chore(release): version v0.15.1

fix: cannot upload (#32 )
empty folder got js error close: #31
2026-04-09 00:59:02 +03:00 · 2022-06-11 08:52:22 +08:00 · 2022-06-11 08:51:17 +08:00 · 2022-06-10 08:41:51 +08:00 · 2022-06-10 08:00:27 +08:00 · 2022-06-10 07:41:09 +08:00
16 changed files with 2335 additions and 659 deletions
--- a/.dockerignore
+++ b/.dockerignore
@@ -0,0 +1,13 @@
 # Directories
 /.git/
 /.github/
 /target/
 /examples/
 /docs/
 /benches/
 /tmp/
 # Files
 .gitignore
 *.md
 LICENSE*
--- a/.github/workflows/release.yaml
+++ b/.github/workflows/release.yaml
@@ -6,8 +6,10 @@ on:
    - v[0-9]+.[0-9]+.[0-9]+*
 jobs:
-  all:
+  release:
-    name: All
+    name: Publish to Github Reelases
    outputs:
      rc: ${{ steps.check-tag.outputs.rc }}
    strategy:
      matrix:
@@ -123,4 +125,41 @@ jobs:
        files: ${{ steps.package.outputs.archive }}
        prerelease: ${{ steps.check-tag.outputs.rc == 'true' }}
      env:
-        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
+        GITHUB_TOKEN: ${{ secrets.GITHUB_TOKEN }}
  docker:
    name: Publish to Docker Hub
    if: startsWith(github.ref, 'refs/tags/')
    runs-on: ubuntu-latest
    needs: release
    steps:
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v1
      - name: Login to DockerHub
        uses: docker/login-action@v1
        with:
          username: ${{ secrets.DOCKERHUB_USERNAME }}
          password: ${{ secrets.DOCKERHUB_TOKEN }}
      - name: Build and push
        id: docker_build
        uses: docker/build-push-action@v2
        with:
          push: ${{ needs.release.outputs.rc == 'false' }}
          tags: ${{ github.repository }}:latest, ${{ github.repository }}:${{ github.ref_name }}
  publish-crate:
    name: Publish to crates.io
    if: ${{ needs.release.outputs.rc == 'false' }}
    runs-on: ubuntu-latest
    needs: release
    steps:
      - uses: actions/checkout@v2
      - uses: actions-rs/toolchain@v1
        with:
          profile: minimal
          toolchain: stable
      - name: Publish
        env:
          CARGO_REGISTRY_TOKEN: ${{ secrets.CRATES_IO_API_TOKEN }}
        run: cargo publish
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -0,0 +1,245 @@
 # Changelog
 All notable changes to this project will be documented in this file.
 ## [0.15.1] - 2022-06-11
 ### Bug Fixes
 - Cannot upload ([#32](https://github.com/sigoden/duf/issues/32))
 ## [0.15.0] - 2022-06-10
 ### Bug Fixes
 - Encode webdav href as uri ([#28](https://github.com/sigoden/duf/issues/28))
 - Query dir param
 ### Features
 - Add basic dark theme ([#29](https://github.com/sigoden/duf/issues/29))
 - Add empty state placeholder to page([#30](https://github.com/sigoden/duf/issues/30))
 ## [0.14.0] - 2022-06-07
 ### Bug Fixes
 - Send index page with content-type ([#26](https://github.com/sigoden/duf/issues/26))
 ### Features
 - Support ipv6 ([#25](https://github.com/sigoden/duf/issues/25))
 - Add favicon ([#27](https://github.com/sigoden/duf/issues/27))
 ## [0.13.2] - 2022-06-06
 ### Bug Fixes
 - Filename xml escaping
 - Escape path-prefix/url-prefix different
 ## [0.13.1] - 2022-06-05
 ### Bug Fixes
 - Escape filename ([#21](https://github.com/sigoden/duf/issues/21))
 ### Refactor
 - Use logger ([#22](https://github.com/sigoden/duf/issues/22))
 ## [0.13.0] - 2022-06-05
 ### Bug Fixes
 - Ctrl+c not exit sometimes
 ### Features
 - Implement more webdav methods ([#13](https://github.com/sigoden/duf/issues/13))
 - Use digest auth ([#14](https://github.com/sigoden/duf/issues/14))
 - Add webdav proppatch handler ([#18](https://github.com/sigoden/duf/issues/18))
 ## [0.12.1] - 2022-06-04
 ### Features
 - Support webdav ([#10](https://github.com/sigoden/duf/issues/10))
 - Remove unzip uploaded feature ([#11](https://github.com/sigoden/duf/issues/11))
 ## [0.11.0] - 2022-06-03
 ### Features
 - Support gracefully shutdown server
 - Listen 0.0.0.0 by default
 ## [0.10.1] - 2022-06-02
 ### Bug Fixes
 - Panic when bind already used port
 ## [0.10.0] - 2022-06-02
 ### Bug Fixes
 - Remove unzip file even failed to unzip
 - Rename --no-auth-read to --no-auth-access
 - Broken ui
 ### Documentation
 - Refactor readme
 ### Features
 - Change auth logic/options
 - Improve ui
 ### Refactor
 - Small improvement
 ## [0.9.0] - 2022-06-02
 ### Documentation
 - Improve readme
 ### Features
 - Support path prefix
 - List all ifaces when listening 0.0.0.0
 - Support tls
 ## [0.8.0] - 2022-06-01
 ### Bug Fixes
 - Some typos
 - Caught 500 if no permission to access dir
 ### Features
 - Cli add allow-symlink option
 - Add some headers to res
 - Support render-index/render-spa
 ## [0.7.0] - 2022-05-31
 ### Bug Fixes
 - Downloaded zip file has no.zip ext in firefox
 - Unzip override existed file in uploadonly mode
 - Miss file 500
 - Not found dir when allow_upload is false
 ### Features
 - Drag and drop uploads, upload folder
 ## [0.6.0] - 2022-05-31
 ### Features
 - Delete confirm
 - Distinct upload and delete operation
 - Support range requests
 ### Refactor
 - Improve code quality
 ## [0.5.0] - 2022-05-30
 ### Features
 - Add mime and cache headers to response
 - Add no-auth-read options
 - Unzip zip file when unload
 ## [0.4.0] - 2022-05-29
 ### Features
 - Replace --static option to --no-edit
 - Add cors
 ## [0.3.0] - 2022-05-29
 ### Documentation
 - Update readme demo png
 ### Features
 - Automatically create dir while uploading
 - Support searching
 ### Refactor
 - Handler zip
 ### Styling
 - Optimize css
 ## [0.2.1] - 2022-05-28
 ### Bug Fixes
 - Cannot upload in root
 - Optimize download zip
 ### Documentation
 - Improve readme
 ### Features
 - Aware RUST_LOG
 ## [0.2.0] - 2022-05-28
 ### Documentation
 - Update demo png
 - Improve readme
 ### Features
 - Add logger
 - Download folder as zip file
 ## [0.1.0] - 2022-05-26
 ### Bug Fixes
 - Caught server error when symlink broken
 ### Documentation
 - Improve readme
 - Update readme
 ### Features
 - Add basic auth and readonly mode
 - Support delete operation
 - Remove parent path
 ### Styling
 - Cargo fmt
 - Update index page
 ### Build
 - Remove dev deps
 ### Ci
 - Init ci
 <!-- generated by git-cliff -->
--- a/Cargo.lock
+++ b/Cargo.lock
@@ -101,17 +101,6 @@ version = "1.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "065374052e7df7ee4047b1160cca5e1467a12351a40b3da123c870ba0b8eda2a"
 [[package]]
 name = "atty"
 version = "0.2.14"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d9b39be18770d11421cdb1b9947a45dd3f37e93092cbf377614828a319d5fee8"
 dependencies = [
 "hermit-abi",
 "libc",
 "winapi",
 ]
 [[package]]
 name = "autocfg"
 version = "1.1.0"
@@ -153,6 +142,12 @@ dependencies = [
 "once_cell",
 ]
 [[package]]
 name = "bumpalo"
 version = "3.10.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "37ccbd214614c6783386c1af30caf03192f17891059cecc394b4fb119e363de3"
 [[package]]
 name = "bytes"
 version = "1.1.0"
@@ -180,6 +175,12 @@ dependencies = [
 "pkg-config",
 ]
 [[package]]
 name = "c_linked_list"
 version = "1.1.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "4964518bd3b4a8190e832886cdc0da9794f12e8e6c1613a9e90ff331c4c8724b"
 [[package]]
 name = "cache-padded"
 version = "1.2.0"
@@ -210,8 +211,8 @@ dependencies = [
 "libc",
 "num-integer",
 "num-traits",
- "time 0.1.44",
+ "time",
- "winapi",
+ "winapi 0.3.9",
 ]
 [[package]]
@@ -236,17 +237,6 @@ dependencies = [
 "os_str_bytes",
 ]
 [[package]]
 name = "colored"
 version = "2.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "b3616f750b84d8f0de8a58bda93e08e2a81ad3f523089b05f1dffecab48c6cbd"
 dependencies = [
 "atty",
 "lazy_static",
 "winapi",
 ]
 [[package]]
 name = "concurrent-queue"
 version = "1.2.2"
@@ -296,23 +286,44 @@ dependencies = [
 [[package]]
 name = "duf"
-version = "0.5.0"
+version = "0.15.1"
 dependencies = [
 "async-walkdir",
 "async_zip",
 "base64",
 "chrono",
 "clap",
 "env_logger",
 "futures",
 "get_if_addrs",
 "headers",
 "hyper",
 "lazy_static",
 "log",
 "md5",
 "mime_guess",
 "percent-encoding",
 "rustls",
 "rustls-pemfile",
 "serde",
 "serde_json",
 "simple_logger",
 "tokio",
 "tokio-rustls",
 "tokio-stream",
 "tokio-util",
 "urlencoding",
 "uuid",
 "xml-rs",
 ]
 [[package]]
 name = "env_logger"
 version = "0.9.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0b2cf0344971ee6c64c31be0d530793fba457d322dfec2810c453d0ef228f9c3"
 dependencies = [
 "humantime",
 "log",
 ]
 [[package]]
@@ -332,13 +343,11 @@ dependencies = [
 [[package]]
 name = "flate2"
-version = "1.0.23"
+version = "1.0.24"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b39522e96686d38f4bc984b9198e3a0613264abaebaff2c5c918bfa6b6da09af"
+checksum = "f82b0f4c27ad9f8bfd1f3208d882da2b09c301bc1c828fd3a00d0216d2fbbff6"
 dependencies = [
 "cfg-if",
 "crc32fast",
 "libc",
 "miniz_oxide",
 ]
@@ -452,6 +461,12 @@ dependencies = [
 "slab",
 ]
 [[package]]
 name = "gcc"
 version = "0.3.55"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "8f5f3913fa0bfe7ee1fd8248b6b9f42a5af4b9d65ec2dd2c3c26132b950ecfc2"
 [[package]]
 name = "generic-array"
 version = "0.14.5"
@@ -462,6 +477,39 @@ dependencies = [
 "version_check",
 ]
 [[package]]
 name = "get_if_addrs"
 version = "0.5.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "abddb55a898d32925f3148bd281174a68eeb68bbfd9a5938a57b18f506ee4ef7"
 dependencies = [
 "c_linked_list",
 "get_if_addrs-sys",
 "libc",
 "winapi 0.2.8",
 ]
 [[package]]
 name = "get_if_addrs-sys"
 version = "0.1.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0d04f9fb746cf36b191c00f3ede8bde9c8e64f9f4b05ae2694a9ccf5e3f5ab48"
 dependencies = [
 "gcc",
 "libc",
 ]
 [[package]]
 name = "getrandom"
 version = "0.2.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9be70c98951c83b8d2f8f60d7065fa6d5146873094452a1008da8c2f1e4205ad"
 dependencies = [
 "cfg-if",
 "libc",
 "wasi 0.10.0+wasi-snapshot-preview1",
 ]
 [[package]]
 name = "hashbrown"
 version = "0.11.2"
@@ -504,9 +552,9 @@ dependencies = [
 [[package]]
 name = "http"
-version = "0.2.7"
+version = "0.2.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "ff8670570af52249509a86f5e3e18a08c60b177071826898fde8997cf5f6bfbb"
+checksum = "75f43d41e26995c17e71ee126451dd3941010b0514a81a9d11f3b341debc2399"
 dependencies = [
 "bytes",
 "fnv",
@@ -536,6 +584,12 @@ version = "1.0.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "c4a1e36c821dbe04574f602848a19f742f4fb3c98d40449f11bcad18d6b17421"
 [[package]]
 name = "humantime"
 version = "2.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9a3a5bfb195931eeb336b2a7b4d761daec841b97f947d34394601737a7bba5e4"
 [[package]]
 name = "hyper"
 version = "0.14.19"
@@ -593,6 +647,15 @@ dependencies = [
 "libc",
 ]
 [[package]]
 name = "js-sys"
 version = "0.3.57"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "671a26f820db17c2a2750743f1dd03bafd15b98c9f30c7c2628c024c05d73397"
 dependencies = [
 "wasm-bindgen",
 ]
 [[package]]
 name = "lazy_static"
 version = "1.4.0"
@@ -616,15 +679,21 @@ dependencies = [
 [[package]]
 name = "lzma-sys"
-version = "0.1.17"
+version = "0.1.19"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "bdb4b7c3eddad11d3af9e86c487607d2d2442d185d848575365c4856ba96d619"
+checksum = "e06754c4acf47d49c727d5665ca9fb828851cda315ed3bd51edd148ef78a8772"
 dependencies = [
 "cc",
 "libc",
 "pkg-config",
 ]
 [[package]]
 name = "md5"
 version = "0.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "490cc448043f947bae3cbee9c203358d62dbee0db12107a74be5c30ccfd09771"
 [[package]]
 name = "memchr"
 version = "2.5.0"
@@ -649,9 +718,9 @@ dependencies = [
 [[package]]
 name = "miniz_oxide"
-version = "0.5.1"
+version = "0.5.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "d2b29bd4bc3f33391105ebee3589c19197c4271e3e5a9ec9bfe8127eeff8f082"
+checksum = "6f5c75688da582b8ffc1f1799e9db273f32133c49e048f614d22ec3256773ccc"
 dependencies = [
 "adler",
 ]
@@ -697,15 +766,6 @@ dependencies = [
 "libc",
 ]
 [[package]]
 name = "num_threads"
 version = "0.1.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "2819ce041d2ee131036f4fc9d6ae7ae125a3a40e97ba64d04fe799ad9dabbb44"
 dependencies = [
 "libc",
 ]
 [[package]]
 name = "once_cell"
 version = "1.12.0"
@@ -748,6 +808,12 @@ version = "0.3.25"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "1df8c4ec4b0627e53bdf214615ad287367e482558cf84b109250b37464dc03ae"
 [[package]]
 name = "ppv-lite86"
 version = "0.2.16"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "eb9f9e6e233e5c4a35559a617bf40a4ec447db2e84c20b55a6f83167b7e57872"
 [[package]]
 name = "proc-macro2"
 version = "1.0.39"
@@ -766,12 +832,88 @@ dependencies = [
 "proc-macro2",
 ]
 [[package]]
 name = "rand"
 version = "0.8.5"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "34af8d1a0e25924bc5b7c43c079c942339d8f0a8b57c39049bef581b46327404"
 dependencies = [
 "libc",
 "rand_chacha",
 "rand_core",
 ]
 [[package]]
 name = "rand_chacha"
 version = "0.3.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "e6c10a63a0fa32252be49d21e7709d4d4baf8d231c2dbce1eaa8141b9b127d88"
 dependencies = [
 "ppv-lite86",
 "rand_core",
 ]
 [[package]]
 name = "rand_core"
 version = "0.6.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d34f1408f55294453790c48b2f1ebbb1c5b4b7563eb1f418bcfcfdbb06ebb4e7"
 dependencies = [
 "getrandom",
 ]
 [[package]]
 name = "ring"
 version = "0.16.20"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "3053cf52e236a3ed746dfc745aa9cacf1b791d846bdaf412f60a8d7d6e17c8fc"
 dependencies = [
 "cc",
 "libc",
 "once_cell",
 "spin",
 "untrusted",
 "web-sys",
 "winapi 0.3.9",
 ]
 [[package]]
 name = "rustls"
 version = "0.20.6"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "5aab8ee6c7097ed6057f43c187a62418d0c05a4bd5f18b3571db50ee0f9ce033"
 dependencies = [
 "log",
 "ring",
 "sct",
 "webpki",
 ]
 [[package]]
 name = "rustls-pemfile"
 version = "1.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "e7522c9de787ff061458fe9a829dc790a3f5b22dc571694fc5883f448b94d9a9"
 dependencies = [
 "base64",
 ]
 [[package]]
 name = "ryu"
 version = "1.0.10"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "f3f6f92acf49d1b98f7a81226834412ada05458b7364277387724a237f062695"
 [[package]]
 name = "sct"
 version = "0.7.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d53dcdb7c9f8158937a7981b48accfd39a43af418591a5d008c7b22b5e1b7ca4"
 dependencies = [
 "ring",
 "untrusted",
 ]
 [[package]]
 name = "serde"
 version = "1.0.137"
@@ -815,16 +957,12 @@ dependencies = [
 ]
 [[package]]
-name = "simple_logger"
+name = "signal-hook-registry"
-version = "2.1.0"
+version = "1.4.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c75a9723083573ace81ad0cdfc50b858aa3c366c48636edb4109d73122a0c0ea"
+checksum = "e51e73328dc4ac0c7ccbda3a494dfa03df1de2f46018127f60c693f2648455b0"
 dependencies = [
- "atty",
+ "libc",
 "colored",
 "log",
 "time 0.3.9",
 "winapi",
 ]
 [[package]]
@@ -840,14 +978,20 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "66d72b759436ae32898a2af0a14218dbf55efde3feeb170eb623637db85ee1e0"
 dependencies = [
 "libc",
- "winapi",
+ "winapi 0.3.9",
 ]
 [[package]]
-name = "syn"
+name = "spin"
-version = "1.0.95"
+version = "0.5.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "fbaf6116ab8924f39d52792136fb74fd60a80194cf1b1c6ffa6453eef1c3f942"
+checksum = "6e63cff320ae2c57904679ba7cb63280a3dc4613885beafb148ee7bf9aa9042d"
 [[package]]
 name = "syn"
 version = "1.0.96"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "0748dd251e24453cb8717f0354206b91557e4ec8703673a4b30208f2abaf1ebf"
 dependencies = [
 "proc-macro2",
 "quote",
@@ -888,32 +1032,14 @@ checksum = "6db9e6914ab8b1ae1c260a4ae7a49b6c5611b40328a735b21862567685e73255"
 dependencies = [
 "libc",
 "wasi 0.10.0+wasi-snapshot-preview1",
- "winapi",
+ "winapi 0.3.9",
 ]
 [[package]]
 name = "time"
 version = "0.3.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "c2702e08a7a860f005826c6815dcac101b19b5eb330c27fe4a5928fec1d20ddd"
 dependencies = [
 "itoa",
 "libc",
 "num_threads",
 "time-macros",
 ]
 [[package]]
 name = "time-macros"
 version = "0.2.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "42657b1a6f4d817cda8e7a0ace261fe0cc946cf3a80314390b22cc61ae080792"
 [[package]]
 name = "tokio"
-version = "1.18.2"
+version = "1.19.2"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "4903bf0427cf68dddd5aa6a93220756f8be0c34fcfa9f5e6191e103e15a31395"
+checksum = "c51a52ed6686dd62c320f9b89299e9dfb46f730c7a48e635c19f21d116cb1439"
 dependencies = [
 "bytes",
 "libc",
@@ -922,16 +1048,17 @@ dependencies = [
 "num_cpus",
 "once_cell",
 "pin-project-lite",
 "signal-hook-registry",
 "socket2",
 "tokio-macros",
- "winapi",
+ "winapi 0.3.9",
 ]
 [[package]]
 name = "tokio-macros"
-version = "1.7.0"
+version = "1.8.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "b557f72f448c511a979e2564e55d74e6c4432fc96ff4f6241bc6bded342643b7"
+checksum = "9724f9a975fb987ef7a3cd9be0350edcbe130698af5b8f7a631e23d42d052484"
 dependencies = [
 "proc-macro2",
 "quote",
@@ -939,10 +1066,32 @@ dependencies = [
 ]
 [[package]]
-name = "tokio-util"
+name = "tokio-rustls"
-version = "0.7.2"
+version = "0.23.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "f988a1a1adc2fb21f9c12aa96441da33a1728193ae0b95d2be22dbd17fcb4e5c"
+checksum = "c43ee83903113e03984cb9e5cebe6c04a5116269e900e3ddba8f068a62adda59"
 dependencies = [
 "rustls",
 "tokio",
 "webpki",
 ]
 [[package]]
 name = "tokio-stream"
 version = "0.1.9"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "df54d54117d6fdc4e4fea40fe1e4e566b3505700e148a6827e59b34b0d2600d9"
 dependencies = [
 "futures-core",
 "pin-project-lite",
 "tokio",
 ]
 [[package]]
 name = "tokio-util"
 version = "0.7.3"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "cc463cd8deddc3770d20f9852143d50bf6094e640b485cb2e189a2099085ff45"
 dependencies = [
 "bytes",
 "futures-core",
@@ -966,21 +1115,9 @@ checksum = "5d0ecdcb44a79f0fe9844f0c4f33a342cbcbb5117de8001e6ba0dc2351327d09"
 dependencies = [
 "cfg-if",
 "pin-project-lite",
 "tracing-attributes",
 "tracing-core",
 ]
 [[package]]
 name = "tracing-attributes"
 version = "0.1.21"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "cc6b8ad3567499f98a1db7a752b07a7c8c7c7c34c332ec00effb2b0027974b7c"
 dependencies = [
 "proc-macro2",
 "quote",
 "syn",
 ]
 [[package]]
 name = "tracing-core"
 version = "0.1.26"
@@ -1017,6 +1154,28 @@ version = "1.0.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d22af068fba1eb5edcb4aea19d382b2a3deb4c8f9d475c589b6ada9e0fd493ee"
 [[package]]
 name = "untrusted"
 version = "0.7.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "a156c684c91ea7d62626509bce3cb4e1d9ed5c4d978f7b4352658f96a4c26b4a"
 [[package]]
 name = "urlencoding"
 version = "2.1.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "68b90931029ab9b034b300b797048cf23723400aa757e8a2bfb9d748102f9821"
 [[package]]
 name = "uuid"
 version = "1.1.1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "c6d5d669b51467dcf7b2f1a796ce0f955f05f01cafda6c19d6e95f730df29238"
 dependencies = [
 "getrandom",
 "rand",
 ]
 [[package]]
 name = "version_check"
 version = "0.9.4"
@@ -1051,6 +1210,86 @@ version = "0.11.0+wasi-snapshot-preview1"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "9c8d87e72b64a3b4db28d11ce29237c246188f4f51057d65a7eab63b7987e423"
 [[package]]
 name = "wasm-bindgen"
 version = "0.2.80"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "27370197c907c55e3f1a9fbe26f44e937fe6451368324e009cba39e139dc08ad"
 dependencies = [
 "cfg-if",
 "wasm-bindgen-macro",
 ]
 [[package]]
 name = "wasm-bindgen-backend"
 version = "0.2.80"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "53e04185bfa3a779273da532f5025e33398409573f348985af9a1cbf3774d3f4"
 dependencies = [
 "bumpalo",
 "lazy_static",
 "log",
 "proc-macro2",
 "quote",
 "syn",
 "wasm-bindgen-shared",
 ]
 [[package]]
 name = "wasm-bindgen-macro"
 version = "0.2.80"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "17cae7ff784d7e83a2fe7611cfe766ecf034111b49deb850a3dc7699c08251f5"
 dependencies = [
 "quote",
 "wasm-bindgen-macro-support",
 ]
 [[package]]
 name = "wasm-bindgen-macro-support"
 version = "0.2.80"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "99ec0dc7a4756fffc231aab1b9f2f578d23cd391390ab27f952ae0c9b3ece20b"
 dependencies = [
 "proc-macro2",
 "quote",
 "syn",
 "wasm-bindgen-backend",
 "wasm-bindgen-shared",
 ]
 [[package]]
 name = "wasm-bindgen-shared"
 version = "0.2.80"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "d554b7f530dee5964d9a9468d95c1f8b8acae4f282807e7d27d4b03099a46744"
 [[package]]
 name = "web-sys"
 version = "0.3.57"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "7b17e741662c70c8bd24ac5c5b18de314a2c26c32bf8346ee1e6f53de919c283"
 dependencies = [
 "js-sys",
 "wasm-bindgen",
 ]
 [[package]]
 name = "webpki"
 version = "0.22.0"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "f095d78192e208183081cc07bc5515ef55216397af48b873e5edcd72637fa1bd"
 dependencies = [
 "ring",
 "untrusted",
 ]
 [[package]]
 name = "winapi"
 version = "0.2.8"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "167dc9d6949a9b857f3451275e911c3f44255842c1f7a76f33c55103a909087a"
 [[package]]
 name = "winapi"
 version = "0.3.9"
@@ -1117,10 +1356,16 @@ source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "c811ca4a8c853ef420abd8592ba53ddbbac90410fab6903b3e79972a631f7680"
 [[package]]
-name = "xz2"
+name = "xml-rs"
-version = "0.1.6"
+version = "0.8.4"
 source = "registry+https://github.com/rust-lang/crates.io-index"
-checksum = "c179869f34fc7c01830d3ce7ea2086bc3a07e0d35289b667d0a8bf910258926c"
+checksum = "d2d7d3948613f75c98fd9328cfdcc45acc4d360655289d0a7d4ec931392200a3"
 [[package]]
 name = "xz2"
 version = "0.1.7"
 source = "registry+https://github.com/rust-lang/crates.io-index"
 checksum = "388c44dc09d76f1536602ead6d325eb532f5c122f17782bd57fb47baeeb767e2"
 dependencies = [
 "lzma-sys",
 ]
--- a/Cargo.toml
+++ b/Cargo.toml
@@ -1,6 +1,6 @@
 [package]
 name = "duf"
-version = "0.5.0"
+version = "0.15.1"
 edition = "2021"
 authors = ["sigoden <sigoden@gmail.com>"]
 description = "Duf is a simple file server."
@@ -9,24 +9,35 @@ homepage = "https://github.com/sigoden/duf"
 repository = "https://github.com/sigoden/duf"
 autotests = false
 categories = ["command-line-utilities", "web-programming::http-server"]
-keywords = ["static", "file", "server", "http", "cli"]
+keywords = ["static", "file", "server", "webdav", "cli"]
 [dependencies]
 clap = { version = "3", default-features = false, features = ["std", "cargo"] }
-tokio = { version = "1", features = ["rt-multi-thread", "macros", "fs", "io-util"]}
+chrono = "0.4"
 tokio = { version = "1", features = ["rt-multi-thread", "macros", "fs", "io-util", "signal"]}
 tokio-rustls = "0.23"
 tokio-stream = { version = "0.1", features = ["net"] }
 tokio-util = { version = "0.7",  features = ["codec", "io-util"] }
 hyper = { version = "0.14", features = ["http1", "server", "tcp", "stream"] }
 percent-encoding = "2.1"
 serde = { version = "1", features = ["derive"] }
 serde_json = "1"
 tokio-util = { version = "0.7", features = ["codec", "io-util"] }
 futures = "0.3"
 base64 = "0.13"
 log = "0.4"
 simple_logger = "2.1.0"
 async_zip = "0.0.7"
 async-walkdir = "0.2.0"
 headers = "0.3.7"
 mime_guess = "2.0.4"
 get_if_addrs = "0.5.3"
 rustls = { version = "0.20", default-features = false, features = ["tls12"] }
 rustls-pemfile = "1"
 md5 = "0.7.0"
 lazy_static = "1.4.0"
 uuid = { version = "1.1.1", features = ["v4", "fast-rng"] }
 urlencoding = "2.1.0"
 xml-rs = "0.8"
 env_logger = { version = "0.9.0", default-features = false, features = ["humantime"] }
 log = "0.4.17"
 [profile.release]
 lto = true
--- a/10
+++ b/10
@@ -0,0 +1,10 @@
 FROM rust:1.61 as builder
 RUN rustup target add x86_64-unknown-linux-musl
 RUN apt-get update && apt-get install --no-install-recommends -y musl-tools
 WORKDIR /app
 COPY . .
 RUN cargo build --target x86_64-unknown-linux-musl --release
 FROM scratch
 COPY --from=builder /app/target/x86_64-unknown-linux-musl/release/duf /bin/
 ENTRYPOINT ["/bin/duf"]
--- a/README.md
+++ b/README.md
@@ -3,19 +3,20 @@
 [![CI](https://github.com/sigoden/duf/actions/workflows/ci.yaml/badge.svg)](https://github.com/sigoden/duf/actions/workflows/ci.yaml)
 [![Crates](https://img.shields.io/crates/v/duf.svg)](https://crates.io/crates/duf)
-Duf is a simple file server.
+Duf is a simple file server. Support static serve, search, upload, webdav...
-![demo](https://user-images.githubusercontent.com/4012553/170853369-dfcdc4c7-4864-4401-bf49-6e41ffe05df3.png)
+![demo](https://user-images.githubusercontent.com/4012553/171526189-09afc2de-793f-4216-b3d5-31ea408d3610.png)
 ## Features
 - Serve static files
 - Download folder as zip file
 - Upload files and folders (Drag & Drop)
 - Search files
- Upload files
+- Partial responses (Parallel/Resume download)
- Delete files
+- Authentication
- Basic authentication
+- Support https
- Unzip zip file when upload
+- Support webdav
 - Easy to use with curl
 ## Install
@@ -26,11 +27,47 @@ Duf is a simple file server.
 cargo install duf
 ```
 ### With docker
 ```
 docker run -v /tmp:/tmp -p 5000:5000 --rm -it docker.io/sigoden/duf /tmp
 ```
 ### Binaries on macOS, Linux, Windows
 Download from [Github Releases](https://github.com/sigoden/duf/releases), unzip and add duf to your $PATH.
-## Usage
+## CLI
 ```
 Duf is a simple file server.
 USAGE:
    duf [OPTIONS] [path]
 ARGS:
    <path>    Path to a root directory for serving files [default: .]
 OPTIONS:
    -a, --auth <user:pass>      Use HTTP authentication
        --no-auth-access        Not required auth when access static files
    -A, --allow-all             Allow all operations
        --allow-delete          Allow delete files/folders
        --allow-symlink         Allow symlink to files/folders outside root directory
        --allow-upload          Allow upload files/folders
    -b, --bind <address>        Specify bind address [default: 0.0.0.0]
        --cors                  Enable CORS, sets `Access-Control-Allow-Origin: *`
    -h, --help                  Print help information
    -p, --port <port>           Specify port to listen on [default: 5000]
        --path-prefix <path>    Specify an url path prefix
        --render-index          Render index.html when requesting a directory
        --render-spa            Render for single-page application
        --tls-cert <path>       Path to an SSL/TLS certificate to serve with HTTPS
        --tls-key <path>        Path to the SSL/TLS certificate's private key
    -V, --version               Print version information
 ```
 ## Examples
 You can run this command to start serving your current working directory on 127.0.0.1:5000 by default.
@@ -44,20 +81,35 @@ duf
 duf folder_name
 ```
-Only serve static files, disable editing operations such as update or delete
+Allow all operations such as upload, delete
-```
+
-duf --readonly
+```sh
 duf --allow-all
 ```
-Finally, run this command to see a list of all available option
+Only allow upload operation
-### Curl
+```
 duf --allow-upload
 ```
 Serve a single page application (SPA)
 ```
 duf --render-spa
 ```
 Use https
 ```
 duf --tls-cert my.crt --tls-key my.key
 ```
 ## API
 Download a file
 ```
 curl http://127.0.0.1:5000/some-file
 curl -o some-file2 http://127.0.0.1:5000/some-file
 ```
 Download a folder as zip file
@@ -72,12 +124,6 @@ Upload a file
 curl --upload-file some-file http://127.0.0.1:5000/some-file
 ```
 Unzip zip file when unload
 ```
 curl --upload-file some-folder.zip http://127.0.0.1:5000/some-folder.zip?unzip
 ```
 Delete a file/folder
 ```
--- a/assets/favicon.ico
+++ b/assets/favicon.ico
--- a/src/assets/index.css
+++ b/src/assets/index.css
@@ -97,38 +97,51 @@ body {
  padding: 0 1em;
 }
-.main th {
+.empty-folder {
  padding-top: 1rem;
  font-style: italic;
 }
 .uploaders-table th,
 .paths-table th {
  text-align: left;
  font-weight: unset;
  color: #5c5c5c;
  white-space: nowrap;
 }
-.main td {
+.uploaders-table td,
 .paths-table td {
  white-space: nowrap;
 }
-.main .cell-name {
+.uploaders-table .cell-name,
-  width: 400px;
+.paths-table .cell-name {
  width: 500px;
 }
-.main .cell-mtime {
+.uploaders-table .cell-status {
  width: 80px;
  padding-left: 0.6em;
 }
 .paths-table .cell-actions {
  width: 60px;
  display: flex;
  padding-left: 0.6em;
 }
 .paths-table .cell-mtime {
  width: 120px;
  padding-left: 0.6em;
 }
-.main .cell-size {
+.paths-table .cell-size {
  text-align: right;
  width: 70px;
  padding-left: 0.6em;
 }
 .main .cell-actions {
  width: 60px;
  display: flex;
  padding-left: 0.6em;
 }
 .path svg {
  height: 100%;
@@ -158,12 +171,46 @@ body {
  padding-left: 0.4em;
 }
-.uploaders {
+.uploaders-table {
  display: flex;
  flex-wrap: wrap;
  padding: 0.5em 0;
 }
 .uploader {
  padding-right: 1em;
 }
 /* dark theme */
@media (prefers-color-scheme: dark) {
  body {
    background-color: #000;
  }
  html,
  .breadcrumb>b,
  .searchbar #search {
    color: #fff;
  }
  .uploaders-table th,
  .paths-table th {
    color: #ddd;
  }
  svg,
  .path svg {
    fill: #d0e6ff;
  }
  .searchbar {
    background-color: #111;
    border-color: #fff6;
  }
  .searchbar svg {
    fill: #fff6;
  }
  .path a {
    color: #3191ff;
  }
 } 
--- a/src/assets/index.html
+++ b/src/assets/index.html
@@ -4,7 +4,7 @@
 <head>
  <meta charset="utf-8" />
  <meta name="viewport" content="width=device-width" />
-  __SLOB__
+  __SLOT__
 </head>
 <body>
  <div class="head">
@@ -15,7 +15,7 @@
          <svg width="16" height="16" viewBox="0 0 16 16"><path d="M.5 9.9a.5.5 0 0 1 .5.5v2.5a1 1 0 0 0 1 1h12a1 1 0 0 0 1-1v-2.5a.5.5 0 0 1 1 0v2.5a2 2 0 0 1-2 2H2a2 2 0 0 1-2-2v-2.5a.5.5 0 0 1 .5-.5z"/><path d="M7.646 11.854a.5.5 0 0 0 .708 0l3-3a.5.5 0 0 0-.708-.708L8.5 10.293V1.5a.5.5 0 0 0-1 0v8.793L5.354 8.146a.5.5 0 1 0-.708.708l3 3z"/></svg>
        </a>
      </div>
-      <div class="upload-control hidden" title="Upload file">
+      <div class="upload-control hidden" title="Upload files">
        <label for="file">
          <svg width="16" height="16" viewBox="0 0 16 16"><path d="M.5 9.9a.5.5 0 0 1 .5.5v2.5a1 1 0 0 0 1 1h12a1 1 0 0 0 1-1v-2.5a.5.5 0 0 1 1 0v2.5a2 2 0 0 1-2 2H2a2 2 0 0 1-2-2v-2.5a.5.5 0 0 1 .5-.5z"/><path d="M7.646 1.146a.5.5 0 0 1 .708 0l3 3a.5.5 0 0 1-.708.708L8.5 2.707V11.5a.5.5 0 0 1-1 0V2.707L5.354 4.854a.5.5 0 1 1-.708-.708l3-3z"/></svg>
        </label>
@@ -31,9 +31,16 @@
    </form>
  </div>
  <div class="main">
-    <div class="uploaders">
+    <div class="empty-folder hidden"></div>
-    </div>
+    <table class="uploaders-table hidden">
-    <table>
+      <thead>
        <tr>
          <th class="cell-name">Name</th>
          <th class="cell-status">Status</th>
        </tr>
      </thead>
    </table>
    <table class="paths-table hidden">
      <thead>
        <tr>
          <th class="cell-name">Name</th>
--- a/assets/index.js
+++ b/assets/index.js
@@ -0,0 +1,328 @@
 /**
 * @typedef {object} PathItem
 * @property {"Dir"|"SymlinkDir"|"File"|"SymlinkFile"} path_type
 * @property {boolean} is_symlink
 * @property {string} name
 * @property {number} mtime
 * @property {number} size
 */
 // https://stackoverflow.com/a/901144/3642588
 const params = new Proxy(new URLSearchParams(window.location.search), {
  get: (searchParams, prop) => searchParams.get(prop),
 });
 const dirEmptyNote = params.q ? 'No results' : DATA.dir_exists ? 'Empty folder' : 'Folder will be created when a file is uploaded';
 /**
 * @type Element
 */
 let $pathsTable;
 /**
 * @type Element
 */
 let $pathsTableBody;
 /**
 * @type Element
 */
 let $uploadersTable;
 /**
 * @type Element
 */
 let $emptyFolder;
 /**
 * @type string
 */
 let baseDir;
 class Uploader {
  /**
   * @type number
   */
  idx;
  /**
   * @type File
   */
  file;
  /**
   * @type string
   */
  name;
  /**
   * @type Element
   */
  $uploadStatus;
  static globalIdx = 0;
  constructor(file, dirs) {
    this.name = [...dirs, file.name].join("/");
    this.idx = Uploader.globalIdx++;
    this.file = file;
  }
  upload() {
    const { file, idx, name } = this;
    let url = getUrl(name);
    $uploadersTable.insertAdjacentHTML("beforeend", `
  <tr id="upload${idx}" class="uploader">
    <td class="path cell-name">
      <div>${getSvg("File")}</div>
      <a href="${url}">${name}</a>
    </td>
    <td class="cell-status" id="uploadStatus${idx}"></td>
  </tr>`);
    $uploadersTable.classList.remove("hidden");
    $emptyFolder.classList.add("hidden");
    this.$uploadStatus = document.getElementById(`uploadStatus${idx}`);
    const ajax = new XMLHttpRequest();
    ajax.upload.addEventListener("progress", e => this.progress(e), false);
    ajax.addEventListener("readystatechange", () => {
      if(ajax.readyState === 4) {
        if (ajax.status >= 200 && ajax.status < 300) {
          this.complete();
        } else {
          this.fail();
        }
      }
    })
    ajax.addEventListener("error", () => this.fail(), false);
    ajax.addEventListener("abort", () => this.fail(), false);
    ajax.open("PUT", url);
    ajax.send(file);
  }
  progress(event) {
    const percent = (event.loaded / event.total) * 100;
    this.$uploadStatus.innerHTML = `${percent.toFixed(2)}%`;
  }
  complete() {
    this.$uploadStatus.innerHTML = `✓`;
  }
  fail() {
    this.$uploadStatus.innerHTML = `✗`;
  }
 }
 /**
 * Add breadcrumb
 * @param {string} value 
 */
 function addBreadcrumb(value) {
  const $breadcrumb = document.querySelector(".breadcrumb");
  const parts = value.split("/").filter(v => !!v);
  const len = parts.length;
  let path = "";
  for (let i = 0; i < len; i++) {
    const name = parts[i];
    if (i > 0) {
      path  += "/" + name;
    }
    if (i === len - 1) {
      $breadcrumb.insertAdjacentHTML("beforeend", `<b>${name}</b>`);
      baseDir = name;
    } else if (i === 0) {
      $breadcrumb.insertAdjacentHTML("beforeend", `<a href="/"><b>${name}</b></a>`);
    } else {
      $breadcrumb.insertAdjacentHTML("beforeend", `<a href="${encodeURI(path)}">${name}</a>`);
    }
    $breadcrumb.insertAdjacentHTML("beforeend", `<span class="separator">/</span>`);
  }
 }
 /**
 * Add pathitem
 * @param {PathItem} file 
 * @param {number} index 
 */
 function addPath(file, index) {
  const url = getUrl(file.name)
  let actionDelete = "";
  let actionDownload = "";
  if (file.path_type.endsWith("Dir")) {
    actionDownload = `
    <div class="action-btn">
      <a href="${url}?zip" title="Download folder as a .zip file">
        <svg width="16" height="16" viewBox="0 0 16 16"><path d="M.5 9.9a.5.5 0 0 1 .5.5v2.5a1 1 0 0 0 1 1h12a1 1 0 0 0 1-1v-2.5a.5.5 0 0 1 1 0v2.5a2 2 0 0 1-2 2H2a2 2 0 0 1-2-2v-2.5a.5.5 0 0 1 .5-.5z"/><path d="M7.646 11.854a.5.5 0 0 0 .708 0l3-3a.5.5 0 0 0-.708-.708L8.5 10.293V1.5a.5.5 0 0 0-1 0v8.793L5.354 8.146a.5.5 0 1 0-.708.708l3 3z"/></svg>
      </a>
    </div>`;
  } else {
    actionDownload = `
    <div class="action-btn" >
      <a href="${url}" title="Download file" download>
        <svg width="16" height="16" viewBox="0 0 16 16"><path d="M.5 9.9a.5.5 0 0 1 .5.5v2.5a1 1 0 0 0 1 1h12a1 1 0 0 0 1-1v-2.5a.5.5 0 0 1 1 0v2.5a2 2 0 0 1-2 2H2a2 2 0 0 1-2-2v-2.5a.5.5 0 0 1 .5-.5z"/><path d="M7.646 11.854a.5.5 0 0 0 .708 0l3-3a.5.5 0 0 0-.708-.708L8.5 10.293V1.5a.5.5 0 0 0-1 0v8.793L5.354 8.146a.5.5 0 1 0-.708.708l3 3z"/></svg>
      </a>
    </div>`;
  }
  if (DATA.allow_delete) {
    actionDelete = `
    <div onclick="deletePath(${index})" class="action-btn" id="deleteBtn${index}" title="Delete ${file.name}">
      <svg width="16" height="16" fill="currentColor"viewBox="0 0 16 16"><path d="M6.854 7.146a.5.5 0 1 0-.708.708L7.293 9l-1.147 1.146a.5.5 0 0 0 .708.708L8 9.707l1.146 1.147a.5.5 0 0 0 .708-.708L8.707 9l1.147-1.146a.5.5 0 0 0-.708-.708L8 8.293 6.854 7.146z"/><path d="M14 14V4.5L9.5 0H4a2 2 0 0 0-2 2v12a2 2 0 0 0 2 2h8a2 2 0 0 0 2-2zM9.5 3A1.5 1.5 0 0 0 11 4.5h2V14a1 1 0 0 1-1 1H4a1 1 0 0 1-1-1V2a1 1 0 0 1 1-1h5.5v2z"/></svg>
    </div>`;
  }
  let actionCell = `
  <td class="cell-actions">
    ${actionDownload}
    ${actionDelete}
  </td>`
  $pathsTableBody.insertAdjacentHTML("beforeend", `
 <tr id="addPath${index}">
  <td class="path cell-name">
    <div>${getSvg(file.path_type)}</div>
    <a href="${url}" title="${file.name}">${file.name}</a>
  </td>
  <td class="cell-mtime">${formatMtime(file.mtime)}</td>
  <td class="cell-size">${formatSize(file.size)}</td>
  ${actionCell}
 </tr>`)
 }
 /**
 * Delete pathitem
 * @param {number} index 
 * @returns 
 */
 async function deletePath(index) {
  const file = DATA.paths[index];
  if (!file) return;
  if (!confirm(`Delete \`${file.name}\`?`)) return;
  try {
    const res = await fetch(getUrl(file.name), {
      method: "DELETE",
    });
    if (res.status >= 200 && res.status < 300) {
        document.getElementById(`addPath${index}`).remove();
        DATA.paths[index] = null;
        if (!DATA.paths.find(v => !!v)) {
          $pathsTable.classList.add("hidden");
          $emptyFolder.textContent = dirEmptyNote;
          $emptyFolder.classList.remove("hidden");
        }
    } else {
      throw new Error(await res.text())
    }
  } catch (err) {
    alert(`Cannot delete \`${file.name}\`, ${err.message}`);
  }
 }
 function dropzone() {
    ["drag", "dragstart", "dragend", "dragover", "dragenter", "dragleave", "drop"].forEach(name => {
      document.addEventListener(name, e => {
          e.preventDefault();
          e.stopPropagation();
      });
    });
    document.addEventListener("drop", e => {
      if (!e.dataTransfer.items[0].webkitGetAsEntry) {
        const files = e.dataTransfer.files.filter(v => v.size > 0);
        for (const file of files) {
          new Uploader(file, []).upload();
        }
      } else {
        const entries = [];
        const len = e.dataTransfer.items.length;
        for (let i = 0; i < len; i++) {
          entries.push(e.dataTransfer.items[i].webkitGetAsEntry());
        }
        addFileEntries(entries, [])
      }
    });
 }
 async function addFileEntries(entries, dirs) {
  for (const entry of entries) {
    if (entry.isFile) {
      entry.file(file => {
        new Uploader(file, dirs).upload();
      });
    } else if (entry.isDirectory) {
      const dirReader = entry.createReader()
      dirReader.readEntries(entries => addFileEntries(entries, [...dirs, entry.name]));
    }
  }
 }
 function getUrl(name) {
    let url = location.href.split('?')[0];
    if (!url.endsWith("/")) url += "/";
    url += encodeURI(name);
    return url;
 }
 function getSvg(path_type) {
  switch (path_type) {
    case "Dir":
      return `<svg height="16" viewBox="0 0 14 16" width="14"><path fill-rule="evenodd" d="M13 4H7V3c0-.66-.31-1-1-1H1c-.55 0-1 .45-1 1v10c0 .55.45 1 1 1h12c.55 0 1-.45 1-1V5c0-.55-.45-1-1-1zM6 4H1V3h5v1z"></path></svg>`;
    case "File":
      return `<svg height="16" viewBox="0 0 12 16" width="12"><path fill-rule="evenodd" d="M6 5H2V4h4v1zM2 8h7V7H2v1zm0 2h7V9H2v1zm0 2h7v-1H2v1zm10-7.5V14c0 .55-.45 1-1 1H1c-.55 0-1-.45-1-1V2c0-.55.45-1 1-1h7.5L12 4.5zM11 5L8 2H1v12h10V5z"></path></svg>`;
    case "SymlinkDir":
      return `<svg height="16" viewBox="0 0 14 16" width="14"><path fill-rule="evenodd" d="M13 4H7V3c0-.66-.31-1-1-1H1c-.55 0-1 .45-1 1v10c0 .55.45 1 1 1h12c.55 0 1-.45 1-1V5c0-.55-.45-1-1-1zM1 3h5v1H1V3zm6 9v-2c-.98-.02-1.84.22-2.55.7-.71.48-1.19 1.25-1.45 2.3.02-1.64.39-2.88 1.13-3.73C4.86 8.43 5.82 8 7.01 8V6l4 3-4 3H7z"></path></svg>`;
    default:
      return `<svg height="16" viewBox="0 0 12 16" width="12"><path fill-rule="evenodd" d="M8.5 1H1c-.55 0-1 .45-1 1v12c0 .55.45 1 1 1h10c.55 0 1-.45 1-1V4.5L8.5 1zM11 14H1V2h7l3 3v9zM6 4.5l4 3-4 3v-2c-.98-.02-1.84.22-2.55.7-.71.48-1.19 1.25-1.45 2.3.02-1.64.39-2.88 1.13-3.73.73-.84 1.69-1.27 2.88-1.27v-2H6z"></path></svg>`;
  }
 }
 function formatMtime(mtime) {
  if (!mtime) return ""
  const date = new Date(mtime);
  const year = date.getFullYear();
  const month = padZero(date.getMonth() + 1, 2);
  const day = padZero(date.getDate(), 2);
  const hours = padZero(date.getHours(), 2);
  const minutes = padZero(date.getMinutes(), 2);
  return `${year}/${month}/${day} ${hours}:${minutes}`;
 }
 function padZero(value, size) {
  return ("0".repeat(size) + value).slice(-1 * size)
 }
 function formatSize(size) {
  if (!size) return ""
  const sizes = ['B', 'KB', 'MB', 'GB', 'TB'];
  if (size == 0) return '0 Byte';
  const i = parseInt(Math.floor(Math.log(size) / Math.log(1024)));
  return Math.round(size / Math.pow(1024, i), 2) + ' ' + sizes[i];
 }
 function ready() {
  $pathsTable = document.querySelector(".paths-table")
  $pathsTableBody = document.querySelector(".paths-table tbody");
  $uploadersTable = document.querySelector(".uploaders-table");
  $emptyFolder = document.querySelector(".empty-folder");
  if (params.q) {
    document.getElementById('search').value = params.q;
  }
  addBreadcrumb(DATA.breadcrumb);
  if (Array.isArray(DATA.paths)) {
    const len = DATA.paths.length;
    if (len > 0) {
      $pathsTable.classList.remove("hidden");
    }
    for (let i = 0; i < len; i++) {
      addPath(DATA.paths[i], i);
    }
    if (len == 0) {
      $emptyFolder.textContent = dirEmptyNote;
      $emptyFolder.classList.remove("hidden");
    }
  }
  if (DATA.allow_upload) {
    dropzone();
    document.querySelector(".upload-control").classList.remove("hidden");
    document.getElementById("file").addEventListener("change", e => {
      const files = e.target.files;
      for (let file of files) {
        new Uploader(file, []).upload();
      }
    });
  }
 }
--- a/src/args.rs
+++ b/src/args.rs
@@ -1,10 +1,11 @@
 use clap::crate_description;
 use clap::{Arg, ArgMatches};
-use std::env;
+use rustls::{Certificate, PrivateKey};
-use std::fs::canonicalize;
+use std::net::{IpAddr, SocketAddr};
 use std::net::SocketAddr;
 use std::path::{Path, PathBuf};
 use std::{env, fs, io};
 use crate::auth::parse_auth;
 use crate::BoxResult;
 const ABOUT: &str = concat!("\n", crate_description!()); // Add extra newline.
@@ -16,7 +17,7 @@ fn app() -> clap::Command<'static> {
            Arg::new("address")
                .short('b')
                .long("bind")
-                .default_value("127.0.0.1")
+                .default_value("0.0.0.0")
                .help("Specify bind address")
                .value_name("address"),
        )
@@ -32,31 +33,76 @@ fn app() -> clap::Command<'static> {
            Arg::new("path")
                .default_value(".")
                .allow_invalid_utf8(true)
-                .help("Path to a directory for serving files"),
+                .help("Path to a root directory for serving files"),
        )
        .arg(
-            Arg::new("readonly")
+            Arg::new("path-prefix")
-                .short('r')
+                .long("path-prefix")
-                .long("readonly")
+                .value_name("path")
-                .help("Disable change operations such as update or delete"),
+                .help("Specify an url path prefix"),
        )
        .arg(
            Arg::new("allow-all")
                .short('A')
                .long("allow-all")
                .help("Allow all operations"),
        )
        .arg(
            Arg::new("allow-upload")
                .long("allow-upload")
                .help("Allow upload files/folders"),
        )
        .arg(
            Arg::new("allow-delete")
                .long("allow-delete")
                .help("Allow delete files/folders"),
        )
        .arg(
            Arg::new("allow-symlink")
                .long("allow-symlink")
                .help("Allow symlink to files/folders outside root directory"),
        )
        .arg(
            Arg::new("render-index")
                .long("render-index")
                .help("Render index.html when requesting a directory"),
        )
        .arg(
            Arg::new("render-spa")
                .long("render-spa")
                .help("Render for single-page application"),
        )
        .arg(
            Arg::new("auth")
                .short('a')
                .display_order(1)
                .long("auth")
-                .help("Use HTTP authentication for all operations")
+                .help("Use HTTP authentication")
                .value_name("user:pass"),
        )
        .arg(
-            Arg::new("no-auth-read")
+            Arg::new("no-auth-access")
-                .long("no-auth-read")
+                .display_order(1)
-                .help("Do not authenticate read operations like static serving"),
+                .long("no-auth-access")
                .help("Not required auth when access static files"),
        )
        .arg(
            Arg::new("cors")
                .long("cors")
                .help("Enable CORS, sets `Access-Control-Allow-Origin: *`"),
        )
        .arg(
            Arg::new("tls-cert")
                .long("tls-cert")
                .value_name("path")
                .help("Path to an SSL/TLS certificate to serve with HTTPS"),
        )
        .arg(
            Arg::new("tls-key")
                .long("tls-key")
                .value_name("path")
                .help("Path to the SSL/TLS certificate's private key"),
        )
 }
 pub fn matches() -> ArgMatches {
@@ -65,13 +111,19 @@ pub fn matches() -> ArgMatches {
 #[derive(Debug, Clone, Eq, PartialEq)]
 pub struct Args {
-    pub address: String,
+    pub addr: SocketAddr,
    pub port: u16,
    pub path: PathBuf,
-    pub readonly: bool,
+    pub path_prefix: String,
-    pub auth: Option<String>,
+    pub uri_prefix: String,
-    pub no_auth_read: bool,
+    pub auth: Option<(String, String)>,
    pub no_auth_access: bool,
    pub allow_upload: bool,
    pub allow_delete: bool,
    pub allow_symlink: bool,
    pub render_index: bool,
    pub render_spa: bool,
    pub cors: bool,
    pub tls: Option<(Vec<Certificate>, PrivateKey)>,
 }
 impl Args {
@@ -80,23 +132,53 @@ impl Args {
    /// If a parsing error ocurred, exit the process and print out informative
    /// error message to user.
    pub fn parse(matches: ArgMatches) -> BoxResult<Args> {
-        let address = matches.value_of("address").unwrap_or_default().to_owned();
+        let ip = matches.value_of("address").unwrap_or_default();
        let port = matches.value_of_t::<u16>("port")?;
-        let path = matches.value_of_os("path").unwrap_or_default();
+        let addr = to_addr(ip, port)?;
-        let path = Args::parse_path(path)?;
+        let path = Args::parse_path(matches.value_of_os("path").unwrap_or_default())?;
-        let readonly = matches.is_present("readonly");
+        let path_prefix = matches
            .value_of("path-prefix")
            .map(|v| v.trim_matches('/').to_owned())
            .unwrap_or_default();
        let uri_prefix = if path_prefix.is_empty() {
            "/".to_owned()
        } else {
            format!("/{}/", &path_prefix)
        };
        let cors = matches.is_present("cors");
-        let auth = matches.value_of("auth").map(|v| v.to_owned());
+        let auth = match matches.value_of("auth") {
-        let no_auth_read = matches.is_present("no-auth-read");
+            Some(auth) => Some(parse_auth(auth)?),
            None => None,
        };
        let no_auth_access = matches.is_present("no-auth-access");
        let allow_upload = matches.is_present("allow-all") || matches.is_present("allow-upload");
        let allow_delete = matches.is_present("allow-all") || matches.is_present("allow-delete");
        let allow_symlink = matches.is_present("allow-all") || matches.is_present("allow-symlink");
        let render_index = matches.is_present("render-index");
        let render_spa = matches.is_present("render-spa");
        let tls = match (matches.value_of("tls-cert"), matches.value_of("tls-key")) {
            (Some(certs_file), Some(key_file)) => {
                let certs = load_certs(certs_file)?;
                let key = load_private_key(key_file)?;
                Some((certs, key))
            }
            _ => None,
        };
        Ok(Args {
-            address,
+            addr,
            port,
            path,
-            readonly,
+            path_prefix,
            uri_prefix,
            auth,
-            no_auth_read,
+            no_auth_access,
            cors,
            allow_delete,
            allow_upload,
            allow_symlink,
            render_index,
            render_spa,
            tls,
        })
    }
@@ -104,34 +186,51 @@ impl Args {
    fn parse_path<P: AsRef<Path>>(path: P) -> BoxResult<PathBuf> {
        let path = path.as_ref();
        if !path.exists() {
-            bail!("error: path \"{}\" doesn't exist", path.display());
+            return Err(format!("Path `{}` doesn't exist", path.display()).into());
        }
        env::current_dir()
            .and_then(|mut p| {
                p.push(path); // If path is absolute, it replaces the current path.
-                canonicalize(p)
+                std::fs::canonicalize(p)
            })
            .or_else(|err| {
                bail!(
                    "error: failed to access path \"{}\": {}",
                    path.display(),
                    err,
                )
            })
    }
    /// Construct socket address from arguments.
    pub fn address(&self) -> BoxResult<SocketAddr> {
        format!("{}:{}", self.address, self.port)
            .parse()
            .or_else(|err| {
                bail!(
                    "error: invalid address {}:{} : {}",
                    self.address,
                    self.port,
                    err,
                )
            })
            .map_err(|err| format!("Failed to access path `{}`: {}", path.display(), err,).into())
    }
 }
 fn to_addr(ip: &str, port: u16) -> BoxResult<SocketAddr> {
    let ip: IpAddr = ip.parse()?;
    Ok(SocketAddr::new(ip, port))
 }
 // Load public certificate from file.
 fn load_certs(filename: &str) -> BoxResult<Vec<Certificate>> {
    // Open certificate file.
    let certfile =
        fs::File::open(&filename).map_err(|e| format!("Failed to open {}: {}", &filename, e))?;
    let mut reader = io::BufReader::new(certfile);
    // Load and return certificate.
    let certs = rustls_pemfile::certs(&mut reader).map_err(|_| "Failed to load certificate")?;
    if certs.is_empty() {
        return Err("Expected at least one certificate".into());
    }
    Ok(certs.into_iter().map(Certificate).collect())
 }
 // Load private key from file.
 fn load_private_key(filename: &str) -> BoxResult<PrivateKey> {
    // Open keyfile.
    let keyfile =
        fs::File::open(&filename).map_err(|e| format!("Failed to open {}: {}", &filename, e))?;
    let mut reader = io::BufReader::new(keyfile);
    // Load and return a single private key.
    let keys = rustls_pemfile::rsa_private_keys(&mut reader)
        .map_err(|e| format!("There was a problem with reading private key: {:?}", e))?;
    if keys.len() != 1 {
        return Err("Expected a single private key".into());
    }
    Ok(PrivateKey(keys[0].to_owned()))
 }
--- a/src/assets/index.js
+++ b/src/assets/index.js
@@ -1,191 +0,0 @@
 var $toolbox, $tbody, $breadcrumb, $uploaders, $uploadControl;
 var uploaderIdx = 0;
 var baseDir;
 class Uploader {
  idx = 0;
  file;
  $elem;
  constructor(idx, file) {
    this.idx = idx;
    this.file = file;
  }
  upload() {
    var { file, idx } = this;
    var url = getUrl(file.name);
    if (file.name == baseDir + ".zip") {
      url += "?unzip";
    }
    $uploaders.insertAdjacentHTML("beforeend", `
  <div class="uploader path">
    <div><svg height="16" viewBox="0 0 12 16" width="12"><path fill-rule="evenodd" d="M6 5H2V4h4v1zM2 8h7V7H2v1zm0 2h7V9H2v1zm0 2h7v-1H2v1zm10-7.5V14c0 .55-.45 1-1 1H1c-.55 0-1-.45-1-1V2c0-.55.45-1 1-1h7.5L12 4.5zM11 5L8 2H1v12h10V5z"></path></svg></div>
    <a href="${url}" id="file${idx}">${file.name} (0%)</a>
  </div>`);
    this.$elem = document.getElementById(`file${idx}`);
    var ajax = new XMLHttpRequest();
    ajax.upload.addEventListener("progress", e => this.progress(e), false);
    ajax.addEventListener("load", e => this.complete(e), false);
    ajax.addEventListener("error", e => this.fail(e), false);
    ajax.addEventListener("abort", e => this.fail(e), false);
    ajax.open("PUT", url);
    ajax.send(file);
  }
  progress(event) {
    var percent = (event.loaded / event.total) * 100;
    this.$elem.innerHTML = `${this.file.name} (${percent.toFixed(2)}%)`;
  }
  complete(event) {
    this.$elem.innerHTML = `${this.file.name}`;
  }
  fail(event) {
    this.$elem.innerHTML = `<strike>${this.file.name}</strike>`;
  }
 }
 function addBreadcrumb(value) {
  var parts = value.split("/").filter(v => !!v);
  var len = parts.length;
  var path = "";
  for (var i = 0; i < len; i++) {
    var name = parts[i];
    if (i > 0) {
      path  += "/" + name;
    }
    if (i === len - 1) {
      $breadcrumb.insertAdjacentHTML("beforeend", `<b>${name}</b>`);
      baseDir = name;
    } else if (i === 0) {
      $breadcrumb.insertAdjacentHTML("beforeend", `<a href="/"><b>${name}</b></a>`);
    } else {
      $breadcrumb.insertAdjacentHTML("beforeend", `<a href="${encodeURI(path)}">${name}</a>`);
    }
    $breadcrumb.insertAdjacentHTML("beforeend", `<span class="separator">/</span>`);
  }
 }
 function addPath(file, index) {
  var url = getUrl(file.name)
  var actionDelete = "";
  var actionDownload = "";
  if (file.path_type.endsWith("Dir")) {
    actionDownload = `
    <div class="action-btn">
      <a href="${url}?zip" title="Download folder as a .zip file">
        <svg width="16" height="16" viewBox="0 0 16 16"><path d="M.5 9.9a.5.5 0 0 1 .5.5v2.5a1 1 0 0 0 1 1h12a1 1 0 0 0 1-1v-2.5a.5.5 0 0 1 1 0v2.5a2 2 0 0 1-2 2H2a2 2 0 0 1-2-2v-2.5a.5.5 0 0 1 .5-.5z"/><path d="M7.646 11.854a.5.5 0 0 0 .708 0l3-3a.5.5 0 0 0-.708-.708L8.5 10.293V1.5a.5.5 0 0 0-1 0v8.793L5.354 8.146a.5.5 0 1 0-.708.708l3 3z"/></svg>
      </a>
    </div>`;
  } else {
    actionDownload = `
    <div class="action-btn" >
      <a href="${url}" title="Download file" download>
        <svg width="16" height="16" viewBox="0 0 16 16"><path d="M.5 9.9a.5.5 0 0 1 .5.5v2.5a1 1 0 0 0 1 1h12a1 1 0 0 0 1-1v-2.5a.5.5 0 0 1 1 0v2.5a2 2 0 0 1-2 2H2a2 2 0 0 1-2-2v-2.5a.5.5 0 0 1 .5-.5z"/><path d="M7.646 11.854a.5.5 0 0 0 .708 0l3-3a.5.5 0 0 0-.708-.708L8.5 10.293V1.5a.5.5 0 0 0-1 0v8.793L5.354 8.146a.5.5 0 1 0-.708.708l3 3z"/></svg>
      </a>
    </div>`;
  }
  if (!DATA.readonly) {
    actionDelete = `
    <div onclick="deletePath(${index})" class="action-btn" id="deleteBtn${index}" title="Delete ${file.name}">
      <svg width="16" height="16" fill="currentColor"viewBox="0 0 16 16"><path d="M6.854 7.146a.5.5 0 1 0-.708.708L7.293 9l-1.147 1.146a.5.5 0 0 0 .708.708L8 9.707l1.146 1.147a.5.5 0 0 0 .708-.708L8.707 9l1.147-1.146a.5.5 0 0 0-.708-.708L8 8.293 6.854 7.146z"/><path d="M14 14V4.5L9.5 0H4a2 2 0 0 0-2 2v12a2 2 0 0 0 2 2h8a2 2 0 0 0 2-2zM9.5 3A1.5 1.5 0 0 0 11 4.5h2V14a1 1 0 0 1-1 1H4a1 1 0 0 1-1-1V2a1 1 0 0 1 1-1h5.5v2z"/></svg>
    </div>`;
  }
  var actionCell = `
  <td class="cell-actions">
    ${actionDownload}
    ${actionDelete}
  </td>`
  $tbody.insertAdjacentHTML("beforeend", `
 <tr id="addPath${index}">
 <td class="path cell-name">
  <div>${getSvg(file.path_type)}</div>
  <a href="${url}" title="${file.name}">${file.name}</a>
 </td>
 <td class="cell-mtime">${formatMtime(file.mtime)}</td>
 <td class="cell-size">${formatSize(file.size)}</td>
 ${actionCell}
 </tr>`)
 }
 async function deletePath(index) {
  var file = DATA.paths[index];
  if (!file) return;
  var ajax = new XMLHttpRequest();
  ajax.open("DELETE", getUrl(file.name));
  ajax.addEventListener("readystatechange", function() {
    if(ajax.readyState === 4 && ajax.status === 200) {
        document.getElementById(`addPath${index}`).remove();
    }
  });
  ajax.send();
 }
 function getUrl(name) {
    var url = location.href.split('?')[0];
    if (!url.endsWith("/")) url += "/";
    url += encodeURI(name);
    return url;
 }
 function getSvg(path_type) {
  switch (path_type) {
    case "Dir":
      return `<svg height="16" viewBox="0 0 14 16" width="14"><path fill-rule="evenodd" d="M13 4H7V3c0-.66-.31-1-1-1H1c-.55 0-1 .45-1 1v10c0 .55.45 1 1 1h12c.55 0 1-.45 1-1V5c0-.55-.45-1-1-1zM6 4H1V3h5v1z"></path></svg>`;
    case "File":
      return `<svg height="16" viewBox="0 0 12 16" width="12"><path fill-rule="evenodd" d="M6 5H2V4h4v1zM2 8h7V7H2v1zm0 2h7V9H2v1zm0 2h7v-1H2v1zm10-7.5V14c0 .55-.45 1-1 1H1c-.55 0-1-.45-1-1V2c0-.55.45-1 1-1h7.5L12 4.5zM11 5L8 2H1v12h10V5z"></path></svg>`;
    case "SymlinkDir":
      return `<svg height="16" viewBox="0 0 14 16" width="14"><path fill-rule="evenodd" d="M13 4H7V3c0-.66-.31-1-1-1H1c-.55 0-1 .45-1 1v10c0 .55.45 1 1 1h12c.55 0 1-.45 1-1V5c0-.55-.45-1-1-1zM1 3h5v1H1V3zm6 9v-2c-.98-.02-1.84.22-2.55.7-.71.48-1.19 1.25-1.45 2.3.02-1.64.39-2.88 1.13-3.73C4.86 8.43 5.82 8 7.01 8V6l4 3-4 3H7z"></path></svg>`;
    default:
      return `<svg height="16" viewBox="0 0 12 16" width="12"><path fill-rule="evenodd" d="M8.5 1H1c-.55 0-1 .45-1 1v12c0 .55.45 1 1 1h10c.55 0 1-.45 1-1V4.5L8.5 1zM11 14H1V2h7l3 3v9zM6 4.5l4 3-4 3v-2c-.98-.02-1.84.22-2.55.7-.71.48-1.19 1.25-1.45 2.3.02-1.64.39-2.88 1.13-3.73.73-.84 1.69-1.27 2.88-1.27v-2H6z"></path></svg>`;
  }
 }
 function formatMtime(mtime) {
  if (!mtime) return ""
  var date = new Date(mtime);
  var year = date.getFullYear();
  var month = padZero(date.getMonth() + 1, 2);
  var day = padZero(date.getDate(), 2);
  var hours = padZero(date.getHours(), 2);
  var minutes = padZero(date.getMinutes(), 2);
  return `${year}/${month}/${day} ${hours}:${minutes}`;
 }
 function padZero(value, size) {
  return ("0".repeat(size) + value).slice(-1 * size)
 }
 function formatSize(size) {
  if (!size) return ""
  var sizes = ['B', 'KB', 'MB', 'GB', 'TB'];
  if (size == 0) return '0 Byte';
  var i = parseInt(Math.floor(Math.log(size) / Math.log(1024)));
  return Math.round(size / Math.pow(1024, i), 2) + ' ' + sizes[i];
 }
 function ready() {
  $toolbox = document.querySelector(".toolbox");
  $tbody = document.querySelector(".main tbody");
  $breadcrumb = document.querySelector(".breadcrumb");
  $uploaders = document.querySelector(".uploaders");
  addBreadcrumb(DATA.breadcrumb);
  DATA.paths.forEach((file, index) => addPath(file, index));
  if (!DATA.readonly) {
    document.querySelector(".upload-control").classList.remove(["hidden"]);
    document.getElementById("file").addEventListener("change", e => {
      var files = e.target.files;
      for (var file of files) {
        uploaderIdx += 1;
        var uploader = new Uploader(uploaderIdx, file);
        uploader.upload();
      }
    });
  }
 }
--- a/src/auth.rs
+++ b/src/auth.rs
@@ -0,0 +1,209 @@
 use headers::HeaderValue;
 use lazy_static::lazy_static;
 use md5::Context;
 use std::{
    collections::HashMap,
    time::{SystemTime, UNIX_EPOCH},
 };
 use uuid::Uuid;
 use crate::BoxResult;
 const REALM: &str = "DUF";
 lazy_static! {
    static ref NONCESTARTHASH: Context = {
        let mut h = Context::new();
        h.consume(Uuid::new_v4().as_bytes());
        h.consume(std::process::id().to_be_bytes());
        h
    };
 }
 pub fn generate_www_auth(stale: bool) -> String {
    let str_stale = if stale { "stale=true," } else { "" };
    format!(
        "Digest realm=\"{}\",nonce=\"{}\",{}qop=\"auth\",algorithm=\"MD5\"",
        REALM,
        create_nonce(),
        str_stale
    )
 }
 pub fn parse_auth(auth: &str) -> BoxResult<(String, String)> {
    let p: Vec<&str> = auth.trim().split(':').collect();
    let err = "Invalid auth value";
    if p.len() != 2 {
        return Err(err.into());
    }
    let user = p[0];
    let pass = p[1];
    let mut h = Context::new();
    h.consume(format!("{}:{}:{}", user, REALM, pass).as_bytes());
    Ok((user.to_owned(), format!("{:x}", h.compute())))
 }
 pub fn valid_digest(
    header_value: &HeaderValue,
    method: &str,
    auth_user: &str,
    auth_pass: &str,
 ) -> Option<()> {
    let digest_value = strip_prefix(header_value.as_bytes(), b"Digest ")?;
    let user_vals = to_headermap(digest_value).ok()?;
    if let (Some(username), Some(nonce), Some(user_response)) = (
        user_vals
            .get(b"username".as_ref())
            .and_then(|b| std::str::from_utf8(*b).ok()),
        user_vals.get(b"nonce".as_ref()),
        user_vals.get(b"response".as_ref()),
    ) {
        match validate_nonce(nonce) {
            Ok(true) => {}
            _ => return None,
        }
        if auth_user != username {
            return None;
        }
        let mut ha = Context::new();
        ha.consume(method);
        ha.consume(b":");
        if let Some(uri) = user_vals.get(b"uri".as_ref()) {
            ha.consume(uri);
        }
        let ha = format!("{:x}", ha.compute());
        let mut correct_response = None;
        if let Some(qop) = user_vals.get(b"qop".as_ref()) {
            if qop == &b"auth".as_ref() || qop == &b"auth-int".as_ref() {
                correct_response = Some({
                    let mut c = Context::new();
                    c.consume(&auth_pass);
                    c.consume(b":");
                    c.consume(nonce);
                    c.consume(b":");
                    if let Some(nc) = user_vals.get(b"nc".as_ref()) {
                        c.consume(nc);
                    }
                    c.consume(b":");
                    if let Some(cnonce) = user_vals.get(b"cnonce".as_ref()) {
                        c.consume(cnonce);
                    }
                    c.consume(b":");
                    c.consume(qop);
                    c.consume(b":");
                    c.consume(&*ha);
                    format!("{:x}", c.compute())
                });
            }
        }
        let correct_response = match correct_response {
            Some(r) => r,
            None => {
                let mut c = Context::new();
                c.consume(&auth_pass);
                c.consume(b":");
                c.consume(nonce);
                c.consume(b":");
                c.consume(&*ha);
                format!("{:x}", c.compute())
            }
        };
        if correct_response.as_bytes() == *user_response {
            // grant access
            return Some(());
        }
    }
    None
 }
 /// Check if a nonce is still valid.
 /// Return an error if it was never valid
 fn validate_nonce(nonce: &[u8]) -> Result<bool, ()> {
    if nonce.len() != 34 {
        return Err(());
    }
    //parse hex
    if let Ok(n) = std::str::from_utf8(nonce) {
        //get time
        if let Ok(secs_nonce) = u32::from_str_radix(&n[..8], 16) {
            //check time
            let now = SystemTime::now().duration_since(UNIX_EPOCH).unwrap();
            let secs_now = now.as_secs() as u32;
            if let Some(dur) = secs_now.checked_sub(secs_nonce) {
                //check hash
                let mut h = NONCESTARTHASH.clone();
                h.consume(secs_nonce.to_be_bytes());
                let h = format!("{:x}", h.compute());
                if h[..26] == n[8..34] {
                    return Ok(dur < 300); // from the last 5min
                                          //Authentication-Info ?
                }
            }
        }
    }
    Err(())
 }
 fn strip_prefix<'a>(search: &'a [u8], prefix: &[u8]) -> Option<&'a [u8]> {
    let l = prefix.len();
    if search.len() < l {
        return None;
    }
    if &search[..l] == prefix {
        Some(&search[l..])
    } else {
        None
    }
 }
 fn to_headermap(header: &[u8]) -> Result<HashMap<&[u8], &[u8]>, ()> {
    let mut sep = Vec::new();
    let mut asign = Vec::new();
    let mut i: usize = 0;
    let mut esc = false;
    for c in header {
        match (c, esc) {
            (b'=', false) => asign.push(i),
            (b',', false) => sep.push(i),
            (b'"', false) => esc = true,
            (b'"', true) => esc = false,
            _ => {}
        }
        i += 1;
    }
    sep.push(i); // same len for both Vecs
    i = 0;
    let mut ret = HashMap::new();
    for (&k, &a) in sep.iter().zip(asign.iter()) {
        while header[i] == b' ' {
            i += 1;
        }
        if a <= i || k <= 1 + a {
            //keys and vals must contain one char
            return Err(());
        }
        let key = &header[i..a];
        let val = if header[1 + a] == b'"' && header[k - 1] == b'"' {
            //escaped
            &header[2 + a..k - 1]
        } else {
            //not escaped
            &header[1 + a..k]
        };
        i = 1 + k;
        ret.insert(key, val);
    }
    Ok(ret)
 }
 fn create_nonce() -> String {
    let now = SystemTime::now().duration_since(UNIX_EPOCH).unwrap();
    let secs = now.as_secs() as u32;
    let mut h = NONCESTARTHASH.clone();
    h.consume(secs.to_be_bytes());
    let n = format!("{:08x}{:032x}", secs, h.compute());
    n[..34].to_string()
 }
--- a/src/main.rs
+++ b/src/main.rs
@@ -1,18 +1,14 @@
-macro_rules! bail {
+mod args;
-    ($($tt:tt)*) => {
+mod auth;
-        return Err(From::from(format!($($tt)*)))
+mod server;
    }
 }
 #[macro_use]
 extern crate log;
 mod args;
 mod server;
 pub type BoxResult<T> = Result<T, Box<dyn std::error::Error>>;
-use log::LevelFilter;
+use std::env;
 use std::io::Write;
 use crate::args::{matches, Args};
 use crate::server::serve;
@@ -23,19 +19,34 @@ async fn main() {
 }
 async fn run() -> BoxResult<()> {
-    let args = Args::parse(matches())?;
+    if env::var("RUST_LOG").is_err() {
-
+        env::set_var("RUST_LOG", "info")
-    if std::env::var("RUST_LOG").is_ok() {
+    }
-        simple_logger::init()?;
+    env_logger::builder()
-    } else {
+        .format(|buf, record| {
-        simple_logger::SimpleLogger::default()
+            let timestamp = buf.timestamp();
-            .with_level(LevelFilter::Info)
+            writeln!(buf, "[{} {}] {}", timestamp, record.level(), record.args())
-            .init()?;
+        })
        .init();
    let args = Args::parse(matches())?;
    tokio::select! {
        ret = serve(args) => {
            ret
        },
        _ = shutdown_signal() => {
            Ok(())
        },
    }
    serve(args).await
 }
 fn handle_err<T>(err: Box<dyn std::error::Error>) -> T {
-    eprintln!("Server error: {}", err);
+    eprintln!("error: {}", err);
    std::process::exit(1);
 }
 async fn shutdown_signal() {
    tokio::signal::ctrl_c()
        .await
        .expect("Failed to install CTRL+C signal handler")
 }
--- a/src/server.rs
+++ b/src/server.rs
Author	SHA1	Message	Date
sigoden	b48a7473fc	chore(release): version v0.15.1	2022-06-11 08:52:22 +08:00
sigoden	a84c3b353d	fix: cannot upload (#32 ) empty folder got js error close: #31	2022-06-11 08:51:17 +08:00
sigoden	e9383d71ed	chore(release): version v0.15.0	2022-06-10 08:41:51 +08:00
sigoden	8258dabe4a	fix: query dir param	2022-06-10 08:00:27 +08:00
Joe Koop	0e236b61f6	feat: add empty state placeholder to page(#30 ) * added "Empty folder" text to the page * added text for nonexistent directory and no search results	2022-06-10 07:41:09 +08:00
sigoden	09788ed031	chore: update favicon	2022-06-09 22:49:01 +08:00
Joe Koop	46ebe978ae	feat: add basic dark theme (#29 )	2022-06-09 22:16:43 +08:00
sigoden	e01f2030e1	chore: optimize code	2022-06-09 21:35:52 +08:00
Joe Koop	8d03ec151a	fix: encode webdav href as uri (#28 ) * Revert "fix: filename xml escaping" This reverts commit `ce154d9ebc`. * webdav filenames are fixed	2022-06-09 21:28:35 +08:00
sigoden	870e92e306	chore(release): version v0.14.0	2022-06-07 09:02:43 +08:00
sigoden	261c8b6ee5	feat: add favicon (#27 ) Return favicon only if requested, avoid 404 errors close #16	2022-06-07 08:59:44 +08:00
sigoden	5ce7bde05c	fix: send index page with content-type (#26 )	2022-06-06 11:20:42 +08:00
sigoden	63a7b530bb	feat: support ipv6 (#25 )	2022-06-06 10:52:12 +08:00
sigoden	7481db5071	chore(release): version v0.13.2	2022-06-06 08:03:00 +08:00
sigoden	b0cc901416	fix: escape path-prefix/url-prefix different	2022-06-06 08:00:26 +08:00
Joe Koop	ce154d9ebc	fix: filename xml escaping	2022-06-06 07:54:12 +08:00
sigoden	7c4c264206	chore(release): version v0.13.1	2022-06-06 07:15:48 +08:00
sigoden	c1e0c6bb2f	refactor: use logger (#22 )	2022-06-06 07:13:22 +08:00
sigoden	f138915f20	fix: escape filename (#21 ) close #19	2022-06-06 06:51:35 +08:00
sigoden	a0b413ef30	chore(release): version v0.13.0	2022-06-05 09:33:10 +08:00
sigoden	fc13d41c17	chore(docker): use scratch as docker base image	2022-06-05 09:30:26 +08:00
sigoden	882a9ae716	fix: ctrl+c not exit sometimes	2022-06-05 09:22:24 +08:00
sigoden	5578ee9190	feat: add webdav proppatch handler (#18 )	2022-06-05 07:35:05 +08:00
Ryan Russell	916602ae2d	chore: fix typos (#17 ) * chore(server.rs): fix `retrieve_listening_addrs` Signed-off-by: Ryan Russell <git@ryanrussell.org> * docs(index.js): Fix `breadcrumb` Signed-off-by: Ryan Russell <git@ryanrussell.org>	2022-06-05 06:12:37 +08:00
sigoden	2f40313a54	feat: use digest auth (#14 ) * feat: switch to digest auth * implement digest auth * cargo fmt * no lock	2022-06-05 00:09:21 +08:00
sigoden	05155aa532	feat: implement more webdav methods (#13 ) Now you can mount the server as webdav driver on windows.	2022-06-04 19:08:18 +08:00
sigoden	4605701366	chore(release): version v0.12.1	2022-06-04 13:39:03 +08:00
sigoden	b7c550e09b	chore(release): version v0.12.0	2022-06-04 13:21:46 +08:00
sigoden	fff8fc3ac5	chore: incorrect icon of uploaded file	2022-06-04 13:20:39 +08:00
sigoden	0616602659	feat: remove unzip uploaded feature (#11 ) Use drag&drop/webdav to upload folders	2022-06-04 13:01:17 +08:00
sigoden	0a64762df4	feat: support webdav (#10 )	2022-06-04 12:51:56 +08:00
sigoden	f103e15e15	chore(release): version v0.11.0	2022-06-03 11:19:57 +08:00
sigoden	9dda55b7c8	feat: listen 0.0.0.0 by default	2022-06-03 11:19:16 +08:00
sigoden	c3dd0f0ec5	feat: support gracefully shutdown server	2022-06-03 11:00:12 +08:00
sigoden	4167e5c07e	chore(ci): publish to docker * ci: publish to docker * update release.yaml * update Dockerfile	2022-06-03 10:36:06 +08:00
sigoden	f66e129985	chore(release): version v0.10.1	2022-06-03 07:21:15 +08:00
sigoden	7c3970480e	chore: add type comments to assets/js	2022-06-03 07:18:12 +08:00
sigoden	34bc8d411a	fix: panic when bind already used port	2022-06-03 07:15:41 +08:00
sigoden	51cedf2f8a	chore(release): version v0.10.0	2022-06-03 06:58:10 +08:00
sigoden	48c3c7ded6	fix: broken ui	2022-06-03 06:57:20 +08:00
sigoden	4491a74b34	docs: refactor readme	2022-06-03 06:51:50 +08:00
sigoden	7c2449cb1a	fix: rename --no-auth-read to --no-auth-access	2022-06-03 06:51:03 +08:00
sigoden	0a3d9c391f	feat: improve ui	2022-06-03 06:49:55 +08:00
sigoden	07f4e7d0f2	fix: remove unzip file even failed to unzip	2022-06-02 19:43:43 +08:00
sigoden	c50f97925c	feat: change auth logic/options	2022-06-02 19:36:04 +08:00
sigoden	ecb3984edc	chore(readme): insert cli output	2022-06-02 17:10:15 +08:00
sigoden	24f885164a	refactor: small improvement	2022-06-02 17:06:22 +08:00
sigoden	201afa6725	chore(release): version v0.9.0	2022-06-02 16:31:43 +08:00
sigoden	e2d7f996c7	feat: support tls	2022-06-02 12:15:06 +08:00
sigoden	97978719b3	feat: list all ifaces when listening 0.0.0.0	2022-06-02 09:44:40 +08:00
sigoden	9aa16d3a10	docs: improve readme	2022-06-02 09:08:55 +08:00
sigoden	d208b5cb6b	feat: support path prefix	2022-06-02 08:32:31 +08:00
sigoden	605c6c56c4	chore: upgrade version	2022-06-01 23:12:52 +08:00
sigoden	8718562889	chore: update description	2022-06-01 22:55:11 +08:00
sigoden	830d3343f4	feat: support render-index/render-spa closes #5	2022-06-01 22:49:55 +08:00
sigoden	1fe391f9d9	chore: move src/assets out of src	2022-06-01 20:26:03 +08:00
sigoden	b88381167b	feat: add some headers to res	2022-06-01 20:02:35 +08:00
sigoden	35ed4394df	fix: caught 500 if no permission to access dir releated #4	2022-06-01 19:59:35 +08:00
sigoden	f43d0b646d	fix: some typos close #6	2022-05-31 22:38:00 +08:00
sigoden	a9294f602c	feat: cli add allow-symlink option	2022-05-31 21:22:44 +08:00
sigoden	584d33940a	chore: upgrade version	2022-05-31 17:02:55 +08:00
sigoden	fc090b6930	fix: not found dir when allow_upload is false	2022-05-31 16:55:52 +08:00
sigoden	19d7b36462	feat: drag and drop uploads, upload folder close #3	2022-05-31 16:47:06 +08:00
sigoden	755554d3f2	fix: miss file 500	2022-05-31 16:32:50 +08:00
sigoden	6a097e0496	fix: unzip override existed file in uploadonly mode	2022-05-31 15:20:47 +08:00
sigoden	412d42e338	fix: downloaded zip file has no.zip ext in firefox close #2	2022-05-31 14:39:07 +08:00
sigoden	ec60752ba2	chore: upgrade version	2022-05-31 11:10:15 +08:00
sigoden	ed7f5e425a	feat: support range requests	2022-05-31 10:58:32 +08:00
sigoden	3032052923	feat: distinct upload and delete operation	2022-05-31 09:23:35 +08:00
sigoden	be3ae2fe00	feat: delete confirm close #1	2022-05-31 08:01:03 +08:00
sigoden	fb03f7ddb8	refactor: improve code quality	2022-05-31 07:56:05 +08:00