mirror of
https://github.com/go-vikunja/vikunja.git
synced 2026-02-01 22:47:40 +00:00
731b7c3001
Fixes a bug where the webhook HTTP client was mutating `http.DefaultClient` (the global singleton), causing ALL HTTP requests in the application to use the webhook proxy. This broke OIDC authentication and other external HTTP calls when webhook proxy was configured. Fixes #2144
83 lines
3.0 KiB
Go
83 lines
3.0 KiB
Go
// Vikunja is a to-do list application to facilitate your life.
|
|
// Copyright 2018-present Vikunja and contributors. All rights reserved.
|
|
//
|
|
// This program is free software: you can redistribute it and/or modify
|
|
// it under the terms of the GNU Affero General Public License as published by
|
|
// the Free Software Foundation, either version 3 of the License, or
|
|
// (at your option) any later version.
|
|
//
|
|
// This program is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU Affero General Public License for more details.
|
|
//
|
|
// You should have received a copy of the GNU Affero General Public License
|
|
// along with this program. If not, see <https://www.gnu.org/licenses/>.
|
|
|
|
package unsplash
|
|
|
|
import (
|
|
"context"
|
|
"net/http"
|
|
"strings"
|
|
|
|
"github.com/labstack/echo/v4"
|
|
)
|
|
|
|
func unsplashImage(url string, c echo.Context) error {
|
|
// Replacing and appending the url for security reasons
|
|
req, err := http.NewRequestWithContext(context.Background(), http.MethodGet, "https://images.unsplash.com/"+strings.Replace(url, "https://images.unsplash.com/", "", 1), nil)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
resp, err := (&http.Client{}).Do(req)
|
|
if err != nil {
|
|
return err
|
|
}
|
|
defer resp.Body.Close()
|
|
if resp.StatusCode > 399 {
|
|
return echo.ErrNotFound
|
|
}
|
|
return c.Stream(http.StatusOK, "image/jpg", resp.Body)
|
|
}
|
|
|
|
// ProxyUnsplashImage proxies a thumbnail from unsplash for privacy reasons.
|
|
// @Summary Get an unsplash image
|
|
// @Description Get an unsplash image. **Returns json on error.**
|
|
// @tags project
|
|
// @Produce octet-stream
|
|
// @Param image path int true "Unsplash Image ID"
|
|
// @Security JWTKeyAuth
|
|
// @Success 200 {file} blob "The image"
|
|
// @Failure 404 {object} models.Message "The image does not exist."
|
|
// @Failure 500 {object} models.Message "Internal error"
|
|
// @Router /backgrounds/unsplash/image/{image} [get]
|
|
func ProxyUnsplashImage(c echo.Context) error {
|
|
photo, err := getUnsplashPhotoInfoByID(c.Param("image"))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
pingbackByPhotoID(photo.ID)
|
|
return unsplashImage(photo.Urls.Raw, c)
|
|
}
|
|
|
|
// ProxyUnsplashThumb proxies a thumbnail from unsplash for privacy reasons.
|
|
// @Summary Get an unsplash thumbnail image
|
|
// @Description Get an unsplash thumbnail image. The thumbnail is cropped to a max width of 200px. **Returns json on error.**
|
|
// @tags project
|
|
// @Produce octet-stream
|
|
// @Param image path int true "Unsplash Image ID"
|
|
// @Security JWTKeyAuth
|
|
// @Success 200 {file} blob "The thumbnail"
|
|
// @Failure 404 {object} models.Message "The image does not exist."
|
|
// @Failure 500 {object} models.Message "Internal error"
|
|
// @Router /backgrounds/unsplash/image/{image}/thumb [get]
|
|
func ProxyUnsplashThumb(c echo.Context) error {
|
|
photo, err := getUnsplashPhotoInfoByID(c.Param("image"))
|
|
if err != nil {
|
|
return err
|
|
}
|
|
pingbackByPhotoID(photo.ID)
|
|
return unsplashImage("https://images.unsplash.com/"+getImageID(photo.Urls.Raw)+"?ixlib=rb-1.2.1&q=80&fm=jpg&crop=entropy&cs=tinysrgb&w=200&fit=max&ixid=eyJhcHBfaWQiOjcyODAwfQ", c)
|
|
}
|