all repos — flounder @ c0eb142b022116e58d16ed5462a4966110419a19

A small site builder for the Gemini protocol

http.go (view raw)

  1package main
  2
  3import (
  4	"bytes"
  5	"fmt"
  6	gmi "git.sr.ht/~adnano/go-gemini"
  7	"github.com/gorilla/handlers"
  8	"github.com/gorilla/sessions"
  9	_ "github.com/mattn/go-sqlite3"
 10	"golang.org/x/crypto/bcrypt"
 11	"html/template"
 12	"io"
 13	"io/ioutil"
 14	"log"
 15	"net/http"
 16	"net/url"
 17	"os"
 18	"path"
 19	"path/filepath"
 20	"strings"
 21	"time"
 22)
 23
 24var t *template.Template
 25var SessionStore *sessions.CookieStore
 26
 27func renderDefaultError(w http.ResponseWriter, statusCode int) {
 28	errorMsg := http.StatusText(statusCode)
 29	renderError(w, errorMsg, statusCode)
 30}
 31
 32func renderError(w http.ResponseWriter, errorMsg string, statusCode int) {
 33	data := struct {
 34		StatusCode int
 35		ErrorMsg   string
 36		Config     Config
 37	}{statusCode, errorMsg, c}
 38	err := t.ExecuteTemplate(w, "error.html", data)
 39	if err != nil { // Shouldn't happen probably
 40		http.Error(w, errorMsg, statusCode)
 41	}
 42}
 43
 44func rootHandler(w http.ResponseWriter, r *http.Request) {
 45	// serve everything inside static directory
 46	if r.URL.Path != "/" {
 47		fileName := path.Join(c.TemplatesDirectory, "static", filepath.Clean(r.URL.Path))
 48		_, err := os.Stat(fileName)
 49		if err != nil {
 50			renderDefaultError(w, http.StatusNotFound)
 51			return
 52		}
 53		http.ServeFile(w, r, fileName) // TODO better error handling
 54		return
 55	}
 56
 57	user := newGetAuthUser(r)
 58	indexFiles, err := getIndexFiles(user.IsAdmin)
 59	if err != nil {
 60		panic(err)
 61	}
 62	allUsers, err := getActiveUserNames()
 63	if err != nil {
 64		panic(err)
 65	}
 66	data := struct {
 67		Config   Config
 68		AuthUser AuthUser
 69		Files    []*File
 70		Users    []string
 71	}{c, user, indexFiles, allUsers}
 72	err = t.ExecuteTemplate(w, "index.html", data)
 73	if err != nil {
 74		panic(err)
 75	}
 76}
 77
 78func feedHandler(w http.ResponseWriter, r *http.Request) {
 79	user := newGetAuthUser(r)
 80	feedEntries, feeds, err := getAllGemfeedEntries()
 81	if err != nil {
 82		panic(err)
 83	}
 84	data := struct {
 85		Config      Config
 86		FeedEntries []FeedEntry
 87		Feeds       []Gemfeed
 88		AuthUser    AuthUser
 89	}{c, feedEntries, feeds, user}
 90	err = t.ExecuteTemplate(w, "feed.html", data)
 91	if err != nil {
 92		panic(err)
 93	}
 94}
 95
 96func editFileHandler(w http.ResponseWriter, r *http.Request) {
 97	user := newGetAuthUser(r)
 98	if !user.LoggedIn {
 99		renderDefaultError(w, http.StatusForbidden)
100		return
101	}
102	fileName := filepath.Clean(r.URL.Path[len("/edit/"):])
103	filePath := path.Join(c.FilesDirectory, user.Username, fileName)
104	isText := isTextFile(filePath)
105	alert := ""
106	var warnings []string
107	if r.Method == "POST" {
108		// get post body
109		r.ParseForm()
110		fileText := r.Form.Get("file_text")
111		// Web form by default gives us CR LF newlines.
112		// Unix files use just LF
113		fileText = strings.ReplaceAll(fileText, "\r\n", "\n")
114		fileBytes := []byte(fileText)
115		err := checkIfValidFile(filePath, fileBytes)
116		if err != nil {
117			log.Println(err)
118			renderError(w, err.Error(), http.StatusBadRequest)
119			return
120		}
121		sfl := getSchemedFlounderLinkLines(strings.NewReader(fileText))
122		if len(sfl) > 0 {
123			warnings = append(warnings, "Warning! Some of your links to flounder pages use schemas. This means that they may break when viewed in Gemini or over HTTPS. Plase remove gemini: or https: from the start of these links:\n")
124			for _, l := range sfl {
125				warnings = append(warnings, l)
126			}
127		}
128		// create directories if dne
129		os.MkdirAll(path.Dir(filePath), os.ModePerm)
130		if userHasSpace(user.Username, len(fileBytes)) {
131			if isText { // Cant edit binary files here
132				err = ioutil.WriteFile(filePath, fileBytes, 0644)
133			}
134		} else {
135			renderError(w, fmt.Sprintf("Bad Request: Out of file space. Max space: %d.", c.MaxUserBytes), http.StatusBadRequest)
136			return
137		}
138		if err != nil {
139			panic(err)
140		}
141		alert = "saved"
142		newName := filepath.Clean(r.Form.Get("rename"))
143		err = checkIfValidFile(newName, fileBytes)
144		if err != nil {
145			log.Println(err)
146			renderError(w, err.Error(), http.StatusBadRequest)
147			return
148		}
149		if newName != fileName {
150			newPath := path.Join(c.FilesDirectory, user.Username, newName)
151			os.MkdirAll(path.Dir(newPath), os.ModePerm)
152			os.Rename(filePath, newPath)
153			fileName = newName
154			filePath = newPath
155			alert += " and renamed"
156		}
157	}
158
159	err := checkIfValidFile(filePath, nil)
160	if err != nil {
161		log.Println(err)
162		renderError(w, err.Error(), http.StatusBadRequest)
163		return
164	}
165	// Create directories if dne
166	f, err := os.OpenFile(filePath, os.O_RDONLY, 0644)
167	var fileBytes []byte
168	if os.IsNotExist(err) || !isText {
169		fileBytes = []byte{}
170		err = nil
171	} else {
172		defer f.Close()
173		fileBytes, err = ioutil.ReadAll(f)
174	}
175	if err != nil {
176		panic(err)
177	}
178	data := struct {
179		FileName string
180		FileText string
181		Config   Config
182		AuthUser AuthUser
183		Host     string
184		IsText   bool
185		IsGemini bool
186		IsGemlog bool
187		Alert    string
188		Warnings []string
189	}{fileName, string(fileBytes), c, user, c.Host, isText, isGemini(fileName), strings.HasPrefix(fileName, "gemlog"), alert, warnings}
190	err = t.ExecuteTemplate(w, "edit_file.html", data)
191	if err != nil {
192		panic(err)
193	}
194}
195
196func uploadFilesHandler(w http.ResponseWriter, r *http.Request) {
197	if r.Method == "POST" {
198		user := newGetAuthUser(r)
199		if !user.LoggedIn {
200			renderDefaultError(w, http.StatusForbidden)
201			return
202		}
203		r.ParseMultipartForm(10 << 6) // why does this not work
204		file, fileHeader, err := r.FormFile("file")
205		fileName := filepath.Clean(fileHeader.Filename)
206		defer file.Close()
207		if err != nil {
208			log.Println(err)
209			renderError(w, err.Error(), http.StatusBadRequest)
210			return
211		}
212		dest, _ := ioutil.ReadAll(file)
213		err = checkIfValidFile(fileName, dest)
214		if err != nil {
215			log.Println(err)
216			renderError(w, err.Error(), http.StatusBadRequest)
217			return
218		}
219		destPath := path.Join(c.FilesDirectory, user.Username, fileName)
220
221		f, err := os.OpenFile(destPath, os.O_WRONLY|os.O_CREATE, 0644)
222		if err != nil {
223			panic(err)
224		}
225		defer f.Close()
226		if userHasSpace(user.Username, c.MaxFileBytes) { // Not quite right
227			io.Copy(f, bytes.NewReader(dest))
228		} else {
229			renderError(w, fmt.Sprintf("Bad Request: Out of file space. Max space: %d.", c.MaxUserBytes), http.StatusBadRequest)
230			return
231		}
232	}
233	http.Redirect(w, r, "/my_site", http.StatusSeeOther)
234}
235
236type AuthUser struct {
237	LoggedIn          bool
238	Username          string
239	IsAdmin           bool
240	ImpersonatingUser string // used if impersonating
241}
242
243func newGetAuthUser(r *http.Request) AuthUser {
244	session, _ := SessionStore.Get(r, "cookie-session")
245	user, ok := session.Values["auth_user"].(string)
246	impers, _ := session.Values["impersonating_user"].(string)
247	isAdmin, _ := session.Values["admin"].(bool)
248	return AuthUser{
249		LoggedIn:          ok,
250		Username:          user,
251		IsAdmin:           isAdmin,
252		ImpersonatingUser: impers,
253	}
254}
255
256func mySiteHandler(w http.ResponseWriter, r *http.Request) {
257	user := newGetAuthUser(r)
258	if !user.LoggedIn {
259		renderDefaultError(w, http.StatusForbidden)
260		return
261	}
262	// check auth
263	userFolder := getUserDirectory(user.Username)
264	files, _ := getMyFilesRecursive(userFolder, user.Username)
265	currentDate := time.Now().Format("2006-01-02")
266	data := struct {
267		Config      Config
268		Files       []File
269		AuthUser    AuthUser
270		CurrentDate string
271	}{c, files, user, currentDate}
272	_ = t.ExecuteTemplate(w, "my_site.html", data)
273}
274
275func myAccountHandler(w http.ResponseWriter, r *http.Request) {
276	user := newGetAuthUser(r)
277	authUser := user.Username
278	if !user.LoggedIn {
279		renderDefaultError(w, http.StatusForbidden)
280		return
281	}
282	me, _ := getUserByName(user.Username)
283	type pageData struct {
284		Config   Config
285		AuthUser AuthUser
286		MyUser   *User
287		Errors   []string
288	}
289	data := pageData{c, user, me, nil}
290
291	if r.Method == "GET" {
292		err := t.ExecuteTemplate(w, "me.html", data)
293		if err != nil {
294			panic(err)
295		}
296	} else if r.Method == "POST" {
297		r.ParseForm()
298		newUsername := r.Form.Get("username")
299		errors := []string{}
300		newEmail := r.Form.Get("email")
301		newDomain := r.Form.Get("domain")
302		newUsername = strings.ToLower(newUsername)
303		var err error
304		_, exists := domains[newDomain]
305		if newDomain != me.Domain && !exists {
306			_, err = DB.Exec("update user set domain = ? where username = ?", newDomain, me.Username) // TODO use transaction
307			if err != nil {
308				errors = append(errors, err.Error())
309			} else {
310				refreshDomainMap()
311				log.Printf("Changed domain for %s from %s to %s", authUser, me.Domain, newDomain)
312			}
313		}
314		if newEmail != me.Email {
315			_, err = DB.Exec("update user set email = ? where username = ?", newEmail, me.Username)
316			if err != nil {
317				// TODO better error not sql
318				errors = append(errors, err.Error())
319			} else {
320				log.Printf("Changed email for %s from %s to %s", authUser, me.Email, newEmail)
321			}
322		}
323		if newUsername != authUser {
324			// Rename User
325			err = renameUser(authUser, newUsername)
326			if err != nil {
327				log.Println(err)
328				errors = append(errors, "Could not rename user")
329			} else {
330				session, _ := SessionStore.Get(r, "cookie-session")
331				session.Values["auth_user"] = newUsername
332				session.Save(r, w)
333			}
334		}
335		// reset auth
336		user = newGetAuthUser(r)
337		data.Errors = errors
338		data.AuthUser = user
339		data.MyUser.Email = newEmail
340		data.MyUser.Domain = newDomain
341		_ = t.ExecuteTemplate(w, "me.html", data)
342	}
343}
344
345func archiveHandler(w http.ResponseWriter, r *http.Request) {
346	authUser := newGetAuthUser(r)
347	if !authUser.LoggedIn {
348		renderDefaultError(w, http.StatusForbidden)
349		return
350	}
351	if r.Method == "GET" {
352		userFolder := getUserDirectory(authUser.Username)
353		err := zipit(userFolder, w)
354		if err != nil {
355			panic(err)
356		}
357
358	}
359}
360func loginHandler(w http.ResponseWriter, r *http.Request) {
361	if r.Method == "GET" {
362		// show page
363		data := struct {
364			Error  string
365			Config Config
366		}{"", c}
367		err := t.ExecuteTemplate(w, "login.html", data)
368		if err != nil {
369			panic(err)
370		}
371	} else if r.Method == "POST" {
372		r.ParseForm()
373		name := r.Form.Get("username")
374		password := r.Form.Get("password")
375		row := DB.QueryRow("SELECT username, password_hash, active, admin FROM user where username = $1 OR email = $1", name)
376		var db_password []byte
377		var username string
378		var active bool
379		var isAdmin bool
380		err := row.Scan(&username, &db_password, &active, &isAdmin)
381		if err != nil {
382			panic(err)
383		}
384		if db_password != nil && !active {
385			data := struct {
386				Error  string
387				Config Config
388			}{"Your account is not active yet. Pending admin approval", c}
389			t.ExecuteTemplate(w, "login.html", data)
390			return
391		}
392		if bcrypt.CompareHashAndPassword(db_password, []byte(password)) == nil {
393			log.Println("logged in")
394			session, _ := SessionStore.Get(r, "cookie-session")
395			session.Values["auth_user"] = username
396			session.Values["admin"] = isAdmin
397			session.Save(r, w)
398			http.Redirect(w, r, "/my_site", http.StatusSeeOther)
399		} else {
400			data := struct {
401				Error  string
402				Config Config
403			}{"Invalid login or password", c}
404			err := t.ExecuteTemplate(w, "login.html", data)
405			if err != nil {
406				panic(err)
407			}
408		}
409	}
410}
411
412func logoutHandler(w http.ResponseWriter, r *http.Request) {
413	session, _ := SessionStore.Get(r, "cookie-session")
414	impers, ok := session.Values["impersonating_user"].(string)
415	if ok {
416		session.Values["auth_user"] = impers
417		session.Values["impersonating_user"] = nil // TODO expire this automatically
418		// session.Values["admin"] = nil // TODO fix admin
419	} else {
420		session.Options.MaxAge = -1
421	}
422	session.Save(r, w)
423	http.Redirect(w, r, "/", http.StatusSeeOther)
424}
425
426const ok = "-0123456789abcdefghijklmnopqrstuvwxyz"
427
428func isOkUsername(s string) error {
429	if len(s) < 1 {
430		return fmt.Errorf("Username is too short")
431	}
432	if len(s) > 32 {
433		return fmt.Errorf("Username is too long. 32 char max.")
434	}
435	for _, char := range s {
436		if !strings.Contains(ok, strings.ToLower(string(char))) {
437			return fmt.Errorf("Username contains invalid characters. Valid characters include lowercase letters, numbers, and hyphens.")
438		}
439	}
440	return nil
441}
442func registerHandler(w http.ResponseWriter, r *http.Request) {
443	if r.Method == "GET" {
444		data := struct {
445			Errors []string
446			Config Config
447		}{nil, c}
448		err := t.ExecuteTemplate(w, "register.html", data)
449		if err != nil {
450			panic(err)
451		}
452	} else if r.Method == "POST" {
453		r.ParseForm()
454		email := r.Form.Get("email")
455		password := r.Form.Get("password")
456		errors := []string{}
457		if r.Form.Get("password") != r.Form.Get("password2") {
458			errors = append(errors, "Passwords don't match")
459		}
460		if len(password) < 6 {
461			errors = append(errors, "Password is too short")
462		}
463		username := strings.ToLower(r.Form.Get("username"))
464		err := isOkUsername(username)
465		if err != nil {
466			errors = append(errors, err.Error())
467		}
468		hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password), 8) // TODO handle error
469		if err != nil {
470			panic(err)
471		}
472		reference := r.Form.Get("reference")
473		if len(errors) == 0 {
474			_, err = DB.Exec("insert into user (username, email, password_hash, reference) values ($1, $2, $3, $4)", username, email, string(hashedPassword), reference)
475			if err != nil {
476				errors = append(errors, "Username or email is already used")
477			}
478		}
479		if len(errors) > 0 {
480			data := struct {
481				Config Config
482				Errors []string
483			}{c, errors}
484			t.ExecuteTemplate(w, "register.html", data)
485		} else {
486			data := struct {
487				Config  Config
488				Message string
489				Title   string
490			}{c, "Registration complete! The server admin will approve your request before you can log in.", "Registration Complete"}
491			t.ExecuteTemplate(w, "message.html", data)
492		}
493	}
494}
495
496func deleteFileHandler(w http.ResponseWriter, r *http.Request) {
497	user := newGetAuthUser(r)
498	if !user.LoggedIn {
499		renderDefaultError(w, http.StatusForbidden)
500		return
501	}
502	filePath := safeGetFilePath(user.Username, r.URL.Path[len("/delete/"):])
503	if r.Method == "POST" {
504		os.Remove(filePath) // TODO handle error
505	}
506	http.Redirect(w, r, "/my_site", http.StatusSeeOther)
507}
508
509func adminHandler(w http.ResponseWriter, r *http.Request) {
510	user := newGetAuthUser(r)
511	if !user.IsAdmin {
512		renderDefaultError(w, http.StatusForbidden)
513		return
514	}
515	allUsers, err := getUsers()
516	if err != nil {
517		log.Println(err)
518		renderDefaultError(w, http.StatusInternalServerError)
519		return
520	}
521	data := struct {
522		Users    []User
523		AuthUser AuthUser
524		Config   Config
525	}{allUsers, user, c}
526	err = t.ExecuteTemplate(w, "admin.html", data)
527	if err != nil {
528		panic(err)
529	}
530}
531
532func getFavicon(user string) string {
533	faviconPath := path.Join(c.FilesDirectory, filepath.Clean(user), "favicon.txt")
534	content, err := ioutil.ReadFile(faviconPath)
535	if err != nil {
536		return ""
537	}
538	strcontent := []rune(string(content))
539	if len(strcontent) > 0 {
540		return string(strcontent[0])
541	}
542	return ""
543}
544
545// Server a user's file
546// TODO replace with gemini proxy
547// Here be dragons
548func userFile(w http.ResponseWriter, r *http.Request) {
549	var userName string
550	custom := domains[r.Host]
551	if custom != "" {
552		userName = custom
553	} else {
554		userName = filepath.Clean(strings.Split(r.Host, ".")[0]) // Clean probably unnecessary
555	}
556	p := filepath.Clean(r.URL.Path)
557	var isDir bool
558	fullPath := path.Join(c.FilesDirectory, userName, p) // TODO rename filepath
559	stat, err := os.Stat(fullPath)
560	if stat != nil {
561		isDir = stat.IsDir()
562	}
563	if strings.HasSuffix(p, "index.gmi") {
564		http.Redirect(w, r, path.Dir(p), http.StatusMovedPermanently)
565	}
566
567	if strings.HasPrefix(p, "/"+HiddenFolder) {
568		renderDefaultError(w, http.StatusForbidden)
569		return
570	}
571	if r.URL.Path == "/gemlog/atom.xml" && os.IsNotExist(err) {
572		w.Header().Set("Content-Type", "application/atom+xml")
573		// TODO set always somehow
574		feed := generateFeedFromUser(userName)
575		atomString := feed.toAtomFeed()
576		io.Copy(w, strings.NewReader(atomString))
577		return
578	}
579
580	var geminiContent string
581	_, err = os.Stat(path.Join(fullPath, "index.gmi"))
582	if isDir {
583		// redirect slash
584		if !strings.HasSuffix(r.URL.Path, "/") {
585			http.Redirect(w, r, p+"/", http.StatusSeeOther)
586		}
587		if os.IsNotExist(err) {
588			if p == "/gemlog" {
589				geminiContent = generateGemfeedPage(userName)
590			} else {
591				geminiContent = generateFolderPage(fullPath)
592			}
593		} else {
594			fullPath = path.Join(fullPath, "index.gmi")
595		}
596	}
597	if geminiContent == "" && os.IsNotExist(err) {
598		renderDefaultError(w, http.StatusNotFound)
599		return
600	}
601	// Dumb content negotiation
602	_, raw := r.URL.Query()["raw"]
603	acceptsGemini := strings.Contains(r.Header.Get("Accept"), "text/gemini")
604	if !raw && !acceptsGemini && (isGemini(fullPath) || geminiContent != "") {
605		var htmlString string
606		if geminiContent == "" {
607			file, _ := os.Open(fullPath)
608			htmlString = textToHTML(nil, gmi.ParseText(file))
609			defer file.Close()
610		} else {
611			htmlString = textToHTML(nil, gmi.ParseText(strings.NewReader(geminiContent)))
612		}
613		favicon := getFavicon(userName)
614		hostname := strings.Split(r.Host, ":")[0]
615		uri := url.URL{
616			Scheme: "gemini",
617			Host:   hostname,
618			Path:   p,
619		}
620		data := struct {
621			SiteBody  template.HTML
622			Favicon   string
623			PageTitle string
624			URI       *url.URL
625		}{template.HTML(htmlString), favicon, userName + p, &uri}
626		err = t.ExecuteTemplate(w, "user_page.html", data)
627		if err != nil {
628			panic(err)
629		}
630	} else {
631		http.ServeFile(w, r, fullPath)
632	}
633}
634
635func deleteAccountHandler(w http.ResponseWriter, r *http.Request) {
636	user := newGetAuthUser(r)
637	if r.Method == "POST" {
638		r.ParseForm()
639		validate := r.Form.Get("validate-delete")
640		if validate == user.Username {
641			err := deleteUser(user.Username)
642			if err != nil {
643				log.Println(err)
644				renderDefaultError(w, http.StatusInternalServerError)
645				return
646			}
647			logoutHandler(w, r)
648		} else {
649			http.Redirect(w, r, "/me", http.StatusSeeOther)
650		}
651	}
652}
653
654func resetPasswordHandler(w http.ResponseWriter, r *http.Request) {
655	user := newGetAuthUser(r)
656	data := struct {
657		Config   Config
658		AuthUser AuthUser
659		Error    string
660	}{c, user, ""}
661	if r.Method == "GET" {
662		err := t.ExecuteTemplate(w, "reset_pass.html", data)
663		if err != nil {
664			panic(err)
665		}
666	} else if r.Method == "POST" {
667		r.ParseForm()
668		enteredCurrPass := r.Form.Get("password")
669		password1 := r.Form.Get("new_password1")
670		password2 := r.Form.Get("new_password2")
671		if password1 != password2 {
672			data.Error = "New passwords do not match"
673		} else if len(password1) < 6 {
674			data.Error = "Password is too short"
675		} else {
676			err := checkAuth(user.Username, enteredCurrPass)
677			if err == nil {
678				hashedPassword, err := bcrypt.GenerateFromPassword([]byte(password1), 8)
679				if err != nil {
680					panic(err)
681				}
682				_, err = DB.Exec("update user set password_hash = ? where username = ?", hashedPassword, user.Username)
683				if err != nil {
684					panic(err)
685				}
686				log.Printf("User %s reset password", user.Username)
687				http.Redirect(w, r, "/me", http.StatusSeeOther)
688				return
689			} else {
690				data.Error = "That's not your current password"
691			}
692		}
693		err := t.ExecuteTemplate(w, "reset_pass.html", data)
694		if err != nil {
695			panic(err)
696		}
697	}
698}
699
700func adminUserHandler(w http.ResponseWriter, r *http.Request) {
701	user := newGetAuthUser(r)
702	if r.Method == "POST" {
703		if !user.IsAdmin {
704			renderDefaultError(w, http.StatusForbidden)
705			return
706		}
707		components := strings.Split(r.URL.Path, "/")
708		if len(components) < 5 {
709			renderError(w, "Invalid action", http.StatusBadRequest)
710			return
711		}
712		userName := components[3]
713		action := components[4]
714		var err error
715		if action == "activate" {
716			err = activateUser(userName)
717		} else if action == "impersonate" {
718			if user.ImpersonatingUser != "" {
719				// Don't allow nested impersonation
720				renderError(w, "Cannot nest impersonation, log out from impersonated user first.", 400)
721				return
722			}
723			session, _ := SessionStore.Get(r, "cookie-session")
724			session.Values["auth_user"] = userName
725			session.Values["impersonating_user"] = user.Username
726			session.Save(r, w)
727			log.Printf("User %s impersonated %s", user.Username, userName)
728			http.Redirect(w, r, "/", http.StatusSeeOther)
729			return
730		}
731		if err != nil {
732			log.Println(err)
733			renderDefaultError(w, http.StatusInternalServerError)
734			return
735		}
736		http.Redirect(w, r, "/admin", http.StatusSeeOther)
737	}
738}
739
740func checkDomainHandler(w http.ResponseWriter, r *http.Request) {
741	domain := r.URL.Query().Get("domain")
742	if domain != "" && domains[domain] != "" {
743		w.Write([]byte(domain))
744		return
745	}
746	http.Error(w, "Not Found", 404)
747}
748func runHTTPServer() {
749	log.Printf("Running http server with hostname %s on port %d.", c.Host, c.HttpPort)
750	var err error
751	t = template.New("main").Funcs(template.FuncMap{"parent": path.Dir})
752	t, err = t.ParseGlob(path.Join(c.TemplatesDirectory, "*.html"))
753	if err != nil {
754		log.Fatal(err)
755	}
756	serveMux := http.NewServeMux()
757
758	s := strings.SplitN(c.Host, ":", 2)
759	hostname := s[0]
760	port := c.HttpPort
761
762	serveMux.HandleFunc(hostname+"/", rootHandler)
763	serveMux.HandleFunc(hostname+"/feed", feedHandler)
764	serveMux.HandleFunc(hostname+"/my_site", mySiteHandler)
765	serveMux.HandleFunc(hostname+"/me", myAccountHandler)
766	serveMux.HandleFunc(hostname+"/my_site/flounder-archive.zip", archiveHandler)
767	serveMux.HandleFunc(hostname+"/admin", adminHandler)
768	serveMux.HandleFunc(hostname+"/edit/", editFileHandler)
769	serveMux.HandleFunc(hostname+"/upload", uploadFilesHandler)
770	serveMux.Handle(hostname+"/login", limit(http.HandlerFunc(loginHandler)))
771	serveMux.Handle(hostname+"/register", limit(http.HandlerFunc(registerHandler)))
772	serveMux.HandleFunc(hostname+"/logout", logoutHandler)
773	serveMux.HandleFunc(hostname+"/delete/", deleteFileHandler)
774	serveMux.HandleFunc(hostname+"/delete-account", deleteAccountHandler)
775	serveMux.HandleFunc(hostname+"/reset-password", resetPasswordHandler)
776
777	// Check domain -- used by caddy
778	serveMux.HandleFunc(hostname+"/check-domain", checkDomainHandler)
779
780	// admin commands
781	serveMux.HandleFunc(hostname+"/admin/user/", adminUserHandler)
782	// TODO authentication
783	serveMux.HandleFunc(hostname+"/webdav/", webdavHandler)
784
785	wrapped := handlers.CustomLoggingHandler(log.Writer(), handlers.RecoveryHandler()(serveMux), logFormatter)
786
787	// handle user files based on subdomain
788	// also routes to proxy
789	serveMux.HandleFunc("proxy."+hostname+"/", proxyGemini) // eg. proxy.flounder.online
790	serveMux.HandleFunc("/", userFile)
791	// login+register functions
792	srv := &http.Server{
793		ReadTimeout:  5 * time.Second,
794		WriteTimeout: 10 * time.Second,
795		IdleTimeout:  120 * time.Second,
796		Addr:         fmt.Sprintf(":%d", port),
797		// TLSConfig:    tlsConfig,
798		Handler: wrapped,
799	}
800	log.Fatal(srv.ListenAndServe())
801}