UNPKG

@ghini/kit

Version:

js practical tools to assist efficient development

412 lines (404 loc) 12.5 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
259
260
261
262
263
264
265
266
267
268
269
270
271
272
273
274
275
276
277
278
279
280
281
282
283
284
285
286
287
288
289
290
291
292
293
294
295
296
297
298
299
300
301
302
303
304
305
306
307
308
309
310
311
312
313
314
315
316
317
318
319
320
321
322
323
324
325
326
327
328
329
330
331
332
333
334
335
336
337
338
339
340
341
342
343
344
345
346
347
348
349
350
351
352
353
354
355
356
357
358
359
360
361
362
363
364
365
366
367
368
369
370
371
372
373
374
375
376
377
378
379
380
381
382
383
384
385
386
387
388
389
390
391
392
393
394
395
396
397
398
399
400
401
402
403
404
405
406
407
408
409
410
411
412
import kit from "@ghini/kit/dev"; import conf from "./conf.js"; import lua from "./lua.js"; // import * as auth from "./auth.js"; // import * as user from "./user.js"; kit.cs(6); const server = await kit.hs(2999); // server._404 = 0; // Alpha server.addr("/v1/test", test); server.addr("/v1/test/br", br); server.addr("/test/timeout", (gold) => console.log(gold)); server.open = 1; server.static("/static", "..",{auth:"123456"}); server.static("/static2", "C:/Code"); // Beta server.addr("/v1/subscribe", "get", subscribe); server.addr("/v1/user/orderplan", orderplan); server.addr("/hy2auth", hy2auth); // RC(Release Candidate) server.addr("/v1/auth/signin", "post", signin); server.addr("/v1/auth/captcha", captcha); server.addr("/v1/auth/emailverify", "post", emailverify); server.addr("/v1/auth/signup", "post", signup); server.addr("/v1/auth/reset", "post", reset); server.addr("/v1/user/signout", signout); server.addr("/v1/user/signoutall", signoutall); server.addr("/v1/user/profile", profile); server.addr("/v1/admin/status", status); // Release /* Redis */ const redis = kit.xredis(conf.redis[0]); // const redis1 = kit.xredis({port:6333}); // const redis1 = kit.xredis(conf.redis[1]); // const redis2 = kit.xredis(conf.redis[2]); // const redis3 = kit.xredis(conf.redis[3]); // const redis4 = kit.xredis(conf.redis[4]); // 开发期间保持同步 // redis1.flushdb(); // redis.sync(redis2,'*'); // redis.sync([redis1, redis2, redis3, redis4], "plan:*"); // redis.sync([redis1, redis2, redis3, redis4], "plan:*",{ // hash:['upload','download'], // }); export async function br(gold) { // 返回一段br加密 console.log("br", gold.headers); gold.respond({ "content-type": "application/json", "content-encoding": "br", }); let d0 = JSON.stringify(gold); let d1 = await kit.br_compress(d0); // let d2 = (await kit.br_decompress(d1)).toString(); // console.dev(888, d2 === d0, d0, d2); // gold.end(d0); gold.end(d1); } export async function status(gold) { // 服务器状态查询 if (gold.auth !== conf.auth) return; gold.json({ connect_number: server.cnn, }); } export async function test(gold) { console.log("test", gold.headers, gold.body); // console.log(gold.query); // console.log(gold.protocol); gold.json({ query: gold.query, data: gold.data, }); } export async function hy2auth(gold) { // { addr: '120.85.169.188:5757', auth: 'mSIusSz2Ku3YUWxB85cQa', tx: 0 } const res = await redis.hgetall(`plan` + gold.data.auth); if (kit.empty(res)) return gold.end(JSON.stringify({ ok: false, msg: "无效的订阅" })); // 判断流量是否用完 if (res.upload + res.download > res.total) return gold.end(JSON.stringify({ ok: false, msg: "流量已用完" })); gold.end( JSON.stringify({ ok: true, id: gold.data.auth, }) ); } export async function subscribe(gold) { // gold.query.starlink 查相关,填响应头 无结果返回404 if (!gold.query.starlink || gold.query.starlink.length !== 21) return gold.end("404"); let path, agent = gold.headers["user-agent"]; console.log(agent); if (agent.startsWith("ClashforWindows")) { path = "./clash.yaml"; } else if (agent.match(/clash/i)) { path = "./clash-verge.yaml"; } else return gold.end("404"); // const res = await redis.eval(lua.subscribe, 1, gold.query.starlink); let res = await redis.hgetall("plan:" + gold.query.starlink); if (kit.empty(res)) return gold.end("404"); const data = (await kit.arf(path)).replace( /YourStrongPassword0085/g, gold.query.starlink ); // const filename = "星链Starlink"; const filename = encodeURIComponent("星链Starlink"); // console.log(res); gold.respond({ ":status": 200, "content-type": "application/octet-stream; charset=UTF-8", // 或 application/octet-stream // "content-encoding": "gzip", "subscription-userinfo": `upload=${res.upload}; download=${res.download}; total=976366325465088; expire=${res.expire}`, "content-disposition": "attachment; filename*=UTF-8''" + filename, // "profile-web-page-url": "https://stream.topchat.vip", }); gold.end(data); } export async function signin(gold) { const { email, pwd } = gold.data; console.dev(gold.headers, email, pwd); const hashKey = "user:" + email; let res = await redis.hgetall(hashKey); if (Object.keys(res).length > 0 && res.pwd === pwd) { // 生成免密token 返回cookie const token = kit.uuid(21); const fields = [ "token", token, "agent", gold.headers["user-agent"], "ip", gold.ip, "ipcountry", gold.headers["cf-ipcountry"] || "", "time", kit.getDate(), ]; const user = await redis.eval(lua.signin, 2, email, 10, ...fields); if (user) { gold.setcookie([ `auth_token=${token};Max-Age=3888000`, `user=${user}; Max-Age=3888000`, ]); gold.json("登录成功"); } else { gold.jerr("服务器错误,请稍后再试", 503); } } else { gold.jerr("账号或密码错误"); } } export async function signup(gold) { // user:admin@xship.top @123321 18812345678 const { email, pwd, code } = gold.data; const auth = kit.uuid(24); const fields = [ "pwd", pwd, "name", email.replace(/@.*/, ""), "regdate", kit.getDate(8), "plans", auth, ]; newplan(auth); // 使用Lua脚本一次连接搞定 :验证邮箱,检查键是否存在,如果不存在则创建,并自动分配初始auth const result = await redis.eval(lua.signup, 2, email, code, ...fields); if (result[0]) { const token = kit.uuid(21); const fields = [ "token", token, "agent", gold.headers["user-agent"], "ip", gold.ip, "time", kit.getDate(), ]; const user = await redis.eval(lua.signin, 2, email, 20, ...fields); gold.setcookie([ `auth_token=${token}; Max-Age=3888000`, `user=${user}; Max-Age=3888000`, ]); gold.json("注册成功"); } else { gold.jerr(result[1]); } } export async function reset(gold) { // 重置密码防护级别要高一些 const { email, pwd, code } = gold.data; // 使用Lua脚本一次连接搞定 :验证邮箱,检查键是否存在,如果不存在则创建 const result = await redis.eval(lua.reset, 2, email, code, "pwd", pwd); if (result[0]) { const token = kit.uuid(21); const fields = [ "token", token, "agent", gold.headers["user-agent"], "ip", gold.ip, "time", kit.getDate(), ]; const user = await redis.eval(lua.signin, 2, email, 20, ...fields); gold.setcookie([ `auth_token=${token}; Max-Age=3888000`, `user=${user}; Max-Age=3888000`, ]); gold.json("ok"); } else { gold.jerr(result[1]); } } export async function captcha(gold) { // 要防止高频恶意刷,速率限制,不过nodejs这块比较弱,交给rust nginx cf等网关处理 const { svg, code } = kit.captcha(); const hash = kit.uuid(10); redis.set("captcha:" + hash, code, "EX", 300); gold.respond({ "content-type": "image/svg+xml", "Cache-Control": "no-cache, no-store, must-revalidate", "set-cookie": `captchaId=${hash}; Secure; HttpOnly;Path=/; SameSite=Strict; Max-Age=300`, }); gold.end(svg); } export async function emailverify(gold) { const { type, email, code } = gold.data; const captchaId = gold.cookie.captchaId; console.log(type, email, code, captchaId); if (!captchaId) { gold.jerr("验证码已过期"); return; } // 验证hash,尽量减少无效请求开销,如果参数合规,携带了captchaId就要给它查一次 if ( code?.length === 4 && /.+@.+\..+/.test(email) && ["signup", "reset"].includes(type) ) { // 邮箱是否存在&&验证码校验 console.log(captchaId, code); const res = await redis.eval( lua.emailverify, 0, email, type === "signup" ? 1 : 0, captchaId, code ); if (!res[0]) { gold.jerr(res[1]); return; } } else { gold.jerr("验证码格式错误"); return; } const subject = type === "signup" ? "注册账号" : "重置密码"; const newcode = kit.gchar(6, "0123456789666888"); // type === "signup" ? kit.gchar(6, "0123456789666888") : kit.gchar(8, 2); const html = ` <div style="font-family: Arial, sans-serif; max-width: 600px; margin: 0 auto; padding: 20px;"> <h2 style="color: #333; text-align: center;">XShip ${subject}</h2> <div style="background-color: #f8f9fa; border-radius: 5px; padding: 20px; margin: 20px 0;"> <p style="color: #666; font-size: 16px;">您的验证码是:</p> <p style="color: #333; font-size: 24px; font-weight: bold; text-align: center; letter-spacing: 5px;"> ${newcode} </p> <p style="color: #666; font-size: 14px;">验证码有效期为15分钟,请勿泄露给他人。</p> </div> <p style="color: #999; font-size: 12px; text-align: center;"> 此邮件由系统自动发送,请勿回复 </p> </div> `; const response = await fetch("https://api.resend.com/emails", { method: "POST", headers: { Authorization: `Bearer ${conf.RESEND_API_KEY1}`, "Content-Type": "application/json", }, body: JSON.stringify({ from: "星链Starlink <xship@topchat.vip>", to: email, subject, html, }), }); if (!response.ok) { console.log(response); gold.jerr("Failed to send email"); } else { redis.set("verify:" + email, newcode, "EX", 900); gold.json("ok"); } } export async function signout(gold) { const token = "sess:" + gold.cookie["auth_token"]; const result = await redis.eval( lua.signout, 2, gold.cookie["user"], gold.cookie["auth_token"] ); if (result) { gold.delcookie(["auth_token", "user"]); gold.json("ok"); } else { gold.jerr("需要登录"); } } export async function signoutall(gold) { const token = "sess:" + gold.cookie["auth_token"]; const result = await redis.eval( lua.signoutall, 2, gold.cookie["user"], gold.cookie["auth_token"] ); if (result) { gold.delcookie(["auth_token", "user"]); gold.json("ok"); } else { gold.jerr("需要登录"); } } export async function profile(gold) { // const result = await redis.eval( // lua.profile, // 2, // gold.cookie["user"], // gold.cookie["auth_token"] // ); const result = await redis.hgetall( "user:" + gold.cookie["user"].split(":")[0] ); if (Object.keys(result).length > 0) { delete result.pwd; if (result.plans) { const arr = []; await Promise.all( result.plans.split(";").map(async (item) => { const obj = await redis.hgetall("plan:" + item); obj.auth = item; arr.push(obj); }) ); result.plans = arr; } gold.json(result); } else { gold.delcookie(["auth_token", "user"]); gold.jerr("需要登录"); } } export async function orderplan(gold) { // orderplan plan:维护列表, // newplan(); newplan("test" + kit.uuid(24)); // redis.sync([redis1, redis2, redis3, redis4], key); // 添加订阅,并将订阅添加到user.subscribe中 // const res = await redis.eval(lua.orderplan, 2, key, email, ...obj2arr(data)); // await redis.hset(key,data); // await redis.expireat(key,1762502400); // await redis.hgetall(key); // await redis.ttl(key); // const a = await redis.keys(); // redis.hset("user:admin@xship.top", "subscribe", JSON.stringify(a)); gold.json("ok"); } async function newplan(auth) { const key = "plan:" + auth || kit.uuid(24); const expire = new Date("2025/2/1").getTime() / 1000; const data = { upload: 0, //已用总上传 download: 0, //已用总下载 total: 52428800, //当期总量 fullTotal: 976366325465088, //整期总量 expire, //当期到期时间 | 重置时间 fullExpire: expire, //整期到期时间 title: "凌日拓途计划", createDate: kit.getDate(), }; await redis.hset(key, data); await redis.expireat(key, expire); } function obj2arr(obj) { const arr = []; for (const key in data) { if (data.hasOwnProperty(key)) { //确保只处理自身属性 arr.push(key, String(data[key])); //将值转换为字符串(Redis HSET 格式要求) } } return arr; }