c10acb1279
* Fixed bookmarking failing to convert to webp * Brought the ag-swipe/ng-swipe code into Kavita due to being abandoned by developer and angular requirements. * Fixed average reading time per week finally * Cleaned up some extra decimals on time duration pipe * Don't try to update index.html for base url on local. Fixed ag-swipe on prod mode. * Updated a link on theme manager to point to the new github * Range knobs should be primary color on firefox too * Implemented the ability to get thumbnails of pages inside an archive or pdf. * Updated packages and fixed opds-ps 1.2 issue * Fixed lock file * Allow Kavita's Swagger to hit instances with CORS * Added IP/Request logging for Security Audits * Linked up Summary tag from CBL into Kavita. * Redid the migration so SecurityEvent now has UTC date as well. * Split security logging to a separate file * Update to new versions of checkout and setup * Added a PR check on PR body to ensure that it doesn't contain any characters that break our discord hook. * Updating action * optimize regex in action * Fixed an issue where fit to width would cause the actual height of the image to be shown for pagination bars, instead of rendered. * Added some new code in GetPageFromFiles to ensure pages that exceed array map down to last file. * Added comment about robots * Fixed up unit tests for new ReaderService signature * Kavita now cleans up empty reading lists at night * Don't allow nightly cleanup to run if we are running media conversion tasks * Fixed some bugs in typeahead, it should behave much more reliably. * Fix an issue where emulate comic book wasn't extending to the bottom properly * Added support for Series Chapter 001 Volume 001 * Refactor XFrameOptions="SameOrigins" out to allow users to override in appsettings.json. * Added a rate limiter for some endpoints, but it doesn't seem to be triggering --------- Co-authored-by: Robbie Davis <robbie@therobbiedavis.com>
433 lines
16 KiB
C#
433 lines
16 KiB
C#
using System;
|
|
using System.Collections.Generic;
|
|
using System.IO;
|
|
using System.IO.Compression;
|
|
using System.Linq;
|
|
using System.Net;
|
|
using System.Net.Sockets;
|
|
using System.Reflection;
|
|
using System.Threading.RateLimiting;
|
|
using System.Threading.Tasks;
|
|
using API.Constants;
|
|
using API.Data;
|
|
using API.Entities;
|
|
using API.Entities.Enums;
|
|
using API.Extensions;
|
|
using API.Logging;
|
|
using API.Middleware;
|
|
using API.Middleware.RateLimit;
|
|
using API.Services;
|
|
using API.Services.HostedServices;
|
|
using API.Services.Tasks;
|
|
using API.SignalR;
|
|
using Hangfire;
|
|
using HtmlAgilityPack;
|
|
using Kavita.Common;
|
|
using Kavita.Common.EnvironmentInfo;
|
|
using Microsoft.AspNetCore.Builder;
|
|
using Microsoft.AspNetCore.Hosting;
|
|
using Microsoft.AspNetCore.Http.Features;
|
|
using Microsoft.AspNetCore.HttpOverrides;
|
|
using Microsoft.AspNetCore.Identity;
|
|
using Microsoft.AspNetCore.Mvc;
|
|
using Microsoft.AspNetCore.ResponseCompression;
|
|
using Microsoft.AspNetCore.StaticFiles;
|
|
using Microsoft.Extensions.Configuration;
|
|
using Microsoft.Extensions.DependencyInjection;
|
|
using Microsoft.Extensions.Hosting;
|
|
using Microsoft.Extensions.Logging;
|
|
using Microsoft.Net.Http.Headers;
|
|
using Microsoft.OpenApi.Models;
|
|
using Serilog;
|
|
using TaskScheduler = API.Services.TaskScheduler;
|
|
|
|
namespace API;
|
|
|
|
public class Startup
|
|
{
|
|
private readonly IConfiguration _config;
|
|
private readonly IWebHostEnvironment _env;
|
|
|
|
public Startup(IConfiguration config, IWebHostEnvironment env)
|
|
{
|
|
_config = config;
|
|
_env = env;
|
|
}
|
|
|
|
// This method gets called by the runtime. Use this method to add services to the container.
|
|
public void ConfigureServices(IServiceCollection services)
|
|
{
|
|
services.AddApplicationServices(_config, _env);
|
|
|
|
services.AddControllers(options =>
|
|
{
|
|
options.CacheProfiles.Add(ResponseCacheProfiles.Instant,
|
|
new CacheProfile()
|
|
{
|
|
Duration = 30,
|
|
Location = ResponseCacheLocation.None,
|
|
});
|
|
options.CacheProfiles.Add(ResponseCacheProfiles.FiveMinute,
|
|
new CacheProfile()
|
|
{
|
|
Duration = 60 * 5,
|
|
Location = ResponseCacheLocation.None,
|
|
});
|
|
options.CacheProfiles.Add(ResponseCacheProfiles.TenMinute,
|
|
new CacheProfile()
|
|
{
|
|
Duration = 60 * 10,
|
|
Location = ResponseCacheLocation.None,
|
|
NoStore = false
|
|
});
|
|
options.CacheProfiles.Add(ResponseCacheProfiles.Hour,
|
|
new CacheProfile()
|
|
{
|
|
Duration = 60 * 60,
|
|
Location = ResponseCacheLocation.None,
|
|
NoStore = false
|
|
});
|
|
options.CacheProfiles.Add(ResponseCacheProfiles.Statistics,
|
|
new CacheProfile()
|
|
{
|
|
Duration = 60 * 60 * 6,
|
|
Location = ResponseCacheLocation.None,
|
|
});
|
|
options.CacheProfiles.Add(ResponseCacheProfiles.Images,
|
|
new CacheProfile()
|
|
{
|
|
Duration = 60,
|
|
Location = ResponseCacheLocation.None,
|
|
NoStore = false
|
|
});
|
|
options.CacheProfiles.Add(ResponseCacheProfiles.Month,
|
|
new CacheProfile()
|
|
{
|
|
Duration = TimeSpan.FromDays(30).Seconds,
|
|
Location = ResponseCacheLocation.Client,
|
|
NoStore = false
|
|
});
|
|
});
|
|
services.Configure<ForwardedHeadersOptions>(options =>
|
|
{
|
|
options.ForwardedHeaders = ForwardedHeaders.All;
|
|
foreach(var proxy in _config.GetSection("KnownProxies").AsEnumerable().Where(c => c.Value != null)) {
|
|
options.KnownProxies.Add(IPAddress.Parse(proxy.Value!));
|
|
}
|
|
});
|
|
services.AddCors();
|
|
services.AddIdentityServices(_config);
|
|
services.AddSwaggerGen(c =>
|
|
{
|
|
c.SwaggerDoc("v1", new OpenApiInfo
|
|
{
|
|
Version = BuildInfo.Version.ToString(),
|
|
Title = "Kavita",
|
|
Description = "Kavita provides a set of APIs that are authenticated by JWT. JWT token can be copied from local storage.",
|
|
License = new OpenApiLicense
|
|
{
|
|
Name = "GPL-3.0",
|
|
Url = new Uri("https://github.com/Kareadita/Kavita/blob/develop/LICENSE")
|
|
}
|
|
});
|
|
|
|
var xmlFile = $"{Assembly.GetExecutingAssembly().GetName().Name}.xml";
|
|
var filePath = Path.Combine(AppContext.BaseDirectory, xmlFile);
|
|
c.IncludeXmlComments(filePath, true);
|
|
c.AddSecurityDefinition("Bearer", new OpenApiSecurityScheme {
|
|
In = ParameterLocation.Header,
|
|
Description = "Please insert JWT with Bearer into field",
|
|
Name = "Authorization",
|
|
Type = SecuritySchemeType.ApiKey
|
|
});
|
|
|
|
c.AddSecurityRequirement(new OpenApiSecurityRequirement {
|
|
{
|
|
new OpenApiSecurityScheme
|
|
{
|
|
Reference = new OpenApiReference
|
|
{
|
|
Type = ReferenceType.SecurityScheme,
|
|
Id = "Bearer"
|
|
}
|
|
},
|
|
Array.Empty<string>()
|
|
}
|
|
});
|
|
|
|
c.AddServer(new OpenApiServer
|
|
{
|
|
Url = "{protocol}://{hostpath}",
|
|
Variables = new Dictionary<string, OpenApiServerVariable>
|
|
{
|
|
{ "protocol", new OpenApiServerVariable { Default = "http", Enum = new List<string> { "http", "https" } } },
|
|
{ "hostpath", new OpenApiServerVariable { Default = "localhost:5000" } }
|
|
}
|
|
});
|
|
});
|
|
services.AddResponseCompression(options =>
|
|
{
|
|
options.Providers.Add<BrotliCompressionProvider>();
|
|
options.Providers.Add<GzipCompressionProvider>();
|
|
options.MimeTypes =
|
|
ResponseCompressionDefaults.MimeTypes.Concat(
|
|
new[] { "image/jpeg", "image/jpg" });
|
|
options.EnableForHttps = true;
|
|
});
|
|
services.Configure<BrotliCompressionProviderOptions>(options =>
|
|
{
|
|
options.Level = CompressionLevel.Fastest;
|
|
});
|
|
|
|
services.AddResponseCaching();
|
|
|
|
services.AddRateLimiter(options =>
|
|
{
|
|
options.AddPolicy("Authentication", httpContext =>
|
|
new AuthenticationRateLimiterPolicy().GetPartition(httpContext));
|
|
// RateLimitPartition.GetFixedWindowLimiter(httpContext.Connection.RemoteIpAddress?.ToString(),
|
|
// partition => new FixedWindowRateLimiterOptions
|
|
// {
|
|
// AutoReplenishment = true,
|
|
// PermitLimit = 1,
|
|
// Window = TimeSpan.FromMinutes(1),
|
|
// }));
|
|
});
|
|
|
|
services.AddHangfire(configuration => configuration
|
|
.UseSimpleAssemblyNameTypeSerializer()
|
|
.UseRecommendedSerializerSettings()
|
|
.UseInMemoryStorage());
|
|
//.UseSQLiteStorage("config/Hangfire.db")); // UseSQLiteStorage - SQLite has some issues around resuming jobs when aborted (and locking can cause high utilization)
|
|
|
|
// Add the processing server as IHostedService
|
|
services.AddHangfireServer(options =>
|
|
{
|
|
options.Queues = new[] {TaskScheduler.ScanQueue, TaskScheduler.DefaultQueue};
|
|
});
|
|
// Add IHostedService for startup tasks
|
|
// Any services that should be bootstrapped go here
|
|
services.AddHostedService<StartupTasksHostedService>();
|
|
}
|
|
|
|
// This method gets called by the runtime. Use this method to configure the HTTP request pipeline.
|
|
public void Configure(IApplicationBuilder app, IBackgroundJobClient backgroundJobs, IWebHostEnvironment env,
|
|
IHostApplicationLifetime applicationLifetime, IServiceProvider serviceProvider, ICacheService cacheService,
|
|
IDirectoryService directoryService, IUnitOfWork unitOfWork, IBackupService backupService, IImageService imageService)
|
|
{
|
|
|
|
// Apply Migrations
|
|
try
|
|
{
|
|
Task.Run(async () =>
|
|
{
|
|
// Apply all migrations on startup
|
|
var logger = serviceProvider.GetRequiredService<ILogger<Program>>();
|
|
var userManager = serviceProvider.GetRequiredService<UserManager<AppUser>>();
|
|
var themeService = serviceProvider.GetRequiredService<IThemeService>();
|
|
var dataContext = serviceProvider.GetRequiredService<DataContext>();
|
|
var readingListService = serviceProvider.GetRequiredService<IReadingListService>();
|
|
|
|
|
|
logger.LogInformation("Running Migrations");
|
|
|
|
// Only run this if we are upgrading
|
|
await MigrateChangePasswordRoles.Migrate(unitOfWork, userManager);
|
|
await MigrateRemoveExtraThemes.Migrate(unitOfWork, themeService);
|
|
|
|
// only needed for v0.5.4 and v0.6.0
|
|
await MigrateNormalizedEverything.Migrate(unitOfWork, dataContext, logger);
|
|
|
|
// v0.6.0
|
|
await MigrateChangeRestrictionRoles.Migrate(unitOfWork, userManager, logger);
|
|
await MigrateReadingListAgeRating.Migrate(unitOfWork, dataContext, readingListService, logger);
|
|
|
|
// v0.6.2 or v0.7
|
|
await MigrateSeriesRelationsImport.Migrate(dataContext, logger);
|
|
|
|
// v0.6.8 or v0.7
|
|
await MigrateUserProgressLibraryId.Migrate(unitOfWork, logger);
|
|
await MigrateToUtcDates.Migrate(unitOfWork, dataContext, logger);
|
|
|
|
// v0.7
|
|
await MigrateBrokenGMT1Dates.Migrate(unitOfWork, dataContext, logger);
|
|
|
|
// v0.7.2
|
|
await MigrateLoginRoles.Migrate(unitOfWork, userManager, logger);
|
|
|
|
// Update the version in the DB after all migrations are run
|
|
var installVersion = await unitOfWork.SettingsRepository.GetSettingAsync(ServerSettingKey.InstallVersion);
|
|
installVersion.Value = BuildInfo.Version.ToString();
|
|
unitOfWork.SettingsRepository.Update(installVersion);
|
|
|
|
await unitOfWork.CommitAsync();
|
|
logger.LogInformation("Running Migrations - done");
|
|
}).GetAwaiter()
|
|
.GetResult();
|
|
}
|
|
catch (Exception ex)
|
|
{
|
|
var logger = serviceProvider.GetRequiredService<ILogger<Program>>();
|
|
logger.LogCritical(ex, "An error occurred during migration");
|
|
}
|
|
|
|
|
|
|
|
app.UseMiddleware<ExceptionMiddleware>();
|
|
app.UseMiddleware<SecurityEventMiddleware>();
|
|
|
|
if (env.IsDevelopment())
|
|
{
|
|
app.UseSwagger();
|
|
app.UseSwaggerUI(c =>
|
|
{
|
|
c.SwaggerEndpoint("/swagger/v1/swagger.json", "Kavita API " + BuildInfo.Version);
|
|
});
|
|
}
|
|
|
|
if (env.IsDevelopment())
|
|
{
|
|
app.UseHangfireDashboard();
|
|
}
|
|
|
|
app.UseResponseCompression();
|
|
|
|
app.UseForwardedHeaders();
|
|
|
|
app.UseRateLimiter();
|
|
|
|
var basePath = Configuration.BaseUrl;
|
|
app.UsePathBase(basePath);
|
|
if (!env.IsDevelopment())
|
|
{
|
|
// We don't update the index.html in local as we don't serve from there
|
|
UpdateBaseUrlInIndex(basePath);
|
|
}
|
|
|
|
|
|
app.UseRouting();
|
|
|
|
// Ordering is important. Cors, authentication, authorization
|
|
if (env.IsDevelopment())
|
|
{
|
|
app.UseCors(policy => policy
|
|
.AllowAnyHeader()
|
|
.AllowAnyMethod()
|
|
.AllowCredentials() // For SignalR token query param
|
|
.WithOrigins("http://localhost:4200", $"http://{GetLocalIpAddress()}:4200", $"http://{GetLocalIpAddress()}:5000", "https://kavita.majora2007.duckdns.org")
|
|
.WithExposedHeaders("Content-Disposition", "Pagination"));
|
|
}
|
|
else
|
|
{
|
|
// Allow CORS for Kavita's url
|
|
app.UseCors(policy => policy
|
|
.AllowAnyHeader()
|
|
.AllowAnyMethod()
|
|
.AllowCredentials() // For SignalR token query param
|
|
.WithOrigins("https://kavita.majora2007.duckdns.org")
|
|
.WithExposedHeaders("Content-Disposition", "Pagination"));
|
|
}
|
|
|
|
app.UseResponseCaching();
|
|
|
|
app.UseAuthentication();
|
|
|
|
app.UseAuthorization();
|
|
|
|
app.UseDefaultFiles();
|
|
|
|
app.UseStaticFiles(new StaticFileOptions
|
|
{
|
|
ContentTypeProvider = new FileExtensionContentTypeProvider(),
|
|
HttpsCompression = HttpsCompressionMode.Compress,
|
|
OnPrepareResponse = ctx =>
|
|
{
|
|
ctx.Context.Response.Headers[HeaderNames.CacheControl] = "public,max-age=" + TimeSpan.FromHours(24);
|
|
ctx.Context.Response.Headers["X-Robots-Tag"] = "noindex,nofollow";
|
|
}
|
|
});
|
|
|
|
app.UseSerilogRequestLogging(opts
|
|
=>
|
|
{
|
|
opts.EnrichDiagnosticContext = LogEnricher.EnrichFromRequest;
|
|
});
|
|
|
|
app.Use(async (context, next) =>
|
|
{
|
|
context.Response.Headers[HeaderNames.Vary] =
|
|
new[] { "Accept-Encoding" };
|
|
|
|
// Don't let the site be iframed outside the same origin (clickjacking)
|
|
context.Response.Headers.XFrameOptions = Configuration.XFrameOptions;
|
|
|
|
// Setup CSP to ensure we load assets only from these origins
|
|
context.Response.Headers.Add("Content-Security-Policy", "frame-ancestors 'none';");
|
|
|
|
await next();
|
|
});
|
|
|
|
app.UseEndpoints(endpoints =>
|
|
{
|
|
endpoints.MapControllers();
|
|
endpoints.MapHub<MessageHub>("hubs/messages");
|
|
endpoints.MapHub<LogHub>("hubs/logs");
|
|
endpoints.MapHangfireDashboard();
|
|
endpoints.MapFallbackToController("Index", "Fallback");
|
|
});
|
|
|
|
applicationLifetime.ApplicationStopping.Register(OnShutdown);
|
|
applicationLifetime.ApplicationStarted.Register(() =>
|
|
{
|
|
try
|
|
{
|
|
var logger = serviceProvider.GetRequiredService<ILogger<Startup>>();
|
|
logger.LogInformation("Kavita - v{Version}", BuildInfo.Version);
|
|
}
|
|
catch (Exception)
|
|
{
|
|
/* Swallow Exception */
|
|
}
|
|
Console.WriteLine($"Kavita - v{BuildInfo.Version}");
|
|
});
|
|
|
|
var _logger = serviceProvider.GetRequiredService<ILogger<Startup>>();
|
|
_logger.LogInformation("Starting with base url as {BaseUrl}", basePath);
|
|
}
|
|
|
|
private static void UpdateBaseUrlInIndex(string baseUrl)
|
|
{
|
|
try
|
|
{
|
|
if (new OsInfo(Array.Empty<IOsVersionAdapter>()).IsDocker) return;
|
|
var htmlDoc = new HtmlDocument();
|
|
var indexHtmlPath = Path.Combine(Directory.GetCurrentDirectory(), "wwwroot", "index.html");
|
|
htmlDoc.Load(indexHtmlPath);
|
|
|
|
var baseNode = htmlDoc.DocumentNode.SelectSingleNode("/html/head/base");
|
|
baseNode.SetAttributeValue("href", baseUrl);
|
|
htmlDoc.Save(indexHtmlPath);
|
|
}
|
|
catch (Exception ex)
|
|
{
|
|
Log.Error(ex, "There was an error setting base url");
|
|
}
|
|
}
|
|
|
|
private static void OnShutdown()
|
|
{
|
|
Console.WriteLine("Server is shutting down. Please allow a few seconds to stop any background jobs...");
|
|
TaskScheduler.Client.Dispose();
|
|
System.Threading.Thread.Sleep(1000);
|
|
Console.WriteLine("You may now close the application window.");
|
|
}
|
|
|
|
private static string GetLocalIpAddress()
|
|
{
|
|
using var socket = new Socket(AddressFamily.InterNetwork, SocketType.Dgram, 0);
|
|
socket.Connect("8.8.8.8", 65530);
|
|
if (socket.LocalEndPoint is IPEndPoint endPoint) return endPoint.Address.ToString();
|
|
throw new KavitaException("No network adapters with an IPv4 address in the system!");
|
|
}
|
|
|
|
}
|