lyq
/
fgh


			
							123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687
							
from urllib.parse import quote
from flask import Blueprint, Response,request,redirect
import requests,re
from requests.utils import (
    CaseInsensitiveDict)
from fgh.utils.proxy import proxy, check_url
from fgh.utils.regex_util import exp2, exp4

home = Blueprint('home',__name__)

# 分支文件使用 jsDelivr 镜像的开关，0为关闭，默认关闭
jsdelivr = 0

"""
    先生效白名单再匹配黑名单，pass_list 匹配到的会直接302到jsdelivr而忽略设置
    生效顺序 白->黑->pass，可以前往https://github.com/hunshcn/gh-proxy/issues/41 查看示例
    每个规则一行，可以封禁某个用户的所有仓库，也可以封禁某个用户的特定仓库，下方用黑名单示例，白名单同理
    user1 # 封禁user1的所有仓库
    user1/repo1 # 封禁user1的repo1
    */repo1 # 封禁所有叫做repo1的仓库
"""
white_list = '''
'''
black_list = '''
'''
pass_list = '''
'''

white_list = [tuple([x.replace(' ', '') for x in i.split('/')]) for i in white_list.split('\n') if i]
black_list = [tuple([x.replace(' ', '') for x in i.split('/')]) for i in black_list.split('\n') if i]
pass_list = [tuple([x.replace(' ', '') for x in i.split('/')]) for i in pass_list.split('\n') if i]


@home.route('/')
def index():
    if 'q' in request.args:
        return redirect('/' + request.args.get('q'))
    return "hello world"

@home.route('/<path:u>', methods=['GET', 'POST'])
def handler(u):
    # 自动加上https://
    u = u if u.startswith('http') else 'https://' + u
    if u.rfind('://', 3, 9) == -1:
        u = u.replace('s:/', 's://', 1)  # uwsgi 会将//传递为/
    # save the original url to db
    
    pass_by = False
    m = check_url(u)
    if m:
        m = tuple(m.groups())
        if white_list:
            for i in white_list:
                if m[:len(i)] == i or i[0] == '*' and len(m) == 2 and m[1] == i[1]:
                    break
            else:  # 如果 for 循环完成而没有break被执行，那么会执行else
                return Response('Forbidden by white list.', status=403)
        for i in black_list:
            if m[:len(i)] == i or i[0] == '*' and len(m) == 2 and m[1] == i[1]:
                return Response('Forbidden by black list.', status=403)
        for i in pass_list:
            if m[:len(i)] == i or i[0] == '*' and len(m) == 2 and m[1] == i[1]:
                pass_by = True
                break
    else:
        return Response('Invalid input.', status=403)

    # 替换其中的 /blob/ 为 @，并将 github.com 替换为 cdn.jsdelivr.net/gh
    if (jsdelivr or pass_by) and exp2.match(u):
        u = u.replace('/blob/', '@', 1).replace('github.com', 'cdn.jsdelivr.net/gh', 1)
        return redirect(u)
    elif (jsdelivr or pass_by) and exp4.match(u):
        u = re.sub(r'(\.com/.*?/.+?)/(.+?/)', r'\1@\2', u, 1)
        _u = u.replace('raw.githubusercontent.com', 'cdn.jsdelivr.net/gh', 1)
        u = u.replace('raw.github.com', 'cdn.jsdelivr.net/gh', 1) if _u == u else _u
        return redirect(u)
    else:
        if exp2.match(u):
            u = u.replace('/blob/', '/raw/', 1)
        if pass_by:
            url = u + request.url.replace(request.base_url, '', 1)
            if url.startswith('https:/') and not url.startswith('https://'):
                url = 'https://' + url[7:]
            return redirect(url)
        u = quote(u, safe='/:')  # 保留 / 和 :, urlencode编码
        return proxy(u)