Enhance the session handling while user is logged in.
Also, add triggers to move the user from main page when session expires or some authentication error happens.

Add a similar breakdown on file types and data usage, same as each user has in the admin part of the app.

Hoodik doesn't properly log the IPs of the users on the User Sessions

Logs when Docker Container isn't deattatched:

Web app:

Some details to note:
I've installed Hoodik via Docker, and used Nginx Proxy Manager to proxy everything.

Also, one question, is it possible to disable HTTPS on Hoodik, so connections can be accepted by Nginx Proxy manager and therefore use a Lets Encrypt cert issued by Nginx proxy manager to encrypt outside connections?

Add option to rename files, this rename shouldn't affect the already created link

When I uploaded/created directories/files with Japanese characters, I found that names are broken and displayed in wrong ASCII characters.

In the screenshot below, I've created a directory named "かきくけこ" under the directory "あいうえお" (in Japanese characters "Hiragana").
However, Hoodik shows that directory as "BDFHJ / KMOQS" instead of "あいうえお / かきくけこ".

Environment

• macOS Sonoma (M2 chip)
• Docker (latest v1.1.1)
• Database: reproduced in both PostgreSQL and SQLite
• Browser: macOS Vivaldi / Android Chrome

Dockerhub has pull rate limits and have also shown in recent history to be pretty hostile to open source developers.

Please consider publishing the container image to Github's container registry (GHCR) as well. Publishing the container image to GHCR also is integrated with Github and is shown under the packages section on your repo's landing page.

Go through all the authentication screens and make them look presentable in accordance with the new theme version.

The link in the actions bar is not showing the link information about a file that already has a link generated.

Write proper readme for the application as a whole.

Readme should describe how to install the application and use it.

It should point to the environment variables and possible configurations.

It should also give out some basic information about the code structure and what each crate or package does.

Hey, i just set this up on my unraid server and noticed, that registration is still possible, although i have disabled registration in settings

I am currently using a tailscale reverse proxy to serve up hoodik (https://tailscale.com/kb/1312/serve); and I am seeing this error when I am trying to download content (including image previews).

httputil: ReverseProxy read error during body copy: net/http: server replied with more than declared Content-Length; truncated

Debugging on hoodik itself didnt show any errors or warnings; and that is the only error I get in the proxy logs. The result however is messages like:

and

Removing the reverse proxy fixes it - however I then run into issues with certificate validity and I cant seem to get hoodik to accept certs from letsencrypt.. but I would really prefer to get the reverse proxy working anyway.

Anyone seen this before?

Create a way for user to insert his own ssl certs, or generate new self signed ones once the application starts (if none were provided).

The application should always start in HTTPS mode.

Add ability for user to share his files with a public link.

User would select one or more files and create a shared link, the link would be displayed to the user together with a password, the password would unlock each of the files shared. The password would be AES encrypted key.

Links should be viewed as directory that has N files in it.

Structure to consider:

• Links
  • id
  • name
  • createdAt
• LinkFiles
  • id
  • downloads
  • encrypted_metadata
  • file_id

Links can be revoked and once they are the LinkFiles entities are deleted in order for the encrypted_metadata locked with link key is destroyed.

Clicking the link would open up the frontend page where user would have an option to enter a password (or the password could be integrated in the link itself), he would get a view with all the files shared with him (as if he opened a directory).

Download button should be next to each file and user should be able to download each file.

Alternatively, the link could be generated in form of a quick link and it would lead to backend directly, where the password would be integrated in the link, backend would grab all the files and start decrypting them and pushing into a single .zip file and then it should stream it directly to the user.

Config crate is currently a hot pile and should be redone to be more readable and modular.

Hi, any help 2fa not working using yubico

[2024-03-23T13:10:18Z DEBUG actix_web::middleware::logger] Error in response: Validation(ValidationErrors { errors: {"secret": ValidationError { field: "secret", errors: ["invalid_otp_token"] }} })

Hoodik looks to be exactly what I was looking for, a simple and fast way for me to upload and share files with a small group of people (and vice versa), other solutions feel overkill.

However, I currently have a big issue with using it since I host it behind Authelia with LLDAP, but it can't integrate with Hoodik as it is, so for my users, it means they need to authenticate with Authelia and then authenticate extra with their Hoodik account. I would love to see integration with this so I could have SSO working properly. Thanks!

It would be great if I could use Authelia for my family to sign in with instead of managing accounts here as well.

Thanks!

Files that haven't finished uploading cannot be downloaded, the download button, or any view actions should be disabled for them.

Enable details view for files that will display some general information about the file that we have for it.

Downloading and uploading are long running processes which may need special tokens that enable them to do that, currently, after the session is refreshed download or upload will fail with 401 because the token that its being used has expired.

Ideally, we would create a token for a specific file which would be valid only to interact with that file (upload and download).

The token would be generated before the upload/download starts and would be sent in the worker together with the file. It would be locked only to a single path and method and would have some longer lived life (24-48h)

I think this one would make a really big difference in adoption is the ability to sync Android folders.

There are so little offer for cloud storage written in Rust, hope this one takes off.

Congrats on the work so far.

Build and deploy docker image for ARM

When trying to set the link expiry its not working

After installing Hoodik locally using Docker, I can't seem to upload any ZIP files. PNG files do work fine, though.

Chrome version: 118.0.5993.118
OS version: Windows 10 Pro 22H2 19045.3570

docker-compose file:

version: '3'
services:
  hoodik:
    container_name: hoodik
    image: hudik/hoodik:latest
    environment:
      DATA_DIR: /data
      APP_URL: https://localhost:4554/
      SSL_CERT_FILE: /data/my-cert-file.crt.pem
      SSL_KEY_FILE: /data/my-key-file.key.pem
      MAILER_TYPE: smtp
      SMTP_ADDRESS: <redacted>
      SMTP_USERNAME: <redacted>
      SMTP_PASSWORD: <redacted>
      SMTP_PORT: 465
      SMTP_DEFAULT_FROM: 'Hoodik Drive <<redacted>>'
    volumes:
      - ./data:/data
    ports:
      - "4554:5443"

Console log:

[+] Running 1/0
 ✔ Container hoodik  Running                                                                                                                                                                                             0.0s 
Attaching to hoodik
hoodik  | [2023-11-03T10:02:46Z INFO  actix_web::middleware::logger] 172.24.0.1 "POST /api/auth/login HTTP/2.0" 200 4532 "https://localhost:4554/auth/login" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 0.225599
hoodik  | [2023-11-03T10:02:46Z INFO  actix_web::middleware::logger] 172.24.0.1 "GET /api/storage HTTP/2.0" 200 28 "https://localhost:4554/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 0.002213
hoodik  | [2023-11-03T10:02:46Z INFO  actix_web::middleware::logger] 172.24.0.1 "GET /api/storage?dirs_only=true&is_owner=true HTTP/2.0" 200 28 "https://localhost:4554/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 0.002049
hoodik  | [2023-11-03T10:02:46Z INFO  actix_web::middleware::logger] 172.24.0.1 "POST /api/storage/stats HTTP/2.0" 200 40 "https://localhost:4554/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 0.003152
hoodik  | [2023-11-03T10:02:49Z DEBUG actix_web::middleware::logger] Error in response: NotFound("file_not_found")
hoodik  | [2023-11-03T10:02:49Z INFO  actix_web::middleware::logger] 172.24.0.1 "GET /api/storage/1d62e60a9d7b85ac1dbbe521841f037ecdbf70cd61bc750785d3ab86cd0a837e/name-hash HTTP/2.0" 404 43 "https://localhost:4554/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 0.001861
hoodik  | [2023-11-03T10:02:49Z INFO  actix_web::middleware::logger] 172.24.0.1 "POST /api/storage HTTP/2.0" 200 884 "https://localhost:4554/" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 0.058607
hoodik  | [2023-11-03T10:02:50Z INFO  actix_web::middleware::logger] 172.24.0.1 "POST /api/storage/35062160-ec66-404a-abf0-c67ca7a64b61?chunk=4&checksum=3149&checksum_function=crc16 HTTP/2.0" 200 884 "https://localhost:4554/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 0.611922
hoodik  | [2023-11-03T10:02:56Z DEBUG actix_web::middleware::logger] Error in response: Validation(ValidationErrors { errors: {"chunk": ValidationError { field: "chunk", errors: ["chunk_size_mismatch: expected max 3614306.5, but received 4194320"] }} })
hoodik  | [2023-11-03T10:02:56Z INFO  actix_web::middleware::logger] 172.24.0.1 "POST /api/storage/35062160-ec66-404a-abf0-c67ca7a64b61?chunk=3&checksum=7c63&checksum_function=crc16 HTTP/2.0" 422 158 "https://localhost:4554/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 5.788935
hoodik  | [2023-11-03T10:02:56Z DEBUG actix_web::middleware::logger] Error in response: Validation(ValidationErrors { errors: {"chunk": ValidationError { field: "chunk", errors: ["chunk_size_mismatch: expected max 3614306.5, but received 4194320"] }} })
hoodik  | [2023-11-03T10:02:56Z INFO  actix_web::middleware::logger] 172.24.0.1 "POST /api/storage/35062160-ec66-404a-abf0-c67ca7a64b61?chunk=2&checksum=e96e&checksum_function=crc16 HTTP/2.0" 422 158 "https://localhost:4554/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 5.848923
hoodik  | [2023-11-03T10:02:56Z DEBUG actix_web::middleware::logger] Error in response: Validation(ValidationErrors { errors: {"chunk": ValidationError { field: "chunk", errors: ["chunk_size_mismatch: expected max 3614306.5, but received 4194320"] }} })
hoodik  | [2023-11-03T10:02:56Z INFO  actix_web::middleware::logger] 172.24.0.1 "POST /api/storage/35062160-ec66-404a-abf0-c67ca7a64b61?chunk=0&checksum=e92c&checksum_function=crc16 HTTP/2.0" 422 158 "https://localhost:4554/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 6.009717
hoodik  | [2023-11-03T10:02:56Z DEBUG actix_web::middleware::logger] Error in response: Validation(ValidationErrors { errors: {"chunk": ValidationError { field: "chunk", errors: ["chunk_size_mismatch: expected max 3614306.5, but received 4194320"] }} })
hoodik  | [2023-11-03T10:02:56Z INFO  actix_web::middleware::logger] 172.24.0.1 "POST /api/storage/35062160-ec66-404a-abf0-c67ca7a64b61?chunk=1&checksum=a63e&checksum_function=crc16 HTTP/2.0" 422 158 "https://localhost:4554/sw.js" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/118.0.0.0 Safari/537.36" 5.969061```

Admin should have a dashboard where he can see all the users in the system, the number of files they have and the size those files are taking.

He should also have insight into how much space total is used by all the files stored on the server

Add notes that will be encrypted and can be edited in the browser editor.

where other users can be invited to register. This could be used in case the admin has closed the registrations and didn't define any specific emails or patterns.

Fix e2e tests so they can actually run in github actions.

Axum offers much nicer API to work with and could probably be a very low cost replacement for actix.

Preview view should be made better, to enable proper image scaling and zoom for images.
Also, it should support preview of other common files, like PDF-s.

User should be able to change his password.

In order to do that, user must be logged in with unlocked private key. When the password is changed, the key locked again with the new password must be sent with the new password and the user object will be updated with new credentials.

In case user forgets his password and wants to reset it, he can be offered to login with private key directly, and then he can be sent to the same screen where he will be able to change his password.

Private key signature needs to be verified before its being locked and swapped.

All the files and folders will stay as they were, and nothing else should change.

In case user loses his private key and password, there is nothing we can do, all the files will remain locked forever.

TLDR: User must have either valid password or private key to access his account

Add a two factor off and two factor setup flow in the my account screen.

Add an ability to newly registered user to re-send the verification email in case he missed the already sent one.

That could be re-used as a call to the backend from either not logged-in page, or a quick button for logged-in user that sets the email automatically.

This could be also expanded into settings where admin can decide if the user can log in without activated email or not.

Admin should be verified right away when registered.

Hey, i noticed, that uploading files which are larger than a few MB does not work and i only get error messages if i try to


Smaller files do work though

Occasionally, uploading files fails because the chunk sizes are not validated correctly.
This happens when there is more than one chunk of a file.

Remove CSRF token and replace it with refresh token

Enable user to view his authenticated sessions and history of accessing the application.
User should be able to terminate any active session from himself.

FIles can be shared between users on the platform.

User can select file that he wants to share, and then click share button and insert users email, if user exists on the platform UserFiles entity should be created for that other user and he should get a notification that the file was shared with him.

Shares will be displayed on a separate page, there should be "Shared with me" and "My shares" where user would be able to see files shared with him and also files he shared.

Shares don't support sharing folders, only files can be selected to be shared.

Note: If user doesn't exist on the platform, user should be prompted that it cannot be directly shared and should be taken to sending a public link to the user that is not on the platform.

Hey, i have seen, that the unraid template is still visible in the git history of this project and it has some (i guess) sensitive informtion in it.
I´d suggest to run
git filter-branch --tree-filter 'rm -f unraid-template.xml' HEAD
followed by
git push origin --force --all
to completly remove that file from the git history and making it (afaik) unrecoverable.
Those commands should go through all git commits and remove that file completely.

The process is described here https://www.linkedin.com/pulse/how-remove-file-from-github-repository-has-already-been-daniel-awde

Hey, i am not sure if this is 100% a hoodik issue, but it seems like it. If i try to upload a file, i get only 1/4 of the max speed of my connection. For my internet connection its 40Mbits, but i only get max 10Mbits in hoodik. If i try to connect to hoodik via local connection, without going through the internet, i get 25Mbits instead of 1Gbit which is my max local networking.

So in both cases its exactly 1/4 which cant be just a random coincedence imo. I also tested with nextcloud for example or filerun and got the max speed both times

Fix light mode in theme everywhere to look presentable as the dark mode is.

It's planned to add an Sync app for Desktop ?

How is authentication and user creation handled within Hoodik? Is it possible to disable account creation and instead just use OAuth or SAML instead? I tried to look through the docs and I didn't see anything.

Settings should be stored directly on the disk in form of a JSON file so it could be edited without the application running.

Currently, settings should include:

• Registration

  • registration allowed (should always allow the first user)
  • allowed emails
  • allowed email domains

• ???

This would be nice to use with rclone to mount directories to the filesystem.

Add email service that will handle any kind of email being sent through it.

For start it must support email confirmation after the registration.

The service needs to be able to function with multiple email providers and methods, initial method should be a simple SMTP.

The service should be attached to the context and available through the application to be used.

Currently, malicious API user could have a file of lets say 100MB, say to the create_file that the file is 10kb and has 10 chunks. Then proceed and upload 10 x 10mb chunks.

The validation needs to calculate the maximum size of the chunk (size / chunks) and then monitor that uploading chunk is not greater then the size defined.