@underpostnet/underpost 2.96.1 → 2.97.1

package/scripts/packer-setup.sh

@@ -39,13 +39,13 @@ print "Distro detected: $PRETTY_NAME"
 # Enable helpful repos and install helpers
 print "Installing dnf-plugins-core and enabling CRB/PowerTools (if available)"
 set +e
-dnf install -y dnf-plugins-core >/dev/null 2>&1 || true
-dnf config-manager --set-enabled crb >/dev/null 2>&1 || true
-dnf config-manager --set-enabled powertools >/dev/null 2>&1 || true
+dnf install -y dnf-plugins-core >/dev/null 2>&1
+dnf config-manager --set-enabled crb >/dev/null 2>&1
+dnf config-manager --set-enabled powertools >/dev/null 2>&1
 # EPEL
 if ! rpm -q epel-release >/dev/null 2>&1; then
   print "Installing epel-release"
-  dnf install -y epel-release || true
+  dnf install -y epel-release
 fi
 set -e
 
@@ -86,7 +86,7 @@ done
 
 print "Enabling and starting libvirtd"
 systemctl enable --now libvirtd || err "Failed to enable/start libvirtd"
-systemctl status libvirtd --no-pager || true
+systemctl status libvirtd --no-pager
 
 # 3) Install NBD and filesystem tools required for MAAS image creation
 print "Installing NBD and filesystem tooling: libnbd, nbdkit, e2fsprogs, kmod packages (best-effort)"
@@ -125,7 +125,7 @@ if command -v podman >/dev/null 2>&1; then
       fi
     done
 
-    podman rm "$CONTAINER_ID" >/dev/null 2>&1 || true
+    podman rm "$CONTAINER_ID" >/dev/null 2>&1
   fi
 else
   print "podman not available. Install podman to register binfmt for container/chroot convenience."
@@ -181,8 +181,8 @@ else
     print "qemu-system-aarch64 now available after package install"
   else
     print "Compiling QEMU with aarch64-softmmu target. Installing build deps..."
-    dnf groupinstall -y 'Development Tools' || true
-    dnf install -y git libaio-devel libgcrypt-devel libfdt-devel glib2-devel zlib-devel pixman-devel libseccomp-devel libusb1-devel openssl-devel bison flex python3 python3-pip ninja-build || true
+    dnf groupinstall -y 'Development Tools'
+    dnf install -y git libaio-devel libgcrypt-devel libfdt-devel glib2-devel zlib-devel pixman-devel libseccomp-devel libusb1-devel openssl-devel bison flex python3 python3-pip ninja-build
 
     # Enforce libslirp-devel for user networking
     if ! dnf install -y libslirp-devel; then
@@ -192,8 +192,8 @@ else
 
     # Install required Python packages for QEMU build
     print "Installing Python dependencies for QEMU build"
-    python3 -m pip install --upgrade pip || true
-    python3 -m pip install tomli meson || true
+    python3 -m pip install --upgrade pip
+    python3 -m pip install tomli meson
 
     TMPDIR=$(mktemp -d)
     print "Cloning QEMU source to $TMPDIR/qemu"
@@ -209,7 +209,7 @@ else
         make install || err "QEMU install failed"
         # Update PATH to include /usr/local/bin where QEMU was installed
         export PATH="/usr/local/bin:$PATH"
-        hash -r || true
+        hash -r
       else
         err "QEMU build (make) failed"
       fi
@@ -224,7 +224,7 @@ else
     fi
 
     cd /
-    rm -rf "$TMPDIR" || true
+    rm -rf "$TMPDIR"
     print "Removed build directory $TMPDIR"
   fi
 fi
@@ -242,7 +242,7 @@ else
 fi
 if command -v qemu-aarch64-static >/dev/null 2>&1; then print "qemu-aarch64-static: $(command -v qemu-aarch64-static)"; else print "qemu-aarch64-static: NOT INSTALLED"; fi
 print "libvirtd status:"
-systemctl status libvirtd --no-pager || true
+systemctl status libvirtd --no-pager
 
 cat <<'EOF'
 

package/scripts/ports-ls.sh

@@ -0,0 +1,31 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+BASHRC="$HOME/.bashrc"
+
+# Check whether a "ports" function is already defined
+if grep -Eq '^\s*(function\s+ports|ports\s*\(\))' "$BASHRC"; then
+  echo "The 'ports' function already exists in $BASHRC. Nothing was changed."
+  exit 0
+fi
+
+# Append the function to the end of ~/.bashrc
+cat >> "$BASHRC" <<'EOF'
+
+# >>> ports function added by script >>>
+ports() {
+  # no arguments: show listening TCP+UDP sockets
+  if [ -z "$1" ]; then
+    sudo ss -ltnup
+    return
+  fi
+
+  # with an argument: print the header and lines that exactly match the given port
+  local p="$1"
+  sudo ss -tunap | awk -v p="$p" 'NR==1 || $0 ~ (":"p"($| )")'
+}
+# <<< ports function added by script <<<
+EOF
+
+echo "Function 'ports' was added to $BASHRC."
+echo "Load it now with: source ~/.bashrc  (or open a new terminal)."

package/scripts/quick-tftp.sh

@@ -0,0 +1,19 @@
+#!/usr/bin/env bash
+set -euo pipefail
+
+url="${1:-}"
+[[ "$url" =~ ^tftp://([^/]+)(/.+)$ ]] || { echo "Usage: $0 tftp://host/path"; exit 2; }
+host="${BASH_REMATCH[1]}"
+path="${BASH_REMATCH[2]}"
+outfile="/tmp/$(basename "$path")"
+
+if command -v curl >/dev/null 2>&1; then
+  curl -f --silent --output "$outfile" "$url" && echo "OK: $outfile ($(stat -c%s "$outfile") bytes)" || { echo "curl: failed"; exit 3; }
+elif command -v tftp >/dev/null 2>&1; then
+  printf "get %s %s\nquit\n" "$path" "$outfile" | tftp "$host" \
+    && [[ -s "$outfile" ]] \
+    && echo "OK: $outfile ($(stat -c%s "$outfile") bytes)" \
+    || { echo "tftp: failed"; exit 3; }
+else
+  echo "Install 'curl' or 'tftp-client' (sudo dnf install -y curl tftp-client)"; exit 4
+fi

package/scripts/rocky-setup.sh

@@ -126,8 +126,8 @@ sudo dnf -y update
 
 # Cleanup
 echo "[+] Cleanup: remove unnecessary packages and old metadata"
-sudo dnf -y autoremove || true
-sudo dnf clean all || true
+sudo dnf -y autoremove
+sudo dnf clean all
 
 cat <<EOF
 

package/scripts/rpmfusion-ffmpeg-setup.sh

@@ -9,19 +9,19 @@ if [ "${EUID:-$(id -u)}" -ne 0 ]; then
 fi
 
 echo "1) Ensure dnf-plugins-core is available (for config-manager)"
-dnf -y install dnf-plugins-core || true
+dnf -y install dnf-plugins-core
 
 echo "2) Enable CodeReady / CRB (needed for some deps, e.g. ladspa)"
 # On RHEL you'd use subscription-manager; on CentOS/Rocky/Alma use config-manager
-dnf config-manager --set-enabled crb || true
+dnf config-manager --set-enabled crb
 
 echo "3) Install EPEL release (required by some ffmpeg deps)"
-dnf -y install https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm || true
+dnf -y install https://dl.fedoraproject.org/pub/epel/epel-release-latest-9.noarch.rpm
 
 echo "4) Add RPM Fusion (free + nonfree) repositories"
 # Using mirrors.rpmfusion.org recommended links
 dnf -y install https://mirrors.rpmfusion.org/free/el/rpmfusion-free-release-9.noarch.rpm \
-               https://mirrors.rpmfusion.org/nonfree/el/rpmfusion-nonfree-release-9.noarch.rpm || true
+               https://mirrors.rpmfusion.org/nonfree/el/rpmfusion-nonfree-release-9.noarch.rpm
 
 echo "5) Refresh metadata and update system"
 dnf -y makecache

package/scripts/ssl.sh

@@ -48,7 +48,7 @@ info "Outputs: $CERT_FILE, $KEY_FILE, $FULLCHAIN_FILE, $ROOT_PEM"
 
 # Install prerequisites
 if ! command -v dnf >/dev/null 2>&1; then err "dnf not found. This script expects RHEL/Rocky with dnf."; exit 1; fi
-sudo dnf install -y curl nss-tools ca-certificates || true
+sudo dnf install -y curl nss-tools ca-certificates
 
 # Download and install mkcert binary (no 'go install')
 download_mkcert_binary() {
@@ -60,10 +60,10 @@ download_mkcert_binary() {
   esac
   info "Searching mkcert release for $ARCH_STR"
   ASSET_URL=$(curl -sS "https://api.github.com/repos/FiloSottile/mkcert/releases/latest" | \
-    grep -E '"browser_download_url":' | grep -i "$ARCH_STR" | head -n1 | sed -E 's/.*"(https:[^"]+)".*/\1/' || true)
+    grep -E '"browser_download_url":' | grep -i "$ARCH_STR" | head -n1 | sed -E 's/.*"(https:[^"]+)".*/\1/')
   if [[ -z "$ASSET_URL" ]]; then
     ASSET_URL=$(curl -sS "https://api.github.com/repos/FiloSottile/mkcert/releases/latest" | \
-      grep -E '"browser_download_url":' | grep -i 'linux' | grep -i 'amd64' | head -n1 | sed -E 's/.*"(https:[^"]+)".*/\1/' || true)
+      grep -E '"browser_download_url":' | grep -i 'linux' | grep -i 'amd64' | head -n1 | sed -E 's/.*"(https:[^"]+)".*/\1/')
   fi
   if [[ -z "$ASSET_URL" ]]; then err "Could not find mkcert asset for your arch"; return 1; fi
   TMP_BIN="$(mktemp -u /tmp/mkcert.XXXXXX)"
@@ -93,7 +93,7 @@ use_mkcert() {
   info "Generating cert+key with mkcert"
   if ! "$MKCERT_BIN" -cert-file "$CERT_FILE" -key-file "$KEY_FILE" "${MK_ARGS[@]}"; then err "mkcert failed to generate"; return 1; fi
   # copy root CA from mkcert CAROOT into TARGET_DIR
-  if ROOT_FROM_MKCERT="$($MKCERT_BIN -CAROOT 2>/dev/null || true)"; then
+  if ROOT_FROM_MKCERT="$($MKCERT_BIN -CAROOT 2>/dev/null)"; then
     if [[ -f "$ROOT_FROM_MKCERT/rootCA.pem" ]]; then
       cp "$ROOT_FROM_MKCERT/rootCA.pem" "$ROOT_PEM"
       info "Copied mkcert root CA to $ROOT_PEM"
@@ -135,11 +135,11 @@ use_openssl() {
     mv -f "$CSR_KEY" "$KEY_FILE"
     # create fullchain: leaf + root
     cat "$CERT_FILE" "$ROOT_PEM" > "$FULLCHAIN_FILE"
-    sudo cp "$ROOT_PEM" /etc/pki/ca-trust/source/anchors/ || true
-    sudo update-ca-trust extract || true
+    sudo cp "$ROOT_PEM" /etc/pki/ca-trust/source/anchors/
+    sudo update-ca-trust extract
     if command -v certutil >/dev/null 2>&1; then
       mkdir -p "$HOME/.pki/nssdb"
-      certutil -d sql:$HOME/.pki/nssdb -A -t "CT,C,C" -n "Local Dev Root CA" -i "$ROOT_PEM" || true
+      certutil -d sql:$HOME/.pki/nssdb -A -t "CT,C,C" -n "Local Dev Root CA" -i "$ROOT_PEM"
     fi
     info "OpenSSL created cert, key and fullchain"
     return 0

package/src/api/document/document.controller.js

@@ -61,6 +61,21 @@ const DocumentController = {
       });
     }
   },
+  patch: async (req, res, options) => {
+    try {
+      const result = await DocumentService.patch(req, res, options);
+      return res.status(200).json({
+        status: 'success',
+        data: result,
+      });
+    } catch (error) {
+      logger.error(error, error.stack);
+      return res.status(400).json({
+        status: 'error',
+        message: error.message,
+      });
+    }
+  },
 };
 
 export { DocumentController };

package/src/api/document/document.model.js

@@ -11,6 +11,7 @@ const DocumentSchema = new Schema(
     location: { type: String },
     title: { type: String },
     tags: [{ type: String }],
+    isPublic: { type: Boolean, default: false },
     fileId: {
       type: Schema.Types.ObjectId,
       ref: 'File',
@@ -19,6 +20,16 @@ const DocumentSchema = new Schema(
       type: Schema.Types.ObjectId,
       ref: 'File',
     },
+    share: {
+      copyShareLinkEvent: [
+        {
+          year: { type: Number },
+          month: { type: Number },
+          day: { type: Number },
+          count: { type: Number, default: 0 },
+        },
+      ],
+    },
   },
   {
     timestamps: true,
@@ -49,10 +60,42 @@ const DocumentDto = {
       return {
         path: 'userId',
         model: 'User',
-        select: '_id email username',
+        select: '_id email username profileImageId',
+        populate: {
+          path: 'profileImageId',
+          model: 'File',
+          select: '_id name mimetype',
+        },
       };
     },
   },
+  getTotalCopyShareLinkCount: (document) => {
+    if (!document.share || !document.share.copyShareLinkEvent) return 0;
+    return document.share.copyShareLinkEvent.reduce((total, event) => total + (event.count || 0), 0);
+  },
+  /**
+   * Filter 'public' tag from tags array
+   * The 'public' tag is internal and should not be rendered to users
+   * @param {string[]} tags - Array of tags
+   * @returns {string[]} - Filtered tags without 'public'
+   */
+  filterPublicTag: (tags) => {
+    if (!tags || !Array.isArray(tags)) return [];
+    return tags.filter((tag) => tag !== 'public');
+  },
+  /**
+   * Extract isPublic boolean from tags array and return cleaned tags
+   * @param {string[]} tags - Array of tags potentially containing 'public'
+   * @returns {{ isPublic: boolean, tags: string[] }} - Object with isPublic flag and cleaned tags
+   */
+  extractPublicFromTags: (tags) => {
+    if (!tags || !Array.isArray(tags)) {
+      return { isPublic: false, tags: [] };
+    }
+    const hasPublicTag = tags.includes('public');
+    const cleanedTags = tags.filter((tag) => tag !== 'public');
+    return { isPublic: hasPublicTag, tags: cleanedTags };
+  },
 };
 
 export { DocumentSchema, DocumentModel, ProviderSchema, DocumentDto };

package/src/api/document/document.router.js

@@ -9,11 +9,13 @@ const DocumentRouter = (options) => {
   const authMiddleware = options.authMiddleware;
   router.post(`/:id`, authMiddleware, async (req, res) => await DocumentController.post(req, res, options));
   router.post(`/`, authMiddleware, async (req, res) => await DocumentController.post(req, res, options));
+  router.get(`/public/high`, async (req, res) => await DocumentController.get(req, res, options));
   router.get(`/public`, async (req, res) => await DocumentController.get(req, res, options));
   router.get(`/:id`, authMiddleware, async (req, res) => await DocumentController.get(req, res, options));
   router.get(`/`, authMiddleware, async (req, res) => await DocumentController.get(req, res, options));
   router.put(`/:id`, authMiddleware, async (req, res) => await DocumentController.put(req, res, options));
   router.put(`/`, authMiddleware, async (req, res) => await DocumentController.put(req, res, options));
+  router.patch(`/:id/copy-share-link`, async (req, res) => await DocumentController.patch(req, res, options));
   router.delete(`/:id`, authMiddleware, async (req, res) => await DocumentController.delete(req, res, options));
   router.delete(`/`, authMiddleware, async (req, res) => await DocumentController.delete(req, res, options));
   return router;