Northern_Lights/alist
1
0
Fork 0
mirror of https://github.com/AlistGo/alist.git synced 2025-12-19 02:50:06 +08:00
Code Issues Actions 1 Packages Projects Releases Wiki Activity

feat(driver): Add URL signing support (#9347)
Some checks failed
auto_lang / auto generate lang.json (1.21, ubuntu-latest) (push) Has been cancelled
Details
beta release / Beta Release Changelog (1.21, ubuntu-latest) (push) Has been cancelled
Details
build / Build (ubuntu-latest, android-arm64) (push) Has been cancelled
Details
build / Build (ubuntu-latest, darwin-amd64) (push) Has been cancelled
Details
build / Build (ubuntu-latest, darwin-arm64) (push) Has been cancelled
Details
build / Build (ubuntu-latest, linux-amd64-musl) (push) Has been cancelled
Details
build / Build (ubuntu-latest, linux-arm64-musl) (push) Has been cancelled
Details
build / Build (ubuntu-latest, windows-amd64) (push) Has been cancelled
Details
build / Build (ubuntu-latest, windows-arm64) (push) Has been cancelled
Details
release_docker / Build Binaries for Docker Release (push) Has been cancelled
Details
beta release / Beta Release (md5, !(*musl*|*windows-arm64*|*android*|*freebsd*)) (push) Has been cancelled
Details
beta release / Beta Release (md5-android, android-*) (push) Has been cancelled
Details
beta release / Beta Release (md5-freebsd, freebsd-*) (push) Has been cancelled
Details
beta release / Beta Release (md5-linux-musl, linux-!(arm*)-musl*) (push) Has been cancelled
Details
beta release / Beta Release (md5-linux-musl-arm, linux-arm*-musl*) (push) Has been cancelled
Details
beta release / Beta Release (md5-windows-arm64, windows-arm64) (push) Has been cancelled
Details
beta release / Beta Release Desktop (push) Has been cancelled
Details
release_docker / Release Docker image (, latest, ) (push) Has been cancelled
Details
release_docker / Release Docker image (INSTALL_ARIA2=true, aria2, suffix=-aria2,onlatest=true) (push) Has been cancelled
Details
release_docker / Release Docker image (INSTALL_FFMPEG=true INSTALL_ARIA2=true , aio, suffix=-aio,onlatest=true) (push) Has been cancelled
Details
release_docker / Release Docker image (INSTALL_FFMPEG=true, ffmpeg, suffix=-ffmpeg,onlatest=true) (push) Has been cancelled
Details
Close inactive / close-inactive (push) Has been cancelled
Details

Browse Source 
Introduces the ability to sign generated URLs for enhanced security and access control.

This feature is activated by configuring a `PrivateKey`, `UID`, and `ValidDuration` in the driver settings. If a private key is provided, the driver will sign the output URLs, making them time-limited based on the `ValidDuration`. The `ValidDuration` defaults to 30 minutes if not specified.

The core signing logic is encapsulated in the new `sign.go` file. The `driver.go` file integrates this signing process before returning the final URL.
This commit is contained in:
千石 2025-10-11 04:14:13 -07:00 committed by GitHub
parent 81a7f28ba2
commit 35d322443b
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
3 changed files with 50 additions and 3 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

19
drivers/123_open/driver.go
View File

@ -11,6 +11,7 @@ import (
"github.com/go-resty/resty/v2" "github.com/go-resty/resty/v2"
"net/http" "net/http"
"strconv" "strconv"
"time"
) )
type Open123 struct { type Open123 struct {
@ -89,8 +90,24 @@ func (d *Open123) Link(ctx context.Context, file model.Obj, args model.LinkArgs)
return nil, fmt.Errorf("get link failed: %s", result.Message) return nil, fmt.Errorf("get link failed: %s", result.Message)
} }
linkURL := result.Data.URL
if d.PrivateKey != "" {
if d.UID == 0 {
return nil, fmt.Errorf("uid is required when private key is set")
}
duration := time.Duration(d.ValidDuration)
if duration <= 0 {
duration = 30
}
signedURL, err := SignURL(linkURL, d.PrivateKey, d.UID, duration*time.Minute)
if err != nil {
return nil, err
}
linkURL = signedURL
}
return &model.Link{ return &model.Link{
URL: result.Data.URL, URL: linkURL,
}, nil }, nil
} }

7
drivers/123_open/meta.go
View File

@ -8,8 +8,11 @@ import (
type Addition struct { type Addition struct {
driver.RootID driver.RootID
ClientID string `json:"client_id" required:"true" label:"Client ID"` ClientID string `json:"client_id" required:"true" label:"Client ID"`
ClientSecret string `json:"client_secret" required:"true" label:"Client Secret"` ClientSecret string `json:"client_secret" required:"true" label:"Client Secret"`
PrivateKey string `json:"private_key"`
UID uint64 `json:"uid" type:"number"`
ValidDuration int64 `json:"valid_duration" type:"number" default:"30" help:"minutes"`
} }
var config = driver.Config{ var config = driver.Config{

27
drivers/123_open/sign.go Normal file
View File

@ -0,0 +1,27 @@
package _123Open
import (
"crypto/md5"
"fmt"
"math/rand"
"net/url"
"time"
)
func SignURL(originURL, privateKey string, uid uint64, validDuration time.Duration) (string, error) {
if privateKey == "" {
return originURL, nil
}
parsed, err := url.Parse(originURL)
if err != nil {
return "", err
}
ts := time.Now().Add(validDuration).Unix()
randInt := rand.Int()
signature := fmt.Sprintf("%d-%d-%d-%x", ts, randInt, uid, md5.Sum([]byte(fmt.Sprintf("%s-%d-%d-%d-%s",
parsed.Path, ts, randInt, uid, privateKey))))
query := parsed.Query()
query.Add("auth_key", signature)
parsed.RawQuery = query.Encode()
return parsed.String(), nil
}