You've already forked imgproxy
mirror of
https://github.com/imgproxy/imgproxy.git
synced 2025-12-26 00:41:54 +02:00
58 lines
1.4 KiB
Go
58 lines
1.4 KiB
Go
package security
|
|
|
|
import (
|
|
"fmt"
|
|
"net/http"
|
|
|
|
"github.com/imgproxy/imgproxy/v3/errctx"
|
|
)
|
|
|
|
type (
|
|
SignatureError struct{ *errctx.TextError }
|
|
ImageResolutionError struct{ *errctx.TextError }
|
|
SourceURLError struct{ *errctx.TextError }
|
|
)
|
|
|
|
func newSignatureError(msg string) error {
|
|
return SignatureError{errctx.NewTextError(
|
|
msg,
|
|
1,
|
|
errctx.WithStatusCode(http.StatusForbidden),
|
|
errctx.WithPublicMessage("Forbidden"),
|
|
errctx.WithShouldReport(false),
|
|
)}
|
|
}
|
|
|
|
func newMalformedSignatureError() error {
|
|
//nolint:lll
|
|
msg := "The signature appears to be a processing option. The signature section should always be present in the URL. See: https://docs.imgproxy.net/usage/processing"
|
|
|
|
return SignatureError{errctx.NewTextError(
|
|
msg,
|
|
1,
|
|
errctx.WithStatusCode(http.StatusForbidden),
|
|
errctx.WithPublicMessage(msg),
|
|
errctx.WithShouldReport(false),
|
|
)}
|
|
}
|
|
|
|
func newImageResolutionError(msg string) error {
|
|
return ImageResolutionError{errctx.NewTextError(
|
|
msg,
|
|
1,
|
|
errctx.WithStatusCode(http.StatusUnprocessableEntity),
|
|
errctx.WithPublicMessage("Invalid source image"),
|
|
errctx.WithShouldReport(false),
|
|
)}
|
|
}
|
|
|
|
func newSourceURLError(imageURL string) error {
|
|
return SourceURLError{errctx.NewTextError(
|
|
fmt.Sprintf("Source URL is not allowed: %s", imageURL),
|
|
1,
|
|
errctx.WithStatusCode(http.StatusNotFound),
|
|
errctx.WithPublicMessage("Invalid source URL"),
|
|
errctx.WithShouldReport(false),
|
|
)}
|
|
}
|