mirror of https://github.com/aptly-dev/aptly
196 lines
3.7 KiB
Go
196 lines
3.7 KiB
Go
package api
|
|
|
|
import (
|
|
"fmt"
|
|
"io"
|
|
"os"
|
|
"path/filepath"
|
|
"strings"
|
|
"sync"
|
|
|
|
"github.com/aptly-dev/aptly/utils"
|
|
"github.com/gin-gonic/gin"
|
|
"github.com/saracen/walker"
|
|
)
|
|
|
|
func verifyPath(path string) bool {
|
|
path = filepath.Clean(path)
|
|
for _, part := range strings.Split(path, string(filepath.Separator)) {
|
|
if part == ".." || part == "." {
|
|
return false
|
|
}
|
|
}
|
|
|
|
return true
|
|
|
|
}
|
|
|
|
func verifyDir(c *gin.Context) bool {
|
|
if !verifyPath(c.Params.ByName("dir")) {
|
|
AbortWithJSONError(c, 400, fmt.Errorf("wrong dir"))
|
|
return false
|
|
}
|
|
|
|
return true
|
|
}
|
|
|
|
// @Summary Get files
|
|
// @Description Get list of uploaded files.
|
|
// @Tags Files
|
|
// @Produce json
|
|
// @Success 200 {array} string "List of files"
|
|
// @Router /api/files [get]
|
|
func apiFilesListDirs(c *gin.Context) {
|
|
list := []string{}
|
|
listLock := &sync.Mutex{}
|
|
|
|
err := walker.Walk(context.UploadPath(), func(path string, info os.FileInfo) error {
|
|
if path == context.UploadPath() {
|
|
return nil
|
|
}
|
|
|
|
if info.IsDir() {
|
|
listLock.Lock()
|
|
defer listLock.Unlock()
|
|
list = append(list, filepath.Base(path))
|
|
return filepath.SkipDir
|
|
}
|
|
|
|
return nil
|
|
})
|
|
|
|
if err != nil && !os.IsNotExist(err) {
|
|
AbortWithJSONError(c, 400, err)
|
|
return
|
|
}
|
|
|
|
c.JSON(200, list)
|
|
}
|
|
|
|
// POST /files/:dir/
|
|
func apiFilesUpload(c *gin.Context) {
|
|
if !verifyDir(c) {
|
|
return
|
|
}
|
|
|
|
path := filepath.Join(context.UploadPath(), utils.SanitizePath(c.Params.ByName("dir")))
|
|
err := os.MkdirAll(path, 0777)
|
|
|
|
if err != nil {
|
|
AbortWithJSONError(c, 500, err)
|
|
return
|
|
}
|
|
|
|
err = c.Request.ParseMultipartForm(10 * 1024 * 1024)
|
|
if err != nil {
|
|
AbortWithJSONError(c, 400, err)
|
|
return
|
|
}
|
|
|
|
stored := []string{}
|
|
|
|
for _, files := range c.Request.MultipartForm.File {
|
|
for _, file := range files {
|
|
src, err := file.Open()
|
|
if err != nil {
|
|
AbortWithJSONError(c, 500, err)
|
|
return
|
|
}
|
|
defer src.Close()
|
|
|
|
destPath := filepath.Join(path, filepath.Base(file.Filename))
|
|
dst, err := os.Create(destPath)
|
|
if err != nil {
|
|
AbortWithJSONError(c, 500, err)
|
|
return
|
|
}
|
|
defer dst.Close()
|
|
|
|
_, err = io.Copy(dst, src)
|
|
if err != nil {
|
|
AbortWithJSONError(c, 500, err)
|
|
return
|
|
}
|
|
|
|
stored = append(stored, filepath.Join(c.Params.ByName("dir"), filepath.Base(file.Filename)))
|
|
}
|
|
}
|
|
|
|
apiFilesUploadedCounter.WithLabelValues(c.Params.ByName("dir")).Inc()
|
|
c.JSON(200, stored)
|
|
|
|
}
|
|
|
|
// GET /files/:dir
|
|
func apiFilesListFiles(c *gin.Context) {
|
|
if !verifyDir(c) {
|
|
return
|
|
}
|
|
|
|
list := []string{}
|
|
listLock := &sync.Mutex{}
|
|
root := filepath.Join(context.UploadPath(), utils.SanitizePath(c.Params.ByName("dir")))
|
|
|
|
err := walker.Walk(root, func(path string, _ os.FileInfo) error {
|
|
if path == root {
|
|
return nil
|
|
}
|
|
|
|
listLock.Lock()
|
|
defer listLock.Unlock()
|
|
list = append(list, filepath.Base(path))
|
|
|
|
return nil
|
|
})
|
|
|
|
if err != nil {
|
|
if os.IsNotExist(err) {
|
|
AbortWithJSONError(c, 404, err)
|
|
} else {
|
|
AbortWithJSONError(c, 500, err)
|
|
}
|
|
return
|
|
}
|
|
|
|
c.JSON(200, list)
|
|
}
|
|
|
|
// DELETE /files/:dir
|
|
func apiFilesDeleteDir(c *gin.Context) {
|
|
if !verifyDir(c) {
|
|
return
|
|
}
|
|
|
|
err := os.RemoveAll(filepath.Join(context.UploadPath(), utils.SanitizePath(c.Params.ByName("dir"))))
|
|
if err != nil {
|
|
AbortWithJSONError(c, 500, err)
|
|
return
|
|
}
|
|
|
|
c.JSON(200, gin.H{})
|
|
}
|
|
|
|
// DELETE /files/:dir/:name
|
|
func apiFilesDeleteFile(c *gin.Context) {
|
|
if !verifyDir(c) {
|
|
return
|
|
}
|
|
|
|
dir := utils.SanitizePath(c.Params.ByName("dir"))
|
|
name := utils.SanitizePath(c.Params.ByName("name"))
|
|
if !verifyPath(name) {
|
|
AbortWithJSONError(c, 400, fmt.Errorf("wrong file"))
|
|
return
|
|
}
|
|
|
|
err := os.Remove(filepath.Join(context.UploadPath(), dir, name))
|
|
if err != nil {
|
|
if err1, ok := err.(*os.PathError); !ok || !os.IsNotExist(err1.Err) {
|
|
AbortWithJSONError(c, 500, err)
|
|
return
|
|
}
|
|
}
|
|
|
|
c.JSON(200, gin.H{})
|
|
}
|