Spaces:

i0110
/

dashboard

Running

App Files Files Community

i0110 commited on Apr 25

Commit

198475b

verified ·

1 Parent(s): ab5afa3

Update server.js

Browse files

Files changed (1) hide show

server.js +83 -4

server.js CHANGED Viewed

@@ -1,9 +1,14 @@
 const express = require('express');
 const path = require('path');
 const axios = require('axios');
 const app = express();
 const port = process.env.PORT || 8080;
 // 从环境变量获取 HuggingFace 用户名和对应的 API Token 映射
 const userTokenMapping = {};
 const usernames = [];
@@ -26,6 +31,10 @@ if (hfUserConfig) {
 const ADMIN_USERNAME = process.env.USER_NAME || 'admin';
 const ADMIN_PASSWORD = process.env.USER_PASSWORD || 'password';
 // 缓存管理
 class SpaceCache {
   constructor() {
@@ -58,6 +67,65 @@ app.get('/api/config', (req, res) => {
   res.json({ usernames: usernames.join(',') });
 });
 // 获取所有 spaces 列表（包括私有）
 app.get('/api/proxy/spaces', async (req, res) => {
   try {
@@ -121,8 +189,8 @@ app.get('/api/proxy/spaces', async (req, res) => {
   }
 });
-// 代理重启 Space
-app.post('/api/proxy/restart/:repoId(*)', async (req, res) => {
   try {
     const { repoId } = req.params;
     console.log(`尝试重启 Space: ${repoId}`);
@@ -148,8 +216,8 @@ app.post('/api/proxy/restart/:repoId(*)', async (req, res) => {
   }
 });
-// 代理重建 Space
-app.post('/api/proxy/rebuild/:repoId(*)', async (req, res) => {
   try {
     const { repoId } = req.params;
     console.log(`尝试重建 Space: ${repoId}`);
@@ -336,6 +404,17 @@ app.get('*', (req, res) => {
   res.sendFile(path.join(__dirname, 'public', 'index.html'));
 });
 app.listen(port, () => {
   console.log(`Server running on port ${port}`);
   console.log(`User configurations:`, usernames.map(user => `${user}: ${userTokenMapping[user] ? 'Token Configured' : 'No Token'}`).join(', ') || 'None');

 const express = require('express');
 const path = require('path');
 const axios = require('axios');
+const crypto = require('crypto');
 const app = express();
 const port = process.env.PORT || 8080;
+// 启用 JSON 和 URL-encoded 请求解析
+app.use(express.json());
+app.use(express.urlencoded({ extended: true }));
 // 从环境变量获取 HuggingFace 用户名和对应的 API Token 映射
 const userTokenMapping = {};
 const usernames = [];
 const ADMIN_USERNAME = process.env.USER_NAME || 'admin';
 const ADMIN_PASSWORD = process.env.USER_PASSWORD || 'password';
+// 存储会话 token 的简单内存数据库（生产环境中应使用数据库或 Redis）
+const sessions = new Map();
+const SESSION_TIMEOUT = 24 * 60 * 60 * 1000; // 24小时超时
 // 缓存管理
 class SpaceCache {
   constructor() {
   res.json({ usernames: usernames.join(',') });
 });
+// 登录 API 接口
+app.post('/api/login', (req, res) => {
+  const { username, password } = req.body;
+  if (username === ADMIN_USERNAME && password === ADMIN_PASSWORD) {
+    // 生成一个随机 token 作为会话标识
+    const token = crypto.randomBytes(16).toString('hex');
+    const expiresAt = Date.now() + SESSION_TIMEOUT;
+    sessions.set(token, { username, expiresAt });
+    console.log(`用户 ${username} 登录成功，生成 token: ${token.slice(0, 8)}...`);
+    res.json({ success: true, token });
+  } else {
+    console.log(`用户 ${username} 登录失败，凭据无效`);
+    res.status(401).json({ success: false, message: '用户名或密码错误' });
+  }
+});
+// 验证登录状态 API 接口
+app.post('/api/verify-token', (req, res) => {
+  const { token } = req.body;
+  const session = sessions.get(token);
+  if (session && session.expiresAt > Date.now()) {
+    res.json({ success: true, message: 'Token 有效' });
+  } else {
+    if (session) {
+      sessions.delete(token); // 删除过期的 token
+      console.log(`Token ${token.slice(0, 8)}... 已过期，已删除`);
+    }
+    res.status(401).json({ success: false, message: 'Token 无效或已过期' });
+  }
+});
+// 登出 API 接口
+app.post('/api/logout', (req, res) => {
+  const { token } = req.body;
+  sessions.delete(token);
+  console.log(`Token ${token.slice(0, 8)}... 已手动登出`);
+  res.json({ success: true, message: '登出成功' });
+});
+// 中间件：验证请求中的 token
+const authenticateToken = (req, res, next) => {
+  const authHeader = req.headers['authorization'];
+  if (!authHeader || !authHeader.startsWith('Bearer ')) {
+    return res.status(401).json({ error: '未提供有效的认证令牌' });
+  }
+  const token = authHeader.split(' ')[1];
+  const session = sessions.get(token);
+  if (session && session.expiresAt > Date.now()) {
+    req.session = session;
+    next();
+  } else {
+    if (session) {
+      sessions.delete(token); // 删除过期的 token
+      console.log(`Token ${token.slice(0, 8)}... 已过期，拒绝访问`);
+    }
+    return res.status(401).json({ error: '认证令牌无效或已过期' });
+  }
+};
 // 获取所有 spaces 列表（包括私有）
 app.get('/api/proxy/spaces', async (req, res) => {
   try {
   }
 });
+// 代理重启 Space（需要认证）
+app.post('/api/proxy/restart/:repoId(*)', authenticateToken, async (req, res) => {
   try {
     const { repoId } = req.params;
     console.log(`尝试重启 Space: ${repoId}`);
   }
 });
+// 代理重建 Space（需要认证）
+app.post('/api/proxy/rebuild/:repoId(*)', authenticateToken, async (req, res) => {
   try {
     const { repoId } = req.params;
     console.log(`尝试重建 Space: ${repoId}`);
   res.sendFile(path.join(__dirname, 'public', 'index.html'));
 });
+// 定期清理过期的会话
+setInterval(() => {
+  const now = Date.now();
+  for (const [token, session] of sessions.entries()) {
+    if (session.expiresAt < now) {
+      sessions.delete(token);
+      console.log(`Token ${token.slice(0, 8)}... 已过期，自动清理`);
+    }
+  }
+}, 60 * 60 * 1000); // 每小时清理一次
 app.listen(port, () => {
   console.log(`Server running on port ${port}`);
   console.log(`User configurations:`, usernames.map(user => `${user}: ${userTokenMapping[user] ? 'Token Configured' : 'No Token'}`).join(', ') || 'None');