mirror of
https://github.com/Forceu/Gokapi.git
synced 2026-02-06 00:18:36 -06:00
224 lines
6.4 KiB
Go
224 lines
6.4 KiB
Go
package configuration
|
|
|
|
/**
|
|
Loading and saving of the persistent configuration
|
|
*/
|
|
|
|
import (
|
|
"bytes"
|
|
"crypto/sha1"
|
|
"encoding/hex"
|
|
"encoding/json"
|
|
"errors"
|
|
"fmt"
|
|
"github.com/forceu/gokapi/internal/configuration/cloudconfig"
|
|
"github.com/forceu/gokapi/internal/configuration/configupgrade"
|
|
"github.com/forceu/gokapi/internal/configuration/database"
|
|
"github.com/forceu/gokapi/internal/environment"
|
|
"github.com/forceu/gokapi/internal/helper"
|
|
log "github.com/forceu/gokapi/internal/logging"
|
|
"github.com/forceu/gokapi/internal/models"
|
|
"github.com/forceu/gokapi/internal/storage/filesystem"
|
|
"io"
|
|
"os"
|
|
"strings"
|
|
)
|
|
|
|
// MinLengthPassword is the required length of admin password in characters
|
|
const MinLengthPassword = 8
|
|
|
|
// Environment is an object containing the environment variables
|
|
var Environment environment.Environment
|
|
|
|
// ServerSettings is an object containing the server configuration
|
|
var serverSettings models.Configuration
|
|
|
|
var usesHttps bool
|
|
|
|
// Exists returns true if configuration files are present
|
|
func Exists() bool {
|
|
configPath, _, _, _ := environment.GetConfigPaths()
|
|
return helper.FileExists(configPath)
|
|
}
|
|
|
|
// loadFromFile parses the given file and adds salts, if they are invalid
|
|
func loadFromFile(path string) (models.Configuration, error) {
|
|
file, err := os.Open(path)
|
|
if err != nil {
|
|
return models.Configuration{}, err
|
|
}
|
|
decoder := json.NewDecoder(file)
|
|
settings := models.Configuration{}
|
|
err = decoder.Decode(&settings)
|
|
if err != nil {
|
|
return models.Configuration{}, err
|
|
}
|
|
err = file.Close()
|
|
if err != nil {
|
|
return models.Configuration{}, err
|
|
}
|
|
if len(settings.Authentication.SaltFiles) < 20 {
|
|
settings.Authentication.SaltFiles = helper.GenerateRandomString(30)
|
|
fmt.Println("Warning: Salt for file hash invalid, generating new salt")
|
|
}
|
|
if len(settings.Authentication.SaltAdmin) < 20 {
|
|
settings.Authentication.SaltAdmin = helper.GenerateRandomString(30)
|
|
if settings.Authentication.Method == 0 { // == authentication.Internal, but would create import cycle
|
|
fmt.Println("Warning: Salt for admin password invalid, generating new salt. You will need to reset the admin password.")
|
|
}
|
|
}
|
|
return settings, nil
|
|
}
|
|
|
|
// Load loads the configuration or creates the folder structure and a default configuration
|
|
func Load() {
|
|
Environment = environment.New()
|
|
// No check if file exists, as this was checked earlier
|
|
settings, err := loadFromFile(Environment.ConfigPath)
|
|
helper.Check(err)
|
|
serverSettings = settings
|
|
usesHttps = strings.HasPrefix(strings.ToLower(serverSettings.ServerUrl), "https://")
|
|
|
|
if configupgrade.DoUpgrade(&serverSettings, &Environment) {
|
|
save()
|
|
}
|
|
if serverSettings.PublicName == "" {
|
|
serverSettings.PublicName = "Gokapi"
|
|
}
|
|
if serverSettings.MaxParallelUploads == 0 {
|
|
serverSettings.MaxParallelUploads = 4
|
|
}
|
|
if serverSettings.ChunkSize == 0 {
|
|
serverSettings.ChunkSize = 45
|
|
}
|
|
helper.CreateDir(serverSettings.DataDir)
|
|
filesystem.Init(serverSettings.DataDir)
|
|
log.Init(Environment.DataDir)
|
|
}
|
|
|
|
// ConnectDatabase loads the database that is defined in the configuration
|
|
func ConnectDatabase() {
|
|
dbConfig, err := database.ParseUrl(serverSettings.DatabaseUrl, false)
|
|
helper.Check(err)
|
|
database.Connect(dbConfig)
|
|
database.Upgrade()
|
|
}
|
|
|
|
// UsesHttps returns true if Gokapi URL is set to a secure URL
|
|
func UsesHttps() bool {
|
|
return usesHttps
|
|
}
|
|
|
|
// Get returns a pointer to the server configuration
|
|
func Get() *models.Configuration {
|
|
return &serverSettings
|
|
}
|
|
|
|
// Save the configuration as a json file
|
|
func save() {
|
|
file, err := os.OpenFile(Environment.ConfigPath, os.O_RDWR|os.O_CREATE|os.O_TRUNC, 0644)
|
|
if err != nil {
|
|
fmt.Println("Error writing configuration:", err)
|
|
os.Exit(1)
|
|
}
|
|
defer file.Close()
|
|
|
|
_, err = io.Copy(file, bytes.NewReader(serverSettings.ToJson()))
|
|
if err != nil {
|
|
fmt.Println("Error writing configuration:", err)
|
|
os.Exit(1)
|
|
}
|
|
}
|
|
|
|
// LoadFromSetup creates a new configuration file after a user completed the setup. If cloudConfig is not nil, a new
|
|
// cloud config file is created. If it is nil an existing cloud config file will be deleted.
|
|
func LoadFromSetup(config models.Configuration, cloudConfig *cloudconfig.CloudConfig, e2eConfig End2EndReconfigParameters) {
|
|
Environment = environment.New()
|
|
helper.CreateDir(Environment.ConfigDir)
|
|
|
|
serverSettings = config
|
|
if cloudConfig != nil {
|
|
err := cloudconfig.Write(*cloudConfig)
|
|
if err != nil {
|
|
fmt.Println("Error writing cloud configuration:", err)
|
|
os.Exit(1)
|
|
}
|
|
} else {
|
|
err := cloudconfig.Delete()
|
|
if err != nil {
|
|
fmt.Println("Error deleting cloud configuration:", err)
|
|
os.Exit(1)
|
|
}
|
|
}
|
|
save()
|
|
Load()
|
|
ConnectDatabase()
|
|
database.DeleteAllSessions()
|
|
if e2eConfig.DeleteEnd2EndEncryption {
|
|
database.DeleteEnd2EndInfo()
|
|
}
|
|
if e2eConfig.DeleteEncryptedStorage {
|
|
deleteAllEncryptedStorage()
|
|
}
|
|
}
|
|
|
|
func deleteAllEncryptedStorage() {
|
|
files := database.GetAllMetadata()
|
|
for _, file := range files {
|
|
if file.Encryption.IsEncrypted {
|
|
file.UnlimitedTime = false
|
|
file.ExpireAt = 0
|
|
database.SaveMetaData(file)
|
|
}
|
|
}
|
|
}
|
|
|
|
// SetDeploymentPassword sets a new password. This should only be used for non-interactive deployment, but is not enforced
|
|
func SetDeploymentPassword(newPassword string) {
|
|
if len(newPassword) < MinLengthPassword {
|
|
fmt.Printf("Password needs to be at least %d characters long\n", MinLengthPassword)
|
|
os.Exit(1)
|
|
}
|
|
serverSettings.Authentication.SaltAdmin = helper.GenerateRandomString(30)
|
|
serverSettings.Authentication.Password = hashUserPassword(newPassword)
|
|
database.DeleteAllSessions()
|
|
save()
|
|
fmt.Println("New password has been set successfully")
|
|
os.Exit(0)
|
|
}
|
|
|
|
// HashPassword hashes a string with SHA1 the file salt or admin user salt
|
|
func HashPassword(password string, useFileSalt bool) string {
|
|
if useFileSalt {
|
|
return hashFilePassword(password)
|
|
}
|
|
return hashUserPassword(password)
|
|
}
|
|
|
|
func hashFilePassword(password string) string {
|
|
return HashPasswordCustomSalt(password, serverSettings.Authentication.SaltFiles)
|
|
}
|
|
|
|
func hashUserPassword(password string) string {
|
|
return HashPasswordCustomSalt(password, serverSettings.Authentication.SaltAdmin)
|
|
}
|
|
|
|
// HashPasswordCustomSalt hashes a password with SHA1 and the provided salt
|
|
func HashPasswordCustomSalt(password, salt string) string {
|
|
if password == "" {
|
|
return ""
|
|
}
|
|
if salt == "" {
|
|
panic(errors.New("no salt provided"))
|
|
}
|
|
pwBytes := []byte(password + salt)
|
|
hash := sha1.New()
|
|
hash.Write(pwBytes)
|
|
return hex.EncodeToString(hash.Sum(nil))
|
|
}
|
|
|
|
type End2EndReconfigParameters struct {
|
|
DeleteEnd2EndEncryption bool
|
|
DeleteEncryptedStorage bool
|
|
}
|