97 lines
3.2 KiB
Go
97 lines
3.2 KiB
Go
package server
|
|
|
|
import (
|
|
"database/sql"
|
|
"net/http"
|
|
"path/filepath"
|
|
"strings"
|
|
|
|
"mal/api/anime"
|
|
"mal/api/auth"
|
|
"mal/api/playback"
|
|
"mal/api/watchlist"
|
|
"mal/integrations/jikan"
|
|
"mal/internal/db"
|
|
"mal/internal/middleware"
|
|
pkgmiddleware "mal/pkg/middleware"
|
|
)
|
|
|
|
type Config struct {
|
|
DB *database.Queries
|
|
SQLDB *sql.DB
|
|
JikanClient *jikan.Client
|
|
AuthService *auth.Service
|
|
PlaybackProxySecret string
|
|
}
|
|
|
|
func withMimeTypes(next http.Handler) http.Handler {
|
|
return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
|
|
ext := strings.ToLower(filepath.Ext(r.URL.Path))
|
|
switch ext {
|
|
case ".js":
|
|
w.Header().Set("Content-Type", "application/javascript")
|
|
case ".css":
|
|
w.Header().Set("Content-Type", "text/css")
|
|
case ".svg":
|
|
w.Header().Set("Content-Type", "image/svg+xml")
|
|
case ".json":
|
|
w.Header().Set("Content-Type", "application/json")
|
|
}
|
|
next.ServeHTTP(w, r)
|
|
})
|
|
}
|
|
|
|
func NewRouter(cfg Config) http.Handler {
|
|
mux := http.NewServeMux()
|
|
|
|
authHandler := auth.NewHandler(cfg.AuthService)
|
|
|
|
watchlistSvc := watchlist.NewService(cfg.DB, cfg.SQLDB)
|
|
watchlistHandler := watchlist.NewHandler(watchlistSvc)
|
|
|
|
middleware.InitAuth(cfg.AuthService)
|
|
|
|
animeHandler := anime.NewHandler(cfg.JikanClient, cfg.DB)
|
|
playbackHandler := playback.NewHandler(nil, cfg.JikanClient)
|
|
|
|
// Serve static files
|
|
fs := http.FileServer(http.Dir("./static"))
|
|
mux.Handle("/static/", http.StripPrefix("/static/", fs))
|
|
|
|
// Serve built frontend assets
|
|
dist := http.FileServer(http.Dir("./dist"))
|
|
mux.Handle("/dist/", http.StripPrefix("/dist/", withMimeTypes(dist)))
|
|
|
|
mux.HandleFunc("/", animeHandler.HandleCatalog)
|
|
mux.HandleFunc("/search", animeHandler.HandleSearch)
|
|
mux.HandleFunc("/api/search-quick", animeHandler.HandleQuickSearch)
|
|
mux.HandleFunc("/anime/", animeHandler.HandleAnimeDetails)
|
|
mux.HandleFunc("/watch/", playbackHandler.HandleWatchPage)
|
|
mux.HandleFunc("/watch/proxy/stream", playbackHandler.HandleProxy)
|
|
mux.HandleFunc("/watch/proxy/segment", playbackHandler.HandleProxy)
|
|
mux.HandleFunc("/watch/proxy/subtitle", playbackHandler.HandleProxy)
|
|
mux.HandleFunc("/api/watch-progress", playbackHandler.HandleSaveProgress)
|
|
mux.HandleFunc("/api/watch-complete", playbackHandler.HandleCompleteAnime)
|
|
mux.HandleFunc("/api/watch/episode/", playbackHandler.HandleEpisodeData)
|
|
|
|
// Auth Endpoints
|
|
mux.HandleFunc("/login", func(w http.ResponseWriter, r *http.Request) {
|
|
if r.Method == http.MethodGet {
|
|
authHandler.HandleLoginPage(w, r)
|
|
} else {
|
|
pkgmiddleware.RateLimitAuth(pkgmiddleware.VerifyOrigin(http.HandlerFunc(authHandler.HandleLogin))).ServeHTTP(w, r)
|
|
}
|
|
})
|
|
|
|
// Watchlist Endpoints
|
|
mux.HandleFunc("/api/watchlist/card", watchlistHandler.HandleCardWatchlist)
|
|
mux.HandleFunc("/api/watchlist", watchlistHandler.HandleUpdateWatchlist)
|
|
mux.HandleFunc("/api/watchlist/", watchlistHandler.HandleDeleteWatchlist)
|
|
mux.HandleFunc("/watchlist", watchlistHandler.HandleGetWatchlist)
|
|
|
|
// Wrap mux with global CSRF origin verification and auth checking
|
|
protectedHandler := middleware.RequireGlobalAuthWithPolicy(middleware.NewAccessPolicy())(pkgmiddleware.VerifyOrigin(mux))
|
|
authenticatedHandler := middleware.Auth(cfg.AuthService)(protectedHandler)
|
|
return pkgmiddleware.RequestLogger(authenticatedHandler)
|
|
}
|