alist/server/handles/down.go

package handles

import (
	"fmt"
	"io"
	stdpath "path"
	"strings"

	"github.com/alist-org/alist/v3/internal/conf"
	"github.com/alist-org/alist/v3/internal/driver"
	"github.com/alist-org/alist/v3/internal/fs"
	"github.com/alist-org/alist/v3/internal/model"
	"github.com/alist-org/alist/v3/internal/setting"
	"github.com/alist-org/alist/v3/internal/sign"
	"github.com/alist-org/alist/v3/pkg/utils"
	"github.com/alist-org/alist/v3/server/common"
	"github.com/gin-gonic/gin"
	log "github.com/sirupsen/logrus"
)

func Down(c *gin.Context) {
	rawPath := c.MustGet("path").(string)
	filename := stdpath.Base(rawPath)
	storage, err := fs.GetStorage(rawPath, &fs.GetStoragesArgs{})
	if err != nil {
		common.ErrorResp(c, err, 500)
		return
	}
	if common.ShouldProxy(storage, filename) {
		Proxy(c)
		return
	} else {
		link, _, err := fs.Link(c, rawPath, model.LinkArgs{
			IP:      c.ClientIP(),
			Header:  c.Request.Header,
			Type:    c.Query("type"),
			HttpReq: c.Request,
		})
		if err != nil {
			common.ErrorResp(c, err, 500)
			return
		}
		if link.MFile != nil {
			defer func(ReadSeekCloser io.ReadCloser) {
				err := ReadSeekCloser.Close()
				if err != nil {
					log.Errorf("close data error: %s", err)
				}
			}(link.MFile)
		}
		c.Header("Referrer-Policy", "no-referrer")
		c.Header("Cache-Control", "max-age=0, no-cache, no-store, must-revalidate")
		if setting.GetBool(conf.ForwardDirectLinkParams) {
			query := c.Request.URL.Query()
			for _, v := range conf.SlicesMap[conf.IgnoreDirectLinkParams] {
				query.Del(v)
			}
			link.URL, err = utils.InjectQuery(link.URL, query)
			if err != nil {
				common.ErrorResp(c, err, 500)
				return
			}
		}
		c.Redirect(302, link.URL)
	}
}

func Proxy(c *gin.Context) {
	rawPath := c.MustGet("path").(string)
	filename := stdpath.Base(rawPath)
	storage, err := fs.GetStorage(rawPath, &fs.GetStoragesArgs{})
	if err != nil {
		common.ErrorResp(c, err, 500)
		return
	}
	if canProxy(storage, filename) {
		downProxyUrl := storage.GetStorage().DownProxyUrl
		if downProxyUrl != "" {
			_, ok := c.GetQuery("d")
			if !ok {
				URL := fmt.Sprintf("%s%s?sign=%s",
					strings.Split(downProxyUrl, "\n")[0],
					utils.EncodePath(rawPath, true),
					sign.Sign(rawPath))
				c.Redirect(302, URL)
				return
			}
		}
		link, file, err := fs.Link(c, rawPath, model.LinkArgs{
			Header:  c.Request.Header,
			Type:    c.Query("type"),
			HttpReq: c.Request,
		})
		if err != nil {
			common.ErrorResp(c, err, 500)
			return
		}
		if link.URL != "" && setting.GetBool(conf.ForwardDirectLinkParams) {
			query := c.Request.URL.Query()
			for _, v := range conf.SlicesMap[conf.IgnoreDirectLinkParams] {
				query.Del(v)
			}
			link.URL, err = utils.InjectQuery(link.URL, query)
			if err != nil {
				common.ErrorResp(c, err, 500)
				return
			}
		}
		err = common.Proxy(c.Writer, c.Request, link, file)
		if err != nil {
			common.ErrorResp(c, err, 500, true)
			return
		}
	} else {
		common.ErrorStrResp(c, "proxy not allowed", 403)
		return
	}
}

// TODO need optimize
// when can be proxy?
// 1. text file
// 2. config.MustProxy()
// 3. storage.WebProxy
// 4. proxy_types
// solution: text_file + shouldProxy()
func canProxy(storage driver.Driver, filename string) bool {
	if storage.Config().MustProxy() || storage.GetStorage().WebProxy || storage.GetStorage().WebdavProxy() {
		return true
	}
	if utils.SliceContains(conf.SlicesMap[conf.ProxyTypes], utils.Ext(filename)) {
		return true
	}
	if utils.SliceContains(conf.SlicesMap[conf.TextTypes], utils.Ext(filename)) {
		return true
	}
	return false
}
chore: rename controllers to handles 2022-07-11 09:12:50 +00:00			`package handles`
feat: file down handle 2022-06-28 10:00:11 +00:00
			`import (`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`"fmt"`
feat(alias): support proxy and direct together 2023-03-14 05:38:41 +00:00			`"io"`
chore: common err resp log 2022-06-28 10:12:53 +00:00			`stdpath "path"`
			`"strings"`

chore: go fmt 2022-08-03 06:26:59 +00:00			`"github.com/alist-org/alist/v3/internal/conf"`
feat: file down handle 2022-06-28 10:00:11 +00:00			`"github.com/alist-org/alist/v3/internal/driver"`
			`"github.com/alist-org/alist/v3/internal/fs"`
			`"github.com/alist-org/alist/v3/internal/model"`
feat: optional forward direct link params (close #3123) 2023-02-07 08:39:14 +00:00			`"github.com/alist-org/alist/v3/internal/setting"`
chore: go fmt 2022-08-03 06:26:59 +00:00			`"github.com/alist-org/alist/v3/internal/sign"`
feat: file down handle 2022-06-28 10:00:11 +00:00			`"github.com/alist-org/alist/v3/pkg/utils"`
			`"github.com/alist-org/alist/v3/server/common"`
			`"github.com/gin-gonic/gin"`
feat(alias): support proxy and direct together 2023-03-14 05:38:41 +00:00			`log "github.com/sirupsen/logrus"`
feat: file down handle 2022-06-28 10:00:11 +00:00			`)`

			`func Down(c *gin.Context) {`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`rawPath := c.MustGet("path").(string)`
feat: file down handle 2022-06-28 10:00:11 +00:00			`filename := stdpath.Base(rawPath)`
perf(alias): disabled log on fs call (close #4054) 2023-04-06 16:02:07 +00:00			`storage, err := fs.GetStorage(rawPath, &fs.GetStoragesArgs{})`
feat: file down handle 2022-06-28 10:00:11 +00:00			`if err != nil {`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`common.ErrorResp(c, err, 500)`
			`return`
feat: file down handle 2022-06-28 10:00:11 +00:00			`}`
feat(alias): support proxy and direct together 2023-03-14 05:38:41 +00:00			`if common.ShouldProxy(storage, filename) {`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`Proxy(c)`
			`return`
			`} else {`
			`link, _, err := fs.Link(c, rawPath, model.LinkArgs{`
fix(alias): add api prefix for proxy url (close #4392) 2023-05-18 16:12:17 +00:00			`IP: c.ClientIP(),`
			`Header: c.Request.Header,`
			`Type: c.Query("type"),`
			`HttpReq: c.Request,`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`})`
feat: file down handle 2022-06-28 10:00:11 +00:00			`if err != nil {`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`common.ErrorResp(c, err, 500)`
feat: file down handle 2022-06-28 10:00:11 +00:00			`return`
			`}`
feat: misc improvements about upload/copy/hash (#5045) general: add createTime/updateTime support in webdav and some drivers general: add hash support in some drivers general: cross-storage rapid-upload support general: enhance upload to avoid local temp file if possible general: replace readseekcloser with File interface to speed upstream operations feat(aliyun_open): same as above feat(crypt): add hack for 139cloud Close #4934 Close #4819 baidu_netdisk needs to improve the upload code to support rapid-upload 2023-08-27 13:14:23 +00:00			`if link.MFile != nil {`
feat: Crypt driver, improve http/webdav handling (#4884) this PR has several enhancements, fixes, and features: - [x] Crypt: a transparent encryption driver. Anyone can easily, and safely store encrypted data on the remote storage provider. Consider your data is safely stored in the safe, and the storage provider can only see the safe, but not your data. - [x] Optional: compatible with [Rclone Crypt](https://rclone.org/crypt/). More ways to manipulate the encrypted data. - [x] directory and filename encryption - [x] server-side encryption mode (server encrypts & decrypts all data, all data flows thru the server) - [x] obfuscate sensitive information internally - [x] introduced a server memory-cached multi-thread downloader. - [x] Driver: Quark enabled this feature, faster load in any single thread scenario. e.g. media player directly playing from the link, now it's faster. - [x] general improvement on HTTP/WebDAV stream processing & header handling & response handling - [x] Driver: Mega driver support ranged http header - [x] Driver: Quark fix bug of not closing HTTP request to Quark server while user end has closed connection to alist ## Crypt, a transparent Encrypt/Decrypt Driver. (Rclone Crypt compatible) e.g. Crypt mount path -> /vault Crypt remote path -> /ali/encrypted Aliyun mount paht -> /ali when the user uploads a.jpg to /vault, the data will be encrypted and saved to /ali/encrypted/xxxxx. And when the user wants to access a.jpg, it's automatically decrypted, and the user can do anything with it. Since it's Rclone Crypt compatible, users can download /ali/encrypted/xxxxx and decrypt it with rclone crypt tool. Or the user can mount this folder using rclone, then mount the decrypted folder in Linux... NB. Some breaking changes is made to make it follow global standard, e.g. processing the HTTP header properly. close #4679 close #4827 Co-authored-by: Sean He <866155+seanhe26@users.noreply.github.com> Co-authored-by: Andy Hsu <i@nn.ci> 2023-08-02 06:40:36 +00:00			`defer func(ReadSeekCloser io.ReadCloser) {`
			`err := ReadSeekCloser.Close()`
feat(alias): support proxy and direct together 2023-03-14 05:38:41 +00:00			`if err != nil {`
			`log.Errorf("close data error: %s", err)`
			`}`
feat: misc improvements about upload/copy/hash (#5045) general: add createTime/updateTime support in webdav and some drivers general: add hash support in some drivers general: cross-storage rapid-upload support general: enhance upload to avoid local temp file if possible general: replace readseekcloser with File interface to speed upstream operations feat(aliyun_open): same as above feat(crypt): add hack for 139cloud Close #4934 Close #4819 baidu_netdisk needs to improve the upload code to support rapid-upload 2023-08-27 13:14:23 +00:00			`}(link.MFile)`
feat(alias): support proxy and direct together 2023-03-14 05:38:41 +00:00			`}`
feat: add `Referrer-Policy` while redirect (pr #2160) 2022-11-01 11:19:08 +00:00			`c.Header("Referrer-Policy", "no-referrer")`
fix: disable cache for 302 redirect (close #2216) 2022-11-05 07:54:51 +00:00			`c.Header("Cache-Control", "max-age=0, no-cache, no-store, must-revalidate")`
feat: optional forward direct link params (close #3123) 2023-02-07 08:39:14 +00:00			`if setting.GetBool(conf.ForwardDirectLinkParams) {`
fix: different url encoding (close #3423) 2023-02-15 08:20:30 +00:00			`query := c.Request.URL.Query()`
feat: add ignore direct link params (close #5434) 2023-10-26 11:21:09 +00:00			`for _, v := range conf.SlicesMap[conf.IgnoreDirectLinkParams] {`
			`query.Del(v)`
			`}`
fix: different url encoding (close #3423) 2023-02-15 08:20:30 +00:00			`link.URL, err = utils.InjectQuery(link.URL, query)`
feat: optional forward direct link params (close #3123) 2023-02-07 08:39:14 +00:00			`if err != nil {`
			`common.ErrorResp(c, err, 500)`
			`return`
			`}`
			`}`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`c.Redirect(302, link.URL)`
feat: file down handle 2022-06-28 10:00:11 +00:00			`}`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`}`

			`func Proxy(c *gin.Context) {`
			`rawPath := c.MustGet("path").(string)`
			`filename := stdpath.Base(rawPath)`
perf(alias): disabled log on fs call (close #4054) 2023-04-06 16:02:07 +00:00			`storage, err := fs.GetStorage(rawPath, &fs.GetStoragesArgs{})`
feat: file down handle 2022-06-28 10:00:11 +00:00			`if err != nil {`
chore: common err resp log 2022-06-28 10:12:53 +00:00			`common.ErrorResp(c, err, 500)`
feat: file down handle 2022-06-28 10:00:11 +00:00			`return`
			`}`
chore: rename account to storage 2022-07-10 06:45:39 +00:00			`if canProxy(storage, filename) {`
			`downProxyUrl := storage.GetStorage().DownProxyUrl`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`if downProxyUrl != "" {`
			`_, ok := c.GetQuery("d")`
fix: if use down proxy url 2022-09-09 12:54:11 +00:00			`if !ok {`
feat: local storage image thumbnail 2022-08-11 12:32:17 +00:00			`URL := fmt.Sprintf("%s%s?sign=%s",`
			`strings.Split(downProxyUrl, "\n")[0],`
feat: encode path of url (close #1351) 2022-08-12 06:51:23 +00:00			`utils.EncodePath(rawPath, true),`
fix!: sign with the raw path instead of filename (#2258) 2022-11-11 08:24:25 +00:00			`sign.Sign(rawPath))`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`c.Redirect(302, URL)`
			`return`
			`}`
			`}`
			`link, file, err := fs.Link(c, rawPath, model.LinkArgs{`
fix(alias): add api prefix for proxy url (close #4392) 2023-05-18 16:12:17 +00:00			`Header: c.Request.Header,`
			`Type: c.Query("type"),`
			`HttpReq: c.Request,`
feat: file down handle 2022-06-28 10:00:11 +00:00			`})`
			`if err != nil {`
chore: common err resp log 2022-06-28 10:12:53 +00:00			`common.ErrorResp(c, err, 500)`
feat: file down handle 2022-06-28 10:00:11 +00:00			`return`
			`}`
feat: optional forward direct link params (close #3123) 2023-02-07 08:39:14 +00:00			`if link.URL != "" && setting.GetBool(conf.ForwardDirectLinkParams) {`
fix: different url encoding (close #3423) 2023-02-15 08:20:30 +00:00			`query := c.Request.URL.Query()`
feat: add ignore direct link params (close #5434) 2023-10-26 11:21:09 +00:00			`for _, v := range conf.SlicesMap[conf.IgnoreDirectLinkParams] {`
			`query.Del(v)`
			`}`
fix: different url encoding (close #3423) 2023-02-15 08:20:30 +00:00			`link.URL, err = utils.InjectQuery(link.URL, query)`
feat: optional forward direct link params (close #3123) 2023-02-07 08:39:14 +00:00			`if err != nil {`
			`common.ErrorResp(c, err, 500)`
			`return`
			`}`
			`}`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`err = common.Proxy(c.Writer, c.Request, link, file)`
feat: file down handle 2022-06-28 10:00:11 +00:00			`if err != nil {`
			`common.ErrorResp(c, err, 500, true)`
			`return`
			`}`
			`} else {`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`common.ErrorStrResp(c, "proxy not allowed", 403)`
			`return`
feat: file down handle 2022-06-28 10:00:11 +00:00			`}`
			`}`

feat: file proxy handle 2022-06-28 13:58:46 +00:00			`// TODO need optimize`
			`// when can be proxy?`
			`// 1. text file`
			`// 2. config.MustProxy()`
chore: rename account to storage 2022-07-10 06:45:39 +00:00			`// 3. storage.WebProxy`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`// 4. proxy_types`
			`// solution: text_file + shouldProxy()`
chore: rename account to storage 2022-07-10 06:45:39 +00:00			`func canProxy(storage driver.Driver, filename string) bool {`
fix: if use down proxy url 2022-09-09 12:54:11 +00:00			`if storage.Config().MustProxy() \|\| storage.GetStorage().WebProxy \|\| storage.GetStorage().WebdavProxy() {`
feat: file down handle 2022-06-28 10:00:11 +00:00			`return true`
			`}`
feat: customize proxy ignore headers (close #2763 pr #2766) * clean referer when use proxy * feat: customize proxy ignore headers Co-authored-by: Noah Hsu <i@nn.ci> 2022-12-20 08:08:32 +00:00			`if utils.SliceContains(conf.SlicesMap[conf.ProxyTypes], utils.Ext(filename)) {`
feat: file down handle 2022-06-28 10:00:11 +00:00			`return true`
			`}`
feat: customize proxy ignore headers (close #2763 pr #2766) * clean referer when use proxy * feat: customize proxy ignore headers Co-authored-by: Noah Hsu <i@nn.ci> 2022-12-20 08:08:32 +00:00			`if utils.SliceContains(conf.SlicesMap[conf.TextTypes], utils.Ext(filename)) {`
feat: file proxy handle 2022-06-28 13:58:46 +00:00			`return true`
			`}`
feat: file down handle 2022-06-28 10:00:11 +00:00			`return false`
			`}`