hanayo/main.go

package main

// about using johnniedoe/contrib/gzip:
// johnniedoe's fork fixes a critical issue for which .String resulted in
// an ERR_DECODING_FAILED. This is an actual pull request on the contrib
// repo, but apparently, gin is dead.

import (
	"encoding/gob"
	"fmt"
	"time"

	"github.com/fatih/structs"
	"github.com/getsentry/raven-go"
	"github.com/gin-gonic/contrib/sessions"
	"github.com/gin-gonic/gin"
	_ "github.com/go-sql-driver/mysql"
	"github.com/jmoiron/sqlx"
	"github.com/johnniedoe/contrib/gzip"
	"github.com/thehowl/conf"
	"github.com/thehowl/qsql"
	"gopkg.in/mailgun/mailgun-go.v1"
	"gopkg.in/redis.v5"
	"zxq.co/ripple/agplwarning"
	"github.com/osuYozora/hanayo/modules/btcaddress"
	"github.com/osuYozora/hanayo/modules/btcconversions"
	"github.com/osuYozora/hanayo/routers/oauth"
	"github.com/osuYozora/hanayo/routers/pagemappings"
	"github.com/osuYozora/hanayo/services"
	"github.com/osuYozora/hanayo/services/cieca"
	"zxq.co/ripple/schiavolib"
	"zxq.co/x/rs"
)

var startTime = time.Now()

var (
	config struct {
		// Essential configuration that must be always checked for every environment.
		ListenTo      string `description:"ip:port from which to take requests."`
		Unix          bool   `description:"Whether ListenTo is an unix socket."`
		DSN           string `description:"MySQL server DSN"`
		RedisEnable   bool
		AvatarURL     string
		BaseURL       string
		API           string
		BanchoAPI     string
		CheesegullAPI string
		APISecret     string
		Offline       bool `description:"If this is true, files will be served from the local server instead of the CDN."`

		MainRippleFolder string `description:"Folder where all the non-go projects are contained, such as old-frontend, lets, ci-system. Used for changelog."`
		AvatarsFolder    string `description:"location folder of avatars, used for placing the avatars from the avatar change page."`

		CookieSecret string

		RedisMaxConnections int
		RedisNetwork        string
		RedisAddress        string
		RedisPassword       string

		DiscordServer string

		BaseAPIPublic string

		Production int `description:"This is a fake configuration value. All of the following from now on should only really be set in a production environment."`

		MailgunDomain        string
		MailgunPrivateAPIKey string
		MailgunPublicAPIKey  string
		MailgunFrom          string

		RecaptchaSite    string
		RecaptchaPrivate string

		DiscordOAuthID     string
		DiscordOAuthSecret string
		DonorBotURL        string
		DonorBotSecret     string

		CoinbaseAPIKey    string
		CoinbaseAPISecret string

		SentryDSN string

		IP_API string
	}
	configMap map[string]interface{}
	db        *sqlx.DB
	qb        *qsql.DB
	mg        mailgun.Mailgun
	rd        *redis.Client
)

// Services etc
var (
	CSRF services.CSRF
)

func main() {
	err := agplwarning.Warn("ripple", "Hanayo")
	if err != nil {
		fmt.Println(err)
	}

	fmt.Println("hanayo " + version)

	err = conf.Load(&config, "hanayo.conf")
	switch err {
	case nil:
		// carry on
	case conf.ErrNoFile:
		conf.Export(config, "hanayo.conf")
		fmt.Println("The configuration file was not found. We created one for you.")
		return
	default:
		panic(err)
	}

	var configDefaults = map[*string]string{
		&config.ListenTo:         ":45221",
		&config.CookieSecret:     rs.String(46),
		&config.AvatarURL:        "https://a.ripple.moe",
		&config.BaseURL:          "https://ripple.moe",
		&config.BanchoAPI:        "https://c.ripple.moe",
		&config.CheesegullAPI:    "https://storage.ripple.moe/api",
		&config.API:              "http://localhost:40001/api/v1/",
		&config.APISecret:        "Potato",
		&config.IP_API:           "https://ip.zxq.co",
		&config.DiscordServer:    "#",
		&config.MainRippleFolder: "/home/ripple/ripple",
		&config.MailgunFrom:      `"Ripple" <noreply@ripple.moe>`,
	}
	for key, value := range configDefaults {
		if *key == "" {
			*key = value
		}
	}

	configMap = structs.Map(config)

	// initialise db
	db, err = sqlx.Open("mysql", config.DSN+"?parseTime=true")
	if err != nil {
		panic(err)
	}
	qb = qsql.New(db.DB)
	if err != nil {
		panic(err)
	}

	// initialise mailgun
	mg = mailgun.NewMailgun(
		config.MailgunDomain,
		config.MailgunPrivateAPIKey,
		config.MailgunPublicAPIKey,
	)

	// initialise CSRF service
	CSRF = cieca.NewCSRF()

	if gin.Mode() == gin.DebugMode {
		fmt.Println("Development environment detected. Starting fsnotify on template folder...")
		err := reloader()
		if err != nil {
			fmt.Println(err)
		}
	}

	// initialise redis
	rd = redis.NewClient(&redis.Options{
		Addr:     config.RedisAddress,
		Password: config.RedisPassword,
	})

	// initialise oauth
	setUpOauth()

	// initialise btcaddress
	btcaddress.Redis = rd
	btcaddress.APIKey = config.CoinbaseAPIKey
	btcaddress.APISecret = config.CoinbaseAPISecret

	// initialise schiavo
	schiavo.Prefix = "hanayo"
	schiavo.Bunker.Send(fmt.Sprintf("STARTUATO, mode: %s", gin.Mode()))

	// even if it's not release, we say that it's release
	// so that gin doesn't spam
	gin.SetMode(gin.ReleaseMode)

	gobRegisters := []interface{}{
		[]message{},
		errorMessage{},
		infoMessage{},
		neutralMessage{},
		warningMessage{},
		successMessage{},
	}
	for _, el := range gobRegisters {
		gob.Register(el)
	}

	fmt.Println("Importing templates...")
	loadTemplates("")

	fmt.Println("Setting up rate limiter...")
	setUpLimiter()

	fmt.Println("Exporting configuration...")

	conf.Export(config, "hanayo.conf")

	fmt.Println("Intialisation:", time.Since(startTime))

	httpLoop()
}

func httpLoop() {
	for {
		e := generateEngine()
		fmt.Println("Listening on", config.ListenTo)
		if !startuato(e) {
			break
		}
	}
}

func generateEngine() *gin.Engine {
	fmt.Println("Starting session system...")
	var store sessions.Store
	if config.RedisMaxConnections != 0 {
		var err error
		store, err = sessions.NewRedisStore(
			config.RedisMaxConnections,
			config.RedisNetwork,
			config.RedisAddress,
			config.RedisPassword,
			[]byte(config.CookieSecret),
		)
		if err != nil {
			fmt.Println(err)
			store = sessions.NewCookieStore([]byte(config.CookieSecret))
		}
	} else {
		store = sessions.NewCookieStore([]byte(config.CookieSecret))
	}

	r := gin.Default()

	// sentry
	if config.SentryDSN != "" {
		ravenClient, err := raven.New(config.SentryDSN)
		if err != nil {
			fmt.Println(err)
		} else {
			r.Use(Recovery(ravenClient, false))
		}
	}

	r.Use(
		gzip.Gzip(gzip.DefaultCompression),
		pagemappings.CheckRedirect,
		sessions.Sessions("session", store),
		sessionInitializer(),
		rateLimiter(false),
		twoFALock,
	)

	r.Static("/static", "static")
	r.StaticFile("/favicon.ico", "static/favicon.ico")

	r.POST("/login", loginSubmit)
	r.GET("/logout", logout)

	r.GET("/register", register)
	r.POST("/register", registerSubmit)
	r.GET("/register/verify", verifyAccount)
	r.GET("/register/welcome", welcome)

	r.GET("/clans/create", ccreate)
	r.POST("/clans/create", ccreateSubmit)
	r.GET("/c/:cid", clanPage)

	r.GET("/u/:user", userProfile)
	r.GET("/rx/u/:user", relaxProfile)
	r.GET("/ap/u/:user", autoProfile)
	r.GET("/b/:bid", beatmapInfo)

	r.POST("/pwreset", passwordReset)
	r.GET("/pwreset/continue", passwordResetContinue)
	r.POST("/pwreset/continue", passwordResetContinueSubmit)

	r.GET("/2fa_gateway", tfaGateway)
	r.GET("/2fa_gateway/clear", clear2fa)
	r.GET("/2fa_gateway/verify", verify2fa)
	r.GET("/2fa_gateway/recover", recover2fa)
	r.POST("/2fa_gateway/recover", recover2faSubmit)

	r.POST("/irc/generate", ircGenToken)

	r.GET("/settings/password", changePassword)
	r.GET("/settings/authorized_applications", authorizedApplications)
	r.POST("/settings/authorized_applications/revoke", revokeAuthorization)
	r.POST("/settings/password", changePasswordSubmit)
	r.POST("/settings/userpage/parse", parseBBCode)
	r.POST("/settings/avatar", avatarSubmit)
	r.POST("/settings/2fa/disable", disable2fa)
	r.POST("/settings/2fa/totp", totpSetup)
	r.GET("/settings/discord/finish", discordFinish)
	r.POST("/settings/profbackground/:type", profBackground)
	r.POST("/settings/clansettings", createInvite)
	r.POST("settings/clansettings/k", clanKick)

	r.POST("/dev/tokens/create", createAPIToken)
	r.POST("/dev/tokens/delete", deleteAPIToken)
	r.POST("/dev/tokens/edit", editAPIToken)
	r.GET("/dev/apps", getOAuthApplications)
	r.GET("/dev/apps/edit", editOAuthApplication)
	r.POST("/dev/apps/edit", editOAuthApplicationSubmit)
	r.POST("/dev/apps/delete", deleteOAuthApplication)

	r.GET("/oauth/authorize", oauth.Authorize)
	r.POST("/oauth/authorize", oauth.Authorize)
	r.GET("/oauth/token", oauth.Token)
	r.POST("/oauth/token", oauth.Token)

	r.GET("/clans/invite/:inv", clanInvite)

	r.GET("/donate/rates", btcconversions.GetRates)

	r.Any("/blog/*url", blogRedirect)

	loadSimplePages(r)

	r.NoRoute(notFound)

	return r
}

const alwaysRespondText = `Ooops! Looks like something went really wrong while trying to process your request.
Perhaps report this to a Ripple developer?
Retrying doing again what you were trying to do might work, too.`
replace zxq.co/ripple/hanayo 2019-02-23 13:29:15 +00:00			`package main`

			`// about using johnniedoe/contrib/gzip:`
			`// johnniedoe's fork fixes a critical issue for which .String resulted in`
			`// an ERR_DECODING_FAILED. This is an actual pull request on the contrib`
			`// repo, but apparently, gin is dead.`

			`import (`
			`"encoding/gob"`
			`"fmt"`
			`"time"`

			`"github.com/fatih/structs"`
			`"github.com/getsentry/raven-go"`
			`"github.com/gin-gonic/contrib/sessions"`
			`"github.com/gin-gonic/gin"`
			`_ "github.com/go-sql-driver/mysql"`
			`"github.com/jmoiron/sqlx"`
			`"github.com/johnniedoe/contrib/gzip"`
			`"github.com/thehowl/conf"`
			`"github.com/thehowl/qsql"`
			`"gopkg.in/mailgun/mailgun-go.v1"`
			`"gopkg.in/redis.v5"`
			`"zxq.co/ripple/agplwarning"`
			`"github.com/osuYozora/hanayo/modules/btcaddress"`
			`"github.com/osuYozora/hanayo/modules/btcconversions"`
			`"github.com/osuYozora/hanayo/routers/oauth"`
			`"github.com/osuYozora/hanayo/routers/pagemappings"`
			`"github.com/osuYozora/hanayo/services"`
			`"github.com/osuYozora/hanayo/services/cieca"`
			`"zxq.co/ripple/schiavolib"`
			`"zxq.co/x/rs"`
			`)`

			`var startTime = time.Now()`

			`var (`
			`config struct {`
			`// Essential configuration that must be always checked for every environment.`
			ListenTo string `description:"ip:port from which to take requests."`
			Unix bool `description:"Whether ListenTo is an unix socket."`
			DSN string `description:"MySQL server DSN"`
			`RedisEnable bool`
			`AvatarURL string`
			`BaseURL string`
			`API string`
			`BanchoAPI string`
			`CheesegullAPI string`
			`APISecret string`
			Offline bool `description:"If this is true, files will be served from the local server instead of the CDN."`

			MainRippleFolder string `description:"Folder where all the non-go projects are contained, such as old-frontend, lets, ci-system. Used for changelog."`
			AvatarsFolder string `description:"location folder of avatars, used for placing the avatars from the avatar change page."`

			`CookieSecret string`

			`RedisMaxConnections int`
			`RedisNetwork string`
			`RedisAddress string`
			`RedisPassword string`

			`DiscordServer string`

			`BaseAPIPublic string`

			Production int `description:"This is a fake configuration value. All of the following from now on should only really be set in a production environment."`

			`MailgunDomain string`
			`MailgunPrivateAPIKey string`
			`MailgunPublicAPIKey string`
			`MailgunFrom string`

			`RecaptchaSite string`
			`RecaptchaPrivate string`

			`DiscordOAuthID string`
			`DiscordOAuthSecret string`
			`DonorBotURL string`
			`DonorBotSecret string`

			`CoinbaseAPIKey string`
			`CoinbaseAPISecret string`

			`SentryDSN string`

			`IP_API string`
			`}`
			`configMap map[string]interface{}`
			`db *sqlx.DB`
			`qb *qsql.DB`
			`mg mailgun.Mailgun`
			`rd *redis.Client`
			`)`

			`// Services etc`
			`var (`
			`CSRF services.CSRF`
			`)`

			`func main() {`
			`err := agplwarning.Warn("ripple", "Hanayo")`
			`if err != nil {`
			`fmt.Println(err)`
			`}`

			`fmt.Println("hanayo " + version)`

			`err = conf.Load(&config, "hanayo.conf")`
			`switch err {`
			`case nil:`
			`// carry on`
			`case conf.ErrNoFile:`
			`conf.Export(config, "hanayo.conf")`
			`fmt.Println("The configuration file was not found. We created one for you.")`
			`return`
			`default:`
			`panic(err)`
			`}`

			`var configDefaults = map[*string]string{`
			`&config.ListenTo: ":45221",`
			`&config.CookieSecret: rs.String(46),`
			`&config.AvatarURL: "https://a.ripple.moe",`
			`&config.BaseURL: "https://ripple.moe",`
			`&config.BanchoAPI: "https://c.ripple.moe",`
			`&config.CheesegullAPI: "https://storage.ripple.moe/api",`
			`&config.API: "http://localhost:40001/api/v1/",`
			`&config.APISecret: "Potato",`
			`&config.IP_API: "https://ip.zxq.co",`
			`&config.DiscordServer: "#",`
			`&config.MainRippleFolder: "/home/ripple/ripple",`
			&config.MailgunFrom: `"Ripple" <noreply@ripple.moe>`,
			`}`
			`for key, value := range configDefaults {`
			`if *key == "" {`
			`*key = value`
			`}`
			`}`

			`configMap = structs.Map(config)`

			`// initialise db`
			`db, err = sqlx.Open("mysql", config.DSN+"?parseTime=true")`
			`if err != nil {`
			`panic(err)`
			`}`
			`qb = qsql.New(db.DB)`
			`if err != nil {`
			`panic(err)`
			`}`

			`// initialise mailgun`
			`mg = mailgun.NewMailgun(`
			`config.MailgunDomain,`
			`config.MailgunPrivateAPIKey,`
			`config.MailgunPublicAPIKey,`
			`)`

			`// initialise CSRF service`
			`CSRF = cieca.NewCSRF()`

			`if gin.Mode() == gin.DebugMode {`
			`fmt.Println("Development environment detected. Starting fsnotify on template folder...")`
			`err := reloader()`
			`if err != nil {`
			`fmt.Println(err)`
			`}`
			`}`

			`// initialise redis`
			`rd = redis.NewClient(&redis.Options{`
			`Addr: config.RedisAddress,`
			`Password: config.RedisPassword,`
			`})`

			`// initialise oauth`
			`setUpOauth()`

			`// initialise btcaddress`
			`btcaddress.Redis = rd`
			`btcaddress.APIKey = config.CoinbaseAPIKey`
			`btcaddress.APISecret = config.CoinbaseAPISecret`

			`// initialise schiavo`
			`schiavo.Prefix = "hanayo"`
			`schiavo.Bunker.Send(fmt.Sprintf("STARTUATO, mode: %s", gin.Mode()))`

			`// even if it's not release, we say that it's release`
			`// so that gin doesn't spam`
			`gin.SetMode(gin.ReleaseMode)`

			`gobRegisters := []interface{}{`
			`[]message{},`
			`errorMessage{},`
			`infoMessage{},`
			`neutralMessage{},`
			`warningMessage{},`
			`successMessage{},`
			`}`
			`for _, el := range gobRegisters {`
			`gob.Register(el)`
			`}`

			`fmt.Println("Importing templates...")`
			`loadTemplates("")`

			`fmt.Println("Setting up rate limiter...")`
			`setUpLimiter()`

			`fmt.Println("Exporting configuration...")`

			`conf.Export(config, "hanayo.conf")`

			`fmt.Println("Intialisation:", time.Since(startTime))`

			`httpLoop()`
			`}`

			`func httpLoop() {`
			`for {`
			`e := generateEngine()`
			`fmt.Println("Listening on", config.ListenTo)`
			`if !startuato(e) {`
			`break`
			`}`
			`}`
			`}`

			`func generateEngine() *gin.Engine {`
			`fmt.Println("Starting session system...")`
			`var store sessions.Store`
			`if config.RedisMaxConnections != 0 {`
			`var err error`
			`store, err = sessions.NewRedisStore(`
			`config.RedisMaxConnections,`
			`config.RedisNetwork,`
			`config.RedisAddress,`
			`config.RedisPassword,`
			`[]byte(config.CookieSecret),`
			`)`
			`if err != nil {`
			`fmt.Println(err)`
			`store = sessions.NewCookieStore([]byte(config.CookieSecret))`
			`}`
			`} else {`
			`store = sessions.NewCookieStore([]byte(config.CookieSecret))`
			`}`

			`r := gin.Default()`

			`// sentry`
			`if config.SentryDSN != "" {`
			`ravenClient, err := raven.New(config.SentryDSN)`
			`if err != nil {`
			`fmt.Println(err)`
			`} else {`
			`r.Use(Recovery(ravenClient, false))`
			`}`
			`}`

			`r.Use(`
			`gzip.Gzip(gzip.DefaultCompression),`
			`pagemappings.CheckRedirect,`
			`sessions.Sessions("session", store),`
			`sessionInitializer(),`
			`rateLimiter(false),`
			`twoFALock,`
			`)`

			`r.Static("/static", "static")`
			`r.StaticFile("/favicon.ico", "static/favicon.ico")`

			`r.POST("/login", loginSubmit)`
			`r.GET("/logout", logout)`

			`r.GET("/register", register)`
			`r.POST("/register", registerSubmit)`
			`r.GET("/register/verify", verifyAccount)`
			`r.GET("/register/welcome", welcome)`

add clans 2019-02-23 21:24:59 +00:00			`r.GET("/clans/create", ccreate)`
			`r.POST("/clans/create", ccreateSubmit)`
			`r.GET("/c/:cid", clanPage)`

replace zxq.co/ripple/hanayo 2019-02-23 13:29:15 +00:00			`r.GET("/u/:user", userProfile)`
Add relax and autopilot profile 2019-02-24 00:16:44 +00:00			`r.GET("/rx/u/:user", relaxProfile)`
			`r.GET("/ap/u/:user", autoProfile)`
replace zxq.co/ripple/hanayo 2019-02-23 13:29:15 +00:00			`r.GET("/b/:bid", beatmapInfo)`

			`r.POST("/pwreset", passwordReset)`
			`r.GET("/pwreset/continue", passwordResetContinue)`
			`r.POST("/pwreset/continue", passwordResetContinueSubmit)`

			`r.GET("/2fa_gateway", tfaGateway)`
			`r.GET("/2fa_gateway/clear", clear2fa)`
			`r.GET("/2fa_gateway/verify", verify2fa)`
			`r.GET("/2fa_gateway/recover", recover2fa)`
			`r.POST("/2fa_gateway/recover", recover2faSubmit)`

			`r.POST("/irc/generate", ircGenToken)`

			`r.GET("/settings/password", changePassword)`
			`r.GET("/settings/authorized_applications", authorizedApplications)`
			`r.POST("/settings/authorized_applications/revoke", revokeAuthorization)`
			`r.POST("/settings/password", changePasswordSubmit)`
			`r.POST("/settings/userpage/parse", parseBBCode)`
			`r.POST("/settings/avatar", avatarSubmit)`
			`r.POST("/settings/2fa/disable", disable2fa)`
			`r.POST("/settings/2fa/totp", totpSetup)`
			`r.GET("/settings/discord/finish", discordFinish)`
			`r.POST("/settings/profbackground/:type", profBackground)`
a 2019-02-24 14:51:40 +00:00			`r.POST("/settings/clansettings", createInvite)`
			`r.POST("settings/clansettings/k", clanKick)`
replace zxq.co/ripple/hanayo 2019-02-23 13:29:15 +00:00
			`r.POST("/dev/tokens/create", createAPIToken)`
			`r.POST("/dev/tokens/delete", deleteAPIToken)`
			`r.POST("/dev/tokens/edit", editAPIToken)`
			`r.GET("/dev/apps", getOAuthApplications)`
			`r.GET("/dev/apps/edit", editOAuthApplication)`
			`r.POST("/dev/apps/edit", editOAuthApplicationSubmit)`
			`r.POST("/dev/apps/delete", deleteOAuthApplication)`

			`r.GET("/oauth/authorize", oauth.Authorize)`
			`r.POST("/oauth/authorize", oauth.Authorize)`
			`r.GET("/oauth/token", oauth.Token)`
			`r.POST("/oauth/token", oauth.Token)`

Update main.go 2019-02-24 15:25:17 +00:00			`r.GET("/clans/invite/:inv", clanInvite)`

replace zxq.co/ripple/hanayo 2019-02-23 13:29:15 +00:00			`r.GET("/donate/rates", btcconversions.GetRates)`

			`r.Any("/blog/*url", blogRedirect)`

			`loadSimplePages(r)`

			`r.NoRoute(notFound)`

			`return r`
			`}`

			const alwaysRespondText = `Ooops! Looks like something went really wrong while trying to process your request.
			`Perhaps report this to a Ripple developer?`
			Retrying doing again what you were trying to do might work, too.`