vaultwarden/src/api/web.rs

124 lines
4.5 KiB
Rust
Raw Normal View History

2018-02-10 00:00:55 +00:00
use std::path::{Path, PathBuf};
use rocket::{http::ContentType, response::content::Content, response::NamedFile, Route};
use rocket_contrib::json::Json;
use serde_json::Value;
2018-02-10 00:00:55 +00:00
use crate::{error::Error, util::Cached, CONFIG};
2018-02-10 00:00:55 +00:00
pub fn routes() -> Vec<Route> {
2019-12-27 17:37:14 +00:00
// If addding more routes here, consider also adding them to
// crate::utils::LOGGED_ROUTES to make sure they appear in the log
if CONFIG.web_vault_enabled() {
2021-03-14 22:35:55 +00:00
routes![web_index, app_id, web_files, attachments, sends, alive, static_files]
} else {
2019-08-31 15:25:31 +00:00
routes![attachments, alive, static_files]
}
2018-02-10 00:00:55 +00:00
}
#[get("/")]
fn web_index() -> Cached<Option<NamedFile>> {
2019-12-27 17:37:14 +00:00
Cached::short(NamedFile::open(Path::new(&CONFIG.web_vault_folder()).join("index.html")).ok())
2018-02-10 00:00:55 +00:00
}
#[get("/app-id.json")]
fn app_id() -> Cached<Content<Json<Value>>> {
2018-07-13 13:05:00 +00:00
let content_type = ContentType::new("application", "fido.trusted-apps+json");
Cached::long(Content(
content_type,
Json(json!({
"trustedFacets": [
{
"version": { "major": 1, "minor": 0 },
"ids": [
// Per <https://fidoalliance.org/specs/fido-v2.0-id-20180227/fido-appid-and-facets-v2.0-id-20180227.html#determining-the-facetid-of-a-calling-application>:
//
// "In the Web case, the FacetID MUST be the Web Origin [RFC6454]
// of the web page triggering the FIDO operation, written as
// a URI with an empty path. Default ports are omitted and any
// path component is ignored."
//
// This leaves it unclear as to whether the path must be empty,
// or whether it can be non-empty and will be ignored. To be on
// the safe side, use a proper web origin (with empty path).
&CONFIG.domain_origin(),
"ios:bundle-id:com.8bit.bitwarden",
"android:apk-key-hash:dUGFzUzf3lmHSLBDBIv+WaFyZMI" ]
}]
})),
))
}
#[get("/<p..>", rank = 10)] // Only match this if the other routes don't match
fn web_files(p: PathBuf) -> Cached<Option<NamedFile>> {
Cached::long(NamedFile::open(Path::new(&CONFIG.web_vault_folder()).join(p)).ok())
2018-02-10 00:00:55 +00:00
}
#[get("/attachments/<uuid>/<file..>")]
fn attachments(uuid: String, file: PathBuf) -> Option<NamedFile> {
NamedFile::open(Path::new(&CONFIG.attachments_folder()).join(uuid).join(file)).ok()
2018-02-10 00:00:55 +00:00
}
2021-03-14 22:35:55 +00:00
#[get("/sends/<send_id>/<file_id>")]
fn sends(send_id: String, file_id: String) -> Option<NamedFile> {
NamedFile::open(Path::new(&CONFIG.sends_folder()).join(send_id).join(file_id)).ok()
}
2018-02-10 00:00:55 +00:00
#[get("/alive")]
fn alive() -> Json<String> {
2018-12-07 01:05:45 +00:00
use crate::util::format_date;
2018-02-14 23:53:11 +00:00
use chrono::Utc;
2018-02-10 00:00:55 +00:00
Json(format_date(&Utc::now().naive_utc()))
}
2019-02-16 02:44:30 +00:00
2019-08-31 15:25:31 +00:00
#[get("/bwrs_static/<filename>")]
fn static_files(filename: String) -> Result<Content<&'static [u8]>, Error> {
2019-02-16 02:44:30 +00:00
match filename.as_ref() {
2021-03-31 20:18:35 +00:00
"mail-github.png" => Ok(Content(
ContentType::PNG,
include_bytes!("../static/images/mail-github.png"),
)),
"logo-gray.png" => Ok(Content(
ContentType::PNG,
include_bytes!("../static/images/logo-gray.png"),
)),
"shield-white.png" => Ok(Content(
ContentType::PNG,
include_bytes!("../static/images/shield-white.png"),
)),
"error-x.svg" => Ok(Content(
ContentType::SVG,
include_bytes!("../static/images/error-x.svg"),
)),
"hibp.png" => Ok(Content(ContentType::PNG, include_bytes!("../static/images/hibp.png"))),
2021-03-31 20:18:35 +00:00
"bootstrap.css" => Ok(Content(
ContentType::CSS,
include_bytes!("../static/scripts/bootstrap.css"),
)),
"bootstrap-native.js" => Ok(Content(
ContentType::JavaScript,
include_bytes!("../static/scripts/bootstrap-native.js"),
)),
"identicon.js" => Ok(Content(
ContentType::JavaScript,
include_bytes!("../static/scripts/identicon.js"),
)),
"datatables.js" => Ok(Content(
ContentType::JavaScript,
include_bytes!("../static/scripts/datatables.js"),
)),
"datatables.css" => Ok(Content(
ContentType::CSS,
include_bytes!("../static/scripts/datatables.css"),
)),
"jquery-3.5.1.slim.js" => Ok(Content(
ContentType::JavaScript,
include_bytes!("../static/scripts/jquery-3.5.1.slim.js"),
)),
_ => err!(format!("Static file not found: {}", filename)),
2019-02-16 02:44:30 +00:00
}
2019-12-27 17:37:14 +00:00
}