2025-09-18 04:10:27 +00:00
239 changed files with 10724 additions and 112372 deletions
--- a/.dockerignore
+++ b/.dockerignore
@ -1,7 +1,5 @@
-.venv
+*
-dist
+!docker/*
-.idea
+!healthcheck.sh
-frontend/node_modules
+!docker_config.json
-frontend/dist
+!filebrowser
 filebrowser.db
 docs/index.md
--- a/.github/CODEOWNERS
+++ b/.github/CODEOWNERS
@ -2,4 +2,4 @@
 # Unless a later match takes precedence, @o1egl will be requested for
 # review when someone opens a pull request.
-*       @o1egl @hacdias
+*       @o1egl
--- a/.github/ISSUE_TEMPLATE/bug_report.md
+++ b/.github/ISSUE_TEMPLATE/bug_report.md
@ -0,0 +1,22 @@
 ---
 name: Bug report
 about: Create a report to help us improve
 ---
 **Description**
 <!-- A clear and concise description of what the issue is about. What are you trying to do? -->
 **Expected behaviour**
 <!-- What did you expect to happen? -->
 **What is happening instead?**
 <!-- Please, give full error messages and/or log. -->
 **Additional context**
 <!-- Add any other context about the problem here. If applicable, add screenshots to help explain your problem. -->
 **How to reproduce?**
 <!-- Tell us how to reproduce this issue. How can someone who is starting from scratch reproduce this behaviour as minimally as possible? -->
 **Files**
 <!-- A list of relevant files for this issue. Large files can be uploaded one-by-one or in a tarball/zipfile. -->
--- a/.github/ISSUE_TEMPLATE/bug_report.yml
+++ b/.github/ISSUE_TEMPLATE/bug_report.yml
@ -1,53 +0,0 @@
 name: Bug Report
 description: Report a bug in FileBrowser.
 labels: [bug, 'waiting: triage']
 body:
  - type: checkboxes
    attributes:
      label: Checklist
      description: Please verify that you've followed these steps
      options:
        - label: This is a bug report, not a question.
          required: true
        - label: I have searched on the [issue tracker](https://github.com/filebrowser/filebrowser/issues?q=is%3Aissue) for my bug.
          required: true
        - label: I am running the latest [FileBrowser version](https://github.com/filebrowser/filebrowser/releases) or have an issue updating.
          required: true
  - type: textarea
    id: version
    attributes:
      label: Version
      render: Text
      description: |
        Enter the version of FileBrowser you are using.
    validations:
      required: true
  - type: textarea
    attributes:
      label: Description
      description: |
        A clear and concise description of what the issue is about. What are you trying to do?
    validations:
      required: true
  - type: textarea
    attributes:
      label: What did you expect to happen?
    validations:
      required: true
  - type: textarea
    attributes:
      label: What actually happened?
    validations:
      required: true
  - type: textarea
    attributes:
      label: Reproduction Steps
      description: |
        Tell us how to reproduce this issue. How can someone who is starting from scratch reproduce this behavior as minimally as possible?
    validations:
      required: true
  - type: textarea
    attributes:
      label: Files
      description: |
        A list of relevant files for this issue. Large files can be uploaded one-by-one or in a tarball/zipfile.
--- a/.github/ISSUE_TEMPLATE/config.yml
+++ b/.github/ISSUE_TEMPLATE/config.yml
@ -1,5 +0,0 @@
 blank_issues_enabled: false
 contact_links:
  - name: GitHub Discussions
    url: https://github.com/filebrowser/filebrowser/discussions
    about: Please ask questions and discuss features here.
--- a/.github/ISSUE_TEMPLATE/feature_request.md
+++ b/.github/ISSUE_TEMPLATE/feature_request.md
@ -0,0 +1,16 @@
 ---
 name: Feature request
 about: Suggest an idea for this project
 ---
 **Is your feature request related to a problem? Please describe.**
 <!-- Add a clear and concise description of what the problem is. E.g. *I'm always frustrated when [...]* -->
 **Describe the solution you'd like**
 <!-- Add a clear and concise description of what you want to happen.  -->
 **Describe alternatives you've considered**
 <!-- Add a clear and concise description of any alternative solutions or features you've considered.  -->
 **Additional context**
 <!-- Add any other context or screenshots about the feature request here. -->
--- a/.github/PULL_REQUEST_TEMPLATE.md
+++ b/.github/PULL_REQUEST_TEMPLATE.md
@ -1,16 +1,19 @@
-## Description
+**Description**
 <!--
 Please explain the changes you made here.
 If the feature changes current behaviour, explain why your solution is better.
 -->
-<!-- Please explain the changes you made here. -->
+:rotating_light: Before submitting your PR, please indicate which issues are either fixed or closed by this PR. See [GitHub Help: Closing issues using keywords](https://help.github.com/articles/closing-issues-via-commit-messages/).
-## Additional Information
+- [ ] DO make sure you are requesting to **pull a topic/feature/bugfix branch** (right side). Don't request your master!
 - [ ] DO make sure you are making a pull request against the **master branch** (left side). Also you should start *your branch* off *our master*.
 - [ ] DO make sure that File Browser can be successfully built. See [builds](https://github.com/filebrowser/community/blob/master/builds.md) and [development](https://github.com/filebrowser/community/blob/master/development.md).
 - [ ] AVOID breaking the continuous integration build.
-<!-- If it is a relatively large or complex change, please add more information to explain what you did, how you did it, if you considered any alternatives, etc. -->
+**Further comments**
 <!--
 If this is a relatively large or complex change, kick off the discussion by explaining why you chose the solution you did, what alternatives you considered, etc.
-## Checklist
+:heart: Thank you!
-
+-->
 Before submitting your PR, please indicate which issues are either fixed or closed by this PR. See [GitHub Help: Closing issues using keywords](https://help.github.com/articles/closing-issues-via-commit-messages/).
 - [ ] I am aware the project is currently in maintenance-only mode. See [README](https://github.com/filebrowser/community/blob/master/README.md)
 - [ ] I am aware that translations MUST be made through [Transifex](https://app.transifex.com/file-browser/file-browser/) and that this PR is NOT a translation update
 - [ ] I am making a PR against the `master` branch.
 - [ ] I am sure File Browser can be successfully built. See [builds](https://github.com/filebrowser/community/blob/master/builds.md) and [development](https://github.com/filebrowser/community/blob/master/development.md).
--- a/.github/workflows/main.yaml
+++ b/.github/workflows/main.yaml
@ -3,25 +3,20 @@ name: main
 on:
  push:
    branches:
-      - "master"
+      - 'master'
    tags:
-      - "v*"
+      - 'v*'
  pull_request:
 jobs:
-  # linters
+# linters
  lint-frontend:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: pnpm/action-setup@v4
        with:
          package_json_file: "frontend/package.json"
      - uses: actions/setup-node@v4
        with:
-          node-version: "22.x"
+          node-version: '18'
          cache: "pnpm"
          cache-dependency-path: "frontend/pnpm-lock.yaml"
      - run: make lint-frontend
  lint-backend:
    runs-on: ubuntu-latest
@ -29,7 +24,7 @@ jobs:
      - uses: actions/checkout@v4
      - uses: actions/setup-go@v5
        with:
-          go-version: '1.24'
+          go-version: 1.23.0
      - run: make lint-backend
  lint:
    runs-on: ubuntu-latest
@ -37,19 +32,14 @@ jobs:
    steps:
      - run: echo "done"
-  # tests
+# tests
  test-frontend:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/checkout@v4
      - uses: pnpm/action-setup@v4
        with:
          package_json_file: "frontend/package.json"
      - uses: actions/setup-node@v4
        with:
-          node-version: "22.x"
+          node-version: '18'
          cache: "pnpm"
          cache-dependency-path: "frontend/pnpm-lock.yaml"
      - run: make test-frontend
  test-backend:
    runs-on: ubuntu-latest
@ -57,7 +47,7 @@ jobs:
      - uses: actions/checkout@v4
      - uses: actions/setup-go@v5
        with:
-          go-version: '1.24'
+          go-version: 1.23.0
      - run: make test-backend
  test:
    runs-on: ubuntu-latest
@ -65,7 +55,7 @@ jobs:
    steps:
      - run: echo "done"
-  # release
+# release
  release:
    runs-on: ubuntu-latest
    needs: [lint, test]
@ -76,15 +66,10 @@ jobs:
          fetch-depth: 0
      - uses: actions/setup-go@v5
        with:
-          go-version: '1.23'
+          go-version: 1.23.0
      - uses: pnpm/action-setup@v4
        with:
          package_json_file: "frontend/package.json"
      - uses: actions/setup-node@v4
        with:
-          node-version: "22.x"
+          node-version: '18'
          cache: "pnpm"
          cache-dependency-path: "frontend/pnpm-lock.yaml"
      - name: Set up QEMU
        uses: docker/setup-qemu-action@v1
      - name: Set up Docker Buildx
--- a/.github/workflows/site-pr.yml
+++ b/.github/workflows/site-pr.yml
@ -1,20 +0,0 @@
 name: Build Site
 on:
  pull_request:
    paths:
      - 'www'
      - '*.md'
 jobs:
  build:
    runs-on: ubuntu-latest
    steps:
      - name: Checkout
        uses: actions/checkout@v3
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      - name: Build site
        run: make site
--- a/.github/workflows/site-publish.yml
+++ b/.github/workflows/site-publish.yml
@ -1,32 +0,0 @@
 name: Build and Deploy Site
 on:
  push:
    branches:
      - master
 jobs:
  deploy:
    permissions:
      contents: read
      deployments: write
      pull-requests: write
    runs-on: ubuntu-latest
    timeout-minutes: 5
    steps:
      - name: Checkout
        uses: actions/checkout@v4
      - name: Set up Docker Buildx
        uses: docker/setup-buildx-action@v2
      - name: Build site
        run: make site
      - name: Deploy to Cloudflare Pages
        uses: cloudflare/wrangler-action@v3
        with:
          apiToken: ${{ secrets.CLOUDFLARE_API_TOKEN }}
          accountId: ${{ secrets.CLOUDFLARE_ACCOUNT_ID }}
          command: pages deploy www/public --project-name=${{ secrets.CLOUDFLARE_PROJECT_NAME }}
          gitHubToken: ${{ secrets.GITHUB_TOKEN }}
--- a/.github/workflows/stale.yml
+++ b/.github/workflows/stale.yml
@ -0,0 +1,24 @@
 name: 'Close stale issues and PRs'
 permissions:
  issues: write
  pull-requests: write
 on:
  schedule:
    - cron: '30 1 * * *'
 jobs:
  stale:
    runs-on: ubuntu-latest
    steps:
      - uses: actions/stale@v5
        with:
          stale-pr-message: 'This PR is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 5 days.'
          close-pr-message: 'This PR was closed because it has been stalled for 5 days with no activity.'
          stale-issue-message: 'This issue is stale because it has been open 30 days with no activity. Remove stale label or comment or this will be closed in 5 days.'
          close-issue-message: 'This issue was closed because it has been stalled for 5 days with no activity.'
          days-before-stale: 30
          days-before-close: 5
          exempt-issue-labels: 'feature ☘,enhancement ⚙,bug 🐞'
          exempt-pr-labels: 'need-help,wip'
          operations-per-run: 100
--- a/.gitignore
+++ b/.gitignore
@ -6,7 +6,6 @@ rice-box.go
 /filebrowser
 /filebrowser.exe
 /dist
 .venv
 .DS_Store
 node_modules
--- a/.golangci.yml
+++ b/.golangci.yml
@ -1,132 +1,121 @@
-version: "2"
+linters-settings:
  dupl:
    threshold: 100
  exhaustive:
    default-signifies-exhaustive: false
  funlen:
    lines: 100
    statements: 50
  goconst:
    min-len: 2
    min-occurrences: 2
  gocritic:
    enabled-tags:
      - diagnostic
      - experimental
      - opinionated
      - performance
      - style
    disabled-checks:
      - dupImport # https://github.com/go-critic/go-critic/issues/845
      - ifElseChain
      - octalLiteral
      - whyNoLint
      - wrapperFunc
  gocyclo:
    min-complexity: 15
  goimports:
    local-prefixes: github.com/filebrowser/filebrowser
  gomnd:
    # don't include the "operation" and "assign"
    checks:
      - argument
      - case
      - condition
      - return
    ignored-numbers:
      - '0'
      - '1'
      - '2'
      - '3'
    ignored-functions:
      - strings.SplitN
  govet:
    enable:
      - nilness
      - shadow
  lll:
    line-length: 140
  misspell:
    locale: US
  nolintlint:
    allow-unused: false # report any unused nolint directives
    require-explanation: false # require an explanation for nolint directives
    require-specific: true # require nolint directives to be specific about which linter is being skipped
 linters:
-  # inverted configuration with `default: all` and `disable` is not scalable during updates of golangci-lint
+  # please, do not use `enable-all`: it's deprecated and will be removed soon.
-  default: none
+  # inverted configuration with `enable-all` and `disable` is not scalable during updates of golangci-lint
  disable-all: true
  enable:
    - bodyclose
    - dogsled
    - dupl
    - errcheck
    - errorlint
    - exportloopref
    - exhaustive
    - funlen
    - gocheckcompilerdirectives
    - gochecknoinits
    - goconst
    - gocritic
    - gocyclo
    - godox
    - goimports
    - gomnd
    - goprintffuncname
    - gosec
    - gosimple
    - govet
    - ineffassign
    - lll
    - misspell
    - mnd
    - nakedret
    - nolintlint
    - prealloc
    - revive
    - rowserrcheck
    - staticcheck
    - stylecheck
    - testifylint
    - typecheck
    - unconvert
    - unparam
    - unused
    - whitespace
  settings:
    dupl:
      threshold: 100
    exhaustive:
      default-signifies-exhaustive: false
    funlen:
      lines: 100
      statements: 50
    gocritic:
      disabled-checks:
        - dupImport # https://github.com/go-critic/go-critic/issues/845
        - ifElseChain
        - octalLiteral
        - whyNoLint
        - wrapperFunc
      enabled-tags:
        - diagnostic
        - experimental
        - opinionated
        - performance
        - style
    gocyclo:
      min-complexity: 15
    govet:
      enable:
        - nilness
        - shadow
    lll:
      line-length: 140
    misspell:
      locale: US
    mnd:
      # don't include the "operation" and "assign"
      checks:
        - argument
        - case
        - condition
        - return
      ignored-numbers:
        - "0"
        - "1"
        - "2"
        - "3"
        - "0666"
        - "0700"
        - "0700"
      ignored-functions:
        - strings.SplitN
        - make
    nolintlint:
      allow-unused: false # report any unused nolint directives
      require-explanation: false # require an explanation for nolint directives
      require-specific: true # require nolint directives to be specific about which linter is being skipped
    staticcheck:
      checks:
        - "all"
        - "-QF*"
  exclusions:
    generated: lax
    presets:
      - comments
      - common-false-positives
      - legacy
      - std-error-handling
    rules:
      - linters:
          - gochecknoinits
        path: cmd/.*.go
      - linters:
          - dupl
          - funlen
          - gochecknoinits
          - gocyclo
          - lll
          - scopelint
        path: .*_test.go
      - linters:
          - misspell
        text: "[aA]uther"
      - linters:
          - mnd
        text: strconv.Parse
    paths:
      - frontend/
-formatters:
+issues:
-  enable:
+  exclude-dirs:
-    - goimports
+    - frontend/
-  settings:
+  exclude-rules:
-    goimports:
+    - path: cmd/.*.go
-      local-prefixes:
+      linters:
-        - github.com/filebrowser/filebrowser
+        - gochecknoinits
-  exclusions:
+    - path: .*_test.go
-    generated: lax
+      linters:
-    paths:
+        - lll
-      - frontend/
+        - gochecknoinits
        - gocyclo
        - funlen
        - dupl
        - scopelint
    - text: "Auther"
      linters:
        - misspell
    - text: "strconv.Parse"
      linters:
        - gomnd
 run:
  timeout: 5m
--- a/.goreleaser.yml
+++ b/.goreleaser.yml
@ -19,30 +19,31 @@ builds:
      - freebsd
    goarch:
      - amd64
-      - "386"
+      - 386
      - arm
      - arm64
      - riscv64
    goarm:
-      - "5"
+      - 5
-      - "6"
+      - 6
-      - "7"
+      - 7
    ignore:
      - goos: darwin
-        goarch: "386"
+        goarch: 386
      - goos: freebsd
        goarch: arm
 archives:
-  - name_template: "{{.Os}}-{{.Arch}}{{if .Arm}}v{{.Arm}}{{end}}-{{ .ProjectName }}"
+  -
-    formats: ["tar.gz"]
+    name_template: "{{.Os}}-{{.Arch}}{{if .Arm}}v{{.Arm}}{{end}}-{{ .ProjectName }}"
    format: tar.gz
    format_overrides:
      - goos: windows
-        formats: ["zip"]
+        format: zip
 dockers:
-  # Alpine docker images
+  -
-  - dockerfile: Dockerfile
+    dockerfile: Dockerfile
    use: buildx
    build_flag_templates:
      - "--pull"
@ -58,8 +59,10 @@ dockers:
      - "filebrowser/filebrowser:{{ .Tag }}-amd64"
      - "filebrowser/filebrowser:v{{ .Major }}-amd64"
    extra_files:
-      - docker
+      - docker_config.json
-  - dockerfile: Dockerfile
+      - healthcheck.sh
  -
    dockerfile: Dockerfile
    use: buildx
    build_flag_templates:
      - "--pull"
@ -75,8 +78,10 @@ dockers:
      - "filebrowser/filebrowser:{{ .Tag }}-arm64"
      - "filebrowser/filebrowser:v{{ .Major }}-arm64"
    extra_files:
-      - docker
+      - docker_config.json
-  - dockerfile: Dockerfile
+      - healthcheck.sh
  -
    dockerfile: Dockerfile
    use: buildx
    build_flag_templates:
      - "--pull"
@ -88,13 +93,15 @@ dockers:
      - "--platform=linux/arm/v6"
    goos: linux
    goarch: arm
-    goarm: "6"
+    goarm: '6'
    image_templates:
      - "filebrowser/filebrowser:{{ .Tag }}-armv6"
      - "filebrowser/filebrowser:v{{ .Major }}-armv6"
    extra_files:
-      - docker
+      - docker_config.json
-  - dockerfile: Dockerfile
+      - healthcheck.sh
  -
    dockerfile: Dockerfile
    use: buildx
    build_flag_templates:
      - "--pull"
@ -106,15 +113,16 @@ dockers:
      - "--platform=linux/arm/v7"
    goos: linux
    goarch: arm
-    goarm: "7"
+    goarm: '7'
    image_templates:
      - "filebrowser/filebrowser:{{ .Tag }}-armv7"
      - "filebrowser/filebrowser:v{{ .Major }}-armv7"
    extra_files:
-      - docker
+      - docker_config.json
-
+      - healthcheck.sh
-  ## s6-overlay docker images
+## s6 based docker images
-  - dockerfile: Dockerfile.s6
+  -
    dockerfile: Dockerfile.s6
    use: buildx
    build_flag_templates:
      - "--pull"
@ -130,8 +138,9 @@ dockers:
      - "filebrowser/filebrowser:{{ .Tag }}-amd64-s6"
      - "filebrowser/filebrowser:v{{ .Major }}-amd64-s6"
    extra_files:
-      - docker
+      - docker/root
-  - dockerfile: Dockerfile.s6
+  -
    dockerfile: Dockerfile.s6.aarch64
    use: buildx
    build_flag_templates:
      - "--pull"
@ -147,8 +156,7 @@ dockers:
      - "filebrowser/filebrowser:{{ .Tag }}-arm64-s6"
      - "filebrowser/filebrowser:v{{ .Major }}-arm64-s6"
    extra_files:
-      - docker
+      - docker/root
 docker_manifests:
  - name_template: "filebrowser/filebrowser:latest"
    image_templates:
@ -165,7 +173,7 @@ docker_manifests:
      - "filebrowser/filebrowser:v{{ .Major }}-amd64"
      - "filebrowser/filebrowser:v{{ .Major }}-arm64"
      - "filebrowser/filebrowser:v{{ .Major }}-armv7"
-  ## s6 image manifests
+## s6 image manifests
  - name_template: "filebrowser/filebrowser:s6"
    image_templates:
      - "filebrowser/filebrowser:{{ .Tag }}-amd64-s6"
@ -178,20 +186,15 @@ docker_manifests:
    image_templates:
      - "filebrowser/filebrowser:v{{ .Major }}-amd64-s6"
      - "filebrowser/filebrowser:v{{ .Major }}-arm64-s6"
-
+brews:
 homebrew_casks:
  - name: filebrowser
    repository:
      owner: filebrowser
      name: homebrew-tap
    directory: Formula
    homepage: https://filebrowser.org
    commit_author:
      name: FileBrowser Robot
      email: robot@filebrowser.org
    homepage: https://github.com/filebrowser/filebrowser
    description: File Browser is a create-your-own-cloud-kind of software where you can install it on a server, direct it to a path and then access your files through a nice web interface
-    hooks:
+    license: "MIT"
      post:
        install: |
          if system_command("/usr/bin/xattr", args: ["-h"]).exit_status == 0
            system_command "/usr/bin/xattr", args: ["-dr", "com.apple.quarantine", "#{staged_path}/filebrowser"]
          end
--- a/.tx/config
+++ b/.tx/config
@ -0,0 +1,10 @@
 [main]
 host = https://www.transifex.com
 lang_map = pt_BR: pt-br, zh_CN: zh-cn, zh_HK: zh-hk, zh_TW: zh-tw, nl_BE: nl-be, sv_SE: sv-se, cz-CS: cz_cs
 [file-browser.file-browser]
 file_filter = frontend/src/i18n/<lang>.json
 minimum_perc = 50
 source_file = frontend/src/i18n/en.json
 source_lang = en
 type = KEYVALUEJSON
--- a/CHANGELOG.md
+++ b/CHANGELOG.md
@ -2,494 +2,6 @@
 All notable changes to this project will be documented in this file. See [standard-version](https://github.com/conventional-changelog/standard-version) for commit guidelines.
 ## [2.43.0](https://github.com/filebrowser/filebrowser/compare/v2.42.5...v2.43.0) (2025-09-13)
 ### Features
 * "save changes" button to discard changes dialog ([84e8632](https://github.com/filebrowser/filebrowser/commit/84e8632b98e315bfef2da77dd7d1049daec99241))
 * Translate frontend/src/i18n/en.json in es ([571ce6c](https://github.com/filebrowser/filebrowser/commit/571ce6cb0d7c8725d1cc1a3238ea506ddc72b060))
 * Translate frontend/src/i18n/en.json in fr ([6b1fa87](https://github.com/filebrowser/filebrowser/commit/6b1fa87ad38ebbb1a9c5d0e5fc88ba796c148bcf))
 * Updates for project File Browser ([#5427](https://github.com/filebrowser/filebrowser/issues/5427)) ([8950585](https://github.com/filebrowser/filebrowser/commit/89505851414bfcee6b9ff02087eb4cec51c330f6))
 ### Bug Fixes
 * optimize markdown preview height ([783503a](https://github.com/filebrowser/filebrowser/commit/783503aece7fca9e26f7e849b0e7478aba976acb))
 ### Reverts
 * build(deps): bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14 ([0769265](https://github.com/filebrowser/filebrowser/commit/07692653ffe0ea5e517e6dc1fd3961172e931843))
 ### Build
 * **deps-dev:** bump vite from 6.1.6 to 6.3.6 in /frontend ([36c6cc2](https://github.com/filebrowser/filebrowser/commit/36c6cc203e10947439519a0413d5817921a1690d))
 * **deps:** bump github.com/go-viper/mapstructure/v2 in /tools ([280fa56](https://github.com/filebrowser/filebrowser/commit/280fa562a67824887ae6e2530a3b73739d6e1bb4))
 * **deps:** bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14 ([950028a](https://github.com/filebrowser/filebrowser/commit/950028abebe2898bac4ecfd8715c0967246310cb))
 ### Refactorings
 * to use strings.Lines ([b482a9b](https://github.com/filebrowser/filebrowser/commit/b482a9bf0d292ec6542d2145a4408971e4c985f1))
 ## [2.43.0](https://github.com/filebrowser/filebrowser/compare/v2.42.5...v2.43.0) (2025-09-13)
 ### Features
 * "save changes" button to discard changes dialog ([84e8632](https://github.com/filebrowser/filebrowser/commit/84e8632b98e315bfef2da77dd7d1049daec99241))
 * Translate frontend/src/i18n/en.json in es ([571ce6c](https://github.com/filebrowser/filebrowser/commit/571ce6cb0d7c8725d1cc1a3238ea506ddc72b060))
 * Translate frontend/src/i18n/en.json in fr ([6b1fa87](https://github.com/filebrowser/filebrowser/commit/6b1fa87ad38ebbb1a9c5d0e5fc88ba796c148bcf))
 * Updates for project File Browser ([#5427](https://github.com/filebrowser/filebrowser/issues/5427)) ([8950585](https://github.com/filebrowser/filebrowser/commit/89505851414bfcee6b9ff02087eb4cec51c330f6))
 ### Bug Fixes
 * optimize markdown preview height ([783503a](https://github.com/filebrowser/filebrowser/commit/783503aece7fca9e26f7e849b0e7478aba976acb))
 ### Build
 * **deps-dev:** bump vite from 6.1.6 to 6.3.6 in /frontend ([36c6cc2](https://github.com/filebrowser/filebrowser/commit/36c6cc203e10947439519a0413d5817921a1690d))
 * **deps:** bump github.com/go-viper/mapstructure/v2 in /tools ([280fa56](https://github.com/filebrowser/filebrowser/commit/280fa562a67824887ae6e2530a3b73739d6e1bb4))
 * **deps:** bump github.com/ulikunitz/xz from 0.5.12 to 0.5.14 ([950028a](https://github.com/filebrowser/filebrowser/commit/950028abebe2898bac4ecfd8715c0967246310cb))
 ### Refactorings
 * to use strings.Lines ([b482a9b](https://github.com/filebrowser/filebrowser/commit/b482a9bf0d292ec6542d2145a4408971e4c985f1))
 ### [2.42.5](https://github.com/filebrowser/filebrowser/compare/v2.42.4...v2.42.5) (2025-08-16)
 ### Bug Fixes
 * "new folder" button not working in the move and copy popup ([#5368](https://github.com/filebrowser/filebrowser/issues/5368)) ([3107ae4](https://github.com/filebrowser/filebrowser/commit/3107ae41475ae9383c3af414d25a133e549f8087))
 ### [2.42.4](https://github.com/filebrowser/filebrowser/compare/v2.42.3...v2.42.4) (2025-08-16)
 ### Bug Fixes
 * add libcap to Dockerfile.s6 ([342b239](https://github.com/filebrowser/filebrowser/commit/342b239ac6f4af2453d5f7aa27f7f0093024dd72))
 ### [2.42.3](https://github.com/filebrowser/filebrowser/compare/v2.42.2...v2.42.3) (2025-08-09)
 ### Bug Fixes
 * add missing CLI flags for user management ([#5351](https://github.com/filebrowser/filebrowser/issues/5351)) ([cd51a59](https://github.com/filebrowser/filebrowser/commit/cd51a59e72c72560fce7bcc9b12aaf02646b699c))
 ### [2.42.2](https://github.com/filebrowser/filebrowser/compare/v2.42.1...v2.42.2) (2025-08-06)
 ### Bug Fixes
 * show file upload errors ([06e8713](https://github.com/filebrowser/filebrowser/commit/06e8713fa55065d38f02499d3e8d39fc86926cab))
 ### Refactorings
 * upload progress calculation ([#5350](https://github.com/filebrowser/filebrowser/issues/5350)) ([c14cf86](https://github.com/filebrowser/filebrowser/commit/c14cf86f8304e01d804e01a7eef5ea093627ef37))
 ### [2.42.1](https://github.com/filebrowser/filebrowser/compare/v2.42.0...v2.42.1) (2025-07-31)
 ### Features
 * Translate frontend/src/i18n/en.json in sk  ([14ee054](https://github.com/filebrowser/filebrowser/commit/14ee0543599f2ec73b7f5d2dbd8415f47fe592aa))
 * Translate frontend/src/i18n/en.json in vi ([75baf7c](https://github.com/filebrowser/filebrowser/commit/75baf7ce337671a1045f897ba4a19967a31b1aec))
 ### Bug Fixes
 * directory mode on config init ([4ff6347](https://github.com/filebrowser/filebrowser/commit/4ff634715543b65878943273dff70f340167900b))
 ## [2.42.0](https://github.com/filebrowser/filebrowser/compare/v2.41.0...v2.42.0) (2025-07-27)
 ### Features
 * add Norwegian support ([#5332](https://github.com/filebrowser/filebrowser/issues/5332)) ([25e47c3](https://github.com/filebrowser/filebrowser/commit/25e47c3ce8b35b820b5370a4b8bfdf682bd5ae0b))
 * select item on file list after navigating back ([#5329](https://github.com/filebrowser/filebrowser/issues/5329)) ([cbeec6d](https://github.com/filebrowser/filebrowser/commit/cbeec6d225691723c4750d7f84122ebb14d662bf))
 * Translate frontend/src/i18n/en.json in no ([5eb3bf4](https://github.com/filebrowser/filebrowser/commit/5eb3bf40586c2ffc32f4834b5dd59f0eb719c1f7))
 * Translate frontend/src/i18n/en.json in sk ([07dfdce](https://github.com/filebrowser/filebrowser/commit/07dfdce8e4c371f4ca7480f3cef0bd66ff5c9abb))
 ### Bug Fixes
 * norsk loading ([619f683](https://github.com/filebrowser/filebrowser/commit/619f6837b0d1ec6c654d30f4ecedd6696874721f))
 ### Reverts
 * Revert "chore(release): 2.42.0" ([d778c19](https://github.com/filebrowser/filebrowser/commit/d778c192ae02c5e73781f7632e3b7276c5811e17))
 ### Build
 * bump go version to 1.23.11 ([c7a5c7e](https://github.com/filebrowser/filebrowser/commit/c7a5c7efee2b2bede89ec90bafd1af61c39519ff))
 * bump to go 1.24 ([c1b0207](https://github.com/filebrowser/filebrowser/commit/c1b0207800b4bb52c8dd459c1d69ce0f785473b6))
 ## [2.41.0](https://github.com/filebrowser/filebrowser/compare/v2.40.2...v2.41.0) (2025-07-22)
 ### Features
 * Allow file and directory creation modes to be configured ([21ad653](https://github.com/filebrowser/filebrowser/commit/21ad653b7eb246c0e95ccdc131f8d59267de7818)), closes [#5316](https://github.com/filebrowser/filebrowser/issues/5316) [#5200](https://github.com/filebrowser/filebrowser/issues/5200)
 * better error handling for sys kill signals ([1582b8b](https://github.com/filebrowser/filebrowser/commit/1582b8b2cd1c62fa93e60ca9b4e740e940b02e84))
 ### [2.40.2](https://github.com/filebrowser/filebrowser/compare/v2.40.1...v2.40.2) (2025-07-17)
 ### Bug Fixes
 * Location header on TUS endpoint ([#5302](https://github.com/filebrowser/filebrowser/issues/5302)) ([607f570](https://github.com/filebrowser/filebrowser/commit/607f5708a2484428ab837781a5ef26b8cc3194f4))
 ### Build
 * **deps:** bump vue-i18n from 11.1.9 to 11.1.10 in /frontend ([d61110e](https://github.com/filebrowser/filebrowser/commit/d61110e4d7155a5849557adf3b75dc0191f17e80))
 ### [2.40.1](https://github.com/filebrowser/filebrowser/compare/v2.40.0...v2.40.1) (2025-07-15)
 ### Bug Fixes
 * print correct user on setup ([88f1442](https://github.com/filebrowser/filebrowser/commit/88f144293267260fd4d823e3259783309b1a57b3))
 ## [2.40.0](https://github.com/filebrowser/filebrowser/compare/v2.39.0...v2.40.0) (2025-07-13)
 ### Features
 * add font size botton to text editor ([#5290](https://github.com/filebrowser/filebrowser/issues/5290)) ([035084d](https://github.com/filebrowser/filebrowser/commit/035084d8e83243065fad69bfac1b69559fbad5fb))
 ### Bug Fixes
 * invalid path when uploading files ([9072cbc](https://github.com/filebrowser/filebrowser/commit/9072cbce340da55477906f5419a4cfb6d6937dc0))
 * Only left click should drag the image in extended image view ([b8454bb](https://github.com/filebrowser/filebrowser/commit/b8454bb2e41ca2848b926b66354468ba4b1c7ba5))
 ## [2.39.0](https://github.com/filebrowser/filebrowser/compare/v2.38.0...v2.39.0) (2025-07-13)
 ### Features
 * Improve Docker entrypoint and config handling ([01c814c](https://github.com/filebrowser/filebrowser/commit/01c814cf98f81f2bcd622aea75e5b1efe3484940))
 * rewrite the archiver and added support for zstd and brotli ([#5283](https://github.com/filebrowser/filebrowser/issues/5283)) ([7c71686](https://github.com/filebrowser/filebrowser/commit/7c716862c1bd3cdedd3c02d3a37207293db197ca))
 ### Bug Fixes
 * drop modify permission for uploading new file ([#5270](https://github.com/filebrowser/filebrowser/issues/5270)) ([0f27c91](https://github.com/filebrowser/filebrowser/commit/0f27c91eca581482ce4f82f6429f5dac12f8b64e))
 * Settings button in the sidebar ([5a8e717](https://github.com/filebrowser/filebrowser/commit/5a8e7171b1b41eff771fe27133c91d2c250896a8))
 ### Build
 * improve docker image and binary sizes ([35ca24a](https://github.com/filebrowser/filebrowser/commit/35ca24adb886721fc9d5e1a68cfc577e2c5f0230))
 * lightweight busybox-based container build ([#5285](https://github.com/filebrowser/filebrowser/issues/5285)) ([5c5942d](https://github.com/filebrowser/filebrowser/commit/5c5942d99514b433e09d90624bbe58992eab6be2))
 * remove upx ([1a5c83b](https://github.com/filebrowser/filebrowser/commit/1a5c83bcfe847f1e41a44cef23fd795b19b6b434))
 ## [2.38.0](https://github.com/filebrowser/filebrowser/compare/v2.37.0...v2.38.0) (2025-07-12)
 ### Features
 * Show the current users name in the sidebar ([#2821](https://github.com/filebrowser/filebrowser/issues/2821)) ([528ce92](https://github.com/filebrowser/filebrowser/commit/528ce92fad6dcc8e8b7910036bf9175146e27bf7))
 * Updates for project File Browser  ([b4eddf4](https://github.com/filebrowser/filebrowser/commit/b4eddf45e4d7e6f6ccf242e67fe20f89f5e2f9a9))
 ### Bug Fixes
 * prevent page change if there are outstanding edits ([#5260](https://github.com/filebrowser/filebrowser/issues/5260)) ([fbe169b](https://github.com/filebrowser/filebrowser/commit/fbe169b84f28cba22ea87f01b52f2420f1ea6814))
 ## [2.37.0](https://github.com/filebrowser/filebrowser/compare/v2.36.3...v2.37.0) (2025-07-08)
 ### Features
 * Translate frontend/src/i18n/en.json in zh_CN ([65bbf44](https://github.com/filebrowser/filebrowser/commit/65bbf44e3c0bff83e64193d46e9d6ad302952276))
 * Translate frontend/src/i18n/en.json in zh_TW ([b28952c](https://github.com/filebrowser/filebrowser/commit/b28952cb2582bd4eb44e91d0676e2803c458cf31))
 * Translate frontend/src/i18n/en.json in zh_TW ([1e96fd9](https://github.com/filebrowser/filebrowser/commit/1e96fd9035d5185dc80970a2826ccb573b5f000e))
 ### Bug Fixes
 * long file name overlap ([fcb248a](https://github.com/filebrowser/filebrowser/commit/fcb248a5feb7b7404ca5923aae17f6d3f8d3cc96))
 * preview PDF is correctly displayed ([bf73e4d](https://github.com/filebrowser/filebrowser/commit/bf73e4dea3b27c01c8f6e60fb2048e1a2122a70e))
 * Upload progress size calculation ([e423395](https://github.com/filebrowser/filebrowser/commit/e423395ef0bcd106ddc7d460c055b95b5208415e))
 ### [2.36.3](https://github.com/filebrowser/filebrowser/compare/v2.36.2...v2.36.3) (2025-07-06)
 ### Bug Fixes
 * log error if branding file exists but cannot be loaded ([3645b57](https://github.com/filebrowser/filebrowser/commit/3645b578cddb9fc8f25a00e0153fb600ad1b9266))
 ### [2.36.2](https://github.com/filebrowser/filebrowser/compare/v2.36.1...v2.36.2) (2025-07-06)
 ### Bug Fixes
 * lookup directory name if blank when downloading shared directory ([046d619](https://github.com/filebrowser/filebrowser/commit/046d6193c57b4df0e3dc583b6518b43d29d302c9))
 ### [2.36.1](https://github.com/filebrowser/filebrowser/compare/v2.36.0...v2.36.1) (2025-07-03)
 ### Bug Fixes
 * remove associated shares when deleting file/folder ([e99e0b3](https://github.com/filebrowser/filebrowser/commit/e99e0b3028e1c8a50e1744bb07ecc8e809bdb8e6))
 ## [2.36.0](https://github.com/filebrowser/filebrowser/compare/v2.35.0...v2.36.0) (2025-07-02)
 ### Features
 * update icons, remove deprecated Microsoft Tiles ([04166e8](https://github.com/filebrowser/filebrowser/commit/04166e81e52d38b1f66ba3313ccb1291c239eea2))
 ## [2.35.0](https://github.com/filebrowser/filebrowser/compare/v2.34.2...v2.35.0) (2025-06-30)
 ### Features
 * Long press selects item in single click mode ([8d75220](https://github.com/filebrowser/filebrowser/commit/8d7522049ced83f28f0933b55772c32e3ad04627))
 ### Bug Fixes
 * shell value must be joined by blank space ([4403cd3](https://github.com/filebrowser/filebrowser/commit/4403cd35720dbda5a8bb1013b92582accf3317bc))
 * update documentation links ([38d0366](https://github.com/filebrowser/filebrowser/commit/38d0366acf88352b5a9a97c45837b0f865efae0b))
 ### [2.34.2](https://github.com/filebrowser/filebrowser/compare/v2.34.1...v2.34.2) (2025-06-29)
 ### Bug Fixes
 * mitigate unprotected shares ([2b5d6cb](https://github.com/filebrowser/filebrowser/commit/2b5d6cbb996a61a769acc56af0acc12eec2d8d8f))
 ### [2.34.1](https://github.com/filebrowser/filebrowser/compare/v2.34.0...v2.34.1) (2025-06-29)
 ### Bug Fixes
 * exclude to-be-moved folder from move dialog ([#5235](https://github.com/filebrowser/filebrowser/issues/5235)) ([7354eb6](https://github.com/filebrowser/filebrowser/commit/7354eb6cf966244141277c2808988855c004f908))
 * passthrough the minimum password length ([#5236](https://github.com/filebrowser/filebrowser/issues/5236)) ([bf37f88](https://github.com/filebrowser/filebrowser/commit/bf37f88c32222ad9c186482bb97338a9c9b4a93c))
 ## [2.34.0](https://github.com/filebrowser/filebrowser/compare/v2.33.10...v2.34.0) (2025-06-29)
 ### Features
 * Translate frontend/src/i18n/en.json in fa ([0acd69c](https://github.com/filebrowser/filebrowser/commit/0acd69c537ce2909ff62c4bb6980982524ece221))
 * Translate frontend/src/i18n/en.json in fa ([#5233](https://github.com/filebrowser/filebrowser/issues/5233)) ([09f679f](https://github.com/filebrowser/filebrowser/commit/09f679fae43398f5b87d21acc9d974d4d053392f))
 * update translations for project File Browser ([#5226](https://github.com/filebrowser/filebrowser/issues/5226)) ([a5ea2a2](https://github.com/filebrowser/filebrowser/commit/a5ea2a266bef619d1c4322266d1aa7d397d2c856))
 ### Bug Fixes
 * abort ongoing requests when changing pages ([#3927](https://github.com/filebrowser/filebrowser/issues/3927)) ([93c4b2e](https://github.com/filebrowser/filebrowser/commit/93c4b2e03c5176da01a7e00a03c03ffcce279bc8))
 * add configurable minimum password length ([#5225](https://github.com/filebrowser/filebrowser/issues/5225)) ([464b644](https://github.com/filebrowser/filebrowser/commit/464b644adf22a2178414a6f1e4fa286276de81d2))
 * do not expose the name of the root directory ([#5224](https://github.com/filebrowser/filebrowser/issues/5224)) ([0892559](https://github.com/filebrowser/filebrowser/commit/089255997a653c284cd4249990b58bed00086c61))
 * Graceful shutdown ([8230eb7](https://github.com/filebrowser/filebrowser/commit/8230eb7ab51ccbd00b03f5b9d6964fa4aae331d4))
 ### Reverts
 * Revert "docs: change cloudflare environment (#5231)" (#5232) ([9e273cd](https://github.com/filebrowser/filebrowser/commit/9e273cd9475d57b9500034e8b341ff8b620bcab8)), closes [#5231](https://github.com/filebrowser/filebrowser/issues/5231) [#5232](https://github.com/filebrowser/filebrowser/issues/5232)
 ### Build
 * add an arm64 target for the site image ([#5229](https://github.com/filebrowser/filebrowser/issues/5229)) ([f5e531c](https://github.com/filebrowser/filebrowser/commit/f5e531c8ae0b9b18717e184856ace0ce19beef82))
 * bump golangci-lint to 2.1.6 ([1d494ff](https://github.com/filebrowser/filebrowser/commit/1d494ff3159ef939cfb4980ccde6f27df3e738b5))
 * **deps:** bump brace-expansion from 1.1.11 to 1.1.12 in /tools ([#5228](https://github.com/filebrowser/filebrowser/issues/5228)) ([5a07291](https://github.com/filebrowser/filebrowser/commit/5a072913062a6b2b0e5c74a02ca7710218ed3e5e))
 * **deps:** bump github.com/go-viper/mapstructure/v2 ([f32f273](https://github.com/filebrowser/filebrowser/commit/f32f27383d1fafa074f038cc873bd37b7f20ee27))
 * **deps:** bump github.com/go-viper/mapstructure/v2 in /tools ([5331969](https://github.com/filebrowser/filebrowser/commit/5331969163f5ae1fd2389f665059fc9e4a98db15))
 * publish docs to cloudflare pages ([#5230](https://github.com/filebrowser/filebrowser/issues/5230)) ([8861933](https://github.com/filebrowser/filebrowser/commit/8861933cf845b104e072f35e5f37d7c26097c9dc))
 ### [2.33.10](https://github.com/filebrowser/filebrowser/compare/v2.33.9...v2.33.10) (2025-06-26)
 ### Bug Fixes
 * correctly check if command is allowed when using shell ([4d830f7](https://github.com/filebrowser/filebrowser/commit/4d830f707fc4314741fd431e70c2ce50cd5a3108))
 * correctly split shell ([f84a6db](https://github.com/filebrowser/filebrowser/commit/f84a6db680b6df1c7c8f06f1816f7e4c9e963668))
 * ignore linting error ([e735491](https://github.com/filebrowser/filebrowser/commit/e735491c57b12c3b19dd2e4b570723df78f4eb44))
 ### [2.33.9](https://github.com/filebrowser/filebrowser/compare/v2.33.8...v2.33.9) (2025-06-26)
 ### Bug Fixes
 * check exact match on command allow list ([e2e1e49](https://github.com/filebrowser/filebrowser/commit/e2e1e4913085cca8917e0f69171dc28d3c6af1b6))
 * remove auth token from /api/command ([d5b39a1](https://github.com/filebrowser/filebrowser/commit/d5b39a14fd3fc0d1c364116b41289484df7c27b2))
 * remove unused import ([c232d41](https://github.com/filebrowser/filebrowser/commit/c232d41f903d3026ec290bbe819b6c59a933048e))
 ### [2.33.8](https://github.com/filebrowser/filebrowser/compare/v2.33.7...v2.33.8) (2025-06-25)
 ### [2.33.7](https://github.com/filebrowser/filebrowser/compare/v2.33.6...v2.33.7) (2025-06-25)
 ### Bug Fixes
 * correctly parse negative boolean flags ([221451a](https://github.com/filebrowser/filebrowser/commit/221451a5179c8f139819a315b80d0ecb0e7220c3))
 * linting issues ([4bfbf33](https://github.com/filebrowser/filebrowser/commit/4bfbf332499fc8aea5f6df6aae1efa0de918d1ae))
 * linting issues ([e74c958](https://github.com/filebrowser/filebrowser/commit/e74c95886226c0ee429af1860eed21dd1f8601aa))
 ### [2.33.6](https://github.com/filebrowser/filebrowser/compare/v2.33.5...v2.33.6) (2025-06-24)
 ### Bug Fixes
 * remove incorrect default for password flag ([23bd8f6](https://github.com/filebrowser/filebrowser/commit/23bd8f67155081d707d4799393d3b1e2bebeaa34))
 ### [2.33.5](https://github.com/filebrowser/filebrowser/compare/v2.33.4...v2.33.5) (2025-06-24)
 ### Features
 * update languages for project File Browser ([#5190](https://github.com/filebrowser/filebrowser/issues/5190)) ([f330764](https://github.com/filebrowser/filebrowser/commit/f33076462a133935ca97fb6c7345303fe350e167))
 ### Bug Fixes
 * actually register the czech language ([#5189](https://github.com/filebrowser/filebrowser/issues/5189)) ([0268506](https://github.com/filebrowser/filebrowser/commit/0268506f80d33d2d31e38055e12530241d27a11b))
 ### [2.33.4](https://github.com/filebrowser/filebrowser/compare/v2.33.3...v2.33.4) (2025-06-22)
 ### Features
 * translation updates for project File Browser ([#5179](https://github.com/filebrowser/filebrowser/issues/5179)) ([f714e71](https://github.com/filebrowser/filebrowser/commit/f714e71a356c2301f394d651c9b6c467440508e3))
 ### [2.33.3](https://github.com/filebrowser/filebrowser/compare/v2.33.2...v2.33.3) (2025-06-22)
 ### Bug Fixes
 * keep command behavior in Dockerfile ([7c0c782](https://github.com/filebrowser/filebrowser/commit/7c0c7820efbbed2f0499353cc76ecb85d00ff7c3))
 * update search hotkey in help prompt ([#5178](https://github.com/filebrowser/filebrowser/issues/5178)) ([2741616](https://github.com/filebrowser/filebrowser/commit/2741616473636d40b7e9f14c9906ada08d328c3c))
 ### [2.33.2](https://github.com/filebrowser/filebrowser/compare/v2.33.1...v2.33.2) (2025-06-21)
 ### Bug Fixes
 * create user dir on signup ([0ca8059](https://github.com/filebrowser/filebrowser/commit/0ca8059d8dea4fe079146471ce4f24acc96021f2))
 ### [2.33.1](https://github.com/filebrowser/filebrowser/compare/v2.33.0...v2.33.1) (2025-06-21)
 ### Bug Fixes
 * downloadUrl of file preview ([#3728](https://github.com/filebrowser/filebrowser/issues/3728)) ([8a14018](https://github.com/filebrowser/filebrowser/commit/8a14018861fe581672bbd27cdc3ae5691f70a108))
 * remove auth query parameter from download and preview links ([cbb7124](https://github.com/filebrowser/filebrowser/commit/cbb712484d3bdabc033acaf3b696ef4f5865813d))
 * search uses ctrl+shift+f instead of hijacking browser's ctrl+f ([#4638](https://github.com/filebrowser/filebrowser/issues/4638)) ([a02b297](https://github.com/filebrowser/filebrowser/commit/a02b2972ebde2a58806ad1377bad46e748b63166))
 ## [2.33.0](https://github.com/filebrowser/filebrowser/compare/v2.32.3...v2.33.0) (2025-06-18)
 ### Features
 * improved docker image volumes and permissions ([#5160](https://github.com/filebrowser/filebrowser/issues/5160)) ([2e26393](https://github.com/filebrowser/filebrowser/commit/2e26393a022df0eaa9e08727407aba8b997aa728))
 ### [2.32.3](https://github.com/filebrowser/filebrowser/compare/v2.32.2...v2.32.3) (2025-06-17)
 ### [2.32.2](https://github.com/filebrowser/filebrowser/compare/v2.32.1...v2.32.2) (2025-06-17)
 ### Features
 * updated for project File Browser ([#5159](https://github.com/filebrowser/filebrowser/issues/5159)) ([c34c0af](https://github.com/filebrowser/filebrowser/commit/c34c0afecf3242b16ad5d5584cd90a6ad323361c))
 ### [2.32.1](https://github.com/filebrowser/filebrowser/compare/v2.32.0...v2.32.1) (2025-06-16)
 ### Features
 * add Vietnamese translation ([#3840](https://github.com/filebrowser/filebrowser/issues/3840)) ([56b80b6](https://github.com/filebrowser/filebrowser/commit/56b80b6d9b4710538765ba7df5da1f03898f6b81))
 * improve pt-br translations with new keys and refinements ([#4903](https://github.com/filebrowser/filebrowser/issues/4903)) ([a882fb6](https://github.com/filebrowser/filebrowser/commit/a882fb6c85ab6ccc845ed0bf3908d8e5e60ce346))
 * update translation ko.json ([#3852](https://github.com/filebrowser/filebrowser/issues/3852)) ([d9ebd65](https://github.com/filebrowser/filebrowser/commit/d9ebd65ffcf9b2166fec708d51849796d12b16e0))
 ### Bug Fixes
 * err shadowing lint ([c606a01](https://github.com/filebrowser/filebrowser/commit/c606a01a2d20932fb32ee896234d57631f8c47e4))
 * generate random admin password on quick setup ([a46acba](https://github.com/filebrowser/filebrowser/commit/a46acba5f92ee044661880d6ae349e289d984328)), closes [#3646](https://github.com/filebrowser/filebrowser/issues/3646)
 * imports lint ([54b91b8](https://github.com/filebrowser/filebrowser/commit/54b91b8ff0b8ee1f02f72425ab97d27a5d942fc3))
 * set videojs locale ([#3742](https://github.com/filebrowser/filebrowser/issues/3742)) ([71a8f56](https://github.com/filebrowser/filebrowser/commit/71a8f5662c207e3cd4ee714a5b5a961121f510cd))
 ### Build
 * **deps-dev:** bump vite from 6.0.11 to 6.1.6 in /frontend ([#3886](https://github.com/filebrowser/filebrowser/issues/3886)) ([5355629](https://github.com/filebrowser/filebrowser/commit/5355629fd1e7bd85ee3222fca22da899ba23ea95))
 * **deps:** bump golang.org/x/crypto from 0.31.0 to 0.35.0 ([#3865](https://github.com/filebrowser/filebrowser/issues/3865)) ([0ba9505](https://github.com/filebrowser/filebrowser/commit/0ba9505a19cb369653fc9f8260dc02fcc6587629))
 * **deps:** bump golang.org/x/net from 0.33.0 to 0.38.0 ([#3869](https://github.com/filebrowser/filebrowser/issues/3869)) ([cfea84f](https://github.com/filebrowser/filebrowser/commit/cfea84fd5e7ec9c1d2366293e5db12baaa4e3a81))
 * **deps:** bump vue-i18n from 11.0.1 to 11.1.2 in /frontend ([#3786](https://github.com/filebrowser/filebrowser/issues/3786)) ([35d1c09](https://github.com/filebrowser/filebrowser/commit/35d1c092434b80b22c89a614a02122e9f5965b39))
 ## [2.32.0](https://github.com/filebrowser/filebrowser/compare/v2.31.2...v2.32.0) (2025-01-31)
 ### Features
 * create user on proxy authentication if user does not exist ([#3569](https://github.com/filebrowser/filebrowser/issues/3569)) ([209acf2](https://github.com/filebrowser/filebrowser/commit/209acf2429b06e2e8d78218937c59fd7e7edd1be))
 ### Bug Fixes
 * add proper healthcheck for S6 containers ([#3691](https://github.com/filebrowser/filebrowser/issues/3691)) ([045064f](https://github.com/filebrowser/filebrowser/commit/045064f8b8bf9f86058e877448085e38da8b3f2e))
 * disk usage refreshing ([#3692](https://github.com/filebrowser/filebrowser/issues/3692)) ([bbdd313](https://github.com/filebrowser/filebrowser/commit/bbdd313705b8d253f0c47ad717a6e47b2f46e719))
 * Fix user creation on proxy auth ([#3666](https://github.com/filebrowser/filebrowser/issues/3666)) ([5300d00](https://github.com/filebrowser/filebrowser/commit/5300d00d2e7dbb80a252aff57e100113f02506c3))
 * prompts disappearing on copy / move / upload ([#3537](https://github.com/filebrowser/filebrowser/issues/3537)) ([d1c84a8](https://github.com/filebrowser/filebrowser/commit/d1c84a84123c77dede05c023b3697a432b56122c))
 ### Refactorings
 * Fix eslint warnings ([#3698](https://github.com/filebrowser/filebrowser/issues/3698)) ([0201f9c](https://github.com/filebrowser/filebrowser/commit/0201f9c5c4dd2a4d5a3503e59cdb8045e8d3a91f)), closes [#3407](https://github.com/filebrowser/filebrowser/issues/3407)
 ### Build
 * **deps:** bump cross-spawn from 7.0.3 to 7.0.6 in /tools ([#3601](https://github.com/filebrowser/filebrowser/issues/3601)) ([25372ed](https://github.com/filebrowser/filebrowser/commit/25372edb5c0e616e82b76b5f523633af57d347e0))
 * **deps:** bump github.com/golang-jwt/jwt/v4 from 4.5.0 to 4.5.1 ([#3574](https://github.com/filebrowser/filebrowser/issues/3574)) ([2fdea73](https://github.com/filebrowser/filebrowser/commit/2fdea73430011846276a1cda52458f1d670f5ea7))
 * **deps:** bump golang.org/x/crypto from 0.26.0 to 0.31.0 ([#3634](https://github.com/filebrowser/filebrowser/issues/3634)) ([e92dbb4](https://github.com/filebrowser/filebrowser/commit/e92dbb4bb8b7894264fbf0a48a641712c3b68766))
 * **deps:** bump golang.org/x/net from 0.23.0 to 0.33.0 ([#3712](https://github.com/filebrowser/filebrowser/issues/3712)) ([1194cfe](https://github.com/filebrowser/filebrowser/commit/1194cfe0097a70399c1f06cf0f514b9d70fa463c))
 * **deps:** bump vue-i18n from 9.10.2 to 9.14.2 in /frontend ([#3618](https://github.com/filebrowser/filebrowser/issues/3618)) ([0659594](https://github.com/filebrowser/filebrowser/commit/065959451d3ba12019c6151274aa4e6904cdca99))
 * fix go releaser ([ba797cd](https://github.com/filebrowser/filebrowser/commit/ba797cda3135eddb9b7165dc5ceb932399cb54df))
 * update to node 22 and pnpm ([#3616](https://github.com/filebrowser/filebrowser/issues/3616)) ([d51a343](https://github.com/filebrowser/filebrowser/commit/d51a3438201274a1b826be1b775ca1035ade20c5))
 ### [2.31.2](https://github.com/filebrowser/filebrowser/compare/v2.31.1...v2.31.2) (2024-10-03)
 ### Bug Fixes
 * added whitespace before version ([#3510](https://github.com/filebrowser/filebrowser/issues/3510)) ([2b37e69](https://github.com/filebrowser/filebrowser/commit/2b37e696c9bde4d0c453de236a3555d982346bbb))
 * change location of custom init scripts ([#3493](https://github.com/filebrowser/filebrowser/issues/3493)) ([406d4f7](https://github.com/filebrowser/filebrowser/commit/406d4f78845a1684df7c9c457b208f4dd9b2a930))
 * files list alignment ([#3494](https://github.com/filebrowser/filebrowser/issues/3494)) ([64400ff](https://github.com/filebrowser/filebrowser/commit/64400ffda8b09f66b8662a3c9400235139800a4d))
 * german translation spelling typos ([#3469](https://github.com/filebrowser/filebrowser/issues/3469)) ([1e7c415](https://github.com/filebrowser/filebrowser/commit/1e7c41505fb6a3b9baa1534787492a186e09bcfb))
 ### Build
 * **deps-dev:** bump vite from 5.2.7 to 5.4.6 in /frontend ([#3496](https://github.com/filebrowser/filebrowser/issues/3496)) ([ec7b643](https://github.com/filebrowser/filebrowser/commit/ec7b643e8e9499f7ff226ec7f8e63a9df9890352))
 * **deps:** bump rollup from 4.21.3 to 4.22.4 in /frontend ([#3504](https://github.com/filebrowser/filebrowser/issues/3504)) ([03d74ee](https://github.com/filebrowser/filebrowser/commit/03d74ee7582196c09720f8d488056339f06c446c))
 ### [2.31.1](https://github.com/filebrowser/filebrowser/compare/v2.31.0...v2.31.1) (2024-08-30)
 ### Bug Fixes
 * command not found in shell ([#3438](https://github.com/filebrowser/filebrowser/issues/3438)) ([121d9ab](https://github.com/filebrowser/filebrowser/commit/121d9abecdc7d4e923cfc5023519995938a6ccae))
 ### Build
 * update to alpine 3.20 ([#3447](https://github.com/filebrowser/filebrowser/issues/3447)) ([7de6bc4](https://github.com/filebrowser/filebrowser/commit/7de6bc4a912b5734dd0df02ed8391e78619e2615))
 ## [2.31.0](https://github.com/filebrowser/filebrowser/compare/v2.30.0...v2.31.0) (2024-08-29)
@ -575,7 +87,7 @@ All notable changes to this project will be documented in this file. See [standa
 * close editor when click escape key ([#2947](https://github.com/filebrowser/filebrowser/issues/2947)) ([70c8261](https://github.com/filebrowser/filebrowser/commit/70c826133b8578b8712e6db8f762a15a076cd9a9))
 * enable preview in shared folder ([#3055](https://github.com/filebrowser/filebrowser/issues/3055)) ([4c233c3](https://github.com/filebrowser/filebrowser/commit/4c233c3db39ea5a00d6e602ec0ecbddecb590877))
 * focus editor when opened ([#2946](https://github.com/filebrowser/filebrowser/issues/2946)) ([b19710e](https://github.com/filebrowser/filebrowser/commit/b19710efca6daa7af56dc211d0051d500d2eea22))
-* freezing the list in the background while previewing a file ([#3004](https://github.com/filebrowser/filebrowser/issues/3004)) ([e167c3e](https://github.com/filebrowser/filebrowser/commit/e167c3e1efed8b16be45d994a8d443fda1d8cf49))
+* freezing the list in the backgroud while previewing a file ([#3004](https://github.com/filebrowser/filebrowser/issues/3004)) ([e167c3e](https://github.com/filebrowser/filebrowser/commit/e167c3e1efed8b16be45d994a8d443fda1d8cf49))
 * prompt to confirm discard editor changes ([#2948](https://github.com/filebrowser/filebrowser/issues/2948)) ([fb1a09c](https://github.com/filebrowser/filebrowser/commit/fb1a09c7c172b913c12b30975ca545e505df0c05))
 * select multiple files with ctrl even with singleClick option ([#2953](https://github.com/filebrowser/filebrowser/issues/2953)) ([d49c3df](https://github.com/filebrowser/filebrowser/commit/d49c3dfacfc0ff07e620b3ad2700e64927b06235))
--- a/CODE-OF-CONDUCT.md
+++ b/CODE-OF-CONDUCT.md
@ -1,46 +0,0 @@
 # Code of Conduct
 ## Contributor Covenant Code of Conduct
 ### Our Pledge
 In the interest of fostering an open and welcoming environment, we as contributors and maintainers pledge to making participation in our project and our community a harassment-free experience for everyone, regardless of age, body size, disability, ethnicity, gender identity and expression, level of experience, nationality, personal appearance, race, religion, or sexual identity and orientation.
 ### Our Standards
 Examples of behavior that contributes to creating a positive environment include:
 * Using welcoming and inclusive language
 * Being respectful of differing viewpoints and experiences
 * Gracefully accepting constructive criticism
 * Focusing on what is best for the community
 * Showing empathy towards other community members
 Examples of unacceptable behavior by participants include:
 * The use of sexualized language or imagery and unwelcome sexual attention or advances
 * Trolling, insulting/derogatory comments, and personal or political attacks
 * Public or private harassment
 * Publishing others' private information, such as a physical or electronic address, without explicit permission
 * Other conduct which could reasonably be considered inappropriate in a professional setting
 ### Our Responsibilities
 Project maintainers are responsible for clarifying the standards of acceptable behavior and are expected to take appropriate and fair corrective action in response to any instances of unacceptable behavior.
 Project maintainers have the right and responsibility to remove, edit, or reject comments, commits, code, wiki edits, issues, and other contributions that are not aligned to this Code of Conduct, or to ban temporarily or permanently any contributor for other behaviors that they deem inappropriate, threatening, offensive, or harmful.
 ### Scope
 This Code of Conduct applies both within project spaces and in public spaces when an individual is representing the project or its community. Examples of representing a project or community include using an official project e-mail address, posting via an official social media account, or acting as an appointed representative at an online or offline event. Representation of a project may be further defined and clarified by project maintainers.
 ### Enforcement
 Instances of abusive, harassing, or otherwise unacceptable behavior may be reported by contacting the project team at hacdias@gmail.com. The project team will review and investigate all complaints, and will respond in a way that it deems appropriate to the circumstances. The project team is obligated to maintain confidentiality with regard to the reporter of an incident. Further details of specific enforcement policies may be posted separately.
 Project maintainers who do not follow or enforce the Code of Conduct in good faith may face temporary or permanent repercussions as determined by other members of the project's leadership.
 ### Attribution
 This Code of Conduct is adapted from the [Contributor Covenant](http://contributor-covenant.org), version 1.4, available at [https://contributor-covenant.org/version/1/4](https://contributor-covenant.org/version/1/4).
--- a/CONTRIBUTING.md
+++ b/CONTRIBUTING.md
@ -1,91 +0,0 @@
 # Contributing
 If you're interested in contributing to this project, this is the best place to start. Before contributing to this project, please take a bit of time to read our [Code of Conduct](code-of-conduct.md). Also, note that this project is open-source and licensed under [Apache License 2.0](LICENSE).
 ## Project Structure
 The backend side of the application is written in [Go](https://golang.org/), while the frontend (located on a subdirectory of the same name) is written in [Vue.js](https://vuejs.org/). Due to the tight coupling required by some features, basic knowledge of both Go and Vue.js is recommended.
 * Learn Go: [https://github.com/golang/go/wiki/Learn](https://github.com/golang/go/wiki/Learn)
 * Learn Vue.js: [https://vuejs.org/guide/introduction.html](https://vuejs.org/guide/introduction.html)
 We encourage you to use git to manage your fork. To clone the main repository, just run:
 ```bash
 git clone https://github.com/filebrowser/filebrowser
 ```
 ## Build
 ### Frontend
 We are using [Node.js](https://nodejs.org/en/) on the frontend to manage the build process. The steps to build it are:
 ```bash
 # From the root of the repo, go to frontend/
 cd frontend
 # Install the dependencies
 pnpm install
 # Build the frontend
 pnpm run build
 ```
 This will install the dependencies and build the frontend so you can then embed it into the Go app. Although, if you want to play with it, you'll get bored of building it after every change you do. So, you can run the command below to watch for changes:
 ```bash
 pnpm run dev
 ```
 ### Backend
 First of all, you need to download the required dependencies. We are using the built-in `go mod` tool for dependency management. To get the modules, run:
 ```bash
 go mod download
 ```
 The magic of File Browser is that the static assets are bundled into the final binary. For that, we use [Go embed.FS](https://golang.org/pkg/embed/). The files from `frontend/dist` will be embedded during the build process.
 To build File Browser is just like any other Go program:
 ```bash
 go build
 ```
 To create a development build use the "dev" tag, this way the content inside the frontend folder will not be embedded in the binary but will be reloaded at every change:
 ```bash
 go build -tags dev
 ```
 ## Translations
 Translations are managed on Transifex, which is an online website where everyone can contribute and translate strings for our project. It automatically syncs with the main language file \(in English\) and,, for you to contribute, you just need to:
 1. Go to our Transifex web page: [app.transifex.com/file-browser/file-browser](https://app.transifex.com/file-browser/file-browser/)
 2. Click on **Join the project** and pick your language. We'll accept you as soon as possible. If you're language is not on the list, please request it via the interface.
 Translations are automatically pushed to GitHub via an integration.
 ## Authentication Provider
 To build a new authentication provider, you need to implement the [Auther interface](https://github.com/filebrowser/filebrowser/blob/master/auth/auth.go), whose method will be called on the login page after the user has submitted their login data.
 ```go
 // Auther is the authentication interface.
 type Auther interface {
    // Auth is called to authenticate a request.
    Auth(r *http.Request, s *users.Storage, root string) (*users.User, error)
 }
 ```
 After implementing the interface you should:
 1. Add it to [`auth` directory](https://github.com/filebrowser/filebrowser/blob/master/auth).
 2. Add it to the [configuration parser](https://github.com/filebrowser/filebrowser/blob/master/cmd/config.go) for the CLI.
 3. Add it to the [`authBackend.Get`](https://github.com/filebrowser/filebrowser/blob/master/storage/bolt/auth.go).
 If you need to add more flags, please update the function `addConfigFlags`.
--- a/55
+++ b/55
@ -1,46 +1,19 @@
-## Multistage build: First stage fetches dependencies
+FROM alpine:latest
-FROM alpine:3.22 AS fetcher
+RUN apk --update add ca-certificates \
                     mailcap \
                     curl \
                     jq
-# install and copy ca-certificates, mailcap, and tini-static; download JSON.sh
+COPY healthcheck.sh /healthcheck.sh
-RUN apk update && \
+RUN chmod +x /healthcheck.sh  # Make the script executable
    apk --no-cache add ca-certificates mailcap tini-static && \
    wget -O /JSON.sh https://raw.githubusercontent.com/dominictarr/JSON.sh/0d5e5c77365f63809bf6e77ef44a1f34b0e05840/JSON.sh
-## Second stage: Use lightweight BusyBox image for final runtime environment
+HEALTHCHECK --start-period=2s --interval=5s --timeout=3s \
-FROM busybox:1.37.0-musl
+    CMD /healthcheck.sh || exit 1
 # Define non-root user UID and GID
 ENV UID=1000
 ENV GID=1000
 # Create user group and user
 RUN addgroup -g $GID user && \
    adduser -D -u $UID -G user user
 # Copy binary, scripts, and configurations into image with proper ownership
 COPY --chown=user:user filebrowser /bin/filebrowser
 COPY --chown=user:user docker/common/ /
 COPY --chown=user:user docker/alpine/ /
 COPY --chown=user:user --from=fetcher /sbin/tini-static /bin/tini
 COPY --from=fetcher /JSON.sh /JSON.sh
 COPY --from=fetcher /etc/ca-certificates.conf /etc/ca-certificates.conf
 COPY --from=fetcher /etc/ca-certificates /etc/ca-certificates
 COPY --from=fetcher /etc/mime.types /etc/mime.types
 COPY --from=fetcher /etc/ssl /etc/ssl
 # Create data directories, set ownership, and ensure healthcheck script is executable
 RUN mkdir -p /config /database /srv && \
    chown -R user:user /config /database /srv \
    && chmod +x /healthcheck.sh
 # Define healthcheck script
 HEALTHCHECK --start-period=2s --interval=5s --timeout=3s CMD /healthcheck.sh
 # Set the user, volumes and exposed ports
 USER user
 VOLUME /srv /config /database
 VOLUME /srv
 EXPOSE 80
-ENTRYPOINT [ "tini", "--", "/init.sh" ]
+COPY docker_config.json /.filebrowser.json
 COPY filebrowser /filebrowser
 ENTRYPOINT [ "/filebrowser" ]
--- a/Dockerfile.s6
+++ b/Dockerfile.s6
@ -1,24 +1,16 @@
-FROM ghcr.io/linuxserver/baseimage-alpine:3.22
+FROM ghcr.io/linuxserver/baseimage-alpine:3.17
-RUN apk update && \
+RUN apk --update add ca-certificates \
-  apk --no-cache add ca-certificates mailcap jq libcap
+                     mailcap \
                     curl
-# Make user and create necessary directories
+HEALTHCHECK --start-period=2s --interval=5s --timeout=3s \
-RUN mkdir -p /config /database /srv && \
+  CMD curl -f http://localhost/health || exit 1
  chown -R abc:abc /config /database /srv
-# Copy files and set permissions
+# copy local files
-COPY filebrowser /bin/filebrowser
+COPY docker/root/ /
-COPY docker/common/ /
+COPY filebrowser /usr/bin/filebrowser
 COPY docker/s6/ /
-RUN chown -R abc:abc /bin/filebrowser /defaults healthcheck.sh && \
+# ports and volumes
  setcap 'cap_net_bind_service=+ep' /bin/filebrowser
 # Define healthcheck script
 HEALTHCHECK --start-period=2s --interval=5s --timeout=3s CMD /healthcheck.sh
 # Set the volumes and exposed ports
 VOLUME /srv /config /database
 EXPOSE 80
--- a/Dockerfile.s6.aarch64
+++ b/Dockerfile.s6.aarch64
@ -0,0 +1,16 @@
 FROM ghcr.io/linuxserver/baseimage-alpine:arm64v8-3.17
 RUN apk --update add ca-certificates \
                     mailcap \
                     curl
 HEALTHCHECK --start-period=2s --interval=5s --timeout=3s \
  CMD curl -f http://localhost/health || exit 1
 # copy local files
 COPY docker/root/ /
 COPY filebrowser /usr/bin/filebrowser
 # ports and volumes
 VOLUME /srv /config /database
 EXPOSE 80
--- a/Dockerfile.s6.armhf
+++ b/Dockerfile.s6.armhf
@ -0,0 +1,16 @@
 FROM ghcr.io/linuxserver/baseimage-alpine:arm32v7-3.17
 RUN apk --update add ca-certificates \
                     mailcap \
                     curl
 HEALTHCHECK --start-period=2s --interval=5s --timeout=3s \
  CMD curl -f http://localhost/health || exit 1
 # copy local files
 COPY docker/root/ /
 COPY filebrowser /usr/bin/filebrowser
 # ports and volumes
 VOLUME /srv /config /database
 EXPOSE 80
--- a/2
+++ b/2
@ -187,7 +187,7 @@
      same "printed page" as the copyright notice for easier
      identification within third-party archives.
-   Copyright 2018 File Browser Contributors
+   Copyright 2018 File Browser contributors
   Licensed under the Apache License, Version 2.0 (the "License");
   you may not use this file except in compliance with the License.
--- a/24
+++ b/24
@ -3,14 +3,6 @@ include tools.mk
 LDFLAGS += -X "$(MODULE)/version.Version=$(VERSION)" -X "$(MODULE)/version.CommitSHA=$(VERSION_HASH)"
 SITE_DOCKER_FLAGS = \
 	-v $(CURDIR)/www:/docs \
 	-v $(CURDIR)/LICENSE:/docs/docs/LICENSE \
 	-v $(CURDIR)/SECURITY.md:/docs/docs/security.md \
 	-v $(CURDIR)/CHANGELOG.md:/docs/docs/changelog.md \
 	-v $(CURDIR)/CODE-OF-CONDUCT.md:/docs/docs/code-of-conduct.md \
 	-v $(CURDIR)/CONTRIBUTING.md:/docs/docs/contributing.md
 ## Build:
 .PHONY: build
@ -18,7 +10,7 @@ build: | build-frontend build-backend ## Build binary
 .PHONY: build-frontend
 build-frontend: ## Build frontend
-	$Q cd frontend && pnpm install --frozen-lockfile && pnpm run build
+	$Q cd frontend && npm ci && npm run build
 .PHONY: build-backend
 build-backend: ## Build backend
@ -29,7 +21,6 @@ test: | test-frontend test-backend ## Run all tests
 .PHONY: test-frontend
 test-frontend: ## Run frontend tests
 	$Q cd frontend && pnpm install --frozen-lockfile && pnpm run typecheck
 .PHONY: test-backend
 test-backend: ## Run backend tests
@ -40,7 +31,7 @@ lint: lint-frontend lint-backend ## Run all linters
 .PHONY: lint-frontend
 lint-frontend: ## Run frontend linters
-	$Q cd frontend && pnpm install --frozen-lockfile && pnpm run lint
+	$Q cd frontend && npm ci && npm run lint
 .PHONY: lint-backend
 lint-backend: | $(golangci-lint) ## Run backend linters
@ -61,17 +52,6 @@ clean: clean-tools ## Clean
 bump-version: $(standard-version) ## Bump app version
 	$Q ./scripts/bump_version.sh
 .PHONY: site
 site: ## Build site
 	@rm -rf www/public
 	docker build -f www/Dockerfile --progress=plain -t filebrowser.site www
 	docker run --rm $(SITE_DOCKER_FLAGS) filebrowser.site build -d "public"
 .PHONY: site-serve
 site-serve: ## Serve site for development
 	docker build -f www/Dockerfile --progress=plain -t filebrowser.site www
 	docker run --rm -it -p 8000:8000 $(SITE_DOCKER_FLAGS) filebrowser.site
 ## Help:
 help: ## Show this help
 	@echo ''
--- a/README.md
+++ b/README.md
@ -2,37 +2,38 @@
  <img src="https://raw.githubusercontent.com/filebrowser/logo/master/banner.png" width="550"/>
 </p>
 ![Preview](https://user-images.githubusercontent.com/5447088/50716739-ebd26700-107a-11e9-9817-14230c53efd2.gif)
 [![Build](https://github.com/filebrowser/filebrowser/actions/workflows/main.yaml/badge.svg)](https://github.com/filebrowser/filebrowser/actions/workflows/main.yaml)
-[![Go Report Card](https://goreportcard.com/badge/github.com/filebrowser/filebrowser)](https://goreportcard.com/report/github.com/filebrowser/filebrowser)
+[![Go Report Card](https://goreportcard.com/badge/github.com/filebrowser/filebrowser?style=flat-square)](https://goreportcard.com/report/github.com/filebrowser/filebrowser)
-[![Documentation](https://img.shields.io/badge/godoc-reference-blue.svg)](http://godoc.org/github.com/filebrowser/filebrowser)
+[![Documentation](https://img.shields.io/badge/godoc-reference-blue.svg?style=flat-square)](http://godoc.org/github.com/filebrowser/filebrowser)
-[![Version](https://img.shields.io/github/release/filebrowser/filebrowser.svg)](https://github.com/filebrowser/filebrowser/releases/latest)
+[![Version](https://img.shields.io/github/release/filebrowser/filebrowser.svg?style=flat-square)](https://github.com/filebrowser/filebrowser/releases/latest)
-[![Chat IRC](https://img.shields.io/badge/freenode-%23filebrowser-blue.svg)](http://webchat.freenode.net/?channels=%23filebrowser)
+[![Chat IRC](https://img.shields.io/badge/freenode-%23filebrowser-blue.svg?style=flat-square)](http://webchat.freenode.net/?channels=%23filebrowser)
-File Browser provides a file managing interface within a specified directory and it can be used to upload, delete, preview and edit your files. It is a **create-your-own-cloud**-kind of software where you can just install it on your server, direct it to a path and access your files through a nice web interface.
+filebrowser provides a file managing interface within a specified directory and it can be used to upload, delete, preview, rename and edit your files. It allows the creation of multiple users and each user can have its own directory. It can be used as a standalone app.
-## Documentation
+## Demo
-Documentation on how to install, configure, and contribute to this project is hosted at [filebrowser.org](https://filebrowser.org).
+url: https://demo.filebrowser.org/
-## Project Status
+credentials: `demo`/`demo`
-> [!WARNING]
+## Features
 >
 > This project is currently on **maintenance-only** mode, and is looking for new maintainers. For more information, please read the [discussion #4906](https://github.com/filebrowser/filebrowser/discussions/4906). Therefore, please note the following:
 >
 > - It can take a while until someone gets back to you. Please be patient.
 > - [Issues][issues] are only being used to track bugs. Any unrelated issues will be converted into a [discussion][discussions].
 > - No new features will be implemented until further notice. The priority is on triaging issues and merge bug fixes.
 > 
 > If you're interested in maintaining this project, please reach out via the discussion above.
-[issues]: https://github.com/filebrowser/filebrowser/issues
+Please refer to our docs at [https://filebrowser.org/features](https://filebrowser.org/features)
-[discussions]: https://github.com/filebrowser/filebrowser/discussions
+
 ## Install
 For installation instructions please refer to our docs at [https://filebrowser.org/installation](https://filebrowser.org/installation).
 ## Configuration
 [Authentication Method](https://filebrowser.org/configuration/authentication-method) - You can change the way the user authenticates with the filebrowser server
 [Command Runner](https://filebrowser.org/configuration/command-runner) - The command runner is a feature that enables you to execute any shell command you want before or after a certain event.
 [Custom Branding](https://filebrowser.org/configuration/custom-branding) - You can customize your File Browser installation by change its name to any other you want, by adding a global custom style sheet and by using your own logotype if you want.
 ## Contributing
-Contributions are always welcome. To start contributing to this project, read our [guidelines](CONTRIBUTING.md) first.
+If you're interested in contributing to this project, our docs are best places to start [https://filebrowser.org/contributing](https://filebrowser.org/contributing).
 ## License
 [Apache License 2.0](LICENSE) © File Browser Contributors
--- a/SECURITY.md
+++ b/SECURITY.md
@ -12,9 +12,7 @@ currently being supported with security updates.
 ## Reporting a Vulnerability
-Vulnerabilities with critical impact should be reported on the [Security](https://github.com/filebrowser/filebrowser/security) page of this repository, which is a private way of communicating vulnerabilities to maintainers. This project is in maintenance-only mode and it can take a while until someone gets back to you.
+Vulnerabilities should be reported to filebrowser@googlegroups.com - which is a private, maintainer-only group. Maintainers will attempt to respond to/confirm reports within 2-3 days, but if you believe your report to be "critical" to user safety and security, please note as such in the subject. We have tens of thousands of users using our software, and take security vulnerabilities seriously.
 If it is not a critical vulnerability, please open an issue and we will categorize it as a security issue. By giving visibility, we can get more help from the community at fixing such issues.
 When reporting an issue, where possible, please provide at least:
@ -23,4 +21,6 @@ When reporting an issue, where possible, please provide at least:
 * Steps to reproduce
 * Your recommended remediation(s), if any.
-The File Browser team is a volunteer-only effort, and may reach back out for clarification.
+The FileBrowser team is a volunteer-only effort, and may reach back out for clarification.
 > Note: Please do not open public issues for security issues, as GitHub does not provide facility for private issues, and deleting the issue makes it hard to triage/respond back to the reporter.
--- a/auth/hook.go
+++ b/auth/hook.go
@ -123,7 +123,7 @@ func (a *HookAuth) GetValues(s string) {
 	s = strings.ReplaceAll(s, "\r\n", "\n")
 	// iterate input lines
-	for val := range strings.Lines(s) {
+	for _, val := range strings.Split(s, "\n") {
 		v := strings.SplitN(val, "=", 2)
 		// skips non key and value format
@ -150,7 +150,7 @@ func (a *HookAuth) SaveUser() (*users.User, error) {
 	}
 	if u == nil {
-		pass, err := users.ValidateAndHashPwd(a.Cred.Password, a.Settings.MinimumPasswordLength)
+		pass, err := users.HashPwd(a.Cred.Password)
 		if err != nil {
 			return nil, err
 		}
@ -186,7 +186,7 @@ func (a *HookAuth) SaveUser() (*users.User, error) {
 		// update the password when it doesn't match the current
 		if p {
-			pass, err := users.ValidateAndHashPwd(a.Cred.Password, a.Settings.MinimumPasswordLength)
+			pass, err := users.HashPwd(a.Cred.Password)
 			if err != nil {
 				return nil, err
 			}
--- a/auth/proxy.go
+++ b/auth/proxy.go
@ -3,6 +3,7 @@ package auth
 import (
 	"errors"
 	"net/http"
 	"os"
 	fbErrors "github.com/filebrowser/filebrowser/v2/errors"
 	"github.com/filebrowser/filebrowser/v2/settings"
@ -18,50 +19,16 @@ type ProxyAuth struct {
 }
 // Auth authenticates the user via an HTTP header.
-func (a ProxyAuth) Auth(r *http.Request, usr users.Store, setting *settings.Settings, srv *settings.Server) (*users.User, error) {
+func (a ProxyAuth) Auth(r *http.Request, usr users.Store, _ *settings.Settings, srv *settings.Server) (*users.User, error) {
 	username := r.Header.Get(a.Header)
 	user, err := usr.Get(srv.Root, username)
 	if errors.Is(err, fbErrors.ErrNotExist) {
-		return a.createUser(usr, setting, srv, username)
+		return nil, os.ErrPermission
 	}
 	return user, err
 }
 func (a ProxyAuth) createUser(usr users.Store, setting *settings.Settings, srv *settings.Server, username string) (*users.User, error) {
 	const randomPasswordLength = settings.DefaultMinimumPasswordLength + 10
 	pwd, err := users.RandomPwd(randomPasswordLength)
 	if err != nil {
 		return nil, err
 	}
 	var hashedRandomPassword string
 	hashedRandomPassword, err = users.ValidateAndHashPwd(pwd, setting.MinimumPasswordLength)
 	if err != nil {
 		return nil, err
 	}
 	user := &users.User{
 		Username:     username,
 		Password:     hashedRandomPassword,
 		LockPassword: true,
 	}
 	setting.Defaults.Apply(user)
 	var userHome string
 	userHome, err = setting.MakeUserDir(user.Username, user.Scope, srv.Root)
 	if err != nil {
 		return nil, err
 	}
 	user.Scope = userHome
 	err = usr.Save(user)
 	if err != nil {
 		return nil, err
 	}
 	return user, nil
 }
 // LoginPage tells that proxy auth doesn't require a login page.
 func (a ProxyAuth) LoginPage() bool {
 	return false
--- a/cmd/cmd.go
+++ b/cmd/cmd.go
@ -1,6 +1,12 @@
 package cmd
 import (
 	"log"
 )
 // Execute executes the commands.
-func Execute() error {
+func Execute() {
-	return rootCmd.Execute()
+	if err := rootCmd.Execute(); err != nil {
 		log.Fatal(err)
 	}
 }
--- a/cmd/cmds_add.go
+++ b/cmd/cmds_add.go
@ -15,18 +15,13 @@ var cmdsAddCmd = &cobra.Command{
 	Short: "Add a command to run on a specific event",
 	Long:  `Add a command to run on a specific event.`,
 	Args:  cobra.MinimumNArgs(2),
-	RunE: python(func(_ *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(_ *cobra.Command, args []string, d pythonData) {
 		s, err := d.store.Settings.Get()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		command := strings.Join(args[1:], " ")
 		s.Commands[args[0]] = append(s.Commands[args[0]], command)
 		err = d.store.Settings.Save(s)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		printEvents(s.Commands)
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/cmds_ls.go
+++ b/cmd/cmds_ls.go
@ -14,15 +14,10 @@ var cmdsLsCmd = &cobra.Command{
 	Short: "List all commands for each event",
 	Long:  `List all commands for each event.`,
 	Args:  cobra.NoArgs,
-	RunE: python(func(cmd *cobra.Command, _ []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, _ []string, d pythonData) {
 		s, err := d.store.Settings.Get()
-		if err != nil {
+		checkErr(err)
-			return err
+		evt := mustGetString(cmd.Flags(), "event")
 		}
 		evt, err := getString(cmd.Flags(), "event")
 		if err != nil {
 			return err
 		}
 		if evt == "" {
 			printEvents(s.Commands)
@ -32,6 +27,5 @@ var cmdsLsCmd = &cobra.Command{
 			show["after_"+evt] = s.Commands["after_"+evt]
 			printEvents(show)
 		}
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/cmds_rm.go
+++ b/cmd/cmds_rm.go
@ -35,31 +35,22 @@ including 'index_end'.`,
 		return nil
 	},
-	RunE: python(func(_ *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(_ *cobra.Command, args []string, d pythonData) {
 		s, err := d.store.Settings.Get()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		evt := args[0]
 		i, err := strconv.Atoi(args[1])
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		f := i
 		if len(args) == 3 {
 			f, err = strconv.Atoi(args[2])
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 		}
 		s.Commands[evt] = append(s.Commands[evt][:i], s.Commands[evt][f+1:]...)
 		err = d.store.Settings.Save(s)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		printEvents(s.Commands)
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/config.go
+++ b/cmd/config.go
@ -32,7 +32,6 @@ func addConfigFlags(flags *pflag.FlagSet) {
 	addUserFlags(flags)
 	flags.BoolP("signup", "s", false, "allow users to signup")
 	flags.Bool("create-user-dir", false, "generate user's home directory automatically")
 	flags.Uint("minimum-password-length", settings.DefaultMinimumPasswordLength, "minimum password length for new users")
 	flags.String("shell", "", "shell command to which other commands should be appended")
 	flags.String("auth.method", string(auth.MethodJSONAuth), "authentication type")
@ -49,18 +48,11 @@ func addConfigFlags(flags *pflag.FlagSet) {
 	flags.String("branding.files", "", "path to directory with images and custom styles")
 	flags.Bool("branding.disableExternal", false, "disable external links such as GitHub links")
 	flags.Bool("branding.disableUsedPercentage", false, "disable used disk percentage graph")
 	// NB: these are string so they can be presented as octal in the help text
 	// as that's the conventional representation for modes in Unix.
 	flags.String("file-mode", fmt.Sprintf("%O", settings.DefaultFileMode), "Mode bits that new files are created with")
 	flags.String("dir-mode", fmt.Sprintf("%O", settings.DefaultDirMode), "Mode bits that new directories are created with")
 }
-func getAuthMethod(flags *pflag.FlagSet, defaults ...interface{}) (settings.AuthMethod, map[string]interface{}, error) {
+//nolint:gocyclo
-	methodStr, err := getString(flags, "auth.method")
+func getAuthentication(flags *pflag.FlagSet, defaults ...interface{}) (settings.AuthMethod, auth.Auther) {
-	if err != nil {
+	method := settings.AuthMethod(mustGetString(flags, "auth.method"))
 		return "", nil, err
 	}
 	method := settings.AuthMethod(methodStr)
 	var defaultAuther map[string]interface{}
 	if len(defaults) > 0 {
@ -71,129 +63,87 @@ func getAuthMethod(flags *pflag.FlagSet, defaults ...interface{}) (settings.Auth
 					method = def.AuthMethod
 				case auth.Auther:
 					ms, err := json.Marshal(def)
-					if err != nil {
+					checkErr(err)
 						return "", nil, err
 					}
 					err = json.Unmarshal(ms, &defaultAuther)
-					if err != nil {
+					checkErr(err)
 						return "", nil, err
 					}
 				}
 			}
 		}
 	}
 	return method, defaultAuther, nil
 }
 func getProxyAuth(flags *pflag.FlagSet, defaultAuther map[string]interface{}) (auth.Auther, error) {
 	header, err := getString(flags, "auth.header")
 	if err != nil {
 		return nil, err
 	}
 	if header == "" {
 		header = defaultAuther["header"].(string)
 	}
 	if header == "" {
 		return nil, nerrors.New("you must set the flag 'auth.header' for method 'proxy'")
 	}
 	return &auth.ProxyAuth{Header: header}, nil
 }
 func getNoAuth() auth.Auther {
 	return &auth.NoAuth{}
 }
 func getJSONAuth(flags *pflag.FlagSet, defaultAuther map[string]interface{}) (auth.Auther, error) {
 	jsonAuth := &auth.JSONAuth{}
 	host, err := getString(flags, "recaptcha.host")
 	if err != nil {
 		return nil, err
 	}
 	key, err := getString(flags, "recaptcha.key")
 	if err != nil {
 		return nil, err
 	}
 	secret, err := getString(flags, "recaptcha.secret")
 	if err != nil {
 		return nil, err
 	}
 	if key == "" {
 		if kmap, ok := defaultAuther["recaptcha"].(map[string]interface{}); ok {
 			key = kmap["key"].(string)
 		}
 	}
 	if secret == "" {
 		if smap, ok := defaultAuther["recaptcha"].(map[string]interface{}); ok {
 			secret = smap["secret"].(string)
 		}
 	}
 	if key != "" && secret != "" {
 		jsonAuth.ReCaptcha = &auth.ReCaptcha{
 			Host:   host,
 			Key:    key,
 			Secret: secret,
 		}
 	}
 	return jsonAuth, nil
 }
 func getHookAuth(flags *pflag.FlagSet, defaultAuther map[string]interface{}) (auth.Auther, error) {
 	command, err := getString(flags, "auth.command")
 	if err != nil {
 		return nil, err
 	}
 	if command == "" {
 		command = defaultAuther["command"].(string)
 	}
 	if command == "" {
 		return nil, nerrors.New("you must set the flag 'auth.command' for method 'hook'")
 	}
 	return &auth.HookAuth{Command: command}, nil
 }
 func getAuthentication(flags *pflag.FlagSet, defaults ...interface{}) (settings.AuthMethod, auth.Auther, error) {
 	method, defaultAuther, err := getAuthMethod(flags, defaults...)
 	if err != nil {
 		return "", nil, err
 	}
 	var auther auth.Auther
-	switch method {
+	if method == auth.MethodProxyAuth {
-	case auth.MethodProxyAuth:
+		header := mustGetString(flags, "auth.header")
-		auther, err = getProxyAuth(flags, defaultAuther)
+
-	case auth.MethodNoAuth:
+		if header == "" {
-		auther = getNoAuth()
+			header = defaultAuther["header"].(string)
-	case auth.MethodJSONAuth:
+		}
-		auther, err = getJSONAuth(flags, defaultAuther)
+
-	case auth.MethodHookAuth:
+		if header == "" {
-		auther, err = getHookAuth(flags, defaultAuther)
+			checkErr(nerrors.New("you must set the flag 'auth.header' for method 'proxy'"))
-	default:
+		}
-		return "", nil, errors.ErrInvalidAuthMethod
+
 		auther = &auth.ProxyAuth{Header: header}
 	}
-	if err != nil {
+	if method == auth.MethodNoAuth {
-		return "", nil, err
+		auther = &auth.NoAuth{}
 	}
-	return method, auther, nil
+	if method == auth.MethodJSONAuth {
 		jsonAuth := &auth.JSONAuth{}
 		host := mustGetString(flags, "recaptcha.host")
 		key := mustGetString(flags, "recaptcha.key")
 		secret := mustGetString(flags, "recaptcha.secret")
 		if key == "" {
 			if kmap, ok := defaultAuther["recaptcha"].(map[string]interface{}); ok {
 				key = kmap["key"].(string)
 			}
 		}
 		if secret == "" {
 			if smap, ok := defaultAuther["recaptcha"].(map[string]interface{}); ok {
 				secret = smap["secret"].(string)
 			}
 		}
 		if key != "" && secret != "" {
 			jsonAuth.ReCaptcha = &auth.ReCaptcha{
 				Host:   host,
 				Key:    key,
 				Secret: secret,
 			}
 		}
 		auther = jsonAuth
 	}
 	if method == auth.MethodHookAuth {
 		command := mustGetString(flags, "auth.command")
 		if command == "" {
 			command = defaultAuther["command"].(string)
 		}
 		if command == "" {
 			checkErr(nerrors.New("you must set the flag 'auth.command' for method 'hook'"))
 		}
 		auther = &auth.HookAuth{Command: command}
 	}
 	if auther == nil {
 		panic(errors.ErrInvalidAuthMethod)
 	}
 	return method, auther
 }
-func printSettings(ser *settings.Server, set *settings.Settings, auther auth.Auther) error {
+func printSettings(ser *settings.Server, set *settings.Settings, auther auth.Auther) {
 	w := tabwriter.NewWriter(os.Stdout, 0, 0, 2, ' ', 0)
 	fmt.Fprintf(w, "Sign up:\t%t\n", set.Signup)
 	fmt.Fprintf(w, "Create User Dir:\t%t\n", set.CreateUserDir)
 	fmt.Fprintf(w, "Minimum Password Length:\t%d\n", set.MinimumPasswordLength)
 	fmt.Fprintf(w, "Auth method:\t%s\n", set.AuthMethod)
 	fmt.Fprintf(w, "Shell:\t%s\t\n", strings.Join(set.Shell, " "))
 	fmt.Fprintln(w, "\nBranding:")
@ -218,8 +168,6 @@ func printSettings(ser *settings.Server, set *settings.Settings, auther auth.Aut
 	fmt.Fprintf(w, "\tLocale:\t%s\n", set.Defaults.Locale)
 	fmt.Fprintf(w, "\tView mode:\t%s\n", set.Defaults.ViewMode)
 	fmt.Fprintf(w, "\tSingle Click:\t%t\n", set.Defaults.SingleClick)
 	fmt.Fprintf(w, "\tFile Creation Mode:\t%O\n", set.FileMode)
 	fmt.Fprintf(w, "\tDirectory Creation Mode:\t%O\n", set.DirMode)
 	fmt.Fprintf(w, "\tCommands:\t%s\n", strings.Join(set.Defaults.Commands, " "))
 	fmt.Fprintf(w, "\tSorting:\n")
 	fmt.Fprintf(w, "\t\tBy:\t%s\n", set.Defaults.Sorting.By)
@ -236,9 +184,6 @@ func printSettings(ser *settings.Server, set *settings.Settings, auther auth.Aut
 	w.Flush()
 	b, err := json.MarshalIndent(auther, "", "  ")
-	if err != nil {
+	checkErr(err)
 		return err
 	}
 	fmt.Printf("\nAuther configuration (raw):\n\n%s\n\n", string(b))
 	return nil
 }
--- a/cmd/config_cat.go
+++ b/cmd/config_cat.go
@ -13,19 +13,13 @@ var configCatCmd = &cobra.Command{
 	Short: "Prints the configuration",
 	Long:  `Prints the configuration.`,
 	Args:  cobra.NoArgs,
-	RunE: python(func(_ *cobra.Command, _ []string, d *pythonData) error {
+	Run: python(func(_ *cobra.Command, _ []string, d pythonData) {
 		set, err := d.store.Settings.Get()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		ser, err := d.store.Settings.GetServer()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		auther, err := d.store.Auth.Get(set.AuthMethod)
-		if err != nil {
+		checkErr(err)
-			return err
+		printSettings(ser, set, auther)
 		}
 		return printSettings(ser, set, auther)
 	}, pythonConfig{}),
 }
--- a/cmd/config_export.go
+++ b/cmd/config_export.go
@ -15,21 +15,15 @@ var configExportCmd = &cobra.Command{
 json or yaml file. This exported configuration can be changed,
 and imported again with 'config import' command.`,
 	Args: jsonYamlArg,
-	RunE: python(func(_ *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(_ *cobra.Command, args []string, d pythonData) {
 		settings, err := d.store.Settings.Get()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		server, err := d.store.Settings.GetServer()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		auther, err := d.store.Auth.Get(settings.AuthMethod)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		data := &settingsFile{
 			Settings: settings,
@ -38,9 +32,6 @@ and imported again with 'config import' command.`,
 		}
 		err = marshal(args[0], data)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/config_import.go
+++ b/cmd/config_import.go
@ -34,89 +34,61 @@ database.
 The path must be for a json or yaml file.`,
 	Args: jsonYamlArg,
-	RunE: python(func(_ *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(_ *cobra.Command, args []string, d pythonData) {
 		var key []byte
 		var err error
 		if d.hadDB {
-			settings, settingErr := d.store.Settings.Get()
+			settings, err := d.store.Settings.Get()
-			if settingErr != nil {
+			checkErr(err)
 				return settingErr
 			}
 			key = settings.Key
 		} else {
 			key = generateKey()
 		}
 		file := settingsFile{}
-		err = unmarshal(args[0], &file)
+		err := unmarshal(args[0], &file)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		file.Settings.Key = key
 		err = d.store.Settings.Save(file.Settings)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		err = d.store.Settings.SaveServer(file.Server)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		var rawAuther interface{}
-		if filepath.Ext(args[0]) != ".json" {
+		if filepath.Ext(args[0]) != ".json" { //nolint:goconst
 			rawAuther = cleanUpInterfaceMap(file.Auther.(map[interface{}]interface{}))
 		} else {
 			rawAuther = file.Auther
 		}
 		var auther auth.Auther
 		var autherErr error
 		switch file.Settings.AuthMethod {
 		case auth.MethodJSONAuth:
-			var a interface{}
+			auther = getAuther(auth.JSONAuth{}, rawAuther).(*auth.JSONAuth)
 			a, autherErr = getAuther(auth.JSONAuth{}, rawAuther)
 			auther = a.(*auth.JSONAuth)
 		case auth.MethodNoAuth:
-			var a interface{}
+			auther = getAuther(auth.NoAuth{}, rawAuther).(*auth.NoAuth)
 			a, autherErr = getAuther(auth.NoAuth{}, rawAuther)
 			auther = a.(*auth.NoAuth)
 		case auth.MethodProxyAuth:
-			var a interface{}
+			auther = getAuther(auth.ProxyAuth{}, rawAuther).(*auth.ProxyAuth)
 			a, autherErr = getAuther(auth.ProxyAuth{}, rawAuther)
 			auther = a.(*auth.ProxyAuth)
 		case auth.MethodHookAuth:
-			var a interface{}
+			auther = getAuther(&auth.HookAuth{}, rawAuther).(*auth.HookAuth)
 			a, autherErr = getAuther(&auth.HookAuth{}, rawAuther)
 			auther = a.(*auth.HookAuth)
 		default:
-			return errors.New("invalid auth method")
+			checkErr(errors.New("invalid auth method"))
 		}
 		if autherErr != nil {
 			return autherErr
 		}
 		err = d.store.Auth.Save(auther)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
-		return printSettings(file.Server, file.Settings, auther)
+		printSettings(file.Server, file.Settings, auther)
 	}, pythonConfig{allowNoDB: true}),
 }
-func getAuther(sample auth.Auther, data interface{}) (interface{}, error) {
+func getAuther(sample auth.Auther, data interface{}) interface{} {
 	authType := reflect.TypeOf(sample)
 	auther := reflect.New(authType).Interface()
 	bytes, err := json.Marshal(data)
-	if err != nil {
+	checkErr(err)
 		return nil, err
 	}
 	err = json.Unmarshal(bytes, &auther)
-	if err != nil {
+	checkErr(err)
-		return nil, err
+	return auther
 	}
 	return auther, nil
 }
--- a/cmd/config_init.go
+++ b/cmd/config_init.go
@ -22,161 +22,51 @@ this options can be changed in the future with the command
 to the defaults when creating new users and you don't
 override the options.`,
 	Args: cobra.NoArgs,
-	RunE: python(func(cmd *cobra.Command, _ []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, _ []string, d pythonData) {
 		defaults := settings.UserDefaults{}
 		flags := cmd.Flags()
-		err := getUserDefaults(flags, &defaults, true)
+		getUserDefaults(flags, &defaults, true)
-		if err != nil {
+		authMethod, auther := getAuthentication(flags)
 			return err
 		}
 		authMethod, auther, err := getAuthentication(flags)
 		if err != nil {
 			return err
 		}
 		key := generateKey()
 		signup, err := getBool(flags, "signup")
 		if err != nil {
 			return err
 		}
 		createUserDir, err := getBool(flags, "create-user-dir")
 		if err != nil {
 			return err
 		}
 		minLength, err := getUint(flags, "minimum-password-length")
 		if err != nil {
 			return err
 		}
 		shell, err := getString(flags, "shell")
 		if err != nil {
 			return err
 		}
 		brandingName, err := getString(flags, "branding.name")
 		if err != nil {
 			return err
 		}
 		brandingDisableExternal, err := getBool(flags, "branding.disableExternal")
 		if err != nil {
 			return err
 		}
 		brandingDisableUsedPercentage, err := getBool(flags, "branding.disableUsedPercentage")
 		if err != nil {
 			return err
 		}
 		brandingTheme, err := getString(flags, "branding.theme")
 		if err != nil {
 			return err
 		}
 		brandingFiles, err := getString(flags, "branding.files")
 		if err != nil {
 			return err
 		}
 		s := &settings.Settings{
-			Key:                   key,
+			Key:           generateKey(),
-			Signup:                signup,
+			Signup:        mustGetBool(flags, "signup"),
-			CreateUserDir:         createUserDir,
+			CreateUserDir: mustGetBool(flags, "create-user-dir"),
-			MinimumPasswordLength: minLength,
+			Shell:         convertCmdStrToCmdArray(mustGetString(flags, "shell")),
-			Shell:                 convertCmdStrToCmdArray(shell),
+			AuthMethod:    authMethod,
-			AuthMethod:            authMethod,
+			Defaults:      defaults,
 			Defaults:              defaults,
 			Branding: settings.Branding{
-				Name:                  brandingName,
+				Name:                  mustGetString(flags, "branding.name"),
-				DisableExternal:       brandingDisableExternal,
+				DisableExternal:       mustGetBool(flags, "branding.disableExternal"),
-				DisableUsedPercentage: brandingDisableUsedPercentage,
+				DisableUsedPercentage: mustGetBool(flags, "branding.disableUsedPercentage"),
-				Theme:                 brandingTheme,
+				Theme:                 mustGetString(flags, "branding.theme"),
-				Files:                 brandingFiles,
+				Files:                 mustGetString(flags, "branding.files"),
 			},
 		}
 		s.FileMode, err = getMode(flags, "file-mode")
 		if err != nil {
 			return err
 		}
 		s.DirMode, err = getMode(flags, "dir-mode")
 		if err != nil {
 			return err
 		}
 		address, err := getString(flags, "address")
 		if err != nil {
 			return err
 		}
 		socket, err := getString(flags, "socket")
 		if err != nil {
 			return err
 		}
 		root, err := getString(flags, "root")
 		if err != nil {
 			return err
 		}
 		baseURL, err := getString(flags, "baseurl")
 		if err != nil {
 			return err
 		}
 		tlsKey, err := getString(flags, "key")
 		if err != nil {
 			return err
 		}
 		cert, err := getString(flags, "cert")
 		if err != nil {
 			return err
 		}
 		port, err := getString(flags, "port")
 		if err != nil {
 			return err
 		}
 		log, err := getString(flags, "log")
 		if err != nil {
 			return err
 		}
 		ser := &settings.Server{
-			Address: address,
+			Address: mustGetString(flags, "address"),
-			Socket:  socket,
+			Socket:  mustGetString(flags, "socket"),
-			Root:    root,
+			Root:    mustGetString(flags, "root"),
-			BaseURL: baseURL,
+			BaseURL: mustGetString(flags, "baseurl"),
-			TLSKey:  tlsKey,
+			TLSKey:  mustGetString(flags, "key"),
-			TLSCert: cert,
+			TLSCert: mustGetString(flags, "cert"),
-			Port:    port,
+			Port:    mustGetString(flags, "port"),
-			Log:     log,
+			Log:     mustGetString(flags, "log"),
 		}
-		err = d.store.Settings.Save(s)
+		err := d.store.Settings.Save(s)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		err = d.store.Settings.SaveServer(ser)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		err = d.store.Auth.Save(auther)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		fmt.Printf(`
 Congratulations! You've set up your database to use with File Browser.
 Now add your first user via 'filebrowser users add' and then you just
 need to call the main command to boot up the server.
 `)
-		return printSettings(ser, s, auther)
+		printSettings(ser, s, auther)
 	}, pythonConfig{noDB: true}),
 }
--- a/cmd/config_set.go
+++ b/cmd/config_set.go
@ -16,105 +16,71 @@ var configSetCmd = &cobra.Command{
 	Long: `Updates the configuration. Set the flags for the options
 you want to change. Other options will remain unchanged.`,
 	Args: cobra.NoArgs,
-	RunE: python(func(cmd *cobra.Command, _ []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, _ []string, d pythonData) {
 		flags := cmd.Flags()
 		set, err := d.store.Settings.Get()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		ser, err := d.store.Settings.GetServer()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		hasAuth := false
 		flags.Visit(func(flag *pflag.Flag) {
 			if err != nil {
 				return
 			}
 			switch flag.Name {
 			case "baseurl":
-				ser.BaseURL, err = getString(flags, flag.Name)
+				ser.BaseURL = mustGetString(flags, flag.Name)
 			case "root":
-				ser.Root, err = getString(flags, flag.Name)
+				ser.Root = mustGetString(flags, flag.Name)
 			case "socket":
-				ser.Socket, err = getString(flags, flag.Name)
+				ser.Socket = mustGetString(flags, flag.Name)
 			case "cert":
-				ser.TLSCert, err = getString(flags, flag.Name)
+				ser.TLSCert = mustGetString(flags, flag.Name)
 			case "key":
-				ser.TLSKey, err = getString(flags, flag.Name)
+				ser.TLSKey = mustGetString(flags, flag.Name)
 			case "address":
-				ser.Address, err = getString(flags, flag.Name)
+				ser.Address = mustGetString(flags, flag.Name)
 			case "port":
-				ser.Port, err = getString(flags, flag.Name)
+				ser.Port = mustGetString(flags, flag.Name)
 			case "log":
-				ser.Log, err = getString(flags, flag.Name)
+				ser.Log = mustGetString(flags, flag.Name)
 			case "signup":
-				set.Signup, err = getBool(flags, flag.Name)
+				set.Signup = mustGetBool(flags, flag.Name)
 			case "auth.method":
 				hasAuth = true
 			case "shell":
-				var shell string
+				set.Shell = convertCmdStrToCmdArray(mustGetString(flags, flag.Name))
 				shell, err = getString(flags, flag.Name)
 				set.Shell = convertCmdStrToCmdArray(shell)
 			case "create-user-dir":
-				set.CreateUserDir, err = getBool(flags, flag.Name)
+				set.CreateUserDir = mustGetBool(flags, flag.Name)
 			case "minimum-password-length":
 				set.MinimumPasswordLength, err = getUint(flags, flag.Name)
 			case "branding.name":
-				set.Branding.Name, err = getString(flags, flag.Name)
+				set.Branding.Name = mustGetString(flags, flag.Name)
 			case "branding.color":
-				set.Branding.Color, err = getString(flags, flag.Name)
+				set.Branding.Color = mustGetString(flags, flag.Name)
 			case "branding.theme":
-				set.Branding.Theme, err = getString(flags, flag.Name)
+				set.Branding.Theme = mustGetString(flags, flag.Name)
 			case "branding.disableExternal":
-				set.Branding.DisableExternal, err = getBool(flags, flag.Name)
+				set.Branding.DisableExternal = mustGetBool(flags, flag.Name)
 			case "branding.disableUsedPercentage":
-				set.Branding.DisableUsedPercentage, err = getBool(flags, flag.Name)
+				set.Branding.DisableUsedPercentage = mustGetBool(flags, flag.Name)
 			case "branding.files":
-				set.Branding.Files, err = getString(flags, flag.Name)
+				set.Branding.Files = mustGetString(flags, flag.Name)
 			case "file-mode":
 				set.FileMode, err = getMode(flags, flag.Name)
 			case "dir-mode":
 				set.DirMode, err = getMode(flags, flag.Name)
 			}
 		})
-		if err != nil {
+		getUserDefaults(flags, &set.Defaults, false)
 			return err
 		}
 		err = getUserDefaults(flags, &set.Defaults, false)
 		if err != nil {
 			return err
 		}
 		// read the defaults
 		auther, err := d.store.Auth.Get(set.AuthMethod)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		// check if there are new flags for existing auth method
-		set.AuthMethod, auther, err = getAuthentication(flags, hasAuth, set, auther)
+		set.AuthMethod, auther = getAuthentication(flags, hasAuth, set, auther)
 		if err != nil {
 			return err
 		}
 		err = d.store.Auth.Save(auther)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		err = d.store.Settings.Save(set)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		err = d.store.Settings.SaveServer(ser)
-		if err != nil {
+		checkErr(err)
-			return err
+		printSettings(ser, set, auther)
 		}
 		return printSettings(ser, set, auther)
 	}, pythonConfig{}),
 }
--- a/cmd/docs.go
+++ b/cmd/docs.go
@ -39,19 +39,12 @@ var docsCmd = &cobra.Command{
 	Use:    "docs",
 	Hidden: true,
 	Args:   cobra.NoArgs,
-	RunE: func(cmd *cobra.Command, _ []string) error {
+	Run: func(cmd *cobra.Command, _ []string) {
-		dir, err := getString(cmd.Flags(), "path")
+		dir := mustGetString(cmd.Flags(), "path")
-		if err != nil {
+		generateDocs(rootCmd, dir)
 			return err
 		}
 		err = generateDocs(rootCmd, dir)
 		if err != nil {
 			return err
 		}
 		names := []string{}
-		err = filepath.Walk(dir, func(_ string, info os.FileInfo, err error) error {
+		err := filepath.Walk(dir, func(_ string, info os.FileInfo, err error) error {
 			if err != nil || info.IsDir() {
 				return err
 			}
@ -63,38 +56,30 @@ var docsCmd = &cobra.Command{
 			names = append(names, info.Name())
 			return nil
 		})
 		if err != nil {
 			return err
 		}
 		checkErr(err)
 		printToc(names)
 		return nil
 	},
 }
-func generateDocs(cmd *cobra.Command, dir string) error {
+func generateDocs(cmd *cobra.Command, dir string) {
 	for _, c := range cmd.Commands() {
 		if !c.IsAvailableCommand() || c.IsAdditionalHelpTopicCommand() {
 			continue
 		}
-		err := generateDocs(c, dir)
+		generateDocs(c, dir)
 		if err != nil {
 			return err
 		}
 	}
 	basename := strings.Replace(cmd.CommandPath(), " ", "-", -1) + ".md"
 	filename := filepath.Join(dir, basename)
 	f, err := os.Create(filename)
-	if err != nil {
+	checkErr(err)
 		return err
 	}
 	defer f.Close()
-	return generateMarkdown(cmd, f)
+	generateMarkdown(cmd, f)
 }
-func generateMarkdown(cmd *cobra.Command, w io.Writer) error {
+func generateMarkdown(cmd *cobra.Command, w io.Writer) {
 	cmd.InitDefaultHelpCmd()
 	cmd.InitDefaultHelpFlag()
@ -123,7 +108,7 @@ func generateMarkdown(cmd *cobra.Command, w io.Writer) error {
 	printOptions(buf, cmd)
 	_, err := buf.WriteTo(w)
-	return err
+	checkErr(err)
 }
 func generateFlagsTable(fs *pflag.FlagSet, buf io.StringWriter) {
--- a/cmd/hash.go
+++ b/cmd/hash.go
@ -17,12 +17,9 @@ var hashCmd = &cobra.Command{
 	Short: "Hashes a password",
 	Long:  `Hashes a password using bcrypt algorithm.`,
 	Args:  cobra.ExactArgs(1),
-	RunE: func(_ *cobra.Command, args []string) error {
+	Run: func(_ *cobra.Command, args []string) {
 		pwd, err := users.HashPwd(args[0])
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		fmt.Println(pwd)
 		return nil
 	},
 }
--- a/cmd/root.go
+++ b/cmd/root.go
@ -1,10 +1,8 @@
 package cmd
 import (
 	"context"
 	"crypto/tls"
 	"errors"
 	"fmt"
 	"io"
 	"io/fs"
 	"log"
@ -15,7 +13,6 @@ import (
 	"path/filepath"
 	"strings"
 	"syscall"
 	"time"
 	homedir "github.com/mitchellh/go-homedir"
 	"github.com/spf13/afero"
@ -26,7 +23,6 @@ import (
 	"github.com/filebrowser/filebrowser/v2/auth"
 	"github.com/filebrowser/filebrowser/v2/diskcache"
 	fbErrors "github.com/filebrowser/filebrowser/v2/errors"
 	"github.com/filebrowser/filebrowser/v2/frontend"
 	fbhttp "github.com/filebrowser/filebrowser/v2/http"
 	"github.com/filebrowser/filebrowser/v2/img"
@ -41,7 +37,6 @@ var (
 func init() {
 	cobra.OnInitialize(initConfig)
 	rootCmd.SilenceUsage = true
 	cobra.MousetrapHelpText = ""
 	rootCmd.SetVersionTemplate("File Browser version {{printf \"%s\" .Version}}\n")
@ -53,7 +48,7 @@ func init() {
 	persistent.StringP("database", "d", "./filebrowser.db", "database path")
 	flags.Bool("noauth", false, "use the noauth auther when using quick setup")
 	flags.String("username", "admin", "username for the first user when using quick config")
-	flags.String("password", "", "hashed password for the first user when using quick config")
+	flags.String("password", "", "hashed password for the first user when using quick config (default \"admin\")")
 	addServerFlags(flags)
 }
@ -66,14 +61,14 @@ func addServerFlags(flags *pflag.FlagSet) {
 	flags.StringP("key", "k", "", "tls key")
 	flags.StringP("root", "r", ".", "root to prepend to relative paths")
 	flags.String("socket", "", "socket to listen to (cannot be used with address, port, cert nor key flags)")
-	flags.Uint32("socket-perm", 0666, "unix socket file permissions")
+	flags.Uint32("socket-perm", 0666, "unix socket file permissions") //nolint:gomnd
 	flags.StringP("baseurl", "b", "", "base url")
 	flags.String("cache-dir", "", "file cache directory (disabled if empty)")
 	flags.String("token-expiration-time", "2h", "user session timeout")
-	flags.Int("img-processors", 4, "image processors count") //nolint:mnd
+	flags.Int("img-processors", 4, "image processors count") //nolint:gomnd
 	flags.Bool("disable-thumbnails", false, "disable image thumbnails")
 	flags.Bool("disable-preview-resize", false, "disable resize of image previews")
-	flags.Bool("disable-exec", true, "disables Command Runner feature")
+	flags.Bool("disable-exec", false, "disables Command Runner feature")
 	flags.Bool("disable-type-detection-by-header", false, "disables type detection by reading file headers")
 }
@ -81,7 +76,7 @@ var rootCmd = &cobra.Command{
 	Use:   "filebrowser",
 	Short: "A stylish web-based file browser",
 	Long: `File Browser CLI lets you create the database to use with File Browser,
-manage your users and all the configurations without accessing the
+manage your users and all the configurations without acessing the
 web interface.
 If you've never run File Browser, you'll need to have a database for
@ -113,50 +108,38 @@ name in caps. So to set "database" via an env variable, you should
 set FB_DATABASE.
 Also, if the database path doesn't exist, File Browser will enter into
-the quick setup mode and a new database will be bootstrapped and a new
+the quick setup mode and a new database will be bootstraped and a new
 user created with the credentials from options "username" and "password".`,
-	RunE: python(func(cmd *cobra.Command, _ []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, _ []string, d pythonData) {
 		log.Println(cfgFile)
 		if !d.hadDB {
-			err := quickSetup(cmd.Flags(), *d)
+			quickSetup(cmd.Flags(), d)
 			if err != nil {
 				return err
 			}
 		}
 		// build img service
 		workersCount, err := cmd.Flags().GetInt("img-processors")
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		if workersCount < 1 {
-			return errors.New("image resize workers count could not be < 1")
+			log.Fatal("Image resize workers count could not be < 1")
 		}
 		imgSvc := img.New(workersCount)
 		var fileCache diskcache.Interface = diskcache.NewNoOp()
 		cacheDir, err := cmd.Flags().GetString("cache-dir")
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		if cacheDir != "" {
-			if err := os.MkdirAll(cacheDir, 0700); err != nil { //nolint:govet
+			if err := os.MkdirAll(cacheDir, 0700); err != nil { //nolint:govet,gomnd
-				return fmt.Errorf("can't make directory %s: %w", cacheDir, err)
+				log.Fatalf("can't make directory %s: %s", cacheDir, err)
 			}
 			fileCache = diskcache.New(afero.NewOsFs(), cacheDir)
 		}
-		server, err := getRunParams(cmd.Flags(), d.store)
+		server := getRunParams(cmd.Flags(), d.store)
 		if err != nil {
 			return err
 		}
 		setupLog(server.Log)
 		root, err := filepath.Abs(server.Root)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		server.Root = root
 		adr := server.Address + ":" + server.Port
@ -166,145 +149,100 @@ user created with the credentials from options "username" and "password".`,
 		switch {
 		case server.Socket != "":
 			listener, err = net.Listen("unix", server.Socket)
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 			socketPerm, err := cmd.Flags().GetUint32("socket-perm") //nolint:govet
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 			err = os.Chmod(server.Socket, os.FileMode(socketPerm))
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 		case server.TLSKey != "" && server.TLSCert != "":
 			cer, err := tls.LoadX509KeyPair(server.TLSCert, server.TLSKey) //nolint:govet
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 			listener, err = tls.Listen("tcp", adr, &tls.Config{
 				MinVersion:   tls.VersionTLS12,
 				Certificates: []tls.Certificate{cer}},
 			)
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 		default:
 			listener, err = net.Listen("tcp", adr)
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 		}
 		sigc := make(chan os.Signal, 1)
 		signal.Notify(sigc, os.Interrupt, syscall.SIGTERM)
 		go cleanupHandler(listener, sigc)
 		assetsFs, err := fs.Sub(frontend.Assets(), "dist")
 		if err != nil {
 			panic(err)
 		}
 		handler, err := fbhttp.NewHandler(imgSvc, fileCache, d.store, server, assetsFs)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		defer listener.Close()
 		log.Println("Listening on", listener.Addr().String())
-		srv := &http.Server{
+		//nolint: gosec
-			Handler:           handler,
+		if err := http.Serve(listener, handler); err != nil {
-			ReadHeaderTimeout: 60 * time.Second,
+			log.Fatal(err)
 		}
 		go func() {
 			if err := srv.Serve(listener); !errors.Is(err, http.ErrServerClosed) {
 				log.Fatalf("HTTP server error: %v", err)
 			}
 			log.Println("Stopped serving new connections.")
 		}()
 		sigc := make(chan os.Signal, 1)
 		signal.Notify(sigc,
 			os.Interrupt,
 			syscall.SIGHUP,
 			syscall.SIGINT,
 			syscall.SIGTERM,
 			syscall.SIGQUIT,
 		)
 		sig := <-sigc
 		log.Println("Got signal:", sig)
 		shutdownCtx, shutdownRelease := context.WithTimeout(context.Background(), 10*time.Second) //nolint:mnd
 		defer shutdownRelease()
 		if err := srv.Shutdown(shutdownCtx); err != nil {
 			log.Fatalf("HTTP shutdown error: %v", err)
 		}
 		log.Println("Graceful shutdown complete.")
 		switch sig {
 		case syscall.SIGHUP:
 			d.err = fbErrors.ErrSighup
 		case syscall.SIGINT:
 			d.err = fbErrors.ErrSigint
 		case syscall.SIGQUIT:
 			d.err = fbErrors.ErrSigquit
 		case syscall.SIGTERM:
 			d.err = fbErrors.ErrSigTerm
 		}
 		return d.err
 	}, pythonConfig{allowNoDB: true}),
 }
-//nolint:gocyclo
+func cleanupHandler(listener net.Listener, c chan os.Signal) { //nolint:interfacer
-func getRunParams(flags *pflag.FlagSet, st *storage.Storage) (*settings.Server, error) {
+	sig := <-c
-	server, err := st.Settings.GetServer()
+	log.Printf("Caught signal %s: shutting down.", sig)
-	if err != nil {
+	listener.Close()
-		return nil, err
+	os.Exit(0)
-	}
+}
-	if val, set := getStringParamB(flags, "root"); set {
+//nolint:gocyclo
 func getRunParams(flags *pflag.FlagSet, st *storage.Storage) *settings.Server {
 	server, err := st.Settings.GetServer()
 	checkErr(err)
 	if val, set := getParamB(flags, "root"); set {
 		server.Root = val
 	}
-	if val, set := getStringParamB(flags, "baseurl"); set {
+	if val, set := getParamB(flags, "baseurl"); set {
 		server.BaseURL = val
 	}
-	if val, set := getStringParamB(flags, "log"); set {
+	if val, set := getParamB(flags, "log"); set {
 		server.Log = val
 	}
 	isSocketSet := false
 	isAddrSet := false
-	if val, set := getStringParamB(flags, "address"); set {
+	if val, set := getParamB(flags, "address"); set {
 		server.Address = val
 		isAddrSet = isAddrSet || set
 	}
-	if val, set := getStringParamB(flags, "port"); set {
+	if val, set := getParamB(flags, "port"); set {
 		server.Port = val
 		isAddrSet = isAddrSet || set
 	}
-	if val, set := getStringParamB(flags, "key"); set {
+	if val, set := getParamB(flags, "key"); set {
 		server.TLSKey = val
 		isAddrSet = isAddrSet || set
 	}
-	if val, set := getStringParamB(flags, "cert"); set {
+	if val, set := getParamB(flags, "cert"); set {
 		server.TLSCert = val
 		isAddrSet = isAddrSet || set
 	}
-	if val, set := getStringParamB(flags, "socket"); set {
+	if val, set := getParamB(flags, "socket"); set {
 		server.Socket = val
 		isSocketSet = isSocketSet || set
 	}
 	if isAddrSet && isSocketSet {
-		return nil, errors.New("--socket flag cannot be used with --address, --port, --key nor --cert")
+		checkErr(errors.New("--socket flag cannot be used with --address, --port, --key nor --cert"))
 	}
 	// Do not use saved Socket if address was manually set.
@ -312,69 +250,33 @@ func getRunParams(flags *pflag.FlagSet, st *storage.Storage) (*settings.Server,
 		server.Socket = ""
 	}
-	disableThumbnails := getBoolParam(flags, "disable-thumbnails")
+	_, disableThumbnails := getParamB(flags, "disable-thumbnails")
 	server.EnableThumbnails = !disableThumbnails
-	disablePreviewResize := getBoolParam(flags, "disable-preview-resize")
+	_, disablePreviewResize := getParamB(flags, "disable-preview-resize")
 	server.ResizePreview = !disablePreviewResize
-	disableTypeDetectionByHeader := getBoolParam(flags, "disable-type-detection-by-header")
+	_, disableTypeDetectionByHeader := getParamB(flags, "disable-type-detection-by-header")
 	server.TypeDetectionByHeader = !disableTypeDetectionByHeader
-	disableExec := getBoolParam(flags, "disable-exec")
+	_, disableExec := getParamB(flags, "disable-exec")
 	server.EnableExec = !disableExec
-	if server.EnableExec {
+	if val, set := getParamB(flags, "token-expiration-time"); set {
 		log.Println("WARNING: Command Runner feature enabled!")
 		log.Println("WARNING: This feature has known security vulnerabilities and should not")
 		log.Println("WARNING: you fully understand the risks involved. For more information")
 		log.Println("WARNING: read https://github.com/filebrowser/filebrowser/issues/5199")
 	}
 	if val, set := getStringParamB(flags, "token-expiration-time"); set {
 		server.TokenExpirationTime = val
 	}
-	return server, nil
+	return server
 }
-// getBoolParamB returns a parameter as a string and a boolean to tell if it is different from the default
+// getParamB returns a parameter as a string and a boolean to tell if it is different from the default
 //
 // NOTE: we could simply bind the flags to viper and use IsSet.
 // Although there is a bug on Viper that always returns true on IsSet
 // if a flag is binded. Our alternative way is to manually check
 // the flag and then the value from env/config/gotten by viper.
 // https://github.com/spf13/viper/pull/331
-func getBoolParamB(flags *pflag.FlagSet, key string) (value, ok bool) {
+func getParamB(flags *pflag.FlagSet, key string) (string, bool) {
 	value, _ = flags.GetBool(key)
 	// If set on Flags, use it.
 	if flags.Changed(key) {
 		return value, true
 	}
 	// If set through viper (env, config), return it.
 	if v.IsSet(key) {
 		return v.GetBool(key), true
 	}
 	// Otherwise use default value on flags.
 	return value, false
 }
 func getBoolParam(flags *pflag.FlagSet, key string) bool {
 	val, _ := getBoolParamB(flags, key)
 	return val
 }
 // getStringParamB returns a parameter as a string and a boolean to tell if it is different from the default
 //
 // NOTE: we could simply bind the flags to viper and use IsSet.
 // Although there is a bug on Viper that always returns true on IsSet
 // if a flag is binded. Our alternative way is to manually check
 // the flag and then the value from env/config/gotten by viper.
 // https://github.com/spf13/viper/pull/331
 func getStringParamB(flags *pflag.FlagSet, key string) (string, bool) {
 	value, _ := flags.GetString(key)
 	// If set on Flags, use it.
@ -391,8 +293,8 @@ func getStringParamB(flags *pflag.FlagSet, key string) (string, bool) {
 	return value, false
 }
-func getStringParam(flags *pflag.FlagSet, key string) string {
+func getParam(flags *pflag.FlagSet, key string) string {
-	val, _ := getStringParamB(flags, key)
+	val, _ := getParamB(flags, key)
 	return val
 }
@ -414,15 +316,12 @@ func setupLog(logMethod string) {
 	}
 }
-func quickSetup(flags *pflag.FlagSet, d pythonData) error {
+func quickSetup(flags *pflag.FlagSet, d pythonData) {
 	log.Println("Performing quick setup")
 	set := &settings.Settings{
-		Key:                   generateKey(),
+		Key:              generateKey(),
-		Signup:                false,
+		Signup:           false,
-		CreateUserDir:         false,
+		CreateUserDir:    false,
-		MinimumPasswordLength: settings.DefaultMinimumPasswordLength,
+		UserHomeBasePath: settings.DefaultUsersHomeBasePath,
 		UserHomeBasePath:      settings.DefaultUsersHomeBasePath,
 		Defaults: settings.UserDefaults{
 			Scope:       ".",
 			Locale:      "en",
@ -450,54 +349,37 @@ func quickSetup(flags *pflag.FlagSet, d pythonData) error {
 	}
 	var err error
-	if _, noauth := getStringParamB(flags, "noauth"); noauth {
+	if _, noauth := getParamB(flags, "noauth"); noauth {
 		set.AuthMethod = auth.MethodNoAuth
 		err = d.store.Auth.Save(&auth.NoAuth{})
 	} else {
 		set.AuthMethod = auth.MethodJSONAuth
 		err = d.store.Auth.Save(&auth.JSONAuth{})
 	}
 	if err != nil {
 		return err
 	}
 	checkErr(err)
 	err = d.store.Settings.Save(set)
-	if err != nil {
+	checkErr(err)
 		return err
 	}
 	ser := &settings.Server{
-		BaseURL: getStringParam(flags, "baseurl"),
+		BaseURL: getParam(flags, "baseurl"),
-		Port:    getStringParam(flags, "port"),
+		Port:    getParam(flags, "port"),
-		Log:     getStringParam(flags, "log"),
+		Log:     getParam(flags, "log"),
-		TLSKey:  getStringParam(flags, "key"),
+		TLSKey:  getParam(flags, "key"),
-		TLSCert: getStringParam(flags, "cert"),
+		TLSCert: getParam(flags, "cert"),
-		Address: getStringParam(flags, "address"),
+		Address: getParam(flags, "address"),
-		Root:    getStringParam(flags, "root"),
+		Root:    getParam(flags, "root"),
 	}
 	err = d.store.Settings.SaveServer(ser)
-	if err != nil {
+	checkErr(err)
 		return err
 	}
-	username := getStringParam(flags, "username")
+	username := getParam(flags, "username")
-	password := getStringParam(flags, "password")
+	password := getParam(flags, "password")
 	if password == "" {
-		var pwd string
+		password, err = users.HashPwd("admin")
-		pwd, err = users.RandomPwd(set.MinimumPasswordLength)
+		checkErr(err)
 		if err != nil {
 			return err
 		}
 		log.Printf("User '%s' initialized with randomly generated password: %s\n", username, pwd)
 		password, err = users.ValidateAndHashPwd(pwd, set.MinimumPasswordLength)
 		if err != nil {
 			return err
 		}
 	} else {
 		log.Printf("User '%s' initialize wth user-provided password\n", username)
 	}
 	if username == "" || password == "" {
@ -513,15 +395,14 @@ func quickSetup(flags *pflag.FlagSet, d pythonData) error {
 	set.Defaults.Apply(user)
 	user.Perm.Admin = true
-	return d.store.Users.Save(user)
+	err = d.store.Users.Save(user)
 	checkErr(err)
 }
 func initConfig() {
 	if cfgFile == "" {
 		home, err := homedir.Dir()
-		if err != nil {
+		checkErr(err)
 			panic(err)
 		}
 		v.AddConfigPath(".")
 		v.AddConfigPath(home)
 		v.AddConfigPath("/etc/filebrowser/")
@ -533,7 +414,6 @@ func initConfig() {
 	v.SetEnvPrefix("FB")
 	v.AutomaticEnv()
 	v.SetEnvKeyReplacer(strings.NewReplacer(".", "_"))
 	v.SetEnvKeyReplacer(strings.NewReplacer("-", "_"))
 	if err := v.ReadInConfig(); err != nil {
 		var configParseError v.ConfigParseError
--- a/cmd/rule_rm.go
+++ b/cmd/rule_rm.go
@ -40,29 +40,27 @@ including 'index_end'.`,
 		return nil
 	},
-	RunE: python(func(cmd *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, args []string, d pythonData) {
 		i, err := strconv.Atoi(args[0])
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		f := i
 		if len(args) == 2 {
 			f, err = strconv.Atoi(args[1])
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 		}
-		user := func(u *users.User) error {
+		user := func(u *users.User) {
 			u.Rules = append(u.Rules[:i], u.Rules[f+1:]...)
-			return d.store.Users.Save(u)
+			err := d.store.Users.Save(u)
 			checkErr(err)
 		}
-		global := func(s *settings.Settings) error {
+		global := func(s *settings.Settings) {
 			s.Rules = append(s.Rules[:i], s.Rules[f+1:]...)
-			return d.store.Settings.Save(s)
+			err := d.store.Settings.Save(s)
 			checkErr(err)
 		}
-		return runRules(d.store, cmd, user, global)
+		runRules(d.store, cmd, user, global)
 	}, pythonConfig{}),
 }
--- a/cmd/rules.go
+++ b/cmd/rules.go
@ -29,62 +29,41 @@ rules.`,
 	Args: cobra.NoArgs,
 }
-func runRules(st *storage.Storage, cmd *cobra.Command, usersFn func(*users.User) error, globalFn func(*settings.Settings) error) error {
+func runRules(st *storage.Storage, cmd *cobra.Command, usersFn func(*users.User), globalFn func(*settings.Settings)) {
-	id, err := getUserIdentifier(cmd.Flags())
+	id := getUserIdentifier(cmd.Flags())
 	if err != nil {
 		return err
 	}
 	if id != nil {
-		var user *users.User
+		user, err := st.Users.Get("", id)
-		user, err = st.Users.Get("", id)
+		checkErr(err)
 		if err != nil {
 			return err
 		}
 		if usersFn != nil {
-			err = usersFn(user)
+			usersFn(user)
 			if err != nil {
 				return err
 			}
 		}
 		printRules(user.Rules, id)
-		return nil
+		return
 	}
 	s, err := st.Settings.Get()
-	if err != nil {
+	checkErr(err)
 		return err
 	}
 	if globalFn != nil {
-		err = globalFn(s)
+		globalFn(s)
 		if err != nil {
 			return err
 		}
 	}
 	printRules(s.Rules, id)
 	return nil
 }
-func getUserIdentifier(flags *pflag.FlagSet) (interface{}, error) {
+func getUserIdentifier(flags *pflag.FlagSet) interface{} {
-	id, err := getUint(flags, "id")
+	id := mustGetUint(flags, "id")
-	if err != nil {
+	username := mustGetString(flags, "username")
 		return nil, err
 	}
 	username, err := getString(flags, "username")
 	if err != nil {
 		return nil, err
 	}
 	if id != 0 {
-		return id, nil
+		return id
 	} else if username != "" {
-		return username, nil
+		return username
 	}
-	return nil, nil
+	return nil
 }
 func printRules(rulez []rules.Rule, id interface{}) {
--- a/cmd/rules_add.go
+++ b/cmd/rules_add.go
@ -21,15 +21,9 @@ var rulesAddCmd = &cobra.Command{
 	Short: "Add a global rule or user rule",
 	Long:  `Add a global rule or user rule.`,
 	Args:  cobra.ExactArgs(1),
-	RunE: python(func(cmd *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, args []string, d pythonData) {
-		allow, err := getBool(cmd.Flags(), "allow")
+		allow := mustGetBool(cmd.Flags(), "allow")
-		if err != nil {
+		regex := mustGetBool(cmd.Flags(), "regex")
 			return err
 		}
 		regex, err := getBool(cmd.Flags(), "regex")
 		if err != nil {
 			return err
 		}
 		exp := args[0]
 		if regex {
@ -47,16 +41,18 @@ var rulesAddCmd = &cobra.Command{
 			rule.Path = exp
 		}
-		user := func(u *users.User) error {
+		user := func(u *users.User) {
 			u.Rules = append(u.Rules, rule)
-			return d.store.Users.Save(u)
+			err := d.store.Users.Save(u)
 			checkErr(err)
 		}
-		global := func(s *settings.Settings) error {
+		global := func(s *settings.Settings) {
 			s.Rules = append(s.Rules, rule)
-			return d.store.Settings.Save(s)
+			err := d.store.Settings.Save(s)
 			checkErr(err)
 		}
-		return runRules(d.store, cmd, user, global)
+		runRules(d.store, cmd, user, global)
 	}, pythonConfig{}),
 }
--- a/cmd/rules_ls.go
+++ b/cmd/rules_ls.go
@ -13,7 +13,7 @@ var rulesLsCommand = &cobra.Command{
 	Short: "List global rules or user specific rules",
 	Long:  `List global rules or user specific rules.`,
 	Args:  cobra.NoArgs,
-	RunE: python(func(cmd *cobra.Command, _ []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, _ []string, d pythonData) {
-		return runRules(d.store, cmd, nil, nil)
+		runRules(d.store, cmd, nil, nil)
 	}, pythonConfig{}),
 }
--- a/cmd/upgrade.go
+++ b/cmd/upgrade.go
@ -21,20 +21,11 @@ var upgradeCmd = &cobra.Command{
 import share links because they are incompatible with
 this version.`,
 	Args: cobra.NoArgs,
-	RunE: func(cmd *cobra.Command, _ []string) error {
+	Run: func(cmd *cobra.Command, _ []string) {
 		flags := cmd.Flags()
-		oldDB, err := getString(flags, "old.database")
+		oldDB := mustGetString(flags, "old.database")
-		if err != nil {
+		oldConf := mustGetString(flags, "old.config")
-			return err
+		err := importer.Import(oldDB, oldConf, getParam(flags, "database"))
-		}
+		checkErr(err)
 		oldConf, err := getString(flags, "old.config")
 		if err != nil {
 			return err
 		}
 		db, err := getString(flags, "database")
 		if err != nil {
 			return err
 		}
 		return importer.Import(oldDB, oldConf, db)
 	},
 }
--- a/cmd/users.go
+++ b/cmd/users.go
@ -77,64 +77,52 @@ func addUserFlags(flags *pflag.FlagSet) {
 	flags.String("locale", "en", "locale for users")
 	flags.String("viewMode", string(users.ListViewMode), "view mode for users")
 	flags.Bool("singleClick", false, "use single clicks only")
 	flags.Bool("dateFormat", false, "use date format (true for absolute time, false for relative)")
 	flags.Bool("hideDotfiles", false, "hide dotfiles")
 }
-func getViewMode(flags *pflag.FlagSet) (users.ViewMode, error) {
+func getViewMode(flags *pflag.FlagSet) users.ViewMode {
-	viewModeStr, err := getString(flags, "viewMode")
+	viewMode := users.ViewMode(mustGetString(flags, "viewMode"))
 	if err != nil {
 		return "", err
 	}
 	viewMode := users.ViewMode(viewModeStr)
 	if viewMode != users.ListViewMode && viewMode != users.MosaicViewMode {
-		return "", errors.New("view mode must be \"" + string(users.ListViewMode) + "\" or \"" + string(users.MosaicViewMode) + "\"")
+		checkErr(errors.New("view mode must be \"" + string(users.ListViewMode) + "\" or \"" + string(users.MosaicViewMode) + "\""))
 	}
-	return viewMode, nil
+	return viewMode
 }
 //nolint:gocyclo
-func getUserDefaults(flags *pflag.FlagSet, defaults *settings.UserDefaults, all bool) error {
+func getUserDefaults(flags *pflag.FlagSet, defaults *settings.UserDefaults, all bool) {
 	var visitErr error
 	visit := func(flag *pflag.Flag) {
 		if visitErr != nil {
 			return
 		}
 		var err error
 		switch flag.Name {
 		case "scope":
-			defaults.Scope, err = getString(flags, flag.Name)
+			defaults.Scope = mustGetString(flags, flag.Name)
 		case "locale":
-			defaults.Locale, err = getString(flags, flag.Name)
+			defaults.Locale = mustGetString(flags, flag.Name)
 		case "viewMode":
-			defaults.ViewMode, err = getViewMode(flags)
+			defaults.ViewMode = getViewMode(flags)
 		case "singleClick":
-			defaults.SingleClick, err = getBool(flags, flag.Name)
+			defaults.SingleClick = mustGetBool(flags, flag.Name)
 		case "perm.admin":
-			defaults.Perm.Admin, err = getBool(flags, flag.Name)
+			defaults.Perm.Admin = mustGetBool(flags, flag.Name)
 		case "perm.execute":
-			defaults.Perm.Execute, err = getBool(flags, flag.Name)
+			defaults.Perm.Execute = mustGetBool(flags, flag.Name)
 		case "perm.create":
-			defaults.Perm.Create, err = getBool(flags, flag.Name)
+			defaults.Perm.Create = mustGetBool(flags, flag.Name)
 		case "perm.rename":
-			defaults.Perm.Rename, err = getBool(flags, flag.Name)
+			defaults.Perm.Rename = mustGetBool(flags, flag.Name)
 		case "perm.modify":
-			defaults.Perm.Modify, err = getBool(flags, flag.Name)
+			defaults.Perm.Modify = mustGetBool(flags, flag.Name)
 		case "perm.delete":
-			defaults.Perm.Delete, err = getBool(flags, flag.Name)
+			defaults.Perm.Delete = mustGetBool(flags, flag.Name)
 		case "perm.share":
-			defaults.Perm.Share, err = getBool(flags, flag.Name)
+			defaults.Perm.Share = mustGetBool(flags, flag.Name)
 		case "perm.download":
-			defaults.Perm.Download, err = getBool(flags, flag.Name)
+			defaults.Perm.Download = mustGetBool(flags, flag.Name)
 		case "commands":
-			defaults.Commands, err = flags.GetStringSlice(flag.Name)
+			commands, err := flags.GetStringSlice(flag.Name)
 			checkErr(err)
 			defaults.Commands = commands
 		case "sorting.by":
-			defaults.Sorting.By, err = getString(flags, flag.Name)
+			defaults.Sorting.By = mustGetString(flags, flag.Name)
 		case "sorting.asc":
-			defaults.Sorting.Asc, err = getBool(flags, flag.Name)
+			defaults.Sorting.Asc = mustGetBool(flags, flag.Name)
 		}
 		if err != nil {
 			visitErr = err
 		}
 	}
@ -143,5 +131,4 @@ func getUserDefaults(flags *pflag.FlagSet, defaults *settings.UserDefaults, all
 	} else {
 		flags.Visit(visit)
 	}
 	return visitErr
 }
--- a/cmd/users_add.go
+++ b/cmd/users_add.go
@ -16,69 +16,36 @@ var usersAddCmd = &cobra.Command{
 	Short: "Create a new user",
 	Long:  `Create a new user and add it to the database.`,
 	Args:  cobra.ExactArgs(2),
-	RunE: python(func(cmd *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, args []string, d pythonData) {
 		s, err := d.store.Settings.Get()
-		if err != nil {
+		checkErr(err)
-			return err
+		getUserDefaults(cmd.Flags(), &s.Defaults, false)
 		}
 		err = getUserDefaults(cmd.Flags(), &s.Defaults, false)
 		if err != nil {
 			return err
 		}
-		password, err := users.ValidateAndHashPwd(args[1], s.MinimumPasswordLength)
+		password, err := users.HashPwd(args[1])
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		lockPassword, err := getBool(cmd.Flags(), "lockPassword")
 		if err != nil {
 			return err
 		}
 		dateFormat, err := getBool(cmd.Flags(), "dateFormat")
 		if err != nil {
 			return err
 		}
 		hideDotfiles, err := getBool(cmd.Flags(), "hideDotfiles")
 		if err != nil {
 			return err
 		}
 		user := &users.User{
 			Username:     args[0],
 			Password:     password,
-			LockPassword: lockPassword,
+			LockPassword: mustGetBool(cmd.Flags(), "lockPassword"),
 			DateFormat:   dateFormat,
 			HideDotfiles: hideDotfiles,
 		}
 		s.Defaults.Apply(user)
 		servSettings, err := d.store.Settings.GetServer()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		// since getUserDefaults() polluted s.Defaults.Scope
 		// which makes the Scope not the one saved in the db
 		// we need the right s.Defaults.Scope here
 		s2, err := d.store.Settings.Get()
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		userHome, err := s2.MakeUserDir(user.Username, user.Scope, servSettings.Root)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		user.Scope = userHome
 		err = d.store.Users.Save(user)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		printUsers([]*users.User{user})
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/users_export.go
+++ b/cmd/users_export.go
@ -14,16 +14,11 @@ var usersExportCmd = &cobra.Command{
 	Long: `Export all users to a json or yaml file. Please indicate the
 path to the file where you want to write the users.`,
 	Args: jsonYamlArg,
-	RunE: python(func(_ *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(_ *cobra.Command, args []string, d pythonData) {
 		list, err := d.store.Users.Gets("")
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		err = marshal(args[0], list)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/users_find.go
+++ b/cmd/users_find.go
@ -16,17 +16,17 @@ var usersFindCmd = &cobra.Command{
 	Short: "Find a user by username or id",
 	Long:  `Find a user by username or id. If no flag is set, all users will be printed.`,
 	Args:  cobra.ExactArgs(1),
-	RunE:  findUsers,
+	Run:   findUsers,
 }
 var usersLsCmd = &cobra.Command{
 	Use:   "ls",
 	Short: "List all users.",
 	Args:  cobra.NoArgs,
-	RunE:  findUsers,
+	Run:   findUsers,
 }
-var findUsers = python(func(_ *cobra.Command, args []string, d *pythonData) error {
+var findUsers = python(func(_ *cobra.Command, args []string, d pythonData) {
 	var (
 		list []*users.User
 		user *users.User
@ -46,9 +46,6 @@ var findUsers = python(func(_ *cobra.Command, args []string, d *pythonData) erro
 		list, err = d.store.Users.Gets("")
 	}
-	if err != nil {
+	checkErr(err)
 		return err
 	}
 	printUsers(list)
 	return nil
 }, pythonConfig{})
--- a/cmd/users_import.go
+++ b/cmd/users_import.go
@ -25,54 +25,34 @@ file. You can use this command to import new users to your
 installation. For that, just don't place their ID on the files
 list or set it to 0.`,
 	Args: jsonYamlArg,
-	RunE: python(func(cmd *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, args []string, d pythonData) {
 		fd, err := os.Open(args[0])
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		defer fd.Close()
 		list := []*users.User{}
 		err = unmarshal(args[0], &list)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		for _, user := range list {
 			err = user.Clean("")
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 		}
-		replace, err := getBool(cmd.Flags(), "replace")
+		if mustGetBool(cmd.Flags(), "replace") {
-		if err != nil {
+			oldUsers, err := d.store.Users.Gets("")
-			return err
+			checkErr(err)
 		}
 		if replace {
 			oldUsers, userImportErr := d.store.Users.Gets("")
 			if userImportErr != nil {
 				return userImportErr
 			}
 			err = marshal("users.backup.json", list)
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 			for _, user := range oldUsers {
 				err = d.store.Users.Delete(user.ID)
-				if err != nil {
+				checkErr(err)
 					return err
 				}
 			}
 		}
-		overwrite, err := getBool(cmd.Flags(), "overwrite")
+		overwrite := mustGetBool(cmd.Flags(), "overwrite")
 		if err != nil {
 			return err
 		}
 		for _, user := range list {
 			onDB, err := d.store.Users.Get("", user.ID)
@ -80,7 +60,7 @@ list or set it to 0.`,
 			// User exists in DB.
 			if err == nil {
 				if !overwrite {
-					return errors.New("user " + strconv.Itoa(int(user.ID)) + " is already registered")
+					checkErr(errors.New("user " + strconv.Itoa(int(user.ID)) + " is already registered"))
 				}
 				// If the usernames mismatch, check if there is another one in the DB
@ -88,7 +68,7 @@ list or set it to 0.`,
 				// operation
 				if user.Username != onDB.Username {
 					if conflictuous, err := d.store.Users.Get("", user.Username); err == nil { //nolint:govet
-						return usernameConflictError(user.Username, conflictuous.ID, user.ID)
+						checkErr(usernameConflictError(user.Username, conflictuous.ID, user.ID))
 					}
 				}
 			} else {
@ -98,11 +78,8 @@ list or set it to 0.`,
 			}
 			err = d.store.Users.Save(user)
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 		}
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/users_rm.go
+++ b/cmd/users_rm.go
@ -15,7 +15,7 @@ var usersRmCmd = &cobra.Command{
 	Short: "Delete a user by username or id",
 	Long:  `Delete a user by username or id`,
 	Args:  cobra.ExactArgs(1),
-	RunE: python(func(_ *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(_ *cobra.Command, args []string, d pythonData) {
 		username, id := parseUsernameOrID(args[0])
 		var err error
@ -25,10 +25,7 @@ var usersRmCmd = &cobra.Command{
 			err = d.store.Users.Delete(id)
 		}
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		fmt.Println("user deleted successfully")
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/users_update.go
+++ b/cmd/users_update.go
@ -21,24 +21,14 @@ var usersUpdateCmd = &cobra.Command{
 	Long: `Updates an existing user. Set the flags for the
 options you want to change.`,
 	Args: cobra.ExactArgs(1),
-	RunE: python(func(cmd *cobra.Command, args []string, d *pythonData) error {
+	Run: python(func(cmd *cobra.Command, args []string, d pythonData) {
 		username, id := parseUsernameOrID(args[0])
 		flags := cmd.Flags()
-		password, err := getString(flags, "password")
+		password := mustGetString(flags, "password")
-		if err != nil {
+		newUsername := mustGetString(flags, "username")
 			return err
 		}
 		newUsername, err := getString(flags, "username")
 		if err != nil {
 			return err
 		}
 		s, err := d.store.Settings.Get()
 		if err != nil {
 			return err
 		}
 		var (
 			err  error
 			user *users.User
 		)
@ -48,9 +38,7 @@ options you want to change.`,
 			user, err = d.store.Users.Get("", username)
 		}
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		defaults := settings.UserDefaults{
 			Scope:       user.Scope,
@ -61,10 +49,7 @@ options you want to change.`,
 			Sorting:     user.Sorting,
 			Commands:    user.Commands,
 		}
-		err = getUserDefaults(flags, &defaults, false)
+		getUserDefaults(flags, &defaults, false)
 		if err != nil {
 			return err
 		}
 		user.Scope = defaults.Scope
 		user.Locale = defaults.Locale
 		user.ViewMode = defaults.ViewMode
@ -72,35 +57,19 @@ options you want to change.`,
 		user.Perm = defaults.Perm
 		user.Commands = defaults.Commands
 		user.Sorting = defaults.Sorting
-		user.LockPassword, err = getBool(flags, "lockPassword")
+		user.LockPassword = mustGetBool(flags, "lockPassword")
 		if err != nil {
 			return err
 		}
 		user.DateFormat, err = getBool(flags, "dateFormat")
 		if err != nil {
 			return err
 		}
 		user.HideDotfiles, err = getBool(flags, "hideDotfiles")
 		if err != nil {
 			return err
 		}
 		if newUsername != "" {
 			user.Username = newUsername
 		}
 		if password != "" {
-			user.Password, err = users.ValidateAndHashPwd(password, s.MinimumPasswordLength)
+			user.Password, err = users.HashPwd(password)
-			if err != nil {
+			checkErr(err)
 				return err
 			}
 		}
 		err = d.store.Users.Update(user)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		printUsers([]*users.User{user})
 		return nil
 	}, pythonConfig{}),
 }
--- a/cmd/utils.go
+++ b/cmd/utils.go
@ -4,11 +4,9 @@ import (
 	"encoding/json"
 	"errors"
 	"fmt"
 	"io/fs"
 	"log"
 	"os"
 	"path/filepath"
 	"strconv"
 	"strings"
 	"github.com/asdine/storm/v3"
@ -21,52 +19,38 @@ import (
 	"github.com/filebrowser/filebrowser/v2/storage/bolt"
 )
-const dbPerms = 0640
+func checkErr(err error) {
 func returnErr(err error) error {
 	if err != nil {
-		return err
+		log.Fatal(err)
 	}
 	return nil
 }
-func getString(flags *pflag.FlagSet, flag string) (string, error) {
+func mustGetString(flags *pflag.FlagSet, flag string) string {
 	s, err := flags.GetString(flag)
-	return s, returnErr(err)
+	checkErr(err)
 	return s
 }
-func getMode(flags *pflag.FlagSet, flag string) (fs.FileMode, error) {
+func mustGetBool(flags *pflag.FlagSet, flag string) bool {
 	s, err := getString(flags, flag)
 	if err != nil {
 		return 0, err
 	}
 	b, err := strconv.ParseUint(s, 0, 32)
 	if err != nil {
 		return 0, err
 	}
 	return fs.FileMode(b), nil
 }
 func getBool(flags *pflag.FlagSet, flag string) (bool, error) {
 	b, err := flags.GetBool(flag)
-	return b, returnErr(err)
+	checkErr(err)
 	return b
 }
-func getUint(flags *pflag.FlagSet, flag string) (uint, error) {
+func mustGetUint(flags *pflag.FlagSet, flag string) uint {
 	b, err := flags.GetUint(flag)
-	return b, returnErr(err)
+	checkErr(err)
 	return b
 }
 func generateKey() []byte {
 	k, err := settings.GenerateKey()
-	if err != nil {
+	checkErr(err)
 		panic(err)
 	}
 	return k
 }
-type cobraFunc func(cmd *cobra.Command, args []string) error
+type cobraFunc func(cmd *cobra.Command, args []string)
-type pythonFunc func(cmd *cobra.Command, args []string, data *pythonData) error
+type pythonFunc func(cmd *cobra.Command, args []string, data pythonData)
 type pythonConfig struct {
 	noDB      bool
@ -76,7 +60,6 @@ type pythonConfig struct {
 type pythonData struct {
 	hadDB bool
 	store *storage.Storage
 	err   error
 }
 func dbExists(path string) (bool, error) {
@ -89,7 +72,7 @@ func dbExists(path string) (bool, error) {
 		d := filepath.Dir(path)
 		_, err = os.Stat(d)
 		if os.IsNotExist(err) {
-			if err := os.MkdirAll(d, 0700); err != nil { //nolint:govet
+			if err := os.MkdirAll(d, 0700); err != nil { //nolint:govet,gomnd
 				return false, err
 			}
 			return false, nil
@ -100,10 +83,10 @@ func dbExists(path string) (bool, error) {
 }
 func python(fn pythonFunc, cfg pythonConfig) cobraFunc {
-	return func(cmd *cobra.Command, args []string) error {
+	return func(cmd *cobra.Command, args []string) {
-		data := &pythonData{hadDB: true}
+		data := pythonData{hadDB: true}
-		path := getStringParam(cmd.Flags(), "database")
+		path := getParam(cmd.Flags(), "database")
 		absPath, err := filepath.Abs(path)
 		if err != nil {
 			panic(err)
@ -122,24 +105,18 @@ func python(fn pythonFunc, cfg pythonConfig) cobraFunc {
 		log.Println("Using database: " + absPath)
 		data.hadDB = exists
-		db, err := storm.Open(path, storm.BoltOptions(dbPerms, nil))
+		db, err := storm.Open(path)
-		if err != nil {
+		checkErr(err)
 			return err
 		}
 		defer db.Close()
 		data.store, err = bolt.NewStorage(db)
-		if err != nil {
+		checkErr(err)
-			return err
+		fn(cmd, args, data)
 		}
 		return fn(cmd, args, data)
 	}
 }
 func marshal(filename string, data interface{}) error {
 	fd, err := os.Create(filename)
-	if err != nil {
+	checkErr(err)
 		return err
 	}
 	defer fd.Close()
 	switch ext := filepath.Ext(filename); ext {
@ -147,7 +124,7 @@ func marshal(filename string, data interface{}) error {
 		encoder := json.NewEncoder(fd)
 		encoder.SetIndent("", "    ")
 		return encoder.Encode(data)
-	case ".yml", ".yaml":
+	case ".yml", ".yaml": //nolint:goconst
 		encoder := yaml.NewEncoder(fd)
 		return encoder.Encode(data)
 	default:
@ -157,9 +134,7 @@ func marshal(filename string, data interface{}) error {
 func unmarshal(filename string, data interface{}) error {
 	fd, err := os.Open(filename)
-	if err != nil {
+	checkErr(err)
 		return err
 	}
 	defer fd.Close()
 	switch ext := filepath.Ext(filename); ext {
@ -213,7 +188,7 @@ func cleanUpMapValue(v interface{}) interface{} {
 }
 // convertCmdStrToCmdArray checks if cmd string is blank (whitespace included)
-// then returns empty string array, else returns the split word array of cmd.
+// then returns empty string array, else returns the splitted word array of cmd.
 // This is to ensure the result will never be []string{""}
 func convertCmdStrToCmdArray(cmd string) []string {
 	var cmdArray []string
--- a/diskcache/file_cache.go
+++ b/diskcache/file_cache.go
@ -37,11 +37,11 @@ func (f *FileCache) Store(_ context.Context, key string, value []byte) error {
 	defer mu.Unlock()
 	fileName := f.getFileName(key)
-	if err := f.fs.MkdirAll(filepath.Dir(fileName), 0700); err != nil {
+	if err := f.fs.MkdirAll(filepath.Dir(fileName), 0700); err != nil { //nolint:gomnd
 		return err
 	}
-	if err := afero.WriteFile(f.fs, fileName, value, 0700); err != nil {
+	if err := afero.WriteFile(f.fs, fileName, value, 0700); err != nil { //nolint:gomnd
 		return err
 	}
--- a/docker/alpine/healthcheck.sh
+++ b/docker/alpine/healthcheck.sh
@ -1,9 +0,0 @@
 #!/bin/sh
 set -e
 PORT=${FB_PORT:-$(cat /config/settings.json | sh /JSON.sh | grep '\["port"\]' | awk '{print $2}')}
 ADDRESS=${FB_ADDRESS:-$(cat /config/settings.json | sh /JSON.sh | grep '\["address"\]' | awk '{print $2}' | sed 's/"//g')}
 ADDRESS=${ADDRESS:-localhost}
 wget -q --spider http://$ADDRESS:$PORT/health || exit 1
--- a/docker/alpine/init.sh
+++ b/docker/alpine/init.sh
@ -1,35 +0,0 @@
 #!/bin/sh
 set -e
 # Ensure configuration exists
 if [ ! -f "/config/settings.json" ]; then
  cp -a /defaults/settings.json /config/settings.json
 fi
 # Extract config file path from arguments
 config_file=""
 next_is_config=0
 for arg in "$@"; do
  if [ "$next_is_config" -eq 1 ]; then
    config_file="$arg"
    break
  fi
  case "$arg" in
    -c|--config)
      next_is_config=1
      ;;
    -c=*|--config=*)
      config_file="${arg#*=}"
      break
      ;;
  esac
 done
 # If no config argument is provided, set the default and add it to the args                                                                 
 if [ -z "$config_file" ]; then 
  config_file="/config/settings.json"                                                                                                                                                                                                 
  set -- --config=/config/settings.json "$@"                                                                                                       
 fi                                                                                                                                                                                                                                                                                                                                                             
 exec filebrowser "$@"
--- a/docker/common/healthcheck.sh
+++ b/docker/common/healthcheck.sh
@ -1,9 +0,0 @@
 #!/bin/sh
 set -e
 PORT=${FB_PORT:-$(jq -r .port /config/settings.json)}
 ADDRESS=${FB_ADDRESS:-$(jq -r .address /config/settings.json)}
 ADDRESS=${ADDRESS:-localhost}
 wget -q --spider http://$ADDRESS:$PORT/health || exit 1
--- a/docker/common/defaults/settings.json
+++ b/docker/common/defaults/settings.json
--- a/docker/s6/custom-cont-init.d/20-config
+++ b/docker/s6/custom-cont-init.d/20-config
@ -1,6 +1,9 @@
 #!/usr/bin/with-contenv bash
-# Ensure configuration exists
+# make folders
 mkdir -p /database
 # copy config
 if [ ! -f "/config/settings.json" ]; then
  cp -a /defaults/settings.json /config/settings.json
 fi
--- a/docker/root/etc/services.d/filebrowser/run
+++ b/docker/root/etc/services.d/filebrowser/run
@ -0,0 +1,3 @@
 #!/usr/bin/with-contenv bash
 exec s6-setuidgid abc filebrowser -c /config/settings.json -d /database/filebrowser.db;
--- a/docker/s6/etc/services.d/filebrowser/run
+++ b/docker/s6/etc/services.d/filebrowser/run
@ -1,3 +0,0 @@
 #!/usr/bin/with-contenv bash
 exec s6-setuidgid abc filebrowser -c /config/settings.json;
--- a/docker_config.json
+++ b/docker_config.json
@ -3,6 +3,6 @@
  "baseURL": "",
  "address": "",
  "log": "stdout",
-  "database": "/database/filebrowser.db",
+  "database": "/database.db",
  "root": "/srv"
 }
--- a/errors/errors.go
+++ b/errors/errors.go
@ -1,25 +1,12 @@
 package errors
-import (
+import "errors"
 	"errors"
 	"fmt"
 	"os"
 	"syscall"
 )
 const (
 	ExitCodeSigTerm = 128 + int(syscall.SIGTERM)
 	ExitCodeSighup  = 128 + int(syscall.SIGHUP)
 	ExitCodeSigint  = 128 + int(syscall.SIGINT)
 	ExitCodeSigquit = 128 + int(syscall.SIGQUIT)
 )
 var (
 	ErrEmptyKey             = errors.New("empty key")
 	ErrExist                = errors.New("the resource already exists")
 	ErrNotExist             = errors.New("the resource does not exist")
 	ErrEmptyPassword        = errors.New("password is empty")
 	ErrEasyPassword         = errors.New("password is too easy")
 	ErrEmptyUsername        = errors.New("username is empty")
 	ErrEmptyRequest         = errors.New("empty request")
 	ErrScopeIsRelative      = errors.New("scope is a relative path")
@ -31,57 +18,4 @@ var (
 	ErrInvalidRequestParams = errors.New("invalid request params")
 	ErrSourceIsParent       = errors.New("source is parent")
 	ErrRootUserDeletion     = errors.New("user with id 1 can't be deleted")
 	ErrSigTerm              = errors.New("exit on signal: sigterm")
 	ErrSighup               = errors.New("exit on signal: sighup")
 	ErrSigint               = errors.New("exit on signal: sigint")
 	ErrSigquit              = errors.New("exit on signal: sigquit")
 )
 type ErrShortPassword struct {
 	MinimumLength uint
 }
 func (e ErrShortPassword) Error() string {
 	return fmt.Sprintf("password is too short, minimum length is %d", e.MinimumLength)
 }
 // GetExitCode returns the exit code for a given error.
 func GetExitCode(err error) int {
 	if err == nil {
 		return 0
 	}
 	exitCodeMap := map[error]int{
 		ErrSigTerm: ExitCodeSigTerm,
 		ErrSighup:  ExitCodeSighup,
 		ErrSigint:  ExitCodeSigint,
 		ErrSigquit: ExitCodeSigquit,
 	}
 	for e, code := range exitCodeMap {
 		if errors.Is(err, e) {
 			return code
 		}
 	}
 	if exitErr, ok := err.(interface{ ExitCode() int }); ok {
 		return exitErr.ExitCode()
 	}
 	var pathErr *os.PathError
 	if errors.As(err, &pathErr) {
 		return 1
 	}
 	var syscallErr *os.SyscallError
 	if errors.As(err, &syscallErr) {
 		return 1
 	}
 	var errno syscall.Errno
 	if errors.As(err, &errno) {
 		return 1
 	}
 	return 1
 }
--- a/files/file.go
+++ b/files/file.go
@ -27,6 +27,9 @@ import (
 	"github.com/filebrowser/filebrowser/v2/rules"
 )
 const PermFile = 0644
 const PermDir = 0755
 var (
 	reSubDirs = regexp.MustCompile("(?i)^sub(s|titles)$")
 	reSubExts = regexp.MustCompile("(?i)(.vtt|.srt|.ass|.ssa)$")
@ -83,11 +86,6 @@ func NewFileInfo(opts *FileOptions) (*FileInfo, error) {
 		return nil, err
 	}
 	// Do not expose the name of root directory.
 	if file.Path == "/" {
 		file.Name = ""
 	}
 	if opts.Expand {
 		if file.IsDir {
 			if err := file.readListing(opts.Checker, opts.ReadHeader); err != nil { //nolint:govet
@ -219,6 +217,7 @@ func (i *FileInfo) RealPath() string {
 	return i.Path
 }
 //nolint:goconst
 func (i *FileInfo) detectType(modify, saveContent, readHeader bool) error {
 	if IsNamedPipe(i.Mode) {
 		i.Type = "blob"
@ -315,7 +314,7 @@ func (i *FileInfo) readFirstBytes() []byte {
 	}
 	defer reader.Close()
-	buffer := make([]byte, 512)
+	buffer := make([]byte, 512) //nolint:gomnd
 	n, err := reader.Read(buffer)
 	if err != nil && !errors.Is(err, io.EOF) {
 		log.Print(err)
--- a/files/listing.go
+++ b/files/listing.go
@ -16,6 +16,8 @@ type Listing struct {
 }
 // ApplySort applies the sort order using .Order and .Sort
 //
 //nolint:goconst
 func (l Listing) ApplySort() {
 	// Check '.Order' to know how to sort
 	if !l.Sorting.Asc {
--- a/files/mime.go
+++ b/files/mime.go
@ -28,7 +28,7 @@ const (
 	ContentTextHeaderValue = "text/plain"
 	// ContentXMLHeaderValue header value for XML data.
 	ContentXMLHeaderValue = "text/xml"
-	// ContentXMLUnreadableHeaderValue obsolete header value for XML.
+	// ContentXMLUnreadableHeaderValue obselete header value for XML.
 	ContentXMLUnreadableHeaderValue = "application/xml"
 	// ContentMarkdownHeaderValue custom key/content type, the real is the text/html.
 	ContentMarkdownHeaderValue = "text/markdown"
--- a/fileutils/copy.go
+++ b/fileutils/copy.go
@ -1,7 +1,6 @@
 package fileutils
 import (
 	"io/fs"
 	"os"
 	"path"
@ -9,7 +8,7 @@ import (
 )
 // Copy copies a file or folder from one place to another.
-func Copy(afs afero.Fs, src, dst string, fileMode, dirMode fs.FileMode) error {
+func Copy(fs afero.Fs, src, dst string) error {
 	if src = path.Clean("/" + src); src == "" {
 		return os.ErrNotExist
 	}
@ -27,14 +26,14 @@ func Copy(afs afero.Fs, src, dst string, fileMode, dirMode fs.FileMode) error {
 		return os.ErrInvalid
 	}
-	info, err := afs.Stat(src)
+	info, err := fs.Stat(src)
 	if err != nil {
 		return err
 	}
 	if info.IsDir() {
-		return CopyDir(afs, src, dst, fileMode, dirMode)
+		return CopyDir(fs, src, dst)
 	}
-	return CopyFile(afs, src, dst, fileMode, dirMode)
+	return CopyFile(fs, src, dst)
 }
--- a/fileutils/dir.go
+++ b/fileutils/dir.go
@ -2,7 +2,6 @@ package fileutils
 import (
 	"errors"
 	"io/fs"
 	"github.com/spf13/afero"
 )
@ -10,20 +9,20 @@ import (
 // CopyDir copies a directory from source to dest and all
 // of its sub-directories. It doesn't stop if it finds an error
 // during the copy. Returns an error if any.
-func CopyDir(afs afero.Fs, source, dest string, fileMode, dirMode fs.FileMode) error {
+func CopyDir(fs afero.Fs, source, dest string) error {
 	// Get properties of source.
-	srcinfo, err := afs.Stat(source)
+	srcinfo, err := fs.Stat(source)
 	if err != nil {
 		return err
 	}
 	// Create the destination directory.
-	err = afs.MkdirAll(dest, srcinfo.Mode())
+	err = fs.MkdirAll(dest, srcinfo.Mode())
 	if err != nil {
 		return err
 	}
-	dir, _ := afs.Open(source)
+	dir, _ := fs.Open(source)
 	obs, err := dir.Readdir(-1)
 	if err != nil {
 		return err
@ -37,13 +36,13 @@ func CopyDir(afs afero.Fs, source, dest string, fileMode, dirMode fs.FileMode) e
 		if obj.IsDir() {
 			// Create sub-directories, recursively.
-			err = CopyDir(afs, fsource, fdest, fileMode, dirMode)
+			err = CopyDir(fs, fsource, fdest)
 			if err != nil {
 				errs = append(errs, err)
 			}
 		} else {
 			// Perform the file copy.
-			err = CopyFile(afs, fsource, fdest, fileMode, dirMode)
+			err = CopyFile(fs, fsource, fdest)
 			if err != nil {
 				errs = append(errs, err)
 			}
--- a/fileutils/file.go
+++ b/fileutils/file.go
@ -2,28 +2,29 @@ package fileutils
 import (
 	"io"
 	"io/fs"
 	"os"
 	"path"
 	"path/filepath"
 	"github.com/spf13/afero"
 	"github.com/filebrowser/filebrowser/v2/files"
 )
 // MoveFile moves file from src to dst.
 // By default the rename filesystem system call is used. If src and dst point to different volumes
 // the file copy is used as a fallback
-func MoveFile(afs afero.Fs, src, dst string, fileMode, dirMode fs.FileMode) error {
+func MoveFile(fs afero.Fs, src, dst string) error {
-	if afs.Rename(src, dst) == nil {
+	if fs.Rename(src, dst) == nil {
 		return nil
 	}
 	// fallback
-	err := Copy(afs, src, dst, fileMode, dirMode)
+	err := Copy(fs, src, dst)
 	if err != nil {
-		_ = afs.Remove(dst)
+		_ = fs.Remove(dst)
 		return err
 	}
-	if err := afs.RemoveAll(src); err != nil {
+	if err := fs.RemoveAll(src); err != nil {
 		return err
 	}
 	return nil
@ -31,9 +32,9 @@ func MoveFile(afs afero.Fs, src, dst string, fileMode, dirMode fs.FileMode) erro
 // CopyFile copies a file from source to dest and returns
 // an error if any.
-func CopyFile(afs afero.Fs, source, dest string, fileMode, dirMode fs.FileMode) error {
+func CopyFile(fs afero.Fs, source, dest string) error {
 	// Open the source file.
-	src, err := afs.Open(source)
+	src, err := fs.Open(source)
 	if err != nil {
 		return err
 	}
@ -41,13 +42,13 @@ func CopyFile(afs afero.Fs, source, dest string, fileMode, dirMode fs.FileMode)
 	// Makes the directory needed to create the dst
 	// file.
-	err = afs.MkdirAll(filepath.Dir(dest), dirMode)
+	err = fs.MkdirAll(filepath.Dir(dest), files.PermDir)
 	if err != nil {
 		return err
 	}
 	// Create the destination file.
-	dst, err := afs.OpenFile(dest, os.O_RDWR|os.O_CREATE|os.O_TRUNC, fileMode)
+	dst, err := fs.OpenFile(dest, os.O_RDWR|os.O_CREATE|os.O_TRUNC, files.PermFile)
 	if err != nil {
 		return err
 	}
@ -60,11 +61,11 @@ func CopyFile(afs afero.Fs, source, dest string, fileMode, dirMode fs.FileMode)
 	}
 	// Copy the mode
-	info, err := afs.Stat(source)
+	info, err := fs.Stat(source)
 	if err != nil {
 		return err
 	}
-	err = afs.Chmod(dest, info.Mode())
+	err = fs.Chmod(dest, info.Mode())
 	if err != nil {
 		return err
 	}
@ -97,7 +98,7 @@ func CommonPrefix(sep byte, paths ...string) string {
 	// (e.g. /home/user1, /home/user1/foo, /home/user1/bar).
 	// path.Clean will have cleaned off trailing / separators with
 	// the exception of the root directory, "/" (in which case we
-	// make it "//", but this will get fixed up to "/" below).
+	// make it "//", but this will get fixed up to "/" bellow).
 	c = append(c, sep)
 	// Ignore the first path since it's already in c
--- a/frontend/.eslintrc.json
+++ b/frontend/.eslintrc.json
@ -0,0 +1,27 @@
 {
  "root": true,
  "env": {
    "node": true
  },
  "extends": [
    "plugin:vue/vue3-essential",
    "eslint:recommended",
    "@vue/eslint-config-typescript",
    "@vue/eslint-config-prettier"
  ],
  "rules": {
    "vue/multi-word-component-names": "off",
    "vue/no-mutating-props": [
      "error",
      {
        "shallowOnly": true
      }
    ]
    // no-undef is already included in
    // @vue/eslint-config-typescript
  },
  "parserOptions": {
    "ecmaVersion": "latest",
    "sourceType": "module"
  }
 }
--- a/frontend/.prettierignore
+++ b/frontend/.prettierignore
@ -1,3 +1,2 @@
 # Ignore artifacts:
 dist
 pnpm-lock.yaml
--- a/frontend/eslint.config.js
+++ b/frontend/eslint.config.js
@ -1,37 +0,0 @@
 import pluginVue from "eslint-plugin-vue";
 import {
  defineConfigWithVueTs,
  vueTsConfigs,
 } from "@vue/eslint-config-typescript";
 import prettierConfig from "@vue/eslint-config-prettier";
 export default defineConfigWithVueTs(
  {
    name: "app/files-to-lint",
    files: ["**/*.{ts,mts,tsx,vue}"],
  },
  {
    name: "app/files-to-ignore",
    ignores: ["**/dist/**", "**/dist-ssr/**", "**/coverage/**"],
  },
  pluginVue.configs["flat/essential"],
  vueTsConfigs.recommended,
  prettierConfig,
  {
    rules: {
      // Note: you must disable the base rule as it can report incorrect errors
      "@typescript-eslint/no-unused-expressions": "off",
      // TODO: theres too many of these from before ts
      "@typescript-eslint/no-explicit-any": "off",
      // TODO: finish the ts conversion
      "vue/block-lang": "off",
      "vue/multi-word-component-names": "off",
      "vue/no-mutating-props": [
        "error",
        {
          shallowOnly: true,
        },
      ],
    },
  }
 );
--- a/frontend/index.html
+++ b/frontend/index.html
@ -10,10 +10,18 @@
    <title>File Browser</title>
-    <link rel="icon" type="image/svg+xml" href="/img/icons/favicon.svg" />
+    <link
-    <link rel="shortcut icon" href="/img/icons/favicon.ico" />
+      rel="icon"
-    <link rel="apple-touch-icon" sizes="180x180" href="/img/icons/apple-touch-icon.png" />
+      type="image/png"
-    <meta name="apple-mobile-web-app-title" content="File Browser" />
+      sizes="32x32"
      href="/img/icons/favicon-32x32.png"
    />
    <link
      rel="icon"
      type="image/png"
      sizes="16x16"
      href="/img/icons/favicon-16x16.png"
    />
    <!-- Add to home screen for Android and modern mobile browsers -->
    <link
@ -23,6 +31,19 @@
    />
    <meta name="theme-color" content="#2979ff" />
    <!-- Add to home screen for Safari on iOS/iPadOS -->
    <meta name="apple-mobile-web-app-capable" content="yes" />
    <meta name="apple-mobile-web-app-status-bar-style" content="black" />
    <meta name="apple-mobile-web-app-title" content="assets" />
    <link rel="apple-touch-icon" href="/img/icons/apple-touch-icon.png" />
    <!-- Add to home screen for Windows -->
    <meta
      name="msapplication-TileImage"
      content="/img/icons/mstile-144x144.png"
    />
    <meta name="msapplication-TileColor" content="#2979ff" />
    <!-- Inject Some Variables and generate the manifest json -->
    <script>
      // We can assign JSON directly
--- a/frontend/jsconfig.json
+++ b/frontend/jsconfig.json
@ -0,0 +1,10 @@
 {
  "compilerOptions": {
    "baseUrl": ".",
    "paths": {
      "@/*": ["./src/*"]
    }
  },
  "include": ["src/**/*"],
  "exclude": ["node_modules", "dist"]
 }
--- a/frontend/package-lock.json
+++ b/frontend/package-lock.json
--- a/frontend/package.json
+++ b/frontend/package.json
@ -4,76 +4,70 @@
  "private": true,
  "type": "module",
  "engines": {
-    "node": ">=22.0.0",
+    "npm": ">=7.0.0",
-    "pnpm": ">=9.0.0"
+    "node": ">=18.0.0"
  },
  "scripts": {
    "dev": "vite dev",
-    "build": "pnpm run typecheck && vite build",
+    "build": "npm run typecheck && vite build",
    "clean": "find ./dist -maxdepth 1 -mindepth 1 ! -name '.gitkeep' -exec rm -r {} +",
-    "typecheck": "vue-tsc -p ./tsconfig.tsc.json --noEmit",
+    "typecheck": "vue-tsc -p ./tsconfig.json --noEmit",
-    "lint": "eslint src/",
+    "lint": "npm run typecheck && eslint --ext .vue,.ts src/",
-    "lint:fix": "eslint --fix src/",
+    "lint:fix": "eslint --ext .vue,.ts --fix src/",
    "format": "prettier --write .",
    "test": "playwright test"
  },
  "dependencies": {
    "@chenfengyuan/vue-number-input": "^2.0.1",
-    "@vueuse/core": "^12.5.0",
+    "@vueuse/core": "^10.9.0",
-    "@vueuse/integrations": "^12.5.0",
+    "@vueuse/integrations": "^10.9.0",
-    "ace-builds": "^1.43.2",
+    "ace-builds": "^1.32.9",
-    "core-js": "^3.44.0",
+    "core-js": "^3.36.1",
-    "dayjs": "^1.11.13",
+    "dayjs": "^1.11.10",
    "dompurify": "^3.2.6",
    "epubjs": "^0.3.93",
    "filesize": "^10.1.1",
    "js-base64": "^3.7.7",
    "jwt-decode": "^4.0.0",
    "lodash-es": "^4.17.21",
-    "marked": "^15.0.6",
+    "material-icons": "^1.13.12",
-    "material-icons": "^1.13.14",
+    "marked": "^14.1.0",
    "normalize.css": "^8.0.1",
-    "pinia": "^2.3.1",
+    "pinia": "^2.1.7",
    "pretty-bytes": "^6.1.1",
-    "qrcode.vue": "^3.6.0",
+    "qrcode.vue": "^3.4.1",
-    "tus-js-client": "^4.3.1",
+    "tus-js-client": "^4.1.0",
    "utif": "^3.1.0",
-    "video.js": "^8.23.3",
+    "video.js": "^8.10.0",
    "videojs-hotkeys": "^0.2.28",
    "videojs-mobile-ui": "^1.1.1",
-    "vue": "^3.5.17",
+    "vue": "^3.4.21",
-    "vue-final-modal": "^4.5.5",
+    "vue-final-modal": "^4.5.4",
-    "vue-i18n": "^11.1.10",
+    "vue-i18n": "^9.10.2",
    "vue-lazyload": "^3.0.0",
-    "vue-reader": "^1.2.17",
+    "vue-reader": "^1.2.14",
-    "vue-router": "^4.5.1",
+    "vue-router": "^4.3.0",
    "vue-toastification": "^2.0.0-rc.5"
  },
  "devDependencies": {
-    "@intlify/unplugin-vue-i18n": "^6.0.8",
+    "@intlify/unplugin-vue-i18n": "^4.0.0",
-    "@playwright/test": "^1.54.1",
+    "@playwright/test": "^1.42.1",
    "@tsconfig/node22": "^22.0.2",
    "@types/lodash-es": "^4.17.12",
-    "@types/node": "^22.10.10",
+    "@types/node": "^20.12.2",
-    "@typescript-eslint/eslint-plugin": "^8.37.0",
+    "@typescript-eslint/eslint-plugin": "^7.4.0",
-    "@vitejs/plugin-legacy": "^6.0.0",
+    "@vitejs/plugin-legacy": "^5.3.2",
    "@vitejs/plugin-vue": "^5.0.4",
-    "@vue/eslint-config-prettier": "^10.2.0",
+    "@vue/eslint-config-prettier": "^9.0.0",
-    "@vue/eslint-config-typescript": "^14.6.0",
+    "@vue/eslint-config-typescript": "^13.0.0",
-    "@vue/tsconfig": "^0.7.0",
+    "autoprefixer": "^10.4.19",
-    "autoprefixer": "^10.4.21",
+    "concurrently": "^8.2.2",
-    "concurrently": "^9.2.0",
+    "eslint": "^8.57.0",
-    "eslint": "^9.31.0",
+    "eslint-plugin-prettier": "^5.1.3",
    "eslint-config-prettier": "^10.1.5",
    "eslint-plugin-prettier": "^5.5.1",
    "eslint-plugin-vue": "^9.24.0",
-    "jsdom": "^26.1.0",
+    "jsdom": "^24.0.0",
-    "postcss": "^8.5.6",
+    "postcss": "^8.4.38",
-    "prettier": "^3.6.2",
+    "prettier": "^3.2.5",
-    "terser": "^5.43.1",
+    "terser": "^5.30.0",
-    "vite": "^6.3.6",
+    "vite": "^5.2.7",
    "vite-plugin-compression2": "^1.0.0",
-    "vue-tsc": "^2.2.0"
+    "vue-tsc": "^2.0.7"
-  },
+  }
  "packageManager": "pnpm@9.15.4+sha512.b2dc20e2fc72b3e18848459b37359a32064663e5627a51e4c74b2c29dd8e8e0491483c3abb40789cfd578bf362fb6ba8261b05f0387d76792ed6e23ea3b1b6a0"
 }
--- a/frontend/pnpm-lock.yaml
+++ b/frontend/pnpm-lock.yaml
--- a/frontend/public/img/icons/apple-touch-icon.png
+++ b/frontend/public/img/icons/apple-touch-icon.png
--- a/frontend/public/img/icons/browserconfig.xml
+++ b/frontend/public/img/icons/browserconfig.xml
@ -0,0 +1,9 @@
 <?xml version="1.0" encoding="utf-8"?>
 <browserconfig>
    <msapplication>
        <tile>
            <square150x150logo src="/mstile-150x150.png"/>
            <TileColor>#455a64</TileColor>
        </tile>
    </msapplication>
 </browserconfig>
--- a/frontend/public/img/icons/favicon-16x16.png
+++ b/frontend/public/img/icons/favicon-16x16.png
--- a/frontend/public/img/icons/favicon-32x32.png
+++ b/frontend/public/img/icons/favicon-32x32.png
--- a/frontend/public/img/icons/favicon.ico
+++ b/frontend/public/img/icons/favicon.ico
--- a/frontend/public/img/icons/favicon.svg
+++ b/frontend/public/img/icons/favicon.svg
--- a/frontend/public/img/icons/mstile-144x144.png
+++ b/frontend/public/img/icons/mstile-144x144.png
--- a/frontend/public/img/icons/mstile-150x150.png
+++ b/frontend/public/img/icons/mstile-150x150.png
--- a/frontend/public/img/icons/mstile-310x150.png
+++ b/frontend/public/img/icons/mstile-310x150.png
--- a/frontend/public/img/icons/mstile-310x310.png
+++ b/frontend/public/img/icons/mstile-310x310.png
--- a/frontend/public/img/icons/mstile-70x70.png
+++ b/frontend/public/img/icons/mstile-70x70.png
--- a/frontend/public/img/icons/safari-pinned-tab.svg
+++ b/frontend/public/img/icons/safari-pinned-tab.svg
@ -0,0 +1,42 @@
 <?xml version="1.0" standalone="no"?>
 <!DOCTYPE svg PUBLIC "-//W3C//DTD SVG 20010904//EN"
 "http://www.w3.org/TR/2001/REC-SVG-20010904/DTD/svg10.dtd">
 <svg version="1.0" xmlns="http://www.w3.org/2000/svg"
 width="700.000000pt" height="700.000000pt" viewBox="0 0 700.000000 700.000000"
 preserveAspectRatio="xMidYMid meet">
 <metadata>
 Created by potrace 1.11, written by Peter Selinger 2001-2013
 </metadata>
 <g transform="translate(0.000000,700.000000) scale(0.100000,-0.100000)"
 fill="#000000" stroke="none">
 <path d="M3245 6989 c-522 -39 -1042 -197 -1480 -449 -849 -488 -1459 -1308
 -1673 -2250 -177 -776 -89 -1582 250 -2301 368 -778 1052 -1418 1857 -1739
 903 -359 1927 -325 2812 92 778 368 1418 1052 1739 1857 359 903 325 1927 -92
 2812 -296 627 -806 1175 -1423 1529 -587 338 -1308 500 -1990 449z m555 -580
 c519 -51 1018 -245 1446 -565 788 -588 1229 -1526 1174 -2496 -16 -277 -58
 -500 -145 -763 -144 -440 -378 -819 -710 -1150 -452 -452 -1005 -730 -1655
 -832 -91 -14 -175 -18 -405 -18 -304 0 -369 6 -595 51 -1105 223 -1999 1092
 -2259 2197 -52 221 -73 412 -73 667 0 397 64 732 204 1080 304 752 886 1334
 1638 1638 431 174 895 238 1380 191z"/>
 <path d="M2670 5215 c0 -13 -44 -15 -335 -15 -352 0 -383 -3 -399 -45 -3 -9
 -6 -758 -6 -1663 0 -1168 -3 -1643 -11 -1632 -8 11 -9 8 -4 -15 3 -16 17 -41
 31 -55 l24 -25 1530 0 1530 0 24 25 c14 14 26 36 27 50 1 14 1 711 1 1550 l-2
 1526 -228 142 -229 142 -136 0 -137 0 0 -600 0 -600 -705 0 -705 0 0 615 0
 615 -135 0 c-113 0 -135 -2 -135 -15z m-264 -190 c57 -29 89 -71 103 -137 35
 -154 -98 -282 -258 -247 -55 12 -122 62 -148 113 -36 69 -12 186 49 243 62 58
 170 70 254 28z m2316 -1702 c17 -15 18 -49 18 -670 l0 -653 -1245 0 -1245 0 0
 654 c0 582 2 656 16 670 14 14 139 16 1226 16 1113 0 1213 -1 1230 -17z
 m-2602 -1363 c40 -40 13 -100 -43 -100 -60 0 -88 59 -47 100 11 11 31 20 45
 20 14 0 34 -9 45 -20z m2840 0 c41 -41 11 -100 -52 -100 -35 0 -58 24 -58 60
 0 54 71 79 110 40z"/>
 <path d="M2431 3091 c-7 -13 -7 -23 2 -35 11 -15 97 -16 1067 -14 l1055 3 0
 30 0 30 -1057 3 c-1023 2 -1058 1 -1067 -17z"/>
 <path d="M2436 2675 c-19 -19 -11 -41 17 -49 41 -11 2067 -7 2088 4 23 13 25
 46 3 54 -9 3 -483 6 -1054 6 -919 0 -1040 -2 -1054 -15z"/>
 <path d="M2447 2273 c-14 -4 -17 -13 -15 -36 l3 -32 1049 -3 c767 -1 1052 1
 1062 9 20 16 17 47 -5 59 -20 10 -2055 13 -2094 3z"/>
 <path d="M3822 5027 c-21 -23 -22 -30 -22 -293 0 -258 1 -271 20 -292 27 -29
 56 -35 140 -30 56 3 75 8 93 26 22 22 22 26 22 298 l0 276 -24 19 c-19 16 -40
 19 -115 19 -84 0 -95 -2 -114 -23z"/>
 </g>
 </svg>
--- a/frontend/public/index.html
+++ b/frontend/public/index.html
@ -18,10 +18,18 @@
    <meta name="robots" content="noindex,nofollow" />
-    <link rel="icon" type="image/svg+xml" href="[{[ .StaticURL ]}]/img/icons/favicon.svg" />
+    <link
-    <link rel="shortcut icon" href="[{[ .StaticURL ]}]/img/icons/favicon.ico" />
+      rel="icon"
-    <link rel="apple-touch-icon" sizes="180x180" href="[{[ .StaticURL ]}]/img/icons/apple-touch-icon.png" />
+      type="image/png"
-    <meta name="apple-mobile-web-app-title" content="File Browser" />
+      sizes="32x32"
      href="[{[ .StaticURL ]}]/img/icons/favicon-32x32.png"
    />
    <link
      rel="icon"
      type="image/png"
      sizes="16x16"
      href="[{[ .StaticURL ]}]/img/icons/favicon-16x16.png"
    />
    <!-- Add to home screen for Android and modern mobile browsers -->
    <link
@ -34,6 +42,25 @@
      content="[{[ if .Color -]}][{[ .Color ]}][{[ else ]}]#2979ff[{[ end ]}]"
    />
    <!-- Add to home screen for Safari on iOS/iPadOS -->
    <meta name="apple-mobile-web-app-capable" content="yes" />
    <meta name="apple-mobile-web-app-status-bar-style" content="black" />
    <meta name="apple-mobile-web-app-title" content="assets" />
    <link
      rel="apple-touch-icon"
      href="[{[ .StaticURL ]}]/img/icons/apple-touch-icon.png"
    />
    <!-- Add to home screen for Windows -->
    <meta
      name="msapplication-TileImage"
      content="[{[ .StaticURL ]}]/img/icons/mstile-144x144.png"
    />
    <meta
      name="msapplication-TileColor"
      content="[{[ if .Color -]}][{[ .Color ]}][{[ else ]}]#2979ff[{[ end ]}]"
    />
    <!-- Inject Some Variables and generate the manifest json -->
    <script>
      // We can assign JSON directly
--- a/frontend/src/api/commands.ts
+++ b/frontend/src/api/commands.ts
@ -1,5 +1,6 @@
 import { baseURL } from "@/utils/constants";
 import { removePrefix } from "./utils";
 import { baseURL } from "@/utils/constants";
 import { useAuthStore } from "@/stores/auth";
 const ssl = window.location.protocol === "https:";
 const protocol = ssl ? "wss:" : "ws:";
@ -10,8 +11,10 @@ export default function command(
  onmessage: WebSocket["onmessage"],
  onclose: WebSocket["onclose"]
 ) {
  const authStore = useAuthStore();
  url = removePrefix(url);
-  url = `${protocol}//${window.location.host}${baseURL}/api/command${url}`;
+  url = `${protocol}//${window.location.host}${baseURL}/api/command${url}?auth=${authStore.jwt}`;
  const conn = new window.WebSocket(url);
  conn.onopen = () => conn.send(command);
--- a/frontend/src/api/files.ts
+++ b/frontend/src/api/files.ts
@ -1,23 +1,14 @@
-import { useAuthStore } from "@/stores/auth";
+import { createURL, fetchURL, removePrefix } from "./utils";
 import { useLayoutStore } from "@/stores/layout";
 import { baseURL } from "@/utils/constants";
 import { useAuthStore } from "@/stores/auth";
 import { upload as postTus, useTus } from "./tus";
 import { createURL, fetchURL, removePrefix, StatusError } from "./utils";
-export async function fetch(url: string, signal?: AbortSignal) {
+export async function fetch(url: string) {
  url = removePrefix(url);
  const res = await fetchURL(`/api/resources${url}`, { signal });
-  let data: Resource;
+  const res = await fetchURL(`/api/resources${url}`, {});
-  try {
+
-    data = (await res.json()) as Resource;
+  const data = (await res.json()) as Resource;
  } catch (e) {
    // Check if the error is an intentional cancellation
    if (e instanceof Error && e.name === "AbortError") {
      throw new StatusError("000 No connection", 0, true);
    }
    throw e;
  }
  data.url = `/files${url}`;
  if (data.isDir) {
@ -83,6 +74,11 @@ export function download(format: any, ...files: string[]) {
    url += `algo=${format}&`;
  }
  const authStore = useAuthStore();
  if (authStore.jwt) {
    url += `auth=${authStore.jwt}&`;
  }
  window.open(url);
 }
@ -160,7 +156,6 @@ function moveCopy(
  overwrite = false,
  rename = false
 ) {
  const layoutStore = useLayoutStore();
  const promises = [];
  for (const item of items) {
@ -171,7 +166,7 @@ function moveCopy(
    }&destination=${to}&override=${overwrite}&rename=${rename}`;
    promises.push(resourceAction(url, "PATCH"));
  }
-  layoutStore.closeHovers();
+
  return Promise.all(promises);
 }
@ -213,18 +208,10 @@ export function getSubtitlesURL(file: ResourceItem) {
  return file.subtitles?.map((d) => createURL("api/subtitle" + d, params));
 }
-export async function usage(url: string, signal: AbortSignal) {
+export async function usage(url: string) {
  url = removePrefix(url);
-  const res = await fetchURL(`/api/usage${url}`, { signal });
+  const res = await fetchURL(`/api/usage${url}`, {});
-  try {
+  return await res.json();
    return await res.json();
  } catch (e) {
    // Check if the error is an intentional cancellation
    if (e instanceof Error && e.name == "AbortError") {
      throw new StatusError("000 No connection", 0, true);
    }
    throw e;
  }
 }
--- a/frontend/src/api/pub.ts
+++ b/frontend/src/api/pub.ts
@ -71,5 +71,5 @@ export function getDownloadURL(res: Resource, inline = false) {
    ...(res.token && { token: res.token }),
  };
-  return createURL("api/public/dl/" + res.hash + res.path, params);
+  return createURL("api/public/dl/" + res.hash + res.path, params, false);
 }
--- a/frontend/src/api/search.ts
+++ b/frontend/src/api/search.ts
@ -13,7 +13,7 @@ export default async function search(base: string, query: string) {
  let data = await res.json();
-  data = data.map((item: ResourceItem & { dir: boolean }) => {
+  data = data.map((item: UploadItem) => {
    item.url = `/files${base}` + url.encodePath(item.path);
    if (item.dir) {
--- a/frontend/src/api/share.ts
+++ b/frontend/src/api/share.ts
@ -41,5 +41,5 @@ export async function create(
 }
 export function getShareURL(share: Share) {
-  return createURL("share/" + share.hash, {});
+  return createURL("share/" + share.hash, {}, false);
 }
--- a/frontend/src/api/tus.ts
+++ b/frontend/src/api/tus.ts
@ -1,11 +1,18 @@
 import * as tus from "tus-js-client";
-import { baseURL, tusEndpoint, tusSettings, origin } from "@/utils/constants";
+import { baseURL, tusEndpoint, tusSettings } from "@/utils/constants";
 import { useAuthStore } from "@/stores/auth";
 import { useUploadStore } from "@/stores/upload";
 import { removePrefix } from "@/api/utils";
 import { fetchURL } from "./utils";
 const RETRY_BASE_DELAY = 1000;
 const RETRY_MAX_DELAY = 20000;
-const CURRENT_UPLOAD_LIST: { [key: string]: tus.Upload } = {};
+const SPEED_UPDATE_INTERVAL = 1000;
 const ALPHA = 0.2;
 const ONE_MINUS_ALPHA = 1 - ALPHA;
 const RECENT_SPEEDS_LIMIT = 5;
 const MB_DIVISOR = 1024 * 1024;
 const CURRENT_UPLOAD_LIST: CurrentUploadList = {};
 export async function upload(
  filePath: string,
@ -21,6 +28,8 @@ export async function upload(
  filePath = removePrefix(filePath);
  const resourcePath = `${tusEndpoint}${filePath}?override=${overwrite}`;
  await createUpload(resourcePath);
  const authStore = useAuthStore();
  // Exit early because of typescript, tus content can't be a string
@ -29,7 +38,7 @@ export async function upload(
  }
  return new Promise<void | string>((resolve, reject) => {
    const upload = new tus.Upload(content, {
-      endpoint: `${origin}${baseURL}${resourcePath}`,
+      uploadUrl: `${baseURL}${resourcePath}`,
      chunkSize: tusSettings.chunkSize,
      retryDelays: computeRetryDelays(tusSettings),
      parallelUploads: 1,
@ -37,51 +46,63 @@ export async function upload(
      headers: {
        "X-Auth": authStore.jwt,
      },
-      onShouldRetry: function (err) {
+      onError: function (error) {
-        const status = err.originalResponse
+        if (CURRENT_UPLOAD_LIST[filePath].interval) {
-          ? err.originalResponse.getStatus()
+          clearInterval(CURRENT_UPLOAD_LIST[filePath].interval);
          : 0;
        // Do not retry for file conflict.
        if (status === 409) {
          return false;
        }
        return true;
      },
      onError: function (error: Error | tus.DetailedError) {
        delete CURRENT_UPLOAD_LIST[filePath];
-
+        reject(new Error(`Upload failed: ${error.message}`));
        if (error.message === "Upload aborted") {
          return reject(error);
        }
        const message =
          error instanceof tus.DetailedError
            ? error.originalResponse === null
              ? "000 No connection"
              : error.originalResponse.getBody()
            : "Upload failed";
        console.error(error);
        reject(new Error(message));
      },
      onProgress: function (bytesUploaded) {
        const fileData = CURRENT_UPLOAD_LIST[filePath];
        fileData.currentBytesUploaded = bytesUploaded;
        if (!fileData.hasStarted) {
          fileData.hasStarted = true;
          fileData.lastProgressTimestamp = Date.now();
          fileData.interval = window.setInterval(() => {
            calcProgress(filePath);
          }, SPEED_UPDATE_INTERVAL);
        }
        if (typeof onupload === "function") {
          onupload({ loaded: bytesUploaded });
        }
      },
      onSuccess: function () {
        if (CURRENT_UPLOAD_LIST[filePath].interval) {
          clearInterval(CURRENT_UPLOAD_LIST[filePath].interval);
        }
        delete CURRENT_UPLOAD_LIST[filePath];
        resolve();
      },
    });
-    CURRENT_UPLOAD_LIST[filePath] = upload;
+    CURRENT_UPLOAD_LIST[filePath] = {
      upload: upload,
      recentSpeeds: [],
      initialBytesUploaded: 0,
      currentBytesUploaded: 0,
      currentAverageSpeed: 0,
      lastProgressTimestamp: null,
      sumOfRecentSpeeds: 0,
      hasStarted: false,
      interval: undefined,
    };
    upload.start();
  });
 }
 async function createUpload(resourcePath: string) {
  const headResp = await fetchURL(resourcePath, {
    method: "POST",
  });
  if (headResp.status !== 201) {
    throw new Error(
      `Failed to create an upload: ${headResp.status} ${headResp.statusText}`
    );
  }
 }
 function computeRetryDelays(tusSettings: TusSettings): number[] | undefined {
  if (!tusSettings.retryCount || tusSettings.retryCount < 1) {
    // Disable retries altogether
@ -109,13 +130,83 @@ function isTusSupported() {
  return tus.isSupported === true;
 }
 function computeETA(state: ETAState, speed?: number) {
  if (state.speedMbyte === 0) {
    return Infinity;
  }
  const totalSize = state.sizes.reduce(
    (acc: number, size: number) => acc + size,
    0
  );
  const uploadedSize = state.progress.reduce(
    (acc: number, progress: Progress) => {
      if (typeof progress === "number") {
        return acc + progress;
      }
      return acc;
    },
    0
  );
  const remainingSize = totalSize - uploadedSize;
  const speedBytesPerSecond = (speed ?? state.speedMbyte) * 1024 * 1024;
  return remainingSize / speedBytesPerSecond;
 }
 function computeGlobalSpeedAndETA() {
  const uploadStore = useUploadStore();
  let totalSpeed = 0;
  let totalCount = 0;
  for (const filePath in CURRENT_UPLOAD_LIST) {
    totalSpeed += CURRENT_UPLOAD_LIST[filePath].currentAverageSpeed;
    totalCount++;
  }
  if (totalCount === 0) return { speed: 0, eta: Infinity };
  const averageSpeed = totalSpeed / totalCount;
  const averageETA = computeETA(uploadStore, averageSpeed);
  return { speed: averageSpeed, eta: averageETA };
 }
 function calcProgress(filePath: string) {
  const uploadStore = useUploadStore();
  const fileData = CURRENT_UPLOAD_LIST[filePath];
  const elapsedTime =
    (Date.now() - (fileData.lastProgressTimestamp ?? 0)) / 1000;
  const bytesSinceLastUpdate =
    fileData.currentBytesUploaded - fileData.initialBytesUploaded;
  const currentSpeed = bytesSinceLastUpdate / MB_DIVISOR / elapsedTime;
  if (fileData.recentSpeeds.length >= RECENT_SPEEDS_LIMIT) {
    fileData.sumOfRecentSpeeds -= fileData.recentSpeeds.shift() ?? 0;
  }
  fileData.recentSpeeds.push(currentSpeed);
  fileData.sumOfRecentSpeeds += currentSpeed;
  const avgRecentSpeed =
    fileData.sumOfRecentSpeeds / fileData.recentSpeeds.length;
  fileData.currentAverageSpeed =
    ALPHA * avgRecentSpeed + ONE_MINUS_ALPHA * fileData.currentAverageSpeed;
  const { speed, eta } = computeGlobalSpeedAndETA();
  uploadStore.setUploadSpeed(speed);
  uploadStore.setETA(eta);
  fileData.initialBytesUploaded = fileData.currentBytesUploaded;
  fileData.lastProgressTimestamp = Date.now();
 }
 export function abortAllUploads() {
  for (const filePath in CURRENT_UPLOAD_LIST) {
-    if (CURRENT_UPLOAD_LIST[filePath]) {
+    if (CURRENT_UPLOAD_LIST[filePath].interval) {
-      CURRENT_UPLOAD_LIST[filePath].abort(true);
+      clearInterval(CURRENT_UPLOAD_LIST[filePath].interval);
-      CURRENT_UPLOAD_LIST[filePath].options!.onError!(
+    }
-        new Error("Upload aborted")
+    if (CURRENT_UPLOAD_LIST[filePath].upload) {
-      );
+      CURRENT_UPLOAD_LIST[filePath].upload.abort(true);
    }
    delete CURRENT_UPLOAD_LIST[filePath];
  }
--- a/frontend/src/api/users.ts
+++ b/frontend/src/api/users.ts
@ -25,7 +25,7 @@ export async function create(user: IUser) {
  throw new StatusError(await res.text(), res.status);
 }
-export async function update(user: Partial<IUser>, which = ["all"]) {
+export async function update(user: IUser, which = ["all"]) {
  await fetchURL(`/api/users/${user.id}`, {
    method: "PUT",
    body: JSON.stringify({
--- a/frontend/src/api/utils.ts
+++ b/frontend/src/api/utils.ts
@ -6,8 +6,7 @@ import { encodePath } from "@/utils/url";
 export class StatusError extends Error {
  constructor(
    message: any,
-    public status?: number,
+    public status?: number
    public is_canceled?: boolean
  ) {
    super(message);
    this.name = "StatusError";
@ -34,11 +33,7 @@ export async function fetchURL(
      },
      ...rest,
    });
-  } catch (e) {
+  } catch {
    // Check if the error is an intentional cancellation
    if (e instanceof Error && e.name === "AbortError") {
      throw new StatusError("000 No connection", 0, true);
    }
    throw new StatusError("000 No connection", 0);
  }
@ -81,13 +76,23 @@ export function removePrefix(url: string): string {
  return url;
 }
-export function createURL(endpoint: string, searchParams = {}): string {
+export function createURL(endpoint: string, params = {}, auth = true): string {
  const authStore = useAuthStore();
  let prefix = baseURL;
  if (!prefix.endsWith("/")) {
    prefix = prefix + "/";
  }
  const url = new URL(prefix + encodePath(endpoint), origin);
-  url.search = new URLSearchParams(searchParams).toString();
+
  const searchParams: SearchParams = {
    ...(auth && { auth: authStore.jwt }),
    ...params,
  };
  for (const key in searchParams) {
    url.searchParams.set(key, searchParams[key]);
  }
  return url.toString();
 }
--- a/frontend/src/components/Breadcrumbs.vue
+++ b/frontend/src/components/Breadcrumbs.vue
@ -34,7 +34,7 @@ const props = defineProps<{
 const items = computed(() => {
  const relativePath = route.path.replace(props.base, "");
-  const parts = relativePath.split("/");
+  let parts = relativePath.split("/");
  if (parts[0] === "") {
    parts.shift();
@ -44,7 +44,7 @@ const items = computed(() => {
    parts.pop();
  }
-  const breadcrumbs: BreadCrumb[] = [];
+  let breadcrumbs: BreadCrumb[] = [];
  for (let i = 0; i < parts.length; i++) {
    if (i === 0) {
--- a/Show More
+++ b/Show More
		`@ -0,0 +1,3 @@`
							`#!/usr/bin/with-contenv bash`

							`exec s6-setuidgid abc filebrowser -c /config/settings.json -d /database/filebrowser.db;`
		`@ -1,3 +0,0 @@`
			`#!/usr/bin/with-contenv bash`

			`exec s6-setuidgid abc filebrowser -c /config/settings.json;`