Support for file encryption (#38)

.github/workflows/test-code.yml

@@ -12,6 +12,7 @@ jobs:
       - uses: actions/setup-go@v2
         with:
           go-version: '^1.17'
+      - run: go generate ./...
       - run: go test ./... -parallel 8 --tags=test,awsmock
       - run: go clean -testcache
       - run: go test ./... -parallel 8 --tags=test,noaws

.gitignore

@@ -5,3 +5,6 @@ Gokapi
 build/*.zip
 gokapi
 docs/_build
+wasmServer
+internal/webserver/web/main.wasm
+internal/webserver/web/static/js/wasm_exec.js

build/go.mod

@@ -4,9 +4,12 @@ go 1.17
 
 require (
 	git.mills.io/prologic/bitcask v1.0.2
+	github.com/NYTimes/gziphandler v1.1.1
 	github.com/aws/aws-sdk-go v1.42.22
 	github.com/caarlos0/env/v6 v6.9.1
 	github.com/johannesboyne/gofakes3 v0.0.0-20210415062230-4b6b67a85d38
+	github.com/secure-io/sio-go v0.3.1
+	golang.org/x/crypto v0.0.0-20201221181555-eec23a3978ad
 	golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211
 	gopkg.in/yaml.v2 v2.4.0
@@ -22,7 +25,6 @@ require (
 	github.com/ryszard/goskiplist v0.0.0-20150312221310-2dfbae5fcf46 // indirect
 	github.com/shabbyrobe/gocovmerge v0.0.0-20180507124511-f6ea450bfb63 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
-	golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9 // indirect
 	golang.org/x/exp v0.0.0-20200228211341-fcea875c7e85 // indirect
 	golang.org/x/net v0.0.0-20210614182718-04defd469f4e // indirect
 	golang.org/x/tools v0.1.2 // indirect

build/setVersionTemplate.sh

@@ -2,4 +2,4 @@
 #Called by go generate
 #Sets the version number in the template automatically
 sed -i 's/{{define "version"}}.*{{end}}/{{define "version"}}'$1'{{end}}/g' ../../internal/webserver/web/templates/string_constants.tmpl
-echo "Version in web template set"
+echo "Set version in web template"

cmd/gokapi/Main.go

@@ -11,6 +11,7 @@ import (
 	"github.com/forceu/gokapi/internal/configuration/cloudconfig"
 	"github.com/forceu/gokapi/internal/configuration/datastorage"
 	"github.com/forceu/gokapi/internal/configuration/setup"
+	"github.com/forceu/gokapi/internal/encryption"
 	"github.com/forceu/gokapi/internal/environment"
 	"github.com/forceu/gokapi/internal/helper"
 	"github.com/forceu/gokapi/internal/logging"
@@ -28,9 +29,11 @@ import (
 
 // Version is the current version in readable form.
 // The go generate call below needs to be modified as well
-const Version = "1.5.0"
+const Version = "1.5.0-beta1"
 
-//go:generate sh "../../build/setVersionTemplate.sh" "1.5.0"
+//go:generate sh "../../build/setVersionTemplate.sh" "1.5.0-beta1"
+//go:generate sh -c "cp \"$(go env GOROOT)/misc/wasm/wasm_exec.js\" ../../internal/webserver/web/static/js/ && echo Copied wasm_exec.js"
+//go:generate sh -c "GOOS=js GOARCH=wasm go build -o ../../internal/webserver/web/main.wasm github.com/forceu/gokapi/cmd/wasmdownloader && echo Compiled WASM module"
 
 // Main routine that is called on startup
 func main() {
@@ -41,8 +44,9 @@ func main() {
 	fmt.Println("Gokapi v" + Version + " starting")
 	setup.RunIfFirstStart()
 	configuration.Load()
-	authentication.Init(configuration.Get().Authentication)
 	reconfigureServer(passedFlags)
+	encryption.Init(*configuration.Get())
+	authentication.Init(configuration.Get().Authentication)
 	createSsl(passedFlags)
 
 	cConfig, ok := cloudconfig.Load()

cmd/wasmdownloader/Main.go

@@ -0,0 +1,186 @@
+//go:build js && wasm
+// +build js,wasm
+
+package main
+
+// includes code from Alessandro Segala (ItalyPaleAle)
+// https://withblue.ink/2020/10/03/go-webassembly-http-requests-and-promises.html
+
+import (
+	"encoding/base64"
+	"errors"
+	"github.com/forceu/gokapi/internal/encryption"
+	"io"
+	"net/http"
+	"syscall/js"
+)
+
+// Main routine that is called on startup
+func main() {
+	js.Global().Set("GokapiEncrypt", js.FuncOf(Encrypt))
+	js.Global().Set("GokapiDecrypt", js.FuncOf(Decrypt))
+	println("WASM module loaded")
+	// Prevent the function from returning, which is required in a wasm module
+	select {}
+}
+
+func Decrypt(this js.Value, args []js.Value) interface{} {
+	key, url, err := getParams(args)
+	if err != nil {
+		return jsError(err.Error())
+	}
+	return encryptDecrypt(key, url, false)
+}
+
+func Encrypt(this js.Value, args []js.Value) interface{} {
+	key, url, err := getParams(args)
+	if err != nil {
+		return jsError(err.Error())
+	}
+	return encryptDecrypt(key, url, true)
+}
+
+func encryptDecrypt(key []byte, url string, doEncrypt bool) interface{} {
+
+	// Handler for the Promise
+	// We need to return a Promise because HTTP requests are blocking in Go
+	handler := js.FuncOf(func(this js.Value, args []js.Value) interface{} {
+		resolve := args[0]
+		reject := args[1]
+
+		// Run this code asynchronously
+		go func() {
+			// Make the HTTP request
+			res, err := http.DefaultClient.Get(url)
+			if err != nil {
+				// Handle errors: reject the Promise if we have an error
+				errorConstructor := js.Global().Get("Error")
+				errorObject := errorConstructor.New(err.Error())
+				reject.Invoke(errorObject)
+				return
+			}
+			// We're not calling res.Body.Close() here, because we are reading it asynchronously
+
+			// Create the "underlyingSource" object for the ReadableStream constructor
+			// See: https://developer.mozilla.org/en-US/docs/Web/API/ReadableStream/ReadableStream
+			underlyingSource := map[string]interface{}{
+				// start method
+				"start": js.FuncOf(func(this js.Value, args []js.Value) interface{} {
+					// The first and only arg is the controller object
+					controller := args[0]
+
+					// Process the stream in yet another background goroutine,
+					// because we can't block on a goroutine invoked by JS in Wasm
+					// that is dealing with HTTP requests
+					go func() {
+						// Close the response body at the end of this method
+						defer res.Body.Close()
+						var reader io.Reader
+						if doEncrypt {
+							reader, err = encryption.GetEncryptReader(key, res.Body)
+						} else {
+							reader, err = encryption.GetDecryptReader(key, res.Body)
+						}
+						if err != nil {
+							// Tell the controller we have an error
+							errorConstructor := js.Global().Get("Error")
+							errorObject := errorConstructor.New(err.Error())
+							controller.Call("error", errorObject)
+							return
+						}
+						// Read the entire stream and pass it to JavaScript
+						for {
+							// Read up to 1MB at a time
+							buf := make([]byte, 1048576)
+							n, err := reader.Read(buf)
+							if err != nil && err != io.EOF {
+								// Tell the controller we have an error
+								// We're ignoring "EOF" however, which means the stream was done
+								errorConstructor := js.Global().Get("Error")
+								errorObject := errorConstructor.New(err.Error())
+								controller.Call("error", errorObject)
+								return
+							}
+							if n > 0 {
+								// If we read anything, send it to JavaScript using the "enqueue" method on the controller
+								// We need to convert it to a Uint8Array first
+								arrayConstructor := js.Global().Get("Uint8Array")
+								dataJS := arrayConstructor.New(n)
+								js.CopyBytesToJS(dataJS, buf[0:n])
+								controller.Call("enqueue", dataJS)
+							}
+							if err == io.EOF {
+								// Stream is done, so call the "close" method on the controller
+								controller.Call("close")
+								return
+							}
+						}
+					}()
+
+					return nil
+				}),
+				// cancel method
+				"cancel": js.FuncOf(func(this js.Value, args []js.Value) interface{} {
+					// If the request is canceled, just close the body
+					res.Body.Close()
+
+					return nil
+				}),
+			}
+
+			// Create a ReadableStream object from the underlyingSource object
+			readableStreamConstructor := js.Global().Get("ReadableStream")
+			readableStream := readableStreamConstructor.New(underlyingSource)
+
+			// Create the init argument for the Response constructor
+			// This allows us to pass a custom status code (and optionally headers and more)
+			// See: https://developer.mozilla.org/en-US/docs/Web/API/Response/Response
+			responseInitObj := map[string]interface{}{
+				"status":     http.StatusOK,
+				"statusText": http.StatusText(http.StatusOK),
+			}
+
+			// Create a Response object with the stream inside
+			responseConstructor := js.Global().Get("Response")
+			response := responseConstructor.New(readableStream, responseInitObj)
+
+			// Resolve the Promise
+			resolve.Invoke(response)
+		}()
+
+		// The handler of a Promise doesn't return any value
+		return nil
+	})
+
+	// Create and return the Promise object
+	// The Promise will resolve with a Response object
+	promiseConstructor := js.Global().Get("Promise")
+	return promiseConstructor.New(handler)
+}
+
+func getParams(args []js.Value) ([]byte, string, error) {
+	keyBase64 := args[0].String()
+	key, err := base64.StdEncoding.DecodeString(keyBase64)
+	if err != nil {
+		return nil, "", errors.New("invalid base64 provided")
+	}
+	if len(key) != 32 {
+		return nil, "", errors.New("invalid cipher provided")
+	}
+	url := args[1].String()
+	return key, url, nil
+}
+
+// Wraps a message into a JavaScript object of type error
+func jsError(message string) js.Value {
+	errConstructor := js.Global().Get("Error")
+	errVal := errConstructor.New(message)
+	return errVal
+}
+
+// Returns a byte slice from a js.Value
+func bytesFromJs(arg js.Value) []byte {
+	out := make([]byte, arg.Length())
+	js.CopyBytesToGo(out, arg)
+	return out
+}

docs/setup.rst

@@ -29,6 +29,7 @@ Create a new folder and in this folder execute
 ::
 
  git clone https://github.com/Forceu/Gokapi.git .
+ go generate ./...
  go build Gokapi/cmd/gokapi
 
 This will compile the source code and create an executable from the latest code.
@@ -176,7 +177,7 @@ Stores files remotely on an S3 compatible server, e.g. Amazon AWS S3 or Backblaz
 
 It is highly recommended to create a new bucket for Gokapi and set it to "private", so that no file can be downloaded externally. For each download request Gokapi will create a public URL that is only valid for a couple of seconds, so that the file can be downloaded from the external server directly instead of routing it through the local server.
 
-You then need to create an app key with read-/write-access to this bucket.
+You then need to create an app key with read-/write-access to this bucket. If you are planning to use the encryption feature, make sure to set the bucket's CORS rules to allow access from the Gokapi URL.
 
 The following data needs to be provided:
 

go.mod

@@ -4,9 +4,12 @@ go 1.17
 
 require (
 	git.mills.io/prologic/bitcask v1.0.2
+	github.com/NYTimes/gziphandler v1.1.1
 	github.com/aws/aws-sdk-go v1.42.22
 	github.com/caarlos0/env/v6 v6.9.1
 	github.com/johannesboyne/gofakes3 v0.0.0-20210415062230-4b6b67a85d38
+	github.com/secure-io/sio-go v0.3.1
+	golang.org/x/crypto v0.0.0-20201221181555-eec23a3978ad
 	golang.org/x/oauth2 v0.0.0-20210402161424-2e8d93401602
 	golang.org/x/term v0.0.0-20210927222741-03fcf44c2211
 	gopkg.in/yaml.v2 v2.4.0
@@ -22,7 +25,6 @@ require (
 	github.com/ryszard/goskiplist v0.0.0-20150312221310-2dfbae5fcf46 // indirect
 	github.com/shabbyrobe/gocovmerge v0.0.0-20180507124511-f6ea450bfb63 // indirect
 	github.com/sirupsen/logrus v1.8.1 // indirect
-	golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9 // indirect
 	golang.org/x/exp v0.0.0-20200228211341-fcea875c7e85 // indirect
 	golang.org/x/net v0.0.0-20210614182718-04defd469f4e // indirect
 	golang.org/x/tools v0.1.2 // indirect

go.sum

@@ -41,6 +41,8 @@ git.mills.io/prologic/bitcask v1.0.2 h1:Iy9x3mVVd1fB+SWY0LTmsSDPGbzMrd7zCZPKbsb/
 git.mills.io/prologic/bitcask v1.0.2/go.mod h1:ppXpR3haeYrijyJDleAkSGH3p90w6sIHxEA/7UHMxH4=
 github.com/BurntSushi/toml v0.3.1/go.mod h1:xHWCNGjB5oqiDr8zfno3MHue2Ht5sIBksp03qcyfWMU=
 github.com/BurntSushi/xgb v0.0.0-20160522181843-27f122750802/go.mod h1:IVnqGOEym/WlBOVXweHU+Q+/VP0lqqI8lqeDx9IjBqo=
+github.com/NYTimes/gziphandler v1.1.1 h1:ZUDjpQae29j0ryrS0u/B8HZfJBtBQHjqw2rQ2cqUQ3I=
+github.com/NYTimes/gziphandler v1.1.1/go.mod h1:n/CVRwUEOgIxrgPvAQhUUr9oeUtvrhMomdKFjzJNB0c=
 github.com/OneOfOne/xxhash v1.2.2/go.mod h1:HSdplMjZKSmBqAxg5vPj2TmRDmfkzw+cTzAElWljhcU=
 github.com/abcum/lcp v0.0.0-20201209214815-7a3f3840be81 h1:uHogIJ9bXH75ZYrXnVShHIyywFiUZ7OOabwd9Sfd8rw=
 github.com/abcum/lcp v0.0.0-20201209214815-7a3f3840be81/go.mod h1:6ZvnjTZX1LNo1oLpfaJK8h+MXqHxcBFBIwkgsv+xlv0=
@@ -279,6 +281,8 @@ github.com/ryanuber/columnize v0.0.0-20160712163229-9b3edd62028f/go.mod h1:sm1tb
 github.com/ryszard/goskiplist v0.0.0-20150312221310-2dfbae5fcf46 h1:GHRpF1pTW19a8tTFrMLUcfWwyC0pnifVo2ClaLq+hP8=
 github.com/ryszard/goskiplist v0.0.0-20150312221310-2dfbae5fcf46/go.mod h1:uAQ5PCi+MFsC7HjREoAz1BU+Mq60+05gifQSsHSDG/8=
 github.com/sean-/seed v0.0.0-20170313163322-e2103e2c3529/go.mod h1:DxrIzT+xaE7yg65j358z/aeFdxmN0P9QXhEzd20vsDc=
+github.com/secure-io/sio-go v0.3.1 h1:dNvY9awjabXTYGsTF1PiCySl9Ltofk9GA3VdWlo7rRc=
+github.com/secure-io/sio-go v0.3.1/go.mod h1:+xbkjDzPjwh4Axd07pRKSNriS9SCiYksWnZqdnfpQxs=
 github.com/shabbyrobe/gocovmerge v0.0.0-20180507124511-f6ea450bfb63 h1:J6qvD6rbmOil46orKqJaRPG+zTpoGlBTUdyv8ki63L0=
 github.com/shabbyrobe/gocovmerge v0.0.0-20180507124511-f6ea450bfb63/go.mod h1:n+VKSARF5y/tS9XFSP7vWDfS+GUC5vs/YT7M5XDTUEM=
 github.com/shurcooL/sanitized_anchor_name v1.0.0/go.mod h1:1NzhyTcUVG4SuEtjjoZeVRXNmyL/1OwPU0+IJeTBvfc=
@@ -312,6 +316,8 @@ github.com/stretchr/testify v1.2.2/go.mod h1:a8OnRcib4nhh0OaRAV+Yts87kKdq0PP7pXf
 github.com/stretchr/testify v1.3.0/go.mod h1:M5WIy9Dh21IEIfnGCwXGc5bZfKNJtfHm1UVUgZn+9EI=
 github.com/stretchr/testify v1.4.0/go.mod h1:j7eGeouHqKxXV5pUuKE4zz7dFj8WfuZ+81PSLYec5m4=
 github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
+github.com/stretchr/testify v1.5.1/go.mod h1:5W2xD1RspED5o8YsWQXVCued0rvSQ+mT+I5cxcmMvtA=
+github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.6.1/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
 github.com/stretchr/testify v1.7.0 h1:nwc3DEeHmmLAfoZucVR881uASk0Mfjw8xYJ99tb5CcY=
 github.com/stretchr/testify v1.7.0/go.mod h1:6Fq8oRcR53rry900zMqJjRRixrwX3KX962/h/Wwjteg=
@@ -353,8 +359,10 @@ golang.org/x/crypto v0.0.0-20190510104115-cbcb75029529/go.mod h1:yigFU9vqHzYiE8U
 golang.org/x/crypto v0.0.0-20190605123033-f99c8df09eb5/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20190820162420-60c769a6c586/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
 golang.org/x/crypto v0.0.0-20191011191535-87dc89f01550/go.mod h1:yigFU9vqHzYiE8UmvKecakEJjdnWj3jj499lnFckfCI=
-golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9 h1:psW17arqaxU48Z5kZ0CQnkZWQJsqcURM6tKiBApRjXI=
+golang.org/x/crypto v0.0.0-20200302210943-78000ba7a073/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
 golang.org/x/crypto v0.0.0-20200622213623-75b288015ac9/go.mod h1:LzIPMQfyMNhhGPhUkYOs5KpL4U8rLKemX1yGLhDgUto=
+golang.org/x/crypto v0.0.0-20201221181555-eec23a3978ad h1:DN0cp81fZ3njFcrLCytUHRSUkqBjfTo4Tx9RJTWs0EY=
+golang.org/x/crypto v0.0.0-20201221181555-eec23a3978ad/go.mod h1:jdWPYTVW3xRLrWPugEBEK3UY2ZEsg3UU495nc5E+M+I=
 golang.org/x/exp v0.0.0-20190121172915-509febef88a4/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190306152737-a1d7652674e8/go.mod h1:CJ0aWSM057203Lf6IL+f9T1iT9GByDxfZKAQTCR3kQA=
 golang.org/x/exp v0.0.0-20190510132918-efd6b22b2522/go.mod h1:ZjyILWgesfNpC6sMxTJOJm9Kp84zZh5NQWvqDGG3Qr8=
@@ -474,13 +482,16 @@ golang.org/x/sys v0.0.0-20190606165138-5da285871e9c/go.mod h1:h1NjWce9XRLGQEsW7w
 golang.org/x/sys v0.0.0-20190624142023-c5567b49c5d0/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20190726091711-fc99dfbffb4e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191001151750-bb3f8db39f24/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191005200804-aed5e4c7ecf9/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20191026070338-33540a1f6037/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191204072324-ce4227a45e2e/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20191228213918-04cbcbbfeed8/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200113162924-86b910548bc1/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200122134326-e047566fdf82/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
+golang.org/x/sys v0.0.0-20200202164722-d101bd2416d5/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200212091648-12a6c2dcc1e4/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200223170610-d5e6a3e2c0ae/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
 golang.org/x/sys v0.0.0-20200302150141-5c8b2ff67527/go.mod h1:h1NjWce9XRLGQEsW7wpKNCjG9DtNlClVuFLEZdDNbEs=
@@ -508,6 +519,7 @@ golang.org/x/sys v0.0.0-20210510120138-977fb7262007/go.mod h1:oPkhp1MJrh7nUepCBc
 golang.org/x/sys v0.0.0-20210615035016-665e8c7367d1/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
 golang.org/x/sys v0.0.0-20211210111614-af8b64212486 h1:5hpz5aRr+W1erYCL5JRhSUBJRph7l9XkNveoExlrKYk=
 golang.org/x/sys v0.0.0-20211210111614-af8b64212486/go.mod h1:oPkhp1MJrh7nUepCBck5+mAzfO9JrbApNNgaTdGDITg=
+golang.org/x/term v0.0.0-20201117132131-f5c789dd3221/go.mod h1:Nr5EML6q2oocZ2LXRh80K7BxOlk5/8JxuGnuhpl+muw=
 golang.org/x/term v0.0.0-20201126162022-7de9c90e9dd1/go.mod h1:bj7SfCRtBDWHUb9snDiAeCFNEtKQo2Wmx5Cou7ajbmo=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211 h1:JGgROgKl9N8DuW20oFS5gxc+lE67/N3FcwmBPMe7ArY=
 golang.org/x/term v0.0.0-20210927222741-03fcf44c2211/go.mod h1:jbD1KX2456YbFQfuXm/mYQcufACuNUgVhRMnK/tPxf8=
@@ -706,6 +718,7 @@ gopkg.in/yaml.v2 v2.2.8/go.mod h1:hI93XBmqTisBFMUTm0b8Fm+jr3Dg1NNxqwp+5A1VGuI=
 gopkg.in/yaml.v2 v2.4.0 h1:D8xgwECY7CYvx+Y2n4sBz93Jn9JRvxdiyyo8CTfuKaY=
 gopkg.in/yaml.v2 v2.4.0/go.mod h1:RDklbk79AGWmwhnvt/jBztapEOGDOx6ZbXqjP6csGnQ=
 gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
+gopkg.in/yaml.v3 v3.0.0-20200313102051-9f266ea9e77c/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b h1:h8qDotaEPuJATrMmW04NCwg7v22aHH28wwpauUhK9Oo=
 gopkg.in/yaml.v3 v3.0.0-20210107192922-496545a6307b/go.mod h1:K4uyk7z7BCEPqu6E+C64Yfv1cQ7kz7rIZviUmN+EgEM=
 honnef.co/go/tools v0.0.0-20190102054323-c2f93a96b099/go.mod h1:rf3lG4BRIbNafJWhAfAdb/ePZxsR/4RtNHQocxwk9r4=

internal/configuration/Configuration.go

@@ -18,7 +18,6 @@ import (
 	"github.com/forceu/gokapi/internal/helper"
 	log "github.com/forceu/gokapi/internal/logging"
 	"github.com/forceu/gokapi/internal/models"
-	"github.com/forceu/gokapi/internal/webserver/downloadstatus"
 	"io"
 	"os"
 )
@@ -58,7 +57,6 @@ func Load() {
 		serverSettings.MaxMemory = Environment.MaxMemory
 	}
 	helper.CreateDir(serverSettings.DataDir)
-	downloadstatus.Init()
 	log.Init(Environment.DataDir)
 }
 
@@ -108,6 +106,7 @@ func LoadFromSetup(config models.Configuration, cloudConfig *cloudconfig.CloudCo
 		}
 	}
 	save()
+	Load()
 }
 
 // HashPassword hashes a string with SHA256 the file salt or admin user salt