2016-09-17 04:26:02 +00:00
|
|
|
"use strict";
|
|
|
|
|
|
|
|
|
|
var express = require('express');
|
|
|
|
|
var router = express.Router();
|
|
|
|
|
var _ = require('lodash');
|
|
|
|
|
|
|
|
|
|
var validPathRe = new RegExp("^([a-z0-9\\/-]+\\.[a-z0-9]+)$");
|
2016-09-25 21:32:39 +00:00
|
|
|
var validPathThumbsRe = new RegExp("^([0-9]+\\.png)$");
|
2016-09-17 04:26:02 +00:00
|
|
|
|
|
|
|
|
// ==========================================
|
|
|
|
|
// SERVE UPLOADS FILES
|
|
|
|
|
// ==========================================
|
|
|
|
|
|
2016-09-25 04:08:49 +00:00
|
|
|
router.get('/t/*', (req, res, next) => {
|
|
|
|
|
|
|
|
|
|
let fileName = req.params[0];
|
|
|
|
|
if(!validPathThumbsRe.test(fileName)) {
|
|
|
|
|
return res.sendStatus(404).end();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//todo: Authentication-based access
|
|
|
|
|
|
|
|
|
|
res.sendFile(fileName, {
|
|
|
|
|
root: lcdata.getThumbsPath(),
|
|
|
|
|
dotfiles: 'deny'
|
|
|
|
|
}, (err) => {
|
|
|
|
|
if (err) {
|
|
|
|
|
res.status(err.status).end();
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
});
|
|
|
|
|
|
2016-09-17 04:26:02 +00:00
|
|
|
router.get('/*', (req, res, next) => {
|
|
|
|
|
|
|
|
|
|
let fileName = req.params[0];
|
|
|
|
|
if(!validPathRe.test(fileName)) {
|
|
|
|
|
return res.sendStatus(404).end();
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
//todo: Authentication-based access
|
|
|
|
|
|
|
|
|
|
res.sendFile(fileName, {
|
|
|
|
|
root: git.getRepoPath() + '/uploads/',
|
|
|
|
|
dotfiles: 'deny'
|
|
|
|
|
}, (err) => {
|
|
|
|
|
if (err) {
|
|
|
|
|
res.status(err.status).end();
|
|
|
|
|
}
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
});
|
|
|
|
|
|
|
|
|
|
module.exports = router;
|
