| 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279 |
- package main
- import (
- "context"
- "fmt"
- "log"
- "net"
- "net/http"
- "os"
- "os/exec"
- "runtime"
- "strconv"
- "strings"
- "syscall"
- "time"
- config "codeberg.org/vnpower/pixivfe/v2/core/config"
- "codeberg.org/vnpower/pixivfe/v2/pages"
- "codeberg.org/vnpower/pixivfe/v2/serve"
- "github.com/goccy/go-json"
- "github.com/gofiber/fiber/v2"
- "github.com/gofiber/fiber/v2/middleware/cache"
- "github.com/gofiber/fiber/v2/middleware/compress"
- "github.com/gofiber/fiber/v2/middleware/limiter"
- "github.com/gofiber/fiber/v2/middleware/logger"
- "github.com/gofiber/fiber/v2/middleware/recover"
- "github.com/gofiber/fiber/v2/utils"
- "github.com/gofiber/template/jet/v2"
- "codeberg.org/vnpower/pixivfe/v2/core/kmutex"
- )
- func CanRequestSkipLimiter(c *fiber.Ctx) bool {
- path := c.Path()
- return strings.HasPrefix(path, "/assets/") ||
- strings.HasPrefix(path, "/css/") ||
- strings.HasPrefix(path, "/js/") ||
- strings.HasPrefix(path, "/proxy/s.pximg.net/")
- }
- func CanRequestSkipLogger(c *fiber.Ctx) bool {
- path := c.Path()
- return CanRequestSkipLimiter(c) ||
- strings.HasPrefix(path, "/proxy/i.pximg.net/")
- }
- func main() {
- config.SetupStorage()
- config.GlobalServerConfig.InitializeConfig()
- engine := jet.New("./views", ".jet.html")
- engine.AddFuncMap(serve.GetTemplateFunctions())
- if config.GlobalServerConfig.InDevelopment {
- engine.Reload(true)
- }
- // gofiber bug: no error even if the templates are invalid???
- err := engine.Load()
- if err != nil {
- panic(err)
- }
- server := fiber.New(fiber.Config{
- AppName: "PixivFE",
- DisableStartupMessage: true,
- Views: engine,
- Prefork: false,
- JSONEncoder: json.Marshal,
- JSONDecoder: json.Unmarshal,
- ViewsLayout: "layout",
- EnableTrustedProxyCheck: true,
- TrustedProxies: []string{"0.0.0.0/0"},
- ProxyHeader: fiber.HeaderXForwardedFor,
- ErrorHandler: func(c *fiber.Ctx, err error) error {
- log.Println(err)
- // Status code defaults to 500
- code := fiber.StatusInternalServerError
- // // Retrieve the custom status code if it's a *fiber.Error
- // var e *fiber.Error
- // if errors.As(err, &e) {
- // code = e.Code
- // }
- // Send custom error page
- err = c.Status(code).Render("pages/error", fiber.Map{"Title": "Error", "Error": err})
- if err != nil {
- return c.Status(fiber.StatusInternalServerError).SendString(fmt.Sprintf("Internal Server Error: %s", err))
- }
- return nil
- },
- })
- keyedSleepingSpot := kmutex.New()
- server.Use(limiter.New(limiter.Config{
- Next: CanRequestSkipLimiter,
- Expiration: 30 * time.Second,
- Max: config.GlobalServerConfig.RequestLimit,
- LimiterMiddleware: limiter.SlidingWindow{},
- LimitReached: func(c *fiber.Ctx) error {
- // limit response throughput by pacing, since not every bot reads X-RateLimit-*
- // on limit reached, they just have to wait
- // the design of this means that if they send multiple requests when reaching rate limit, they will wait even longer (since `retryAfter` is calculated before anything has slept)
- retryAfter_s := c.GetRespHeader(fiber.HeaderRetryAfter)
- retryAfter, err := strconv.ParseUint(retryAfter_s, 10, 64)
- if err != nil {
- log.Panicf("response header 'RetryAfter' should be a number: %v", err)
- }
- requestIP := c.IP()
- refcount := keyedSleepingSpot.Lock(requestIP)
- defer keyedSleepingSpot.Unlock(requestIP)
- if refcount >= 4 { // on too much concurrent requests
- // todo: maybe blackhole `requestIP` here
- log.Println("Limit Reached!")
- return fmt.Errorf("Woah! You are going too fast! I'll have to keep an eye on you.")
- }
- ctx, cancel := context.WithTimeout(c.Context(), time.Duration(retryAfter)*time.Second)
- defer cancel()
- <-ctx.Done()
- return c.Next()
- },
- }))
- server.Use(logger.New(
- logger.Config{
- Format: "${time} ~${latencySI} ${ip} ${method} ${path} ${status} ${error} \n",
- Next: CanRequestSkipLogger,
- EnableLatency: true,
- CustomTags: map[string]logger.LogFunc{
- "latencySI": func(output logger.Buffer, c *fiber.Ctx, data *logger.Data, extraParam string) (int, error) {
- latency := data.Stop.Sub(data.Start).Seconds()
- return output.WriteString(fmt.Sprintf("%.13f", latency))
- },
- },
- },
- ))
- server.Use(compress.New(compress.Config{
- Level: compress.LevelBestSpeed, // 1
- }))
- if !config.GlobalServerConfig.InDevelopment {
- server.Use(cache.New(
- cache.Config{
- Next: func(c *fiber.Ctx) bool {
- resp_code := c.Response().StatusCode()
- if resp_code < 200 || resp_code >= 300 {
- return true
- }
- // Disable cache for settings page
- return strings.Contains(c.Path(), "/settings") || c.Path() == "/"
- },
- Expiration: 5 * time.Minute,
- CacheControl: true,
- KeyGenerator: func(c *fiber.Ctx) string {
- return utils.CopyString(c.OriginalURL())
- },
- },
- ))
- }
- // Global HTTP headers
- server.Use(func(c *fiber.Ctx) error {
- c.Set("X-Frame-Options", "DENY")
- // use this if need iframe: `X-Frame-Options: SAMEORIGIN`
- c.Set("X-Content-Type-Options", "nosniff")
- c.Set("Referrer-Policy", "no-referrer")
- c.Set("Strict-Transport-Security", "max-age=31536000; includeSubDomains; preload")
- c.Set("Content-Security-Policy", fmt.Sprintf("base-uri 'self'; default-src 'none'; script-src 'self'; style-src 'self'; img-src 'self' %s; connect-src 'self'; form-action 'self'; frame-ancestors 'none'; ", config.GetImageProxyOrigin(c)))
- // use this if need iframe: `frame-ancestors 'self'`
- return c.Next()
- })
- server.Use(func(c *fiber.Ctx) error {
- baseURL := c.BaseURL() + c.OriginalURL()
- c.Bind(fiber.Map{"BaseURL": baseURL})
- return c.Next()
- })
- server.Static("/favicon.ico", "./views/assets/favicon.ico")
- server.Static("/robots.txt", "./views/assets/robots.txt")
- server.Static("/assets/", "./views/assets")
- server.Static("/css/", "./views/css")
- server.Static("/js/", "./views/js")
- server.Use(recover.New(recover.Config{EnableStackTrace: config.GlobalServerConfig.InDevelopment}))
- // Routes
- server.Get("/", pages.IndexPage)
- server.Get("/about", pages.AboutPage)
- server.Get("/newest", pages.NewestPage)
- server.Get("/discovery", pages.DiscoveryPage)
- server.Get("/discovery/novel", pages.NovelDiscoveryPage)
- server.Get("/ranking", pages.RankingPage)
- server.Get("/rankingCalendar", pages.RankingCalendarPage)
- server.Post("/rankingCalendar", pages.RankingCalendarPicker)
- server.Get("/users/:id/:category?", pages.UserPage)
- server.Get("/artworks/:id/", pages.ArtworkPage).Name("artworks")
- server.Get("/artworks/:id/embed", pages.ArtworkEmbedPage)
- server.Get("/artworks-multi/:ids/", pages.ArtworkMultiPage)
- server.Get("/novel/:id/", pages.NovelPage)
- // Settings group
- settings := server.Group("/settings")
- settings.Get("/", pages.SettingsPage)
- settings.Post("/:type", pages.SettingsPost)
- // Personal group
- self := server.Group("/self")
- self.Get("/", pages.LoginUserPage)
- self.Get("/followingWorks", pages.FollowingWorksPage)
- self.Get("/bookmarks", pages.LoginBookmarkPage)
- self.Post("/addBookmark/:id", pages.AddBookmarkRoute)
- self.Post("/deleteBookmark/:id", pages.DeleteBookmarkRoute)
- self.Post("/like/:id", pages.LikeRoute)
- server.Get("/tags/:name", pages.TagPage)
- server.Post("/tags/:name", pages.TagPage)
- server.Post("/tags",
- func(c *fiber.Ctx) error {
- name := c.FormValue("name")
- return c.Redirect("/tags/"+name, http.StatusFound)
- })
- // Legacy illust URL
- server.Get("/member_illust.php", func(c *fiber.Ctx) error {
- return c.Redirect("/artworks/" + c.Query("illust_id"))
- })
- // Proxy routes
- proxy := server.Group("/proxy")
- proxy.Get("/i.pximg.net/*", pages.IPximgProxy)
- proxy.Get("/s.pximg.net/*", pages.SPximgProxy)
- proxy.Get("/ugoira.com/*", pages.UgoiraProxy)
- // run sass when in development mode
- if config.GlobalServerConfig.InDevelopment {
- go func() {
- cmd := exec.Command("sass", "--watch", "views/css")
- cmd.Stdout = os.Stderr // Sass quirk
- cmd.Stderr = os.Stderr
- cmd.SysProcAttr = &syscall.SysProcAttr{Setpgid: true, Pdeathsig: syscall.SIGHUP}
- runtime.LockOSThread() // Go quirk https://github.com/golang/go/issues/27505
- err := cmd.Run()
- if err != nil {
- log.Println(fmt.Errorf("when running sass: %w", err))
- }
- }()
- }
- // Listen
- if config.GlobalServerConfig.UnixSocket != "" {
- ln, err := net.Listen("unix", config.GlobalServerConfig.UnixSocket)
- if err != nil {
- panic(err)
- }
- log.Printf("PixivFE is running on %v\n", config.GlobalServerConfig.UnixSocket)
- err = server.Listener(ln)
- if err != nil {
- panic(err)
- }
- } else {
- addr := config.GlobalServerConfig.Host + ":" + config.GlobalServerConfig.Port
- log.Printf("PixivFE is running on http://%v/\n", addr)
- // note: string concatenation is very flaky
- err := server.Listen(addr)
- if err != nil {
- panic(err)
- }
- }
- }
|
