161 lines
4.8 KiB
Elixir
161 lines
4.8 KiB
Elixir
defmodule ZoeyscomputerWeb.Router do
|
|
require Logger
|
|
alias ExAws.S3
|
|
alias Zoeyscomputer.Images
|
|
alias ZoeyscomputerWeb.DiscordPlug
|
|
use ZoeyscomputerWeb, :router
|
|
|
|
import ZoeyscomputerWeb.UserAuth
|
|
|
|
pipeline :browser do
|
|
plug :accepts, ["html"]
|
|
plug :fetch_session
|
|
plug :fetch_live_flash
|
|
plug :put_root_layout, html: {ZoeyscomputerWeb.Layouts, :root}
|
|
plug :protect_from_forgery
|
|
plug :put_secure_browser_headers
|
|
plug :handle_discord
|
|
plug :fetch_current_user
|
|
end
|
|
|
|
pipeline :api_authentication do
|
|
plug ZoeyscomputerWeb.Plugs.ApiAuthentication
|
|
end
|
|
|
|
pipeline :api do
|
|
plug :accepts, ["json"]
|
|
end
|
|
|
|
# Other scopes may use custom stacks.
|
|
scope "/api", ZoeyscomputerWeb do
|
|
pipe_through :api
|
|
|
|
resources "/images", ImageController, except: [:create, :edit]
|
|
|
|
pipe_through [:api_authentication]
|
|
post "/images/create", ImageController, :create
|
|
end
|
|
|
|
# Enable LiveDashboard and Swoosh mailbox preview in development
|
|
if Application.compile_env(:zoeyscomputer, :dev_routes) do
|
|
# If you want to use the LiveDashboard in production, you should put
|
|
# it behind authentication and allow only admins to access it.
|
|
# If your application does not have an admins-only section yet,
|
|
# you can use Plug.BasicAuth to set up some basic authentication
|
|
# as long as you are also using SSL (which you should anyway).
|
|
import Phoenix.LiveDashboard.Router
|
|
|
|
scope "/dev" do
|
|
pipe_through [:browser, :require_authenticated_admin_user]
|
|
|
|
live_dashboard "/dashboard",
|
|
metrics: ZoeyscomputerWeb.Telemetry,
|
|
ecto_repos: Zoeyscomputer.Repo
|
|
|
|
forward "/mailbox", Plug.Swoosh.MailboxPreview
|
|
end
|
|
end
|
|
|
|
## Authentication routes
|
|
|
|
scope "/", ZoeyscomputerWeb do
|
|
pipe_through [:browser, :redirect_if_user_is_authenticated]
|
|
|
|
live_session :redirect_if_user_is_authenticated,
|
|
on_mount: [{ZoeyscomputerWeb.UserAuth, :redirect_if_user_is_authenticated}] do
|
|
live "/users/register", UserRegistrationLive, :new
|
|
live "/users/log_in", UserLoginLive, :new
|
|
live "/users/reset_password", UserForgotPasswordLive, :new
|
|
live "/users/reset_password/:token", UserResetPasswordLive, :edit
|
|
end
|
|
|
|
post "/users/log_in", UserSessionController, :create
|
|
end
|
|
|
|
scope "/", ZoeyscomputerWeb do
|
|
pipe_through [:browser, :require_authenticated_user]
|
|
|
|
live_session :require_authenticated_user,
|
|
on_mount: [{ZoeyscomputerWeb.UserAuth, :ensure_authenticated}] do
|
|
live "/users/settings", UserSettingsLive, :edit
|
|
live "/users/settings/confirm_email/:token", UserSettingsLive, :confirm_email
|
|
live "/links", LinkLive.Index
|
|
live "/links/new", LinkLive.New
|
|
|
|
live "/images/new", ImageLive.Index, :new
|
|
live "/images/:id/edit", ImageLive.Index, :edit
|
|
|
|
live "/images", ImageLive.Index, :index
|
|
|
|
live "/images/:id/show/edit", ImageLive.Show, :edit
|
|
|
|
live "/api-keys", ApiKeyLive.Index, :index
|
|
live "/api-keys/new", ApiKeyLive.Index, :new
|
|
live "/api-keys/:id/edit", ApiKeyLive.Index, :edit
|
|
|
|
live "/api-keys/:id", ApiKeyLive.Show, :show
|
|
live "/api-keys/:id/show/edit", ApiKeyLive.Show, :edit
|
|
end
|
|
end
|
|
|
|
scope "/", ZoeyscomputerWeb do
|
|
pipe_through [:browser]
|
|
|
|
delete "/users/log_out", UserSessionController, :delete
|
|
|
|
live_session :current_user,
|
|
on_mount: [{ZoeyscomputerWeb.UserAuth, :mount_current_user}] do
|
|
live "/users/confirm/:token", UserConfirmationLive, :edit
|
|
live "/users/confirm", UserConfirmationInstructionsLive, :new
|
|
live "/", HomeLive, :index
|
|
|
|
live "/images/:id", ImageLive.Show, :show
|
|
end
|
|
end
|
|
|
|
scope "/", ZoeyscomputerWeb do
|
|
pipe_through [:browser, :require_authenticated_user]
|
|
end
|
|
|
|
defp download_from_s3(bucket, key) do
|
|
case S3.get_object(bucket, key) |> ExAws.request() do
|
|
{:ok, %{body: image_binary, headers: headers}} ->
|
|
content_type =
|
|
Enum.find_value(headers, fn
|
|
{"Content-Type", value} -> value
|
|
{"content-type", value} -> value
|
|
_ -> nil
|
|
end)
|
|
|
|
{:ok, image_binary, content_type || "application/octet-stream"}
|
|
|
|
error ->
|
|
error
|
|
end
|
|
end
|
|
|
|
# Updated plug to return ID as string for Discord requests
|
|
def handle_discord(conn, _opts) do
|
|
Logger.info("user agent: #{get_req_header(conn, "user-agent")}")
|
|
|
|
is_discord =
|
|
case get_req_header(conn, "user-agent") do
|
|
["Mozilla/5.0 (compatible; Discordbot/" <> _rest | _] -> true
|
|
_ -> false
|
|
end
|
|
|
|
if is_discord do
|
|
# Extract the ID from the path
|
|
id = List.last(conn.path_info)
|
|
url = "https://s3.zoeys.computer/imgs/uploads/#{id}.png"
|
|
|
|
conn
|
|
|> put_resp_header("location", url)
|
|
|> put_resp_content_type("text/plain")
|
|
|> send_resp(302, "Redirecting to image")
|
|
|> halt()
|
|
else
|
|
conn
|
|
end
|
|
end
|
|
end
|