rebase and merge PR szabodanika#253

Co-authored-by: Xeu <thankrain@qq.com>

Author: santiagocezar

.env

@@ -136,6 +136,10 @@ export MICROBIN_GC_DAYS=90
 # Default value: false
 export MICROBIN_ENABLE_BURN_AFTER=true
 
+# Enables or disables the "Custom Url" function
+# Default value: false
+export MICROBIN_ENABLE_CUSTOM_URL=true
+
 # Sets the default burn after setting on the main screen.
 # Default value: 0. Available expiration options: 1, 10,
 # 100, 1000, 10000, 0 (= no limit)

README.md

@@ -44,6 +44,7 @@ On our website [microbin.eu](https://microbin.eu), you will find the following:
 - QR code support
 - URL shortening and redirection
 - Animal names instead of random numbers for upload identifiers (64 animals)
+- Custom URL
 - SQLite and JSON database support
 - Private and public, editable and uneditable, automatically and never expiring uploads
 - Automatic dark mode and custom styling support with very little CSS and only vanilla JS (see [`water.css`](https://github.com/kognise/water.css))

compose.yaml

@@ -32,6 +32,7 @@ services:
       MICROBIN_THREADS: ${MICROBIN_THREADS}
       MICROBIN_GC_DAYS: ${MICROBIN_GC_DAYS}
       MICROBIN_ENABLE_BURN_AFTER: ${MICROBIN_ENABLE_BURN_AFTER}
+      MICROBIN_ENABLE_CUSTOM_URL: ${MICROBIN_ENABLE_CUSTOM_URL}
       MICROBIN_DEFAULT_BURN_AFTER: ${MICROBIN_DEFAULT_BURN_AFTER}
       MICROBIN_WIDE: ${MICROBIN_WIDE}
       MICROBIN_QR: ${MICROBIN_QR}

src/args.rs

@@ -103,6 +103,9 @@ pub struct Args {
     #[clap(long, env = "MICROBIN_ENABLE_READONLY")]
     pub enable_readonly: bool,
 
+    #[clap(long, env = "MICROBIN_ENABLE_CUSTOM_URL")]
+    pub enable_custom_url: bool,
+
     #[clap(long, env = "MICROBIN_DEFAULT_EXPIRY", default_value = "24hour")]
     pub default_expiry: String,
 
@@ -114,7 +117,7 @@ pub struct Args {
 
     #[clap(long, env = "MICROBIN_CUSTOM_CSS")]
     pub custom_css: Option<String>,
-
+    
     #[clap(long, env = "MICROBIN_HASH_IDS")]
     pub hash_ids: bool,
 
@@ -211,6 +214,7 @@ impl Args {
             max_file_size_encrypted_mb: self.max_file_size_encrypted_mb,
             max_file_size_unencrypted_mb: self.max_file_size_unencrypted_mb,
             disable_update_checking: self.disable_update_checking,
+            enable_custom_url: self.enable_custom_url,
         }
     }
 }

src/endpoints/auth_upload.rs

@@ -1,7 +1,6 @@
 use crate::args::{Args, ARGS};
 use crate::endpoints::errors::ErrorTemplate;
-use crate::util::animalnumbers::to_u64;
-use crate::util::hashids::to_u64 as hashid_to_u64;
+use crate::util::hashids::alias_comparator;
 use crate::util::misc::remove_expired;
 use crate::AppState;
 use actix_web::{get, web, HttpResponse};
@@ -25,14 +24,10 @@ pub async fn auth_upload(data: web::Data<AppState>, id: web::Path<String>) -> Ht
 
     remove_expired(&mut pastas);
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_i, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -65,14 +60,10 @@ pub async fn auth_upload_with_status(
 
     let (id, status) = param.into_inner();
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_i, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -100,14 +91,10 @@ pub async fn auth_raw_pasta(data: web::Data<AppState>, id: web::Path<String>) ->
 
     remove_expired(&mut pastas);
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_i, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -140,14 +127,10 @@ pub async fn auth_raw_pasta_with_status(
 
     let (id, status) = param.into_inner();
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_i, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -175,14 +158,10 @@ pub async fn auth_edit_private(data: web::Data<AppState>, id: web::Path<String>)
 
     remove_expired(&mut pastas);
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -215,14 +194,10 @@ pub async fn auth_edit_private_with_status(
 
     let (id, status) = param.into_inner();
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_i, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -250,14 +225,10 @@ pub async fn auth_file(data: web::Data<AppState>, id: web::Path<String>) -> Http
 
     remove_expired(&mut pastas);
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -290,14 +261,10 @@ pub async fn auth_file_with_status(
 
     let (id, status) = param.into_inner();
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_i, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -325,14 +292,10 @@ pub async fn auth_remove_private(data: web::Data<AppState>, id: web::Path<String
 
     remove_expired(&mut pastas);
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,
@@ -365,14 +328,10 @@ pub async fn auth_remove_private_with_status(
 
     let (id, status) = param.into_inner();
 
-    let intern_id = if ARGS.hash_ids {
-        hashid_to_u64(&id).unwrap_or(0)
-    } else {
-        to_u64(&id).unwrap_or(0)
-    };
+    let comparator = alias_comparator(id.as_str());
 
     for (_i, pasta) in pastas.iter().enumerate() {
-        if pasta.id == intern_id {
+        if comparator(pasta) {
             return HttpResponse::Ok().content_type("text/html; charset=utf-8").body(
                 AuthPasta {
                     args: &ARGS,

src/endpoints/create.rs

@@ -1,12 +1,15 @@
 use crate::pasta::PastaFile;
 use crate::util::animalnumbers::to_animal_names;
+use crate::util::animalnumbers::to_u64;
 use crate::util::db::insert;
 use crate::util::hashids::to_hashids;
+use crate::util::hashids::to_u64 as hashid_to_u64;
 use crate::util::misc::{encrypt, encrypt_file, is_valid_url};
 use crate::{AppState, Pasta, ARGS};
 use actix_multipart::Multipart;
 use actix_web::error::ErrorBadRequest;
 use actix_web::cookie::Cookie;
+use actix_web::error::ErrorForbidden;
 use actix_web::{get, web, Error, HttpResponse, Responder};
 use askama::Template;
 use bytesize::ByteSize;
@@ -73,8 +76,8 @@ pub fn expiration_to_timestamp(expiration: &str, timenow: i64) -> i64 {
 
 /// receives a file through http Post on url /upload/a-b-c with a, b and c
 /// different animals. The client sends the post in response to a form.
-// TODO: form field order might need to be changed. In my testing the attachment 
-// data is nestled between password encryption key etc <21-10-24, dvdsk> 
+// TODO: form field order might need to be changed. In my testing the attachment
+// data is nestled between password encryption key etc <21-10-24, dvdsk>
 pub async fn create(
     data: web::Data<AppState>,
     mut payload: Multipart,
@@ -93,6 +96,7 @@ pub async fn create(
         id: rand::thread_rng().gen::<u16>() as u64,
         content: String::from(""),
         file: None,
+        custom_alias: None,
         extension: String::from(""),
         private: false,
         readonly: false,
@@ -213,6 +217,31 @@ pub async fn create(
                 }
                 continue;
             }
+            "custom_alias" => {
+                if !ARGS.enable_custom_url {
+                    continue;
+                }
+                while let Some(chunk) = field.try_next().await? {
+                    let custom_alias_unchecked =
+                        std::str::from_utf8(&chunk).unwrap().trim().to_string();
+                    // todo check it
+                    if hashid_to_u64(&custom_alias_unchecked).is_ok()
+                        || to_u64(&&custom_alias_unchecked).is_ok()
+                    {
+                        // prevent conflicts with default url.
+                        return Err(ErrorForbidden("Conflicts with default URL format"));
+                    }
+                    if pastas
+                        .iter()
+                        .any(|pasta| pasta.custom_alias.as_ref() == Some(&custom_alias_unchecked))
+                    {
+                        // prevent conflicts with default url.
+                        return Err(ErrorForbidden("Custom url conflicts with existing pasta"));
+                    }
+                    new_pasta.custom_alias = Some(custom_alias_unchecked);
+                }
+                continue;
+            }
             "file" => {
                 if ARGS.no_file_upload {
                     continue;
@@ -310,6 +339,7 @@ pub async fn create(
     }
 
     let encrypt_server = new_pasta.encrypt_server;
+    let alias = new_pasta.custom_alias.clone();
 
     pastas.push(new_pasta);
 
@@ -319,7 +349,9 @@ pub async fn create(
         }
     }
 
-    let slug = if ARGS.hash_ids {
+    let slug = if let Some(alias) = alias {
+        alias
+    } else if ARGS.hash_ids {
         to_hashids(id)
     } else {
         to_animal_names(id)
@@ -336,7 +368,7 @@ pub async fn create(
             .unwrap()
             .as_secs();
         let expiry = timenow + 15; // 15 seconds validity
-        
+
         // Use global HARSH instance
         let encoded_token = crate::util::hashids::HARSH.encode(&[expiry, id]);