mein bereinigt

.gitea/workflows/docker-release.yml

@@ -1,4 +1,4 @@
-iname: Docker Release Build
+name: Docker Release Build
 on:
   push:
     tags:
@@ -25,6 +25,8 @@ jobs:
           push: true
           # Hier wird die Git-Referenz automatisch als Docker-Tag genutzt
           #tags: gitea.scu.si/florianwalther/password-generator:${{ gitea.ref_name }}
+          build-args: |
+            APP_VERSION=${{ gitea.ref_name }}
           tags: |
             gitea.scu.si/florian.walther/password-generator:${{ gitea.ref_name }}
             gitea.scu.si/florian.walther/password-generator:latest

Dockerfile

@@ -8,7 +8,8 @@ WORKDIR /app
 COPY . .
 
 # Baue die Anwendung
-RUN CGO_ENABLED=0 GOOS=linux go build -ldflags="-s -w" -o /app/password-generator
+ARG APP_VERSION=dev
+RUN CGO_ENABLED=0 GOOS=linux go build -ldflags="-s -w -X 'main.AppVersion=${APP_VERSION}'" -o /app/password-generator
 
 # Verwende ein minimales Image für die finale Stage
 FROM scratch

README.md

@@ -9,6 +9,9 @@ _a web based password generator, with an API endpoint_
 * generates long and random, secure passwords (read about the [security considerations](SECURITY.md))
 * copy to clipboard
 * very small docker container, that only contains the application and has minimum attack surface
+* supports DarkMode and LightMode, you can toggle
+* prepared to run behind a reverse-proxy, like traefik.
+* logs in combined log format
 
 ## Demo
 
@@ -28,7 +31,7 @@ docker compose up -d
 
 ## Docker image
 
-The latest official docker image is at [https://gitea.scu.si/FlorianWalther/-/packages/container/password-generator/latest](https://gitea.scu.si/FlorianWalther/-/packages/container/password-generator/latest)
+The latest official docker image is at [https://gitea.scu.si/Florian.Walther/-/packages/container/password-generator/latest](https://gitea.scu.si/Florian.Walther/-/packages/container/password-generator/latest)
 
 You can pull it like this:
 ```

go.mod

@@ -1,3 +1,3 @@
-module gitea.scu.si/FlorianWalther/Web-Password
+module gitea.scu.si/Florian.Walther/Web-Password
 
 go 1.24.1

main.go

@@ -2,26 +2,170 @@ package main
 
 import (
 	"crypto/rand"
+	"encoding/json"
+	"fmt"
 	"html/template"
 	"log"
+	"net"
 	"net/http"
+	"os"
+	"path/filepath"
+	"strconv"
+	"strings"
+	"sync"
+	"time"
 )
 
 const (
-	passwordLength = 32
-	chars          = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789"
+	passwordLength            = 32
+	chars                     = "ABCDEFGHIJKLMNOPQRSTUVWXYZabcdefghijklmnopqrstuvwxyz0123456789"
+	startTimeKey   contextKey = "startTime"
 )
 
-//var tmpl *template.Template
-var templates = make(map[string]*template.Template)
+var (
+	debug       = false
+	templates   = make(map[string]*template.Template)
+	AppVersion  = "development"
+	counterFile = "/data/counter.txt"
+	mu          sync.Mutex
+)
+
+type contextKey string
+type responseWriter struct {
+	http.ResponseWriter
+	statusCode int
+}
+
+func (rw *responseWriter) WriteHeader(code int) {
+	rw.statusCode = code
+	rw.ResponseWriter.WriteHeader(code)
+}
+
+func newResponseWriter(w http.ResponseWriter) *responseWriter {
+	return &responseWriter{w, http.StatusOK} // Default 200 OK
+}
+
+func initConfig() {
+	if envFile := os.Getenv("COUNTER_FILE"); envFile != "" {
+		counterFile = envFile
+		log.Printf("counterFile st to %s, by ENV\n", envFile)
+		// Prüfen, ob das Verzeichnis für die Datei existiert
+		dir := filepath.Dir(counterFile)
+		if _, err := os.Stat(dir); os.IsNotExist(err) {
+			log.Printf("WARNUNG: Verzeichnis %s existiert nicht. Counter wird evtl. fehlschlagen.", dir)
+		}
+	}
+
+	envDebug := strings.ToLower(os.Getenv("DEBUG"))
+	if envDebug == "true" || envDebug == "1" {
+		debug = true
+		log.Println("DEBUG-Modus ist aktiviert")
+	}
+}
+
+func LoggingMiddleware(next http.Handler) http.Handler {
+	return http.HandlerFunc(func(w http.ResponseWriter, r *http.Request) {
+		start := time.Now()
+		rw := newResponseWriter(w)
+		next.ServeHTTP(rw, r)
+		duration := time.Since(start)
+		clientIP := getClientIP(r)
+		userAgent := r.UserAgent()
+		// Format: IP - - [Datum] "Method Path Proto" Status Duration User-Agent
+		// "Combined Log Format"
+		log.Printf("%s - - [%s] \"%s %s %s\" %d %v \"%s\"\n",
+			clientIP,
+			time.Now().Format("02/Jan/2006:15:04:05 -0700"),
+			r.Method,
+			r.URL.Path,
+			r.Proto,
+			rw.statusCode,
+			duration,
+			userAgent,
+		)
+	})
+}
+
+func getClientIP(r *http.Request) string {
+	// 1. Prüfe den X-Forwarded-For Header (Standard für Proxies)
+	xForwardedFor := r.Header.Get("X-Forwarded-For")
+	if xForwardedFor != "" {
+		// Der Header kann eine Liste von IPs sein (Client, Proxy1, Proxy2)
+		// Die erste IP in der Liste ist die echte Client-IP
+		ips := strings.Split(xForwardedFor, ",")
+		return strings.TrimSpace(ips[0])
+	}
+
+	// 2. Fallback auf X-Real-IP (oft von Traefik/Nginx gesetzt)
+	xRealIP := r.Header.Get("X-Real-IP")
+	if xRealIP != "" {
+		return xRealIP
+	}
+
+	// 3. Letzter Ausweg: Die direkte IP (wird in deinem Fall die Traefik-IP sein)
+	// RemoteAddr enthält oft auch den Port (z.B. "127.0.0.1:1234")
+	ip, _, _ := net.SplitHostPort(r.RemoteAddr)
+	return ip
+}
+
+// Diese Funktion wird nur intern aufgerufen, wenn der Mutex bereits gesperrt ist
+func getCount() int {
+	data, err := os.ReadFile(counterFile)
+	if err != nil {
+		return 0
+	}
+	count, _ := strconv.Atoi(strings.TrimSpace(string(data)))
+	return count
+}
+
+// Öffentliche Funktion für das Template (mit Lock)
+func GetPasswordCount() int {
+	mu.Lock()
+	defer mu.Unlock()
+	return getCount()
+}
+
+// Öffentliche Funktion zum Erhöhen (mit Lock)
+func IncrementPasswordCount() {
+	mu.Lock()
+	defer mu.Unlock()
+
+	// Wir rufen jetzt die interne Funktion auf, die NICHT versucht,
+	// den Mutex erneut zu sperren
+	count := getCount()
+	count++
+	os.WriteFile(counterFile, []byte(strconv.Itoa(count)), 0644)
+}
 
 func loadTemplates() {
-	templates["index.html"] = template.Must(template.ParseFiles("templates/base.html", "templates/index.html"))
-	templates["help.html"] = template.Must(template.ParseFiles("templates/base.html", "templates/help.html"))
+	funcMap := template.FuncMap{
+		"getAppVersion": func() string { return AppVersion },
+		"getPassCount":  func() int { return GetPasswordCount() },
+		"isDebug":       func() bool { return debug },
+		"dt": func(startTime time.Time) string {
+			duration := time.Since(startTime)
+			// Gibt die Zeit in Millisekunden mit 2 Nachkommastellen aus, z.B. "1.45ms"
+			return fmt.Sprintf("%.2fms", float64(duration.Nanoseconds())/1e6)
+		},
+	}
+
+	templates["index.html"] = template.Must(template.New("base.html").Funcs(funcMap).ParseFiles(
+		"templates/base.html",
+		"templates/index.html",
+	))
+
+	templates["help.html"] = template.Must(template.New("base.html").Funcs(funcMap).ParseFiles(
+		"templates/base.html",
+		"templates/help.html",
+	))
+
 	log.Printf("Alle Templates erfolgreich geladen")
 }
 
 func generatePassword() string {
+	if debug {
+		log.Printf("called generatePassword\n")
+	}
 	password := make([]byte, passwordLength)
 	_, err := rand.Read(password)
 	if err != nil {
@@ -30,22 +174,64 @@ func generatePassword() string {
 	for i := 0; i < passwordLength; i++ {
 		password[i] = chars[int(password[i])%len(chars)]
 	}
+	IncrementPasswordCount()
 	return string(password)
 }
 
 func passwordHandler(w http.ResponseWriter, r *http.Request) {
+	if debug {
+		log.Printf("called passwordHandler\n")
+	}
+	password := generatePassword()
+	currentCount := GetPasswordCount()
+	response := map[string]interface{}{
+		"password": password,
+		"count":    currentCount,
+	}
+	w.Header().Set("Content-Type", "application/json")
+	err := json.NewEncoder(w).Encode(response)
+	if err != nil {
+		log.Printf("Fehler beim Senden des JSON: %v", err)
+		http.Error(w, "Interner Fehler", http.StatusInternalServerError)
+		return
+	}
+}
+
+func passwordAPIHandler(w http.ResponseWriter, r *http.Request) {
+	if debug {
+		log.Printf("called passwordHandler\n")
+	}
 	password := generatePassword()
 	w.Header().Set("Content-Type", "text/plain")
 	w.Write([]byte(password))
 }
 
 func indexHandler(w http.ResponseWriter, r *http.Request) {
-	log.Printf("call indexHandler: Request %s %s\n", r.Method, r.URL)
+	if debug {
+		log.Printf("call indexHandler: Request %s %s\n", r.Method, r.URL)
+	}
+
+	startTime, ok := r.Context().Value(startTimeKey).(time.Time)
+	if !ok {
+		startTime = time.Now() // Fallback, falls die Middleware mal fehlt
+	}
+
 	password := generatePassword()
+
 	data := struct {
-		Password string
+		Password  string
+		StartTime time.Time
+		Request   *http.Request
+		RealIP    string
 	}{
-		Password: password,
+		Password:  password,
+		StartTime: startTime,
+		Request:   r,
+		RealIP:    getClientIP(r),
+	}
+
+	if debug {
+		log.Printf("prepare template for index\n")
 	}
 	err := templates["index.html"].ExecuteTemplate(w, "base.html", data)
 	if err != nil {
@@ -55,7 +241,9 @@ func indexHandler(w http.ResponseWriter, r *http.Request) {
 }
 
 func helpHandler(w http.ResponseWriter, r *http.Request) {
-	log.Printf("call helpHandler\n")
+	if debug {
+		log.Printf("call helpHandler\n")
+	}
 	err := templates["help.html"].ExecuteTemplate(w, "base.html", nil)
 	if err != nil {
 		log.Printf("Fehler beim Rendern des Templates: %v", err)
@@ -64,14 +252,21 @@ func helpHandler(w http.ResponseWriter, r *http.Request) {
 }
 
 func main() {
+	initConfig()
 	loadTemplates()
-	fs := http.FileServer(http.Dir("static"))
-	http.Handle("/static/", http.StripPrefix("/static/", fs))
+	mux := http.NewServeMux()
 
-	http.HandleFunc("/", indexHandler)
-	http.HandleFunc("/api/password", passwordHandler)
-	http.HandleFunc("/help", helpHandler)
+	fs := http.FileServer(http.Dir("static"))
+	mux.Handle("/static/", http.StripPrefix("/static/", fs))
+
+	mux.HandleFunc("/", indexHandler)
+	mux.HandleFunc("/api/password", passwordAPIHandler)
+	mux.HandleFunc("/json/password", passwordHandler)
+	mux.HandleFunc("/help", helpHandler)
+
+	loggingRouter := LoggingMiddleware(mux)
 
 	log.Println("Server läuft auf http://localhost:8080")
-	log.Fatal(http.ListenAndServe(":8080", nil))
+
+	log.Fatal(http.ListenAndServe(":8080", loggingRouter))
 }

misc/MoreUsage.md

@@ -25,21 +25,32 @@ for i in {1..10}; do echo $(curl -s https://passwd.scu.si/api/password); done
 you can build the app yourself like this:
 
 ```
-go build -o password-generator ./
+go build ./
 ```
 
+NOTE: If you build the app manually in go, like shown in this example, it will probably not run, since it misses a writeable `/data` directory.
+You can set the counterFile by environment variable `COUNTER_FILE`, like this:
+```
+COUNTER_FILE=./counter.txt ./Web-Password
+```
 
+## debuging the app
+
+You can turn on debug mode via environment variable `DEBUG`
+```
+DEBUG=true ./Web-Password
+```
 
 # build a docker container
 
 ```
-docker build -t password-generator .
+docker build -t web-password:dev .
 ```
 
 # start the docker container
 
 ```
-docker run -p 8080:8080 password-generator
+docker run -p 8080:8080 -v app_data:/data web-password:dev
 ```
 
 ## docker-compose

misc/docker-compose.traefik.yml

@@ -1,8 +1,10 @@
 services:
   password-generator:
-    image: gitea.scu.si/florianwalther/password-generator:latest
+    image: gitea.scu.si/florian.walther/password-generator:latest
     container_name: password-generator
     restart: always
+    volumes:
+      - ./app_data:/data
     expose:
       - "8080:8080"
     labels:

misc/docker-compose.yml

@@ -1,8 +1,13 @@
 services:
   password-generator:
-    image: gitea.scu.si/florianwalther/password-generator:latest
+    image: gitea.scu.si/florian.walther/password-generator:latest
     container_name: password-generator
     restart: always
+    environment:
+      - DEBUG=false
+      - COUNTER_FILE=/data/counter.txt
+    volumes:
+      - ./app_data:/data
     ports:
       - "8080:8080"
     # Falls die Registry privat ist, muss der Host zuvor mit 

static/style.css

@@ -1,6 +1,7 @@
 :root {
   --bg-color: #f5f5f5;
   --text-color: #333;
+  --highlight-color: #1d4ed8;
   --container-bg: white;
   --button-bg: #007BFF;
   --button-hover: #0056b3;
@@ -14,6 +15,7 @@
 .dark {
   --bg-color: #121212;
   --text-color: #e0e0e0;
+  --highlight-color: #fcf803;
   --container-bg: #1e1e1e;
   --button-bg: #2a7df4;
   --button-hover: #1a5fb4;
@@ -34,6 +36,7 @@ body {
   background-color: var(--bg-color);
   color: var(--text-color);
   transition: background-color 0.3s, color 0.3s;
+  margin-bottom: 60px;
 }
 
 .container {
@@ -47,6 +50,45 @@ body {
   position: relative;
 }
 
+footer {
+    position: fixed;
+    bottom: 0;
+    left: 0;
+    width: 100%;
+    background-color: var(--bg-color);
+    border-top: 1px solid var(--border-color);
+    padding: 10px 20px;
+    box-sizing: border-box;
+    box-shadow: 0 2px 10px var(--shadow-color);
+    z-index: 1000;
+}
+
+.footer-container {
+    display: flex;
+    justify-content: flex-end; /* Schiebt alles nach rechts */
+    gap: 20px;                 /* Abstand zwischen Counter und Version */
+    align-items: center;
+}
+
+.footer-item {
+    display: flex;
+    align-items: center;
+    gap: 8px;
+    font-family: monospace; /* Monospace sieht für Versionen oft "technischer" aus */
+    font-size: 13px;
+    color:var(--text-color);
+}
+
+@keyframes pulse {
+    0% { transform: scale(1); color: var(--shadow-color); }
+    50% { transform: scale(1.2); color: var(--highlight-color); font-weight: bold; }
+    100% { transform: scale(1); color: var(--shadow-color); }
+}
+
+.counter-update {
+    animation: pulse 0.4s ease-out;
+}
+
 #password {
   font-family: 'Courier New', Courier, monospace;
   font-size: 1.2rem;
@@ -169,3 +211,27 @@ a:hover {
   text-decoration: underline;
 }
 
+.debug-banner {
+  position: absolute;
+  top: 1rem;
+  left: 4rem;
+  font-size: 1.2rem;
+  border-radius: 4px;
+  border: 1px solid var(--border-color);
+}
+
+.debug-only {
+    display: none;
+}
+
+.debug-footer {
+  position: absolute;
+  bottom: 4em;
+  left: 0;
+
+}
+
+body.is-debug .debug-only {
+  display: inline-block;
+  border: 1px dashed red;
+}

templates/base.html

@@ -44,6 +44,45 @@
 </head>
 <body>
     <button id="theme-toggle">🌓</button>
+    {{if isDebug}}
+        <div class="debug-banner" style="background: #ffeb3b; color: #000; text-align: center; font-size: 12px; padding: 5px; font-weight: bold;">
+            ⚠️ DEBUG-MODUS AKTIVIERT
+        </div>
+    {{end}}
     {{ block "body" . }}{{end}}
+
+{{if isDebug}}
+<div class="debug-footer" style="background: #333; color: #0f0; font-family: monospace; font-size: 11px; padding: 10px; border-top: 2px solid #0f0;">
+    <div>
+        <strong>DEBUG INFO:</strong> 
+        <span>Ladezeit: {{dt .StartTime}}</span> | 
+        <span>Method: {{.Request.Method}}</span> | 
+        <span>Path: {{.Request.URL.Path}}</span> | 
+        <span>Remote: {{.Request.RemoteAddr}}</span> | 
+        <span>Real IP: {{.RealIP}}</span>
+    </div>
+    <div style="margin-top: 5px; color: #888;">
+        User-Agent: {{.Request.UserAgent}}
+    </div>
+</div>
+{{end}}
+
+<!-- <footer>Version: {{getAppVersion}} | made with golang and ♥️  {{ block "footer" . }}{{ end }}</footer> -->
+<footer>
+    <div class="footer-container">
+        <div class="footer-item">
+            <span>Ladezeit: {{dt .StartTime}}</span> 
+        </div>
+        <div class="footer-item">
+            Passwörter generiert: <span id="global-counter">{{getPassCount}}</span>
+        </div>
+        <div class="footer-item">
+            Version: {{getAppVersion}}
+        </div>
+        <div class="footer-item">
+            made with golang and ♥️
+        </div>
+    </div>
+</footer>
 </body>
 </html>

templates/index.html

@@ -17,13 +17,25 @@
     }
 
     function generateNewPassword() {
-        fetch("/api/password")
-            .then(response => response.text())
-            .then(password => {
-                document.getElementById("password").innerText = password;
-            })
-            .catch(error => console.error("Fehler:", error));
-    }
+        fetch("/json/password")
+            .then(response => response.json()) // Jetzt .json() statt .text()
+            .then(data => {
+               // Passwort aktualisieren
+               document.getElementById("password").innerText = data.password;
+            
+               // Counter im Footer aktualisieren
+               // Wir suchen das Element mit der Klasse 'badge-blue' (oder gib ihm eine ID)
+               const counterElement = document.getElementById("global-counter");
+               if (counterElement) {
+                   document.getElementById("global-counter").innerText = data.count;
+                   // Animation triggern
+                   counterElement.classList.remove("counter-update"); // Vorherige Animation zurücksetzen
+                   void counterElement.offsetWidth;                 // Trick, um CSS-Reflow zu erzwingen
+                   counterElement.classList.add("counter-update");
+               }
+        })
+        .catch(error => console.error("Fehler:", error));
+}
 </script>
 {{ end }}
 
@@ -31,7 +43,7 @@
 <div class="container">
     <a href="/help" class="help-link">?</a>
     <a href="https://gitea.scu.si/Florian.Walther/Web-Password" class="code-link">Sourcecode</a>
-    <h1>Generiertes Passwort</h1>
+    <h1>Passwort Generator</h1>
     <div id="password">{{ .Password }}</div>
     <div class="buttons">
         <button class="copy-button" onclick="copyToClipboard()">In Zwischenablage kopieren</button>