235 lines
6.7 KiB
Go
235 lines
6.7 KiB
Go
package server
|
|
|
|
import (
|
|
"fmt"
|
|
"html/template"
|
|
"strings"
|
|
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/gorilla/sessions"
|
|
|
|
"gobsidian/internal/auth"
|
|
"gobsidian/internal/config"
|
|
"gobsidian/internal/handlers"
|
|
"gobsidian/internal/models"
|
|
"gobsidian/internal/utils"
|
|
)
|
|
|
|
type Server struct {
|
|
config *config.Config
|
|
router *gin.Engine
|
|
store *sessions.CookieStore
|
|
auth *auth.Service
|
|
}
|
|
|
|
func New(cfg *config.Config) *Server {
|
|
if !cfg.Debug {
|
|
gin.SetMode(gin.ReleaseMode)
|
|
}
|
|
|
|
router := gin.Default()
|
|
store := sessions.NewCookieStore([]byte(cfg.SecretKey))
|
|
|
|
// Initialize auth service (panic on error during startup)
|
|
authSvc, err := auth.Open(cfg)
|
|
if err != nil {
|
|
panic(fmt.Errorf("failed to initialize auth: %w", err))
|
|
}
|
|
|
|
s := &Server{
|
|
config: cfg,
|
|
router: router,
|
|
store: store,
|
|
auth: authSvc,
|
|
}
|
|
|
|
// Global middlewares: session user + template setup
|
|
s.router.Use(s.SessionUser())
|
|
|
|
s.setupRoutes()
|
|
s.setupStaticFiles()
|
|
s.setupTemplates()
|
|
|
|
return s
|
|
}
|
|
|
|
func (s *Server) Start() error {
|
|
// Ensure notes directory exists
|
|
if err := utils.EnsureDir(s.config.NotesDir); err != nil {
|
|
return fmt.Errorf("failed to create notes directory: %w", err)
|
|
}
|
|
|
|
// Ensure image storage directory exists for mode 2
|
|
if s.config.ImageStorageMode == 2 {
|
|
if err := utils.EnsureDir(s.config.ImageStoragePath); err != nil {
|
|
return fmt.Errorf("failed to create image storage directory: %w", err)
|
|
}
|
|
}
|
|
|
|
addr := fmt.Sprintf("%s:%d", s.config.Host, s.config.Port)
|
|
fmt.Printf("Starting Gobsidian server on %s\n", addr)
|
|
fmt.Printf("Notes directory: %s\n", s.config.NotesDir)
|
|
|
|
return s.router.Run(addr)
|
|
}
|
|
|
|
func (s *Server) setupRoutes() {
|
|
h := handlers.New(s.config, s.store, s.auth)
|
|
|
|
// Main routes
|
|
s.router.GET("/", h.IndexHandler)
|
|
s.router.GET("/folder/*path", h.FolderHandler)
|
|
s.router.GET("/note/*path", h.NoteHandler)
|
|
|
|
// File serving routes
|
|
s.router.GET("/serve_attached_image/*path", h.ServeAttachedImageHandler)
|
|
s.router.GET("/serve_stored_image/:filename", h.ServeStoredImageHandler)
|
|
s.router.GET("/download/*path", h.DownloadHandler)
|
|
s.router.GET("/view_text/*path", h.ViewTextHandler)
|
|
|
|
// Auth routes
|
|
s.router.GET("/editor/login", h.LoginPage)
|
|
s.router.POST("/editor/login", s.CSRFRequire(), h.LoginPost)
|
|
s.router.POST("/editor/logout", s.RequireAuth(), s.CSRFRequire(), h.LogoutPost)
|
|
// MFA challenge routes (no auth yet, but CSRF)
|
|
s.router.GET("/editor/mfa", s.CSRFRequire(), h.MFALoginPage)
|
|
s.router.POST("/editor/mfa", s.CSRFRequire(), h.MFALoginVerify)
|
|
|
|
// New /editor group protected by auth + CSRF
|
|
editor := s.router.Group("/editor", s.RequireAuth(), s.CSRFRequire())
|
|
{
|
|
editor.GET("/create", h.CreateNotePageHandler)
|
|
editor.POST("/create", h.CreateNoteHandler)
|
|
editor.GET("/edit/*path", h.EditNotePageHandler)
|
|
editor.POST("/edit/*path", h.EditNoteHandler)
|
|
editor.DELETE("/delete/*path", h.DeleteHandler)
|
|
|
|
// Text editor routes under /editor
|
|
editor.GET("/edit_text/*path", h.EditTextPageHandler)
|
|
editor.POST("/edit_text/*path", h.PostEditTextHandler)
|
|
|
|
// Upload under /editor (secured)
|
|
editor.POST("/upload", h.UploadHandler)
|
|
|
|
// Settings under /editor
|
|
editor.GET("/settings", h.SettingsPageHandler)
|
|
editor.GET("/settings/image_storage", h.GetImageStorageSettingsHandler)
|
|
editor.POST("/settings/image_storage", h.PostImageStorageSettingsHandler)
|
|
editor.GET("/settings/notes_dir", h.GetNotesDirSettingsHandler)
|
|
editor.POST("/settings/notes_dir", h.PostNotesDirSettingsHandler)
|
|
editor.GET("/settings/file_extensions", h.GetFileExtensionsSettingsHandler)
|
|
editor.POST("/settings/file_extensions", h.PostFileExtensionsSettingsHandler)
|
|
|
|
// Profile
|
|
editor.GET("/profile", h.ProfilePage)
|
|
editor.POST("/profile/password", h.PostProfileChangePassword)
|
|
editor.POST("/profile/email", h.PostProfileChangeEmail)
|
|
editor.POST("/profile/mfa/enable", h.PostProfileEnableMFA)
|
|
editor.POST("/profile/mfa/disable", h.PostProfileDisableMFA)
|
|
// MFA setup during enrollment
|
|
editor.GET("/profile/mfa/setup", h.ProfileMFASetupPage)
|
|
editor.POST("/profile/mfa/verify", h.ProfileMFASetupVerify)
|
|
|
|
// Admin dashboard
|
|
editor.GET("/admin", s.RequireAdmin(), h.AdminPage)
|
|
|
|
// Admin CRUD API under /editor/admin
|
|
admin := editor.Group("/admin", s.RequireAdmin())
|
|
{
|
|
admin.POST("/users", h.AdminCreateUser)
|
|
admin.DELETE("/users/:id", h.AdminDeleteUser)
|
|
admin.POST("/users/:id/active", h.AdminSetUserActive)
|
|
admin.POST("/users/:id/mfa/enable", h.AdminEnableUserMFA)
|
|
admin.POST("/users/:id/mfa/disable", h.AdminDisableUserMFA)
|
|
admin.POST("/users/:id/mfa/reset", h.AdminResetUserMFA)
|
|
admin.POST("/groups", h.AdminCreateGroup)
|
|
admin.DELETE("/groups/:id", h.AdminDeleteGroup)
|
|
admin.POST("/memberships/add", h.AdminAddUserToGroup)
|
|
admin.POST("/memberships/remove", h.AdminRemoveUserFromGroup)
|
|
}
|
|
}
|
|
|
|
// API routes
|
|
s.router.GET("/api/tree", h.TreeAPIHandler)
|
|
s.router.GET("/api/search", h.SearchHandler)
|
|
}
|
|
|
|
func (s *Server) setupStaticFiles() {
|
|
s.router.Static("/static", "./web/static")
|
|
s.router.StaticFile("/favicon.ico", "./web/static/favicon.ico")
|
|
}
|
|
|
|
func (s *Server) setupTemplates() {
|
|
// Add template functions
|
|
funcMap := template.FuncMap{
|
|
"formatSize": utils.FormatFileSize,
|
|
"formatTime": utils.FormatTime,
|
|
"join": strings.Join,
|
|
"contains": func(slice []string, item string) bool {
|
|
for _, s := range slice {
|
|
if s == item {
|
|
return true
|
|
}
|
|
}
|
|
return false
|
|
},
|
|
"add": func(a, b int) int {
|
|
return a + b
|
|
},
|
|
"sub": func(a, b int) int {
|
|
return a - b
|
|
},
|
|
"fileTypeClass": func(fileType models.FileType) string {
|
|
switch fileType {
|
|
case models.FileTypeMarkdown:
|
|
return "text-blue-400"
|
|
case models.FileTypeDirectory:
|
|
return "text-yellow-400"
|
|
case models.FileTypeImage:
|
|
return "text-green-400"
|
|
case models.FileTypeText:
|
|
return "text-gray-400"
|
|
default:
|
|
return "text-gray-500"
|
|
}
|
|
},
|
|
"fileTypeIcon": func(fileType models.FileType) string {
|
|
switch fileType {
|
|
case models.FileTypeMarkdown:
|
|
return "📝"
|
|
case models.FileTypeDirectory:
|
|
return "📁"
|
|
case models.FileTypeImage:
|
|
return "🖼️"
|
|
case models.FileTypeText:
|
|
return "📄"
|
|
default:
|
|
return "📄"
|
|
}
|
|
},
|
|
"dict": func(values ...interface{}) map[string]interface{} {
|
|
if len(values)%2 != 0 {
|
|
return nil
|
|
}
|
|
dict := make(map[string]interface{}, len(values)/2)
|
|
for i := 0; i < len(values); i += 2 {
|
|
key, ok := values[i].(string)
|
|
if !ok {
|
|
return nil
|
|
}
|
|
dict[key] = values[i+1]
|
|
}
|
|
return dict
|
|
},
|
|
"safeHTML": func(s string) template.HTML {
|
|
return template.HTML(s)
|
|
},
|
|
}
|
|
|
|
// Load templates - make sure base.html is loaded with all the other templates
|
|
templates := template.Must(template.New("").Funcs(funcMap).ParseGlob("web/templates/*.html"))
|
|
s.router.SetHTMLTemplate(templates)
|
|
|
|
fmt.Printf("DEBUG: Templates loaded successfully\n")
|
|
}
|