769281bd40
* wip: refactor offline download (#5331) * base tool * working: aria2 * refactor: change type of percentage to float64 * wip: adapt aria2 * wip: use items in offline_download * wip: use tool manager * wip: adapt qBittorrent * chore: fix typo * Squashed commit of the following: commit 4fc0a77565702f9bf498485d42336502f2ee9776 Author: Andy Hsu <i@nn.ci> Date: Fri Oct 20 21:06:25 2023 +0800 fix(baidu_netdisk): upload file > 4GB (close #5392) commit aaffaee2b54fc067d240ea0c20ea3c2f39615d6e Author: gmugu <94156510@qq.com> Date: Thu Oct 19 19:17:53 2023 +0800 perf(webdav): support request with cookies (#5391) commit 8ef8023c20bfeee97ec82155b52eae0d80b1410e Author: NewbieOrange <NewbieOrange@users.noreply.github.com> Date: Thu Oct 19 19:17:09 2023 +0800 fix(aliyundrive_open): upload progress for normal upload (#5398) commit cdfbe6dcf2b361e4c93c2703c2f8c9bddeac0ee6 Author: foxxorcat <95907542+foxxorcat@users.noreply.github.com> Date: Wed Oct 18 16:27:07 2023 +0800 fix: hash gcid empty file (#5394) commit 94d028743abf8e0d736f80c0ec4fb294a1cc064c Author: Andy Hsu <i@nn.ci> Date: Sat Oct 14 13:17:51 2023 +0800 ci: remove `pr-welcome` label when close issue [skip ci] commit 7f7335435c2f32a3eef76fac4c4f783d9d8624fd Author: itsHenry <2671230065@qq.com> Date: Sat Oct 14 13:12:46 2023 +0800 feat(cloudreve): support thumbnail (#5373 close #5348) * feat(cloudreve): support thumbnail * chore: remove unnecessary code commit b9e192b29cffddf14a0dfb2d3885def57a56ce16 Author: foxxorcat <95907542+foxxorcat@users.noreply.github.com> Date: Thu Oct 12 20:57:12 2023 +0800 fix(115): limit request rate (#5367 close #5275) * fix(115):limit request rate * chore(115): fix unit of `limit_rate` --------- Co-authored-by: Andy Hsu <i@nn.ci> commit 69a98eaef612b58596e5c26c341b6d7cedecdf19 Author: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Date: Wed Oct 11 22:01:55 2023 +0800 fix(deps): update module github.com/aliyun/aliyun-oss-go-sdk to v2.2.9+incompatible (#5141) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> commit 1ebc96a4e5220c979fd581bb3b5640e9436f6665 Author: Andy Hsu <i@nn.ci> Date: Tue Oct 10 18:32:00 2023 +0800 fix(wopan): fatal error concurrent map writes (close #5352) commit 66e2324cac75cb3ef05af45dbdd10b124d534aff Author: Andy Hsu <i@nn.ci> Date: Tue Oct 10 18:23:11 2023 +0800 chore(deps): upgrade dependencies commit 7600dc28df137c439e538b4257731c33a63db9b5 Author: Andy Hsu <i@nn.ci> Date: Tue Oct 10 18:13:58 2023 +0800 fix(aliyundrive_open): change default api to raw server (close #5358) commit 8ef89ad0a496d5acc398794c0afa4f77c67ad371 Author: foxxorcat <95907542+foxxorcat@users.noreply.github.com> Date: Tue Oct 10 18:08:27 2023 +0800 fix(baidu_netdisk): hash and `error 2` (#5356) * fix(baidu):hash and error:2 * fix:invalid memory address commit 35d672217dde69e65b41b1fcd9786c1cfebcdc45 Author: jeffmingup <1960588251@qq.com> Date: Sun Oct 8 19:29:45 2023 +0800 fix(onedrive_app): incorrect api on `_accessToken` (#5346) commit 1a283bb2720eff6d1b0c1dd6f1667a6449905a9b Author: foxxorcat <95907542+foxxorcat@users.noreply.github.com> Date: Fri Oct 6 16:04:39 2023 +0800 feat(google_drive): add `hash_info`, `ctime`, `thumbnail` (#5334) commit a008f54f4d5eda5738abfd54bf1abf1e18c08430 Author: nkh0472 <67589323+nkh0472@users.noreply.github.com> Date: Thu Oct 5 13:10:51 2023 +0800 docs: minor language improvements (#5329) [skip ci] * fix: adapt update progress type * Squashed commit of the following: commit 65c5ec0c34d5f027a65933fe89af53791747bdd4 Author: itsHenry <2671230065@qq.com> Date: Sat Nov 4 13:35:09 2023 +0800 feat(cloudreve): folder size count and switch (#5457 close #5395) commit a6325967d0de18e6b6c744f06cb1ebaa08ec687e Author: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Date: Mon Oct 30 15:11:20 2023 +0800 fix(deps): update module github.com/charmbracelet/lipgloss to v0.9.1 (#5234) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> commit 4dff49470adce36416d8c56594e84868c04d023b Author: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Date: Mon Oct 30 15:10:36 2023 +0800 fix(deps): update golang.org/x/exp digest to 7918f67 (#5366) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> commit cc86d6f3d1ff2120669c9dda719b7faabb922f52 Author: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> Date: Sun Oct 29 14:45:55 2023 +0800 fix(deps): update module golang.org/x/net to v0.17.0 [security] (#5370) Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com> commit c0f9c8ebafdf8dd2afe5c0b9fba24456819c3155 Author: Andy Hsu <i@nn.ci> Date: Thu Oct 26 19:21:09 2023 +0800 feat: add ignore direct link params (close #5434)
159 lines
3.9 KiB
Go
159 lines
3.9 KiB
Go
package model
|
|
|
|
import (
|
|
"encoding/binary"
|
|
"encoding/json"
|
|
"fmt"
|
|
|
|
"github.com/alist-org/alist/v3/internal/errs"
|
|
"github.com/alist-org/alist/v3/pkg/utils"
|
|
"github.com/alist-org/alist/v3/pkg/utils/random"
|
|
"github.com/go-webauthn/webauthn/webauthn"
|
|
"github.com/pkg/errors"
|
|
)
|
|
|
|
const (
|
|
GENERAL = iota
|
|
GUEST // only one exists
|
|
ADMIN
|
|
)
|
|
|
|
const StaticHashSalt = "https://github.com/alist-org/alist"
|
|
|
|
type User struct {
|
|
ID uint `json:"id" gorm:"primaryKey"` // unique key
|
|
Username string `json:"username" gorm:"unique" binding:"required"` // username
|
|
PwdHash string `json:"-"` // password hash
|
|
Salt string `json:"-"` // unique salt
|
|
Password string `json:"password"` // password
|
|
BasePath string `json:"base_path"` // base path
|
|
Role int `json:"role"` // user's role
|
|
Disabled bool `json:"disabled"`
|
|
// Determine permissions by bit
|
|
// 0: can see hidden files
|
|
// 1: can access without password
|
|
// 2: can add offline download tasks
|
|
// 3: can mkdir and upload
|
|
// 4: can rename
|
|
// 5: can move
|
|
// 6: can copy
|
|
// 7: can remove
|
|
// 8: webdav read
|
|
// 9: webdav write
|
|
Permission int32 `json:"permission"`
|
|
OtpSecret string `json:"-"`
|
|
SsoID string `json:"sso_id"` // unique by sso platform
|
|
Authn string `gorm:"type:text" json:"-"`
|
|
}
|
|
|
|
func (u *User) IsGuest() bool {
|
|
return u.Role == GUEST
|
|
}
|
|
|
|
func (u *User) IsAdmin() bool {
|
|
return u.Role == ADMIN
|
|
}
|
|
|
|
func (u *User) ValidateRawPassword(password string) error {
|
|
return u.ValidatePwdStaticHash(StaticHash(password))
|
|
}
|
|
|
|
func (u *User) ValidatePwdStaticHash(pwdStaticHash string) error {
|
|
if pwdStaticHash == "" {
|
|
return errors.WithStack(errs.EmptyPassword)
|
|
}
|
|
if u.PwdHash != HashPwd(pwdStaticHash, u.Salt) {
|
|
return errors.WithStack(errs.WrongPassword)
|
|
}
|
|
return nil
|
|
}
|
|
|
|
func (u *User) SetPassword(pwd string) *User {
|
|
u.Salt = random.String(16)
|
|
u.PwdHash = TwoHashPwd(pwd, u.Salt)
|
|
return u
|
|
}
|
|
|
|
func (u *User) CanSeeHides() bool {
|
|
return u.IsAdmin() || u.Permission&1 == 1
|
|
}
|
|
|
|
func (u *User) CanAccessWithoutPassword() bool {
|
|
return u.IsAdmin() || (u.Permission>>1)&1 == 1
|
|
}
|
|
|
|
func (u *User) CanAddOfflineDownloadTasks() bool {
|
|
return u.IsAdmin() || (u.Permission>>2)&1 == 1
|
|
}
|
|
|
|
func (u *User) CanWrite() bool {
|
|
return u.IsAdmin() || (u.Permission>>3)&1 == 1
|
|
}
|
|
|
|
func (u *User) CanRename() bool {
|
|
return u.IsAdmin() || (u.Permission>>4)&1 == 1
|
|
}
|
|
|
|
func (u *User) CanMove() bool {
|
|
return u.IsAdmin() || (u.Permission>>5)&1 == 1
|
|
}
|
|
|
|
func (u *User) CanCopy() bool {
|
|
return u.IsAdmin() || (u.Permission>>6)&1 == 1
|
|
}
|
|
|
|
func (u *User) CanRemove() bool {
|
|
return u.IsAdmin() || (u.Permission>>7)&1 == 1
|
|
}
|
|
|
|
func (u *User) CanWebdavRead() bool {
|
|
return u.IsAdmin() || (u.Permission>>8)&1 == 1
|
|
}
|
|
|
|
func (u *User) CanWebdavManage() bool {
|
|
return u.IsAdmin() || (u.Permission>>9)&1 == 1
|
|
}
|
|
|
|
func (u *User) JoinPath(reqPath string) (string, error) {
|
|
return utils.JoinBasePath(u.BasePath, reqPath)
|
|
}
|
|
|
|
func StaticHash(password string) string {
|
|
return utils.HashData(utils.SHA256, []byte(fmt.Sprintf("%s-%s", password, StaticHashSalt)))
|
|
}
|
|
|
|
func HashPwd(static string, salt string) string {
|
|
return utils.HashData(utils.SHA256, []byte(fmt.Sprintf("%s-%s", static, salt)))
|
|
}
|
|
|
|
func TwoHashPwd(password string, salt string) string {
|
|
return HashPwd(StaticHash(password), salt)
|
|
}
|
|
|
|
func (u *User) WebAuthnID() []byte {
|
|
bs := make([]byte, 8)
|
|
binary.LittleEndian.PutUint64(bs, uint64(u.ID))
|
|
return bs
|
|
}
|
|
|
|
func (u *User) WebAuthnName() string {
|
|
return u.Username
|
|
}
|
|
|
|
func (u *User) WebAuthnDisplayName() string {
|
|
return u.Username
|
|
}
|
|
|
|
func (u *User) WebAuthnCredentials() []webauthn.Credential {
|
|
var res []webauthn.Credential
|
|
err := json.Unmarshal([]byte(u.Authn), &res)
|
|
if err != nil {
|
|
fmt.Println(err)
|
|
}
|
|
return res
|
|
}
|
|
|
|
func (u *User) WebAuthnIcon() string {
|
|
return "https://alist.nn.ci/logo.svg"
|
|
}
|