0.9.0: Mode admin endpoints, use UTC date again since sqlite doesn't support HTTP dates, use official tor exit nodes list

This commit is contained in:
Fijxu 2024-08-25 18:08:56 -04:00
parent 7ee5956970
commit cbeba2b0a2
Signed by: Fijxu
GPG key ID: 32C1DDF333EDA6A4
7 changed files with 164 additions and 40 deletions

View file

@ -1,6 +1,6 @@
files: "./files" files: "./files"
thumbnails: "./thumbnails" thumbnails: "./thumbnails"
generateThumbnails: false generateThumbnails: true
db: "./db.sqlite3" db: "./db.sqlite3"
dbTableName: "files" dbTableName: "files"
adminEnabled: true adminEnabled: true
@ -11,8 +11,8 @@ size_limit: 512
port: 8080 port: 8080
blockTorAddresses: true blockTorAddresses: true
# Every hour # Every hour
torExitNodesCheck: 3600 torExitNodesCheck: 1600
torExitNodesUrl: "https://www.dan.me.uk/torlist/?exit" torExitNodesUrl: "https://check.torproject.org/exit-addresses"
torExitNodesFile: "./torexitnodes.txt" torExitNodesFile: "./torexitnodes.txt"
torMessage: "TOR IS BLOCKED!" torMessage: "TOR IS BLOCKED!"
filesPerIP: 2 filesPerIP: 2
@ -22,9 +22,9 @@ rateLimitMessage: ""
# If you define the unix socket, it will only listen on the socket and not the port. # If you define the unix socket, it will only listen on the socket and not the port.
#unix_socket: "/tmp/file-uploader.sock" #unix_socket: "/tmp/file-uploader.sock"
# In days # In days
deleteFilesAfter: 7 deleteFilesAfter: 1
# In seconds # In seconds
deleteFilesCheck: 1800 deleteFilesCheck: 1600
deleteKeyLength: 4 deleteKeyLength: 4
siteInfo: "Whatever you want to put here" siteInfo: "Whatever you want to put here"
siteWarning: "WARNING!" siteWarning: "WARNING!"

View file

@ -35,9 +35,8 @@ class Config
property blockTorAddresses : Bool? = false property blockTorAddresses : Bool? = false
# How often (in seconds) should this program download the exit nodes list # How often (in seconds) should this program download the exit nodes list
property torExitNodesCheck : Int32 = 3600 property torExitNodesCheck : Int32 = 3600
# A URL with a list of exit nodes addresses # Only https://check.torproject.org/exit-addresses is supported
# The list needs to contain a IP address per line property torExitNodesUrl : String = "https://check.torproject.org/exit-addresses"
property torExitNodesUrl : String = "https://www.dan.me.uk/torlist/?exit"
# Where the file of the exit nodes will be located, can be placed anywhere # Where the file of the exit nodes will be located, can be placed anywhere
property torExitNodesFile : String = "./torexitnodes.txt" property torExitNodesFile : String = "./torexitnodes.txt"
# Message that will be displayed to the Tor user. # Message that will be displayed to the Tor user.

View file

@ -3,7 +3,12 @@ require "../http-errors"
module Handling::Admin module Handling::Admin
extend self extend self
# private macro json_fill(named_tuple, field_name)
# j.field {{field_name}}, {{named_tuple}}[:{{field_name}}]
# end
# /api/admin/delete # /api/admin/delete
# curl -X POST -H "Content-Type: application/json" -H "X-Api-Key: asd" http://localhost:8080/api/admin/delete -d '{"files": ["j63"]}' | jq
def delete_file(env) def delete_file(env)
files = env.params.json["files"].as((Array(JSON::Any))) files = env.params.json["files"].as((Array(JSON::Any)))
successfull_files = [] of String successfull_files = [] of String
@ -46,20 +51,22 @@ module Handling::Admin
end end
# /api/admin/deleteiplimit # /api/admin/deleteiplimit
# curl -X POST -H "Content-Type: application/json" -H "X-Api-Key: asd" http://localhost:8080/api/admin/deleteiplimit -d '{"ips": ["127.0.0.1"]}' | jq
def delete_ip_limit(env) def delete_ip_limit(env)
ips = env.params.json["ips"].as((Array(JSON::Any))) data = env.params.json["ips"].as((Array(JSON::Any)))
successfull_ips = [] of String successfull = [] of String
failed_ips = [] of String failed = [] of String
ips.each do |ip| data.each do |item|
ip = ip.to_s item = item.to_s
begin begin
# Delete entry from db # Delete entry from db
SQL.exec "DELETE FROM #{CONFIG.ipTableName} WHERE ip = ?", ip SQL.exec "DELETE FROM #{CONFIG.ipTableName} WHERE ip = ?", item
LOGGER.debug "Rate limit for '#{ip}' was deleted" LOGGER.debug "Rate limit for '#{item}' was deleted"
successfull_ips << ip successfull << item
rescue ex : DB::NoResultsError rescue ex : DB::NoResultsError
LOGGER.error("Rate limit for '#{ip}' doesn't exist or is not registered in the database: #{ex.message}") LOGGER.error("Rate limit for '#{item}' doesn't exist or is not registered in the database: #{ex.message}")
failed_ips << ip failed << item
rescue ex rescue ex
LOGGER.error "Unknown error: #{ex.message}" LOGGER.error "Unknown error: #{ex.message}"
error500 "Unknown error: #{ex.message}" error500 "Unknown error: #{ex.message}"
@ -67,11 +74,101 @@ module Handling::Admin
end end
json = JSON.build do |j| json = JSON.build do |j|
j.object do j.object do
j.field "successfull", successfull_ips.size j.field "successfull", successfull.size
j.field "failed", failed_ips.size j.field "failed", failed.size
j.field "successfullUnbans", successfull_ips j.field "successfullUnbans", successfull
j.field "failedUnbans", failed_ips j.field "failedUnbans", failed
end end
end end
end end
# /api/admin/fileinfo
# curl -X POST -H "Content-Type: application/json" -H "X-Api-Key: asd" http://localhost:8080/api/admin/fileinfo -d '{"files": ["j63"]}' | jq
def retrieve_file_info(env)
data = env.params.json["files"].as((Array(JSON::Any)))
successfull = [] of NamedTuple(original_filename: String, filename: String, extension: String,
uploaded_at: String, checksum: String, ip: String, delete_key: String,
thumbnail: String | Nil)
failed = [] of String
data.each do |item|
item = item.to_s
begin
fileinfo = SQL.query_one("SELECT original_filename, filename, extension,
uploaded_at, checksum, ip, delete_key, thumbnail
FROM #{CONFIG.dbTableName}
WHERE filename = ?",
item,
as: {original_filename: String, filename: String, extension: String,
uploaded_at: String, checksum: String, ip: String, delete_key: String,
thumbnail: String | Nil})
successfull << fileinfo
rescue ex : DB::NoResultsError
LOGGER.error("File '#{item}' is not registered in the database: #{ex.message}")
failed << item
rescue ex
LOGGER.error "Unknown error: #{ex.message}"
error500 "Unknown error: #{ex.message}"
end
end
json = JSON.build do |j|
j.object do
j.field "files" do
j.array do
successfull.each do |fileinfo|
j.object do
j.field fileinfo[:filename] do
j.object do
j.field "original_filename", fileinfo[:original_filename]
j.field "filename", fileinfo[:filename]
j.field "extension", fileinfo[:extension]
j.field "uploaded_at", fileinfo[:uploaded_at]
j.field "checksum", fileinfo[:checksum]
j.field "ip", fileinfo[:ip]
j.field "delete_key", fileinfo[:delete_key]
j.field "thumbnail", fileinfo[:thumbnail]
end
end
end
end
end
end
j.field "successfull", successfull.size
j.field "failed", failed.size
# j.field "successfullFiles"
j.field "failedFiles", failed
end
end
end
# /api/admin/torexitnodes
# curl -X GET -H "X-Api-Key: asd" http://localhost:8080/api/admin/torexitnodes | jq
def retrieve_tor_exit_nodes(env, nodes)
json = JSON.build do |j|
j.object do
j.field "ips", nodes
end
end
end
# /api/admin/whitelist
# curl -X GET -H "X-Api-Key: asd" http://localhost:8080/api/admin/torexitnodes | jq
# def add_ip_to_whitelist(env, nodes)
# json = JSON.build do |j|
# j.object do
# j.field "ips", nodes
# end
# end
# end
# /api/admin/blacklist
# curl -X GET -H "X-Api-Key: asd" http://localhost:8080/api/admin/torexitnodes | jq
def add_ip_to_blacklist(env, nodes)
json = JSON.build do |j|
j.object do
j.field "ips", nodes
end
end
end
# MODULE END
end end

View file

@ -1,5 +1,6 @@
require "../http-errors" require "../http-errors"
require "http/client" require "http/client"
require "benchmark"
module Handling module Handling
extend self extend self
@ -43,7 +44,7 @@ module Handling
IO.copy(upload.body, output) IO.copy(upload.body, output)
end end
original_filename = upload.filename original_filename = upload.filename
uploaded_at = Time::Format::HTTP_DATE.format(Time.utc) uploaded_at = Time.utc
checksum = Utils.hash_file(file_path) checksum = Utils.hash_file(file_path)
end end
# X-Forwarded-For if behind a reverse proxy and the header is set in the reverse # X-Forwarded-For if behind a reverse proxy and the header is set in the reverse
@ -101,7 +102,7 @@ module Handling
original_filename = "" original_filename = ""
extension = "" extension = ""
checksum = "" checksum = ""
uploaded_at = Time::Format::HTTP_DATE.format(Time.utc) uploaded_at = Time.utc
extension = File.extname(URI.parse(url).path) extension = File.extname(URI.parse(url).path)
delete_key = nil delete_key = nil
file_path = ::File.join ["#{CONFIG.files}", filename + extension] file_path = ::File.join ["#{CONFIG.files}", filename + extension]
@ -123,7 +124,7 @@ module Handling
File.rename(file_path, file_path + extension) File.rename(file_path, file_path + extension)
file_path = ::File.join ["#{CONFIG.files}", filename + extension] file_path = ::File.join ["#{CONFIG.files}", filename + extension]
end end
# TODO: Benchmark this: # The second one is faster and it uses less memory
# original_filename = URI.parse("https://ayaya.beauty/PqC").path.split("/").last # original_filename = URI.parse("https://ayaya.beauty/PqC").path.split("/").last
original_filename = url.split("/").last original_filename = url.split("/").last
checksum = Utils.hash_file(file_path) checksum = Utils.hash_file(file_path)
@ -177,10 +178,21 @@ module Handling
WHERE filename = ?", WHERE filename = ?",
env.params.url["filename"].split(".").first, env.params.url["filename"].split(".").first,
as: {filename: String, ofilename: String, up_at: String, ext: String, checksum: String, thumbnail: String | Nil})[0] as: {filename: String, ofilename: String, up_at: String, ext: String, checksum: String, thumbnail: String | Nil})[0]
# Benchmark.ips do |x|
headers(env, {"Content-Disposition" => "inline; filename*=UTF-8''#{fileinfo[:ofilename]}"}) # x.report("header multiple") { headers(env, {"Content-Disposition" => "inline; filename*=UTF-8''#{fileinfo[:ofilename]}",
headers(env, {"Last-Modified" => "#{fileinfo[:up_at]}"}) # "Last-Modified" => "#{fileinfo[:up_at]}",
headers(env, {"ETag" => "#{fileinfo[:checksum]}"}) # "ETag" => "#{fileinfo[:checksum]}"}) }
# x.report("shorter sleep") do
# env.response.headers["Content-Disposition"] = "inline; filename*=UTF-8''#{fileinfo[:ofilename]}"
# env.response.headers["Last-Modified"] = "#{fileinfo[:up_at]}"
# env.response.headers["ETag"] = "#{fileinfo[:checksum]}"
# end
# end
# `env.response.headers` is faster than `headers(env, Hash(String, String))`
# https://github.com/kemalcr/kemal/blob/3243b8e0e03568ad3bd9f0ad6f445c871605b821/src/kemal/helpers/helpers.cr#L102C1-L104C4
env.response.headers["Content-Disposition"] = "inline; filename*=UTF-8''#{fileinfo[:ofilename]}"
# env.response.headers["Last-Modified"] = "#{fileinfo[:up_at]}"
env.response.headers["ETag"] = "#{fileinfo[:checksum]}"
CONFIG.opengraphUseragents.each do |useragent| CONFIG.opengraphUseragents.each do |useragent|
if env.request.headers.try &.["User-Agent"].includes?(useragent) if env.request.headers.try &.["User-Agent"].includes?(useragent)

View file

@ -7,6 +7,7 @@ module Routing
def reload_exit_nodes def reload_exit_nodes
LOGGER.debug "Updating Tor exit nodes array" LOGGER.debug "Updating Tor exit nodes array"
@@exit_nodes = Utils.load_tor_exit_nodes @@exit_nodes = Utils.load_tor_exit_nodes
LOGGER.debug "IPs inside the exit nodes array: #{@@exit_nodes.size}"
end end
before_post "/api/admin/*" do |env| before_post "/api/admin/*" do |env|
@ -94,4 +95,12 @@ module Routing
post "/api/admin/deleteiplimit" do |env| post "/api/admin/deleteiplimit" do |env|
Handling::Admin.delete_ip_limit(env) Handling::Admin.delete_ip_limit(env)
end end
post "/api/admin/fileinfo" do |env|
Handling::Admin.retrieve_file_info(env)
end
get "/api/admin/torexitnodes" do |env|
Handling::Admin.retrieve_tor_exit_nodes(env, @@exit_nodes)
end
end end

View file

@ -235,6 +235,13 @@ module Utils
def load_tor_exit_nodes def load_tor_exit_nodes
exit_nodes = File.read_lines(CONFIG.torExitNodesFile) exit_nodes = File.read_lines(CONFIG.torExitNodesFile)
ips = [] of String
exit_nodes.each do |line|
if line.includes?("ExitAddress")
ips << line.split(" ")[1]
end
end
return ips
end end
def ip_address(env) : String def ip_address(env) : String