npm - @waline/vercel - Versions diffs - 1.26.3 → 1.26.4 - Mend

@waline/vercel 1.26.3 → 1.26.4

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (60) hide show

package/dist/404.html +39 -0
package/dist/500.html +275 -0
package/dist/index.js +58501 -0
package/dist/package.json +54 -0
package/dist/src/config/adapter.js +170 -0
package/dist/src/config/config.js +134 -0
package/dist/src/config/extend.js +38 -0
package/dist/src/config/middleware.js +66 -0
package/dist/src/config/router.js +1 -0
package/dist/src/controller/article.js +91 -0
package/dist/src/controller/comment.js +758 -0
package/dist/src/controller/db.js +71 -0
package/dist/src/controller/index.js +36 -0
package/dist/src/controller/oauth.js +136 -0
package/dist/src/controller/rest.js +60 -0
package/dist/src/controller/token/2fa.js +66 -0
package/dist/src/controller/token.js +75 -0
package/dist/src/controller/user/password.js +52 -0
package/dist/src/controller/user.js +289 -0
package/dist/src/controller/verification.js +35 -0
package/dist/src/extend/controller.js +25 -0
package/dist/src/extend/think.js +84 -0
package/dist/src/locales/en.json +19 -0
package/dist/src/locales/index.js +12 -0
package/dist/src/locales/zh-CN.json +19 -0
package/dist/src/locales/zh-TW.json +19 -0
package/dist/src/logic/article.js +27 -0
package/dist/src/logic/base.js +164 -0
package/dist/src/logic/comment.js +317 -0
package/dist/src/logic/db.js +81 -0
package/dist/src/logic/oauth.js +10 -0
package/dist/src/logic/token/2fa.js +28 -0
package/dist/src/logic/token.js +53 -0
package/dist/src/logic/user/password.js +11 -0
package/dist/src/logic/user.js +117 -0
package/dist/src/middleware/dashboard.js +23 -0
package/dist/src/middleware/version.js +6 -0
package/dist/src/service/akismet.js +41 -0
package/dist/src/service/avatar.js +35 -0
package/dist/src/service/markdown/highlight.js +32 -0
package/dist/src/service/markdown/index.js +63 -0
package/dist/src/service/markdown/katex.js +49 -0
package/dist/src/service/markdown/mathCommon.js +156 -0
package/dist/src/service/markdown/mathjax.js +78 -0
package/dist/src/service/markdown/utils.js +11 -0
package/dist/src/service/markdown/xss.js +44 -0
package/dist/src/service/notify.js +537 -0
package/dist/src/service/storage/base.js +31 -0
package/dist/src/service/storage/cloudbase.js +221 -0
package/dist/src/service/storage/deta.js +307 -0
package/dist/src/service/storage/github.js +377 -0
package/dist/src/service/storage/leancloud.js +430 -0
package/dist/src/service/storage/mongodb.js +179 -0
package/dist/src/service/storage/mysql.js +123 -0
package/dist/src/service/storage/postgresql.js +84 -0
package/dist/src/service/storage/sqlite.js +11 -0
package/dist/src/service/storage/tidb.js +3 -0
package/package.json +1 -1
package/src/controller/comment.js +1 -2
package/src/extend/think.js +19 -0

package/dist/src/controller/db.js ADDED Viewed

@@ -0,0 +1,71 @@
+const BaseRest = require('./rest');
+module.exports = class extends BaseRest {
+  async getAction() {
+    const exportData = {
+      type: 'waline',
+      version: 1,
+      time: Date.now(),
+      tables: ['Comment', 'Counter', 'Users'],
+      data: {
+        Comment: [],
+        Counter: [],
+        Users: [],
+      },
+    };
+    for (let i = 0; i < exportData.tables.length; i++) {
+      const tableName = exportData.tables[i];
+      const storage = this.config('storage');
+      const model = this.service(`storage/${storage}`, tableName);
+      const data = await model.select({});
+      exportData.data[tableName] = data;
+    }
+    return this.success(exportData);
+  }
+  async postAction() {
+    const { table } = this.get();
+    const item = this.post();
+    const storage = this.config('storage');
+    const model = this.service(`storage/${storage}`, table);
+    if (storage === 'leancloud' || storage === 'mysql') {
+      item.insertedAt && (item.insertedAt = new Date(item.insertedAt));
+      item.createdAt && (item.createdAt = new Date(item.createdAt));
+      item.updatedAt && (item.updatedAt = new Date(item.updatedAt));
+    }
+    delete item.objectId;
+    const resp = await model.add(item);
+    return this.success(resp);
+  }
+  async putAction() {
+    const { table, objectId } = this.get();
+    const data = this.post();
+    const storage = this.config('storage');
+    const model = this.service(`storage/${storage}`, table);
+    delete data.objectId;
+    delete data.createdAt;
+    delete data.updatedAt;
+    await model.update(data, { objectId });
+    return this.success();
+  }
+  async deleteAction() {
+    const { table } = this.get();
+    const storage = this.config('storage');
+    const model = this.service(`storage/${storage}`, table);
+    await model.delete({});
+    return this.success();
+  }
+};

package/dist/src/controller/index.js ADDED Viewed

@@ -0,0 +1,36 @@
+const { version } = require('../../package.json');
+module.exports = class extends think.Controller {
+  indexAction() {
+    this.type = 'html';
+    this.body = `
+    <!DOCTYPE html>
+    <html lang="en">
+    <head>
+      <meta charset="UTF-8">
+      <meta name="viewport" content="width=device-width, initial-scale=1.0">
+      <title>Waline Example</title>
+    </head>
+    <body>
+      <div id="waline" style="max-width: 800px;margin: 0 auto;"></div>
+      <script src="https://unpkg.com/@waline/client@v2/dist/waline.js"></script>
+      <link href='//unpkg.com/@waline/client@v2/dist/waline.css' rel='stylesheet' />
+      <script>
+        console.log(
+          '%c @waline/server %c v${version} ',
+          'color: white; background: #0078E7; padding:5px 0;',
+          'padding:4px;border:1px solid #0078E7;'
+        );
+        const params = new URLSearchParams(location.search.slice(1));
+        const waline = Waline.init({
+          el: '#waline',
+          path: params.get('path') || '/',
+          lang: params.get('lng'),
+          serverURL: location.protocol + '//' + location.host + location.pathname.replace(/\\/+$/, ''),
+          recaptchaV3Key: '${process.env.RECAPTCHA_V3_KEY || ''}',
+        });
+      </script>
+    </body>
+    </html>`;
+  }
+};

package/dist/src/controller/oauth.js ADDED Viewed

@@ -0,0 +1,136 @@
+const jwt = require('jsonwebtoken');
+const fetch = require('node-fetch');
+const { PasswordHash } = require('phpass');
+module.exports = class extends think.Controller {
+  constructor(ctx) {
+    super(ctx);
+    this.modelInstance = this.service(
+      `storage/${this.config('storage')}`,
+      'Users'
+    );
+  }
+  async indexAction() {
+    const { code, oauth_verifier, oauth_token, type, redirect } = this.get();
+    const { oauthUrl } = this.config();
+    const hasCode =
+      type === 'twitter' ? oauth_token && oauth_verifier : Boolean(code);
+    if (!hasCode) {
+      const { serverURL } = this.ctx;
+      const redirectUrl = `${serverURL}/oauth?${new URLSearchParams({
+        redirect,
+        type,
+      }).toString()}`;
+      return this.redirect(
+        `${oauthUrl}/${type}?${new URLSearchParams({
+          redirect: redirectUrl,
+          state: this.ctx.state.token || '',
+        }).toString()}`
+      );
+    }
+    /**
+     * user = { id, name, email, avatar,url };
+     */
+    const params = { code, oauth_verifier, oauth_token };
+    if (type === 'facebook') {
+      const { serverURL } = this.ctx;
+      const redirectUrl = `${serverURL}/oauth?${new URLSearchParams({
+        redirect,
+        type,
+      }).toString()}`;
+      params.state = new URLSearchParams({
+        redirect: redirectUrl,
+        state: this.ctx.state.token || '',
+      });
+    }
+    const user = await fetch(
+      `${oauthUrl}/${type}?${new URLSearchParams(params).toString()}`,
+      {
+        method: 'GET',
+        headers: {
+          'user-agent': '@waline',
+        },
+      }
+    ).then((resp) => resp.json());
+    if (!user || !user.id) {
+      return this.fail(user);
+    }
+    const userBySocial = await this.modelInstance.select({ [type]: user.id });
+    if (!think.isEmpty(userBySocial)) {
+      const token = jwt.sign(userBySocial[0].email, this.config('jwtKey'));
+      if (redirect) {
+        return this.redirect(
+          redirect + (redirect.includes('?') ? '&' : '?') + 'token=' + token
+        );
+      }
+      return this.success();
+    }
+    if (!user.email) {
+      user.email = `${user.id}@mail.${type}`;
+    }
+    const current = this.ctx.state.userInfo;
+    if (!think.isEmpty(current)) {
+      const updateData = { [type]: user.id };
+      if (!current.avatar && user.avatar) {
+        updateData.avatar = user.avatar;
+      }
+      await this.modelInstance.update(updateData, {
+        objectId: current.objectId,
+      });
+      return this.redirect('/ui/profile');
+    }
+    const userByEmail = await this.modelInstance.select({ email: user.email });
+    if (think.isEmpty(userByEmail)) {
+      const count = await this.modelInstance.count();
+      const data = {
+        display_name: user.name,
+        email: user.email,
+        url: user.url,
+        avatar: user.avatar,
+        [type]: user.id,
+        password: new PasswordHash().hashPassword(Math.random()),
+        type: think.isEmpty(count) ? 'administrator' : 'guest',
+      };
+      await this.modelInstance.add(data);
+    } else {
+      const updateData = { [type]: user.id };
+      if (!userByEmail.avatar && user.avatar) {
+        updateData.avatar = user.avatar;
+      }
+      await this.modelInstance.update(updateData, { email: user.email });
+    }
+    const token = jwt.sign(user.email, this.config('jwtKey'));
+    if (redirect) {
+      return this.redirect(
+        redirect + (redirect.includes('?') ? '&' : '?') + 'token=' + token
+      );
+    }
+    return this.success();
+  }
+};

package/dist/src/controller/rest.js ADDED Viewed

@@ -0,0 +1,60 @@
+const path = require('path');
+module.exports = class extends think.Controller {
+  static get _REST() {
+    return true;
+  }
+  static get _method() {
+    return 'method';
+  }
+  constructor(ctx) {
+    super(ctx);
+    this.resource = this.getResource();
+    this.id = this.getId();
+  }
+  __before() {}
+  getResource() {
+    const filename = this.__filename || __filename;
+    const last = filename.lastIndexOf(path.sep);
+    return filename.substr(last + 1, filename.length - last - 4);
+  }
+  getId() {
+    const id = this.get('id');
+    if (id && (think.isString(id) || think.isNumber(id))) {
+      return id;
+    }
+    const last = decodeURIComponent(this.ctx.path.split('/').pop());
+    if (last !== this.resource && /^([a-z0-9]+,?)*$/i.test(last)) {
+      return last;
+    }
+    return '';
+  }
+  isLogin() {
+    const { userInfo } = this.ctx.state;
+    return think.isEmpty(userInfo);
+  }
+  async hook(name, ...args) {
+    const fn = this.config(name);
+    if (!think.isFunction(fn)) {
+      return;
+    }
+    return fn.call(this, ...args);
+  }
+  __call() {}
+};

package/dist/src/controller/token/2fa.js ADDED Viewed

@@ -0,0 +1,66 @@
+const speakeasy = require('speakeasy');
+const BaseRest = require('../rest');
+module.exports = class extends BaseRest {
+  async getAction() {
+    const { userInfo } = this.ctx.state;
+    const { email } = this.get();
+    if (think.isEmpty(userInfo) && email) {
+      const userModel = this.service(
+        `storage/${this.config('storage')}`,
+        'Users'
+      );
+      const user = await userModel.select(
+        { email },
+        {
+          field: ['2fa'],
+        }
+      );
+      const is2FAEnabled = !think.isEmpty(user) && Boolean(user[0]['2fa']);
+      return this.success({ enable: is2FAEnabled });
+    }
+    const name = `waline_${userInfo.objectId}`;
+    if (userInfo['2fa'] && userInfo['2fa'].length == 32) {
+      return this.success({
+        otpauth_url: `otpauth://totp/${name}?secret=${userInfo['2fa']}`,
+        secret: userInfo['2fa'],
+      });
+    }
+    const { otpauth_url, base32: secret } = speakeasy.generateSecret({
+      length: 20,
+      name,
+    });
+    return this.success({ otpauth_url, secret });
+  }
+  async postAction() {
+    const data = this.post();
+    const verified = speakeasy.totp.verify({
+      secret: data.secret,
+      encoding: 'base32',
+      token: data.code,
+      window: 2,
+    });
+    if (!verified) {
+      return this.fail(this.locale('TWO_FACTOR_AUTH_ERROR_DETAIL'));
+    }
+    const userModel = this.service(
+      `storage/${this.config('storage')}`,
+      'Users'
+    );
+    const { objectId } = this.ctx.state.userInfo;
+    await userModel.update({ ['2fa']: data.secret }, { objectId });
+    return this.success();
+  }
+};

package/dist/src/controller/token.js ADDED Viewed

@@ -0,0 +1,75 @@
+const speakeasy = require('speakeasy');
+const jwt = require('jsonwebtoken');
+const helper = require('think-helper');
+const { PasswordHash } = require('phpass');
+const BaseRest = require('./rest');
+module.exports = class extends BaseRest {
+  constructor(...args) {
+    super(...args);
+    this.modelInstance = this.service(
+      `storage/${this.config('storage')}`,
+      'Users'
+    );
+  }
+  getAction() {
+    return this.success(this.ctx.state.userInfo);
+  }
+  async postAction() {
+    const { email, password, code } = this.post();
+    const user = await this.modelInstance.select({ email });
+    if (think.isEmpty(user) || /^verify:/i.test(user[0].type)) {
+      return this.fail();
+    }
+    const checkPassword = new PasswordHash().checkPassword(
+      password,
+      user[0].password
+    );
+    if (!checkPassword) {
+      return this.fail();
+    }
+    const twoFactorAuthSecret = user[0]['2fa'];
+    if (twoFactorAuthSecret) {
+      const verified = speakeasy.totp.verify({
+        secret: twoFactorAuthSecret,
+        encoding: 'base32',
+        token: code,
+        window: 2,
+      });
+      if (!verified) {
+        return this.fail();
+      }
+    }
+    let avatarUrl = user[0].avatar
+      ? user[0].avatar
+      : await think.service('avatar').stringify({
+          mail: user[0].email,
+          nick: user[0].display_name,
+          link: user[0].url,
+        });
+    const { avatarProxy } = think.config();
+    if (avatarProxy) {
+      avatarUrl = avatarProxy + '?url=' + encodeURIComponent(avatarUrl);
+    }
+    user[0].avatar = avatarUrl;
+    return this.success({
+      ...user[0],
+      password: null,
+      mailMd5: helper.md5(user[0].email.toLowerCase()),
+      token: jwt.sign(user[0].email, this.config('jwtKey')),
+    });
+  }
+  deleteAction() {}
+};

package/dist/src/controller/user/password.js ADDED Viewed

@@ -0,0 +1,52 @@
+const jwt = require('jsonwebtoken');
+const BaseRest = require('../rest');
+module.exports = class extends BaseRest {
+  async putAction() {
+    const {
+      SMTP_HOST,
+      SMTP_SERVICE,
+      SENDER_EMAIL,
+      SENDER_NAME,
+      SMTP_USER,
+      SITE_NAME,
+    } = process.env;
+    const hasMailService = SMTP_HOST || SMTP_SERVICE;
+    if (!hasMailService) {
+      return this.fail();
+    }
+    const { email } = this.post();
+    const userModel = this.service(
+      `storage/${this.config('storage')}`,
+      'Users'
+    );
+    const user = await userModel.select({ email });
+    if (think.isEmpty(user)) {
+      return this.fail();
+    }
+    const notify = this.service('notify', this);
+    const token = jwt.sign(user[0].email, this.config('jwtKey'));
+    const profileUrl = `${this.ctx.serverURL}/ui/profile?token=${token}`;
+    await notify.transporter.sendMail({
+      from:
+        SENDER_EMAIL && SENDER_NAME
+          ? `"${SENDER_NAME}" <${SENDER_EMAIL}>`
+          : SMTP_USER,
+      to: user[0].email,
+      subject: this.locale('[{{name | safe}}] Reset Password', {
+        name: SITE_NAME || 'Waline',
+      }),
+      html: this.locale(
+        'Please click <a href="{{url}}">{{url}}</a> to login and change your password as soon as possible!',
+        { url: profileUrl }
+      ),
+    });
+    return this.success();
+  }
+};