yadunut/clan-core
1
0
Fork 0
Code Issues Projects Releases Wiki Activity

Added better logging

Browse Source
This commit is contained in:
Qubasa
2023-10-03 14:16:07 +02:00
parent 42d81230c4
commit f1d5cacd76
3 changed files with 40 additions and 3 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
pkgs/clan-cli/clan_cli/webui/routers/root.py
View File

@@ -1,13 +1,15 @@
import os
from mimetypes import guess_type
from pathlib import Path
import logging
from fastapi import APIRouter, Response
from ..assets import asset_path
router = APIRouter()
log = logging.getLogger(__name__)
@router.get("/{path_name:path}")
async def root(path_name: str) -> Response:
@@ -16,6 +18,7 @@ async def root(path_name: str) -> Response:
filename = Path(os.path.normpath(asset_path() / path_name))
if not filename.is_relative_to(asset_path()):
log.error("Prevented directory traversal: %s", filename)
# prevent directory traversal
return Response(status_code=403)
@@ -23,6 +26,7 @@ async def root(path_name: str) -> Response:
if filename.suffix == "":
filename = filename.with_suffix(".html")
if not filename.is_file():
log.error("File not found: %s", filename)
return Response(status_code=404)
content_type, _ = guess_type(filename)