Upload-Freigabe: URL-Shortener entfernt, einfaches Kopieren der Original-URL
This commit is contained in:
@@ -1,5 +1,4 @@
|
||||
const express = require('express');
|
||||
const https = require('https');
|
||||
const bcrypt = require('bcryptjs');
|
||||
const crypto = require('crypto');
|
||||
const multer = require('multer');
|
||||
@@ -9,19 +8,6 @@ const db = require('../../db');
|
||||
const { authenticate, requireAdmin } = require('../../middleware/auth');
|
||||
const router = express.Router();
|
||||
|
||||
// Node-seitige URL-Kürzung (kein CORS-Problem)
|
||||
function shortenUrl(longUrl) {
|
||||
return new Promise(resolve => {
|
||||
const url = `https://is.gd/create.php?format=simple&url=${encodeURIComponent(longUrl)}`;
|
||||
const req = https.get(url, { headers:{'User-Agent':'DickenDock/1.0'} }, res => {
|
||||
let data = '';
|
||||
res.on('data', d => data += d);
|
||||
res.on('end', () => resolve(data.trim().startsWith('http') ? data.trim() : null));
|
||||
});
|
||||
req.on('error', () => resolve(null));
|
||||
req.setTimeout(5000, () => { req.destroy(); resolve(null); });
|
||||
});
|
||||
}
|
||||
|
||||
const UPLOAD_DIR = process.env.UPLOAD_DIR || '/data/uploads';
|
||||
|
||||
@@ -55,7 +41,7 @@ router.get('/', authenticate, (req, res) => {
|
||||
res.json({ shares, folder });
|
||||
});
|
||||
|
||||
router.post('/', authenticate, async (req, res) => {
|
||||
router.post('/', authenticate, (req, res) => {
|
||||
if (!canUseUploadShare(req.user.id)) return res.status(403).json({ error:'Keine Berechtigung' });
|
||||
const { password, expires_hours=24, max_size_mb=10 } = req.body;
|
||||
if (!password?.trim()) return res.status(400).json({ error:'Passwort erforderlich' });
|
||||
@@ -67,14 +53,7 @@ router.post('/', authenticate, async (req, res) => {
|
||||
INSERT INTO upload_shares (user_id,token,password_hash,expires_at,max_size_mb,folder_id,created_at)
|
||||
VALUES (?,?,?,?,?,?,datetime('now','localtime'))
|
||||
`).run(req.user.id, token, hash, expires, Number(max_size_mb), folder.id);
|
||||
const share = db.prepare('SELECT * FROM upload_shares WHERE id=?').get(r.lastInsertRowid);
|
||||
// URL direkt beim Erstellen kürzen (server-seitig, kein CORS)
|
||||
const baseUrl = `${req.protocol}://${req.get('host')}`;
|
||||
const fullUrl = `${baseUrl}/u/${token}`;
|
||||
let shortUrl = null;
|
||||
try { shortUrl = await shortenUrl(fullUrl); } catch {}
|
||||
if (shortUrl) db.prepare('UPDATE upload_shares SET short_url=? WHERE id=?').run(shortUrl, share.id);
|
||||
res.json({ ...share, short_url: shortUrl, url: fullUrl });
|
||||
res.json(db.prepare('SELECT * FROM upload_shares WHERE id=?').get(r.lastInsertRowid));
|
||||
});
|
||||
|
||||
router.delete('/:id', authenticate, (req, res) => {
|
||||
|
||||
Reference in New Issue
Block a user