npm - nodebb-plugin-pdf-secure - Versions diffs - 1.2.7 → 1.2.8 - Mend

nodebb-plugin-pdf-secure 1.2.7 → 1.2.8

This diff represents the content of publicly available package versions that have been released to one of the supported registries. The information contained in this diff is provided for informational purposes only and reflects changes between package versions as they appear in their respective public registries.

Files changed (6) hide show

package/library.js CHANGED Viewed

@@ -129,6 +129,17 @@ plugin.filterMetaTags = async (hookData) => {
 		return hookData;
 	}
+	// Admin/Global Moderator bypass - no filtering for privileged users
+	if (hookData.req && hookData.req.uid) {
+		const [isAdmin, isGlobalMod] = await Promise.all([
+			groups.isMember(hookData.req.uid, 'administrators'),
+			groups.isMember(hookData.req.uid, 'Global Moderators'),
+		]);
+		if (isAdmin || isGlobalMod) {
+			return hookData;
+		}
+	}
 	// Filter out PDF-related meta tags
 	hookData.tags = hookData.tags.filter(tag => {
 		// Remove og:image and og:image:url if it contains .pdf

package/package.json CHANGED Viewed

@@ -1,6 +1,6 @@
 {
   "name": "nodebb-plugin-pdf-secure",
-  "version": "1.2.7",
+  "version": "1.2.8",
   "description": "Secure PDF viewer plugin for NodeBB - prevents downloading, enables canvas-only rendering with Premium group support",
   "main": "library.js",
   "repository": {

package/static/lib/main.js CHANGED Viewed

@@ -27,11 +27,30 @@
 	let isLoading = false;
 	let currentResolver = null;
-	// Listen for postMessage from iframe when PDF is fully rendered
+	// ============================================
+	// SPA MEMORY CACHE - Cache decoded PDF buffers
+	// ============================================
+	const pdfBufferCache = new Map();  // filename -> ArrayBuffer
+	const CACHE_MAX_SIZE = 5;  // ~50MB limit (avg 10MB per PDF)
+	let currentLoadingFilename = null;
+	function setCachedBuffer(filename, buffer) {
+		// Evict oldest if cache is full
+		if (pdfBufferCache.size >= CACHE_MAX_SIZE) {
+			const firstKey = pdfBufferCache.keys().next().value;
+			pdfBufferCache.delete(firstKey);
+			console.log('[PDF-Secure] Cache: Evicted', firstKey);
+		}
+		pdfBufferCache.set(filename, buffer);
+		console.log('[PDF-Secure] Cache: Stored', filename, '(', (buffer.byteLength / 1024 / 1024).toFixed(2), 'MB)');
+	}
+	// Listen for postMessage from iframe
 	window.addEventListener('message', function (event) {
 		// Security: Only accept messages from same origin
 		if (event.origin !== window.location.origin) return;
+		// PDF ready - resolve queue
 		if (event.data && event.data.type === 'pdf-secure-ready') {
 			console.log('[PDF-Secure] Queue: PDF ready -', event.data.filename);
 			if (currentResolver) {
@@ -39,6 +58,37 @@
 				currentResolver = null;
 			}
 		}
+		// PDF buffer from viewer - cache it
+		if (event.data && event.data.type === 'pdf-secure-buffer') {
+			const { filename, buffer } = event.data;
+			if (filename && buffer) {
+				setCachedBuffer(filename, buffer);
+			}
+		}
+		// Viewer asking for cached buffer
+		if (event.data && event.data.type === 'pdf-secure-cache-request') {
+			const { filename } = event.data;
+			const cached = pdfBufferCache.get(filename);
+			if (cached && event.source) {
+				// Send cached buffer to viewer (transferable for 0-copy)
+				event.source.postMessage({
+					type: 'pdf-secure-cache-response',
+					filename: filename,
+					buffer: cached
+				}, event.origin, [cached.slice(0)]);  // Clone buffer since we keep original
+				console.log('[PDF-Secure] Cache: Hit -', filename);
+			} else if (event.source) {
+				// No cache, viewer will fetch normally
+				event.source.postMessage({
+					type: 'pdf-secure-cache-response',
+					filename: filename,
+					buffer: null
+				}, event.origin);
+				console.log('[PDF-Secure] Cache: Miss -', filename);
+			}
+		}
 	});
 	async function processQueue() {
@@ -139,24 +189,7 @@
 		title.appendChild(icon);
 		title.appendChild(nameSpan);
-		// Actions
-		var actions = document.createElement('div');
-		actions.style.cssText = 'display:flex;gap:8px;';
-		var fullscreenBtn = document.createElement('button');
-		fullscreenBtn.className = 'pdf-secure-fullscreen-btn';
-		fullscreenBtn.title = 'Tam Ekran';
-		fullscreenBtn.style.cssText = 'display:flex;align-items:center;justify-content:center;width:32px;height:32px;background:rgba(255,255,255,0.08);border:none;border-radius:6px;cursor:pointer;';
-		var fullscreenIcon = document.createElementNS('http://www.w3.org/2000/svg', 'svg');
-		fullscreenIcon.setAttribute('viewBox', '0 0 24 24');
-		fullscreenIcon.style.cssText = 'width:18px;height:18px;min-width:18px;max-width:18px;fill:#fff;';
-		fullscreenIcon.innerHTML = '<path d="M7 14H5v5h5v-2H7v-3zm-2-4h2V7h3V5H5v5zm12 7h-3v2h5v-5h-2v3zM14 5v2h3v3h2V5h-5z"/>';
-		fullscreenBtn.appendChild(fullscreenIcon);
-		actions.appendChild(fullscreenBtn);
 		header.appendChild(title);
-		header.appendChild(actions);
 		container.appendChild(header);
 		// Body with loading placeholder
@@ -179,15 +212,6 @@
 		container.appendChild(iframeWrapper);
-		// Fullscreen handler
-		fullscreenBtn.addEventListener('click', function () {
-			var iframe = iframeWrapper.querySelector('iframe');
-			if (iframe) {
-				if (iframe.requestFullscreen) iframe.requestFullscreen();
-				else if (iframe.webkitRequestFullscreen) iframe.webkitRequestFullscreen();
-			}
-		});
 		targetElement.replaceWith(container);
 		// LAZY LOADING with Intersection Observer + Queue