122 lines
2.6 KiB
Go
122 lines
2.6 KiB
Go
package http
|
|
|
|
import (
|
|
"bufio"
|
|
"io"
|
|
"log"
|
|
"net/http"
|
|
"os/exec"
|
|
"slices"
|
|
"strings"
|
|
"time"
|
|
|
|
"github.com/gorilla/websocket"
|
|
|
|
"github.com/filebrowser/filebrowser/v2/runner"
|
|
)
|
|
|
|
const (
|
|
WSWriteDeadline = 10 * time.Second
|
|
)
|
|
|
|
var upgrader = websocket.Upgrader{
|
|
ReadBufferSize: 1024,
|
|
WriteBufferSize: 1024,
|
|
}
|
|
|
|
var (
|
|
cmdNotAllowed = []byte("Command not allowed.")
|
|
)
|
|
|
|
//nolint:unparam
|
|
func wsErr(ws *websocket.Conn, r *http.Request, status int, err error) {
|
|
txt := http.StatusText(status)
|
|
if err != nil || status >= 400 {
|
|
log.Printf("%s: %v %s %v", r.URL.Path, status, r.RemoteAddr, err)
|
|
}
|
|
if err := ws.WriteControl(websocket.CloseInternalServerErr, []byte(txt), time.Now().Add(WSWriteDeadline)); err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
var commandsHandler = withUser(func(w http.ResponseWriter, r *http.Request, d *data) (int, error) {
|
|
conn, err := upgrader.Upgrade(w, r, nil)
|
|
if err != nil {
|
|
return http.StatusInternalServerError, err
|
|
}
|
|
defer conn.Close()
|
|
|
|
var raw string
|
|
|
|
for {
|
|
_, msg, err := conn.ReadMessage() //nolint:govet
|
|
if err != nil {
|
|
wsErr(conn, r, http.StatusInternalServerError, err)
|
|
return 0, nil
|
|
}
|
|
|
|
raw = strings.TrimSpace(string(msg))
|
|
if raw != "" {
|
|
break
|
|
}
|
|
}
|
|
|
|
// Fail fast
|
|
if !d.server.EnableExec || !d.user.Perm.Execute {
|
|
if err := conn.WriteMessage(websocket.TextMessage, cmdNotAllowed); err != nil { //nolint:govet
|
|
wsErr(conn, r, http.StatusInternalServerError, err)
|
|
}
|
|
|
|
return 0, nil
|
|
}
|
|
|
|
command, name, err := runner.ParseCommand(d.settings, raw)
|
|
if err != nil {
|
|
if err := conn.WriteMessage(websocket.TextMessage, []byte(err.Error())); err != nil { //nolint:govet
|
|
wsErr(conn, r, http.StatusInternalServerError, err)
|
|
}
|
|
return 0, nil
|
|
}
|
|
|
|
if !slices.Contains(d.user.Commands, name) {
|
|
if err := conn.WriteMessage(websocket.TextMessage, cmdNotAllowed); err != nil { //nolint:govet
|
|
wsErr(conn, r, http.StatusInternalServerError, err)
|
|
}
|
|
|
|
return 0, nil
|
|
}
|
|
|
|
cmd := exec.Command(command[0], command[1:]...) //nolint:gosec
|
|
cmd.Dir = d.user.FullPath(r.URL.Path)
|
|
|
|
stdout, err := cmd.StdoutPipe()
|
|
if err != nil {
|
|
wsErr(conn, r, http.StatusInternalServerError, err)
|
|
return 0, nil
|
|
}
|
|
|
|
stderr, err := cmd.StderrPipe()
|
|
if err != nil {
|
|
wsErr(conn, r, http.StatusInternalServerError, err)
|
|
return 0, nil
|
|
}
|
|
|
|
if err := cmd.Start(); err != nil {
|
|
wsErr(conn, r, http.StatusInternalServerError, err)
|
|
return 0, nil
|
|
}
|
|
|
|
s := bufio.NewScanner(io.MultiReader(stdout, stderr))
|
|
for s.Scan() {
|
|
if err := conn.WriteMessage(websocket.TextMessage, s.Bytes()); err != nil {
|
|
log.Print(err)
|
|
}
|
|
}
|
|
|
|
if err := cmd.Wait(); err != nil {
|
|
wsErr(conn, r, http.StatusInternalServerError, err)
|
|
}
|
|
|
|
return 0, nil
|
|
})
|