all repos — flounder @ 729f3dd39dab2712dfb264dd67fb8b4aa1d7605a

A small site builder for the Gemini protocol

http.go (view raw)

  1package main
  2
  3import (
  4	"bytes"
  5	"fmt"
  6	gmi "git.sr.ht/~adnano/go-gemini"
  7	"github.com/gorilla/handlers"
  8	"github.com/gorilla/sessions"
  9	_ "github.com/mattn/go-sqlite3"
 10	"golang.org/x/crypto/bcrypt"
 11	"html/template"
 12	"io"
 13	"io/ioutil"
 14	"log"
 15	"net/http"
 16	"net/url"
 17	"os"
 18	"path"
 19	"path/filepath"
 20	"strings"
 21	"time"
 22)
 23
 24var t *template.Template
 25var SessionStore *sessions.CookieStore
 26
 27func renderDefaultError(w http.ResponseWriter, statusCode int) {
 28	errorMsg := http.StatusText(statusCode)
 29	renderError(w, errorMsg, statusCode)
 30}
 31
 32func renderError(w http.ResponseWriter, errorMsg string, statusCode int) {
 33	data := struct {
 34		StatusCode int
 35		ErrorMsg   string
 36		Config     Config
 37	}{statusCode, errorMsg, c}
 38	err := t.ExecuteTemplate(w, "error.html", data)
 39	if err != nil { // Shouldn't happen probably
 40		http.Error(w, errorMsg, statusCode)
 41	}
 42}
 43
 44func rootHandler(w http.ResponseWriter, r *http.Request) {
 45	// serve everything inside static directory
 46	if r.URL.Path != "/" {
 47		fileName := path.Join(c.TemplatesDirectory, "static", filepath.Clean(r.URL.Path))
 48		_, err := os.Stat(fileName)
 49		if err != nil {
 50			renderDefaultError(w, http.StatusNotFound)
 51			return
 52		}
 53		http.ServeFile(w, r, fileName) // TODO better error handling
 54		return
 55	}
 56
 57	user := newGetAuthUser(r)
 58	indexFiles, err := getIndexFiles(user.IsAdmin)
 59	if err != nil {
 60		panic(err)
 61	}
 62	allUsers, err := getActiveUserNames()
 63	if err != nil {
 64		panic(err)
 65	}
 66	data := struct {
 67		Config   Config
 68		AuthUser AuthUser
 69		Files    []*File
 70		Users    []string
 71	}{c, user, indexFiles, allUsers}
 72	err = t.ExecuteTemplate(w, "index.html", data)
 73	if err != nil {
 74		panic(err)
 75	}
 76}
 77
 78func feedHandler(w http.ResponseWriter, r *http.Request) {
 79	user := newGetAuthUser(r)
 80	feedEntries, feeds, err := getAllGemfeedEntries()
 81	if err != nil {
 82		panic(err)
 83	}
 84	data := struct {
 85		Config      Config
 86		FeedEntries []FeedEntry
 87		Feeds       []Gemfeed
 88		AuthUser    AuthUser
 89	}{c, feedEntries, feeds, user}
 90	err = t.ExecuteTemplate(w, "feed.html", data)
 91	if err != nil {
 92		panic(err)
 93	}
 94}
 95
 96func editFileHandler(w http.ResponseWriter, r *http.Request) {
 97	user := newGetAuthUser(r)
 98	if !user.LoggedIn {
 99		renderDefaultError(w, http.StatusForbidden)
100		return
101	}
102	fileName := filepath.Clean(r.URL.Path[len("/edit/"):])
103	filePath := path.Join(c.FilesDirectory, user.Username, fileName)
104	isText := isTextFile(filePath)
105	alert := ""
106	var warnings []string
107	if r.Method == "POST" {
108		// get post body
109		r.ParseForm()
110		fileText := r.Form.Get("file_text")
111		// Web form by default gives us CR LF newlines.
112		// Unix files use just LF
113		fileText = strings.ReplaceAll(fileText, "\r\n", "\n")
114		fileBytes := []byte(fileText)
115		err := checkIfValidFile(filePath, fileBytes)
116		if err != nil {
117			log.Println(err)
118			renderError(w, err.Error(), http.StatusBadRequest)
119			return
120		}
121		sfl := getSchemedFlounderLinkLines(strings.NewReader(fileText))
122		if len(sfl) > 0 {
123			warnings = append(warnings, "Warning! Some of your links to flounder pages use schemas. This means that they may break when viewed in Gemini or over HTTPS. Plase remove gemini: or https: from the start of these links:\n")
124			for _, l := range sfl {
125				warnings = append(warnings, l)
126			}
127		}
128		// create directories if dne
129		os.MkdirAll(path.Dir(filePath), os.ModePerm)
130		if userHasSpace(user.Username, len(fileBytes)) {
131			if isText { // Cant edit binary files here
132				err = ioutil.WriteFile(filePath, fileBytes, 0644)
133			}
134		} else {
135			renderError(w, fmt.Sprintf("Bad Request: Out of file space. Max space: %d.", c.MaxUserBytes), http.StatusBadRequest)
136			return
137		}
138		if err != nil {
139			panic(err)
140		}
141		alert = "saved"
142		newName := filepath.Clean(r.Form.Get("rename"))
143		err = checkIfValidFile(newName, fileBytes)
144		if err != nil {
145			log.Println(err)
146			renderError(w, err.Error(), http.StatusBadRequest)
147			return
148		}
149		if newName != fileName {
150			newPath := path.Join(c.FilesDirectory, user.Username, newName)
151			os.MkdirAll(path.Dir(newPath), os.ModePerm)
152			os.Rename(filePath, newPath)
153			fileName = newName
154			filePath = newPath
155			alert += " and renamed"
156		}
157	}
158
159	err := checkIfValidFile(filePath, nil)
160	if err != nil {
161		log.Println(err)
162		renderError(w, err.Error(), http.StatusBadRequest)
163		return
164	}
165	// Create directories if dne
166	f, err := os.OpenFile(filePath, os.O_RDONLY, 0644)
167	var fileBytes []byte
168	if os.IsNotExist(err) || !isText {
169		fileBytes = []byte{}
170		err = nil
171	} else {
172		defer f.Close()
173		fileBytes, err = ioutil.ReadAll(f)
174	}
175	if err != nil {
176		panic(err)
177	}
178	data := struct {
179		FileName string
180		FileText string
181		Config   Config
182		AuthUser AuthUser
183		Host     string
184		IsText   bool
185		IsGemini bool
186		IsGemlog bool
187		Alert    string
188		Warnings []string
189	}{fileName, string(fileBytes), c, user, c.Host, isText, isGemini(fileName), strings.HasPrefix(fileName, "gemlog"), alert, warnings}
190	err = t.ExecuteTemplate(w, "edit_file.html", data)
191	if err != nil {
192		panic(err)
193	}
194}
195
196func uploadFilesHandler(w http.ResponseWriter, r *http.Request) {
197	if r.Method == "POST" {
198		user := newGetAuthUser(r)
199		if !user.LoggedIn {
200			renderDefaultError(w, http.StatusForbidden)
201			return
202		}
203		r.ParseMultipartForm(10 << 6) // why does this not work
204		file, fileHeader, err := r.FormFile("file")
205		fileName := filepath.Clean(fileHeader.Filename)
206		defer file.Close()
207		if err != nil {
208			log.Println(err)
209			renderError(w, err.Error(), http.StatusBadRequest)
210			return
211		}
212		dest, _ := ioutil.ReadAll(file)
213		err = checkIfValidFile(fileName, dest)
214		if err != nil {
215			log.Println(err)
216			renderError(w, err.Error(), http.StatusBadRequest)
217			return
218		}
219		destPath := path.Join(c.FilesDirectory, user.Username, fileName)
220
221		f, err := os.OpenFile(destPath, os.O_WRONLY|os.O_CREATE, 0644)
222		if err != nil {
223			panic(err)
224		}
225		defer f.Close()
226		if userHasSpace(user.Username, c.MaxFileBytes) { // Not quite right
227			io.Copy(f, bytes.NewReader(dest))
228		} else {
229			renderError(w, fmt.Sprintf("Bad Request: Out of file space. Max space: %d.", c.MaxUserBytes), http.StatusBadRequest)
230			return
231		}
232	}
233	http.Redirect(w, r, "/my_site", http.StatusSeeOther)
234}
235
236type AuthUser struct {
237	LoggedIn          bool
238	Username          string
239	IsAdmin           bool
240	ImpersonatingUser string // used if impersonating
241}
242
243func newGetAuthUser(r *http.Request) AuthUser {
244	session, _ := SessionStore.Get(r, "cookie-session")
245	user, ok := session.Values["auth_user"].(string)
246	impers, _ := session.Values["impersonating_user"].(string)
247	isAdmin, _ := session.Values["admin"].(bool)
248	return AuthUser{
249		LoggedIn:          ok,
250		Username:          user,
251		IsAdmin:           isAdmin,
252		ImpersonatingUser: impers,
253	}
254}
255
256func mySiteHandler(w http.ResponseWriter, r *http.Request) {
257	user := newGetAuthUser(r)
258	if !user.LoggedIn {
259		renderDefaultError(w, http.StatusForbidden)
260		return
261	}
262	// check auth
263	userFolder := getUserDirectory(user.Username)
264	files, _ := getMyFilesRecursive(userFolder, user.Username)
265	currentDate := time.Now().Format("2006-01-02")
266	data := struct {
267		Config      Config
268		Files       []File
269		AuthUser    AuthUser
270		CurrentDate string
271	}{c, files, user, currentDate}
272	_ = t.ExecuteTemplate(w, "my_site.html", data)
273}
274
275func myAccountHandler(w http.ResponseWriter, r *http.Request) {
276	user := newGetAuthUser(r)
277	authUser := user.Username
278	if !user.LoggedIn {
279		renderDefaultError(w, http.StatusForbidden)
280		return
281	}
282	me, _ := getUserByName(user.Username)
283	type pageData struct {
284		Config   Config
285		AuthUser AuthUser
286		MyUser   *User
287		Errors   []string
288	}
289	data := pageData{c, user, me, nil}
290
291	if r.Method == "GET" {
292		err := t.ExecuteTemplate(w, "me.html", data)
293		if err != nil {
294			panic(err)
295		}
296	} else if r.Method == "POST" {
297		r.ParseForm()
298		newUsername := r.Form.Get("username")
299		errors := []string{}
300		newEmail := r.Form.Get("email")
301		newDomain := r.Form.Get("domain")
302		newUsername = strings.ToLower(newUsername)
303		var err error
304		_, exists := domains[newDomain]
305		if newDomain != me.Domain && !exists {
306			_, err = DB.Exec("update user set domain = ? where username = ?", newDomain, me.Username) // TODO use transaction
307			if err != nil {
308				errors = append(errors, err.Error())
309			} else {
310				refreshDomainMap()
311				log.Printf("Changed domain for %s from %s to %s", authUser, me.Domain, newDomain)
312			}
313		}
314		if newEmail != me.Email {
315			_, err = DB.Exec("update user set email = ? where username = ?", newEmail, me.Username)
316			if err != nil {
317				// TODO better error not sql
318				errors = append(errors, err.Error())
319			} else {
320				log.Printf("Changed email for %s from %s to %s", authUser, me.Email, newEmail)
321			}
322		}
323		if newUsername != authUser {
324			// Rename User
325			err = renameUser(authUser, newUsername)
326			if err != nil {
327				log.Println(err)
328				errors = append(errors, "Could not rename user")
329			} else {
330				session, _ := SessionStore.Get(r, "cookie-session")
331				session.Values["auth_user"] = newUsername
332				session.Save(r, w)
333			}
334		}
335		// reset auth
336		user = newGetAuthUser(r)
337		data.Errors = errors
338		data.AuthUser = user
339		data.MyUser.Email = newEmail
340		data.MyUser.Domain = newDomain
341		_ = t.ExecuteTemplate(w, "me.html", data)
342	}
343}
344
345func archiveHandler(w http.ResponseWriter, r *http.Request) {
346	authUser := newGetAuthUser(r)
347	if !authUser.LoggedIn {
348		renderDefaultError(w, http.StatusForbidden)
349		return
350	}
351	if r.Method == "GET" {
352		userFolder := getUserDirectory(authUser.Username)
353		err := zipit(userFolder, w)
354		if err != nil {
355			panic(err)
356		}
357
358	}
359}
360func loginHandler(w http.ResponseWriter, r *http.Request) {
361	if r.Method == "GET" {
362		// show page
363		data := struct {
364			Error  string
365			Config Config
366		}{"", c}
367		err := t.ExecuteTemplate(w, "login.html", data)
368		if err != nil {
369			panic(err)
370		}
371	} else if r.Method == "POST" {
372		r.ParseForm()
373		name := strings.ToLower(r.Form.Get("username"))
374		password := r.Form.Get("password")
375		row := DB.QueryRow("SELECT username, password_hash, active, admin FROM user where username = $1 OR email = $1", name)
376		var db_password []byte
377		var username string
378		var active bool
379		var isAdmin bool
380		err := row.Scan(&username, &db_password, &active, &isAdmin)
381		if err != nil {
382			if strings.Contains(err.Error(), "no rows") {
383				data := struct {
384					Error  string
385					Config Config
386				}{"Username or email '" + name + "' does not exist", c}
387				t.ExecuteTemplate(w, "login.html", data)
388				return
389			} else {
390				panic(err)
391			}
392		}
393		if db_password != nil && !active {
394			data := struct {
395				Error  string
396				Config Config
397			}{"Your account is not active yet. Pending admin approval", c}
398			t.ExecuteTemplate(w, "login.html", data)
399			return
400		}
401		if bcrypt.CompareHashAndPassword(db_password, []byte(password)) == nil {
402			log.Println("logged in")
403			session, _ := SessionStore.Get(r, "cookie-session")
404			session.Values["auth_user"] = username
405			session.Values["admin"] = isAdmin
406			session.Save(r, w)
407			http.Redirect(w, r, "/my_site", http.StatusSeeOther)
408		} else {
409			data := struct {
410				Error  string
411				Config Config
412			}{"Invalid login or password", c}
413			err := t.ExecuteTemplate(w, "login.html", data)
414			if err != nil {
415				panic(err)
416			}
417		}
418	}
419}
420
421func logoutHandler(w http.ResponseWriter, r *http.Request) {
422	session, _ := SessionStore.Get(r, "cookie-session")
423	impers, ok := session.Values["impersonating_user"].(string)
424	if ok {
425		session.Values["auth_user"] = impers
426		session.Values["impersonating_user"] = nil // TODO expire this automatically
427		// session.Values["admin"] = nil // TODO fix admin
428	} else {
429		session.Options.MaxAge = -1
430	}
431	session.Save(r, w)
432	http.Redirect(w, r, "/", http.StatusSeeOther)
433}
434
435const ok = "-0123456789abcdefghijklmnopqrstuvwxyz"
436
437func isOkUsername(s string) error {
438	if len(s) < 1 {
439		return fmt.Errorf("Username is too short")
440	}
441	if len(s) > 32 {
442		return fmt.Errorf("Username is too long. 32 char max.")
443	}
444	for _, char := range s {
445		if !strings.Contains(ok, strings.ToLower(string(char))) {
446			return fmt.Errorf("Username contains invalid characters. Valid characters include lowercase letters, numbers, and hyphens.")
447		}
448	}
449	return nil
450}
451func registerHandler(w http.ResponseWriter, r *http.Request) {
452	if r.Method == "GET" {
453		data := struct {
454			Errors []string
455			Config Config
456		}{nil, c}
457		err := t.ExecuteTemplate(w, "register.html", data)
458		if err != nil {
459			panic(err)
460		}
461	} else if r.Method == "POST" {
462		r.ParseForm()
463		email := strings.ToLower(r.Form.Get("email"))
464		password := r.Form.Get("password")
465		errors := []string{}
466		if r.Form.Get("password") != r.Form.Get("password2") {
467			errors = append(errors, "Passwords don't match")
468		}
469		if len(password) < 6 {
470			errors = append(errors, "Password is too short")
471		}
472		username := strings.ToLower(r.Form.Get("username"))
473		err := isOkUsername(username)
474		if err != nil {
475			errors = append(errors, err.Error())
476		}
477		hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), 8) // TODO handle error
478		if err != nil {
479			panic(err)
480		}
481		reference := r.Form.Get("reference")
482		if len(errors) == 0 {
483			_, err = DB.Exec("insert into user (username, email, password_hash, reference) values ($1, $2, $3, $4)", username, email, string(hashedPassword), reference)
484			if err != nil {
485				errors = append(errors, "Username or email is already used")
486			}
487		}
488		if len(errors) > 0 {
489			data := struct {
490				Config Config
491				Errors []string
492			}{c, errors}
493			t.ExecuteTemplate(w, "register.html", data)
494		} else {
495			data := struct {
496				Config  Config
497				Message string
498				Title   string
499			}{c, "Registration complete! The server admin will approve your request before you can log in.", "Registration Complete"}
500			t.ExecuteTemplate(w, "message.html", data)
501		}
502	}
503}
504
505func deleteFileHandler(w http.ResponseWriter, r *http.Request) {
506	user := newGetAuthUser(r)
507	if !user.LoggedIn {
508		renderDefaultError(w, http.StatusForbidden)
509		return
510	}
511	filePath := safeGetFilePath(user.Username, r.URL.Path[len("/delete/"):])
512	if r.Method == "POST" {
513		os.Remove(filePath) // TODO handle error
514	}
515	http.Redirect(w, r, "/my_site", http.StatusSeeOther)
516}
517
518func adminHandler(w http.ResponseWriter, r *http.Request) {
519	user := newGetAuthUser(r)
520	if !user.IsAdmin {
521		renderDefaultError(w, http.StatusForbidden)
522		return
523	}
524	allUsers, err := getUsers()
525	if err != nil {
526		log.Println(err)
527		renderDefaultError(w, http.StatusInternalServerError)
528		return
529	}
530	data := struct {
531		Users    []User
532		AuthUser AuthUser
533		Config   Config
534	}{allUsers, user, c}
535	err = t.ExecuteTemplate(w, "admin.html", data)
536	if err != nil {
537		panic(err)
538	}
539}
540
541func getFavicon(user string) string {
542	faviconPath := path.Join(c.FilesDirectory, filepath.Clean(user), "favicon.txt")
543	content, err := ioutil.ReadFile(faviconPath)
544	if err != nil {
545		return ""
546	}
547	strcontent := []rune(string(content))
548	if len(strcontent) > 0 {
549		return string(strcontent[0])
550	}
551	return ""
552}
553
554// Server a user's file
555// TODO replace with gemini proxy
556// Here be dragons
557func userFile(w http.ResponseWriter, r *http.Request) {
558	var userName string
559	custom := domains[r.Host]
560	if custom != "" {
561		userName = custom
562	} else {
563		userName = filepath.Clean(strings.Split(r.Host, ".")[0]) // Clean probably unnecessary
564	}
565	p := filepath.Clean(r.URL.Path)
566	var isDir bool
567	fullPath := path.Join(c.FilesDirectory, userName, p) // TODO rename filepath
568	stat, err := os.Stat(fullPath)
569	if stat != nil {
570		isDir = stat.IsDir()
571	}
572	if strings.HasSuffix(p, "index.gmi") {
573		http.Redirect(w, r, path.Dir(p), http.StatusMovedPermanently)
574	}
575
576	if strings.HasPrefix(p, "/"+HiddenFolder) {
577		renderDefaultError(w, http.StatusForbidden)
578		return
579	}
580	if r.URL.Path == "/gemlog/atom.xml" && os.IsNotExist(err) {
581		w.Header().Set("Content-Type", "application/atom+xml")
582		// TODO set always somehow
583		feed := generateFeedFromUser(userName)
584		atomString := feed.toAtomFeed()
585		io.Copy(w, strings.NewReader(atomString))
586		return
587	}
588
589	var geminiContent string
590	_, err = os.Stat(path.Join(fullPath, "index.gmi"))
591	if isDir {
592		// redirect slash
593		if !strings.HasSuffix(r.URL.Path, "/") {
594			http.Redirect(w, r, p+"/", http.StatusSeeOther)
595		}
596		if os.IsNotExist(err) {
597			if p == "/gemlog" {
598				geminiContent = generateGemfeedPage(userName)
599			} else {
600				geminiContent = generateFolderPage(fullPath)
601			}
602		} else {
603			fullPath = path.Join(fullPath, "index.gmi")
604		}
605	}
606	if geminiContent == "" && os.IsNotExist(err) {
607		renderDefaultError(w, http.StatusNotFound)
608		return
609	}
610	// Dumb content negotiation
611	_, raw := r.URL.Query()["raw"]
612	acceptsGemini := strings.Contains(r.Header.Get("Accept"), "text/gemini")
613	if !raw && !acceptsGemini && (isGemini(fullPath) || geminiContent != "") {
614		var htmlString string
615		if geminiContent == "" {
616			file, _ := os.Open(fullPath)
617			htmlString = textToHTML(nil, gmi.ParseText(file))
618			defer file.Close()
619		} else {
620			htmlString = textToHTML(nil, gmi.ParseText(strings.NewReader(geminiContent)))
621		}
622		favicon := getFavicon(userName)
623		hostname := strings.Split(r.Host, ":")[0]
624		uri := url.URL{
625			Scheme: "gemini",
626			Host:   hostname,
627			Path:   p,
628		}
629		data := struct {
630			SiteBody  template.HTML
631			Favicon   string
632			PageTitle string
633			URI       *url.URL
634		}{template.HTML(htmlString), favicon, userName + p, &uri}
635		err = t.ExecuteTemplate(w, "user_page.html", data)
636		if err != nil {
637			panic(err)
638		}
639	} else {
640		http.ServeFile(w, r, fullPath)
641	}
642}
643
644func deleteAccountHandler(w http.ResponseWriter, r *http.Request) {
645	user := newGetAuthUser(r)
646	if r.Method == "POST" {
647		r.ParseForm()
648		validate := r.Form.Get("validate-delete")
649		if validate == user.Username {
650			err := deleteUser(user.Username)
651			if err != nil {
652				log.Println(err)
653				renderDefaultError(w, http.StatusInternalServerError)
654				return
655			}
656			logoutHandler(w, r)
657		} else {
658			http.Redirect(w, r, "/me", http.StatusSeeOther)
659		}
660	}
661}
662
663func resetPasswordHandler(w http.ResponseWriter, r *http.Request) {
664	user := newGetAuthUser(r)
665	data := struct {
666		Config   Config
667		AuthUser AuthUser
668		Error    string
669	}{c, user, ""}
670	if r.Method == "GET" {
671		err := t.ExecuteTemplate(w, "reset_pass.html", data)
672		if err != nil {
673			panic(err)
674		}
675	} else if r.Method == "POST" {
676		r.ParseForm()
677		enteredCurrPass := r.Form.Get("password")
678		password1 := r.Form.Get("new_password1")
679		password2 := r.Form.Get("new_password2")
680		if password1 != password2 {
681			data.Error = "New passwords do not match"
682		} else if len(password1) < 6 {
683			data.Error = "Password is too short"
684		} else {
685			err := checkAuth(user.Username, enteredCurrPass)
686			if err == nil {
687				hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password1), 8)
688				if err != nil {
689					panic(err)
690				}
691				_, err = DB.Exec("update user set password_hash = ? where username = ?", hashedPassword, user.Username)
692				if err != nil {
693					panic(err)
694				}
695				log.Printf("User %s reset password", user.Username)
696				http.Redirect(w, r, "/me", http.StatusSeeOther)
697				return
698			} else {
699				data.Error = "That's not your current password"
700			}
701		}
702		err := t.ExecuteTemplate(w, "reset_pass.html", data)
703		if err != nil {
704			panic(err)
705		}
706	}
707}
708
709func adminUserHandler(w http.ResponseWriter, r *http.Request) {
710	user := newGetAuthUser(r)
711	if r.Method == "POST" {
712		if !user.IsAdmin {
713			renderDefaultError(w, http.StatusForbidden)
714			return
715		}
716		components := strings.Split(r.URL.Path, "/")
717		if len(components) < 5 {
718			renderError(w, "Invalid action", http.StatusBadRequest)
719			return
720		}
721		userName := components[3]
722		action := components[4]
723		var err error
724		if action == "activate" {
725			err = activateUser(userName)
726		} else if action == "impersonate" {
727			if user.ImpersonatingUser != "" {
728				// Don't allow nested impersonation
729				renderError(w, "Cannot nest impersonation, log out from impersonated user first.", 400)
730				return
731			}
732			session, _ := SessionStore.Get(r, "cookie-session")
733			session.Values["auth_user"] = userName
734			session.Values["impersonating_user"] = user.Username
735			session.Save(r, w)
736			log.Printf("User %s impersonated %s", user.Username, userName)
737			http.Redirect(w, r, "/", http.StatusSeeOther)
738			return
739		}
740		if err != nil {
741			log.Println(err)
742			renderDefaultError(w, http.StatusInternalServerError)
743			return
744		}
745		http.Redirect(w, r, "/admin", http.StatusSeeOther)
746	}
747}
748
749func checkDomainHandler(w http.ResponseWriter, r *http.Request) {
750	domain := r.URL.Query().Get("domain")
751	if domain != "" && domains[domain] != "" {
752		w.Write([]byte(domain))
753		return
754	}
755	http.Error(w, "Not Found", 404)
756}
757func runHTTPServer() {
758	log.Printf("Running http server with hostname %s on port %d.", c.Host, c.HttpPort)
759	var err error
760	t = template.New("main").Funcs(template.FuncMap{"parent": path.Dir})
761	t, err = t.ParseGlob(path.Join(c.TemplatesDirectory, "*.html"))
762	if err != nil {
763		log.Fatal(err)
764	}
765	serveMux := http.NewServeMux()
766
767	s := strings.SplitN(c.Host, ":", 2)
768	hostname := s[0]
769	port := c.HttpPort
770
771	serveMux.HandleFunc(hostname+"/", rootHandler)
772	serveMux.HandleFunc(hostname+"/feed", feedHandler)
773	serveMux.HandleFunc(hostname+"/my_site", mySiteHandler)
774	serveMux.HandleFunc(hostname+"/me", myAccountHandler)
775	serveMux.HandleFunc(hostname+"/my_site/flounder-archive.zip", archiveHandler)
776	serveMux.HandleFunc(hostname+"/admin", adminHandler)
777	serveMux.HandleFunc(hostname+"/edit/", editFileHandler)
778	serveMux.HandleFunc(hostname+"/upload", uploadFilesHandler)
779	serveMux.Handle(hostname+"/login", limit(http.HandlerFunc(loginHandler)))
780	serveMux.Handle(hostname+"/register", limit(http.HandlerFunc(registerHandler)))
781	serveMux.HandleFunc(hostname+"/logout", logoutHandler)
782	serveMux.HandleFunc(hostname+"/delete/", deleteFileHandler)
783	serveMux.HandleFunc(hostname+"/delete-account", deleteAccountHandler)
784	serveMux.HandleFunc(hostname+"/reset-password", resetPasswordHandler)
785
786	// Check domain -- used by caddy
787	serveMux.HandleFunc(hostname+"/check-domain", checkDomainHandler)
788
789	// admin commands
790	serveMux.HandleFunc(hostname+"/admin/user/", adminUserHandler)
791
792	serveMux.HandleFunc(hostname+"/webdav/", webdavHandler)
793
794	wrapped := handlers.CustomLoggingHandler(log.Writer(), handlers.RecoveryHandler()(serveMux), logFormatter)
795
796	// handle user files based on subdomain
797	// also routes to proxy
798	serveMux.HandleFunc("proxy."+hostname+"/", proxyGemini) // eg. proxy.flounder.online
799	serveMux.HandleFunc("/", userFile)
800	// login+register functions
801	srv := &http.Server{
802		ReadTimeout:  5 * time.Second,
803		WriteTimeout: 10 * time.Second,
804		IdleTimeout:  120 * time.Second,
805		Addr:         fmt.Sprintf(":%d", port),
806		// TLSConfig:    tlsConfig,
807		Handler: wrapped,
808	}
809	log.Fatal(srv.ListenAndServe())
810}