer.from(localizeHtml(data.toString(), req.headers["accept-language"])); + res.setHeader("content-type", getMimeType("html")); + res.end(data); + }); + return; + } + if (url.pathname == "/proxy") { if (!proxyUrl(req, res)) res.end('Proxy error: ${req.url}'); return; @@ -127,7 +150,12 @@ class HttpServer { readFileError(err, res, filePath); return; } + if (ext == "html") { + if (!main.isNoState && !main.hasAdmins()) { + res.redirect("/setup"); + return; + } // replace ${textId} to localized strings data = cast localizeHtml(data.toString(), req.headers["accept-language"]); } @@ -145,14 +173,11 @@ class HttpServer { req.on("end", () -> { final buffer = Buffer.concat(body); uploadingFilesLastChunks[filePath] = buffer; - res.writeHead(200, { - "content-type": getMimeType("json"), - }); final json:UploadResponse = { info: "File last chunk uploaded", url: cache.getFileUrl(name) } - res.end(Json.stringify(json)); + res.status(200).json(json); }); } @@ -164,9 +189,7 @@ class HttpServer { final size = Std.parseInt(req.headers["content-length"]) ?? return; inline function end(code:Int, json:UploadResponse):Void { - res.statusCode = code; - res.end(Json.stringify(json)); - + res.status(code).json(json); uploadingFilesSizes.remove(filePath); uploadingFilesLastChunks.remove(filePath); } @@ -215,6 +238,70 @@ class HttpServer { }); } + function finishSetup(req:IncomingMessage, res:ServerResponse) { + if (main.hasAdmins()) { + return res.redirect("/"); + } + + final bodyChunks:Array<Buffer> = []; + + req.on("data", chunk -> { + bodyChunks.push(chunk); + }); + + req.on("end", () -> { + final body = Buffer.concat(bodyChunks).toString(); + final jsonParser = new JsonParser<SetupAdminRequest>(); + final jsonData = jsonParser.fromJson(body); + if (jsonParser.errors.length > 0) { + final errors = ErrorUtils.convertErrorArray(jsonParser.errors); + trace(errors); + res.status(400).json({success: false, errors: []}); + return; + } + final name = jsonData.name; + final password = jsonData.password; + final passwordConfirmation = jsonData.passwordConfirmation; + final lang = req.headers["accept-language"] ?? "en"; + final errors:Array<{type:String, error:String}> = []; + + if (main.isBadClientName(name)) { + final error = Lang.get(lang, "usernameError") + .replace("$MAX", '${main.config.maxLoginLength}'); + errors.push({ + type: "name", + error: error + }); + } + + final min = Main.MIN_PASSWORD_LENGTH; + final max = Main.MAX_PASSWORD_LENGTH; + if (password.length < min || password.length > max) { + final error = Lang.get(lang, "passwordError") + .replace("$MIN", '$min').replace("$MAX", '$max'); + errors.push({ + type: "password", + error: error + }); + } + + if (password != passwordConfirmation) { + errors.push({ + type: "password", + error: Lang.get(lang, "passwordsMismatchError") + }); + } + + if (errors.length > 0) { + res.status(400).json({success: false, errors: errors}); + return; + } + + main.addAdmin(name, password); + res.status(200).json({success: true}); + }); + } + function getPath(dir:String, url:URL):String { final filePath = dir.urlDecode() + decodeURIComponent(url.pathname); if (!FileSystem.isDirectory(filePath)) return filePath; |