Feat: sign file source url

2026-01-26 09:34:57 +08:00 · 2019-12-10 17:10:34 +08:00
parent 1963a495fb
commit 36d5f51495
15 changed files with 174 additions and 47 deletions
--- a/routers/controllers/file.go
+++ b/routers/controllers/file.go
@@ -5,6 +5,7 @@ import (
 	"context"
 	"github.com/HFO4/cloudreve/models"
 	"github.com/HFO4/cloudreve/pkg/filesystem"
+	"github.com/HFO4/cloudreve/pkg/filesystem/fsctx"
 	"github.com/HFO4/cloudreve/pkg/filesystem/local"
 	"github.com/HFO4/cloudreve/pkg/serializer"
 	"github.com/HFO4/cloudreve/pkg/util"
@@ -15,6 +16,11 @@ import (
 	"strconv"
 )

+// AnonymousGetContent 匿名获取文件资源
+func AnonymousGetContent(c *gin.Context) {
+	c.JSON(200, serializer.Response{})
+}
+
 // GetSource 获取文件的外链地址
 func GetSource(c *gin.Context) {
 	// 创建上下文
@@ -152,7 +158,7 @@ func FileUploadStream(c *gin.Context) {
 	fs.Use("AfterValidateFailed", filesystem.HookGiveBackCapacity)

 	// 执行上传
-	uploadCtx := context.WithValue(ctx, filesystem.GinCtx, c)
+	uploadCtx := context.WithValue(ctx, fsctx.GinCtx, c)
 	err = fs.Upload(uploadCtx, fileData)
 	if err != nil {
 		c.JSON(200, serializer.Err(serializer.CodeUploadFailed, err.Error(), err))
--- a/routers/router.go
+++ b/routers/router.go
@@ -39,23 +39,37 @@ func InitRouter() *gin.Engine {
 	*/
 	v3 := r.Group("/api/v3")
 	{
-		// 测试用路由
-		v3.GET("site/ping", controllers.Ping)
-
-		// 不需要登录的用户相关路由
+		// 全局设置相关
+		site := v3.Group("site")
 		{
-			// 用户登录
-			v3.POST("user/session", controllers.UserLogin)
-			// WebAuthn登陆初始化
-			v3.GET("user/authn/:username", controllers.StartLoginAuthn)
-			// WebAuthn登陆
-			v3.POST("user/authn/finish/:username", controllers.FinishLoginAuthn)
+			// 测试用路由
+			site.GET("ping", controllers.Ping)
+			// 验证码
+			site.GET("captcha", controllers.Captcha)
+			// 站点全局配置
+			site.GET("config", controllers.SiteConfig)
 		}

-		// 验证码
-		v3.GET("captcha", controllers.Captcha)
-		// 站点全局配置
-		v3.GET("site/config", controllers.SiteConfig)
+		// 用户相关路由
+		user := v3.Group("user")
+		{
+			// 用户登录
+			user.POST("session", controllers.UserLogin)
+			// WebAuthn登陆初始化
+			user.GET("authn/:username", controllers.StartLoginAuthn)
+			// WebAuthn登陆
+			user.POST("authn/finish/:username", controllers.FinishLoginAuthn)
+		}
+
+		// 需要携带签名验证的
+		sign := v3.Group("")
+		sign.Use(middleware.SignRequired())
+		{
+			file := sign.Group("file")
+			{
+				file.GET("get/:id/:name", controllers.AnonymousGetContent)
+			}
+		}

 		// 需要登录保护的
 		auth := v3.Group("")