Created
June 23, 2021 19:11
-
-
Save felipepastorelima/46e78f4201c2efc803c276d0da0fc211 to your computer and use it in GitHub Desktop.
backend/src/services/file/localhostFileStorage.ts
This file contains bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| import path from 'path'; | |
| import fs from 'fs'; | |
| import os from 'os'; | |
| import jwt from 'jsonwebtoken'; | |
| import { getConfig } from '../../config'; | |
| import mv from 'mv'; | |
| import Error403 from '../../errors/Error403'; | |
| /** | |
| * The directory where the files should be uploaded. | |
| * Change this to a persisted folder. | |
| */ | |
| const UPLOAD_DIR = os.tmpdir(); | |
| export default class LocalFileStorage { | |
| /** | |
| * Creates a signed upload URL that enables | |
| * the frontend to upload directly to the server in a | |
| * secure way. | |
| */ | |
| static async uploadCredentials( | |
| privateUrl, | |
| maxSizeInBytes, | |
| publicRead, | |
| tokenExpiresAt, | |
| ) { | |
| const expires = | |
| tokenExpiresAt || Date.now() + 10 * 60 * 1000; | |
| const token = jwt.sign( | |
| { privateUrl, maxSizeInBytes }, | |
| getConfig().AUTH_JWT_SECRET, | |
| { expiresIn: expires }, | |
| ); | |
| return { | |
| url: `${ | |
| getConfig().BACKEND_URL | |
| }/file/upload?token=${token}`, | |
| }; | |
| } | |
| /** | |
| * Handles the upload to the server. | |
| */ | |
| static async upload(fileTempUrl, privateUrl) { | |
| const internalUrl = path.join(UPLOAD_DIR, privateUrl); | |
| if (!isPathInsideUploadDir(internalUrl)) { | |
| throw new Error403(); | |
| } | |
| ensureDirectoryExistence(internalUrl); | |
| return new Promise((resolve, reject) => { | |
| mv(fileTempUrl, internalUrl, (err) => { | |
| if (err) { | |
| reject(err); | |
| return; | |
| } | |
| return this.downloadUrl(privateUrl) | |
| .then(resolve) | |
| .catch(reject); | |
| }); | |
| }); | |
| } | |
| /** | |
| * Return the download URL of the file from this server. | |
| */ | |
| static async downloadUrl(privateUrl) { | |
| return `${ | |
| getConfig().BACKEND_URL | |
| }/file/download?privateUrl=${privateUrl}`; | |
| } | |
| /** | |
| * Downloads the file. | |
| */ | |
| static async download(privateUrl) { | |
| let finalPath = path.join(UPLOAD_DIR, privateUrl); | |
| if (!isPathInsideUploadDir(finalPath)) { | |
| throw new Error403(); | |
| } | |
| return finalPath; | |
| } | |
| } | |
| function ensureDirectoryExistence(filePath) { | |
| var dirname = path.dirname(filePath); | |
| if (fs.existsSync(dirname)) { | |
| return true; | |
| } | |
| ensureDirectoryExistence(dirname); | |
| fs.mkdirSync(dirname); | |
| } | |
| function isPathInsideUploadDir(path) { | |
| const uploadUrlWithSlash = UPLOAD_DIR.endsWith('/') ? UPLOAD_DIR : `${UPLOAD_DIR}/`; | |
| return path.indexOf(uploadUrlWithSlash) === 0; | |
| } |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment