forked from NyaaPantsu/nyaa
/
router.go
43 lines (38 loc) · 1.89 KB
/
router.go
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
package controllers
import (
"net/http"
_ "github.com/NyaaPantsu/nyaa/controllers/activities" // activities controller
_ "github.com/NyaaPantsu/nyaa/controllers/api" // api controller
_ "github.com/NyaaPantsu/nyaa/controllers/captcha" // captcha controller
_ "github.com/NyaaPantsu/nyaa/controllers/databasedumps" // databasedumps controller
_ "github.com/NyaaPantsu/nyaa/controllers/faq" // faq controller
_ "github.com/NyaaPantsu/nyaa/controllers/feed" // feed controller
_ "github.com/NyaaPantsu/nyaa/controllers/middlewares" // middlewares
_ "github.com/NyaaPantsu/nyaa/controllers/moderator" // moderator controller
_ "github.com/NyaaPantsu/nyaa/controllers/pprof" // pprof controller
_ "github.com/NyaaPantsu/nyaa/controllers/report" // report controller
"github.com/NyaaPantsu/nyaa/controllers/router"
_ "github.com/NyaaPantsu/nyaa/controllers/search" // search controller
_ "github.com/NyaaPantsu/nyaa/controllers/settings" // settings controller
_ "github.com/NyaaPantsu/nyaa/controllers/static" // static files
_ "github.com/NyaaPantsu/nyaa/controllers/torrent" // torrent controller
_ "github.com/NyaaPantsu/nyaa/controllers/upload" // upload controller
_ "github.com/NyaaPantsu/nyaa/controllers/user" // user controller
"github.com/justinas/nosurf"
)
// CSRFRouter : CSRF protection for Router variable for exporting the route configuration
var CSRFRouter *nosurf.CSRFHandler
func init() {
CSRFRouter = nosurf.New(router.Get())
CSRFRouter.ExemptRegexp("/api(?:/.+)*")
CSRFRouter.ExemptRegexp("/mod(?:/.+)*")
CSRFRouter.ExemptPath("/upload")
CSRFRouter.ExemptPath("/user/login")
CSRFRouter.SetFailureHandler(http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
http.Error(w, "Invalid CSRF tokens", http.StatusBadRequest)
}))
CSRFRouter.SetBaseCookie(http.Cookie{
Path: "/",
MaxAge: nosurf.MaxAge,
})
}