mirror of
				https://github.com/usememos/memos.git
				synced 2025-10-25 22:07:19 +08:00 
			
		
		
		
	- always store resources with a relative path with forward slashes, which will be transformed as needed when the file is accessed - fix an issue with thumbnail generation on Windows - add several validations for local storage setting - improve front-end error feedback when changing local storage - add migrations to make existing resource paths relative (not needed, but improves database consistency)
		
			
				
	
	
		
			168 lines
		
	
	
	
		
			5.5 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
			
		
		
	
	
			168 lines
		
	
	
	
		
			5.5 KiB
		
	
	
	
		
			Go
		
	
	
	
	
	
| package resource
 | |
| 
 | |
| import (
 | |
| 	"bytes"
 | |
| 	"fmt"
 | |
| 	"io"
 | |
| 	"net/http"
 | |
| 	"os"
 | |
| 	"path/filepath"
 | |
| 	"strings"
 | |
| 	"sync/atomic"
 | |
| 	"time"
 | |
| 
 | |
| 	"github.com/disintegration/imaging"
 | |
| 	"github.com/labstack/echo/v4"
 | |
| 	"github.com/pkg/errors"
 | |
| 	"go.uber.org/zap"
 | |
| 
 | |
| 	"github.com/usememos/memos/internal/log"
 | |
| 	"github.com/usememos/memos/internal/util"
 | |
| 	"github.com/usememos/memos/server/profile"
 | |
| 	"github.com/usememos/memos/store"
 | |
| )
 | |
| 
 | |
| const (
 | |
| 	// The key name used to store user id in the context
 | |
| 	// user id is extracted from the jwt token subject field.
 | |
| 	userIDContextKey = "user-id"
 | |
| 	// thumbnailImagePath is the directory to store image thumbnails.
 | |
| 	thumbnailImagePath = ".thumbnail_cache"
 | |
| )
 | |
| 
 | |
| type Service struct {
 | |
| 	Profile *profile.Profile
 | |
| 	Store   *store.Store
 | |
| }
 | |
| 
 | |
| func NewService(profile *profile.Profile, store *store.Store) *Service {
 | |
| 	return &Service{
 | |
| 		Profile: profile,
 | |
| 		Store:   store,
 | |
| 	}
 | |
| }
 | |
| 
 | |
| func (s *Service) RegisterResourcePublicRoutes(g *echo.Group) {
 | |
| 	g.GET("/r/:resourceId", s.streamResource)
 | |
| 	g.GET("/r/:resourceId/*", s.streamResource)
 | |
| }
 | |
| 
 | |
| func (s *Service) streamResource(c echo.Context) error {
 | |
| 	ctx := c.Request().Context()
 | |
| 	resourceID, err := util.ConvertStringToInt32(c.Param("resourceId"))
 | |
| 	if err != nil {
 | |
| 		return echo.NewHTTPError(http.StatusBadRequest, fmt.Sprintf("ID is not a number: %s", c.Param("resourceId"))).SetInternal(err)
 | |
| 	}
 | |
| 
 | |
| 	resource, err := s.Store.GetResource(ctx, &store.FindResource{
 | |
| 		ID:      &resourceID,
 | |
| 		GetBlob: true,
 | |
| 	})
 | |
| 	if err != nil {
 | |
| 		return echo.NewHTTPError(http.StatusInternalServerError, fmt.Sprintf("Failed to find resource by ID: %v", resourceID)).SetInternal(err)
 | |
| 	}
 | |
| 	if resource == nil {
 | |
| 		return echo.NewHTTPError(http.StatusNotFound, fmt.Sprintf("Resource not found: %d", resourceID))
 | |
| 	}
 | |
| 	// Check the related memo visibility.
 | |
| 	if resource.MemoID != nil {
 | |
| 		memo, err := s.Store.GetMemo(ctx, &store.FindMemo{
 | |
| 			ID: resource.MemoID,
 | |
| 		})
 | |
| 		if err != nil {
 | |
| 			return echo.NewHTTPError(http.StatusInternalServerError, fmt.Sprintf("Failed to find memo by ID: %v", resource.MemoID)).SetInternal(err)
 | |
| 		}
 | |
| 		if memo != nil && memo.Visibility != store.Public {
 | |
| 			userID, ok := c.Get(userIDContextKey).(int32)
 | |
| 			if !ok || (memo.Visibility == store.Private && userID != resource.CreatorID) {
 | |
| 				return echo.NewHTTPError(http.StatusUnauthorized, "Resource visibility not match")
 | |
| 			}
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	blob := resource.Blob
 | |
| 	if resource.InternalPath != "" {
 | |
| 		resourcePath := filepath.FromSlash(resource.InternalPath)
 | |
| 		if !filepath.IsAbs(resourcePath) {
 | |
| 			resourcePath = filepath.Join(s.Profile.Data, resourcePath)
 | |
| 		}
 | |
| 
 | |
| 		src, err := os.Open(resourcePath)
 | |
| 		if err != nil {
 | |
| 			return echo.NewHTTPError(http.StatusInternalServerError, fmt.Sprintf("Failed to open the local resource: %s", resourcePath)).SetInternal(err)
 | |
| 		}
 | |
| 		defer src.Close()
 | |
| 		blob, err = io.ReadAll(src)
 | |
| 		if err != nil {
 | |
| 			return echo.NewHTTPError(http.StatusInternalServerError, fmt.Sprintf("Failed to read the local resource: %s", resourcePath)).SetInternal(err)
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	if c.QueryParam("thumbnail") == "1" && util.HasPrefixes(resource.Type, "image/png", "image/jpeg") {
 | |
| 		ext := filepath.Ext(resource.Filename)
 | |
| 		thumbnailPath := filepath.Join(s.Profile.Data, thumbnailImagePath, fmt.Sprintf("%d%s", resource.ID, ext))
 | |
| 		thumbnailBlob, err := getOrGenerateThumbnailImage(blob, thumbnailPath)
 | |
| 		if err != nil {
 | |
| 			log.Warn(fmt.Sprintf("failed to get or generate local thumbnail with path %s", thumbnailPath), zap.Error(err))
 | |
| 		} else {
 | |
| 			blob = thumbnailBlob
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	c.Response().Writer.Header().Set(echo.HeaderCacheControl, "max-age=3600")
 | |
| 	c.Response().Writer.Header().Set(echo.HeaderContentSecurityPolicy, "default-src 'none'; script-src 'none'; img-src 'self'; media-src 'self'; sandbox;")
 | |
| 	c.Response().Writer.Header().Set("Content-Disposition", fmt.Sprintf(`filename="%s"`, resource.Filename))
 | |
| 	resourceType := strings.ToLower(resource.Type)
 | |
| 	if strings.HasPrefix(resourceType, "text") {
 | |
| 		resourceType = echo.MIMETextPlainCharsetUTF8
 | |
| 	} else if strings.HasPrefix(resourceType, "video") || strings.HasPrefix(resourceType, "audio") {
 | |
| 		http.ServeContent(c.Response(), c.Request(), resource.Filename, time.Unix(resource.UpdatedTs, 0), bytes.NewReader(blob))
 | |
| 		return nil
 | |
| 	}
 | |
| 	return c.Stream(http.StatusOK, resourceType, bytes.NewReader(blob))
 | |
| }
 | |
| 
 | |
| var availableGeneratorAmount int32 = 32
 | |
| 
 | |
| func getOrGenerateThumbnailImage(srcBlob []byte, dstPath string) ([]byte, error) {
 | |
| 	if _, err := os.Stat(dstPath); err != nil {
 | |
| 		if !errors.Is(err, os.ErrNotExist) {
 | |
| 			return nil, errors.Wrap(err, "failed to check thumbnail image stat")
 | |
| 		}
 | |
| 
 | |
| 		if atomic.LoadInt32(&availableGeneratorAmount) <= 0 {
 | |
| 			return nil, errors.New("not enough available generator amount")
 | |
| 		}
 | |
| 		atomic.AddInt32(&availableGeneratorAmount, -1)
 | |
| 		defer func() {
 | |
| 			atomic.AddInt32(&availableGeneratorAmount, 1)
 | |
| 		}()
 | |
| 
 | |
| 		reader := bytes.NewReader(srcBlob)
 | |
| 		src, err := imaging.Decode(reader, imaging.AutoOrientation(true))
 | |
| 		if err != nil {
 | |
| 			return nil, errors.Wrap(err, "failed to decode thumbnail image")
 | |
| 		}
 | |
| 		thumbnailImage := imaging.Resize(src, 512, 0, imaging.Lanczos)
 | |
| 
 | |
| 		dstDir := filepath.Dir(dstPath)
 | |
| 		if err := os.MkdirAll(dstDir, os.ModePerm); err != nil {
 | |
| 			return nil, errors.Wrap(err, "failed to create thumbnail dir")
 | |
| 		}
 | |
| 
 | |
| 		if err := imaging.Save(thumbnailImage, dstPath); err != nil {
 | |
| 			return nil, errors.Wrap(err, "failed to resize thumbnail image")
 | |
| 		}
 | |
| 	}
 | |
| 
 | |
| 	dstFile, err := os.Open(dstPath)
 | |
| 	if err != nil {
 | |
| 		return nil, errors.Wrap(err, "failed to open the local resource")
 | |
| 	}
 | |
| 	defer dstFile.Close()
 | |
| 	dstBlob, err := io.ReadAll(dstFile)
 | |
| 	if err != nil {
 | |
| 		return nil, errors.Wrap(err, "failed to read the local resource")
 | |
| 	}
 | |
| 	return dstBlob, nil
 | |
| }
 |