UltiSuite/ultisuite-backend
UltiSuite/ultisuite-backend
1
0
Fork 0
Code Issues Pull Requests Actions 1 Packages Projects Releases Wiki Activity
c36416bdb4
ultisuite-backend/internal/api/admin/public_shares.go
R3D347HR4Y 621b0099d6
Some checks are pending
CI / Go tests (push) Waiting to run
Details
CI / Integration tests (push) Waiting to run
Details
CI / DB migrations (push) Waiting to run
Details
feat(deploy): enhance Nginx configuration and API integration for UltiAI 
- Updated .env.example to include new configuration options for the UltiAI branding and API endpoints.
- Enhanced Nginx configuration to support new API routes for the MCP and WebSocket connections.
- Introduced sub-filters for branding adjustments in Nginx responses.
- Added new JavaScript patch for API endpoint adjustments.
- Implemented tests for new API functionalities and improved error handling in the AI gateway.
2026-06-15 00:22:23 +02:00

260 lines
6.3 KiB
Go
Raw Blame History

package admin
import (
"context"
"sort"
"strings"
"time"
"github.com/ultisuite/ulti-backend/internal/api/query"
"github.com/ultisuite/ulti-backend/internal/nextcloud"
"github.com/ultisuite/ulti-backend/internal/publicshare"
)
type PublicSharesList struct {
Shares []map[string]any `json:"shares"`
Pagination query.PaginationMeta `json:"pagination,omitempty"`
}
func (s *Service) ListPublicShares(ctx context.Context, params query.ListParams) (PublicSharesList, error) {
if s.nc == nil {
return PublicSharesList{
Shares: []map[string]any{},
Pagination: params.Meta(ptrInt64(0)),
}, nil
}
rows, err := s.db.Query(ctx, `
SELECT email, external_id FROM users WHERE status != 'disabled'
`)
if err != nil {
return PublicSharesList{}, err
}
defer rows.Close()
type platformUser struct {
email string
externalID string
}
users := make([]platformUser, 0)
for rows.Next() {
var u platformUser
if err := rows.Scan(&u.email, &u.externalID); err != nil {
return PublicSharesList{}, err
}
users = append(users, u)
}
if err := rows.Err(); err != nil {
return PublicSharesList{}, err
}
q := strings.ToLower(strings.TrimSpace(params.Q))
all := make([]map[string]any, 0)
for _, u := range users {
ncUser := nextcloud.UserIDFromClaims(u.email, u.externalID)
if ncUser == "" {
continue
}
shares, err := s.nc.ListShares(ctx, ncUser, "")
if err != nil {
s.logger.Debug("list shares for admin audit", "nc_user", ncUser, "error", err)
continue
}
for _, share := range shares {
if !nextcloud.IsExternalShare(share) {
continue
}
if q != "" && !publicShareMatchesQuery(share, u.email, q) {
continue
}
entry := map[string]any{
"id": share.ID,
"token": share.Token,
"path": share.Path,
"item_type": share.ItemType,
"access_mode": share.AccessMode,
"share_type": share.ShareType,
"permissions": share.Permissions,
"url": share.URL,
"expires_at": share.ExpiresAt,
"created_at": share.CreatedAt,
"owner_nc_user_id": ncUser,
"owner_email": strings.ToLower(strings.TrimSpace(u.email)),
"owner_display_name": firstNonEmptyStr(share.OwnerDisplayName, share.FileOwnerDisplayName),
"share_with": share.ShareWith,
"share_with_display_name": share.ShareWithDisplayName,
"has_password": share.HasPassword,
"label": share.Label,
}
all = append(all, entry)
}
}
tokens := make([]string, 0, len(all))
for _, item := range all {
if t, _ := item["token"].(string); t != "" {
tokens = append(tokens, t)
}
}
access, err := publicshare.Lookup(ctx, s.db, tokens)
if err != nil {
return PublicSharesList{}, err
}
for _, item := range all {
token, _ := item["token"].(string)
if stats, ok := access[token]; ok {
item["last_access_at"] = stats.LastAccessAt.UTC().Format(time.RFC3339)
item["access_count"] = stats.AccessCount
} else {
item["last_access_at"] = nil
item["access_count"] = int64(0)
}
}
sortPublicShares(all, params.Sort)
total := int64(len(all))
start := params.Offset()
if start > len(all) {
start = len(all)
}
end := start + params.Limit()
if end > len(all) {
end = len(all)
}
page := all[start:end]
return PublicSharesList{
Shares: page,
Pagination: params.Meta(&total),
}, nil
}
func (s *Service) RevokePublicShare(ctx context.Context, actorSub, shareID, ownerNCUserID string) error {
if s.nc == nil {
return ErrNotFound
}
shareID = strings.TrimSpace(shareID)
ownerNCUserID = strings.TrimSpace(ownerNCUserID)
if shareID == "" || ownerNCUserID == "" {
return ErrNotFound
}
if err := s.nc.DeleteShare(ctx, ownerNCUserID, shareID); err != nil {
return err
}
s.logAudit(ctx, actorSub, "revoke_public_share", map[string]any{
"share_id": shareID,
"owner_nc_user_id": ownerNCUserID,
})
return nil
}
func publicShareMatchesQuery(share nextcloud.ShareInfo, ownerEmail, q string) bool {
haystack := strings.ToLower(strings.Join([]string{
share.Path,
share.Token,
share.URL,
share.ShareWith,
share.ShareWithDisplayName,
share.OwnerDisplayName,
share.FileOwnerDisplayName,
ownerEmail,
share.Label,
share.Note,
}, " "))
return strings.Contains(haystack, q)
}
func shareCreatedAt(item map[string]any) time.Time {
raw, _ := item["created_at"].(string)
if raw == "" {
return time.Time{}
}
t, err := time.Parse(time.RFC3339, raw)
if err != nil {
return time.Time{}
}
return t
}
func firstNonEmptyStr(values ...string) string {
for _, v := range values {
if strings.TrimSpace(v) != "" {
return strings.TrimSpace(v)
}
}
return ""
}
func ptrInt64(v int64) *int64 {
return &v
}
func sortPublicShares(items []map[string]any, sortParam string) {
field, desc := parseSortField(sortParam)
if field == "" {
field = "created_at"
desc = true
}
less := func(i, j int) bool {
switch field {
case "last_access_at":
return shareLastAccessAt(items[i]).Before(shareLastAccessAt(items[j]))
case "access_count":
return shareAccessCount(items[i]) < shareAccessCount(items[j])
case "path":
return strings.ToLower(shareString(items[i], "path")) < strings.ToLower(shareString(items[j], "path"))
case "owner_email":
return strings.ToLower(shareString(items[i], "owner_email")) < strings.ToLower(shareString(items[j], "owner_email"))
case "updated_at", "created_at":
return shareCreatedAt(items[i]).Before(shareCreatedAt(items[j]))
default:
return shareCreatedAt(items[i]).Before(shareCreatedAt(items[j]))
}
}
sort.SliceStable(items, func(i, j int) bool {
if desc {
return !less(i, j)
}
return less(i, j)
})
}
func shareString(item map[string]any, key string) string {
raw, _ := item[key].(string)
return strings.TrimSpace(raw)
}
func shareAccessCount(item map[string]any) int64 {
switch v := item["access_count"].(type) {
case int64:
return v
case int:
return int64(v)
case float64:
return int64(v)
default:
return 0
}
}
func shareLastAccessAt(item map[string]any) time.Time {
raw, ok := item["last_access_at"]
if !ok || raw == nil {
return time.Time{}
}
switch v := raw.(type) {
case string:
t, err := time.Parse(time.RFC3339, v)
if err != nil {
return time.Time{}
}
return t
default:
return time.Time{}
}
}
Reference in New Issue View Git Blame Copy Permalink