refactor(cloud): add middleware

Author: MrTang23

cloud/middleware.py

@@ -0,0 +1,70 @@
+# 创建中间件，进行鉴权
+import json
+from datetime import datetime
+from hashlib import md5
+
+from django.utils import timezone
+from rest_framework import status
+
+from cloud_disk_backend import global_function
+
+from cloud import models as cloud_models
+
+
+# md5加密
+def to_md5(string_name):
+    md5_object = md5()
+    md5_object.update(string_name.encode(encoding='utf-8'))
+    return md5_object.hexdigest()
+
+
+# 验证请求头中token是否有效
+def check_token(request):
+    token = request.META.get('HTTP_AMOS_CLOUD_TOKEN')
+    # 验证token时同时对md5加密后的用户名和数据库中token对应的用户名匹配检查
+    username_md5 = request.META.get('HTTP_AMOS_CLOUD_USER')
+    if cloud_models.Token.objects.filter(token=token).exists():
+        token_queryset = cloud_models.Token.objects.get(token=token)
+        if to_md5(token_queryset.username) == username_md5:
+            # 计算时间差
+            current_time = timezone.now().strftime("%Y-%m-%d %H:%M:%S")
+            current_time = datetime.strptime(current_time, "%Y-%m-%d %H:%M:%S")
+            token_start_time = datetime.strptime(token_queryset.start_time, "%Y-%m-%d %H:%M:%S")
+            time_difference = (current_time - token_start_time).total_seconds() / 3600
+            # 时间差大于7*24着返回false并删除该token
+            if time_difference > 7 * 24:
+                cloud_models.Token.objects.filter(token=token).delete()
+                return False
+            # token通过则返回用户名
+            return token_queryset.username
+        else:
+            return False
+    else:
+        return False
+
+
+def preprocess_request(request):
+    # 在这里对请求执行操作
+    data = json.loads(request.body)
+    check_result = check_token(request)
+    if check_result:
+        print(data)
+    else:
+        return global_function.json_response('', 'token已过期或不存在，请重新登陆', status.HTTP_401_UNAUTHORIZED)
+
+
+class CustomMiddleware:
+    def __init__(self, get_response):
+        self.get_response = get_response
+
+    def __call__(self, request):
+        # 在视图处理请求之前执行操作
+        data = json.loads(request.body)
+        check_result = check_token(request)
+        if check_result:
+            # 调用视图（处理请求）
+            response = self.get_response(data)
+            # 如果需要，也可以在此处对响应进行处理
+            return response
+        else:
+            return global_function.json_response('', 'token已过期或不存在，请重新登陆', status.HTTP_401_UNAUTHORIZED)

cloud/upload_views.py

@@ -22,6 +22,7 @@ def new_folder(request):
         current_path = data.get('current_path')
         # 查看文件夹是否存在
         folder_path = settings.MEDIA_ROOT + '/' + check_result + current_path + folder_name
+        print(folder_path)
         if not os.path.exists(folder_path):
             os.makedirs(folder_path)
         else:
@@ -109,15 +110,18 @@ def get_filelist(request):
                 file_info = {
                     'type': '',
                     'name': file_name,
-                    'size': str(round(os.path.getsize(file_path) / 1024, 1)) + ' kb',
+                    'size': '',
                     'last_modified': time.strftime('%Y-%m-%d %H:%M:%S', time.localtime(os.path.getmtime(file_path)))
                 }
                 file_info_list.append(file_info)
                 # 判断是否是文件
                 if os.path.isfile(file_path):
-                    file_info['type'] = 'file'
+                    file_info['type'] = '文件'
+                    file_info['size'] = global_function.convert_bytes(round(os.path.getsize(file_path), 1))
                 elif os.path.isdir(file_path):
-                    file_info['type'] = 'folder'
+                    file_info['type'] = '文件夹'
+                    total_size_bytes = global_function.get_folder_size(file_path)
+                    file_info['size'] = global_function.convert_bytes(total_size_bytes)
                 else:
                     return global_function.json_response('', '未知类型', status.HTTP_400_BAD_REQUEST)
             return global_function.json_response(file_info_list, '获取文件列表成功', status.HTTP_200_OK)
@@ -134,6 +138,7 @@ def download(request):
         else:
             file_path = settings.MEDIA_ROOT + '/' + check_result + request.GET.get('current_path') + request.GET.get(
                 'file_name')
+        print(file_path)
         # 判断当前路径是否最后一位是否为/，是的话去除
         if file_path[-1:] == '/':
             file_path = file_path[:-1]
@@ -161,14 +166,15 @@ def download(request):
 # 删除文件或文件夹
 def delete(request):
     params = json.loads(request.body)
-    current_path = params.get('current_path')
-    file_name = params.get('file_name')
+    current_path = params['current_path']
+    file_name = params['file_name']
     check_result = global_function.check_token(request)
     if check_result:
         if current_path == '/':
             file_path = settings.MEDIA_ROOT + '/' + check_result + file_name
         else:
             file_path = settings.MEDIA_ROOT + '/' + check_result + current_path + file_name
+
         # 判断当前路径是否最后一位是否为/，是的话去除
         if file_path[-1:] == '/':
             file_path = file_path[:-1]
@@ -193,7 +199,7 @@ def delete(request):
 
 def delete_recycle(request):
     params = json.loads(request.body)
-    file_name = '/recycle' + params.get('file_name')
+    file_name = '/recycle' + params['file_name']
     check_result = global_function.check_token(request)
     if check_result:
         file_path = settings.MEDIA_ROOT + '/' + check_result + file_name
@@ -212,6 +218,7 @@ def delete_recycle(request):
             if os.path.isdir(file_path):
                 shutil.rmtree(file_path, ignore_errors=False, onerror=None)
             elif os.path.isfile(file_path):
+
                 os.remove(file_path)
             else:
                 return global_function.json_response('', '未知类型无法删除', status.HTTP_400_BAD_REQUEST)

cloud_disk_backend/global_function.py

@@ -1,9 +1,9 @@
+import math
 import os
 import random
 import re
 import string
 import zipfile
-from datetime import datetime
 
 from django.template import loader
 from django.utils import timezone
@@ -12,13 +12,11 @@
 from django.http import JsonResponse
 from cloud_disk_backend import settings
 
-from hashlib import md5
-from cloud import models as cloud_models
-
 
 # 返回值全局定义
 def json_response(data, msg, http_status):
     res = {
+        'status': http_status,
         'data': data,
         'message': msg
     }
@@ -49,13 +47,6 @@ def validate_personal_info(username, password, email):
     return True, 'success'
 
 
-# md5加密
-def to_md5(string_name):
-    md5_object = md5()
-    md5_object.update(string_name.encode(encoding='utf-8'))
-    return md5_object.hexdigest()
-
-
 # 发送邮件
 def send_email(receive_list, title, content):
     # 此处的content可以为一段html字符串
@@ -88,31 +79,6 @@ def send_verify_code_email(receive_list, username, request):
     return True
 
 
-# 验证请求头中token是否有效
-def check_token(request):
-    token = request.META.get('HTTP_AMOS_CLOUD_TOKEN')
-    # 验证token时同时对md5加密后的用户名和数据库中token对应的用户名匹配检查
-    username_md5 = request.META.get('HTTP_AMOS_CLOUD_USER')
-    if cloud_models.Token.objects.filter(token=token).exists():
-        token_queryset = cloud_models.Token.objects.get(token=token)
-        if to_md5(token_queryset.username) == username_md5:
-            # 计算时间差
-            current_time = timezone.now().strftime("%Y-%m-%d %H:%M:%S")
-            current_time = datetime.strptime(current_time, "%Y-%m-%d %H:%M:%S")
-            token_start_time = datetime.strptime(token_queryset.start_time, "%Y-%m-%d %H:%M:%S")
-            time_difference = (current_time - token_start_time).total_seconds() / 3600
-            # 时间差大于7*24着返回false并删除该token
-            if time_difference > 7 * 24:
-                cloud_models.Token.objects.filter(token=token).delete()
-                return False
-            # token通过则返回用户名
-            return token_queryset.username
-        else:
-            return False
-    else:
-        return False
-
-
 # 将文件夹压缩为zip
 # directory 是要压缩的文件夹的路径，zip_filename 是要创建的 ZIP 文件的路径和名称。
 # 函数内部使用 os.walk 来遍历文件夹中的文件和子文件夹，
@@ -132,3 +98,31 @@ def unzip(zip_file, extract_to):
     with zipfile.ZipFile(zip_file, 'r') as zip_ref:
         zip_ref.extractall(extract_to)
     return True
+
+
+# 获取文件夹总大小
+def get_folder_size(folder_path):
+    total_size = 0
+    for dirpath, dirnames, filenames in os.walk(folder_path):
+        for filename in filenames:
+            filepath = os.path.join(dirpath, filename)
+            total_size += os.path.getsize(filepath)
+    return total_size
+
+
+# 转换为更容易理解的单位
+def convert_bytes(size_bytes):
+    if size_bytes == 0:
+        return "0B"
+    size_name = ("B", "KB", "MB", "GB", "TB", "PB", "EB", "ZB", "YB")
+    i = int(math.floor(math.log(size_bytes, 1024)))
+    p = math.pow(1024, i)
+    s = round(size_bytes / p, 1)
+    return "%s %s" % (s, size_name[i])
+
+# 校验文件或文件夹名称是否合法
+def is_valid_filename(filename):
+    # 定义正则表达式：只允许字母、数字、下划线、连字符，且不能以空格开头或结尾
+    # 不允许的字符包括：\/:*?"<>|（这些在Windows文件系统中是非法的字符）
+    pattern = r'^[^\\/:*?"<>|]+[^\\/:*?"<>|\s]$'
+    return bool(re.match(pattern, filename))

cloud_disk_backend/settings.py

@@ -36,6 +36,9 @@
     'django.contrib.auth.middleware.AuthenticationMiddleware',
     'django.contrib.messages.middleware.MessageMiddleware',
     'django.middleware.clickjacking.XFrameOptionsMiddleware',
+
+    # 自定义中间件
+    'cloud.middleware.CustomMiddleware'
 ]
 
 ROOT_URLCONF = 'cloud_disk_backend.urls'

manage.py

@@ -4,6 +4,7 @@
 import sys
 
 from cloud_disk_backend import settings
+from cloud_disk_backend.settings import MEDIA_ROOT
 
 
 def main():