More docs

2022-04-20 16:31:25 -04:00 · 2022-04-20 16:31:25 -04:00 · 712c292183
commit 712c292183
parent 8900df27c9
8 changed files with 275 additions and 89 deletions
--- a/server/errors.go
+++ b/server/errors.go
@ -39,7 +39,7 @@ var (
 	errHTTPBadRequestAttachmentsExpiryBeforeDelivery = &errHTTP{40015, http.StatusBadRequest, "invalid request: attachment expiry before delayed delivery date", "https://ntfy.sh/docs/publish/#scheduled-delivery"}
 	errHTTPBadRequestWebSocketsUpgradeHeaderMissing  = &errHTTP{40016, http.StatusBadRequest, "invalid request: client not using the websocket protocol", "https://ntfy.sh/docs/subscribe/api/#websockets"}
 	errHTTPBadRequestJSONInvalid                     = &errHTTP{40017, http.StatusBadRequest, "invalid request: request body must be message JSON", "https://ntfy.sh/docs/publish/#publish-as-json"}
-	errHTTPBadRequestActionsInvalid                  = &errHTTP{40018, http.StatusBadRequest, "invalid request: actions are invalid format", "https://ntfy.sh/docs/publish/#user-actions"}
+	errHTTPBadRequestActionsInvalid                  = &errHTTP{40018, http.StatusBadRequest, "invalid request: actions are invalid format", "https://ntfy.sh/docs/publish/#action-buttons"}
 	errHTTPNotFound                                  = &errHTTP{40401, http.StatusNotFound, "page not found", ""}
 	errHTTPUnauthorized                              = &errHTTP{40101, http.StatusUnauthorized, "unauthorized", "https://ntfy.sh/docs/publish/#authentication"}
 	errHTTPForbidden                                 = &errHTTP{40301, http.StatusForbidden, "forbidden", "https://ntfy.sh/docs/publish/#authentication"}
--- a/server/server.go
+++ b/server/server.go
@ -93,7 +93,6 @@ const (
 	emptyMessageBody         = "triggered"               // Used if message body is empty
 	defaultAttachmentMessage = "You received a file: %s" // Used if message body is empty, and there is an attachment
 	encodingBase64           = "base64"
-	actionIDLength           = 10
 )

 // WebSocket constants
--- a/server/util.go
+++ b/server/util.go
@ -9,6 +9,11 @@ import (
 	"strings"
 )

+const (
+	actionIDLength = 10
+	actionsMax     = 3
+)
+
 func readBoolParam(r *http.Request, defaultValue bool, names ...string) bool {
 	value := strings.ToLower(readParam(r, names...))
 	if value == "" {
@ -63,12 +68,15 @@ func parseActions(s string) (actions []*action, err error) {
 	}

 	// Validate
+	if len(actions) > actionsMax {
+		return nil, fmt.Errorf("too many actions, only %d allowed", actionsMax)
+	}
 	for _, action := range actions {
 		if !util.InStringList([]string{"view", "broadcast", "http"}, action.Action) {
 			return nil, fmt.Errorf("cannot parse actions: action '%s' unknown", action.Action)
 		} else if action.Label == "" {
 			return nil, fmt.Errorf("cannot parse actions: label must be set")
-		} else if util.InStringList([]string{"view", "http"}, action.Action) && action.URL != "" {
+		} else if util.InStringList([]string{"view", "http"}, action.Action) && action.URL == "" {
 			return nil, fmt.Errorf("parameter 'url' is required for action '%s'", action.Action)
 		}
 	}
@ -99,8 +107,8 @@ func parseActionsFromSimple(s string) ([]*action, error) {
 				newAction.Action = value
 			} else if key == "" && i == 1 {
 				newAction.Label = value
-			} else if key == "" && i == 2 {
-				newAction.URL = value // This works, because both "http" and "view" need a URL
+			} else if key == "" && util.InStringList([]string{"view", "http"}, newAction.Action) && i == 2 {
+				newAction.URL = value
 			} else if key != "" {
 				switch strings.ToLower(key) {
 				case "action":