-
Notifications
You must be signed in to change notification settings - Fork 1
/
lolisafe.js
272 lines (242 loc) · 8.72 KB
/
lolisafe.js
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
/* eslint-disable no-unused-vars */
/* eslint-disable no-inner-declarations */
/* eslint-disable no-mixed-spaces-and-tabs */
/* eslint-disable no-tabs */
const fs = require('fs');
let config = require('./config.js');
let api = require('./routes/api.js');
let album = require('./routes/album.js');
let rateLimiting = require('./routes/ratelimit.js');
let obfuscation = require('./routes/obfuscate.js');
const s3 = require('./routes/s3.js');
let db = require('knex')(config.database);
require('dotenv').config();
const exphbs = require('express-handlebars');
var cloudflare = require('cloudflare-express');
const express = require('express');
const cors = require('cors');
const https = require('https');
let safeog = express();
const path = require('path');
const MimeLookup = require('mime-lookup');
const mime = new MimeLookup(require('mime-db'));
const helmet = require('helmet');
const bodyParser = require('body-parser');
const requireUncached = require('require-uncached');
const CronJob = require('cron').CronJob;
let encoding;
if (config.allowEncoding) encoding = require('./controllers/encodingController');
let serv;
let servhttps;
const boot = new Date();
fs.existsSync('./pages/custom') || fs.mkdirSync('./pages/custom');
fs.existsSync('./' + config.logsFolder) || fs.mkdirSync('./' + config.logsFolder);
fs.existsSync('./' + config.uploads.folder) || fs.mkdirSync('./' + config.uploads.folder);
fs.existsSync('./' + config.uploads.folder + '/thumbs') || fs.mkdirSync('./' + config.uploads.folder + '/thumbs');
fs.existsSync('./' + config.uploads.folder + '/zips') || fs.mkdirSync('./' + config.uploads.folder + '/zips');
const setupExpress = function (safe, reload = false) {
safe.use(helmet.contentSecurityPolicy({
directives: {
defaultSrc: ['\'unsafe-inline\'', '\'self\'', 'ajax.cloudflare.com', 'cdnjs.cloudflare.com', 'use.fontawesome.com'],
upgradeInsecureRequests: []
}
}));
safe.use(cors());
safe.set('trust proxy', 1);
safe.engine('handlebars', exphbs({ defaultLayout: 'main' }));
safe.set('view engine', 'handlebars');
safe.enable('view cache');
rateLimiting.load(safe, reload); // Initialize ratelimits
safe.use(bodyParser.json({ limit: '50mb' }));
safe.use(bodyParser.urlencoded({ limit: '50mb', extended: true }));
safe.use(cloudflare.restore({update_on_start:true}));
if (config.serveFilesWithNode && !config.useAlternateViewing) safe.use('/', express.static(config.uploads.folder));
if (config.obfuscateClJs) {
safe.get('/js/:id', async (req, res, next) => {
const id = req.params.id;
const _p = path.join(__dirname, 'public') + `/js/${id}`;
if (fs.existsSync(_p)) {
res.setHeader('Content-Type', mime.lookup(req.url));
return res.send(obfuscation.obfuscateFile(_p));
}
res.status(404).sendFile('404.html', { root: './pages/error/' });
});
}
safe.use('/', express.static('./public'));
safe.use('/', album);
safe.use('/api', api.routes);
/*
Load our pages
*/
for (const page of config.pages) {
let root = './pages/';
if (fs.existsSync(`./pages/custom/${page}.html`)) root = './pages/custom/';
function checkHost (req, res, next) {
const host = req.get('host');
if(!host) {
res.redirect('https://google.com');
res.end();
return;
}
//console.log('host = >', host);
const domcheckip = config.domain.split('.').join('');
if(domcheckip.length !== domcheckip.match(/\d+/g).join('').length) {
const checkip = host.split('.').join('');
const numeralcheck = checkip.match(/\d+/g);
if(numeralcheck && numeralcheck.join('').length === checkip.length){
res.redirect('https://google.com');
res.end();
return;
}
}
const dom = config.domain.split('https://').join('').split('http://').join('');
let pagered = '';
if (page !== 'home') pagered = page;
if (host !== dom) return res.redirect(config.domain + '/' + pagered);
res.sendFile(`${page}.html`, { root: root });
}
if (page === 'home') {
safe.get('/', (req, res, next) => checkHost(req, res, next));
} else {
safe.get(`/${page}`, (req, res, next) => checkHost(req, res, next));
}
}
if (config.serveFilesWithNode && config.useAlternateViewing) {
const normalHandles = ['thumbs', 'zips'];
normalHandles.forEach(function (vl) {
safe.get(`*/${vl}/:id`, async (req, res, next) => {
const id = req.params.id;
const _path = `${path.join(__dirname, config.uploads.folder)}/${vl}`;
const file = `${_path}/${id}`;
const ex = fs.existsSync(file);
// Handle S3
let _s3 = false;
if (!ex) {
if (s3.enabledCheck()) {
const _testex = await s3.fileExists(config.s3.bucket, `${vl}/${id}`);
if (_testex) {
_s3 = true;
await s3.getFile(req, res, next, `${vl}/${id}`);
}
}
if (!_s3) return res.status(404).sendFile('404.html', { root: './pages/error/' });
}
if (!_s3) res.sendFile(id, { root: _path });
});
});
safe.get('*/:id', async (req, res, next) => {
let id = req.params.id;
// Check whitelisted files first
for (const key in config.whitelistedQueries) {
const obj = config.whitelistedQueries[key];
if (id === key) return res.sendFile(path.join(__dirname, obj));
}
const _path = path.join(__dirname, config.uploads.folder);
// const host = req.get('host')
let skipEncoding = false;
const fileExtSeperator = '.';
if (id.indexOf(fileExtSeperator) > -1) { // Lets check if the query is for a normally formatted file name
const idcheck = id.split(fileExtSeperator);
if (idcheck.length === 2) {
if (idcheck[0].length > 0 && idcheck[1].length > 0) {
skipEncoding = true;
}
}
}
// Check encoding
if (config.allowEncoding && !skipEncoding) {
/* const encFile = await db.table('files')
.where(function () { this.where('encodeVersion', '>', 0).andWhereNot('encodedString', '').andWhere('encodedString', id) }).first()
if (encFile) id = encFile['name'] */
const _encodetest = await encoding.decode(id, 0, true);
if (typeof (_encodetest) === 'string' && _encodetest.indexOf('.') > 0 && _encodetest.length >= 3) id = _encodetest;
}
// Finally handle the actual ID
const file = `${_path}/${id}`;
const ex = fs.existsSync(file);
// Handle S3
let _s3 = false;
if (!ex) {
if (s3.enabledCheck()) {
const _testex = await s3.fileExists(config.s3.bucket, id);
if (_testex) {
_s3 = true;
await s3.getFile(req, res, next, id);
}
}
if (!_s3) return res.status(404).sendFile('404.html', { root: './pages/error/' });
}
if (!_s3) res.sendFile(id, { root: _path });
});
}
safe.use((req, res, next) => res.status(404).sendFile('404.html', { root: './pages/error/' }));
safe.use((req, res, next) => res.status(500).sendFile('500.html', { root: './pages/error/' }));
};
const reloadModules = function () {
require.cache = [];
config = require('./config.js');
api = require('./routes/api.js');
album = require('./routes/album.js');
rateLimiting = require('./routes/ratelimit.js');
obfuscation = require('./routes/obfuscate.js');
// s3 = requireUncached('./routes/s3.js')
db = requireUncached('knex')(config.database);
api.reloadModules();
init(true);
};
const restart = function () {
console.log('[CORE] AUTO RESTARTING!');
serv.close();
if(servhttps) servhttps.close();
// delete serv;
// delete safeog;
setTimeout(function () {
process.exit(0);
}, 2000);
};
function doCrons () {
if (config.autoRestart !== '') {
try {
CronJob({
cronTime: config.autoRestart,
onTick: restart,
start: true,
runOnInit: false
});
} catch (e) { console.error(e); }
}
}
const init = async function (reload = false) {
const _safenew = express();
if (!reload) {
if (config.autoReload > 0) setInterval(reloadModules, config.autoReload);
doCrons();
}
await require('./database/db.js')(db);
console.log('[CORE] Loaded DB');
const _path = path.join(__dirname, config.uploads.folder);
const fl = await db.table('files').select('name');
await s3.initialize(_path, fl);
console.log('[CORE] Loaded S3');
setupExpress(_safenew, reload);
if (reload && serv) {
serv.close();
if(servhttps) servhttps.close();
}
safeog = _safenew;
const diffboot = ((new Date() - boot) / 1000).toFixed(2);
serv = safeog.listen(config.port, config.listen, () => {
if (!reload) console.log(`[CORE] Started within ${diffboot}s on port ${config.port}`);
if (process.env.GITHUB_TEST) process.exit(0);
});
if(config.ssl && config.ssl.key && config.ssl.key.length > 3 && config.ssl.port && config.ssl.cert) {
const ssl_options = {
key: fs.readFileSync(config.ssl.key),
cert: fs.readFileSync(config.ssl.cert),
};
const secureServer = https.createServer(ssl_options, safeog);
servhttps = secureServer.listen(config.ssl.port);
console.log(`[CORE] Started HTTPS server on port ${config.ssl.port}`);
}
};
init();