Overlord/Vile-Browser
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

eod commit

Browse Source
This commit is contained in:
Overlord
2025-11-27 22:11:13 +01:00
parent 09539a9cd0
commit 58849118d8
6 changed files with 117 additions and 47 deletions
Download Patch File Download Diff File Expand all files Collapse all files

14
app/src/database/db.v
View File

@@ -18,7 +18,7 @@ pub fn get_dummy_exclusion_list(exe string, root string) []string {
] ]
} }
fn Database.get_connection(cfg util.Config) !sqlite.DB { fn get_connection(cfg util.Config) !sqlite.DB {
conn := sqlite.connect(cfg.database)! conn := sqlite.connect(cfg.database)!
if cfg.debug { if cfg.debug {
@@ -35,23 +35,27 @@ fn Database.get_connection(cfg util.Config) !sqlite.DB {
return conn return conn
} }
pub fn Database.get_database(cfg util.Config) !&Database { pub fn get_database(cfg util.Config) !&Database {
return &Database{ return &Database{
cfg: cfg cfg: cfg
conn: Database.get_connection(cfg)! conn: get_connection(cfg)!
} }
} }
pub fn (mut db Database) query[T](statement orm.QueryBuilder[T]) ![]T { pub fn (mut db Database) query[T](statement orm.QueryBuilder[T]) ![]T {
if !db.conn.validate() or { false } { if !db.conn.validate() or { false } {
db.conn = Database.get_connection(db.cfg)! db.conn = get_connection(db.cfg)!
} }
return statement.query()! return statement.query()!
} }
pub fn (db Database) get_query_builder[T]() &orm.QueryBuilder[T] {
return orm.new_query[T](db.conn)
}
pub fn test(cfg util.Config) !bool { pub fn test(cfg util.Config) !bool {
mut db := Database.get_database(cfg)! mut db := get_database(cfg)!
db.conn.validate()! db.conn.validate()!
db.conn.close()! db.conn.close()!

6
app/src/database/tables.v
View File

@@ -3,21 +3,21 @@ module database
import time import time
@[table: 'users'] @[table: 'users']
struct Users { pub struct Users {
id int @[primary; serial] id int @[primary; serial]
username string @[nonnull; unique] username string @[nonnull; unique]
password string @[nonnull] password string @[nonnull]
} }
@[table: 'login_attempts'] @[table: 'login_attempts']
struct Logins { pub struct Logins {
ip string @[primary] ip string @[primary]
attempts int @[nonnull] attempts int @[nonnull]
attempt_time time.Time @[nonnull] attempt_time time.Time @[nonnull]
} }
@[table: 'files'] @[table: 'files']
struct Files { pub struct Files {
id int @[primary; serial] id int @[primary; serial]
path string @[nonnull; unique] path string @[nonnull; unique]
visible bool @[default: false; nonnull] visible bool @[default: false; nonnull]

1
app/src/jwt/hs256.v
View File

@@ -17,7 +17,6 @@ pub fn (algorithm HS256) sign(content string, secret string) !string {
pub fn (algorithm HS256) verify(token_raw string, secret string) !Token { pub fn (algorithm HS256) verify(token_raw string, secret string) !Token {
token := parse_token(token_raw)! token := parse_token(token_raw)!
parts := token_raw.split('.') parts := token_raw.split('.')
header := parts[0] header := parts[0]
claims := parts[1] claims := parts[1]

29
app/src/jwt/jwt.v
View File

@@ -9,10 +9,10 @@ pub fn encode[T](claims T, algorithm Algorithm, secretOrKey string, exp int) !st
header := new_header(algorithm) header := new_header(algorithm)
header_b64 := base64.url_encode(json.encode(header).bytes()) header_b64 := base64.url_encode(json.encode(header).bytes())
mut claims_final := json2.raw_decode(json.encode(claims))!.as_map() mut claims_final := json2.decode[json2.Any](json.encode(claims))!.as_map()
if exp != 0 { if exp != 0 {
claims_final["exp"] = time.now().unix_time() + exp claims_final['exp'] = time.now().unix() + exp
} }
claims_b64 := base64.url_encode(claims_final.str().bytes()) claims_b64 := base64.url_encode(claims_final.str().bytes())
@@ -23,23 +23,18 @@ pub fn encode[T](claims T, algorithm Algorithm, secretOrKey string, exp int) !st
} }
pub fn verify[T](token string, algorithm Algorithm, secretOrKey string) !T { pub fn verify[T](token string, algorithm Algorithm, secretOrKey string) !T {
return algorithm.verify(token, secretOrKey)!.parse_claims<T>() return algorithm.verify(token, secretOrKey)!.parse_claims[T]()
} }
pub fn create_jwt(user_id int) string { pub struct UserJwt {
alg := new_algorithm(jwt.AlgorithmType.hs256) pub:
token := jwt.encode({ 'id': user_id }, alg, secret_key, 7 * 24 * 60 * 60 * 1000) or { id string
error('JWT encode error: $err')
}
return token
} }
pub fn verify_jwt(token string) !int { pub fn create(user_id string, secret string) !string {
alg := jwt.new_algorithm(jwt.AlgorithmType.hs256) return encode[UserJwt](UserJwt{ id: user_id }, new_algorithm(.hs256), secret, 7 * 24 * 60 * 60)!
claims := jwt.verify[token](token, alg, secret_key) or { }
return error('Invalid token: $err')
} pub fn decode(token string, secret string) !string {
return verify[UserJwt](token, new_algorithm(.hs256), secret)!.id
return claims['id'].int() or { return error('ID not found in token') }
} }

2
app/src/jwt/structs.v
View File

@@ -45,7 +45,7 @@ pub fn parse_token(token_raw string) !Token {
decoded_header := base64.decode_str(header_raw) decoded_header := base64.decode_str(header_raw)
decoded_claims := base64.decode_str(claims_raw) decoded_claims := base64.decode_str(claims_raw)
claims := json2.raw_decode(decoded_claims)!.as_map() claims := json2.decode[json2.Any](decoded_claims)!.as_map()
mut expiration_given := true mut expiration_given := true

112
app/src/main.v
View File

@@ -2,9 +2,13 @@ module main
import os import os
import veb import veb
import jwt
import util import util
import database import database
import thomaspeissl.dotenv import thomaspeissl.dotenv
import sync
import orm
import time
// structs // structs
@@ -14,12 +18,16 @@ pub mut:
id int id int
} }
pub struct CachedUser {
pub:
user User
expires int // unix seconds
}
pub struct Context { pub struct Context {
veb.Context veb.Context
pub mut: pub mut:
embed util.Embedded user User
user User
session_id string
} }
pub struct App { pub struct App {
@@ -27,8 +35,12 @@ pub struct App {
veb.StaticHandler veb.StaticHandler
veb.Middleware[Context] veb.Middleware[Context]
pub: pub:
cfg &util.Config cfg util.Config
embed util.Embedded embed util.Embedded
cache_lock sync.RwMutex
user_cache map[string]CachedUser
pub mut:
database database.Database
} }
pub struct Auth { pub struct Auth {
@@ -82,10 +94,77 @@ pub fn (auth &Auth) register(mut ctx Context) veb.Result {
return ctx.text('register') return ctx.text('register')
} }
// middleware
fn (mut app &App) prepare() fn (mut Context) bool {
return fn [mut app] (mut ctx Context) bool {
ctx.app = &app
return true
}
}
pub fn session(mut ctx Context) bool {
token := ctx.get_cookie('veb_session') or { '' }
if token == '' {
return true
}
if id := jwt.decode(token, ctx.app.cfg.jwt_key) {
query := ctx.app.database.get_query_builder[database.Users]().where('id = ?', id) or { return true }
result := ctx.app.database.query[database.Users](query) or { return true }
ctx.user = result.first()
}
return true
}
// fn (mut app App) get_user_by_id_cached(id int) ?User {
// key := id.str()
// now := time.now().unix()
//
// // read lock -> quick path
// app.cache_lock.rlock()
// if cu := app.user_cache[key] {
// if cu.expires > int(now) {
// app.cache_lock.runlock()
// return cu.user
// }
// }
// app.cache_lock.runlock()
//
// // miss or expired -> fetch from DB
// // assume you have a DB pool on app or ctx.db gives you a connection
// // This example uses app-level DB access via a helper; adapt if your DB is on ctx.
// row := app.get_db().exec_param('SELECT id, name FROM users WHERE id = $1', key) or {
// return error('db error')
// }
// if row.len == 0 {
// return error('not found')
// }
//
// fetched := User{
// id: row[0].valint(0)
// name: row[0].vals[1]
// }
//
// // write lock -> populate cache
// app.cache_lock.lock()
// app.user_cache[key] = CachedUser{
// user: fetched
// expires: int(now) + 60 // TTL = 60s, tune to taste
// }
// app.cache_lock.unlock()
//
// return fetched
// }
// utility // utility
fn (mut ctx Context) error_page(code int, short string, long string) string { fn (mut ctx Context) error_page(code int, short string, long string) string {
style := ctx.embed.error_css.clone() style := ctx.app.embed.error_css.clone()
return $tmpl('template/error.html') return $tmpl('template/error.html')
} }
@@ -111,7 +190,7 @@ pub fn (mut ctx Context) server_error(msg string) veb.Result {
// main // main
fn populate() (&util.Config, &util.Embedded) { fn populate() (util.Config, util.Embedded) {
dotenv.load() dotenv.load()
executable := os.executable() executable := os.executable()
@@ -121,13 +200,13 @@ fn populate() (&util.Config, &util.Embedded) {
def_jwt := $d('jwt', 'supersecurejwttokenkey') def_jwt := $d('jwt', 'supersecurejwttokenkey')
// vfmt off // vfmt off
return &util.Config{ return util.Config{
exe: util.Utility.normalize_path(executable) exe: util.Utility.normalize_path(executable)
root: util.Utility.normalize_path(if os.getenv('CDN_ROOT') != '' { util.Utility.resolve_path(def_root, os.getenv('CDN_ROOT').str()) } else { def_root }) root: util.Utility.normalize_path(if os.getenv('CDN_ROOT') != '' { util.Utility.resolve_path(def_root, os.getenv('CDN_ROOT').str()) } else { def_root })
port: if os.getenv('CDN_PORT') != '' { os.getenv('CDN_PORT').int() } else { def_port } port: if os.getenv('CDN_PORT') != '' { os.getenv('CDN_PORT').int() } else { def_port }
jwt_key: if os.getenv('CDN_JWT_KEY') != '' { os.getenv('CDN_JWT_KEY').str() } else { def_jwt } jwt_key: if os.getenv('CDN_JWT_KEY') != '' { os.getenv('CDN_JWT_KEY').str() } else { def_jwt }
database: if os.getenv('CDN_SQL_DSN') != '' { os.getenv('CDN_SQL_DSN').str() } else { def_sqlt } database: if os.getenv('CDN_SQL_DSN') != '' { os.getenv('CDN_SQL_DSN').str() } else { def_sqlt }
}, &util.Embedded{ }, util.Embedded{
style_css: $embed_file('template/assets/style.css', .zlib).to_string() style_css: $embed_file('template/assets/style.css', .zlib).to_string()
error_css: $embed_file('template/assets/error.css', .zlib).to_string() error_css: $embed_file('template/assets/error.css', .zlib).to_string()
} }
@@ -136,24 +215,17 @@ fn populate() (&util.Config, &util.Embedded) {
fn main() { fn main() {
// vfmt off // vfmt off
cfg, mut embed := populate() mut cfg, mut embed := populate()
mut app := &App{ cfg: cfg, embed: embed } mut app := &App{ cfg: cfg, embed: embed, database: database.get_database(cfg)! }
mut auth := &Auth{ app: &app } mut auth := &Auth{ app: &app }
// vfmt on // vfmt on
database.test(cfg)!
app.register_controller[Auth, Context]('/auth', mut auth)! app.register_controller[Auth, Context]('/auth', mut auth)!
app.enable_static_compression = true app.enable_static_compression = true
app.use(veb.encode_auto[Context]()) app.use(veb.encode_auto[Context]())
app.use(handler: app.prepare())
app.use(veb.MiddlewareOptions[Context]{ app.use(handler: session)
handler: fn [mut embed] (mut ctx Context) bool {
ctx.embed = embed
return true
}
})
veb.run[App, Context](mut app, app.cfg.port) veb.run[App, Context](mut app, app.cfg.port)
} }