mirror of
https://github.com/safing/portmaster
synced 2025-09-01 18:19:12 +00:00
175 lines
4.7 KiB
Go
175 lines
4.7 KiB
Go
package ui
|
|
|
|
import (
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"io/fs"
|
|
"net/http"
|
|
"net/url"
|
|
"path/filepath"
|
|
"strings"
|
|
"sync"
|
|
|
|
"github.com/spkg/zipfs"
|
|
|
|
"github.com/safing/portmaster/base/api"
|
|
"github.com/safing/portmaster/base/log"
|
|
"github.com/safing/portmaster/base/utils"
|
|
"github.com/safing/portmaster/service/updates"
|
|
)
|
|
|
|
var (
|
|
apps = make(map[string]*zipfs.FileSystem)
|
|
appsLock sync.RWMutex
|
|
)
|
|
|
|
func registerRoutes() error {
|
|
// Server assets.
|
|
api.RegisterHandler(
|
|
"/assets/{resPath:[a-zA-Z0-9/\\._-]+}",
|
|
&archiveServer{defaultModuleName: "assets"},
|
|
)
|
|
|
|
// Add slash to plain module namespaces.
|
|
api.RegisterHandler(
|
|
"/ui/modules/{moduleName:[a-z]+}",
|
|
api.WrapInAuthHandler(redirAddSlash, api.PermitAnyone, api.NotSupported),
|
|
)
|
|
|
|
// Serve modules.
|
|
srv := &archiveServer{}
|
|
api.RegisterHandler("/ui/modules/{moduleName:[a-z]+}/", srv)
|
|
api.RegisterHandler("/ui/modules/{moduleName:[a-z]+}/{resPath:[a-zA-Z0-9/\\._-]+}", srv)
|
|
|
|
// Redirect "/" to default module.
|
|
api.RegisterHandler(
|
|
"/",
|
|
api.WrapInAuthHandler(redirectToDefault, api.PermitAnyone, api.NotSupported),
|
|
)
|
|
|
|
return nil
|
|
}
|
|
|
|
type archiveServer struct {
|
|
defaultModuleName string
|
|
}
|
|
|
|
func (bs *archiveServer) ReadPermission(*http.Request) api.Permission { return api.PermitAnyone }
|
|
|
|
func (bs *archiveServer) WritePermission(*http.Request) api.Permission { return api.NotSupported }
|
|
|
|
func (bs *archiveServer) ServeHTTP(w http.ResponseWriter, r *http.Request) {
|
|
// Get request context.
|
|
ar := api.GetAPIRequest(r)
|
|
if ar == nil {
|
|
log.Errorf("ui: missing api request context")
|
|
http.Error(w, "Internal server error.", http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
moduleName, ok := ar.URLVars["moduleName"]
|
|
if !ok {
|
|
moduleName = bs.defaultModuleName
|
|
if moduleName == "" {
|
|
http.Error(w, "missing module name", http.StatusBadRequest)
|
|
return
|
|
}
|
|
}
|
|
|
|
resPath, ok := ar.URLVars["resPath"]
|
|
if !ok || strings.HasSuffix(resPath, "/") {
|
|
resPath = "index.html"
|
|
}
|
|
|
|
appsLock.RLock()
|
|
archiveFS, ok := apps[moduleName]
|
|
appsLock.RUnlock()
|
|
if ok {
|
|
ServeFileFromArchive(w, r, moduleName, archiveFS, resPath)
|
|
return
|
|
}
|
|
|
|
// get file from update system
|
|
zipFile, err := module.instance.BinaryUpdates().GetFile(fmt.Sprintf("%s.zip", moduleName))
|
|
if err != nil {
|
|
if errors.Is(err, updates.ErrNotFound) {
|
|
log.Tracef("ui: requested module %s does not exist", moduleName)
|
|
http.Error(w, err.Error(), http.StatusNotFound)
|
|
} else {
|
|
log.Tracef("ui: error loading module %s: %s", moduleName, err)
|
|
http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
}
|
|
return
|
|
}
|
|
|
|
// Open archive from disk.
|
|
archiveFS, err = zipfs.New(zipFile.Path())
|
|
if err != nil {
|
|
log.Tracef("ui: error prepping module %s: %s", moduleName, err)
|
|
http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
return
|
|
}
|
|
|
|
appsLock.Lock()
|
|
apps[moduleName] = archiveFS
|
|
appsLock.Unlock()
|
|
|
|
ServeFileFromArchive(w, r, moduleName, archiveFS, resPath)
|
|
}
|
|
|
|
// ServeFileFromArchive serves a file from the given archive.
|
|
func ServeFileFromArchive(w http.ResponseWriter, r *http.Request, archiveName string, archiveFS *zipfs.FileSystem, path string) {
|
|
readCloser, err := archiveFS.Open(path)
|
|
if err != nil {
|
|
if errors.Is(err, fs.ErrNotExist) {
|
|
// Check if there is a base index.html file we can serve instead.
|
|
var indexErr error
|
|
path = "index.html"
|
|
readCloser, indexErr = archiveFS.Open(path)
|
|
if indexErr != nil {
|
|
// If we cannot get an index, continue with handling the original error.
|
|
log.Tracef("ui: requested resource \"%s\" not found in archive %s: %s", path, archiveName, err)
|
|
http.Error(w, err.Error(), http.StatusNotFound)
|
|
return
|
|
}
|
|
} else {
|
|
log.Tracef("ui: error opening module %s: %s", archiveName, err)
|
|
http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
return
|
|
}
|
|
}
|
|
|
|
// set content type
|
|
_, ok := w.Header()["Content-Type"]
|
|
if !ok {
|
|
contentType, _ := utils.MimeTypeByExtension(filepath.Ext(path))
|
|
w.Header().Set("Content-Type", contentType)
|
|
}
|
|
|
|
w.WriteHeader(http.StatusOK)
|
|
if r.Method != http.MethodHead {
|
|
_, err = io.Copy(w, readCloser)
|
|
if err != nil {
|
|
log.Errorf("ui: failed to serve file: %s", err)
|
|
return
|
|
}
|
|
}
|
|
|
|
_ = readCloser.Close()
|
|
}
|
|
|
|
// redirectToDefault redirects the request to the default UI module.
|
|
func redirectToDefault(w http.ResponseWriter, r *http.Request) {
|
|
u, err := url.Parse("/ui/modules/portmaster/")
|
|
if err != nil {
|
|
http.Error(w, err.Error(), http.StatusInternalServerError)
|
|
return
|
|
}
|
|
http.Redirect(w, r, r.URL.ResolveReference(u).String(), http.StatusTemporaryRedirect)
|
|
}
|
|
|
|
// redirAddSlash redirects the request to the same, but with a trailing slash.
|
|
func redirAddSlash(w http.ResponseWriter, r *http.Request) {
|
|
http.Redirect(w, r, r.RequestURI+"/", http.StatusPermanentRedirect)
|
|
}
|