This repository has been archived by the owner on Jul 16, 2023. It is now read-only.
Commit
This commit does not belong to any branch on this repository, and may belong to a fork outside of the repository.
- Loading branch information
0 parents
commit 3e57805
Showing
19 changed files
with
386 additions
and
0 deletions.
There are no files selected for viewing
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
/config/config.php | ||
/vendor/ |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,21 @@ | ||
The MIT License (MIT) | ||
|
||
Copyright (c) 2018 Jos Ahrens | ||
|
||
Permission is hereby granted, free of charge, to any person obtaining a copy | ||
of this software and associated documentation files (the "Software"), to deal | ||
in the Software without restriction, including without limitation the rights | ||
to use, copy, modify, merge, publish, distribute, sublicense, and/or sell | ||
copies of the Software, and to permit persons to whom the Software is | ||
furnished to do so, subject to the following conditions: | ||
|
||
The above copyright notice and this permission notice shall be included in all | ||
copies or substantial portions of the Software. | ||
|
||
THE SOFTWARE IS PROVIDED "AS IS", WITHOUT WARRANTY OF ANY KIND, EXPRESS OR | ||
IMPLIED, INCLUDING BUT NOT LIMITED TO THE WARRANTIES OF MERCHANTABILITY, | ||
FITNESS FOR A PARTICULAR PURPOSE AND NONINFRINGEMENT. IN NO EVENT SHALL THE | ||
AUTHORS OR COPYRIGHT HOLDERS BE LIABLE FOR ANY CLAIM, DAMAGES OR OTHER | ||
LIABILITY, WHETHER IN AN ACTION OF CONTRACT, TORT OR OTHERWISE, ARISING FROM, | ||
OUT OF OR IN CONNECTION WITH THE SOFTWARE OR THE USE OR OTHER DEALINGS IN THE | ||
SOFTWARE. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,15 @@ | ||
# image.liefland.net | ||
|
||
(or alternatively known as: A super simplistic generic direct-link ShareX uploader service.) | ||
|
||
### Requirements | ||
|
||
PHP >= 7.2 | ||
|
||
### Documentation | ||
|
||
Read the documentation in `docs/` for full setup instructions. | ||
|
||
## License | ||
|
||
MIT |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,9 @@ | ||
{ | ||
"name": "zarthus/image.liefland.net", | ||
"description": "A super simplistic generic direct-link ShareX uploader service.", | ||
"type": "project", | ||
"license": "MIT", | ||
"require": { | ||
"php": ">=7.2" | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,25 @@ | ||
<?php | ||
|
||
return [ | ||
// Literal assertions: Check that $_SERVER[$key] === $value | ||
'headers' => [ | ||
// Need to generate one? Here's a quick command to do it: | ||
// $ php -r 'echo bin2hex(random_bytes(64));' | ||
'HTTP_X_AUTHORIZATION' => 'api key here', | ||
'HTTP_USER_AGENT' => 'ShareX', | ||
], | ||
// Path to the directory where files should be stored. | ||
'uploadDir' => __DIR__ . '/../images/', | ||
// URL where this project ("public") lives. | ||
'baseUrl' => 'https://example.org', | ||
// URL Where the images ("uploadDir") lives. | ||
'cdnUrl' => 'https://example.org/images', | ||
// ShareX sends the file name as the window it is recognized, enabling this might be a slight | ||
// privacy risk at expense of knowing what you're clicking on when you link this image. | ||
// If using this option, ensure ShareX's file naming is set to "%pn_%y-%mo-%d_%h-%mi-%s" or something else starting | ||
// with "%pn_" | ||
'useAppNamePrefix' => true, | ||
// Create an identically named file on the cdn with .json extension that contains metadata. Exposes information | ||
// to the public you might not want. You could reject access with your webserver config, or just set this to false. | ||
'writeJsonMetadata' => true, | ||
]; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,41 @@ | ||
JSON api responses: | ||
|
||
#### Image upload `POST` to `/upload.php`: | ||
|
||
```json | ||
{ | ||
"urls": { | ||
"full": "full url for image / cdn", | ||
"delete": "deletion link" | ||
}, | ||
"uploader": { | ||
"name": "set if header X-Sender is provided." | ||
}, | ||
"file": { | ||
"name": "original ShareX filename", | ||
"size": "size in bytes", | ||
"type": "the type we detected, currently we hardcode png as file extension" | ||
}, | ||
"meta": { | ||
"uploaded_on": "DateTime in iso8601 format" | ||
} | ||
} | ||
``` | ||
|
||
Or 401: Unauthorized (plain text) on any failure. | ||
|
||
#### Deletion request `DELETE` to `/delete.php`: | ||
|
||
```json | ||
{ | ||
"deleted": bool, | ||
"uploader": { | ||
"name": "set if header X-Sender is provided." | ||
}, | ||
"meta": { | ||
"deleted_on": "DateTime in iso8601 format" | ||
} | ||
} | ||
``` | ||
|
||
Or 401: Unauthorized (plain text) on any failure. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,9 @@ | ||
# Installation | ||
|
||
Ensure you have PHP >= 7.2 on your server (7.1 should work too, but is untested.) | ||
|
||
- Copy `config/config.dist.php` to `config/config.php` and edit it. | ||
- Follow the instructions from `setup.md` for your webserver setup. | ||
- Follow instructions from `sharex_config.md` to set up ShareX to upload to your service. | ||
- Ensure `images/` has the right access for your httpd user. | ||
- Upload an image. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,57 @@ | ||
# Setup | ||
|
||
This is all just suggestion, and a near-direct copy of how my setup works. | ||
|
||
---- | ||
|
||
note: a `client_max_body_size` of more than the default (1m) is recommended. | ||
|
||
### The "Backend" ("base url") | ||
|
||
```conf | ||
server { | ||
root /srv/http/image.example.org/public; | ||
index index.php index.html; | ||
server_name image.example.org.net; | ||
// ssl config | ||
location ~ \.php$ { | ||
include snippets/fastcgi-php.conf; | ||
fastcgi_pass unix:/var/run/php/php7.2-fpm.sock; | ||
} | ||
location / { | ||
try_files $uri $uri/ =404; | ||
} | ||
add_header Strict-Transport-Security "max-age=31536000; includeSubdomains; preload"; | ||
add_header Content-Security-Policy "default-src 'self'"; | ||
add_header X-Frame-Options sameorigin; | ||
add_header X-Content-Type-Options nosniff; | ||
add_header X-XSS-Protection "1; mode=block"; | ||
add_header Referrer-Policy same-origin; | ||
} | ||
server { | ||
if ($host = image.example.org) { | ||
return 301 https://$host$request_uri; | ||
} | ||
listen 80; | ||
listen [::]:80; | ||
server_name image.example.org; | ||
return 404; | ||
} | ||
``` | ||
|
||
The CDN or the image serving config could have the following block; | ||
|
||
``` | ||
location /images { | ||
alias /srv/http/image.example.org/images; | ||
} | ||
``` |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,23 @@ | ||
# ShareX configuration | ||
|
||
In ShareX, go to Destinations -> Custom Uploaders | ||
|
||
Add a new Uploader, configure the following: | ||
|
||
- Destination Type: `Image Uploader` | ||
- Request Type: `POST` | ||
- Request URL: URL identical to the baseUrl in `config.php` | ||
- File form name: `sharex_image` | ||
- Headers: | ||
- X-Authorization: `Your API key` | ||
- X-Uploader: `YourName` | ||
- Response Type: `Response Text` | ||
- URL: `$json:.urls.full$` | ||
- Deletion URL: `$json:.urls.delete$` | ||
|
||
You should do the same, but for Request Type `DELETE`, because at the moment | ||
there is no UI to insert the API key in. | ||
|
||
Test it, confirm it works. | ||
|
||
If it doesn't, that's gonna suck, because we only send `401 Unauthorized` with no logging. |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,2 @@ | ||
* | ||
!.gitignore |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,40 @@ | ||
<?php | ||
|
||
require __DIR__ . '/../src/autoload.php'; | ||
|
||
if ($_SERVER['REQUEST_METHOD'] !== 'DELETE') { | ||
unauthorized(); | ||
} | ||
|
||
require __DIR__ . '/../src/validation_headers.php'; | ||
|
||
if (!isset($_POST['uuid'])) { | ||
unauthorized(); | ||
} | ||
|
||
['uploadDir' => $uploadDir] = Config::get(); | ||
|
||
$deleteFile = $_POST['uuid']; | ||
$filePath = $uploadDir . '/' . $deleteFile . '.png'; | ||
|
||
if (!preg_match('/^[a-zA-Z0-9_\-]+$/', $deleteFile) || !file_exists($filePath) || !is_file($filePath)) { | ||
unauthorized(); | ||
} | ||
|
||
$success = unlink($filePath); | ||
|
||
if (file_exists($uploadDir . '/' . $deleteFile . '.json')) { | ||
$success = $success && unlink($uploadDir . '/' . $deleteFile . '.json'); | ||
} | ||
|
||
$json = json_encode([ | ||
'deleted' => $success, | ||
'uploader' => [ | ||
'name' => strtolower($_SERVER['HTTP_X_SENDER'] ?? 'Unknown'), | ||
], | ||
'meta' => [ | ||
'deleted_on' => (new \DateTime('now', new \DateTimeZone('Etc/UTC')))->format(\DateTime::ATOM), | ||
] | ||
]); | ||
|
||
echo $json; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,40 @@ | ||
<?php | ||
|
||
require __DIR__ . '/../src/autoload.php'; | ||
require __DIR__ . '/../src/validation_sharex_upload.php'; | ||
require __DIR__ . '/../src/validation_headers.php'; | ||
|
||
[ | ||
'uploadDir' => $uploadDir, | ||
'baseUrl' => $baseUrl, | ||
'cdnUrl' => $cdnUrl, | ||
'useAppNamePrefix' => $useAppNamePrefix, | ||
'writeJsonMetadata' => $writeJsonMetadata | ||
] = Config::get(); | ||
[$uuid, $fileName] = sharex_create_filename($uploadDir, $_FILES['sharex_image']['name'], $useAppNamePrefix); | ||
|
||
move_uploaded_file($_FILES['sharex_image']['tmp_name'], $fileName); | ||
|
||
$json = json_encode([ | ||
'urls' => [ | ||
'full' => $cdnUrl . '/' . $uuid . '.png', | ||
'delete' => $baseUrl . '/delete.php?uuid=' . $uuid, | ||
], | ||
'uploader' => [ | ||
'name' => strtolower($_SERVER['HTTP_X_SENDER'] ?? 'Unknown'), | ||
], | ||
'file' => [ | ||
'name' => $_FILES['sharex_image']['name'] ?? null, | ||
'size' => $_FILES['sharex_image']['size'], | ||
'type' => image_type_to_mime_type(exif_imagetype($uploadDir . $uuid . '.png')) ?? 'image/png', | ||
], | ||
'meta' => [ | ||
'uploaded_on' => (new \DateTime('now', new \DateTimeZone('Etc/UTC')))->format(\DateTime::ATOM), | ||
] | ||
]); | ||
|
||
if ($writeJsonMetadata) { | ||
file_put_contents($uploadDir . $uuid . '.json', $json); | ||
} | ||
|
||
echo $json; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,15 @@ | ||
<?php | ||
|
||
class Config | ||
{ | ||
private static $config; | ||
|
||
public static function get(): array | ||
{ | ||
if (static::$config === null) { | ||
static::$config = require __DIR__ . '/../config/config.php'; | ||
} | ||
|
||
return static::$config; | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,6 @@ | ||
<?php | ||
|
||
interface NamingStrategyInterface | ||
{ | ||
public function generate(): string; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,15 @@ | ||
<?php | ||
declare(strict_types=1); | ||
|
||
class RandomBytes implements NamingStrategyInterface | ||
{ | ||
/** | ||
* @return string | ||
* | ||
* Only throws on old/low-entropy systems. | ||
*/ | ||
public function generate(): string | ||
{ | ||
return bin2hex(random_bytes(random_int(4, 12))); | ||
} | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,7 @@ | ||
<?php | ||
|
||
require __DIR__ . '/NamingStrategy/NamingStrategyInterface.php'; | ||
require __DIR__ . '/NamingStrategy/RandomBytes.php'; | ||
|
||
require __DIR__ . '/Config.php'; | ||
require __DIR__ . '/helper.php'; |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,37 @@ | ||
<?php | ||
declare(strict_types=1); | ||
|
||
function unauthorized(): void | ||
{ | ||
http_response_code(401); | ||
die('Unauthorized.'); | ||
} | ||
|
||
/** | ||
* @param string $uploadDir | ||
* @param string $originalFileName | ||
* @param bool $useAppNamePrefix | ||
* | ||
* @return array | ||
* @throws \Exception (only on old oses) | ||
*/ | ||
function sharex_create_filename(string $uploadDir, string $originalFileName, bool $useAppNamePrefix): array | ||
{ | ||
$prefix = ''; | ||
|
||
if ($useAppNamePrefix) { | ||
$parts = explode('_', $originalFileName, 2); | ||
|
||
if (\count($parts) !== 0) { | ||
$appName = preg_replace('/[^a-zA-Z0-9\-]+/', '-', $parts[0]); | ||
$prefix .= $appName . '_'; | ||
} | ||
} | ||
|
||
$namingStrategy = new RandomBytes(); | ||
do { | ||
$uuid = $namingStrategy->generate(); | ||
} while (file_exists($prefix . $uploadDir . $uuid . '.png')); | ||
|
||
return [$uuid, $prefix . $uploadDir . $uuid . '.png']; | ||
} |
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
Original file line number | Diff line number | Diff line change |
---|---|---|
@@ -0,0 +1,9 @@ | ||
<?php | ||
|
||
if ($_SERVER['REQUEST_METHOD'] !== 'POST') { | ||
unauthorized(); | ||
} | ||
|
||
if (!isset($_FILES['sharex_image'])) { | ||
unauthorized(); | ||
} |
Oops, something went wrong.