release: 0.13.0

fix: show line breaks in txt preview
docs: update main screenshot
2023-03-14 16:09:20 +01:00 · 2023-03-14 16:08:57 +01:00 · 2023-03-14 15:47:42 +01:00 · 2023-03-14 15:36:35 +01:00 · 2023-03-14 15:11:24 +01:00 · 2023-03-14 14:50:18 +01:00
163 changed files with 8263 additions and 3571 deletions
--- a/.github/ISSUE_TEMPLATE/question.yml
+++ b/.github/ISSUE_TEMPLATE/question.yml
@@ -0,0 +1,17 @@
 name: ❓ Question
 description: "Submit a question"
 title: "❓ Question:"
 labels: [question]
 body:
  - type: textarea
    id: feature-description
    validations:
      required: true
    attributes:
      label: "🙋‍♂️ Question"
      description: "A clear question. Please provide as much detail as possible."
      placeholder: "How do I ...?"
  - type: markdown
    attributes:
      value: |
        Before submitting, please check if the question hasn't been asked before.
--- a/.github/workflows/backend-system-tests.yml
+++ b/.github/workflows/backend-system-tests.yml
@@ -13,7 +13,7 @@ jobs:
    runs-on: ubuntu-latest
    container: node:18
    steps:
-      - uses: actions/checkout@v2
+      - uses: actions/checkout@v3
      - name: Install Dependencies
        working-directory: ./backend
        run: npm install
--- a/.github/workflows/build-docker-image.yml
+++ b/.github/workflows/build-docker-image.yml
@@ -9,11 +9,11 @@ jobs:
    runs-on: ubuntu-latest
    steps:
      - name: checkout code
-        uses: actions/checkout@v2
+        uses: actions/checkout@v3
      - name: Set up QEMU
-        uses: docker/setup-qemu-action@v1
+        uses: docker/setup-qemu-action@v2
      - name: Set up Docker Buildx
-        uses: docker/setup-buildx-action@v1
+        uses: docker/setup-buildx-action@v2
      - name: login to docker registry
        run: echo "${{ secrets.DOCKER_PASSWORD }}" | docker login -u "${{ secrets.DOCKER_USERNAME }}" --password-stdin
      - name: Build the image
--- a/.github/workflows/close_inactive_issues.yml
+++ b/.github/workflows/close_inactive_issues.yml
@@ -14,6 +14,7 @@ jobs:
        with:
          days-before-issue-stale: 30
          days-before-issue-close: 14
          exempt-issue-labels: "feature"
          stale-issue-label: "stale"
          stale-issue-message: "This issue is stale because it has been open for 30 days with no activity."
          close-issue-message: "This issue was closed because it has been inactive for 14 days since being marked as stale."
--- a/.gitignore
+++ b/.gitignore
@@ -39,4 +39,4 @@ yarn-error.log*
 /data/
 # Jetbrains specific (webstorm)
-.idea/**/**
+.idea/**/**
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@@ -1,3 +1,147 @@
 ## [0.13.0](https://github.com/stonith404/pingvin-share/compare/v0.12.1...v0.13.0) (2023-03-14)
 ### Features
 * add preview modal ([c807d20](https://github.com/stonith404/pingvin-share/commit/c807d208d8f0518f6390f9f0f3d0eb00c12d213b))
 * sort shared files ([b25c30d](https://github.com/stonith404/pingvin-share/commit/b25c30d1ed57230096b17afaf8545c7b0ef2e4b1))
 ### Bug Fixes
 * replace "pingvin share" with dynamic app name ([f55aa80](https://github.com/stonith404/pingvin-share/commit/f55aa805167f31864cb07e269a47533927cb533c))
 * set password manually input not shown ([8ff417a](https://github.com/stonith404/pingvin-share/commit/8ff417a013a45a777308f71c4f0d1817bfeed6be))
 * show line breaks in txt preview ([37e765d](https://github.com/stonith404/pingvin-share/commit/37e765ddc7b19554bc6fb50eb969984b58bf3cc5))
 * upload file if it is 0 bytes ([f82099f](https://github.com/stonith404/pingvin-share/commit/f82099f36eb4699385fc16dfb0e0c02e5d55b1e3))
 ### [0.12.1](https://github.com/stonith404/pingvin-share/compare/v0.12.0...v0.12.1) (2023-03-11)
 ### Bug Fixes
 * 48px icon does not update ([753dbe8](https://github.com/stonith404/pingvin-share/commit/753dbe83b770814115a2576c7a50e1bac9dc8ce1))
 ## [0.12.0](https://github.com/stonith404/pingvin-share/compare/v0.11.1...v0.12.0) (2023-03-10)
 ### Features
 * ability to change logo in frontend ([8403d7e](https://github.com/stonith404/pingvin-share/commit/8403d7e14ded801c3842a9b3fd87c3f6824c519e))
 ### Bug Fixes
 * crypto is not defined ([8f71fd3](https://github.com/stonith404/pingvin-share/commit/8f71fd343506506532c1a24a4c66a16b1021705f))
 * home page shown even if disabled ([3ad6b03](https://github.com/stonith404/pingvin-share/commit/3ad6b03b6bd80168870049582683077b689fa548))
 ### [0.11.1](https://github.com/stonith404/pingvin-share/compare/v0.11.0...v0.11.1) (2023-03-05)
 ### Bug Fixes
 * old config variable prevents to create a share ([8b77e81](https://github.com/stonith404/pingvin-share/commit/8b77e81d4c1b8a2bf798595f5a66079c40734e09))
 ## [0.11.0](https://github.com/stonith404/pingvin-share/compare/v0.10.2...v0.11.0) (2023-03-04)
 ### Features
 * custom branding ([#112](https://github.com/stonith404/pingvin-share/issues/112)) ([fddad3e](https://github.com/stonith404/pingvin-share/commit/fddad3ef708c27052a8bf46f3076286d102f6d7e))
 * invite new user with email ([f984050](https://github.com/stonith404/pingvin-share/commit/f9840505b82fcb04364a79576f186b76cc75f5c0))
 ### Bug Fixes
 * frontend error when user deleted ([0317f3a](https://github.com/stonith404/pingvin-share/commit/0317f3a508dc88ffe2c33413704f7df03a2372ea))
 ### [0.10.2](https://github.com/stonith404/pingvin-share/compare/v0.10.1...v0.10.2) (2023-02-13)
 ### Bug Fixes
 * pdf preview tries to render on server ([c3af0fe](https://github.com/stonith404/pingvin-share/commit/c3af0fe097582f69b63ed1ad18fb71bff334d32a))
 ### [0.10.1](https://github.com/stonith404/pingvin-share/compare/v0.10.0...v0.10.1) (2023-02-12)
 ### Bug Fixes
 * non administrator user redirection error while setup isn't finished ([dc8cf3d](https://github.com/stonith404/pingvin-share/commit/dc8cf3d5ca6b4f8a8f243b8e0b05e09738cf8b61))
 * setup wizard doesn't redirect after completion ([7cd9dff](https://github.com/stonith404/pingvin-share/commit/7cd9dff637900098c9f6e46ccade37283d47321b))
 ## [0.10.0](https://github.com/stonith404/pingvin-share/compare/v0.9.0...v0.10.0) (2023-02-10)
 ### ⚠ BREAKING CHANGES
 * reset password with email
 ### Features
 * allow multiple shares with one reverse share link ([ccdf8ea](https://github.com/stonith404/pingvin-share/commit/ccdf8ea3ae1e7b8520c5b1dd9bea18b1b3305f35))
 * **frontend:** server side rendering to improve performance ([38de022](https://github.com/stonith404/pingvin-share/commit/38de022215a9b99c2eb36654f8dbb1e17ca87aba))
 * reset password with email ([5d1a7f0](https://github.com/stonith404/pingvin-share/commit/5d1a7f0310df2643213affd2a0d1785b7e0af398))
 ### Bug Fixes
 * delete all shares of reverse share ([86a7379](https://github.com/stonith404/pingvin-share/commit/86a737951951c911abd7967d76cb253c4335cb0c))
 * invalid redirection after jwt expiry ([82f204e](https://github.com/stonith404/pingvin-share/commit/82f204e8a93e3113dcf65b1881d4943a898602eb))
 * setup status doesn't change ([064ef38](https://github.com/stonith404/pingvin-share/commit/064ef38d783b3f351535c2911eb451efd9526d71))
 * share creation without reverseShareToken ([b966270](https://github.com/stonith404/pingvin-share/commit/b9662701c42fe6771c07acb869564031accb2932))
 * share fails if a share was created with a reverse share link recently ([edc10b7](https://github.com/stonith404/pingvin-share/commit/edc10b72b7884c629a8417c3c82222b135ef7653))
 ## [0.9.0](https://github.com/stonith404/pingvin-share/compare/v0.8.0...v0.9.0) (2023-01-31)
 ### Features
 * direct file link ([008df06](https://github.com/stonith404/pingvin-share/commit/008df06b5cf48872d4dd68df813370596a4fd468))
 * file preview ([91a6b3f](https://github.com/stonith404/pingvin-share/commit/91a6b3f716d37d7831e17a7be1cdb35cb23da705))
 ### Bug Fixes
 * improve send test email UX ([233c26e](https://github.com/stonith404/pingvin-share/commit/233c26e5cfde59e7d51023ef9901dec2b84a4845))
 ## [0.8.0](https://github.com/stonith404/pingvin-share/compare/v0.7.0...v0.8.0) (2023-01-26)
 ### Features
 * reverse shares ([#86](https://github.com/stonith404/pingvin-share/issues/86)) ([4a5fb54](https://github.com/stonith404/pingvin-share/commit/4a5fb549c6ac808261eb65d28db69510a82efd00))
 ### Bug Fixes
 * Add meta tags to new pages ([bb64f6c](https://github.com/stonith404/pingvin-share/commit/bb64f6c33fc5c5e11f2c777785c96a74b57dfabc))
 * admin users were created while the setup wizard wasn't finished ([ad92cfc](https://github.com/stonith404/pingvin-share/commit/ad92cfc852ca6aa121654d747a02628492ae5b89))
 ## [0.7.0](https://github.com/stonith404/pingvin-share/compare/v0.6.1...v0.7.0) (2023-01-13)
 ### Features
 * add ClamAV to scan for malicious files ([76088cc](https://github.com/stonith404/pingvin-share/commit/76088cc76aedae709f06deaee2244efcf6a22bed))
 ### Bug Fixes
 * invalid github release link on admin page ([349bf47](https://github.com/stonith404/pingvin-share/commit/349bf475cc7fc1141dbd2a9bd2f63153c4d5b41b))
 ### [0.6.1](https://github.com/stonith404/pingvin-share/compare/v0.6.0...v0.6.1) (2023-01-11)
 ### Features
 * delete all sessions if password was changed ([02e41e2](https://github.com/stonith404/pingvin-share/commit/02e41e243768de34de1bdc8833e83f60db530e55))
 ### Bug Fixes
 * shareUrl uses wrong origin ([f1b44f8](https://github.com/stonith404/pingvin-share/commit/f1b44f87fa64d3b21ca92c9068cb352d0ad51bc0))
 * update password doesn't work ([74e8956](https://github.com/stonith404/pingvin-share/commit/74e895610642552c98c0015d0f8347735aaed457))
 ## [0.6.0](https://github.com/stonith404/pingvin-share/compare/v0.5.1...v0.6.0) (2023-01-09)
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@@ -8,62 +8,55 @@ You've found a bug, have suggestion or something else, just create an issue on G
 ## Submit a Pull Request
-Once you created a issue and you want to create a pull request, follow this guide.
+Before you submit the pull request for review please ensure that
-Branch naming convention is as following
+- The pull request naming follows the [Conventional Commits specification](https://www.conventionalcommits.org):
-`TYPE-ISSUE_ID-DESCRIPTION`
+  `<type>[optional scope]: <description>`
-example:
+  example:
  ```
  feat(share): add password protection
  ```
  When `TYPE` can be:
  - **feat** - is a new feature
  - **doc** - documentation only changes
  - **fix** - a bug fix
  - **refactor** - code change that neither fixes a bug nor adds a feature
 - Your pull request has a detailed description
 - You run `npm run format` to format the code
 <details>
  <summary>Don't know how to create a pull request? Learn how to create a pull request</summary>
 1. Create a fork of the repository by clicking on the `Fork` button in the Pingvin Share repository
 2. Clone your fork to your machine with `git clone`
 ```
-feat-69-ability-to-set-share-expiration-to-never
+$ git clone https://github.com/[your_username]/pingvin-share
 ```
 When `TYPE` can be:
 - **feat** - is a new feature
 - **doc** - documentation only changes
 - **fix** - a bug fix
 - **refactor** - code change that neither fixes a bug nor adds a feature
 **All PRs must include a commit message with the changes description!**
 For the initial start, fork the project and use the `git clone` command to download the repository to your computer. A standard procedure for working on an issue would be to:
 1. `git pull`, before creating a new branch, pull the changes from upstream. Your master needs to be up to date.
 ```
 $ git pull
 ```
 2. Create new branch from `main` like: `feat-69-ability-to-set-share-expiration-to-never`<br/>
 ```
 $ git checkout -b [name_of_your_new_branch]
 ```
 3. Work - commit - repeat
-4. Before you push your changes, make sure you run the linter and format the code.
+4. Push changes to GitHub
 ```bash
 npm run lint
 npm run format
 ```
 5. Push changes to GitHub
 ```
 $ git push origin [name_of_your_new_branch]
 ```
-6. Submit your changes for review
+5. Submit your changes for review
   If you go to your repository on GitHub, you'll see a `Compare & pull request` button. Click on that button.
-7. Start a Pull Request
+6. Start a Pull Request
-   Now submit the pull request and click on `Create pull request`.
+7. Now submit the pull request and click on `Create pull request`.
 8. Get a code review approval/reject
 </details>
 ## Setup project
 Pingvin Share consists of a frontend and a backend.
--- a/17
+++ b/17
@@ -1,26 +1,26 @@
 # Using node slim because prisma ORM needs libc for ARM builds
 # Stage 1: on frontend dependency change
-FROM node:18-slim AS frontend-dependencies
+FROM node:19-slim AS frontend-dependencies
 WORKDIR /opt/app
 COPY frontend/package.json frontend/package-lock.json ./
 RUN npm ci
 # Stage 2: on frontend change
-FROM node:18-slim AS frontend-builder
+FROM node:19-slim AS frontend-builder
 WORKDIR /opt/app
 COPY ./frontend .
 COPY --from=frontend-dependencies /opt/app/node_modules ./node_modules
 RUN npm run build
 # Stage 3: on backend dependency change
-FROM node:18-slim AS backend-dependencies
+FROM node:19-slim AS backend-dependencies
 WORKDIR /opt/app
 COPY backend/package.json backend/package-lock.json ./
 RUN npm ci
 # Stage 4:on backend change
-FROM node:18-slim AS backend-builder
+FROM node:19-slim AS backend-builder
 RUN apt-get update && apt-get install -y openssl
 WORKDIR /opt/app
 COPY ./backend .
@@ -29,16 +29,15 @@ RUN npx prisma generate
 RUN npm run build  && npm prune --production
 # Stage 5: Final image
-FROM node:18-slim AS runner
+FROM node:19-slim AS runner
-ENV NODE_ENV=production
+ENV NODE_ENV=docker
 RUN apt-get update && apt-get install -y openssl
 WORKDIR /opt/app/frontend
 COPY --from=frontend-builder /opt/app/public ./public
 # Automatically leverage output traces to reduce image size
 # https://nextjs.org/docs/advanced-features/output-file-tracing
 COPY --from=frontend-builder /opt/app/.next/standalone ./
 COPY --from=frontend-builder /opt/app/.next/static ./.next/static
 COPY --from=frontend-builder /opt/app/public/img /tmp/img
 WORKDIR /opt/app/backend
 COPY --from=backend-builder /opt/app/node_modules ./node_modules
@@ -48,4 +47,4 @@ COPY --from=backend-builder /opt/app/package.json ./
 WORKDIR /opt/app
 EXPOSE 3000
-CMD node frontend/server.js & cd backend && npm run prod
+CMD cp -rn /tmp/img /opt/app/frontend/public && node frontend/server.js & cd backend && npm run prod
--- a/README.md
+++ b/README.md
@@ -4,31 +4,72 @@ Pingvin Share is self-hosted file sharing platform and an alternative for WeTran
 ## ✨ Features
- Spin up your instance within 2 minutes
+- Share files using a link
- Create a share with files that you can access with a link
+- Unlimited file size (restricted only by disk space)
- No file size limit, only your disk will be your limit
+- Set an expiration date for shares
- Set a share expiration
+- Secure shares with visitor limits and passwords
- Optionally secure your share with a visitor limit and a password
+- Email recipients
- Email recepients
+- Integration with ClamAV for security scans
 - Light & dark mode
 ## 🐧 Get to know Pingvin Share
 - [Demo](https://pingvin-share.dev.eliasschneider.com)
 - [Review by DB Tech](https://www.youtube.com/watch?v=rWwNeZCOPJA)
-<img src="https://user-images.githubusercontent.com/58886915/167101708-b85032ad-f5b1-480a-b8d7-ec0096ea2a43.png" width="700"/>
+<img src="https://user-images.githubusercontent.com/58886915/225038319-b2ef742c-3a74-4eb6-9689-4207a36842a4.png" width="700"/>
 ## ⌨️ Setup
-> Pleas note that Pingvin Share is in early stage and could include some bugs
+> Note: Pingvin Share is in its early stages and may contain bugs.
-### Recommended installation
+### Installation with Docker (recommended)
 1. Download the `docker-compose.yml` file
 2. Run `docker-compose up -d`
-The website is now listening available on `http://localhost:3000`, have fun with Pingvin Share 🐧!
+The website is now listening on `http://localhost:3000`, have fun with Pingvin Share 🐧!
 ### Stand-alone Installation
 Required tools:
 - [Node.js](https://nodejs.org/en/download/) >= 16
 - [Git](https://git-scm.com/downloads)
 - [pm2](https://pm2.keymetrics.io/) for running Pingvin Share in the background
 ```bash
 git clone https://github.com/stonith404/pingvin-share
 cd pingvin-share
 # Checkout the latest version
 git fetch --tags && git checkout $(git describe --tags `git rev-list --tags --max-count=1`)
 # Start the backend
 cd backend
 npm install
 npm run build
 pm2 start --name="pingvin-share-backend" npm -- run prod
 # Start the frontend
 cd ../frontend
 npm install
 npm run build
 pm2 start --name="pingvin-share-frontend" npm -- run start
 ```
 The website is now listening on `http://localhost:3000`, have fun with Pingvin Share 🐧!
 ### Integrations
 #### ClamAV (Docker only)
 ClamAV is used to scan shares for malicious files and remove them if found.
 1. Add the ClamAV container to the Docker Compose stack (see `docker-compose.yml`) and start the container.
 2. Docker will wait for ClamAV to start before starting Pingvin Share. This may take a minute or two.
 3. The Pingvin Share logs should now log "ClamAV is active"
 Please note that ClamAV needs a lot of [ressources](https://docs.clamav.net/manual/Installing/Docker.html#memory-ram-requirements).
 ### Additional resources
@@ -36,7 +77,26 @@ The website is now listening available on `http://localhost:3000`, have fun with
 ### Upgrade to a new version
-Run `docker compose pull && docker compose up -d` to update your docker container
+As Pingvin Share is in early stage, see the release notes for breaking changes before upgrading.
 #### Docker
 ```bash
 docker compose pull
 docker compose up -d
 ```
 #### Stand-alone
 1. Remove the running app
   ```
   pm2 delete pingvin-share-backend pingvin-share-frontend
   ```
 2. Repeat the steps from the [installation guide](#stand-alone-installation) except the `git clone` step.
 ### Custom branding
 You can change the name and the logo of the app by visiting the admin configuration page.
 ## 🖤 Contribute
--- a/backend/nest-cli.json
+++ b/backend/nest-cli.json
@@ -1,5 +1,8 @@
 {
  "$schema": "https://json.schemastore.org/nest-cli",
  "collection": "@nestjs/schematics",
-  "sourceRoot": "src"
+  "sourceRoot": "src",
  "compilerOptions": {
    "plugins": ["@nestjs/swagger"]
  }
 }
--- a/backend/package-lock.json
+++ b/backend/package-lock.json
--- a/backend/package.json
+++ b/backend/package.json
@@ -1,9 +1,9 @@
 {
  "name": "pingvin-share-backend",
-  "version": "0.6.0",
+  "version": "0.13.0",
  "scripts": {
    "build": "nest build",
-    "dev": "nest start --watch",
+    "dev": "cross-env NODE_ENV=development nest start --watch",
    "prod": "prisma migrate deploy && prisma db seed && node dist/src/main",
    "lint": "eslint 'src/**/*.ts'",
    "format": "prettier --write 'src/**/*.ts'",
@@ -13,63 +13,68 @@
    "seed": "ts-node prisma/seed/config.seed.ts"
  },
  "dependencies": {
-    "@nestjs/common": "^9.2.1",
+    "@nestjs/common": "^9.3.9",
-    "@nestjs/config": "^2.2.0",
+    "@nestjs/config": "^2.3.1",
-    "@nestjs/core": "^9.2.1",
+    "@nestjs/core": "^9.3.9",
-    "@nestjs/jwt": "^9.0.0",
+    "@nestjs/jwt": "^10.0.2",
-    "@nestjs/mapped-types": "^1.2.0",
+    "@nestjs/passport": "^9.0.3",
-    "@nestjs/passport": "^9.0.0",
+    "@nestjs/platform-express": "^9.3.9",
-    "@nestjs/platform-express": "^9.2.1",
+    "@nestjs/schedule": "^2.2.0",
-    "@nestjs/schedule": "^2.1.0",
+    "@nestjs/swagger": "^6.2.1",
-    "@nestjs/throttler": "^3.1.0",
+    "@nestjs/throttler": "^4.0.0",
-    "@prisma/client": "^4.7.1",
+    "@prisma/client": "^4.11.0",
    "archiver": "^5.3.1",
-    "argon2": "^0.30.2",
+    "argon2": "^0.30.3",
-    "body-parser": "^1.20.1",
+    "body-parser": "^1.20.2",
    "clamscan": "^2.1.2",
    "class-transformer": "^0.5.1",
-    "class-validator": "^0.13.2",
+    "class-validator": "^0.14.0",
    "content-disposition": "^0.5.4",
    "cookie-parser": "^1.4.6",
    "mime-types": "^2.1.35",
    "moment": "^2.29.4",
-    "nodemailer": "^6.8.0",
+    "nodemailer": "^6.9.1",
    "otplib": "^12.0.1",
    "passport": "^0.6.0",
-    "passport-jwt": "^4.0.0",
+    "passport-jwt": "^4.0.1",
    "passport-local": "^1.0.0",
    "qrcode-svg": "^1.1.0",
    "reflect-metadata": "^0.1.13",
-    "rimraf": "^3.0.2",
+    "rimraf": "^4.4.0",
-    "rxjs": "^7.6.0",
+    "rxjs": "^7.8.0",
    "sharp": "^0.31.3",
    "ts-node": "^10.9.1"
  },
  "devDependencies": {
-    "@nestjs/cli": "^9.1.5",
+    "@nestjs/cli": "^9.2.0",
-    "@nestjs/schematics": "^9.0.3",
+    "@nestjs/schematics": "^9.0.4",
-    "@nestjs/testing": "^9.2.1",
+    "@nestjs/testing": "^9.3.9",
    "@types/archiver": "^5.3.1",
    "@types/clamscan": "^2.0.4",
    "@types/cookie-parser": "^1.4.3",
    "@types/cron": "^2.0.0",
-    "@types/express": "^4.17.14",
+    "@types/express": "^4.17.17",
    "@types/mime-types": "^2.1.1",
-    "@types/node": "^18.11.10",
+    "@types/multer": "^1.4.7",
-    "@types/nodemailer": "^6.4.6",
+    "@types/node": "^18.15.0",
-    "@types/passport-jwt": "^3.0.7",
+    "@types/nodemailer": "^6.4.7",
    "@types/passport-jwt": "^3.0.8",
    "@types/qrcode-svg": "^1.1.1",
    "@types/sharp": "^0.31.1",
    "@types/supertest": "^2.0.12",
-    "@typescript-eslint/eslint-plugin": "^5.45.0",
+    "@typescript-eslint/eslint-plugin": "^5.54.1",
-    "@typescript-eslint/parser": "^5.45.0",
+    "@typescript-eslint/parser": "^5.54.1",
    "cross-env": "^7.0.3",
-    "eslint": "^8.29.0",
+    "eslint": "^8.35.0",
-    "eslint-config-prettier": "^8.5.0",
+    "eslint-config-prettier": "^8.7.0",
    "eslint-plugin-prettier": "^4.2.1",
    "newman": "^5.3.2",
-    "prettier": "^2.8.0",
+    "prettier": "^2.8.4",
-    "prisma": "^4.7.1",
+    "prisma": "^4.11.0",
    "source-map-support": "^0.5.21",
    "ts-loader": "^9.4.2",
-    "tsconfig-paths": "4.1.1",
+    "tsconfig-paths": "4.1.2",
-    "typescript": "^4.9.3",
+    "typescript": "^4.9.5",
-    "wait-on": "^6.0.1"
+    "wait-on": "^7.0.1"
  }
 }
--- a/backend/prisma/migrations/20230113080918_removed_reason_attribute/migration.sql
+++ b/backend/prisma/migrations/20230113080918_removed_reason_attribute/migration.sql
@@ -0,0 +1,2 @@
 -- AlterTable
 ALTER TABLE "Share" ADD COLUMN "removedReason" TEXT;
--- a/backend/prisma/migrations/20230126125501_reverse_shares/migration.sql
+++ b/backend/prisma/migrations/20230126125501_reverse_shares/migration.sql
@@ -0,0 +1,67 @@
 /*
  Warnings:
  - Added the required column `order` to the `Config` table without a default value. This is not possible if the table is not empty.
 */
 -- CreateTable
 CREATE TABLE "ReverseShare" (
    "id" TEXT NOT NULL PRIMARY KEY,
    "createdAt" DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
    "token" TEXT NOT NULL,
    "shareExpiration" DATETIME NOT NULL,
    "maxShareSize" TEXT NOT NULL,
    "sendEmailNotification" BOOLEAN NOT NULL,
    "used" BOOLEAN NOT NULL DEFAULT false,
    "creatorId" TEXT NOT NULL,
    "shareId" TEXT,
    CONSTRAINT "ReverseShare_creatorId_fkey" FOREIGN KEY ("creatorId") REFERENCES "User" ("id") ON DELETE CASCADE ON UPDATE CASCADE,
    CONSTRAINT "ReverseShare_shareId_fkey" FOREIGN KEY ("shareId") REFERENCES "Share" ("id") ON DELETE CASCADE ON UPDATE CASCADE
 );
 -- RedefineTables
 PRAGMA foreign_keys=OFF;
 CREATE TABLE "new_Config" (
    "updatedAt" DATETIME NOT NULL,
    "key" TEXT NOT NULL PRIMARY KEY,
    "type" TEXT NOT NULL,
    "value" TEXT NOT NULL,
    "description" TEXT NOT NULL,
    "category" TEXT NOT NULL,
    "obscured" BOOLEAN NOT NULL DEFAULT false,
    "secret" BOOLEAN NOT NULL DEFAULT true,
    "locked" BOOLEAN NOT NULL DEFAULT false,
    "order" INTEGER NOT NULL
 );
 INSERT INTO "new_Config" ("category", "description", "key", "locked", "obscured", "secret", "type", "updatedAt", "value", "order") SELECT "category", "description", "key", "locked", "obscured", "secret", "type", "updatedAt", "value", 0 FROM "Config";
 DROP TABLE "Config";
 ALTER TABLE "new_Config" RENAME TO "Config";
 PRAGMA foreign_key_check;
 PRAGMA foreign_keys=ON;
 -- CreateIndex
 CREATE UNIQUE INDEX "ReverseShare_token_key" ON "ReverseShare"("token");
 -- CreateIndex
 CREATE UNIQUE INDEX "ReverseShare_shareId_key" ON "ReverseShare"("shareId");
 -- Custom migration
 UPDATE Config SET `order` = 0 WHERE key = "JWT_SECRET";
 UPDATE Config SET `order` = 0 WHERE key = "TOTP_SECRET";
 UPDATE Config SET `order` = 1 WHERE key = "APP_URL";
 UPDATE Config SET `order` = 2 WHERE key = "SHOW_HOME_PAGE";
 UPDATE Config SET `order` = 3 WHERE key = "ALLOW_REGISTRATION";
 UPDATE Config SET `order` = 4 WHERE key = "ALLOW_UNAUTHENTICATED_SHARES";
 UPDATE Config SET `order` = 5 WHERE key = "MAX_SHARE_SIZE";
 UPDATE Config SET `order` = 6, key = "ENABLE_SHARE_EMAIL_RECIPIENTS" WHERE key = "ENABLE_EMAIL_RECIPIENTS";
 UPDATE Config SET `order` = 7, key = "SHARE_RECEPIENTS_EMAIL_MESSAGE" WHERE key = "EMAIL_MESSAGE";
 UPDATE Config SET `order` = 8, key = "SHARE_RECEPIENTS_EMAIL_SUBJECT" WHERE key = "EMAIL_SUBJECT";
 UPDATE Config SET `order` = 12 WHERE key = "SMTP_HOST";
 UPDATE Config SET `order` = 13 WHERE key = "SMTP_PORT";
 UPDATE Config SET `order` = 14 WHERE key = "SMTP_EMAIL";
 UPDATE Config SET `order` = 15 WHERE key = "SMTP_USERNAME";
 UPDATE Config SET `order` = 16 WHERE key = "SMTP_PASSWORD";
 INSERT INTO Config (`order`, `key`, `description`, `type`, `value`, `category`, `secret`, `updatedAt`) VALUES (11, "SMTP_ENABLED", "Whether SMTP is enabled. Only set this to true if you entered the host, port, email, user and password of your SMTP server.", "boolean", IFNULL((SELECT value FROM Config WHERE key="ENABLE_SHARE_EMAIL_RECIPIENTS"), "false"), "smtp", 0, strftime('%s', 'now'));
 INSERT INTO Config (`order`, `key`, `description`, `type`, `value`, `category`, `secret`, `updatedAt`, `locked`) VALUES (0, "SETUP_STATUS", "Status of the setup wizard", "string", IIF((SELECT value FROM Config WHERE key="SETUP_FINISHED") == "true", "FINISHED", "STARTED"), "internal", 0, strftime('%s', 'now'), 1);
--- a/backend/prisma/migrations/20230209205230_v0_10_0/migration.sql
+++ b/backend/prisma/migrations/20230209205230_v0_10_0/migration.sql
@@ -0,0 +1,64 @@
 /*
  Warnings:
  - You are about to drop the column `shareId` on the `ReverseShare` table. All the data in the column will be lost.
  - You are about to drop the column `used` on the `ReverseShare` table. All the data in the column will be lost.
  - Added the required column `remainingUses` to the `ReverseShare` table without a default value. This is not possible if the table is not empty.
 */
 -- CreateTable
 PRAGMA foreign_keys=OFF;
 CREATE TABLE "ResetPasswordToken" (
    "token" TEXT NOT NULL PRIMARY KEY,
    "createdAt" DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
    "expiresAt" DATETIME NOT NULL,
    "userId" TEXT NOT NULL,
    CONSTRAINT "ResetPasswordToken_userId_fkey" FOREIGN KEY ("userId") REFERENCES "User" ("id") ON DELETE CASCADE ON UPDATE CASCADE
 );
 -- Disable TOTP as secret isn't encrypted anymore
 UPDATE User SET totpEnabled=false, totpSecret=null, totpVerified=false WHERE totpSecret IS NOT NULL;
 -- RedefineTables
 CREATE TABLE "new_Share" (
    "id" TEXT NOT NULL PRIMARY KEY,
    "createdAt" DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
    "uploadLocked" BOOLEAN NOT NULL DEFAULT false,
    "isZipReady" BOOLEAN NOT NULL DEFAULT false,
    "views" INTEGER NOT NULL DEFAULT 0,
    "expiration" DATETIME NOT NULL,
    "description" TEXT,
    "removedReason" TEXT,
    "creatorId" TEXT,
    "reverseShareId" TEXT,
    CONSTRAINT "Share_creatorId_fkey" FOREIGN KEY ("creatorId") REFERENCES "User" ("id") ON DELETE CASCADE ON UPDATE CASCADE,
    CONSTRAINT "Share_reverseShareId_fkey" FOREIGN KEY ("reverseShareId") REFERENCES "ReverseShare" ("id") ON DELETE CASCADE ON UPDATE CASCADE
 );
 INSERT INTO "new_Share" ("createdAt", "creatorId", "description", "expiration", "id", "isZipReady", "removedReason", "uploadLocked", "views", "reverseShareId")
 SELECT "createdAt", "creatorId", "description", "expiration", "id", "isZipReady", "removedReason", "uploadLocked", "views", (SELECT id FROM ReverseShare WHERE shareId=Share.id)
 FROM "Share";
 DROP TABLE "Share";
 ALTER TABLE "new_Share" RENAME TO "Share";
 CREATE TABLE "new_ReverseShare" (
    "id" TEXT NOT NULL PRIMARY KEY,
    "createdAt" DATETIME NOT NULL DEFAULT CURRENT_TIMESTAMP,
    "token" TEXT NOT NULL,
    "shareExpiration" DATETIME NOT NULL,
    "maxShareSize" TEXT NOT NULL,
    "sendEmailNotification" BOOLEAN NOT NULL,
    "remainingUses" INTEGER NOT NULL,
    "creatorId" TEXT NOT NULL,
    CONSTRAINT "ReverseShare_creatorId_fkey" FOREIGN KEY ("creatorId") REFERENCES "User" ("id") ON DELETE CASCADE ON UPDATE CASCADE
 );
 INSERT INTO "new_ReverseShare" ("createdAt", "creatorId", "id", "maxShareSize", "sendEmailNotification", "shareExpiration", "token", "remainingUses") SELECT "createdAt", "creatorId", "id", "maxShareSize", "sendEmailNotification", "shareExpiration", "token", iif("ReverseShare".used, 0, 1) FROM "ReverseShare";
 DROP TABLE "ReverseShare";
 ALTER TABLE "new_ReverseShare" RENAME TO "ReverseShare";
 CREATE UNIQUE INDEX "ReverseShare_token_key" ON "ReverseShare"("token");
 PRAGMA foreign_key_check;
 PRAGMA foreign_keys=ON;
 -- CreateIndex
 CREATE UNIQUE INDEX "ResetPasswordToken_userId_key" ON "ResetPasswordToken"("userId");
--- a/backend/prisma/migrations/20230303091601_v0_11_0/migration.sql
+++ b/backend/prisma/migrations/20230303091601_v0_11_0/migration.sql
@@ -0,0 +1,94 @@
 /*
  Warnings:
  - The primary key for the `Config` table will be changed. If it partially fails, the table could be left without primary key constraint.
  - You are about to drop the column `key` on the `Config` table. All the data in the column will be lost.
  - Added the required column `name` to the `Config` table without a default value. This is not possible if the table is not empty.
 */
 -- RedefineTables
 PRAGMA foreign_keys=OFF;
 CREATE TABLE "new_Config" (
    "updatedAt" DATETIME NOT NULL,
    "name" TEXT NOT NULL,
    "category" TEXT NOT NULL,
    "type" TEXT NOT NULL,
    "value" TEXT NOT NULL,
    "description" TEXT NOT NULL,
    "obscured" BOOLEAN NOT NULL DEFAULT false,
    "secret" BOOLEAN NOT NULL DEFAULT true,
    "locked" BOOLEAN NOT NULL DEFAULT false,
    "order" INTEGER NOT NULL,
    PRIMARY KEY ("name", "category")
 );
 -- INSERT INTO "new_Config" ("category", "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value") SELECT "category", "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value" FROM "Config";
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'internal', 'jwtSecret', "description", "locked", "obscured", 0, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'JWT_SECRET';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'general', 'appUrl', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'APP_URL';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'general', 'showHomePage', "description", "locked", "obscured", 2, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SHOW_HOME_PAGE';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'share', 'allowRegistration', "description", "locked", "obscured", 0, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'ALLOW_REGISTRATION';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'share', 'allowUnauthenticatedShares', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'ALLOW_UNAUTHENTICATED_SHARES';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'share', 'maxSize', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'MAX_SHARE_SIZE';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'email', 'enableShareEmailRecipients', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'ENABLE_SHARE_EMAIL_RECIPIENTS';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'email', 'shareRecipientsSubject', "description", "locked", "obscured", 2, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SHARE_RECEPIENTS_EMAIL_SUBJECT';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'email', 'shareRecipientsMessage', "description", "locked", "obscured", 3, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SHARE_RECEPIENTS_EMAIL_MESSAGE';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'email', 'reverseShareSubject', "description", "locked", "obscured", 4, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'REVERSE_SHARE_EMAIL_SUBJECT';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'email', 'reverseShareMessage', "description", "locked", "obscured", 5, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'REVERSE_SHARE_EMAIL_MESSAGE';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'email', 'resetPasswordSubject', "description", "locked", "obscured", 6, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'RESET_PASSWORD_EMAIL_SUBJECT';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'email', 'resetPasswordMessage', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'RESET_PASSWORD_EMAIL_MESSAGE';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'smtp', 'enabled', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SMTP_ENABLED';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'smtp', 'host', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SMTP_HOST';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'smtp', 'port', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SMTP_PORT';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'smtp', 'email', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SMTP_EMAIL';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'smtp', 'username', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SMTP_USERNAME';
 INSERT INTO new_Config ("category", "name" , "description", "locked", "obscured", "order", "secret", "type", "updatedAt", "value")
 SELECT 'smtp', 'password', "description", "locked", "obscured", 1, "secret", "type", "updatedAt", "value" FROM Config WHERE key = 'SMTP_PASSWORD';
 DROP TABLE "Config";
 ALTER TABLE "new_Config" RENAME TO "Config";
 PRAGMA foreign_key_check;
 PRAGMA foreign_keys=ON;
--- a/backend/prisma/schema.prisma
+++ b/backend/prisma/schema.prisma
@@ -20,10 +20,12 @@ model User {
  shares        Share[]
  refreshTokens RefreshToken[]
  loginTokens   LoginToken[]
  reverseShares ReverseShare[]
-  totpEnabled  Boolean @default(false)
+  totpEnabled        Boolean             @default(false)
-  totpVerified Boolean @default(false)
+  totpVerified       Boolean             @default(false)
-  totpSecret   String?
+  totpSecret         String?
  resetPasswordToken ResetPasswordToken?
 }
 model RefreshToken {
@@ -48,23 +50,54 @@ model LoginToken {
  used   Boolean @default(false)
 }
 model ResetPasswordToken {
  token     String   @id @default(uuid())
  createdAt DateTime @default(now())
  expiresAt DateTime
  userId String @unique
  user   User   @relation(fields: [userId], references: [id], onDelete: Cascade)
 }
 model Share {
  id        String   @id @default(uuid())
  createdAt DateTime @default(now())
-  uploadLocked Boolean  @default(false)
+  uploadLocked  Boolean  @default(false)
-  isZipReady   Boolean  @default(false)
+  isZipReady    Boolean  @default(false)
-  views        Int      @default(0)
+  views         Int      @default(0)
-  expiration   DateTime
+  expiration    DateTime
-  description  String?
+  description   String?
  removedReason String?
  creatorId String?
  creator   User?   @relation(fields: [creatorId], references: [id], onDelete: Cascade)
  reverseShareId String?
  reverseShare   ReverseShare? @relation(fields: [reverseShareId], references: [id], onDelete: Cascade)
  creatorId  String?
  creator    User?            @relation(fields: [creatorId], references: [id], onDelete: Cascade)
  security   ShareSecurity?
  recipients ShareRecipient[]
  files      File[]
 }
 model ReverseShare {
  id        String   @id @default(uuid())
  createdAt DateTime @default(now())
  token                 String   @unique @default(uuid())
  shareExpiration       DateTime
  maxShareSize          String
  sendEmailNotification Boolean
  remainingUses         Int
  creatorId String
  creator   User   @relation(fields: [creatorId], references: [id], onDelete: Cascade)
  shares Share[]
 }
 model ShareRecipient {
  id    String @id @default(uuid())
  email String
@@ -98,12 +131,15 @@ model ShareSecurity {
 model Config {
  updatedAt DateTime @updatedAt
-  key         String  @id
+  name        String
  category    String
  type        String
  value       String
  description String
  category    String
  obscured    Boolean @default(false)
  secret      Boolean @default(true)
  locked      Boolean @default(false)
  order       Int
  @@id([name, category])
 }
--- a/backend/prisma/seed/config.seed.ts
+++ b/backend/prisma/seed/config.seed.ts
@@ -1,183 +1,244 @@
 import { Prisma, PrismaClient } from "@prisma/client";
 import * as crypto from "crypto";
-const configVariables: Prisma.ConfigCreateInput[] = [
+const configVariables: ConfigVariables = {
-  {
+  internal: {
-    key: "SETUP_FINISHED",
+    jwtSecret: {
-    description: "Whether the setup has been finished",
+      description: "Long random string used to sign JWT tokens",
-    type: "boolean",
+      type: "string",
-    value: "false",
+      value: crypto.randomBytes(256).toString("base64"),
-    category: "internal",
+      locked: true,
-    secret: false,
+    },
    locked: true,
  },
-  {
+  general: {
-    key: "APP_URL",
+    appName: {
-    description: "On which URL Pingvin Share is available",
+      description: "Name of the application",
-    type: "string",
+      type: "string",
-    value: "http://localhost:3000",
+      value: "Pingvin Share",
-    category: "general",
+      secret: false,
-    secret: false,
+    },
    appUrl: {
      description: "On which URL Pingvin Share is available",
      type: "string",
      value: "http://localhost:3000",
      secret: false,
    },
    showHomePage: {
      description: "Whether to show the home page",
      type: "boolean",
      value: "true",
      secret: false,
    },
  },
-  {
+  share: {
-    key: "SHOW_HOME_PAGE",
+    allowRegistration: {
-    description: "Whether to show the home page",
+      description: "Whether registration is allowed",
-    type: "boolean",
+      type: "boolean",
-    value: "true",
+      value: "true",
-    category: "general",
+
-    secret: false,
+      secret: false,
    },
    allowUnauthenticatedShares: {
      description: "Whether unauthorized users can create shares",
      type: "boolean",
      value: "false",
      secret: false,
    },
    maxSize: {
      description: "Maximum share size in bytes",
      type: "number",
      value: "1073741824",
      secret: false,
    },
  },
-  {
+  email: {
-    key: "ALLOW_REGISTRATION",
+    enableShareEmailRecipients: {
-    description: "Whether registration is allowed",
+      description:
-    type: "boolean",
+        "Whether to allow emails to share recipients. Only enable this if you have enabled SMTP.",
-    value: "true",
+      type: "boolean",
-    category: "share",
+      value: "false",
-    secret: false,
+
      secret: false,
    },
    shareRecipientsSubject: {
      description:
        "Subject of the email which gets sent to the share recipients.",
      type: "string",
      value: "Files shared with you",
    },
    shareRecipientsMessage: {
      description:
        "Message which gets sent to the share recipients. {creator} and {shareUrl} will be replaced with the creator's name and the share URL.",
      type: "text",
      value:
        "Hey!\n{creator} shared some files with you. View or download the files with this link: {shareUrl}\nShared securely with Pingvin Share 🐧",
    },
    reverseShareSubject: {
      description:
        "Subject of the email which gets sent when someone created a share with your reverse share link.",
      type: "string",
      value: "Reverse share link used",
    },
    reverseShareMessage: {
      description:
        "Message which gets sent when someone created a share with your reverse share link. {shareUrl} will be replaced with the creator's name and the share URL.",
      type: "text",
      value:
        "Hey!\nA share was just created with your reverse share link: {shareUrl}\nShared securely with Pingvin Share 🐧",
    },
    resetPasswordSubject: {
      description:
        "Subject of the email which gets sent when a user requests a password reset.",
      type: "string",
      value: "Pingvin Share password reset",
    },
    resetPasswordMessage: {
      description:
        "Message which gets sent when a user requests a password reset. {url} will be replaced with the reset password URL.",
      type: "text",
      value:
        "Hey!\nYou requested a password reset. Click this link to reset your password: {url}\nThe link expires in a hour.\nPingvin Share 🐧",
    },
    inviteSubject: {
      description:
        "Subject of the email which gets sent when an admin invites an user.",
      type: "string",
      value: "Pingvin Share invite",
    },
    inviteMessage: {
      description:
        "Message which gets sent when an admin invites an user. {url} will be replaced with the invite URL and {password} with the password.",
      type: "text",
      value:
        "Hey!\nYou were invited to Pingvin Share. Click this link to accept the invite: {url}\nYour password is: {password}\nPingvin Share 🐧",
    },
  },
-  {
+  smtp: {
-    key: "ALLOW_UNAUTHENTICATED_SHARES",
+    enabled: {
-    description: "Whether unauthorized users can create shares",
+      description:
-    type: "boolean",
+        "Whether SMTP is enabled. Only set this to true if you entered the host, port, email, user and password of your SMTP server.",
-    value: "false",
+      type: "boolean",
-    category: "share",
+      value: "false",
-    secret: false,
+      secret: false,
    },
    host: {
      description: "Host of the SMTP server",
      type: "string",
      value: "",
    },
    port: {
      description: "Port of the SMTP server",
      type: "number",
      value: "0",
    },
    email: {
      description: "Email address which the emails get sent from",
      type: "string",
      value: "",
    },
    username: {
      description: "Username of the SMTP server",
      type: "string",
      value: "",
    },
    password: {
      description: "Password of the SMTP server",
      type: "string",
      value: "",
      obscured: true,
    },
  },
-  {
+};
-    key: "MAX_SHARE_SIZE",
+
-    description: "Maximum share size in bytes",
+type ConfigVariables = {
-    type: "number",
+  [category: string]: {
-    value: "1073741824",
+    [variable: string]: Omit<
-    category: "share",
+      Prisma.ConfigCreateInput,
-    secret: false,
+      "name" | "category" | "order"
-  },
+    >;
-  {
+  };
-    key: "JWT_SECRET",
+};
    description: "Long random string used to sign JWT tokens",
    type: "string",
    value: crypto.randomBytes(256).toString("base64"),
    category: "internal",
    locked: true,
  },
  {
    key: "TOTP_SECRET",
    description: "A 16 byte random string used to generate TOTP secrets",
    type: "string",
    value: crypto.randomBytes(16).toString("base64"),
    category: "internal",
    locked: true,
  },
  {
    key: "ENABLE_EMAIL_RECIPIENTS",
    description:
      "Whether to send emails to recipients. Only set this to true if you entered the host, port, email, user and password of your SMTP server.",
    type: "boolean",
    value: "false",
    category: "email",
    secret: false,
  },
  {
    key: "EMAIL_MESSAGE",
    description:
      "Message which gets sent to the recipients. {creator} and {shareUrl} will be replaced with the creator's name and the share URL.",
    type: "text",
    value:
      "Hey!\n{creator} shared some files with you. View or download the files with this link: {shareUrl}\nShared securely with Pingvin Share 🐧",
      category: "email",
  },
  {
    key: "EMAIL_SUBJECT",
    description: "Subject of the email which gets sent to the recipients.",
    type: "string",
    value: "Files shared with you",
    category: "email",
  },
  {
    key: "SMTP_HOST",
    description: "Host of the SMTP server",
    type: "string",
    value: "",
  category: "email",
  },
  {
    key: "SMTP_PORT",
    description: "Port of the SMTP server",
    type: "number",
    value: "0",
    category: "email",
  },
  {
    key: "SMTP_EMAIL",
    description: "Email address which the emails get sent from",
    type: "string",
    value: "",
    category: "email",
  },
  {
    key: "SMTP_USERNAME",
    description: "Username of the SMTP server",
    type: "string",
    value: "",
    category: "email",
  },
  {
    key: "SMTP_PASSWORD",
    description: "Password of the SMTP server",
    type: "string",
    value: "",
    obscured: true,
    category: "email",
  },
 ];
 const prisma = new PrismaClient();
-async function main() {
+async function seedConfigVariables() {
-  for (const variable of configVariables) {
+  for (const [category, configVariablesOfCategory] of Object.entries(
-    const existingConfigVariable = await prisma.config.findUnique({
+    configVariables
-      where: { key: variable.key },
+  )) {
-    });
+    let order = 0;
-
+    for (const [name, properties] of Object.entries(
-    // Create a new config variable if it doesn't exist
+      configVariablesOfCategory
-    if (!existingConfigVariable) {
+    )) {
-      await prisma.config.create({
+      const existingConfigVariable = await prisma.config.findUnique({
-        data: variable,
+        where: { name_category: { name, category } },
      });
      // Create a new config variable if it doesn't exist
      if (!existingConfigVariable) {
        await prisma.config.create({
          data: {
            order,
            name,
            ...properties,
            category,
          },
        });
      }
      order++;
    }
  }
 }
-  const configVariablesFromDatabase = await prisma.config.findMany();
+async function migrateConfigVariables() {
  const existingConfigVariables = await prisma.config.findMany();
-  // Delete the config variable if it doesn't exist anymore
+  for (const existingConfigVariable of existingConfigVariables) {
-  for (const configVariableFromDatabase of configVariablesFromDatabase) {
+    const configVariable =
-    const configVariable = configVariables.find(
+      configVariables[existingConfigVariable.category]?.[
-      (v) => v.key == configVariableFromDatabase.key
+        existingConfigVariable.name
-    );
+      ];
    if (!configVariable) {
      await prisma.config.delete({
-        where: { key: configVariableFromDatabase.key },
+        where: {
          name_category: {
            name: existingConfigVariable.name,
            category: existingConfigVariable.category,
          },
        },
      });
      // Update the config variable if the metadata changed
    } else if (
      JSON.stringify({
        ...configVariable,
-        key: configVariableFromDatabase.key,
+        name: existingConfigVariable.name,
-        value: configVariableFromDatabase.value,
+        category: existingConfigVariable.category,
-      }) != JSON.stringify(configVariableFromDatabase)
+        value: existingConfigVariable.value,
      }) != JSON.stringify(existingConfigVariable)
    ) {
      await prisma.config.update({
-        where: { key: configVariableFromDatabase.key },
+        where: {
          name_category: {
            name: existingConfigVariable.name,
            category: existingConfigVariable.category,
          },
        },
        data: {
          ...configVariable,
-          key: configVariableFromDatabase.key,
+          name: existingConfigVariable.name,
-          value: configVariableFromDatabase.value,
+          category: existingConfigVariable.category,
          value: existingConfigVariable.value,
        },
      });
    }
  }
 }
-main()
+
 seedConfigVariables()
  .then(() => migrateConfigVariables())
  .then(async () => {
    await prisma.$disconnect();
  })
--- a/backend/src/app.module.ts
+++ b/backend/src/app.module.ts
@@ -12,6 +12,8 @@ import { JobsModule } from "./jobs/jobs.module";
 import { PrismaModule } from "./prisma/prisma.module";
 import { ShareModule } from "./share/share.module";
 import { UserModule } from "./user/user.module";
 import { ClamScanModule } from "./clamscan/clamscan.module";
 import { ReverseShareModule } from "./reverseShare/reverseShare.module";
@Module({
  imports: [
@@ -28,6 +30,8 @@ import { UserModule } from "./user/user.module";
      limit: 100,
    }),
    ScheduleModule.forRoot(),
    ClamScanModule,
    ReverseShareModule,
  ],
  providers: [
    {
--- a/backend/src/auth/auth.controller.ts
+++ b/backend/src/auth/auth.controller.ts
@@ -3,6 +3,7 @@ import {
  Controller,
  ForbiddenException,
  HttpCode,
  Param,
  Patch,
  Post,
  Req,
@@ -21,6 +22,8 @@ import { AuthRegisterDTO } from "./dto/authRegister.dto";
 import { AuthSignInDTO } from "./dto/authSignIn.dto";
 import { AuthSignInTotpDTO } from "./dto/authSignInTotp.dto";
 import { EnableTotpDTO } from "./dto/enableTotp.dto";
 import { ResetPasswordDTO } from "./dto/resetPassword.dto";
 import { TokenDTO } from "./dto/token.dto";
 import { UpdatePasswordDTO } from "./dto/updatePassword.dto";
 import { VerifyTotpDTO } from "./dto/verifyTotp.dto";
 import { JwtGuard } from "./guard/jwt.guard";
@@ -33,27 +36,28 @@ export class AuthController {
    private config: ConfigService
  ) {}
  @Throttle(10, 5 * 60)
  @Post("signUp")
  @Throttle(10, 5 * 60)
  async signUp(
    @Body() dto: AuthRegisterDTO,
    @Res({ passthrough: true }) response: Response
  ) {
-    if (!this.config.get("ALLOW_REGISTRATION"))
+    if (!this.config.get("share.allowRegistration"))
      throw new ForbiddenException("Registration is not allowed");
    const result = await this.authService.signUp(dto);
    response = this.addTokensToResponse(
      response,
-      result.accessToken,
+      result.refreshToken,
-      result.refreshToken
+      result.accessToken
    );
    return result;
  }
  @Throttle(10, 5 * 60)
  @Post("signIn")
  @Throttle(10, 5 * 60)
  @HttpCode(200)
  async signIn(
    @Body() dto: AuthSignInDTO,
@@ -64,16 +68,16 @@ export class AuthController {
    if (result.accessToken && result.refreshToken) {
      response = this.addTokensToResponse(
        response,
-        result.accessToken,
+        result.refreshToken,
-        result.refreshToken
+        result.accessToken
      );
    }
    return result;
  }
  @Throttle(10, 5 * 60)
  @Post("signIn/totp")
  @Throttle(10, 5 * 60)
  @HttpCode(200)
  async signInTotp(
    @Body() dto: AuthSignInTotpDTO,
@@ -83,17 +87,42 @@ export class AuthController {
    response = this.addTokensToResponse(
      response,
-      result.accessToken,
+      result.refreshToken,
-      result.refreshToken
+      result.accessToken
    );
-    return result;
+    return new TokenDTO().from(result);
  }
  @Post("resetPassword/:email")
  @Throttle(5, 5 * 60)
  @HttpCode(204)
  async requestResetPassword(@Param("email") email: string) {
    return await this.authService.requestResetPassword(email);
  }
  @Post("resetPassword")
  @Throttle(5, 5 * 60)
  @HttpCode(204)
  async resetPassword(@Body() dto: ResetPasswordDTO) {
    return await this.authService.resetPassword(dto.token, dto.password);
  }
  @Patch("password")
  @UseGuards(JwtGuard)
-  async updatePassword(@GetUser() user: User, @Body() dto: UpdatePasswordDTO) {
+  async updatePassword(
-    await this.authService.updatePassword(user, dto.oldPassword, dto.password);
+    @GetUser() user: User,
    @Res({ passthrough: true }) response: Response,
    @Body() dto: UpdatePasswordDTO
  ) {
    const result = await this.authService.updatePassword(
      user,
      dto.oldPassword,
      dto.password
    );
    response = this.addTokensToResponse(response, result.refreshToken);
    return new TokenDTO().from(result);
  }
  @Post("token")
@@ -107,8 +136,8 @@ export class AuthController {
    const accessToken = await this.authService.refreshAccessToken(
      request.cookies.refresh_token
    );
-    response.cookie("access_token", accessToken);
+    response = this.addTokensToResponse(response, undefined, accessToken);
-    return { accessToken };
+    return new TokenDTO().from({ accessToken });
  }
  @Post("signOut")
@@ -146,15 +175,18 @@ export class AuthController {
  private addTokensToResponse(
    response: Response,
-    accessToken: string,
+    refreshToken?: string,
-    refreshToken: string
+    accessToken?: string
  ) {
-    response.cookie("access_token", accessToken);
+    if (accessToken)
-    response.cookie("refresh_token", refreshToken, {
+      response.cookie("access_token", accessToken, { sameSite: "lax" });
-      path: "/api/auth/token",
+    if (refreshToken)
-      httpOnly: true,
+      response.cookie("refresh_token", refreshToken, {
-      maxAge: 1000 * 60 * 60 * 24 * 30 * 3,
+        path: "/api/auth/token",
-    });
+        httpOnly: true,
        sameSite: "strict",
        maxAge: 1000 * 60 * 60 * 24 * 30 * 3,
      });
    return response;
  }
--- a/backend/src/auth/auth.module.ts
+++ b/backend/src/auth/auth.module.ts
@@ -1,12 +1,13 @@
 import { Module } from "@nestjs/common";
 import { JwtModule } from "@nestjs/jwt";
 import { EmailModule } from "src/email/email.module";
 import { AuthController } from "./auth.controller";
 import { AuthService } from "./auth.service";
 import { AuthTotpService } from "./authTotp.service";
 import { JwtStrategy } from "./strategy/jwt.strategy";
@Module({
-  imports: [JwtModule.register({})],
+  imports: [JwtModule.register({}), EmailModule],
  controllers: [AuthController],
  providers: [AuthService, AuthTotpService, JwtStrategy],
  exports: [AuthService],
--- a/backend/src/auth/auth.service.ts
+++ b/backend/src/auth/auth.service.ts
@@ -6,10 +6,11 @@ import {
 } from "@nestjs/common";
 import { JwtService } from "@nestjs/jwt";
 import { User } from "@prisma/client";
-import { PrismaClientKnownRequestError } from "@prisma/client/runtime";
+import { PrismaClientKnownRequestError } from "@prisma/client/runtime/library";
 import * as argon from "argon2";
 import * as moment from "moment";
 import { ConfigService } from "src/config/config.service";
 import { EmailService } from "src/email/email.service";
 import { PrismaService } from "src/prisma/prisma.service";
 import { AuthRegisterDTO } from "./dto/authRegister.dto";
 import { AuthSignInDTO } from "./dto/authSignIn.dto";
@@ -19,10 +20,13 @@ export class AuthService {
  constructor(
    private prisma: PrismaService,
    private jwtService: JwtService,
-    private config: ConfigService
+    private config: ConfigService,
    private emailService: EmailService
  ) {}
  async signUp(dto: AuthRegisterDTO) {
    const isFirstUser = (await this.prisma.user.count()) == 0;
    const hash = await argon.hash(dto.password);
    try {
      const user = await this.prisma.user.create({
@@ -30,7 +34,7 @@ export class AuthService {
          email: dto.email,
          username: dto.username,
          password: hash,
-          isAdmin: !this.config.get("SETUP_FINISHED"),
+          isAdmin: isFirstUser,
        },
      });
@@ -81,16 +85,66 @@ export class AuthService {
    return { accessToken, refreshToken };
  }
  async requestResetPassword(email: string) {
    const user = await this.prisma.user.findFirst({
      where: { email },
      include: { resetPasswordToken: true },
    });
    if (!user) throw new BadRequestException("User not found");
    // Delete old reset password token
    if (user.resetPasswordToken) {
      await this.prisma.resetPasswordToken.delete({
        where: { token: user.resetPasswordToken.token },
      });
    }
    const { token } = await this.prisma.resetPasswordToken.create({
      data: {
        expiresAt: moment().add(1, "hour").toDate(),
        user: { connect: { id: user.id } },
      },
    });
    await this.emailService.sendResetPasswordEmail(user.email, token);
  }
  async resetPassword(token: string, newPassword: string) {
    const user = await this.prisma.user.findFirst({
      where: { resetPasswordToken: { token } },
    });
    if (!user) throw new BadRequestException("Token invalid or expired");
    const newPasswordHash = await argon.hash(newPassword);
    await this.prisma.resetPasswordToken.delete({
      where: { token },
    });
    await this.prisma.user.update({
      where: { id: user.id },
      data: { password: newPasswordHash },
    });
  }
  async updatePassword(user: User, oldPassword: string, newPassword: string) {
    if (!(await argon.verify(user.password, oldPassword)))
      throw new ForbiddenException("Invalid password");
    const hash = await argon.hash(newPassword);
-    this.prisma.user.update({
+    await this.prisma.refreshToken.deleteMany({
      where: { userId: user.id },
    });
    await this.prisma.user.update({
      where: { id: user.id },
      data: { password: hash },
    });
    return this.createRefreshToken(user.id);
  }
  async createAccessToken(user: User, refreshTokenId: string) {
@@ -98,21 +152,30 @@ export class AuthService {
      {
        sub: user.id,
        email: user.email,
        isAdmin: user.isAdmin,
        refreshTokenId,
      },
      {
        expiresIn: "15min",
-        secret: this.config.get("JWT_SECRET"),
+        secret: this.config.get("internal.jwtSecret"),
      }
    );
  }
  async signOut(accessToken: string) {
-    const { refreshTokenId } = this.jwtService.decode(accessToken) as {
+    const { refreshTokenId } =
-      refreshTokenId: string;
+      (this.jwtService.decode(accessToken) as {
-    };
+        refreshTokenId: string;
      }) || {};
-    await this.prisma.refreshToken.delete({ where: { id: refreshTokenId } });
+    if (refreshTokenId) {
      await this.prisma.refreshToken
        .delete({ where: { id: refreshTokenId } })
        .catch((e) => {
          // Ignore error if refresh token doesn't exist
          if (e.code != "P2025") throw e;
        });
    }
  }
  async refreshAccessToken(refreshToken: string) {
--- a/backend/src/auth/authTotp.service.ts
+++ b/backend/src/auth/authTotp.service.ts
@@ -6,7 +6,6 @@ import {
 } from "@nestjs/common";
 import { User } from "@prisma/client";
 import * as argon from "argon2";
 import * as crypto from "crypto";
 import { authenticator, totp } from "otplib";
 import * as qrcode from "qrcode-svg";
 import { ConfigService } from "src/config/config.service";
@@ -17,9 +16,9 @@ import { AuthSignInTotpDTO } from "./dto/authSignInTotp.dto";
@Injectable()
 export class AuthTotpService {
  constructor(
    private config: ConfigService,
    private prisma: PrismaService,
-    private authService: AuthService
+    private authService: AuthService,
    private config: ConfigService
  ) {}
  async signInTotp(dto: AuthSignInTotpDTO) {
@@ -45,7 +44,7 @@ export class AuthTotpService {
      throw new UnauthorizedException("Invalid login token");
    if (token.expiresAt < new Date())
-      throw new UnauthorizedException("Login token expired");
+      throw new UnauthorizedException("Login token expired", "token_expired");
    // Check the TOTP code
    const { totpSecret } = await this.prisma.user.findUnique({
@@ -57,9 +56,7 @@ export class AuthTotpService {
      throw new BadRequestException("TOTP is not enabled");
    }
-    const decryptedSecret = this.decryptTotpSecret(totpSecret, dto.password);
+    const expected = authenticator.generate(totpSecret);
    const expected = authenticator.generate(decryptedSecret);
    if (dto.totp !== expected) {
      throw new BadRequestException("Invalid code");
@@ -81,41 +78,6 @@ export class AuthTotpService {
    return { accessToken, refreshToken };
  }
  encryptTotpSecret(totpSecret: string, password: string) {
    let iv = this.config.get("TOTP_SECRET");
    iv = Buffer.from(iv, "base64");
    const key = crypto
      .createHash("sha256")
      .update(String(password))
      .digest("base64")
      .substr(0, 32);
    const cipher = crypto.createCipheriv("aes-256-cbc", key, iv);
    let encrypted = cipher.update(totpSecret);
    encrypted = Buffer.concat([encrypted, cipher.final()]);
    return encrypted.toString("base64");
  }
  decryptTotpSecret(encryptedTotpSecret: string, password: string) {
    let iv = this.config.get("TOTP_SECRET");
    iv = Buffer.from(iv, "base64");
    const key = crypto
      .createHash("sha256")
      .update(String(password))
      .digest("base64")
      .substr(0, 32);
    const encryptedText = Buffer.from(encryptedTotpSecret, "base64");
    const decipher = crypto.createDecipheriv("aes-256-cbc", key, iv);
    let decrypted = decipher.update(encryptedText);
    decrypted = Buffer.concat([decrypted, decipher.final()]);
    return decrypted.toString();
  }
  async enableTotp(user: User, password: string) {
    if (!(await argon.verify(user.password, password)))
      throw new ForbiddenException("Invalid password");
@@ -132,11 +94,10 @@ export class AuthTotpService {
    // TODO: Maybe make the issuer configurable with env vars?
    const secret = authenticator.generateSecret();
    const encryptedSecret = this.encryptTotpSecret(secret, password);
    const otpURL = totp.keyuri(
      user.username || user.email,
-      "pingvin-share",
+      this.config.get("general.appName"),
      secret
    );
@@ -144,7 +105,7 @@ export class AuthTotpService {
      where: { id: user.id },
      data: {
        totpEnabled: true,
-        totpSecret: encryptedSecret,
+        totpSecret: secret,
      },
    });
@@ -177,9 +138,7 @@ export class AuthTotpService {
      throw new BadRequestException("TOTP is not in progress");
    }
-    const decryptedSecret = this.decryptTotpSecret(totpSecret, password);
+    const expected = authenticator.generate(totpSecret);
    const expected = authenticator.generate(decryptedSecret);
    if (code !== expected) {
      throw new BadRequestException("Invalid code");
@@ -208,9 +167,7 @@ export class AuthTotpService {
      throw new BadRequestException("TOTP is not enabled");
    }
-    const decryptedSecret = this.decryptTotpSecret(totpSecret, password);
+    const expected = authenticator.generate(totpSecret);
    const expected = authenticator.generate(decryptedSecret);
    if (code !== expected) {
      throw new BadRequestException("Invalid code");
--- a/backend/src/auth/dto/authRegister.dto.ts
+++ b/backend/src/auth/dto/authRegister.dto.ts
@@ -1,4 +1,4 @@
-import { PickType } from "@nestjs/mapped-types";
+import { PickType } from "@nestjs/swagger";
 import { UserDTO } from "src/user/dto/user.dto";
 export class AuthRegisterDTO extends PickType(UserDTO, [
--- a/backend/src/auth/dto/authSignIn.dto.ts
+++ b/backend/src/auth/dto/authSignIn.dto.ts
@@ -1,4 +1,4 @@
-import { PickType } from "@nestjs/mapped-types";
+import { PickType } from "@nestjs/swagger";
 import { IsEmail, IsOptional, IsString } from "class-validator";
 import { UserDTO } from "src/user/dto/user.dto";
--- a/backend/src/auth/dto/authSignInTotp.dto.ts
+++ b/backend/src/auth/dto/authSignInTotp.dto.ts
@@ -1,18 +1,7 @@
-import { PickType } from "@nestjs/mapped-types";
+import { IsString } from "class-validator";
-import { IsEmail, IsOptional, IsString } from "class-validator";
+import { AuthSignInDTO } from "./authSignIn.dto";
 import { UserDTO } from "src/user/dto/user.dto";
 export class AuthSignInTotpDTO extends PickType(UserDTO, [
  "password",
 ] as const) {
  @IsEmail()
  @IsOptional()
  email: string;
  @IsString()
  @IsOptional()
  username: string;
 export class AuthSignInTotpDTO extends AuthSignInDTO {
  @IsString()
  totp: string;
--- a/backend/src/auth/dto/enableTotp.dto.ts
+++ b/backend/src/auth/dto/enableTotp.dto.ts
@@ -1,4 +1,4 @@
-import { PickType } from "@nestjs/mapped-types";
+import { PickType } from "@nestjs/swagger";
 import { UserDTO } from "src/user/dto/user.dto";
 export class EnableTotpDTO extends PickType(UserDTO, ["password"] as const) {}
--- a/backend/src/auth/dto/resetPassword.dto.ts
+++ b/backend/src/auth/dto/resetPassword.dto.ts
@@ -0,0 +1,8 @@
 import { PickType } from "@nestjs/swagger";
 import { IsString } from "class-validator";
 import { UserDTO } from "src/user/dto/user.dto";
 export class ResetPasswordDTO extends PickType(UserDTO, ["password"]) {
  @IsString()
  token: string;
 }
--- a/backend/src/auth/dto/token.dto.ts
+++ b/backend/src/auth/dto/token.dto.ts
@@ -0,0 +1,15 @@
 import { Expose, plainToClass } from "class-transformer";
 export class TokenDTO {
  @Expose()
  accessToken: string;
  @Expose()
  refreshToken: string;
  from(partial: Partial<TokenDTO>) {
    return plainToClass(TokenDTO, partial, {
      excludeExtraneousValues: true,
    });
  }
 }
--- a/backend/src/auth/dto/updatePassword.dto.ts
+++ b/backend/src/auth/dto/updatePassword.dto.ts
@@ -1,4 +1,4 @@
-import { PickType } from "@nestjs/mapped-types";
+import { PickType } from "@nestjs/swagger";
 import { IsString } from "class-validator";
 import { UserDTO } from "src/user/dto/user.dto";
--- a/backend/src/auth/dto/verifyTotp.dto.ts
+++ b/backend/src/auth/dto/verifyTotp.dto.ts
@@ -1,4 +1,4 @@
-import { PickType } from "@nestjs/mapped-types";
+import { PickType } from "@nestjs/swagger";
 import { IsString } from "class-validator";
 import { UserDTO } from "src/user/dto/user.dto";
--- a/backend/src/auth/guard/jwt.guard.ts
+++ b/backend/src/auth/guard/jwt.guard.ts
@@ -11,7 +11,7 @@ export class JwtGuard extends AuthGuard("jwt") {
    try {
      return (await super.canActivate(context)) as boolean;
    } catch {
-      return this.config.get("ALLOW_UNAUTHENTICATED_SHARES");
+      return this.config.get("share.allowUnauthenticatedShares");
    }
  }
 }
--- a/backend/src/auth/strategy/jwt.strategy.ts
+++ b/backend/src/auth/strategy/jwt.strategy.ts
@@ -9,10 +9,10 @@ import { PrismaService } from "src/prisma/prisma.service";
@Injectable()
 export class JwtStrategy extends PassportStrategy(Strategy) {
  constructor(config: ConfigService, private prisma: PrismaService) {
-    config.get("JWT_SECRET");
+    config.get("internal.jwtSecret");
    super({
      jwtFromRequest: JwtStrategy.extractJWT,
-      secretOrKey: config.get("JWT_SECRET"),
+      secretOrKey: config.get("internal.jwtSecret"),
    });
  }
--- a/backend/src/clamscan/clamscan.module.ts
+++ b/backend/src/clamscan/clamscan.module.ts
@@ -0,0 +1,10 @@
 import { forwardRef, Module } from "@nestjs/common";
 import { FileModule } from "src/file/file.module";
 import { ClamScanService } from "./clamscan.service";
@Module({
  imports: [forwardRef(() => FileModule)],
  providers: [ClamScanService],
  exports: [ClamScanService],
 })
 export class ClamScanModule {}
--- a/backend/src/clamscan/clamscan.service.ts
+++ b/backend/src/clamscan/clamscan.service.ts
@@ -0,0 +1,86 @@
 import { Injectable } from "@nestjs/common";
 import * as NodeClam from "clamscan";
 import * as fs from "fs";
 import { FileService } from "src/file/file.service";
 import { PrismaService } from "src/prisma/prisma.service";
 const clamscanConfig = {
  clamdscan: {
    host: process.env.NODE_ENV == "docker" ? "clamav" : "127.0.0.1",
    port: 3310,
    localFallback: false,
  },
  preference: "clamdscan",
 };
@Injectable()
 export class ClamScanService {
  constructor(
    private fileService: FileService,
    private prisma: PrismaService
  ) {}
  private ClamScan: Promise<NodeClam | null> = new NodeClam()
    .init(clamscanConfig)
    .then((res) => {
      console.log("ClamAV is active");
      return res;
    })
    .catch(() => {
      console.log("ClamAV is not active");
      return null;
    });
  async check(shareId: string) {
    const clamScan = await this.ClamScan;
    if (!clamScan) return [];
    const infectedFiles = [];
    const files = fs
      .readdirSync(`./data/uploads/shares/${shareId}`)
      .filter((file) => file != "archive.zip");
    for (const fileId of files) {
      const { isInfected } = await clamScan
        .isInfected(`./data/uploads/shares/${shareId}/${fileId}`)
        .catch(() => {
          console.log("ClamAV is not active");
          return { isInfected: false };
        });
      const fileName = (
        await this.prisma.file.findUnique({ where: { id: fileId } })
      ).name;
      if (isInfected) {
        infectedFiles.push({ id: fileId, name: fileName });
      }
    }
    return infectedFiles;
  }
  async checkAndRemove(shareId: string) {
    const infectedFiles = await this.check(shareId);
    if (infectedFiles.length > 0) {
      await this.fileService.deleteAllFiles(shareId);
      await this.prisma.file.deleteMany({ where: { shareId } });
      const fileNames = infectedFiles.map((file) => file.name).join(", ");
      await this.prisma.share.update({
        where: { id: shareId },
        data: {
          removedReason: `Your share got removed because the file(s) ${fileNames} are malicious.`,
        },
      });
      console.log(
        `Share ${shareId} deleted because it contained ${infectedFiles.length} malicious file(s)`
      );
    }
  }
 }
--- a/backend/src/config/config.controller.ts
+++ b/backend/src/config/config.controller.ts
@@ -1,4 +1,18 @@
-import { Body, Controller, Get, Patch, Post, UseGuards } from "@nestjs/common";
+import {
  Body,
  Controller,
  FileTypeValidator,
  Get,
  Param,
  ParseFilePipe,
  Patch,
  Post,
  UploadedFile,
  UseGuards,
  UseInterceptors,
 } from "@nestjs/common";
 import { FileInterceptor } from "@nestjs/platform-express";
 import { SkipThrottle } from "@nestjs/throttler";
 import { AdministratorGuard } from "src/auth/guard/isAdmin.guard";
 import { JwtGuard } from "src/auth/guard/jwt.guard";
 import { EmailService } from "src/email/email.service";
@@ -7,37 +21,36 @@ import { AdminConfigDTO } from "./dto/adminConfig.dto";
 import { ConfigDTO } from "./dto/config.dto";
 import { TestEmailDTO } from "./dto/testEmail.dto";
 import UpdateConfigDTO from "./dto/updateConfig.dto";
 import { LogoService } from "./logo.service";
@Controller("configs")
 export class ConfigController {
  constructor(
    private configService: ConfigService,
    private logoService: LogoService,
    private emailService: EmailService
  ) {}
  @Get()
  @SkipThrottle()
  async list() {
    return new ConfigDTO().fromList(await this.configService.list());
  }
-  @Get("admin")
+  @Get("admin/:category")
  @UseGuards(JwtGuard, AdministratorGuard)
-  async listForAdmin() {
+  async getByCategory(@Param("category") category: string) {
    return new AdminConfigDTO().fromList(
-      await this.configService.listForAdmin()
+      await this.configService.getByCategory(category)
    );
  }
  @Patch("admin")
  @UseGuards(JwtGuard, AdministratorGuard)
  async updateMany(@Body() data: UpdateConfigDTO[]) {
-    await this.configService.updateMany(data);
+    return new AdminConfigDTO().fromList(
-  }
+      await this.configService.updateMany(data)
-
+    );
  @Post("admin/finishSetup")
  @UseGuards(JwtGuard, AdministratorGuard)
  async finishSetup() {
    return await this.configService.finishSetup();
  }
  @Post("admin/testEmail")
@@ -45,4 +58,18 @@ export class ConfigController {
  async testEmail(@Body() { email }: TestEmailDTO) {
    await this.emailService.sendTestMail(email);
  }
  @Post("admin/logo")
  @UseInterceptors(FileInterceptor("file"))
  @UseGuards(JwtGuard, AdministratorGuard)
  async uploadLogo(
    @UploadedFile(
      new ParseFilePipe({
        validators: [new FileTypeValidator({ fileType: "image/png" })],
      })
    )
    file: Express.Multer.File
  ) {
    return await this.logoService.create(file.buffer);
  }
 }
--- a/backend/src/config/config.module.ts
+++ b/backend/src/config/config.module.ts
@@ -3,6 +3,7 @@ import { EmailModule } from "src/email/email.module";
 import { PrismaService } from "src/prisma/prisma.service";
 import { ConfigController } from "./config.controller";
 import { ConfigService } from "./config.service";
 import { LogoService } from "./logo.service";
@Global()
@Module({
@@ -16,6 +17,7 @@ import { ConfigService } from "./config.service";
      inject: [PrismaService],
    },
    ConfigService,
    LogoService,
  ],
  controllers: [ConfigController],
  exports: [ConfigService],
--- a/backend/src/config/config.service.ts
+++ b/backend/src/config/config.service.ts
@@ -14,9 +14,9 @@ export class ConfigService {
    private prisma: PrismaService
  ) {}
-  get(key: string): any {
+  get(key: `${string}.${string}`): any {
    const configVariable = this.configVariables.filter(
-      (variable) => variable.key == key
+      (variable) => `${variable.category}.${variable.name}` == key
    )[0];
    if (!configVariable) throw new Error(`Config variable ${key} not found`);
@@ -27,29 +27,51 @@ export class ConfigService {
      return configVariable.value;
  }
-  async listForAdmin() {
+  async getByCategory(category: string) {
-    return await this.prisma.config.findMany({
+    const configVariables = await this.prisma.config.findMany({
-      where: { locked: { equals: false } },
+      orderBy: { order: "asc" },
      where: { category, locked: { equals: false } },
    });
    return configVariables.map((variable) => {
      return {
        key: `${variable.category}.${variable.name}`,
        ...variable,
      };
    });
  }
  async list() {
-    return await this.prisma.config.findMany({
+    const configVariables = await this.prisma.config.findMany({
      where: { secret: { equals: false } },
    });
    return configVariables.map((variable) => {
      return {
        key: `${variable.category}.${variable.name}`,
        ...variable,
      };
    });
  }
  async updateMany(data: { key: string; value: string | number | boolean }[]) {
    const response: Config[] = [];
    for (const variable of data) {
-      await this.update(variable.key, variable.value);
+      response.push(await this.update(variable.key, variable.value));
    }
-    return data;
+    return response;
  }
  async update(key: string, value: string | number | boolean) {
    const configVariable = await this.prisma.config.findUnique({
-      where: { key },
+      where: {
        name_category: {
          category: key.split(".")[0],
          name: key.split(".")[1],
        },
      },
    });
    if (!configVariable || configVariable.locked)
@@ -66,7 +88,12 @@ export class ConfigService {
    }
    const updatedVariable = await this.prisma.config.update({
-      where: { key },
+      where: {
        name_category: {
          category: key.split(".")[0],
          name: key.split(".")[1],
        },
      },
      data: { value: value.toString() },
    });
@@ -74,11 +101,4 @@ export class ConfigService {
    return updatedVariable;
  }
  async finishSetup() {
    return await this.prisma.config.update({
      where: { key: "SETUP_FINISHED" },
      data: { value: "true" },
    });
  }
 }
--- a/backend/src/config/dto/adminConfig.dto.ts
+++ b/backend/src/config/dto/adminConfig.dto.ts
@@ -2,6 +2,9 @@ import { Expose, plainToClass } from "class-transformer";
 import { ConfigDTO } from "./config.dto";
 export class AdminConfigDTO extends ConfigDTO {
  @Expose()
  name: string;
  @Expose()
  secret: boolean;
@@ -14,9 +17,6 @@ export class AdminConfigDTO extends ConfigDTO {
  @Expose()
  obscured: boolean;
  @Expose()
  category: string;
  from(partial: Partial<AdminConfigDTO>) {
    return plainToClass(AdminConfigDTO, partial, {
      excludeExtraneousValues: true,
--- a/backend/src/config/logo.service.ts
+++ b/backend/src/config/logo.service.ts
@@ -0,0 +1,32 @@
 import { Injectable } from "@nestjs/common";
 import * as fs from "fs";
 import * as sharp from "sharp";
 const IMAGES_PATH = "../frontend/public/img";
@Injectable()
 export class LogoService {
  async create(file: Buffer) {
    fs.writeFileSync(`${IMAGES_PATH}/logo.png`, file, "binary");
    this.createFavicon(file);
    this.createPWAIcons(file);
  }
  async createFavicon(file: Buffer) {
    const resized = await sharp(file).resize(16).toBuffer();
    fs.promises.writeFile(`${IMAGES_PATH}/favicon.ico`, resized, "binary");
  }
  async createPWAIcons(file: Buffer) {
    const sizes = [48, 72, 96, 128, 144, 152, 192, 384, 512];
    for (const size of sizes) {
      const resized = await sharp(file).resize(size).toBuffer();
      fs.promises.writeFile(
        `${IMAGES_PATH}/icons/icon-${size}x${size}.png`,
        resized,
        "binary"
      );
    }
  }
 }
--- a/backend/src/email/email.service.ts
+++ b/backend/src/email/email.service.ts
@@ -1,4 +1,8 @@
-import { Injectable, InternalServerErrorException } from "@nestjs/common";
+import {
  Injectable,
  InternalServerErrorException,
  Logger,
 } from "@nestjs/common";
 import { User } from "@prisma/client";
 import * as nodemailer from "nodemailer";
 import { ConfigService } from "src/config/config.service";
@@ -6,43 +10,114 @@ import { ConfigService } from "src/config/config.service";
@Injectable()
 export class EmailService {
  constructor(private config: ConfigService) {}
  private readonly logger = new Logger(EmailService.name);
  getTransporter() {
    if (!this.config.get("smtp.enabled"))
      throw new InternalServerErrorException("SMTP is disabled");
    return nodemailer.createTransport({
-      host: this.config.get("SMTP_HOST"),
+      host: this.config.get("smtp.host"),
-      port: parseInt(this.config.get("SMTP_PORT")),
+      port: this.config.get("smtp.port"),
-      secure: parseInt(this.config.get("SMTP_PORT")) == 465,
+      secure: this.config.get("smtp.port") == 465,
      auth: {
-        user: this.config.get("SMTP_USERNAME"),
+        user: this.config.get("smtp.username"),
-        pass: this.config.get("SMTP_PASSWORD"),
+        pass: this.config.get("smtp.password"),
      },
    });
  }
-  async sendMail(recipientEmail: string, shareId: string, creator: User) {
+  private async sendMail(email: string, subject: string, text: string) {
-    if (!this.config.get("ENABLE_EMAIL_RECIPIENTS"))
+    await this.getTransporter()
      .sendMail({
        from: `"${this.config.get("general.appName")}" <${this.config.get(
          "smtp.email"
        )}>`,
        to: email,
        subject,
        text,
      })
      .catch((e) => {
        this.logger.error(e);
        throw new InternalServerErrorException("Failed to send email");
      });
  }
  async sendMailToShareRecepients(
    recipientEmail: string,
    shareId: string,
    creator?: User
  ) {
    if (!this.config.get("email.enableShareEmailRecipients"))
      throw new InternalServerErrorException("Email service disabled");
-    const shareUrl = `${this.config.get("APP_URL")}/share/${shareId}`;
+    const shareUrl = `${this.config.get("general.appUrl")}/share/${shareId}`;
-    await this.getTransporter().sendMail({
+    await this.sendMail(
-      from: `"Pingvin Share" <${this.config.get("SMTP_EMAIL")}>`,
+      recipientEmail,
-      to: recipientEmail,
+      this.config.get("email.shareRecipientsSubject"),
-      subject: this.config.get("EMAIL_SUBJECT"),
+      this.config
-      text: this.config
+        .get("email.shareRecipientsMessage")
        .get("EMAIL_MESSAGE")
        .replaceAll("\\n", "\n")
-        .replaceAll("{creator}", creator.username)
+        .replaceAll("{creator}", creator?.username ?? "Someone")
-        .replaceAll("{shareUrl}", shareUrl),
+        .replaceAll("{shareUrl}", shareUrl)
-    });
+    );
  }
  async sendMailToReverseShareCreator(recipientEmail: string, shareId: string) {
    const shareUrl = `${this.config.get("general.appUrl")}/share/${shareId}`;
    await this.sendMail(
      recipientEmail,
      this.config.get("email.reverseShareSubject"),
      this.config
        .get("email.reverseShareMessage")
        .replaceAll("\\n", "\n")
        .replaceAll("{shareUrl}", shareUrl)
    );
  }
  async sendResetPasswordEmail(recipientEmail: string, token: string) {
    const resetPasswordUrl = `${this.config.get(
      "general.appUrl"
    )}/auth/resetPassword/${token}`;
    await this.sendMail(
      recipientEmail,
      this.config.get("email.resetPasswordSubject"),
      this.config
        .get("email.resetPasswordMessage")
        .replaceAll("\\n", "\n")
        .replaceAll("{url}", resetPasswordUrl)
    );
  }
  async sendInviteEmail(recipientEmail: string, password: string) {
    const loginUrl = `${this.config.get("general.appUrl")}/auth/signIn`;
    await this.sendMail(
      recipientEmail,
      this.config.get("email.inviteSubject"),
      this.config
        .get("email.inviteMessage")
        .replaceAll("{url}", loginUrl)
        .replaceAll("{password}", password)
    );
  }
  async sendTestMail(recipientEmail: string) {
-    await this.getTransporter().sendMail({
+    await this.getTransporter()
-      from: `"Pingvin Share" <${this.config.get("SMTP_EMAIL")}>`,
+      .sendMail({
-      to: recipientEmail,
+        from: `"${this.config.get("general.appName")}" <${this.config.get(
-      subject: "Test email",
+          "smtp.email"
-      text: "This is a test email",
+        )}>`,
-    });
+        to: recipientEmail,
        subject: "Test email",
        text: "This is a test email",
      })
      .catch((e) => {
        this.logger.error(e);
        throw new InternalServerErrorException(e.message);
      });
  }
 }
--- a/backend/src/file/file.controller.ts
+++ b/backend/src/file/file.controller.ts
@@ -12,11 +12,10 @@ import {
 import { SkipThrottle } from "@nestjs/throttler";
 import * as contentDisposition from "content-disposition";
 import { Response } from "express";
-import { JwtGuard } from "src/auth/guard/jwt.guard";
+import { CreateShareGuard } from "src/share/guard/createShare.guard";
 import { FileDownloadGuard } from "src/file/guard/fileDownload.guard";
 import { ShareOwnerGuard } from "src/share/guard/shareOwner.guard";
 import { ShareSecurityGuard } from "src/share/guard/shareSecurity.guard";
 import { FileService } from "./file.service";
 import { FileSecurityGuard } from "./guard/fileSecurity.guard";
@Controller("shares/:shareId/files")
 export class FileController {
@@ -24,7 +23,7 @@ export class FileController {
  @Post()
  @SkipThrottle()
-  @UseGuards(JwtGuard, ShareOwnerGuard)
+  @UseGuards(CreateShareGuard, ShareOwnerGuard)
  async create(
    @Query() query: any,
@@ -43,30 +42,8 @@ export class FileController {
    );
  }
  @Get(":fileId/download")
  @UseGuards(ShareSecurityGuard)
  async getFileDownloadUrl(
    @Param("shareId") shareId: string,
    @Param("fileId") fileId: string
  ) {
    const url = this.fileService.getFileDownloadUrl(shareId, fileId);
    return { url };
  }
  @Get("zip/download")
  @UseGuards(ShareSecurityGuard)
  async getZipArchiveDownloadURL(
    @Param("shareId") shareId: string,
    @Param("fileId") fileId: string
  ) {
    const url = this.fileService.getFileDownloadUrl(shareId, fileId);
    return { url };
  }
  @Get("zip")
-  @UseGuards(FileDownloadGuard)
+  @UseGuards(FileSecurityGuard)
  async getZip(
    @Res({ passthrough: true }) res: Response,
    @Param("shareId") shareId: string
@@ -74,25 +51,32 @@ export class FileController {
    const zip = this.fileService.getZip(shareId);
    res.set({
      "Content-Type": "application/zip",
-      "Content-Disposition": `attachment ; filename="pingvin-share-${shareId}.zip"`,
+      "Content-Disposition": contentDisposition(`${shareId}.zip`),
    });
    return new StreamableFile(zip);
  }
  @Get(":fileId")
-  @UseGuards(FileDownloadGuard)
+  @UseGuards(FileSecurityGuard)
  async getFile(
    @Res({ passthrough: true }) res: Response,
    @Param("shareId") shareId: string,
-    @Param("fileId") fileId: string
+    @Param("fileId") fileId: string,
    @Query("download") download = "true"
  ) {
    const file = await this.fileService.get(shareId, fileId);
-    res.set({
+
    const headers = {
      "Content-Type": file.metaData.mimeType,
      "Content-Length": file.metaData.size,
-      "Content-Disposition": contentDisposition(file.metaData.name),
+    };
-    });
+
    if (download === "true") {
      headers["Content-Disposition"] = contentDisposition(file.metaData.name);
    }
    res.set(headers);
    return new StreamableFile(file.file);
  }
--- a/backend/src/file/file.module.ts
+++ b/backend/src/file/file.module.ts
@@ -1,11 +1,12 @@
 import { Module } from "@nestjs/common";
 import { JwtModule } from "@nestjs/jwt";
 import { ReverseShareModule } from "src/reverseShare/reverseShare.module";
 import { ShareModule } from "src/share/share.module";
 import { FileController } from "./file.controller";
 import { FileService } from "./file.service";
@Module({
-  imports: [JwtModule.register({}), ShareModule],
+  imports: [JwtModule.register({}), ReverseShareModule, ShareModule],
  controllers: [FileController],
  providers: [FileService],
  exports: [FileService],
--- a/backend/src/file/file.service.ts
+++ b/backend/src/file/file.service.ts
@@ -30,7 +30,7 @@ export class FileService {
    const share = await this.prisma.share.findUnique({
      where: { id: shareId },
-      include: { files: true },
+      include: { files: true, reverseShare: true },
    });
    if (share.uploadLocked)
@@ -64,9 +64,12 @@ export class FileService {
      0
    );
    const shareSizeSum = fileSizeSum + diskFileSize + buffer.byteLength;
    if (
-      fileSizeSum + diskFileSize + buffer.byteLength >
+      shareSizeSum > this.config.get("share.maxSize") ||
-      this.config.get("MAX_SHARE_SIZE")
+      (share.reverseShare?.maxShareSize &&
        shareSizeSum > parseInt(share.reverseShare.maxShareSize))
    ) {
      throw new HttpException(
        "Max share size exceeded",
@@ -132,38 +135,4 @@ export class FileService {
  getZip(shareId: string) {
    return fs.createReadStream(`./data/uploads/shares/${shareId}/archive.zip`);
  }
  getFileDownloadUrl(shareId: string, fileId: string) {
    const downloadToken = this.generateFileDownloadToken(shareId, fileId);
    return `${this.config.get(
      "APP_URL"
    )}/api/shares/${shareId}/files/${fileId}?token=${downloadToken}`;
  }
  generateFileDownloadToken(shareId: string, fileId: string) {
    if (fileId == "zip") fileId = undefined;
    return this.jwtService.sign(
      {
        shareId,
        fileId,
      },
      {
        expiresIn: "10min",
        secret: this.config.get("JWT_SECRET"),
      }
    );
  }
  verifyFileDownloadToken(shareId: string, token: string) {
    try {
      const claims = this.jwtService.verify(token, {
        secret: this.config.get("JWT_SECRET"),
      });
      return claims.shareId == shareId;
    } catch {
      return false;
    }
  }
 }
--- a/backend/src/file/guard/fileDownload.guard.ts
+++ b/backend/src/file/guard/fileDownload.guard.ts
@@ -1,17 +0,0 @@
 import { CanActivate, ExecutionContext, Injectable } from "@nestjs/common";
 import { Request } from "express";
 import { FileService } from "src/file/file.service";
@Injectable()
 export class FileDownloadGuard implements CanActivate {
  constructor(private fileService: FileService) {}
  async canActivate(context: ExecutionContext) {
    const request: Request = context.switchToHttp().getRequest();
    const token = request.query.token as string;
    const { shareId } = request.params;
    return this.fileService.verifyFileDownloadToken(shareId, token);
  }
 }
--- a/backend/src/file/guard/fileSecurity.guard.ts
+++ b/backend/src/file/guard/fileSecurity.guard.ts
@@ -0,0 +1,65 @@
 import {
  ExecutionContext,
  ForbiddenException,
  Injectable,
  NotFoundException,
 } from "@nestjs/common";
 import { Request } from "express";
 import * as moment from "moment";
 import { PrismaService } from "src/prisma/prisma.service";
 import { ShareSecurityGuard } from "src/share/guard/shareSecurity.guard";
 import { ShareService } from "src/share/share.service";
@Injectable()
 export class FileSecurityGuard extends ShareSecurityGuard {
  constructor(
    private _shareService: ShareService,
    private _prisma: PrismaService
  ) {
    super(_shareService, _prisma);
  }
  async canActivate(context: ExecutionContext) {
    const request: Request = context.switchToHttp().getRequest();
    const shareId = Object.prototype.hasOwnProperty.call(
      request.params,
      "shareId"
    )
      ? request.params.shareId
      : request.params.id;
    const shareToken = request.cookies[`share_${shareId}_token`];
    const share = await this._prisma.share.findUnique({
      where: { id: shareId },
      include: { security: true },
    });
    // If there is no share token the user requests a file directly
    if (!shareToken) {
      if (
        !share ||
        (moment().isAfter(share.expiration) &&
          !moment(share.expiration).isSame(0))
      ) {
        throw new NotFoundException("File not found");
      }
      if (share.security?.password)
        throw new ForbiddenException("This share is password protected");
      if (share.security?.maxViews && share.security.maxViews <= share.views) {
        throw new ForbiddenException(
          "Maximum views exceeded",
          "share_max_views_exceeded"
        );
      }
      await this._shareService.increaseViewCount(share);
      return true;
    } else {
      return super.canActivate(context);
    }
  }
 }
--- a/backend/src/jobs/jobs.module.ts
+++ b/backend/src/jobs/jobs.module.ts
@@ -1,9 +1,10 @@
 import { Module } from "@nestjs/common";
 import { FileModule } from "src/file/file.module";
 import { ReverseShareModule } from "src/reverseShare/reverseShare.module";
 import { JobsService } from "./jobs.service";
@Module({
-  imports: [FileModule],
+  imports: [FileModule, ReverseShareModule],
  providers: [JobsService],
 })
 export class JobsModule {}
--- a/backend/src/jobs/jobs.service.ts
+++ b/backend/src/jobs/jobs.service.ts
@@ -4,11 +4,13 @@ import * as fs from "fs";
 import * as moment from "moment";
 import { FileService } from "src/file/file.service";
 import { PrismaService } from "src/prisma/prisma.service";
 import { ReverseShareService } from "src/reverseShare/reverseShare.service";
@Injectable()
 export class JobsService {
  constructor(
    private prisma: PrismaService,
    private reverseShareService: ReverseShareService,
    private fileService: FileService
  ) {}
@@ -36,6 +38,24 @@ export class JobsService {
      console.log(`job: deleted ${expiredShares.length} expired shares`);
  }
  @Cron("0 * * * *")
  async deleteExpiredReverseShares() {
    const expiredReverseShares = await this.prisma.reverseShare.findMany({
      where: {
        shareExpiration: { lt: new Date() },
      },
    });
    for (const expiredReverseShare of expiredReverseShares) {
      await this.reverseShareService.remove(expiredReverseShare.id);
    }
    if (expiredReverseShares.length > 0)
      console.log(
        `job: deleted ${expiredReverseShares.length} expired reverse shares`
      );
  }
  @Cron("0 0 * * *")
  deleteTemporaryFiles() {
    let filesDeleted = 0;
@@ -69,14 +89,25 @@ export class JobsService {
  }
  @Cron("0 * * * *")
-  async deleteExpiredRefreshTokens() {
+  async deleteExpiredTokens() {
-    const expiredRefreshTokens = await this.prisma.refreshToken.deleteMany({
+    const { count: refreshTokenCount } =
      await this.prisma.refreshToken.deleteMany({
        where: { expiresAt: { lt: new Date() } },
      });
    const { count: loginTokenCount } = await this.prisma.loginToken.deleteMany({
      where: { expiresAt: { lt: new Date() } },
    });
-    if (expiredRefreshTokens.count > 0)
+    const { count: resetPasswordTokenCount } =
-      console.log(
+      await this.prisma.resetPasswordToken.deleteMany({
-        `job: deleted ${expiredRefreshTokens.count} expired refresh tokens`
+        where: { expiresAt: { lt: new Date() } },
-      );
+      });
    const deletedTokensCount =
      refreshTokenCount + loginTokenCount + resetPasswordTokenCount;
    if (deletedTokensCount > 0)
      console.log(`job: deleted ${deletedTokensCount} expired refresh tokens`);
  }
 }
--- a/backend/src/main.ts
+++ b/backend/src/main.ts
@@ -1,6 +1,7 @@
 import { ClassSerializerInterceptor, ValidationPipe } from "@nestjs/common";
 import { NestFactory, Reflector } from "@nestjs/core";
 import { NestExpressApplication } from "@nestjs/platform-express";
 import { DocumentBuilder, SwaggerModule } from "@nestjs/swagger";
 import * as bodyParser from "body-parser";
 import * as cookieParser from "cookie-parser";
 import * as fs from "fs";
@@ -11,13 +12,24 @@ async function bootstrap() {
  app.useGlobalPipes(new ValidationPipe({ whitelist: true }));
  app.useGlobalInterceptors(new ClassSerializerInterceptor(app.get(Reflector)));
-  app.use(bodyParser.raw({type:'application/octet-stream', limit:'20mb'}));
+  app.use(bodyParser.raw({ type: "application/octet-stream", limit: "20mb" }));
  app.use(cookieParser());
  app.set("trust proxy", true);
  await fs.promises.mkdir("./data/uploads/_temp", { recursive: true });
  app.setGlobalPrefix("api");
  // Setup Swagger in development mode
  if (process.env.NODE_ENV == "development") {
    const config = new DocumentBuilder()
      .setTitle("Pingvin Share API")
      .setVersion("1.0")
      .build();
    const document = SwaggerModule.createDocument(app, config);
    SwaggerModule.setup("api/swagger", app, document);
  }
  await app.listen(8080);
 }
 bootstrap();
--- a/backend/src/reverseShare/dto/createReverseShare.dto.ts
+++ b/backend/src/reverseShare/dto/createReverseShare.dto.ts
@@ -0,0 +1,16 @@
 import { IsBoolean, IsString, Max, Min } from "class-validator";
 export class CreateReverseShareDTO {
  @IsBoolean()
  sendEmailNotification: boolean;
  @IsString()
  maxShareSize: string;
  @IsString()
  shareExpiration: string;
  @Min(1)
  @Max(1000)
  maxUseCount: number;
 }
--- a/backend/src/reverseShare/dto/reverseShare.dto.ts
+++ b/backend/src/reverseShare/dto/reverseShare.dto.ts
@@ -0,0 +1,18 @@
 import { Expose, plainToClass } from "class-transformer";
 export class ReverseShareDTO {
  @Expose()
  id: string;
  @Expose()
  maxShareSize: string;
  @Expose()
  shareExpiration: Date;
  from(partial: Partial<ReverseShareDTO>) {
    return plainToClass(ReverseShareDTO, partial, {
      excludeExtraneousValues: true,
    });
  }
 }
--- a/backend/src/reverseShare/dto/reverseShareTokenWithShares.ts
+++ b/backend/src/reverseShare/dto/reverseShareTokenWithShares.ts
@@ -0,0 +1,29 @@
 import { OmitType } from "@nestjs/swagger";
 import { Expose, plainToClass, Type } from "class-transformer";
 import { MyShareDTO } from "src/share/dto/myShare.dto";
 import { ReverseShareDTO } from "./reverseShare.dto";
 export class ReverseShareTokenWithShares extends OmitType(ReverseShareDTO, [
  "shareExpiration",
 ] as const) {
  @Expose()
  shareExpiration: Date;
  @Expose()
  @Type(() => OmitType(MyShareDTO, ["recipients", "hasPassword"] as const))
  shares: Omit<
    MyShareDTO,
    "recipients" | "files" | "from" | "fromList" | "hasPassword"
  >[];
  @Expose()
  remainingUses: number;
  fromList(partial: Partial<ReverseShareTokenWithShares>[]) {
    return partial.map((part) =>
      plainToClass(ReverseShareTokenWithShares, part, {
        excludeExtraneousValues: true,
      })
    );
  }
 }
--- a/backend/src/reverseShare/guards/reverseShareOwner.guard.ts
+++ b/backend/src/reverseShare/guards/reverseShareOwner.guard.ts
@@ -0,0 +1,22 @@
 import { CanActivate, ExecutionContext, Injectable } from "@nestjs/common";
 import { User } from "@prisma/client";
 import { Request } from "express";
 import { PrismaService } from "src/prisma/prisma.service";
@Injectable()
 export class ReverseShareOwnerGuard implements CanActivate {
  constructor(private prisma: PrismaService) {}
  async canActivate(context: ExecutionContext) {
    const request: Request = context.switchToHttp().getRequest();
    const { reverseShareId } = request.params;
    const reverseShare = await this.prisma.reverseShare.findUnique({
      where: { id: reverseShareId },
    });
    if (!reverseShare) return false;
    return reverseShare.creatorId == (request.user as User).id;
  }
 }
--- a/backend/src/reverseShare/reverseShare.controller.ts
+++ b/backend/src/reverseShare/reverseShare.controller.ts
@@ -0,0 +1,64 @@
 import {
  Body,
  Controller,
  Delete,
  Get,
  NotFoundException,
  Param,
  Post,
  UseGuards,
 } from "@nestjs/common";
 import { Throttle } from "@nestjs/throttler";
 import { User } from "@prisma/client";
 import { GetUser } from "src/auth/decorator/getUser.decorator";
 import { JwtGuard } from "src/auth/guard/jwt.guard";
 import { ConfigService } from "src/config/config.service";
 import { CreateReverseShareDTO } from "./dto/createReverseShare.dto";
 import { ReverseShareDTO } from "./dto/reverseShare.dto";
 import { ReverseShareTokenWithShares } from "./dto/reverseShareTokenWithShares";
 import { ReverseShareOwnerGuard } from "./guards/reverseShareOwner.guard";
 import { ReverseShareService } from "./reverseShare.service";
@Controller("reverseShares")
 export class ReverseShareController {
  constructor(
    private reverseShareService: ReverseShareService,
    private config: ConfigService
  ) {}
  @Post()
  @UseGuards(JwtGuard)
  async create(@Body() body: CreateReverseShareDTO, @GetUser() user: User) {
    const token = await this.reverseShareService.create(body, user.id);
    const link = `${this.config.get("general.appUrl")}/upload/${token}`;
    return { token, link };
  }
  @Throttle(20, 60)
  @Get(":reverseShareToken")
  async getByToken(@Param("reverseShareToken") reverseShareToken: string) {
    const isValid = await this.reverseShareService.isValid(reverseShareToken);
    if (!isValid) throw new NotFoundException("Reverse share token not found");
    return new ReverseShareDTO().from(
      await this.reverseShareService.getByToken(reverseShareToken)
    );
  }
  @Get()
  @UseGuards(JwtGuard)
  async getAllByUser(@GetUser() user: User) {
    return new ReverseShareTokenWithShares().fromList(
      await this.reverseShareService.getAllByUser(user.id)
    );
  }
  @Delete(":reverseShareId")
  @UseGuards(JwtGuard, ReverseShareOwnerGuard)
  async remove(@Param("reverseShareId") id: string) {
    await this.reverseShareService.remove(id);
  }
 }
--- a/backend/src/reverseShare/reverseShare.module.ts
+++ b/backend/src/reverseShare/reverseShare.module.ts
@@ -0,0 +1,12 @@
 import { forwardRef, Module } from "@nestjs/common";
 import { FileModule } from "src/file/file.module";
 import { ReverseShareController } from "./reverseShare.controller";
 import { ReverseShareService } from "./reverseShare.service";
@Module({
  imports: [forwardRef(() => FileModule)],
  controllers: [ReverseShareController],
  providers: [ReverseShareService],
  exports: [ReverseShareService],
 })
 export class ReverseShareModule {}
--- a/backend/src/reverseShare/reverseShare.service.ts
+++ b/backend/src/reverseShare/reverseShare.service.ts
@@ -0,0 +1,97 @@
 import { BadRequestException, Injectable } from "@nestjs/common";
 import * as moment from "moment";
 import { ConfigService } from "src/config/config.service";
 import { FileService } from "src/file/file.service";
 import { PrismaService } from "src/prisma/prisma.service";
 import { CreateReverseShareDTO } from "./dto/createReverseShare.dto";
@Injectable()
 export class ReverseShareService {
  constructor(
    private config: ConfigService,
    private prisma: PrismaService,
    private fileService: FileService
  ) {}
  async create(data: CreateReverseShareDTO, creatorId: string) {
    // Parse date string to date
    const expirationDate = moment()
      .add(
        data.shareExpiration.split("-")[0],
        data.shareExpiration.split(
          "-"
        )[1] as moment.unitOfTime.DurationConstructor
      )
      .toDate();
    const globalMaxShareSize = this.config.get("share.maxSize");
    if (globalMaxShareSize < data.maxShareSize)
      throw new BadRequestException(
        `Max share size can't be greater than ${globalMaxShareSize} bytes.`
      );
    const reverseShare = await this.prisma.reverseShare.create({
      data: {
        shareExpiration: expirationDate,
        remainingUses: data.maxUseCount,
        maxShareSize: data.maxShareSize,
        sendEmailNotification: data.sendEmailNotification,
        creatorId,
      },
    });
    return reverseShare.token;
  }
  async getByToken(reverseShareToken?: string) {
    if (!reverseShareToken) return null;
    const reverseShare = await this.prisma.reverseShare.findUnique({
      where: { token: reverseShareToken },
    });
    return reverseShare;
  }
  async getAllByUser(userId: string) {
    const reverseShares = await this.prisma.reverseShare.findMany({
      where: {
        creatorId: userId,
        shareExpiration: { gt: new Date() },
      },
      orderBy: {
        shareExpiration: "desc",
      },
      include: { shares: { include: { creator: true } } },
    });
    return reverseShares;
  }
  async isValid(reverseShareToken: string) {
    const reverseShare = await this.prisma.reverseShare.findUnique({
      where: { token: reverseShareToken },
    });
    if (!reverseShare) return false;
    const isExpired = new Date() > reverseShare.shareExpiration;
    const remainingUsesExceeded = reverseShare.remainingUses <= 0;
    return !(isExpired || remainingUsesExceeded);
  }
  async remove(id: string) {
    const shares = await this.prisma.share.findMany({
      where: { reverseShare: { id } },
    });
    for (const share of shares) {
      await this.prisma.share.delete({ where: { id: share.id } });
      await this.fileService.deleteAllFiles(share.id);
    }
    await this.prisma.reverseShare.delete({ where: { id } });
  }
 }
--- a/backend/src/share/dto/share.dto.ts
+++ b/backend/src/share/dto/share.dto.ts
@@ -20,6 +20,9 @@ export class ShareDTO {
  @Expose()
  description: string;
  @Expose()
  hasPassword: boolean;
  from(partial: Partial<ShareDTO>) {
    return plainToClass(ShareDTO, partial, { excludeExtraneousValues: true });
  }
--- a/backend/src/share/guard/createShare.guard.ts
+++ b/backend/src/share/guard/createShare.guard.ts
@@ -0,0 +1,29 @@
 import { ExecutionContext, Injectable } from "@nestjs/common";
 import { JwtGuard } from "src/auth/guard/jwt.guard";
 import { ConfigService } from "src/config/config.service";
 import { ReverseShareService } from "src/reverseShare/reverseShare.service";
@Injectable()
 export class CreateShareGuard extends JwtGuard {
  constructor(
    configService: ConfigService,
    private reverseShareService: ReverseShareService
  ) {
    super(configService);
  }
  async canActivate(context: ExecutionContext): Promise<boolean> {
    if (await super.canActivate(context)) return true;
    const reverseShareTokenId = context.switchToHttp().getRequest()
      .cookies.reverse_share_token;
    if (!reverseShareTokenId) return false;
    const isReverseShareTokenValid = await this.reverseShareService.isValid(
      reverseShareTokenId
    );
    return isReverseShareTokenValid;
  }
 }
--- a/backend/src/share/guard/shareSecurity.guard.ts
+++ b/backend/src/share/guard/shareSecurity.guard.ts
@@ -5,7 +5,6 @@ import {
  Injectable,
  NotFoundException,
 } from "@nestjs/common";
 import { Reflector } from "@nestjs/core";
 import { Request } from "express";
 import * as moment from "moment";
 import { PrismaService } from "src/prisma/prisma.service";
@@ -14,14 +13,13 @@ import { ShareService } from "src/share/share.service";
@Injectable()
 export class ShareSecurityGuard implements CanActivate {
  constructor(
    private reflector: Reflector,
    private shareService: ShareService,
    private prisma: PrismaService
  ) {}
  async canActivate(context: ExecutionContext) {
    const request: Request = context.switchToHttp().getRequest();
-    const shareToken = request.get("X-Share-Token");
+
    const shareId = Object.prototype.hasOwnProperty.call(
      request.params,
      "shareId"
@@ -29,6 +27,8 @@ export class ShareSecurityGuard implements CanActivate {
      ? request.params.shareId
      : request.params.id;
    const shareToken = request.cookies[`share_${shareId}_token`];
    const share = await this.prisma.share.findUnique({
      where: { id: shareId },
      include: { security: true },
@@ -37,7 +37,7 @@ export class ShareSecurityGuard implements CanActivate {
    if (
      !share ||
      (moment().isAfter(share.expiration) &&
-        moment(share.expiration).unix() !== 0)
+        !moment(share.expiration).isSame(0))
    )
      throw new NotFoundException("Share not found");
--- a/backend/src/share/guard/shareTokenSecurity.guard.ts
+++ b/backend/src/share/guard/shareTokenSecurity.guard.ts
@@ -1,7 +1,6 @@
 import {
  CanActivate,
  ExecutionContext,
  ForbiddenException,
  Injectable,
  NotFoundException,
 } from "@nestjs/common";
@@ -34,12 +33,6 @@ export class ShareTokenSecurity implements CanActivate {
    )
      throw new NotFoundException("Share not found");
    if (share.security?.maxViews && share.security.maxViews <= share.views)
      throw new ForbiddenException(
        "Maximum views exceeded",
        "share_max_views_exceeded"
      );
    return true;
  }
 }
--- a/backend/src/share/share.controller.ts
+++ b/backend/src/share/share.controller.ts
@@ -6,10 +6,13 @@ import {
  HttpCode,
  Param,
  Post,
  Req,
  Res,
  UseGuards,
 } from "@nestjs/common";
 import { Throttle } from "@nestjs/throttler";
 import { User } from "@prisma/client";
 import { Request, Response } from "express";
 import { GetUser } from "src/auth/decorator/getUser.decorator";
 import { JwtGuard } from "src/auth/guard/jwt.guard";
 import { CreateShareDTO } from "./dto/createShare.dto";
@@ -17,6 +20,7 @@ import { MyShareDTO } from "./dto/myShare.dto";
 import { ShareDTO } from "./dto/share.dto";
 import { ShareMetaDataDTO } from "./dto/shareMetaData.dto";
 import { SharePasswordDto } from "./dto/sharePassword.dto";
 import { CreateShareGuard } from "./guard/createShare.guard";
 import { ShareOwnerGuard } from "./guard/shareOwner.guard";
 import { ShareSecurityGuard } from "./guard/shareSecurity.guard";
 import { ShareTokenSecurity } from "./guard/shareTokenSecurity.guard";
@@ -46,9 +50,16 @@ export class ShareController {
  }
  @Post()
-  @UseGuards(JwtGuard)
+  @UseGuards(CreateShareGuard)
-  async create(@Body() body: CreateShareDTO, @GetUser() user: User) {
+  async create(
-    return new ShareDTO().from(await this.shareService.create(body, user));
+    @Body() body: CreateShareDTO,
    @Req() request: Request,
    @GetUser() user: User
  ) {
    const { reverse_share_token } = request.cookies;
    return new ShareDTO().from(
      await this.shareService.create(body, user, reverse_share_token)
    );
  }
  @Delete(":id")
@@ -59,21 +70,35 @@ export class ShareController {
  @Post(":id/complete")
  @HttpCode(202)
-  @UseGuards(JwtGuard, ShareOwnerGuard)
+  @UseGuards(CreateShareGuard, ShareOwnerGuard)
-  async complete(@Param("id") id: string) {
+  async complete(@Param("id") id: string, @Req() request: Request) {
-    return new ShareDTO().from(await this.shareService.complete(id));
+    const { reverse_share_token } = request.cookies;
    return new ShareDTO().from(
      await this.shareService.complete(id, reverse_share_token)
    );
  }
  @Throttle(10, 60)
  @Get("isShareIdAvailable/:id")
  async isShareIdAvailable(@Param("id") id: string) {
    return this.shareService.isShareIdAvailable(id);
  }
  @HttpCode(200)
-  @Throttle(10, 5 * 60)
+  @Throttle(20, 5 * 60)
  @UseGuards(ShareTokenSecurity)
  @Post(":id/token")
-  async getShareToken(@Param("id") id: string, @Body() body: SharePasswordDto) {
+  async getShareToken(
-    return this.shareService.getShareToken(id, body.password);
+    @Param("id") id: string,
    @Res({ passthrough: true }) response: Response,
    @Body() body: SharePasswordDto
  ) {
    const token = await this.shareService.getShareToken(id, body.password);
    response.cookie(`share_${id}_token`, token, {
      path: "/",
      httpOnly: true,
    });
    return { token };
  }
 }
--- a/backend/src/share/share.module.ts
+++ b/backend/src/share/share.module.ts
@@ -1,12 +1,20 @@
 import { forwardRef, Module } from "@nestjs/common";
 import { JwtModule } from "@nestjs/jwt";
 import { ClamScanModule } from "src/clamscan/clamscan.module";
 import { EmailModule } from "src/email/email.module";
 import { FileModule } from "src/file/file.module";
 import { ReverseShareModule } from "src/reverseShare/reverseShare.module";
 import { ShareController } from "./share.controller";
 import { ShareService } from "./share.service";
@Module({
-  imports: [JwtModule.register({}), EmailModule, forwardRef(() => FileModule)],
+  imports: [
    JwtModule.register({}),
    EmailModule,
    ClamScanModule,
    ReverseShareModule,
    forwardRef(() => FileModule),
  ],
  controllers: [ShareController],
  providers: [ShareService],
  exports: [ShareService],
--- a/backend/src/share/share.service.ts
+++ b/backend/src/share/share.service.ts
@@ -10,10 +10,12 @@ import * as archiver from "archiver";
 import * as argon from "argon2";
 import * as fs from "fs";
 import * as moment from "moment";
 import { ClamScanService } from "src/clamscan/clamscan.service";
 import { ConfigService } from "src/config/config.service";
 import { EmailService } from "src/email/email.service";
 import { FileService } from "src/file/file.service";
 import { PrismaService } from "src/prisma/prisma.service";
 import { ReverseShareService } from "src/reverseShare/reverseShare.service";
 import { CreateShareDTO } from "./dto/createShare.dto";
@Injectable()
@@ -23,10 +25,12 @@ export class ShareService {
    private fileService: FileService,
    private emailService: EmailService,
    private config: ConfigService,
-    private jwtService: JwtService
+    private jwtService: JwtService,
    private reverseShareService: ReverseShareService,
    private clamScanService: ClamScanService
  ) {}
-  async create(share: CreateShareDTO, user?: User) {
+  async create(share: CreateShareDTO, user?: User, reverseShareToken?: string) {
    if (!(await this.isShareIdAvailable(share.id)).isAvailable)
      throw new BadRequestException("Share id already in use");
@@ -37,30 +41,35 @@ export class ShareService {
      share.security.password = await argon.hash(share.security.password);
    }
    // We have to add an exception for "never" (since moment won't like that)
    let expirationDate: Date;
    if (share.expiration !== "never") {
      expirationDate = moment()
        .add(
          share.expiration.split("-")[0],
          share.expiration.split(
            "-"
          )[1] as moment.unitOfTime.DurationConstructor
        )
        .toDate();
-      // Throw error if expiration date is now
+    // If share is created by a reverse share token override the expiration date
-      if (expirationDate.setMilliseconds(0) == new Date().setMilliseconds(0))
+    const reverseShare = await this.reverseShareService.getByToken(
-        throw new BadRequestException("Invalid expiration date");
+      reverseShareToken
    );
    if (reverseShare) {
      expirationDate = reverseShare.shareExpiration;
    } else {
-      expirationDate = moment(0).toDate();
+      // We have to add an exception for "never" (since moment won't like that)
      if (share.expiration !== "never") {
        expirationDate = moment()
          .add(
            share.expiration.split("-")[0],
            share.expiration.split(
              "-"
            )[1] as moment.unitOfTime.DurationConstructor
          )
          .toDate();
      } else {
        expirationDate = moment(0).toDate();
      }
    }
    fs.mkdirSync(`./data/uploads/shares/${share.id}`, {
      recursive: true,
    });
-    return await this.prisma.share.create({
+    const shareTuple = await this.prisma.share.create({
      data: {
        ...share,
        expiration: expirationDate,
@@ -73,6 +82,20 @@ export class ShareService {
        },
      },
    });
    if (reverseShare) {
      // Assign share to reverse share token
      await this.prisma.reverseShare.update({
        where: { token: reverseShareToken },
        data: {
          shares: {
            connect: { id: shareTuple.id },
          },
        },
      });
    }
    return shareTuple;
  }
  async createZip(shareId: string) {
@@ -94,10 +117,15 @@ export class ShareService {
    await archive.finalize();
  }
-  async complete(id: string) {
+  async complete(id: string, reverseShareToken?: string) {
    const share = await this.prisma.share.findUnique({
      where: { id },
-      include: { files: true, recipients: true, creator: true },
+      include: {
        files: true,
        recipients: true,
        creator: true,
        reverseShare: { include: { creator: true } },
      },
    });
    if (await this.isShareCompleted(id))
@@ -116,13 +144,34 @@ export class ShareService {
    // Send email for each recepient
    for (const recepient of share.recipients) {
-      await this.emailService.sendMail(
+      await this.emailService.sendMailToShareRecepients(
        recepient.email,
        share.id,
        share.creator
      );
    }
    if (
      share.reverseShare &&
      this.config.get("smtp.enabled") &&
      share.reverseShare.sendEmailNotification
    ) {
      await this.emailService.sendMailToReverseShareCreator(
        share.reverseShare.creator.email,
        share.id
      );
    }
    // Check if any file is malicious with ClamAV
    this.clamScanService.checkAndRemove(share.id);
    if (share.reverseShare) {
      await this.prisma.reverseShare.update({
        where: { token: reverseShareToken },
        data: { remainingUses: { decrement: 1 } },
      });
    }
    return await this.prisma.share.update({
      where: { id },
      data: { uploadLocked: true },
@@ -156,19 +205,25 @@ export class ShareService {
    return sharesWithEmailRecipients;
  }
-  async get(id: string) {
+  async get(id: string): Promise<any> {
-    const share: any = await this.prisma.share.findUnique({
+    const share = await this.prisma.share.findUnique({
      where: { id },
      include: {
        files: true,
        creator: true,
        security: true,
      },
    });
    if (share.removedReason)
      throw new NotFoundException(share.removedReason, "share_removed");
    if (!share || !share.uploadLocked)
      throw new NotFoundException("Share not found");
-
+    return {
-    return share;
+      ...share,
      hasPassword: share.security?.password ? true : false,
    };
  }
  async getMetaData(id: string) {
@@ -222,12 +277,20 @@ export class ShareService {
    if (
      share?.security?.password &&
      !(await argon.verify(share.security.password, password))
-    )
+    ) {
-      throw new ForbiddenException("Wrong password");
+      throw new ForbiddenException("Wrong password", "wrong_password");
    }
    if (share.security?.maxViews && share.security.maxViews <= share.views) {
      throw new ForbiddenException(
        "Maximum views exceeded",
        "share_max_views_exceeded"
      );
    }
    const token = await this.generateShareToken(shareId);
    await this.increaseViewCount(share);
-    return { token };
+    return token;
  }
  async generateShareToken(shareId: string) {
@@ -240,7 +303,7 @@ export class ShareService {
      },
      {
        expiresIn: moment(expiration).diff(new Date(), "seconds") + "s",
-        secret: this.config.get("JWT_SECRET"),
+        secret: this.config.get("internal.jwtSecret"),
      }
    );
  }
@@ -252,7 +315,7 @@ export class ShareService {
    try {
      const claims = this.jwtService.verify(token, {
-        secret: this.config.get("JWT_SECRET"),
+        secret: this.config.get("internal.jwtSecret"),
        // Ignore expiration if expiration is 0
        ignoreExpiration: moment(expiration).isSame(0),
      });
--- a/backend/src/user/dto/createUser.dto.ts
+++ b/backend/src/user/dto/createUser.dto.ts
@@ -1,12 +1,15 @@
-import { Expose, plainToClass } from "class-transformer";
+import { plainToClass } from "class-transformer";
-import { Allow } from "class-validator";
+import { Allow, IsOptional, MinLength } from "class-validator";
 import { UserDTO } from "./user.dto";
 export class CreateUserDTO extends UserDTO {
  @Expose()
  @Allow()
  isAdmin: boolean;
  @MinLength(8)
  @IsOptional()
  password: string;
  from(partial: Partial<CreateUserDTO>) {
    return plainToClass(CreateUserDTO, partial, {
      excludeExtraneousValues: true,
--- a/backend/src/user/dto/publicUser.dto.ts
+++ b/backend/src/user/dto/publicUser.dto.ts
@@ -1,4 +1,4 @@
-import { PickType } from "@nestjs/mapped-types";
+import { PickType } from "@nestjs/swagger";
 import { UserDTO } from "./user.dto";
 export class PublicUserDTO extends PickType(UserDTO, ["username"] as const) {}
--- a/backend/src/user/dto/updateOwnUser.dto.ts
+++ b/backend/src/user/dto/updateOwnUser.dto.ts
@@ -1,4 +1,4 @@
-import { OmitType, PartialType } from "@nestjs/mapped-types";
+import { OmitType, PartialType } from "@nestjs/swagger";
 import { UserDTO } from "./user.dto";
 export class UpdateOwnUserDTO extends PartialType(
--- a/backend/src/user/dto/updateUser.dto.ts
+++ b/backend/src/user/dto/updateUser.dto.ts
@@ -1,4 +1,4 @@
-import { PartialType } from "@nestjs/mapped-types";
+import { PartialType } from "@nestjs/swagger";
 import { CreateUserDTO } from "./createUser.dto";
 export class UpdateUserDto extends PartialType(CreateUserDTO) {}
--- a/backend/src/user/user.controller.ts
+++ b/backend/src/user/user.controller.ts
@@ -6,9 +6,11 @@ import {
  Param,
  Patch,
  Post,
  Res,
  UseGuards,
 } from "@nestjs/common";
 import { User } from "@prisma/client";
 import { Response } from "express";
 import { GetUser } from "src/auth/decorator/getUser.decorator";
 import { AdministratorGuard } from "src/auth/guard/isAdmin.guard";
 import { JwtGuard } from "src/auth/guard/jwt.guard";
@@ -40,7 +42,16 @@ export class UserController {
  @Delete("me")
  @UseGuards(JwtGuard)
-  async deleteCurrentUser(@GetUser() user: User) {
+  async deleteCurrentUser(
    @GetUser() user: User,
    @Res({ passthrough: true }) response: Response
  ) {
    response.cookie("access_token", "accessToken", { maxAge: -1 });
    response.cookie("refresh_token", "", {
      path: "/api/auth/token",
      httpOnly: true,
      maxAge: -1,
    });
    return new UserDTO().from(await this.userService.delete(user.id));
  }
--- a/backend/src/user/user.module.ts
+++ b/backend/src/user/user.module.ts
@@ -1,8 +1,10 @@
 import { Module } from "@nestjs/common";
 import { EmailModule } from "src/email/email.module";
 import { UserController } from "./user.controller";
 import { UserSevice } from "./user.service";
@Module({
  imports: [EmailModule],
  providers: [UserSevice],
  controllers: [UserController],
 })
--- a/backend/src/user/user.service.ts
+++ b/backend/src/user/user.service.ts
@@ -1,14 +1,18 @@
 import { BadRequestException, Injectable } from "@nestjs/common";
-import { PrismaClientKnownRequestError } from "@prisma/client/runtime";
+import { PrismaClientKnownRequestError } from "@prisma/client/runtime/library";
 import * as argon from "argon2";
 import * as crypto from "crypto";
 import { EmailService } from "src/email/email.service";
 import { PrismaService } from "src/prisma/prisma.service";
 import { CreateUserDTO } from "./dto/createUser.dto";
 import { UpdateUserDto } from "./dto/updateUser.dto";
 import { UserDTO } from "./dto/user.dto";
@Injectable()
 export class UserSevice {
-  constructor(private prisma: PrismaService) {}
+  constructor(
    private prisma: PrismaService,
    private emailService: EmailService
  ) {}
  async list() {
    return await this.prisma.user.findMany();
@@ -19,7 +23,17 @@ export class UserSevice {
  }
  async create(dto: CreateUserDTO) {
-    const hash = await argon.hash(dto.password);
+    let hash: string;
    // The password can be undefined if the user is invited by an admin
    if (!dto.password) {
      const randomPassword = crypto.randomUUID();
      hash = await argon.hash(randomPassword);
      await this.emailService.sendInviteEmail(dto.email, randomPassword);
    } else {
      hash = await argon.hash(dto.password);
    }
    try {
      return await this.prisma.user.create({
        data: {
--- a/backend/test/newman-system-tests.json
+++ b/backend/test/newman-system-tests.json
@@ -1,6 +1,6 @@
 {
 	"info": {
-		"_postman_id": "38c7001d-4868-484b-935a-84fd3b5e7cf6",
+		"_postman_id": "cd31bdf9-d558-42da-9231-154721476cd2",
 		"name": "Pingvin Share Testing",
 		"schema": "https://schema.getpostman.com/json/collection/v2.1.0/collection.json",
 		"_exporter_id": "17822132"
@@ -804,16 +804,6 @@
 							"request": {
 								"method": "POST",
 								"header": [],
 								"body": {
 									"mode": "formdata",
 									"formdata": [
 										{
 											"key": "file",
 											"type": "file",
 											"src": "./test/system/test-file.txt"
 										}
 									]
 								},
 								"url": {
 									"raw": "{{API_URL}}/shares/:shareId/files",
 									"host": [
@@ -853,16 +843,6 @@
 							"request": {
 								"method": "POST",
 								"header": [],
 								"body": {
 									"mode": "formdata",
 									"formdata": [
 										{
 											"key": "file",
 											"type": "file",
 											"src": "./test/system/test-file.txt"
 										}
 									]
 								},
 								"url": {
 									"raw": "{{API_URL}}/shares/:shareId/files",
 									"host": [
@@ -987,7 +967,8 @@
 											"    pm.expect(Object.keys(responseBody).length).be.equal(1)",
 											"});",
 											"",
-											"pm.collectionVariables.set(\"shareToken\", pm.response.json().token)"
+											"pm.collectionVariables.set(\"COOKIES\", `${pm.collectionVariables.get(\"COOKIES\")};${pm.response.headers.get(\"Set-Cookie\")}`)",
 											""
 										],
 										"type": "text/javascript"
 									}
@@ -1041,8 +1022,6 @@
 											"    pm.expect(responseBody.files.length).be.equal(2)",
 											"});",
 											"",
 											"",
 											"",
 											"pm.collectionVariables.set(\"fileId\", pm.response.json().files[0].id)"
 										],
 										"type": "text/javascript"
@@ -1051,13 +1030,7 @@
 							],
 							"request": {
 								"method": "GET",
-								"header": [
+								"header": [],
 									{
 										"key": "X-Share-Token",
 										"value": "{{shareToken}}",
 										"type": "text"
 									}
 								],
 								"url": {
 									"raw": "{{API_URL}}/shares/:shareId",
 									"host": [
@@ -1077,88 +1050,6 @@
 							},
 							"response": []
 						},
 						{
 							"name": "Get file download url",
 							"event": [
 								{
 									"listen": "test",
 									"script": {
 										"exec": [
 											"let URL = require('url');",
 											"",
 											"pm.test(\"Status code is 200\",  () => {",
 											"    pm.response.to.have.status(200);",
 											"});",
 											"",
 											"",
 											"pm.test(\"Response body correct\", () => {",
 											"    const responseBody = pm.response.json();",
 											"    pm.expect(responseBody).to.have.property(\"url\")",
 											"    pm.expect(Object.keys(responseBody).length).be.equal(1)",
 											"});",
 											"",
 											"",
 											"const path = URL.parse(pm.response.json().url).path.replace(\"/api/\", \"\")",
 											"",
 											"pm.collectionVariables.set(\"fileDownloadPath\",path )"
 										],
 										"type": "text/javascript"
 									}
 								}
 							],
 							"protocolProfileBehavior": {
 								"disableBodyPruning": true
 							},
 							"request": {
 								"method": "GET",
 								"header": [
 									{
 										"key": "X-Share-Token",
 										"value": "{{shareToken}}",
 										"type": "text"
 									}
 								],
 								"body": {
 									"mode": "formdata",
 									"formdata": [
 										{
 											"key": "file",
 											"type": "file",
 											"src": "./test/system/test-file.txt"
 										},
 										{
 											"key": "shareId",
 											"value": "868c6a44-fb8c-4768-ad0d-ef22feebc8ea",
 											"type": "text"
 										}
 									]
 								},
 								"url": {
 									"raw": "{{API_URL}}/shares/:shareId/files/:fileId/download",
 									"host": [
 										"{{API_URL}}"
 									],
 									"path": [
 										"shares",
 										":shareId",
 										"files",
 										":fileId",
 										"download"
 									],
 									"variable": [
 										{
 											"key": "shareId",
 											"value": "test-share"
 										},
 										{
 											"key": "fileId",
 											"value": "{{fileId}}"
 										}
 									]
 								}
 							},
 							"response": []
 						},
 						{
 							"name": "Get File",
 							"event": [
@@ -1174,97 +1065,11 @@
 									}
 								}
 							],
 							"protocolProfileBehavior": {
 								"disableBodyPruning": true
 							},
 							"request": {
 								"method": "GET",
 								"header": [],
 								"body": {
 									"mode": "formdata",
 									"formdata": [
 										{
 											"key": "file",
 											"type": "file",
 											"src": "./test/system/test-file.txt"
 										},
 										{
 											"key": "shareId",
 											"value": "868c6a44-fb8c-4768-ad0d-ef22feebc8ea",
 											"type": "text"
 										}
 									]
 								},
 								"url": {
-									"raw": "{{API_URL}}/{{fileDownloadPath}}",
+									"raw": "{{API_URL}}/shares/:shareId/files/{{fileId}}",
 									"host": [
 										"{{API_URL}}"
 									],
 									"path": [
 										"{{fileDownloadPath}}"
 									]
 								}
 							},
 							"response": []
 						},
 						{
 							"name": "Get zip download url",
 							"event": [
 								{
 									"listen": "test",
 									"script": {
 										"exec": [
 											"let URL = require('url');",
 											"",
 											"pm.test(\"Status code is 200\",  () => {",
 											"    pm.response.to.have.status(200);",
 											"});",
 											"",
 											"",
 											"pm.test(\"Response body correct\", () => {",
 											"    const responseBody = pm.response.json();",
 											"    pm.expect(responseBody).to.have.property(\"url\")",
 											"    pm.expect(Object.keys(responseBody).length).be.equal(1)",
 											"});",
 											"",
 											"",
 											"const path = URL.parse(pm.response.json().url).path.replace(\"/api/\", \"\")",
 											"",
 											"pm.collectionVariables.set(\"zipDownloadPath\",path )"
 										],
 										"type": "text/javascript"
 									}
 								}
 							],
 							"protocolProfileBehavior": {
 								"disableBodyPruning": true
 							},
 							"request": {
 								"method": "GET",
 								"header": [
 									{
 										"key": "X-Share-Token",
 										"value": "{{shareToken}}",
 										"type": "text"
 									}
 								],
 								"body": {
 									"mode": "formdata",
 									"formdata": [
 										{
 											"key": "file",
 											"type": "file",
 											"src": "./test/system/test-file.txt"
 										},
 										{
 											"key": "shareId",
 											"value": "868c6a44-fb8c-4768-ad0d-ef22feebc8ea",
 											"type": "text"
 										}
 									]
 								},
 								"url": {
 									"raw": "{{API_URL}}/shares/:shareId/files/zip/download",
 									"host": [
 										"{{API_URL}}"
 									],
@@ -1272,8 +1077,7 @@
 										"shares",
 										":shareId",
 										"files",
-										"zip",
+										"{{fileId}}"
 										"download"
 									],
 									"variable": [
 										{
@@ -1306,64 +1110,16 @@
 							"request": {
 								"method": "GET",
 								"header": [],
 								"body": {
 									"mode": "formdata",
 									"formdata": [
 										{
 											"key": "file",
 											"type": "file",
 											"src": "./test/system/test-file.txt"
 										},
 										{
 											"key": "shareId",
 											"value": "868c6a44-fb8c-4768-ad0d-ef22feebc8ea",
 											"type": "text"
 										}
 									]
 								},
 								"url": {
-									"raw": "{{API_URL}}/{{zipDownloadPath}}",
+									"raw": "{{API_URL}}/shares/:shareId/files/zip",
 									"host": [
 										"{{API_URL}}"
 									],
 									"path": [
 										"{{zipDownloadPath}}"
 									]
 								}
 							},
 							"response": []
 						}
 					]
 				},
 				{
 					"name": "Negative",
 					"item": [
 						{
 							"name": "Get share - No token",
 							"event": [
 								{
 									"listen": "test",
 									"script": {
 										"exec": [
 											"pm.test(\"Status code is 403\",  () => {",
 											"    pm.response.to.have.status(403);",
 											"});"
 										],
 										"type": "text/javascript"
 									}
 								}
 							],
 							"request": {
 								"method": "GET",
 								"header": [],
 								"url": {
 									"raw": "{{API_URL}}/shares/:shareId",
 									"host": [
 										"{{API_URL}}"
 									],
 									"path": [
 										"shares",
-										":shareId"
+										":shareId",
 										"files",
 										"zip"
 									],
 									"variable": [
 										{
@@ -1374,7 +1130,12 @@
 								}
 							},
 							"response": []
-						},
+						}
 					]
 				},
 				{
 					"name": "Negative",
 					"item": [
 						{
 							"name": "Get share token - Wrong password",
 							"event": [
@@ -1468,128 +1229,6 @@
 								}
 							},
 							"response": []
 						},
 						{
 							"name": "Get file download url - No token",
 							"event": [
 								{
 									"listen": "test",
 									"script": {
 										"exec": [
 											"pm.test(\"Status code is 403\",  () => {",
 											"    pm.response.to.have.status(403);",
 											"});",
 											""
 										],
 										"type": "text/javascript"
 									}
 								}
 							],
 							"protocolProfileBehavior": {
 								"disableBodyPruning": true
 							},
 							"request": {
 								"method": "GET",
 								"header": [],
 								"body": {
 									"mode": "formdata",
 									"formdata": [
 										{
 											"key": "file",
 											"type": "file",
 											"src": "./test/system/test-file.txt"
 										},
 										{
 											"key": "shareId",
 											"value": "868c6a44-fb8c-4768-ad0d-ef22feebc8ea",
 											"type": "text"
 										}
 									]
 								},
 								"url": {
 									"raw": "{{API_URL}}/shares/:shareId/files/:fileId/download",
 									"host": [
 										"{{API_URL}}"
 									],
 									"path": [
 										"shares",
 										":shareId",
 										"files",
 										":fileId",
 										"download"
 									],
 									"variable": [
 										{
 											"key": "shareId",
 											"value": "test-share"
 										},
 										{
 											"key": "fileId",
 											"value": "{{fileId}}"
 										}
 									]
 								}
 							},
 							"response": []
 						},
 						{
 							"name": "Get zip download url - No token",
 							"event": [
 								{
 									"listen": "test",
 									"script": {
 										"exec": [
 											"pm.test(\"Status code is 403\",  () => {",
 											"    pm.response.to.have.status(403);",
 											"});",
 											""
 										],
 										"type": "text/javascript"
 									}
 								}
 							],
 							"protocolProfileBehavior": {
 								"disableBodyPruning": true
 							},
 							"request": {
 								"method": "GET",
 								"header": [],
 								"body": {
 									"mode": "formdata",
 									"formdata": [
 										{
 											"key": "file",
 											"type": "file",
 											"src": "./test/system/test-file.txt"
 										},
 										{
 											"key": "shareId",
 											"value": "868c6a44-fb8c-4768-ad0d-ef22feebc8ea",
 											"type": "text"
 										}
 									]
 								},
 								"url": {
 									"raw": "{{API_URL}}/shares/:shareId/files/zip/download",
 									"host": [
 										"{{API_URL}}"
 									],
 									"path": [
 										"shares",
 										":shareId",
 										"files",
 										"zip",
 										"download"
 									],
 									"variable": [
 										{
 											"key": "shareId",
 											"value": "test-share"
 										}
 									]
 								}
 							},
 							"response": []
 						}
 					]
 				}
--- a/docker-compose-dev.yml
+++ b/docker-compose-dev.yml
@@ -0,0 +1,7 @@
 version: '3.8'
 services:
  clamav:
    restart: unless-stopped
    ports:
      - 3310:3310
    image: clamav/clamav
--- a/docker-compose.yml
+++ b/docker-compose.yml
@@ -6,4 +6,14 @@ services:
    ports:
      - 3000:3000
    volumes:
-      - "${PWD}/data:/opt/app/backend/data"
+      - "./data:/opt/app/backend/data"
      - "./data/images:/opt/app/frontend/public/img"
 # Optional: If you add ClamAV, uncomment the following to have ClamAV start first.
 #    depends_on:
 #      clamav:
 #        condition: service_healthy
 # Optional: Add ClamAV (see README.md)  
 # ClamAV is currently only available for AMD64 see https://github.com/Cisco-Talos/clamav/issues/482
 #  clamav:
 #    restart: unless-stopped
 #    image: clamav/clamav
--- a/frontend/next.config.js
+++ b/frontend/next.config.js
@@ -4,7 +4,15 @@ const { version } = require('./package.json');
 const withPWA = require("next-pwa")({
  dest: "public",
-  disable: process.env.NODE_ENV == "development",
+  disable: process.env.NODE_ENV === "development",
  reloadOnOnline: false,
  runtimeCaching: [
    {
      urlPattern: /^https?.*/,
      handler: 'NetworkOnly',
    },
  ],
  reloadOnOnline: false,
 });
 module.exports = withPWA({
--- a/frontend/package-lock.json
+++ b/frontend/package-lock.json
--- a/frontend/package.json
+++ b/frontend/package.json
@@ -1,6 +1,6 @@
 {
  "name": "pingvin-share-frontend",
-  "version": "0.6.0",
+  "version": "0.13.0",
  "scripts": {
    "dev": "next dev",
    "build": "next build",
@@ -9,40 +9,44 @@
    "format": "prettier --write \"src/**/*.ts*\""
  },
  "dependencies": {
-    "@emotion/react": "^11.10.5",
+    "@emotion/react": "^11.10.6",
    "@emotion/server": "^11.10.0",
-    "@mantine/core": "^5.9.2",
+    "@mantine/core": "^6.0.1",
-    "@mantine/dropzone": "^5.9.2",
+    "@mantine/dropzone": "^6.0.1",
-    "@mantine/form": "^5.9.2",
+    "@mantine/form": "^6.0.1",
-    "@mantine/hooks": "^5.9.2",
+    "@mantine/hooks": "^6.0.1",
-    "@mantine/modals": "^5.9.2",
+    "@mantine/modals": "^6.0.1",
-    "@mantine/next": "^5.9.2",
+    "@mantine/next": "^6.0.1",
-    "@mantine/notifications": "^5.9.2",
+    "@mantine/notifications": "^6.0.1",
-    "axios": "^1.2.0",
+    "axios": "^1.3.4",
    "cookies-next": "^2.1.1",
    "file-saver": "^2.0.5",
-    "jose": "^4.11.1",
+    "jose": "^4.13.1",
    "jwt-decode": "^3.1.2",
    "mime-types": "^2.1.35",
    "moment": "^2.29.4",
-    "next": "^13.0.6",
+    "next": "^13.2.4",
    "next-cookies": "^2.0.3",
    "next-http-proxy-middleware": "^1.2.5",
    "next-pwa": "^5.6.0",
    "p-limit": "^4.0.0",
    "react": "^18.2.0",
    "react-dom": "^18.2.0",
-    "react-icons": "^4.7.1",
+    "react-icons": "^4.8.0",
-    "yup": "^0.32.11"
+    "sharp": "^0.31.3",
    "yup": "^1.0.2"
  },
  "devDependencies": {
-    "@types/node": "18.11.10",
+    "@types/mime-types": "^2.1.1",
-    "@types/react": "18.0.26",
+    "@types/node": "18.15.0",
-    "@types/react-dom": "18.0.9",
+    "@types/react": "18.0.28",
-    "axios": "^1.2.0",
+    "@types/react-dom": "18.0.11",
-    "eslint": "8.29.0",
+    "axios": "^1.3.4",
-    "eslint-config-next": "^13.0.6",
+    "eslint": "8.35.0",
-    "eslint-config-prettier": "^8.5.0",
+    "eslint-config-next": "^13.2.4",
-    "prettier": "^2.8.0",
+    "eslint-config-prettier": "^8.7.0",
-    "tar": "^6.1.12",
+    "prettier": "^2.8.4",
-    "typescript": "^4.9.3"
+    "tar": "^6.1.13",
    "typescript": "^4.9.5"
  }
 }
--- a/frontend/public/icons/icon-white-128x128.png
+++ b/frontend/public/icons/icon-white-128x128.png
--- a/frontend/public/img/favicon.ico
+++ b/frontend/public/img/favicon.ico
--- a/frontend/public/img/icons/icon-128x128.png
+++ b/frontend/public/img/icons/icon-128x128.png
--- a/frontend/public/img/icons/icon-144x144.png
+++ b/frontend/public/img/icons/icon-144x144.png
--- a/frontend/public/img/icons/icon-152x152.png
+++ b/frontend/public/img/icons/icon-152x152.png
--- a/frontend/public/img/icons/icon-192x192.png
+++ b/frontend/public/img/icons/icon-192x192.png
--- a/frontend/public/img/icons/icon-384x384.png
+++ b/frontend/public/img/icons/icon-384x384.png
--- a/frontend/public/img/icons/icon-48x48.png
+++ b/frontend/public/img/icons/icon-48x48.png
--- a/frontend/public/img/icons/icon-512x512.png
+++ b/frontend/public/img/icons/icon-512x512.png
--- a/frontend/public/img/icons/icon-72x72.png
+++ b/frontend/public/img/icons/icon-72x72.png
--- a/frontend/public/img/icons/icon-96x96.png
+++ b/frontend/public/img/icons/icon-96x96.png
--- a/frontend/public/img/logo-bg-white.png
+++ b/frontend/public/img/logo-bg-white.png
--- a/frontend/public/img/logo.png
+++ b/frontend/public/img/logo.png
--- a/frontend/public/img/logo.svg
+++ b/frontend/public/img/logo.svg
@@ -1 +0,0 @@
 <svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 943.11 911.62"><ellipse cx="471.56" cy="454.28" rx="471.56" ry="454.28" fill="#46509e"/><ellipse cx="471.56" cy="390.28" rx="233.66" ry="207" fill="#37474f"/><path d="M705.22,849c-36.69,21.14-123.09,64.32-240.64,62.57A469.81,469.81,0,0,1,237.89,849V394.76H705.22Z" fill="#37474f"/><path d="M658.81,397.7V873.49a478.12,478.12,0,0,1-374.19,0V397.7c0-95.55,83.78-173,187.1-173S658.81,302.15,658.81,397.7Z" fill="#fff"/><polygon points="565.02 431.68 471.56 514.49 378.09 431.68 565.02 431.68" fill="#46509e"/><ellipse cx="378.09" cy="369.58" rx="23.37" ry="20.7" fill="#37474f"/><ellipse cx="565.02" cy="369.58" rx="23.37" ry="20.7" fill="#37474f"/><path d="M658.49,400.63c0-40-36.6-72.45-81.79-72.45s-81.78,32.41-81.78,72.45a64.79,64.79,0,0,0,7.9,31.05H440.29a64.79,64.79,0,0,0,7.9-31.05c0-40-36.59-72.45-81.78-72.45s-81.79,32.41-81.79,72.45l-46.73-10.35c0-114.31,104.64-207,233.67-207s233.66,92.69,233.66,207Z" fill="#37474f"/></svg>
--- a/frontend/public/img/opengraph-default.png
+++ b/frontend/public/img/opengraph-default.png
--- a/frontend/public/manifest.json
+++ b/frontend/public/manifest.json
@@ -8,55 +8,55 @@
  "start_url": "/",
  "icons": [
    {
-      "src": "icons/icon-72x72.png",
+      "src": "img/icons/icon-72x72.png",
      "sizes": "72x72",
      "type": "image/png",
      "purpose": "any maskable"
    },
    {
-      "src": "icons/icon-96x96.png",
+      "src": "img/icons/icon-96x96.png",
      "sizes": "96x96",
      "type": "image/png",
      "purpose": "any maskable"
    },
    {
-      "src": "icons/icon-96x96.png",
+      "src": "img/icons/icon-96x96.png",
      "sizes": "96x96",
      "type": "image/png",
      "purpose": "any maskable"
    },
    {
-      "src": "icons/icon-128x128.png",
+      "src": "img/icons/icon-128x128.png",
      "sizes": "128x128",
      "type": "image/png",
      "purpose": "any maskable"
    },
    {
-      "src": "icons/icon-144x144.png",
+      "src": "img/icons/icon-144x144.png",
      "sizes": "144x144",
      "type": "image/png",
      "purpose": "any maskable"
    },
    {
-      "src": "icons/icon-152x152.png",
+      "src": "img/icons/icon-152x152.png",
      "sizes": "152x152",
      "type": "image/png",
      "purpose": "any maskable"
    },
    {
-      "src": "icons/icon-192x192.png",
+      "src": "img/icons/icon-192x192.png",
      "sizes": "192x192",
      "type": "image/png",
      "purpose": "any maskable"
    },
    {
-      "src": "icons/icon-384x384.png",
+      "src": "img/icons/icon-384x384.png",
      "sizes": "384x384",
      "type": "image/png",
      "purpose": "any maskable"
    },
    {
-      "src": "icons/icon-512x512.png",
+      "src": "img/icons/icon-512x512.png",
      "sizes": "512x512",
      "type": "image/png",
      "purpose": "any maskable"
--- a/frontend/src/components/Logo.tsx
+++ b/frontend/src/components/Logo.tsx
@@ -1,34 +1,6 @@
 import Image from "next/image";
 const Logo = ({ height, width }: { height: number; width: number }) => {
-  return (
+  return <Image src="/img/logo.png" alt="logo" height={height} width={width} />;
    <svg
      id="Layer_1"
      data-name="Layer 1"
      xmlns="http://www.w3.org/2000/svg"
      viewBox="0 0 943.11 911.62"
      height={height}
      width={width}
    >
      <ellipse cx="471.56" cy="454.28" rx="471.56" ry="454.28" fill="#46509e" />
      <ellipse cx="471.56" cy="390.28" rx="233.66" ry="207" fill="#37474f" />
      <path
        d="M705.22,849c-36.69,21.14-123.09,64.32-240.64,62.57A469.81,469.81,0,0,1,237.89,849V394.76H705.22Z"
        fill="#37474f"
      />
      <path
        d="M658.81,397.7V873.49a478.12,478.12,0,0,1-374.19,0V397.7c0-95.55,83.78-173,187.1-173S658.81,302.15,658.81,397.7Z"
        fill="#fff"
      />
      <polygon
        points="565.02 431.68 471.56 514.49 378.09 431.68 565.02 431.68"
        fill="#46509e"
      />
      <ellipse cx="378.09" cy="369.58" rx="23.37" ry="20.7" fill="#37474f" />
      <ellipse cx="565.02" cy="369.58" rx="23.37" ry="20.7" fill="#37474f" />
      <path
        d="M658.49,400.63c0-40-36.6-72.45-81.79-72.45s-81.78,32.41-81.78,72.45a64.79,64.79,0,0,0,7.9,31.05H440.29a64.79,64.79,0,0,0,7.9-31.05c0-40-36.59-72.45-81.78-72.45s-81.79,32.41-81.79,72.45l-46.73-10.35c0-114.31,104.64-207,233.67-207s233.66,92.69,233.66,207Z"
        fill="#37474f"
      />
    </svg>
  );
 };
 export default Logo;
--- a/frontend/src/components/Meta.tsx
+++ b/frontend/src/components/Meta.tsx
@@ -1,4 +1,5 @@
 import Head from "next/head";
 import useConfig from "../hooks/config.hook";
 const Meta = ({
  title,
@@ -7,18 +8,21 @@ const Meta = ({
  title: string;
  description?: string;
 }) => {
  const config = useConfig();
  const metaTitle = `${title} - ${config.get("general.appName")}`;
  return (
    <Head>
-      {/* TODO: Doesn't work because script get only executed on client side */}
+      <title>{metaTitle}</title>
-      <title>{title} - Pingvin Share</title>
+      <meta name="og:title" content={metaTitle} />
      <meta name="og:title" content={`${title} - Pingvin Share`} />
      <meta
        name="og:description"
        content={
          description ?? "An open-source and self-hosted sharing platform."
        }
      />
-      <meta name="twitter:title" content={`${title} - Pingvin Share`} />
+      <meta name="twitter:title" content={metaTitle} />
      <meta name="twitter:description" content={description} />
    </Head>
  );
--- a/frontend/src/components/account/ThemeSwitcher.tsx
+++ b/frontend/src/components/account/ThemeSwitcher.tsx
@@ -18,7 +18,6 @@ const ThemeSwitcher = () => {
  );
  const { toggleColorScheme } = useMantineColorScheme();
  const systemColorScheme = useColorScheme();
  return (
    <Stack>
      <SegmentedControl
--- a/frontend/src/components/account/showEnableTotpModal.tsx
+++ b/frontend/src/components/account/showEnableTotpModal.tsx
@@ -7,14 +7,12 @@ import {
  Stack,
  Text,
  TextInput,
  Title,
  Tooltip,
 } from "@mantine/core";
 import { useForm, yupResolver } from "@mantine/form";
 import { useModals } from "@mantine/modals";
 import { ModalsContextProps } from "@mantine/modals/lib/context";
 import * as yup from "yup";
 import useUser from "../../hooks/user.hook";
 import authService from "../../services/auth.service";
 import toast from "../../utils/toast.util";
@@ -28,7 +26,7 @@ const showEnableTotpModal = (
  }
 ) => {
  return modals.openModal({
-    title: <Title order={4}>Enable TOTP</Title>,
+    title: "Enable TOTP",
    children: (
      <CreateEnableTotpModal options={options} refreshUser={refreshUser} />
    ),
--- a/frontend/src/components/account/showShareLinkModal.tsx
+++ b/frontend/src/components/account/showShareLinkModal.tsx
@@ -1,8 +1,12 @@
 import { Stack, TextInput } from "@mantine/core";
 import { ModalsContextProps } from "@mantine/modals/lib/context";
-const showShareLinkModal = (modals: ModalsContextProps, shareId: string) => {
+const showShareLinkModal = (
-  const link = `${window.location.origin}/share/${shareId}`;
+  modals: ModalsContextProps,
  shareId: string,
  appUrl: string
 ) => {
  const link = `${appUrl}/share/${shareId}`;
  return modals.openModal({
    title: "Share link",
    children: (
--- a/frontend/src/components/admin/configuration/AdminConfigTable.tsx
+++ b/frontend/src/components/admin/configuration/AdminConfigTable.tsx
@@ -1,141 +0,0 @@
 import {
  Box,
  Button,
  Group,
  Paper,
  Space,
  Stack,
  Text,
  Title,
 } from "@mantine/core";
 import { useMediaQuery } from "@mantine/hooks";
 import { useEffect, useState } from "react";
 import useConfig from "../../../hooks/config.hook";
 import configService from "../../../services/config.service";
 import {
  AdminConfigGroupedByCategory,
  UpdateConfig,
 } from "../../../types/config.type";
 import {
  capitalizeFirstLetter,
  configVariableToFriendlyName,
 } from "../../../utils/string.util";
 import toast from "../../../utils/toast.util";
 import AdminConfigInput from "./AdminConfigInput";
 import TestEmailButton from "./TestEmailButton";
 const AdminConfigTable = () => {
  const config = useConfig();
  const isMobile = useMediaQuery("(max-width: 560px)");
  let updatedConfigVariables: UpdateConfig[] = [];
  const updateConfigVariable = (configVariable: UpdateConfig) => {
    const index = updatedConfigVariables.findIndex(
      (item) => item.key === configVariable.key
    );
    if (index > -1) {
      updatedConfigVariables[index] = configVariable;
    } else {
      updatedConfigVariables.push(configVariable);
    }
  };
  const [configVariablesByCategory, setCofigVariablesByCategory] =
    useState<AdminConfigGroupedByCategory>({});
  const getConfigVariables = async () => {
    await configService.listForAdmin().then((configVariables) => {
      const configVariablesByCategory = configVariables.reduce(
        (categories: any, item) => {
          const category = categories[item.category] || [];
          category.push(item);
          categories[item.category] = category;
          return categories;
        },
        {}
      );
      setCofigVariablesByCategory(configVariablesByCategory);
    });
  };
  useEffect(() => {
    getConfigVariables();
  }, []);
  return (
    <Box mb="lg">
      {Object.entries(configVariablesByCategory).map(
        ([category, configVariables]) => {
          return (
            <Paper key={category} withBorder p="lg" mb="xl">
              <Title mb="xs" order={3}>
                {capitalizeFirstLetter(category)}
              </Title>
              {configVariables.map((configVariable) => (
                <>
                  <Group position="apart">
                    <Stack
                      style={{ maxWidth: isMobile ? "100%" : "40%" }}
                      spacing={0}
                    >
                      <Title order={6}>
                        {configVariableToFriendlyName(configVariable.key)}
                      </Title>
                      <Text color="dimmed" size="sm" mb="xs">
                        {configVariable.description}
                      </Text>
                    </Stack>
                    <Stack></Stack>
                    <Box style={{ width: isMobile ? "100%" : "50%" }}>
                      <AdminConfigInput
                        key={configVariable.key}
                        updateConfigVariable={updateConfigVariable}
                        configVariable={configVariable}
                      />
                    </Box>
                  </Group>
                  <Space h="lg" />
                </>
              ))}
              {category == "email" && (
                <Group position="right">
                  <TestEmailButton />
                </Group>
              )}
            </Paper>
          );
        }
      )}
      <Group position="right">
        <Button
          onClick={() => {
            if (config.get("SETUP_FINISHED")) {
              configService
                .updateMany(updatedConfigVariables)
                .then(() => {
                  updatedConfigVariables = [];
                  toast.success("Configurations updated successfully");
                })
                .catch(toast.axiosError);
            } else {
              configService
                .updateMany(updatedConfigVariables)
                .then(async () => {
                  await configService.finishSetup();
                  window.location.reload();
                })
                .catch(toast.axiosError);
            }
          }}
        >
          Save
        </Button>
      </Group>
    </Box>
  );
 };
 export default AdminConfigTable;
--- a/frontend/src/components/admin/configuration/ConfigurationHeader.tsx
+++ b/frontend/src/components/admin/configuration/ConfigurationHeader.tsx
@@ -0,0 +1,54 @@
 import {
  Burger,
  Button,
  Group,
  Header,
  MediaQuery,
  Text,
  useMantineTheme,
 } from "@mantine/core";
 import Link from "next/link";
 import { Dispatch, SetStateAction } from "react";
 import useConfig from "../../../hooks/config.hook";
 import Logo from "../../Logo";
 const ConfigurationHeader = ({
  isMobileNavBarOpened,
  setIsMobileNavBarOpened,
 }: {
  isMobileNavBarOpened: boolean;
  setIsMobileNavBarOpened: Dispatch<SetStateAction<boolean>>;
 }) => {
  const config = useConfig();
  const theme = useMantineTheme();
  return (
    <Header height={60} p="md">
      <div style={{ display: "flex", alignItems: "center", height: "100%" }}>
        <MediaQuery largerThan="sm" styles={{ display: "none" }}>
          <Burger
            opened={isMobileNavBarOpened}
            onClick={() => setIsMobileNavBarOpened((o) => !o)}
            size="sm"
            color={theme.colors.gray[6]}
            mr="xl"
          />
        </MediaQuery>
        <Group position="apart" w="100%">
          <Link href="/" passHref>
            <Group>
              <Logo height={35} width={35} />
              <Text weight={600}>{config.get("general.appName")}</Text>
            </Group>
          </Link>
          <MediaQuery smallerThan="sm" styles={{ display: "none" }}>
            <Button variant="light" component={Link} href="/admin">
              Go back
            </Button>
          </MediaQuery>
        </Group>
      </div>
    </Header>
  );
 };
 export default ConfigurationHeader;
--- a/frontend/src/components/admin/configuration/ConfigurationNavBar.tsx
+++ b/frontend/src/components/admin/configuration/ConfigurationNavBar.tsx
@@ -0,0 +1,97 @@
 import {
  Box,
  Button,
  createStyles,
  Group,
  MediaQuery,
  Navbar,
  Stack,
  Text,
  ThemeIcon,
 } from "@mantine/core";
 import Link from "next/link";
 import { Dispatch, SetStateAction } from "react";
 import { TbAt, TbMail, TbShare, TbSquare } from "react-icons/tb";
 const categories = [
  { name: "General", icon: <TbSquare /> },
  { name: "Email", icon: <TbMail /> },
  { name: "Share", icon: <TbShare /> },
  { name: "SMTP", icon: <TbAt /> },
 ];
 const useStyles = createStyles((theme) => ({
  activeLink: {
    backgroundColor: theme.fn.variant({
      variant: "light",
      color: theme.primaryColor,
    }).background,
    color: theme.fn.variant({ variant: "light", color: theme.primaryColor })
      .color,
    borderRadius: theme.radius.sm,
    fontWeight: 600,
  },
 }));
 const ConfigurationNavBar = ({
  categoryId,
  isMobileNavBarOpened,
  setIsMobileNavBarOpened,
 }: {
  categoryId: string;
  isMobileNavBarOpened: boolean;
  setIsMobileNavBarOpened: Dispatch<SetStateAction<boolean>>;
 }) => {
  const { classes } = useStyles();
  return (
    <Navbar
      p="md"
      hiddenBreakpoint="sm"
      hidden={!isMobileNavBarOpened}
      width={{ sm: 200, lg: 300 }}
    >
      <Navbar.Section>
        <Text size="xs" color="dimmed" mb="sm">
          Configuration
        </Text>
        <Stack spacing="xs">
          {categories.map((category) => (
            <Box
              p="xs"
              component={Link}
              onClick={() => setIsMobileNavBarOpened(false)}
              className={
                categoryId == category.name.toLowerCase()
                  ? classes.activeLink
                  : undefined
              }
              key={category.name}
              href={`/admin/config/${category.name.toLowerCase()}`}
            >
              <Group>
                <ThemeIcon
                  variant={
                    categoryId == category.name.toLowerCase()
                      ? "filled"
                      : "light"
                  }
                >
                  {category.icon}
                </ThemeIcon>
                <Text size="sm">{category.name}</Text>
              </Group>
            </Box>
          ))}
        </Stack>
      </Navbar.Section>
      <MediaQuery largerThan="sm" styles={{ display: "none" }}>
        <Button mt="xl" variant="light" component={Link} href="/admin">
          Go back
        </Button>
      </MediaQuery>
    </Navbar>
  );
 };
 export default ConfigurationNavBar;
--- a/Show More
+++ b/Show More
Author	SHA1	Message	Date
Elias Schneider	2158df4228	release: 0.13.0	2023-03-14 16:09:20 +01:00
Elias Schneider	37e765ddc7	fix: show line breaks in txt preview	2023-03-14 16:08:57 +01:00
Elias Schneider	a91c531642	docs: update main screenshot	2023-03-14 15:47:42 +01:00
Elias Schneider	5a7f7ca2f6	chore: dump node js version	2023-03-14 15:36:35 +01:00
Elias Schneider	813ee4de2c	refactor: rename deprecated Prisma imports	2023-03-14 15:11:24 +01:00
Elias Schneider	b25c30d1ed	feat: sort shared files	2023-03-14 14:50:18 +01:00
Elias Schneider	c807d208d8	feat: add preview modal	2023-03-14 12:09:21 +01:00
Elias Schneider	f82099f36e	fix: upload file if it is 0 bytes	2023-03-13 08:57:56 +01:00
Elias Schneider	6345e21db9	refactor: globalize modal title style	2023-03-13 08:50:54 +01:00
Elias Schneider	f55aa80516	fix: replace "pingvin share" with dynamic app name	2023-03-12 20:13:55 +01:00
Elias Schneider	0ce8b528e1	refactor: improve error handling for failed emails	2023-03-12 19:29:39 +01:00
Elias Schneider	8ff417a013	fix: set password manually input not shown	2023-03-12 19:28:50 +01:00
Elias Schneider	cb1a0d4090	release: 0.12.1	2023-03-11 12:40:27 +01:00
Elias Schneider	753dbe83b7	fix: 48px icon does not update	2023-03-11 12:33:22 +01:00
Elias Schneider	0c2a62b0ca	release: 0.12.0	2023-03-10 09:40:19 +01:00
Elias Schneider	452c635933	chore: dump packages	2023-03-10 09:40:09 +01:00
Elias Schneider	0455ba1bc1	chore: upgrade mantine to v6	2023-03-10 09:01:33 +01:00
Elias Schneider	3ad6b03b6b	fix: home page shown even if disabled	2023-03-10 08:40:32 +01:00
Elias Schneider	91c3525b15	chore: add sharp for image optimizations	2023-03-08 17:47:36 +01:00
Elias Schneider	8403d7e14d	feat: ability to change logo in frontend	2023-03-08 14:47:41 +01:00
Elias Schneider	8f71fd3435	fix: crypto is not defined	2023-03-08 13:10:10 +01:00
Elias Schneider	155c743197	release: 0.11.1	2023-03-05 10:50:32 +01:00
Elias Schneider	8b77e81d4c	fix: old config variable prevents to create a share	2023-03-05 10:48:01 +01:00
Elias Schneider	22d81b2220	release: 0.11.0	2023-03-04 23:41:11 +01:00
Elias Schneider	0317f3a508	fix: frontend error when user deleted	2023-03-04 23:40:02 +01:00
Elias Schneider	fddad3ef70	feat: custom branding (#112 ) * add first concept * remove setup status * split config page in multiple components * add custom branding docs * add test email button * fix invalid email from header * add migration * mount images to host * update docs * remove unused endpoint * run formatter	2023-03-04 23:29:00 +01:00
Elias Schneider	f9840505b8	feat: invite new user with email	2023-02-21 08:51:04 +01:00
Elias Schneider	759c55f625	docs: fix remove app before upgrading	2023-02-13 10:09:53 +01:00
Elias Schneider	edb511252f	release: 0.10.2	2023-02-13 09:39:43 +01:00
Elias Schneider	c3af0fe097	fix: pdf preview tries to render on server	2023-02-13 09:39:27 +01:00
Elias Schneider	6419da07fb	release: 0.10.1	2023-02-12 20:00:55 +01:00
Elias Schneider	7cd9dff637	fix: setup wizard doesn't redirect after completion	2023-02-12 20:00:35 +01:00
Elias Schneider	2a826f7941	docs: stand-alone installation start backend first	2023-02-12 19:04:12 +01:00
Elias Schneider	8720232755	chore: add question issue template	2023-02-12 14:40:10 +01:00
Elias Schneider	dc8cf3d5ca	fix: non administrator user redirection error while setup isn't finished	2023-02-11 15:57:21 +01:00
Elias Schneider	979b882150	docs: add stand-alone installation guide	2023-02-10 14:59:19 +01:00
Elias Schneider	c55019f71b	docs: improve contributing guideline	2023-02-10 14:22:32 +01:00
Elias Schneider	4c6ef52a17	release: 0.10.0	2023-02-10 11:47:29 +01:00
Elias Schneider	b9662701c4	fix: share creation without reverseShareToken	2023-02-10 11:47:17 +01:00
Elias Schneider	e3f88d0826	refactor(jobs): clear expired tokens and reverse shares	2023-02-10 11:29:51 +01:00
Elias Schneider	86a7379519	fix: delete all shares of reverse share	2023-02-10 11:15:23 +01:00
Elias Schneider	ccdf8ea3ae	feat: allow multiple shares with one reverse share link	2023-02-10 11:10:07 +01:00
Elias Schneider	edc10b72b7	fix: share fails if a share was created with a reverse share link recently	2023-02-10 10:58:49 +01:00
Elias Schneider	5d1a7f0310	feat!: reset password with email	2023-02-09 18:17:53 +01:00
Elias Schneider	8ab359b71d	docs(backend): add swagger documentation	2023-02-07 11:23:43 +01:00
Elias Schneider	38de022215	feat(frontend): server side rendering to improve performance	2023-02-07 10:21:25 +01:00
Elias Schneider	82f204e8a9	fix: invalid redirection after jwt expiry	2023-02-06 11:15:46 +01:00
Elias Schneider	4e840ecd29	refactor: handle authentication state in middleware	2023-02-04 18:12:49 +01:00
Elias Schneider	064ef38d78	fix: setup status doesn't change	2023-02-03 11:01:10 +01:00
Elias Schneider	b14e931d8d	test: adapt tests to new features	2023-01-31 15:43:54 +01:00
Elias Schneider	3d5c919110	release: 0.9.0	2023-01-31 15:25:01 +01:00
Elias Schneider	008df06b5c	feat: direct file link	2023-01-31 15:22:08 +01:00
Elias Schneider	cd9d828686	refactor: move guard checks to service	2023-01-31 13:53:23 +01:00
Elias Schneider	233c26e5cf	fix: improve send test email UX	2023-01-31 13:16:11 +01:00
Elias Schneider	91a6b3f716	feat: file preview	2023-01-31 09:03:03 +01:00
Elias Schneider	0a2b7b1243	refactor: use cookie instead of local storage for share token	2023-01-26 21:18:22 +01:00
Elias Schneider	b98fe7911f	release: 0.8.0	2023-01-26 16:10:16 +01:00
Elias Schneider	ad92cfc852	fix: admin users were created while the setup wizard wasn't finished	2023-01-26 15:43:13 +01:00
Elias Schneider	7e91038a24	chore: optimize prisma migration	2023-01-26 14:06:25 +01:00
Elias Schneider	4a5fb549c6	feat: reverse shares (#86 ) * add first concept * add reverse share funcionality to frontend * allow creator to limit share expiration * moved reverse share in seperate module * add table to manage reverse shares * delete complete share if reverse share was deleted * optimize function names * add db migration * enable reverse share email notifications * fix config variable descriptions * fix migration for new installations	2023-01-26 13:44:04 +01:00
Elias Schneider	1ceb07b89e	refactor: fix typo of service name	2023-01-17 09:48:49 +01:00
Elias Schneider	bb64f6c33f	fix: Add meta tags to new pages	2023-01-17 09:13:53 +01:00
Elias Schneider	61c48d57b8	ci/cd: upgrade github actions	2023-01-13 15:37:49 +01:00
Luke	2a7587ed78	chore: docker compose ClamAV optimizations * Update docker-compose.yml Adds a depends_on clause that waits for clamav to be fulyl started before starting pingvin-share. * Update README.md Explains that it may take a minute or two for the app to start while it waits for clamav. * minor refactoring Co-authored-by: Elias Schneider <login@eliasschneider.com>	2023-01-13 14:11:33 +01:00
Elias Schneider	e09213a295	release: 0.7.0	2023-01-13 10:59:52 +01:00
Elias Schneider	fc116d65c0	chore: dump packages	2023-01-13 10:31:22 +01:00
Elias Schneider	76088cc76a	feat: add ClamAV to scan for malicious files	2023-01-13 10:16:35 +01:00
Elias Schneider	16b697053a	ci/cd: don't stale feature issues	2023-01-12 13:47:09 +01:00
Elias Schneider	349bf475cc	fix: invalid github release link on admin page	2023-01-11 22:32:37 +01:00
Elias Schneider	fccc4cbc02	release: 0.6.1	2023-01-11 13:08:09 +01:00
Elias Schneider	f1b44f87fa	fix: shareUrl uses wrong origin	2023-01-11 13:06:38 +01:00
Elias Schneider	02e41e2437	feat: delete all sessions if password was changed	2023-01-10 13:32:37 +01:00
Elias Schneider	74e8956106	fix: update password doesn't work	2023-01-10 12:29:38 +01:00
		`@@ -0,0 +1,2 @@`
							`-- AlterTable`
							`ALTER TABLE "Share" ADD COLUMN "removedReason" TEXT;`
		`@@ -1 +0,0 @@`
			<svg id="Layer_1" data-name="Layer 1" xmlns="http://www.w3.org/2000/svg" viewBox="0 0 943.11 911.62"><ellipse cx="471.56" cy="454.28" rx="471.56" ry="454.28" fill="#46509e"/><ellipse cx="471.56" cy="390.28" rx="233.66" ry="207" fill="#37474f"/><path d="M705.22,849c-36.69,21.14-123.09,64.32-240.64,62.57A469.81,469.81,0,0,1,237.89,849V394.76H705.22Z" fill="#37474f"/><path d="M658.81,397.7V873.49a478.12,478.12,0,0,1-374.19,0V397.7c0-95.55,83.78-173,187.1-173S658.81,302.15,658.81,397.7Z" fill="#fff"/><polygon points="565.02 431.68 471.56 514.49 378.09 431.68 565.02 431.68" fill="#46509e"/><ellipse cx="378.09" cy="369.58" rx="23.37" ry="20.7" fill="#37474f"/><ellipse cx="565.02" cy="369.58" rx="23.37" ry="20.7" fill="#37474f"/><path d="M658.49,400.63c0-40-36.6-72.45-81.79-72.45s-81.78,32.41-81.78,72.45a64.79,64.79,0,0,0,7.9,31.05H440.29a64.79,64.79,0,0,0,7.9-31.05c0-40-36.59-72.45-81.78-72.45s-81.79,32.41-81.79,72.45l-46.73-10.35c0-114.31,104.64-207,233.67-207s233.66,92.69,233.66,207Z" fill="#37474f"/></svg>