Home Explore Help
Sign In
TC
/
arozos
1
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 7caa75eb50
Branches Tags
arozos
/
main.router.go

main.router.go 6.5 KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169 
  1. package main
    2. 

  2. 

  3. /*
    4. 

  4. 	ArOZ Online System Main Request Router
    5. 

  5. 

  6. 	This is used to check authentication before actually serving file to the target client
    7. 

  7. 	This function also handle the special page (login.system and user.system) delivery
    8. 

  8. */
    9. 

  9. 

  10. import (
    11. 

  11. 	"net/http"
    12. 

  12. 	"path/filepath"
    13. 

  13. 	"strconv"
    14. 

  14. 	"strings"
    15. 

  15. 

  16. 	"imuslab.com/arozos/mod/common"
    17. 

  17. 	fs "imuslab.com/arozos/mod/filesystem"
    18. 

  18. )
    19. 

  19. 

  20. func mrouter(h http.Handler) http.Handler {
    21. 

  21. 	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
    22. 

  22. 		/*
    23. 

  23. 			You can also check the path for url using r.URL.Path
    24. 

  24. 		*/
    25. 

  25. 

  26. 		if r.URL.Path == "/favicon.ico" || r.URL.Path == "/manifest.webmanifest" || r.URL.Path == "/robots.txt" || r.URL.Path == "/humans.txt" {
    27. 

  27. 			//Serving web specification files. Allow no auth access.
    28. 

  28. 			h.ServeHTTP(w, r)
    29. 

  29. 		} else if r.URL.Path == "/login.system" {
    30. 

  30. 			//Login page. Require special treatment for template.
    31. 

  31. 			//Get the redirection address from the request URL
    32. 

  32. 			red, _ := mv(r, "redirect", false)
    33. 

  33. 

  34. 			//Append the redirection addr into the template
    35. 

  35. 			imgsrc := "./web/" + iconSystem
    36. 

  36. 			if !fileExists(imgsrc) {
    37. 

  37. 				imgsrc = "./web/img/public/auth_icon.png"
    38. 

  38. 			}
    39. 

  39. 			imageBase64, _ := LoadImageAsBase64(imgsrc)
    40. 

  40. 			parsedPage, err := template_load("web/login.system", map[string]interface{}{
    41. 

  41. 				"redirection_addr": red,
    42. 

  42. 				"usercount":        strconv.Itoa(authAgent.GetUserCounts()),
    43. 

  43. 				"service_logo":     imageBase64,
    44. 

  44. 			})
    45. 

  45. 			if err != nil {
    46. 

  46. 				panic("Error. Unable to parse login page. Is web directory data exists?")
    47. 

  47. 			}
    48. 

  48. 			w.Header().Add("Content-Type", "text/html; charset=UTF-8")
    49. 

  49. 			w.Write([]byte(parsedPage))
    50. 

  50. 		} else if r.URL.Path == "/reset.system" && authAgent.GetUserCounts() > 0 {
    51. 

  51. 			//Password restart page. Allow access only when user number > 0
    52. 

  52. 			system_resetpw_handlePasswordReset(w, r)
    53. 

  53. 		} else if r.URL.Path == "/user.system" && authAgent.GetUserCounts() == 0 {
    54. 

  54. 			//Serve user management page. This only allows serving of such page when the total usercount = 0 (aka System Initiation)
    55. 

  55. 			h.ServeHTTP(w, r)
    56. 

  56. 

  57. 		} else if (len(r.URL.Path) > 11 && r.URL.Path[:11] == "/img/public") || (len(r.URL.Path) > 7 && r.URL.Path[:7] == "/script") {
    58. 

  58. 			//Public image directory. Allow anyone to access resources inside this directory.
    59. 

  59. 			if filepath.Ext("web"+fs.DecodeURI(r.RequestURI)) == ".js" {
    60. 

  60. 				//Fixed serve js meme type invalid bug on Firefox
    61. 

  61. 				w.Header().Add("Content-Type", "application/javascript; charset=UTF-8")
    62. 

  62. 			}
    63. 

  63. 			h.ServeHTTP(w, r)
    64. 

  64. 

  65. 		} else if len(r.URL.Path) >= len("/webdav") && r.URL.Path[:7] == "/webdav" {
    66. 

  66. 			//WebDAV special handler
    67. 

  67. 			WebDavHandler.HandleRequest(w, r)
    68. 

  68. 		} else if len(r.URL.Path) >= len("/share") && r.URL.Path[:6] == "/share" {
    69. 

  69. 			shareManager.HandleShareAccess(w, r)
    70. 

  70. 		} else if r.URL.Path == "/" && authAgent.CheckAuth(r) {
    71. 

  71. 			//Use logged in and request the index. Serve the user's interface module
    72. 

  72. 			w.Header().Set("Cache-Control", "no-cache, no-store, no-transform, must-revalidate, private, max-age=0")
    73. 

  73. 			userinfo, err := userHandler.GetUserInfoFromRequest(w, r)
    74. 

  74. 			if err != nil {
    75. 

  75. 				//ERROR!! Server default
    76. 

  76. 				h.ServeHTTP(w, r)
    77. 

  77. 			} else {
    78. 

  78. 				interfaceModule := userinfo.GetInterfaceModules()
    79. 

  79. 				if len(interfaceModule) == 1 && interfaceModule[0] == "Desktop" {
    80. 

  80. 					http.Redirect(w, r, "./desktop.system", http.StatusTemporaryRedirect)
    81. 

  81. 				} else if len(interfaceModule) == 1 {
    82. 

  82. 					//User with default interface module not desktop
    83. 

  83. 					modileInfo := moduleHandler.GetModuleInfoByID(interfaceModule[0])
    84. 

  84. 					if modileInfo == nil {
    85. 

  85. 						//The module is not found or not enabled
    86. 

  86. 						http.Redirect(w, r, "./SystemAO/boot/interface_disabled.html", http.StatusTemporaryRedirect)
    87. 

  87. 						return
    88. 

  88. 					}
    89. 

  89. 					http.Redirect(w, r, modileInfo.StartDir, http.StatusTemporaryRedirect)
    90. 

  90. 				} else if len(interfaceModule) > 1 {
    91. 

  91. 					//Redirect to module selector
    92. 

  92. 					http.Redirect(w, r, "./SystemAO/boot/interface_selector.html", http.StatusTemporaryRedirect)
    93. 

  93. 				} else if len(interfaceModule) == 0 {
    94. 

  94. 					//Redirect to error page
    95. 

  95. 					http.Redirect(w, r, "./SystemAO/boot/no_interfaceing.html", http.StatusTemporaryRedirect)
    96. 

  96. 				} else {
    97. 

  97. 					//For unknown operations, send it to desktop
    98. 

  98. 					http.Redirect(w, r, "./desktop.system", http.StatusTemporaryRedirect)
    99. 

  99. 				}
    100. 

  100. 			}
    101. 

  101. 		} else if ((len(r.URL.Path) >= 5 && r.URL.Path[:5] == "/www/") || r.URL.Path == "/www") && *allow_homepage == true {
    102. 

  102. 			//Serve the custom homepage of the user defined. Hand over to the www router
    103. 

  103. 			userWwwHandler.RouteRequest(w, r)
    104. 

  104. 		} else if authAgent.CheckAuth(r) {
    105. 

  105. 			//User logged in. Continue to serve the file the client want
    106. 

  106. 			authAgent.UpdateSessionExpireTime(w, r)
    107. 

  107. 			if build_version == "development" {
    108. 

  108. 				//Do something if development build
    109. 

  109. 

  110. 			}
    111. 

  111. 			if filepath.Ext("web"+fs.DecodeURI(r.RequestURI)) == ".js" {
    112. 

  112. 				//Fixed serve js meme type invalid bug on Firefox
    113. 

  113. 				w.Header().Add("Content-Type", "application/javascript; charset=UTF-8")
    114. 

  114. 			}
    115. 

  115. 

  116. 			if !*disable_subservices {
    117. 

  117. 				//Enable subservice access
    118. 

  118. 				//Check if this path is reverse proxy path. If yes, serve with proxyserver
    119. 

  119. 				isRP, proxy, rewriteURL, subserviceObject := ssRouter.CheckIfReverseProxyPath(r)
    120. 

  120. 

  121. 				if isRP {
    122. 

  122. 					//Check user permission on that module
    123. 

  123. 					ssRouter.HandleRoutingRequest(w, r, proxy, subserviceObject, rewriteURL)
    124. 

  124. 					return
    125. 

  125. 				}
    126. 

  126. 			}
    127. 

  127. 

  128. 			//Not subservice routine. Handle file server
    129. 

  129. 			if !*enable_dir_listing {
    130. 

  130. 				if strings.HasSuffix(r.URL.Path, "/") {
    131. 

  131. 					//User trying to access a directory. Send NOT FOUND.
    132. 

  132. 					if fileExists("web" + r.URL.Path + "index.html") {
    133. 

  133. 						//Index exists. Allow passthrough
    134. 

  134. 

  135. 					} else {
    136. 

  136. 						errorHandleNotFound(w, r)
    137. 

  137. 						return
    138. 

  138. 					}
    139. 

  139. 				}
    140. 

  140. 			}
    141. 

  141. 			if !fileExists("web" + r.URL.Path) {
    142. 

  142. 				//File not found
    143. 

  143. 				errorHandleNotFound(w, r)
    144. 

  144. 				return
    145. 

  145. 			}
    146. 

  146. 			h.ServeHTTP(w, r)
    147. 

  147. 

  148. 		} else {
    149. 

  149. 			//User not logged in. Check if the path end with public/. If yes, allow public access
    150. 

  150. 			if !fs.FileExists(filepath.Join("./web", r.URL.Path)) {
    151. 

  151. 				//Requested file not exists on the server. Return not found
    152. 

  152. 				errorHandleNotFound(w, r)
    153. 

  153. 			} else if r.URL.Path[len(r.URL.Path)-1:] != "/" && filepath.Base(filepath.Dir(r.URL.Path)) == "public" {
    154. 

  154. 				//This file path end with public/. Allow public access
    155. 

  155. 				h.ServeHTTP(w, r)
    156. 

  156. 			} else if *allow_homepage == true && len(r.URL.Path) >= 5 && r.URL.Path[:5] == "/www/" {
    157. 

  157. 				//Handle public home serving if homepage mode is enabled
    158. 

  158. 				h.ServeHTTP(w, r)
    159. 

  159. 			} else {
    160. 

  160. 				//Other paths
    161. 

  161. 				//Rediect to login page
    162. 

  162. 				w.Header().Set("Cache-Control", "no-cache, no-store, no-transform, must-revalidate, private, max-age=0")
    163. 

  163. 				http.Redirect(w, r, common.ConstructRelativePathFromRequestURL(r.RequestURI, "login.system")+"?redirect="+r.URL.Path, 307)
    164. 

  164. 			}
    165. 

  165. 

  166. 		}
    167. 

  167. 

  168. 	})
    169. 

  169. }
    170.