casbin
/
casibase
Not watched
1
0
Fork 0
Code
Releases 0 Wiki evaluate Activity
Issues 0 Pull Requests 0 Datasets Model Cloudbrain HPC
You can not select more than 25 topics Topics must start with a chinese character,a letter or number, can include dashes ('-') and can be up to 35 characters long.
344 Commits
3 Branches
2.5 MB
0 Download
Branch: master
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from 'master'
${ noResults }
casibase/routers/filter.go

filter.go 3.3 kB
Raw Permalink Normal View History

Add license headers
2 years ago
Add server code.
3 years ago
Support landingFolder.
3 years ago
Add server code.
3 years ago
Support landingFolder.
3 years ago
Add server code.
3 years ago
Improve import path
2 years ago
Add server code.
3 years ago
Serve storage provider files
2 years ago
Add server code.
3 years ago
Support landingFolder.
3 years ago
fix TransparentStatic()
3 years ago
Support landingFolder.
3 years ago
Serve storage provider files
2 years ago
Add server code.
3 years ago
feat: demo mode (#616)
2 years ago
 123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113 
  1. // Copyright 2023 The casbin Authors. All Rights Reserved.

  2. //

  3. // Licensed under the Apache License, Version 2.0 (the "License");

  4. // you may not use this file except in compliance with the License.

  5. // You may obtain a copy of the License at

  6. //

  7. //      http://www.apache.org/licenses/LICENSE-2.0

  8. //

  9. // Unless required by applicable law or agreed to in writing, software

  10. // distributed under the License is distributed on an "AS IS" BASIS,

  11. // WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.

  12. // See the License for the specific language governing permissions and

  13. // limitations under the License.

  14. 

  15. package routers

  16. 

  17. import (

  18. 	"fmt"

  19. 	"net/http"

  20. 	"strings"

  21. 

  22. 	"github.com/astaxie/beego"

  23. 	"github.com/astaxie/beego/context"

  24. 	"github.com/casibase/casibase/conf"

  25. 	"github.com/casibase/casibase/controllers"

  26. 	"github.com/casibase/casibase/util"

  27. )

  28. 

  29. const (

  30. 	headerAllowOrigin  = "Access-Control-Allow-Origin"

  31. 	headerAllowMethods = "Access-Control-Allow-Methods"

  32. 	headerAllowHeaders = "Access-Control-Allow-Headers"

  33. )

  34. 

  35. func TransparentStatic(ctx *context.Context) {

  36. 	urlPath := ctx.Request.URL.Path

  37. 	if strings.HasPrefix(urlPath, "/api/") {

  38. 		return

  39. 	}

  40. 

  41. 	landingFolder := beego.AppConfig.String("landingFolder")

  42. 	if landingFolder != "" {

  43. 		if urlPath == "" || urlPath == "/" || urlPath == "/about" {

  44. 			http.ServeFile(ctx.ResponseWriter, ctx.Request, fmt.Sprintf("../%s/web/build/index.html", landingFolder))

  45. 			return

  46. 		}

  47. 

  48. 		landingPath := fmt.Sprintf("../%s/web/build%s", landingFolder, urlPath)

  49. 		if util.FileExist(landingPath) {

  50. 			http.ServeFile(ctx.ResponseWriter, ctx.Request, landingPath)

  51. 			return

  52. 		}

  53. 	}

  54. 

  55. 	if strings.HasPrefix(urlPath, "/storage") {

  56. 		ctx.Output.Header(headerAllowOrigin, "*")

  57. 		ctx.Output.Header(headerAllowMethods, "POST, GET, OPTIONS, DELETE")

  58. 		ctx.Output.Header(headerAllowHeaders, "Content-Type, Authorization")

  59. 

  60. 		urlPath = strings.TrimPrefix(urlPath, "/storage/")

  61. 		urlPath = strings.Replace(urlPath, "|", ":", 1)

  62. 		http.ServeFile(ctx.ResponseWriter, ctx.Request, urlPath)

  63. 		return

  64. 	}

  65. 

  66. 	path := "web/build"

  67. 	if urlPath == "/" {

  68. 		path += "/index.html"

  69. 	} else {

  70. 		path += urlPath

  71. 	}

  72. 

  73. 	if util.FileExist(path) {

  74. 		http.ServeFile(ctx.ResponseWriter, ctx.Request, path)

  75. 	} else {

  76. 		http.ServeFile(ctx.ResponseWriter, ctx.Request, "web/build/index.html")

  77. 	}

  78. }

  79. 

  80. func ApiFilter(ctx *context.Context) {

  81. 	method := ctx.Request.Method

  82. 	urlPath := getUrlPath(ctx.Request.URL.Path)

  83. 

  84. 	if conf.IsDemoMode() {

  85. 		if !isAllowedInDemoMode(method, urlPath) {

  86. 			controllers.DenyRequest(ctx)

  87. 		}

  88. 	}

  89. }

  90. 

  91. func getUrlPath(urlPath string) string {

  92. 	if strings.HasPrefix(urlPath, "/cas") && (strings.HasSuffix(urlPath, "/serviceValidate") || strings.HasSuffix(urlPath, "/proxy") || strings.HasSuffix(urlPath, "/proxyValidate") || strings.HasSuffix(urlPath, "/validate") || strings.HasSuffix(urlPath, "/p3/serviceValidate") || strings.HasSuffix(urlPath, "/p3/proxyValidate") || strings.HasSuffix(urlPath, "/samlValidate")) {

  93. 		return "/cas"

  94. 	}

  95. 

  96. 	if strings.HasPrefix(urlPath, "/api/login/oauth") {

  97. 		return "/api/login/oauth"

  98. 	}

  99. 

  100. 	if strings.HasPrefix(urlPath, "/api/webauthn") {

  101. 		return "/api/webauthn"

  102. 	}

  103. 

  104. 	return urlPath

  105. }

  106. 

  107. func isAllowedInDemoMode(method string, urlPath string) bool {

  108. 	if method == "POST" && !(strings.HasPrefix(urlPath, "/api/signin") || urlPath == "/api/signout") {

  109. 		return false

  110. 	}

  111. 

  112. 	return true

  113. }

基于Casbin的开源AI领域知识库平台