mirror of
https://github.com/OpenListTeam/OpenList.git
synced 2025-09-19 20:26:26 +08:00
e4c902dd93
提供一种类似大多数网盘的文件分享操作,这种分享方式可以通过强制 Web 代理隐藏文件源路径,可以设置分享码、最大访问数和过期时间,并且不需要启用 guest 用户。 在全局设置中可以调整: - 是否强制 Web 代理 - 是否允许预览 - 是否允许预览压缩文件 - 分享文件后,点击“复制链接”按钮复制的内容 前端部分:OpenListTeam/OpenList-Frontend#156 文档部分:OpenListTeam/OpenList-Docs#130 Close #183 Close #526 Close #860 Close #892 Close #1079 * feat(share): support more secure file sharing * feat(share): add archive preview * fix(share): fix some bugs * feat(openlist_share): add openlist share driver * fix(share): lack unwrap when get virtual path * fix: use unwrapPath instead of path for virtual file name comparison * fix(share): change request method of /api/share/list from GET to Any * fix(share): path traversal vulnerability in sharing path check * 修复分享alias驱动的文件 没开代理时无法获取URL * fix(sharing): update error message for sharing root link extraction --------- Co-authored-by: Suyunmeng <69945917+Suyunmeng@users.noreply.github.com> Co-authored-by: j2rong4cn <j2rong@qq.com>
72 lines
2.0 KiB
Go
72 lines
2.0 KiB
Go
package data
|
|
|
|
import (
|
|
"fmt"
|
|
"os"
|
|
|
|
"github.com/OpenListTeam/OpenList/v4/cmd/flags"
|
|
"github.com/OpenListTeam/OpenList/v4/internal/db"
|
|
"github.com/OpenListTeam/OpenList/v4/internal/model"
|
|
"github.com/OpenListTeam/OpenList/v4/internal/op"
|
|
"github.com/OpenListTeam/OpenList/v4/pkg/utils"
|
|
"github.com/OpenListTeam/OpenList/v4/pkg/utils/random"
|
|
"github.com/pkg/errors"
|
|
"gorm.io/gorm"
|
|
)
|
|
|
|
func initUser() {
|
|
admin, err := op.GetAdmin()
|
|
adminPassword := random.String(8)
|
|
envpass := os.Getenv("OPENLIST_ADMIN_PASSWORD")
|
|
if flags.Dev {
|
|
adminPassword = "admin"
|
|
} else if len(envpass) > 0 {
|
|
adminPassword = envpass
|
|
}
|
|
if err != nil {
|
|
if errors.Is(err, gorm.ErrRecordNotFound) {
|
|
salt := random.String(16)
|
|
admin = &model.User{
|
|
Username: "admin",
|
|
Salt: salt,
|
|
PwdHash: model.TwoHashPwd(adminPassword, salt),
|
|
Role: model.ADMIN,
|
|
BasePath: "/",
|
|
Authn: "[]",
|
|
// 0(can see hidden) - 8(webdav read) & 12(can read archives) - 14(can share)
|
|
Permission: 0x71FF,
|
|
}
|
|
if err := op.CreateUser(admin); err != nil {
|
|
panic(err)
|
|
} else {
|
|
// DO NOT output the password to log file. Only output to console.
|
|
// utils.Log.Infof("Successfully created the admin user and the initial password is: %s", adminPassword)
|
|
fmt.Printf("Successfully created the admin user and the initial password is: %s\n", adminPassword)
|
|
}
|
|
} else {
|
|
utils.Log.Fatalf("[init user] Failed to get admin user: %v", err)
|
|
}
|
|
}
|
|
_, err = op.GetGuest()
|
|
if err != nil {
|
|
if errors.Is(err, gorm.ErrRecordNotFound) {
|
|
salt := random.String(16)
|
|
guest := &model.User{
|
|
Username: "guest",
|
|
PwdHash: model.TwoHashPwd("guest", salt),
|
|
Salt: salt,
|
|
Role: model.GUEST,
|
|
BasePath: "/",
|
|
Permission: 0,
|
|
Disabled: true,
|
|
Authn: "[]",
|
|
}
|
|
if err := db.CreateUser(guest); err != nil {
|
|
utils.Log.Fatalf("[init user] Failed to create guest user: %v", err)
|
|
}
|
|
} else {
|
|
utils.Log.Fatalf("[init user] Failed to get guest user: %v", err)
|
|
}
|
|
}
|
|
}
|