UNPKG

save-server

Version:

A powerful ShareX image and URL server, with support for multiple users.

github.com/neztore/save-server

neztore/save-server

213 lines (177 loc) 5.49 kB
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
const sqlite = require("sqlite3"); const { join } = require("path"); const { adminUser, hashRounds, dest } = require("./index"); const { hash } = require("bcrypt"); const defaultPassword = "saveServerRoot"; const { access, constants } = require("fs"); const PAGE_SIZE = 200; class Database extends sqlite.Database { constructor(name) { super(join(__dirname, name), function (err) { if (err) { console.error("Failed to connect to SQLite database: ", err); } else { console.log("Database connected"); } }); const db = this; this.once("open", async function () { // Check that "root" exists try { const root = await this.getUser(adminUser); if (!root) { console.log("No root user exists. Creating one with default password."); await db.addUser(adminUser, await hash(defaultPassword, hashRounds)); } } catch (e) { console.error("Failed to check for existing root user! ", e); } }); // 30 minutes. setInterval(this.checkFiles.bind(this), 1800000); } // DB Clean-up: Checks that all files on disk. // If a file doesn't exist, it is removed from the database. async checkFiles() { const db = this; const files = await this.getFiles(); if (files) { for (let file of files) { const loc = join(dest, `${file.id}${file.extension ? `.${file.extension}` : ""}`); access(loc, constants.F_OK, async (err) => { if (err) { // File does not exist await db.removeFile(file.id); } }); } } } // Generic async getOne(sql, ...args) { const db = this; return new Promise(function (resolve, reject) { try { db.get(sql, ...args, function (err, row) { if (err) return reject(err); resolve(row); }); } catch (e) { reject(e); } }); } async getLots(sql, ...args) { const db = this; return new Promise(function (resolve, reject) { try { db.all(sql, ...args, function (err, rows) { if (err) return reject(err); resolve(rows); }); } catch (e) { reject(e); } }); } async query(sql, ...args) { const db = this; return new Promise(function (resolve, reject) { try { db.run(sql, ...args, function (err) { if (err) return reject(err); resolve(); }); } catch (e) { reject(e); } }); } // Gets async getFile(id) { const SQL = "SELECT * from files WHERE id = $1 LIMIT 1"; return this.getOne(SQL, [id]); } async getLink(id) { const SQL = "SELECT * from links WHERE id = $1 LIMIT 1"; return this.getOne(SQL, [id]); } getFiles() { const SQL = "SELECT datetime(created,'unixepoch') as created, id, owner, extension FROM files ORDER BY created DESC;"; return this.getLots(SQL); } getLinks(username) { const SQL = "SELECT datetime(created,'unixepoch') as created, id, url, owner FROM links WHERE links.owner = $1 ORDER BY created DESC LIMIT 600;"; return this.getLots(SQL, [username]); } getUsers() { const SQL = "SELECT username from users"; return this.getLots(SQL); } getUser(username) { const SQL = "SELECT * from users WHERE username = $1 LIMIT 1;"; return this.getOne(SQL, [username]); } async getUserFiles(username, page = 0) { const offset = page * PAGE_SIZE; const SQL = `SELECT datetime(created,'unixepoch') as created, id, owner, extension FROM files WHERE owner = $1 ORDER BY created desc LIMIT ${PAGE_SIZE} OFFSET ${offset};`; return this.getLots(SQL, [username]); } async getAllUserFiles(username) { const SQL = "SELECT datetime(created,'unixepoch') as created, id, owner, extension FROM files WHERE owner = $1 ORDER BY created desc;"; return this.getLots(SQL, [username]); } getUserByToken(token) { // Just to double check, ensure token is defined. if (!token || typeof token !== "string") { throw new Error("Illegal authorisation token!"); } const SQL = "SELECT username, token FROM users WHERE token = $1 LIMIT 1;"; return this.getOne(SQL, [token]); } // Adds addFile(id, extension, userId) { const SQL = "INSERT INTO files (id, extension, owner) VALUES ($1, $2, $3)"; return this.query(SQL, [id, extension, userId]); } addUser(username, passwordHash) { const SQL = "INSERT INTO users (username, password) VALUES ($1, $2)"; return this.query(SQL, [username, passwordHash]); } // Link shortener addLink(id, url, owner) { const SQL = "INSERT INTO links (id, url, owner) VALUES ($1, $2, $3)"; return this.query(SQL, [id, url, owner]); } // Removes removeFile(id) { const SQL = "DELETE FROM files WHERE id = $1"; return this.query(SQL, [id]); } removeLink(id) { const SQL = "DELETE FROM links WHERE id = $1"; return this.query(SQL, [id]); } async removeUser(username) { const SQL = "DELETE FROM users WHERE username = $1"; await this.query(SQL, [username]); const removeFilesSQL = "DELETE FROM FILES where owner = $1"; return this.query(removeFilesSQL, [username]); } setPassword(username, password) { const SQL = "UPDATE users SET password=$1 WHERE username=$2;"; return this.query(SQL, [password, username]); } setFilesOwner(oldOwner, newOwner) { const SQL = "UPDATE files SET owner=$1 WHERE owner = $2;"; return this.query(SQL, [newOwner, oldOwner]); } setToken(username, token) { const SQL = "UPDATE users SET token=$1 WHERE username=$2"; return this.query(SQL, [token, username]); } expireToken(username) { return this.setToken(username, undefined); } } module.exports = new Database("save-server-database.db");