photoprism/internal/entity/link.go

package entity

import (
	"fmt"
	"time"

	"github.com/jinzhu/gorm"

	"github.com/photoprism/photoprism/pkg/rnd"
	"github.com/photoprism/photoprism/pkg/txt"
)

type Links []Link

// Link represents a sharing link.
type Link struct {
	LinkUID     string    `gorm:"type:VARBINARY(42);primary_key;" json:"UID,omitempty" yaml:"UID,omitempty"`
	ShareUID    string    `gorm:"type:VARBINARY(42);unique_index:idx_links_uid_token;" json:"Share" yaml:"Share"`
	ShareSlug   string    `gorm:"type:VARBINARY(160);index;" json:"Slug" yaml:"Slug,omitempty"`
	LinkToken   string    `gorm:"type:VARBINARY(160);unique_index:idx_links_uid_token;" json:"Token" yaml:"Token,omitempty"`
	LinkExpires int       `json:"Expires" yaml:"Expires,omitempty"`
	LinkViews   uint      `json:"Views" yaml:"-"`
	MaxViews    uint      `json:"MaxViews" yaml:"-"`
	HasPassword bool      `json:"HasPassword" yaml:"HasPassword,omitempty"`
	CanComment  bool      `json:"CanComment" yaml:"CanComment,omitempty"`
	CanEdit     bool      `json:"CanEdit" yaml:"CanEdit,omitempty"`
	CreatedAt   time.Time `deepcopier:"skip" json:"CreatedAt" yaml:"CreatedAt"`
	ModifiedAt  time.Time `deepcopier:"skip" json:"ModifiedAt" yaml:"ModifiedAt"`
}

// BeforeCreate creates a random UID if needed before inserting a new row to the database.
func (m *Link) BeforeCreate(scope *gorm.Scope) error {
	if rnd.IsUID(m.LinkUID, 's') {
		return nil
	}

	return scope.SetColumn("LinkUID", rnd.PPID('s'))
}

// NewLink creates a sharing link.
func NewLink(shareUID string, canComment, canEdit bool) Link {
	now := TimeStamp()

	result := Link{
		LinkUID:    rnd.PPID('s'),
		ShareUID:   shareUID,
		LinkToken:  rnd.Token(10),
		CanComment: canComment,
		CanEdit:    canEdit,
		CreatedAt:  now,
		ModifiedAt: now,
	}

	return result
}

func (m *Link) Redeem() {
	m.LinkViews += 1

	result := Db().Model(m).UpdateColumn("LinkViews", m.LinkViews)

	if result.RowsAffected == 0 {
		log.Warnf("link: failed updating share view counter for %s", m.LinkUID)
	}
}

func (m *Link) Expired() bool {
	if m.MaxViews > 0 && m.LinkViews >= m.MaxViews {
		return true
	}

	if m.LinkExpires <= 0 {
		return false
	}

	now := TimeStamp()
	expires := m.ModifiedAt.Add(Seconds(m.LinkExpires))

	return now.After(expires)
}

func (m *Link) SetSlug(s string) {
	m.ShareSlug = txt.Slug(s)
}

func (m *Link) SetPassword(password string) error {
	pw := NewPassword(m.LinkUID, password)

	if err := pw.Save(); err != nil {
		return err
	}

	m.HasPassword = true

	return nil
}

func (m *Link) InvalidPassword(password string) bool {
	if !m.HasPassword {
		return false
	}

	pw := FindPassword(m.LinkUID)

	if pw == nil {
		return password != ""
	}

	return pw.InvalidPassword(password)
}

// Save inserts a new row to the database or updates a row if the primary key already exists.
func (m *Link) Save() error {
	if !rnd.IsPPID(m.ShareUID, 0) {
		return fmt.Errorf("link: invalid share uid (%s)", m.ShareUID)
	}

	if m.LinkToken == "" {
		return fmt.Errorf("link: empty share token")
	}

	m.ModifiedAt = TimeStamp()

	return Db().Save(m).Error
}

// Delete the link.
func (m *Link) Delete() error {
	if m.LinkToken == "" {
		return fmt.Errorf("link: empty share token")
	}

	return Db().Delete(m).Error
}

// DeleteShareLinks removed all links matching the share uid.
func DeleteShareLinks(shareUID string) error {
	return Db().Delete(&Link{}, "share_uid = ?", shareUID).Error
}

// FindLink returns an entity pointer if exists.
func FindLink(linkUID string) *Link {
	result := Link{}

	if err := Db().Where("link_uid = ?", linkUID).First(&result).Error; err == nil {
		return &result
	} else {
		log.Errorf("link: %s (not found)", err)
	}

	return nil
}

// FindLinks returns a slice of links for a token and share UID (at least one must be provided).
func FindLinks(token, share string) (result Links) {
	if token == "" && share == "" {
		log.Errorf("link: share token and uid must not be empty at the same time (find links)")
		return []Link{}
	}

	q := Db()

	if token != "" {
		q = q.Where("link_token = ?", token)
	}

	if share != "" {
		if rnd.IsPPID(share, 'a') {
			q = q.Where("share_uid = ?", share)
		} else {
			q = q.Where("share_slug = ?", share)
		}
	}

	if err := q.Order("modified_at DESC").Find(&result).Error; err != nil {
		log.Errorf("link: %s (not found)", err)
	}

	return result
}

// FindValidLinks returns a slice of non-expired links for a token and share UID (at least one must be provided).
func FindValidLinks(token, share string) (result Links) {
	for _, link := range FindLinks(token, share) {
		if !link.Expired() {
			result = append(result, link)
		}
	}

	return result
}

// String returns an human readable identifier for logging.
func (m *Link) String() string {
	return txt.LogParam(m.LinkUID)
}
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`package entity`

			`import (`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`"fmt"`
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`"time"`

			`"github.com/jinzhu/gorm"`
Improve album sharing and album UX #18 #309 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-27 13:08:45 +02:00
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`"github.com/photoprism/photoprism/pkg/rnd"`
Improve album sharing and album UX #18 #309 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-27 13:08:45 +02:00			`"github.com/photoprism/photoprism/pkg/txt"`
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`)`

Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`type Links []Link`

Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`// Link represents a sharing link.`
			`type Link struct {`
Backend: Refactor person entity #98 #144 Database column types are now UPPERCASE so that developers can easily recognize them. After upgrading to GORM 2.0, we can use generic types instead. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-09-13 17:51:43 +02:00			LinkUID string `gorm:"type:VARBINARY(42);primary_key;" json:"UID,omitempty" yaml:"UID,omitempty"`
			ShareUID string `gorm:"type:VARBINARY(42);unique_index:idx_links_uid_token;" json:"Share" yaml:"Share"`
Backend: Improve resilience #1544 2021-09-23 23:46:17 +02:00			ShareSlug string `gorm:"type:VARBINARY(160);index;" json:"Slug" yaml:"Slug,omitempty"`
			LinkToken string `gorm:"type:VARBINARY(160);unique_index:idx_links_uid_token;" json:"Token" yaml:"Token,omitempty"`
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			LinkExpires int `json:"Expires" yaml:"Expires,omitempty"`
			LinkViews uint `json:"Views" yaml:"-"`
			MaxViews uint `json:"MaxViews" yaml:"-"`
			HasPassword bool `json:"HasPassword" yaml:"HasPassword,omitempty"`
			CanComment bool `json:"CanComment" yaml:"CanComment,omitempty"`
			CanEdit bool `json:"CanEdit" yaml:"CanEdit,omitempty"`
			CreatedAt time.Time `deepcopier:"skip" json:"CreatedAt" yaml:"CreatedAt"`
Albums: Fix share expiration date in field label #621 Looks like a pure frontend issue: It tried finding a date in "UpdatedAt" while the actual field name is "ModifiedAt". 2021-09-23 15:38:55 +02:00			ModifiedAt time.Time `deepcopier:"skip" json:"ModifiedAt" yaml:"ModifiedAt"`
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`}`

Initial commit for folders and moments #154 #260 #331 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-05-23 20:58:58 +02:00			`// BeforeCreate creates a random UID if needed before inserting a new row to the database.`
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`func (m Link) BeforeCreate(scope gorm.Scope) error {`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`if rnd.IsUID(m.LinkUID, 's') {`
			`return nil`
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`}`

Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`return scope.SetColumn("LinkUID", rnd.PPID('s'))`
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`}`

			`// NewLink creates a sharing link.`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`func NewLink(shareUID string, canComment, canEdit bool) Link {`
People: Improve face matching performance and accuracy #22 By default, matching is now limited to unmatched faces and markers. 2021-08-29 13:26:05 +02:00			`now := TimeStamp()`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`result := Link{`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`LinkUID: rnd.PPID('s'),`
			`ShareUID: shareUID,`
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`LinkToken: rnd.Token(10),`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`CanComment: canComment,`
			`CanEdit: canEdit,`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00			`CreatedAt: now,`
			`ModifiedAt: now,`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`}`

			`return result`
			`}`

Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00			`func (m *Link) Redeem() {`
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`m.LinkViews += 1`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`result := Db().Model(m).UpdateColumn("LinkViews", m.LinkViews)`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00
			`if result.RowsAffected == 0 {`
			`log.Warnf("link: failed updating share view counter for %s", m.LinkUID)`
			`}`
			`}`

			`func (m *Link) Expired() bool {`
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`if m.MaxViews > 0 && m.LinkViews >= m.MaxViews {`
Sharing: Optional view count limit #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:24:05 +02:00			`return true`
			`}`

Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`if m.LinkExpires <= 0 {`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00			`return false`
			`}`

People: Improve face matching performance and accuracy #22 By default, matching is now limited to unmatched faces and markers. 2021-08-29 13:26:05 +02:00			`now := TimeStamp()`
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`expires := m.ModifiedAt.Add(Seconds(m.LinkExpires))`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00
Fix links with expiration #621 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-11-22 03:12:31 +01:00			`return now.After(expires)`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00			`}`

Improve album sharing and album UX #18 #309 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-27 13:08:45 +02:00			`func (m *Link) SetSlug(s string) {`
Backend: Improve resilience #1544 2021-09-23 23:46:17 +02:00			`m.ShareSlug = txt.Slug(s)`
Improve album sharing and album UX #18 #309 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-27 13:08:45 +02:00			`}`

Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`func (m *Link) SetPassword(password string) error {`
			`pw := NewPassword(m.LinkUID, password)`

			`if err := pw.Save(); err != nil {`
			`return err`
			`}`

			`m.HasPassword = true`

			`return nil`
			`}`

			`func (m *Link) InvalidPassword(password string) bool {`
			`if !m.HasPassword {`
			`return false`
			`}`

			`pw := FindPassword(m.LinkUID)`

			`if pw == nil {`
			`return password != ""`
			`}`

			`return pw.InvalidPassword(password)`
			`}`

			`// Save inserts a new row to the database or updates a row if the primary key already exists.`
			`func (m *Link) Save() error {`
			`if !rnd.IsPPID(m.ShareUID, 0) {`
			`return fmt.Errorf("link: invalid share uid (%s)", m.ShareUID)`
			`}`

Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`if m.LinkToken == "" {`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`return fmt.Errorf("link: empty share token")`
			`}`

People: Improve face matching performance and accuracy #22 By default, matching is now limited to unmatched faces and markers. 2021-08-29 13:26:05 +02:00			`m.ModifiedAt = TimeStamp()`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`return Db().Save(m).Error`
			`}`

Metadata: Improve location estimates and UTC handling #1668 2021-11-23 19:23:10 +01:00			`// Delete the link.`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`func (m *Link) Delete() error {`
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`if m.LinkToken == "" {`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`return fmt.Errorf("link: empty share token")`
			`}`

			`return Db().Delete(m).Error`
			`}`

Metadata: Improve location estimates and UTC handling #1668 2021-11-23 19:23:10 +01:00			`// DeleteShareLinks removed all links matching the share uid.`
			`func DeleteShareLinks(shareUID string) error {`
			`return Db().Delete(&Link{}, "share_uid = ?", shareUID).Error`
			`}`

Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`// FindLink returns an entity pointer if exists.`
			`func FindLink(linkUID string) *Link {`
			`result := Link{}`

			`if err := Db().Where("link_uid = ?", linkUID).First(&result).Error; err == nil {`
			`return &result`
			`} else {`
			`log.Errorf("link: %s (not found)", err)`
			`}`

			`return nil`
			`}`

			`// FindLinks returns a slice of links for a token and share UID (at least one must be provided).`
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`func FindLinks(token, share string) (result Links) {`
			`if token == "" && share == "" {`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`log.Errorf("link: share token and uid must not be empty at the same time (find links)")`
			`return []Link{}`
			`}`

			`q := Db()`

Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`if token != "" {`
			`q = q.Where("link_token = ?", token)`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`}`

Improve album sharing and album UX #18 #309 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-27 13:08:45 +02:00			`if share != "" {`
			`if rnd.IsPPID(share, 'a') {`
			`q = q.Where("share_uid = ?", share)`
			`} else {`
			`q = q.Where("share_slug = ?", share)`
			`}`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`}`

Shares: Allow reuse of the same share slugs & tokens #776 2020-12-31 12:02:26 +01:00			`if err := q.Order("modified_at DESC").Find(&result).Error; err != nil {`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`log.Errorf("link: %s (not found)", err)`
Initial API and entities for link sharing Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-08 13:24:06 +02:00			`}`

			`return result`
			`}`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00			`// FindValidLinks returns a slice of non-expired links for a token and share UID (at least one must be provided).`
Sharing: Refactor link entity and database columns #367 #18 Add missing fields in js model and rename fields for mode clarity. A link token can be valid for multiple shares. Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-28 14:52:26 +02:00			`func FindValidLinks(token, share string) (result Links) {`
			`for _, link := range FindLinks(token, share) {`
Sharing: Link expiration, view counter and permissions #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-26 12:16:13 +02:00			`if !link.Expired() {`
			`result = append(result, link)`
			`}`
			`}`

			`return result`
			`}`

Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`// String returns an human readable identifier for logging.`
			`func (m *Link) String() string {`
Log4j: Sanitize user input in logs like filenames and album titles #1814 2021-12-14 17:07:38 +01:00			`return txt.LogParam(m.LinkUID)`
Improve link sharing dialog and api #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-22 15:16:26 +02:00			`}`