mirror of
https://github.com/navidrome/navidrome.git
synced 2025-04-03 20:47:35 +03:00
Add public endpoint to expose images
This commit is contained in:
Deluan
Deluan Quintão
parent
7fbcb2904a
commit
387acc5f63
9 changed files with 177 additions and 36 deletions
|
|
@ -107,8 +107,6 @@ func getCredentialsFromBody(r *http.Request) (username string, password string,
|
|||
}
|
||||
|
||||
func createAdmin(ds model.DataStore) func(w http.ResponseWriter, r *http.Request) {
|
||||
auth.Init(ds)
|
||||
|
||||
return func(w http.ResponseWriter, r *http.Request) {
|
||||
username, password, err := getCredentialsFromBody(r)
|
||||
if err != nil {
|
||||
|
|
|
|||
|
|
@ -5,9 +5,11 @@ import (
|
|||
"fmt"
|
||||
"io/fs"
|
||||
"net/http"
|
||||
"net/url"
|
||||
"strings"
|
||||
"time"
|
||||
|
||||
"github.com/go-chi/chi/v5"
|
||||
"github.com/go-chi/cors"
|
||||
|
||||
"github.com/go-chi/chi/v5/middleware"
|
||||
|
|
@ -199,3 +201,26 @@ func firstOr(or string, strings ...string) string {
|
|||
}
|
||||
return or
|
||||
}
|
||||
|
||||
// URLParamsMiddleware convert Chi URL params (from Context) to query params, as expected by our REST package
|
||||
func URLParamsMiddleware(next http.Handler) http.Handler {
|
||||
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
||||
ctx := chi.RouteContext(r.Context())
|
||||
parts := make([]string, 0)
|
||||
for i, key := range ctx.URLParams.Keys {
|
||||
value := ctx.URLParams.Values[i]
|
||||
if key == "*" {
|
||||
continue
|
||||
}
|
||||
parts = append(parts, url.QueryEscape(":"+key)+"="+url.QueryEscape(value))
|
||||
}
|
||||
q := strings.Join(parts, "&")
|
||||
if r.URL.RawQuery == "" {
|
||||
r.URL.RawQuery = q
|
||||
} else {
|
||||
r.URL.RawQuery += "&" + q
|
||||
}
|
||||
|
||||
next.ServeHTTP(w, r)
|
||||
})
|
||||
}
|
||||
|
|
|
|||
|
|
@ -3,8 +3,6 @@ package nativeapi
|
|||
import (
|
||||
"context"
|
||||
"net/http"
|
||||
"net/url"
|
||||
"strings"
|
||||
|
||||
"github.com/deluan/rest"
|
||||
"github.com/go-chi/chi/v5"
|
||||
|
|
@ -77,7 +75,7 @@ func (n *Router) RX(r chi.Router, pathPrefix string, constructor rest.Repository
|
|||
r.Post("/", rest.Post(constructor))
|
||||
}
|
||||
r.Route("/{id}", func(r chi.Router) {
|
||||
r.Use(urlParams)
|
||||
r.Use(server.URLParamsMiddleware)
|
||||
r.Get("/", rest.Get(constructor))
|
||||
if persistable {
|
||||
r.Put("/", rest.Put(constructor))
|
||||
|
|
@ -92,7 +90,7 @@ func (n *Router) addPlaylistTrackRoute(r chi.Router) {
|
|||
r.Get("/", func(w http.ResponseWriter, r *http.Request) {
|
||||
getPlaylist(n.ds)(w, r)
|
||||
})
|
||||
r.With(urlParams).Route("/", func(r chi.Router) {
|
||||
r.With(server.URLParamsMiddleware).Route("/", func(r chi.Router) {
|
||||
r.Delete("/", func(w http.ResponseWriter, r *http.Request) {
|
||||
deleteFromPlaylist(n.ds)(w, r)
|
||||
})
|
||||
|
|
@ -101,7 +99,7 @@ func (n *Router) addPlaylistTrackRoute(r chi.Router) {
|
|||
})
|
||||
})
|
||||
r.Route("/{id}", func(r chi.Router) {
|
||||
r.Use(urlParams)
|
||||
r.Use(server.URLParamsMiddleware)
|
||||
r.Put("/", func(w http.ResponseWriter, r *http.Request) {
|
||||
reorderItem(n.ds)(w, r)
|
||||
})
|
||||
|
|
@ -111,26 +109,3 @@ func (n *Router) addPlaylistTrackRoute(r chi.Router) {
|
|||
})
|
||||
})
|
||||
}
|
||||
|
||||
// Middleware to convert Chi URL params (from Context) to query params, as expected by our REST package
|
||||
func urlParams(next http.Handler) http.Handler {
|
||||
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
||||
ctx := chi.RouteContext(r.Context())
|
||||
parts := make([]string, 0)
|
||||
for i, key := range ctx.URLParams.Keys {
|
||||
value := ctx.URLParams.Values[i]
|
||||
if key == "*" {
|
||||
continue
|
||||
}
|
||||
parts = append(parts, url.QueryEscape(":"+key)+"="+url.QueryEscape(value))
|
||||
}
|
||||
q := strings.Join(parts, "&")
|
||||
if r.URL.RawQuery == "" {
|
||||
r.URL.RawQuery = q
|
||||
} else {
|
||||
r.URL.RawQuery += "&" + q
|
||||
}
|
||||
|
||||
next.ServeHTTP(w, r)
|
||||
})
|
||||
}
|
||||
|
|
|
|||
109
server/public/public_endpoints.go
Normal file
109
server/public/public_endpoints.go
Normal file
|
|
@ -0,0 +1,109 @@
|
|||
package public
|
||||
|
||||
import (
|
||||
"context"
|
||||
"errors"
|
||||
"fmt"
|
||||
"io"
|
||||
"net/http"
|
||||
"time"
|
||||
|
||||
"github.com/go-chi/chi/v5"
|
||||
"github.com/go-chi/jwtauth/v5"
|
||||
"github.com/lestrrat-go/jwx/v2/jwt"
|
||||
"github.com/navidrome/navidrome/core/artwork"
|
||||
"github.com/navidrome/navidrome/core/auth"
|
||||
"github.com/navidrome/navidrome/log"
|
||||
"github.com/navidrome/navidrome/model"
|
||||
"github.com/navidrome/navidrome/server"
|
||||
)
|
||||
|
||||
type Router struct {
|
||||
http.Handler
|
||||
artwork artwork.Artwork
|
||||
}
|
||||
|
||||
func New(artwork artwork.Artwork) *Router {
|
||||
p := &Router{artwork: artwork}
|
||||
p.Handler = p.routes()
|
||||
|
||||
t, err := auth.CreatePublicToken(map[string]any{
|
||||
"id": "al-ee07551e7371500da55e23ae8520f1d8",
|
||||
"size": 300,
|
||||
})
|
||||
if err != nil {
|
||||
panic(err)
|
||||
}
|
||||
fmt.Println("!!!!!!!!!!!!!!!!!", t, "!!!!!!!!!!!!!!!!")
|
||||
|
||||
return p
|
||||
}
|
||||
|
||||
func (p *Router) routes() http.Handler {
|
||||
r := chi.NewRouter()
|
||||
|
||||
r.Group(func(r chi.Router) {
|
||||
r.Use(server.URLParamsMiddleware)
|
||||
r.Use(jwtVerifier)
|
||||
r.Use(validator)
|
||||
r.Get("/img/{jwt}", p.handleImages)
|
||||
})
|
||||
return r
|
||||
}
|
||||
|
||||
func (p *Router) handleImages(w http.ResponseWriter, r *http.Request) {
|
||||
_, claims, _ := jwtauth.FromContext(r.Context())
|
||||
id, ok := claims["id"].(string)
|
||||
if !ok {
|
||||
http.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest)
|
||||
return
|
||||
}
|
||||
size, ok := claims["size"].(float64)
|
||||
if !ok {
|
||||
http.Error(w, http.StatusText(http.StatusBadRequest), http.StatusBadRequest)
|
||||
return
|
||||
}
|
||||
imgReader, lastUpdate, err := p.artwork.Get(r.Context(), id, int(size))
|
||||
w.Header().Set("cache-control", "public, max-age=315360000")
|
||||
w.Header().Set("last-modified", lastUpdate.Format(time.RFC1123))
|
||||
|
||||
switch {
|
||||
case errors.Is(err, context.Canceled):
|
||||
return
|
||||
case errors.Is(err, model.ErrNotFound):
|
||||
log.Error(r, "Couldn't find coverArt", "id", id, err)
|
||||
http.Error(w, "Artwork not found", http.StatusNotFound)
|
||||
return
|
||||
case err != nil:
|
||||
log.Error(r, "Error retrieving coverArt", "id", id, err)
|
||||
http.Error(w, "Error retrieving coverArt", http.StatusInternalServerError)
|
||||
return
|
||||
}
|
||||
|
||||
defer imgReader.Close()
|
||||
_, err = io.Copy(w, imgReader)
|
||||
}
|
||||
|
||||
func jwtVerifier(next http.Handler) http.Handler {
|
||||
return jwtauth.Verify(auth.TokenAuth, func(r *http.Request) string {
|
||||
return r.URL.Query().Get(":jwt")
|
||||
})(next)
|
||||
}
|
||||
|
||||
func validator(next http.Handler) http.Handler {
|
||||
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
||||
token, _, err := jwtauth.FromContext(r.Context())
|
||||
|
||||
validErr := jwt.Validate(token,
|
||||
jwt.WithRequiredClaim("id"),
|
||||
jwt.WithRequiredClaim("size"),
|
||||
)
|
||||
if err != nil || token == nil || validErr != nil {
|
||||
http.Error(w, http.StatusText(http.StatusNotFound), http.StatusNotFound)
|
||||
return
|
||||
}
|
||||
|
||||
// Token is authenticated, pass it through
|
||||
next.ServeHTTP(w, r)
|
||||
})
|
||||
}
|
||||
|
|
@ -28,6 +28,7 @@ type Server struct {
|
|||
|
||||
func New(ds model.DataStore) *Server {
|
||||
s := &Server{ds: ds}
|
||||
auth.Init(s.ds)
|
||||
initialSetup(ds)
|
||||
s.initRoutes()
|
||||
checkFfmpegInstallation()
|
||||
|
|
@ -80,8 +81,6 @@ func (s *Server) Run(ctx context.Context, addr string) error {
|
|||
}
|
||||
|
||||
func (s *Server) initRoutes() {
|
||||
auth.Init(s.ds)
|
||||
|
||||
s.appRoot = path.Join(conf.Server.BaseURL, consts.URLPathUI)
|
||||
|
||||
r := chi.NewRouter()
|
||||
|
|
|
|||
Loading…
Add table
Add a link
Reference in a new issue