j2rong4cn
5f60b51cf8
feat: add proxy_range option for 139Yun Alias AList V3 ( #6496 )
2024-05-22 23:31:42 +08:00
itsHenry
7e7b9b9b48
feat(s3): server support generated url request ( #6431 )
2024-05-09 14:28:59 +08:00
potoo
479fc6d466
fix(webdav): make sure Mtime after Ctime ( #6372 close #6371 )
...
* fix(server/webdav) make sure Mtime >= Ctime
* fix(server/webdav) avoid variable 'stream' collides with imported package name
2024-04-24 17:13:30 +08:00
itsHenry
58c3cb3cf6
fix(s3): don't bind s3 port if s3 is not enabled ( #6291 )
2024-04-03 10:09:48 +08:00
guangwu
2880ed70ce
fix: some typos ( #6283 )
...
Signed-off-by: guoguangwu <guoguangwug@gmail.com>
2024-04-02 16:50:30 +08:00
itsHenry
9c84b6596f
feat: stand-alone port s3 server ( #6242 )
...
* feat: single port s3 server
* fix: unable to PUT files if not in root dir
2024-03-24 15:16:00 +08:00
itsHenry
bdfc1591bd
fix: webauthn logspam ( #6181 )
2024-03-10 16:48:25 +08:00
itsHenry
d0f88bd1cb
feat: s3 server support ( #6088 close #5186 )
...
Currently tested: List, Get, Remove
2024-03-02 15:35:10 +08:00
wolfsilver
f8b1f87a5f
fix: support for Microsoft WebDAV ( #6133 close #6104 )
...
* Add support for Microsoft WebDAV
* add import
2024-03-02 14:59:55 +08:00
不插电
53926d5cd0
fix(search): duplicate folder on autoupdate ( #6063 close #6062 )
...
* fix(search): the problem of not returning in time when index does not support auto update.
* fix(search): the problem of duplicate indexing of folders.
2024-02-20 19:12:07 +08:00
ArcticLampyrid
e49fda3e2a
fix: WebDAV's creation date should use RFC3339 format ( #6015 close #5878 )
2024-02-08 19:22:29 +08:00
Andy Hsu
da5e35578a
fix: embed all files of dist
2024-02-03 19:44:50 +08:00
睿音
9bd3c87bcc
fix(ldap): exiting by peer exception occurred during the TLS connection( #5977 )
2024-02-01 10:43:08 +08:00
Jing
c82866975e
fix: error on repeated reading static ( #5957 )
...
* Update static.go
* rm initial value of static
---------
Co-authored-by: Andy Hsu <i@nn.ci>
2024-01-30 21:21:53 +08:00
Andy Hsu
4f7761fe2c
fix: set progress to 100 when it's NaN ( close #5906 )
2024-01-20 13:06:46 +08:00
Andy Hsu
57bac9e0d2
fix: some missing regexp lib modified
2024-01-01 18:44:59 +08:00
Guobao
697a0ed2d3
feat: add ldap login support ( #5706 )
...
* feat: add ldap login support
* fix: ldap permission config group
2023-12-31 13:46:13 +08:00
Feng.YJ
3eca38e599
feat: add support for client-side discoverable WebAuthn login ( #5722 )
...
* Add support for client-side discoverable in begin login
Use `(*webauthn.WebAuthn).BeginDiscoverableLogin()` to handle client-side discoverable login.
* Upgrade github.com/go-webauthn/webauthn to v0.10.0
Upgrade [go-webauthn/webauthn](github.com/go-webauthn/webauthn) library to latest.
The convenient finish login function (as FinishDiscoverableLogin) for discoverable functions has been added in the v0.9.0. [^1]
---
[^1]: https://github.com/go-webauthn/webauthn/releases/tag/v0.9.0
* Add support for client-side discoverable in validating login
Use `(*webauthn.WebAuthn).FinishDiscoverableLogin()` to handle client-side discoverable login.
> **NOTE**:
- The first param `rawID` in this callback function is unnecessary to check, it's handled by the third-party webauthn library later.
- `userHandle` param is equal to the ID returned by (User).WebAuthnID() function.
2023-12-24 15:21:17 +08:00
Andy Hsu
296be88b5f
fix: incorrect key of oidc username ( close #5670 )
2023-12-10 13:17:56 +08:00
Andy Hsu
026e944cbb
feat: add task info to resp of add task api ( close #5579 )
2023-12-03 14:44:20 +08:00
Kuingsmile
f4dcf4599c
fix: add error handling for webdav mkcol according to RFC 4918 ( #5581 )
...
* feat: add error handling for mkcol method in webdav.go
* feat: update rfc reference
* fix: fix issue with uncorrect error handling
2023-11-27 18:53:52 +08:00
Andy Hsu
d26887d211
fix: content-type conflicts with #5420
2023-11-24 19:22:19 +08:00
Andy Hsu
3f405de6a9
feat: customize allow origins, headers and methods
2023-11-24 19:18:34 +08:00
Andy Hsu
6100647310
fix: reflected XSS vulnerability plist api
2023-11-24 16:46:48 +08:00
Andy Hsu
b2890f05ab
feat: retry all failed task ( close #5242 )
2023-11-21 15:54:42 +08:00
Andy Hsu
7583c4d734
feat: customize workers and retry of task ( close #5493 fix #5274 )
2023-11-21 15:51:57 +08:00
Andy Hsu
11a30c5044
feat: refactor task module
2023-11-20 18:01:51 +08:00
Andy Hsu
de9647a5fa
chore: remove useless code
2023-11-19 20:05:09 +08:00
MuGu
867accafd1
fix(local): video file thumbnails not displaying on iOS Safari ( #5420 )
...
* perf(webdav): support for cookies on webdav drive
* fix(local): video file thumbnails not displaying on iOS Safari
2023-11-18 22:36:41 +08:00
Andy Hsu
6fc6751463
feat: support using external dist files ( close #5531 )
2023-11-18 19:56:22 +08:00
Andy Hsu
3d51845f57
feat: invalidate old token after changing the password ( close #5515 )
2023-11-13 15:22:42 +08:00
Andy Hsu
4355dae491
fix: incorrect content-type of apk files ( close #5385 )
2023-11-06 18:20:25 +08:00
Andy Hsu
769281bd40
feat: refactor offline download ( #5408 close #4108 )
...
* wip: refactor offline download (#5331 )
* base tool
* working: aria2
* refactor: change type of percentage to float64
* wip: adapt aria2
* wip: use items in offline_download
* wip: use tool manager
* wip: adapt qBittorrent
* chore: fix typo
* Squashed commit of the following:
commit 4fc0a77565close #5392 )
commit aaffaee2b5#5391 )
commit 8ef8023c20#5398 )
commit cdfbe6dcf2#5394 )
commit 94d028743a7f7335435c#5373 close #5348 )
* feat(cloudreve): support thumbnail
* chore: remove unnecessary code
commit b9e192b29c#5367 close #5275 )
* fix(115):limit request rate
* chore(115): fix unit of `limit_rate`
---------
Co-authored-by: Andy Hsu <i@nn.ci>
commit 69a98eaef6#5141 )
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
commit 1ebc96a4e5close #5352 )
commit 66e2324cac7600dc28dfclose #5358 )
commit 8ef89ad0a4#5356 )
* fix(baidu):hash and error:2
* fix:invalid memory address
commit 35d672217d#5346 )
commit 1a283bb272#5334 )
commit a008f54f4d#5329 ) [skip ci]
* fix: adapt update progress type
* Squashed commit of the following:
commit 65c5ec0c34#5457 close #5395 )
commit a6325967d0#5234 )
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
commit 4dff49470a#5366 )
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
commit cc86d6f3d1#5370 )
Co-authored-by: renovate[bot] <29139614+renovate[bot]@users.noreply.github.com>
commit c0f9c8ebafclose #5434 )
2023-11-06 16:56:55 +08:00
Andy Hsu
c0f9c8ebaf
feat: add ignore direct link params ( close #5434 )
2023-10-26 19:21:09 +08:00
Andy Hsu
9ff83a7950
feat: add header to meta (ref #5317 )
2023-10-02 16:43:29 +08:00
Andy Hsu
e719a1a456
feat(sso): custom username key for OIDC ( close #5169 )
2023-10-02 14:42:40 +08:00
itsHenry
30977cdc6d
feat: sso compatibility mode ( #5260 )
2023-09-22 16:45:51 +08:00
Andy Hsu
882112ed1c
feat: add hash_info field to /fs/get ( close #5259 )
2023-09-22 15:20:04 +08:00
Andy Hsu
352a6a741a
feat(webdav): support copy directly without task ( close #5206 )
2023-09-13 15:45:57 +08:00
Andy Hsu
3504f017b9
fix(upload): memory leak on form upload as task ( close #5185 )
2023-09-07 15:51:52 +08:00
Andy Hsu
cd2f8077fa
chore: enable all pprof handle on debug
2023-09-07 14:56:50 +08:00
Andy Hsu
d5b68a91d2
fix(webdav): optimize HEAD request ( close #5182 )
2023-09-06 16:32:51 +08:00
Andy Hsu
6f6d20e1ba
fix: force_https not take effect on noRoute ( close #5167 )
2023-09-05 13:05:46 +08:00
Sean
e7c0d94b44
fix: form upload when ticked As A Task ( #5145 )
2023-09-03 15:40:40 +08:00
Andy Hsu
34fadecc2c
fix(ftp): dead lock on Read ( close #5128 )
2023-08-31 15:10:47 +08:00
Sean
6308f1c35d
fix: updateTime, createTime and HashInfo ( #5111 )
2023-08-29 13:31:24 +08:00
Andy Hsu
ce10c9f120
fix: temp file not close and incorrect WebPutAsTask
2023-08-28 18:18:02 +08:00
Andy Hsu
6c4736fc8f
fix: allow no Last-Modified on upload api
2023-08-28 16:42:03 +08:00
Andy Hsu
19d34e2eb8
feat: receive lastModified from upload api
2023-08-27 23:03:09 +08:00
Sean
a3748af772
feat: misc improvements about upload/copy/hash ( #5045 )
...
general: add createTime/updateTime support in webdav and some drivers
general: add hash support in some drivers
general: cross-storage rapid-upload support
general: enhance upload to avoid local temp file if possible
general: replace readseekcloser with File interface to speed upstream operations
feat(aliyun_open): same as above
feat(crypt): add hack for 139cloud
Close #4934
Close #4819
baidu_netdisk needs to improve the upload code to support rapid-upload
2023-08-27 21:14:23 +08:00
itsHenry
1aa024ed6b
feat: support webauthn login ( #4945 )
...
* feat: support webauthn login
* manually merge
* fix: clear user cache after updating authn
* decrease db size of Authn
* change authn type to text
* simplify code structure
---------
Co-authored-by: Andy Hsu <i@nn.ci>
2023-08-14 22:54:38 +08:00
Andy Hsu
5606c23768
perf(copy): use multi-thread downloader ( close #5000 )
2023-08-13 15:31:49 +08:00
Andy Hsu
a797494aa3
fix: missed update user's password
2023-08-07 18:51:54 +08:00
Andy Hsu
1c00d64952
feat: rehash password with a unique salt for each user
2023-08-07 15:46:19 +08:00
Andy Hsu
ff5cf3f4fa
feat: allow use token to access WebDAV
2023-08-07 14:38:50 +08:00
Andy Hsu
75acbcc115
perf: sha256 for user's password ( close #3552 )
2023-08-06 22:09:17 +08:00
Andy Hsu
30415cefbe
perf: delete user cache after cancel 2FA
2023-08-06 20:47:58 +08:00
Sean
15b7169df4
perf: multi-thread downloader, Content-Disposition ( #4921 )
...
general: enhance multi-thread downloader with cancelable context, immediately stop all stream processes when canceled;
feat(crypt): improve stream closing;
general: fix the bug of downloading files becomes previewing stream on modern browsers;
Co-authored-by: Sean He <866155+seanhe26@users.noreply.github.com>
Co-authored-by: Andy Hsu <i@nn.ci>
2023-08-04 15:29:54 +08:00
Sean
3c21a9a520
feat: Crypt driver, improve http/webdav handling ( #4884 )
...
this PR has several enhancements, fixes, and features:
- [x] Crypt: a transparent encryption driver. Anyone can easily, and safely store encrypted data on the remote storage provider. Consider your data is safely stored in the safe, and the storage provider can only see the safe, but not your data.
- [x] Optional: compatible with [Rclone Crypt](https://rclone.org/crypt/ ). More ways to manipulate the encrypted data.
- [x] directory and filename encryption
- [x] server-side encryption mode (server encrypts & decrypts all data, all data flows thru the server)
- [x] obfuscate sensitive information internally
- [x] introduced a server memory-cached multi-thread downloader.
- [x] Driver: **Quark** enabled this feature, faster load in any single thread scenario. e.g. media player directly playing from the link, now it's faster.
- [x] general improvement on HTTP/WebDAV stream processing & header handling & response handling
- [x] Driver: **Mega** driver support ranged http header
- [x] Driver: **Quark** fix bug of not closing HTTP request to Quark server while user end has closed connection to alist
## Crypt, a transparent Encrypt/Decrypt Driver. (Rclone Crypt compatible)
e.g.
Crypt mount path -> /vault
Crypt remote path -> /ali/encrypted
Aliyun mount paht -> /ali
when the user uploads a.jpg to /vault, the data will be encrypted and saved to /ali/encrypted/xxxxx. And when the user wants to access a.jpg, it's automatically decrypted, and the user can do anything with it.
Since it's Rclone Crypt compatible, users can download /ali/encrypted/xxxxx and decrypt it with rclone crypt tool. Or the user can mount this folder using rclone, then mount the decrypted folder in Linux...
NB. Some breaking changes is made to make it follow global standard, e.g. processing the HTTP header properly.
close #4679
close #4827
Co-authored-by: Sean He <866155+seanhe26@users.noreply.github.com>
Co-authored-by: Andy Hsu <i@nn.ci>
2023-08-02 14:40:36 +08:00
WintBit
de8f9e9eee
feat: SSO auto register ( close #4692 in #4795 )
...
Co-authored-by: Andy Hsu <i@nn.ci>
2023-07-20 16:30:30 +08:00
Andy Hsu
3f8b3da52b
feat(server): add HEAD method support ( close #4740 )
2023-07-11 13:47:49 +08:00
Andy Hsu
8bdc67ec3d
fix(webdav): return 404 if error happened on handlePropfind
2023-07-05 13:52:21 +08:00
Andy Hsu
7d20a01dba
feat!: support listen to the unix ( close #4671 )
...
Starting from this commit, the HTTP server related config all move to the scheme
2023-07-04 17:56:02 +08:00
Andy Hsu
59dbf4496f
feat(offline_download): try to init client if not ready ( close #4674 )
2023-07-03 22:57:42 +08:00
vickunwu
12f40608e6
fix(oidc): use TOTP as state verification to replace the static 'state' parameter ( #4665 )
2023-07-03 22:41:08 +08:00
walloo
e9c74f9959
fix: regexp rename error ( close #4644 in #4653 )
...
Co-authored-by: Andy Hsu <i@nn.ci>
2023-06-26 15:15:57 +08:00
BoYanZh
f646d2a699
feat!: listen to both http & https ( #4536 )
...
Co-authored-by: Andy Hsu <i@nn.ci>
2023-06-11 18:17:37 +08:00
Mg Pig
881d6e271e
feat: add OIDC single sign-on ( #4496 )
...
close #3914
close #4315
2023-06-02 18:22:07 +08:00
Andy Hsu
b2f5757f8d
fix(copy): copy from driver that return writer ( close #4291 )
2023-05-26 21:57:43 +08:00
Noah Hsu
571bcf07b0
fix(alias): add api prefix for proxy url ( close #4392 )
2023-05-19 00:12:57 +08:00
XYUU
a3446720a2
fix: make TlsInsecureSkipVerify enable for all request ( #4386 )
2023-05-14 17:05:47 +08:00
Andy Hsu
5be79eb26e
feat: add robots.txt setting ( close #4303 )
2023-05-12 16:53:15 +08:00
hsluoyz
f8fb48fb32
fix: cannot connect to Casdoor SSO ( close #4266 in #4274 )
2023-05-01 15:32:34 +08:00
longxu0509
2bae8e129e
feat: add Casdoor single sign-on ( #4222 )
2023-04-26 16:01:40 +08:00
Andy Hsu
8711f2a1c5
feat(quark): shard request file ( close #4175 )
2023-04-17 15:33:38 +08:00
Andy Hsu
7f35aab071
revert(quark): remove preset range header
2023-04-17 14:39:21 +08:00
Andy Hsu
ecd167d2f9
feat(quark): add preset range header ( close #4166 )
2023-04-16 19:26:03 +08:00
varg1714
220fd30830
fix: the recursive subdirectory moving bug ( #4171 )
2023-04-16 16:08:12 +08:00
varg1714
46f9aefb04
feat: empty folder clear API [ckip ci] ( #4132 )
...
* 增加清理空文件夹API
* 修复嵌套文件夹删除Bug
Author: varg247 <varg247@gmail.com>
---------
Co-authored-by: varg247 <varg247@qq.com>
2023-04-13 15:39:21 +08:00
Andy Hsu
0f8a84f67e
perf(alias): disabled log on fs call ( close #4054 )
2023-04-07 00:02:07 +08:00
Andy Hsu
3b07c72f88
fix(proxy): ignore Referer if got redirect ( close #3996 )
2023-03-31 20:29:55 +08:00
Andy Hsu
86beadc0ed
fix: missed sign with enable sign_all ( close #3957 )
2023-03-26 16:19:01 +08:00
BaiYi
112363031a
feat: add fine-grained control for link signing ( #3924 )
...
* Determine whether the URL requires Sign
* Add File and Mem based KV
NOT TESTED: TokenKV Function
* Change Token KV func to common func.
Add File based KV func
* Remove KV, Remove Token
I found that the original Sign function is enough to complete the link signature, and only need to add simple configuration items to meet the requirements.
* Add IsStorageSigned func to judge if Signing is enabled in the storage settings.
It should be working now.
* Add a SIGN button to the management panel.
* Add enable_sign to the basic storage struct.
Can enable sign for every driver now.
Bug: When sign enabled, in download page, Copy link doesn't contain a sign.
(Not done yet)
* Fix a bug from commit 8f6c25f
2023-03-24 22:44:33 +08:00
XZB-1248
0eab31bdf5
fix(local): filename with whitespace issue ( #3928 )
...
* fix(local): filename whitespace problem
* fix(deps): remove deprecated package io/ioutil
---------
Co-authored-by: XZB <i@1248.ink>
2023-03-23 15:18:37 +08:00
zhengxiexie
c6af22b97e
feat: add thumbnail to fs/get api ( #3927 )
2023-03-23 13:59:39 +08:00
Brian
8c0defce09
feat(task): add clear succeeded and retry ( #3856 close #3776 )
2023-03-16 15:56:27 +08:00
Andy Hsu
d9795ff22f
feat(alias): support proxy and direct together
2023-03-14 13:46:27 +08:00
XZB-1248
c4108007cd
fix: spaces in filename will be replaced with plus sign ( #3841 )
...
Co-authored-by: XZB <i@1248.ink>
2023-03-14 12:27:42 +08:00
Brian
f3db23a41e
feat(qbittorrent): add offline download seed time ( #3842 close #3588 )
2023-03-14 12:13:23 +08:00
varg1714
1091e1b740
feat: file aggregation and regular rename api ( #3788 )
...
* 增加文件聚合接口,将给定文件夹下所有文件移动到目标文件夹。
* 增加文件正则重命名接口。
---------
Co-authored-by: varg247 <varg247@qq.com>
2023-03-10 19:01:49 +08:00
Andy Hsu
43de823058
fix: path IsApply check ( close #3784 )
2023-03-09 21:03:56 +08:00
Andy Hsu
ebcbb29a0f
feat: ping api ( close #3752 )
2023-03-07 19:05:52 +08:00
Andy Hsu
3d3f23ec9e
fix: upload check if disable sub folder ( close #3741 )
2023-03-07 14:13:39 +08:00
NewbieOrange
d484219c48
fix(security): compare auth token in constant time ( #3740 close #3739 )
2023-03-06 23:41:06 +08:00
Andy Hsu
12a095a1d6
fix: slice bounds out of range on CanAccess check
2023-03-05 15:29:53 +08:00
itsHenry
603681fbe6
feat: rebuild Single sign-on system ( #3649 close #3571 )
...
* rebuild single sign on system
* perf: use cache
* fix: codefactor check
---------
Co-authored-by: Andy Hsu <i@nn.ci>
2023-03-02 17:55:33 +08:00
Andy Hsu
ca9e739465
fix: hide apply to sub path without enable ( close #3661 )
2023-02-28 18:43:52 +08:00
Karbob
93dd768234
fix(webdav): disabled is not working in webdav ( #3659 )
...
A disabled user with webdav permission can use webdav normally, which is not allowed.
2023-02-28 18:26:13 +08:00
Andy Hsu
0d3146b51d
fix(webdav): disable put with empty path ( close #3569 )
2023-02-23 21:19:50 +08:00
Andy Hsu
28aee8c493
feat: add aliyundrive open driver ( #3437 )
...
close #3533
close #3521
close #3459
close #3375
* feat: add aliyundrive open driver
* feat: adapt alist api
* fix: trailing spaces
* feat(aliyundrive_open): video preview api
2023-02-23 20:45:57 +08:00
