mirror of
https://github.com/SecurityBrewery/catalyst.git
synced 2025-12-06 23:32:47 +01:00
191 lines
4.5 KiB
Go
191 lines
4.5 KiB
Go
package catalyst
|
|
|
|
import (
|
|
"context"
|
|
"errors"
|
|
"fmt"
|
|
"io"
|
|
"log"
|
|
"net/http"
|
|
"strconv"
|
|
|
|
"github.com/arangodb/go-driver"
|
|
"github.com/aws/aws-sdk-go/aws"
|
|
"github.com/aws/aws-sdk-go/service/s3"
|
|
"github.com/aws/aws-sdk-go/service/s3/s3manager"
|
|
"github.com/go-chi/chi"
|
|
tusd "github.com/tus/tusd/pkg/handler"
|
|
"github.com/tus/tusd/pkg/s3store"
|
|
|
|
"github.com/SecurityBrewery/catalyst/bus"
|
|
"github.com/SecurityBrewery/catalyst/database"
|
|
"github.com/SecurityBrewery/catalyst/database/busdb"
|
|
"github.com/SecurityBrewery/catalyst/generated/api"
|
|
"github.com/SecurityBrewery/catalyst/generated/model"
|
|
"github.com/SecurityBrewery/catalyst/storage"
|
|
)
|
|
|
|
func tusdUpload(db *database.Database, bus *bus.Bus, client *s3.S3, external string) http.HandlerFunc {
|
|
return func(w http.ResponseWriter, r *http.Request) {
|
|
ticketID := chi.URLParam(r, "ticketID")
|
|
if ticketID == "" {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, errors.New("ticketID not given"))
|
|
|
|
return
|
|
}
|
|
|
|
if err := storage.CreateBucket(client, ticketID); err != nil {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, fmt.Errorf("could not create bucket: %w", err))
|
|
|
|
return
|
|
}
|
|
|
|
store := s3store.New("catalyst-"+ticketID, client)
|
|
|
|
composer := tusd.NewStoreComposer()
|
|
store.UseIn(composer)
|
|
|
|
handler, err := tusd.NewUnroutedHandler(tusd.Config{
|
|
BasePath: external + "/api/files/" + ticketID + "/tusd/",
|
|
StoreComposer: composer,
|
|
NotifyCompleteUploads: true,
|
|
})
|
|
if err != nil {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, fmt.Errorf("could not create tusd handler: %w", err))
|
|
|
|
return
|
|
}
|
|
|
|
userID := "unknown"
|
|
user, ok := busdb.UserFromContext(r.Context())
|
|
if ok {
|
|
userID = user.ID
|
|
}
|
|
|
|
go func() {
|
|
event := <-handler.CompleteUploads
|
|
|
|
id, err := strconv.ParseInt(ticketID, 10, 64)
|
|
if err != nil {
|
|
return
|
|
}
|
|
|
|
file := &model.File{Key: event.Upload.Storage["Key"], Name: event.Upload.MetaData["filename"]}
|
|
|
|
ctx := context.Background()
|
|
doc, err := db.AddFile(ctx, id, file)
|
|
if err != nil {
|
|
log.Println(err)
|
|
|
|
return
|
|
}
|
|
|
|
err = bus.PublishRequest(userID, "LinkFiles", []driver.DocumentID{driver.DocumentID(fmt.Sprintf("tickets/%d", doc.ID))})
|
|
if err != nil {
|
|
log.Println(err)
|
|
}
|
|
}()
|
|
|
|
switch r.Method {
|
|
case http.MethodHead:
|
|
handler.HeadFile(w, r)
|
|
case http.MethodPost:
|
|
handler.PostFile(w, r)
|
|
case http.MethodPatch:
|
|
handler.PatchFile(w, r)
|
|
default:
|
|
api.JSONErrorStatus(w, http.StatusInternalServerError, errors.New("unknown method"))
|
|
}
|
|
}
|
|
}
|
|
|
|
func upload(db *database.Database, client *s3.S3, uploader *s3manager.Uploader) http.HandlerFunc {
|
|
return func(w http.ResponseWriter, r *http.Request) {
|
|
ticketID := chi.URLParam(r, "ticketID")
|
|
if ticketID == "" {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, errors.New("ticketID not given"))
|
|
|
|
return
|
|
}
|
|
|
|
file, header, err := r.FormFile("file")
|
|
if err != nil {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, err)
|
|
|
|
return
|
|
}
|
|
defer file.Close()
|
|
|
|
if err := storage.CreateBucket(client, ticketID); err != nil {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, fmt.Errorf("could not create bucket: %w", err))
|
|
|
|
return
|
|
}
|
|
|
|
_, err = uploader.Upload(&s3manager.UploadInput{
|
|
Bucket: aws.String("catalyst-" + ticketID),
|
|
Key: aws.String(header.Filename),
|
|
Body: file,
|
|
})
|
|
if err != nil {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, err)
|
|
|
|
return
|
|
}
|
|
|
|
id, err := strconv.ParseInt(ticketID, 10, 64)
|
|
if err != nil {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, err)
|
|
|
|
return
|
|
}
|
|
|
|
_, err = db.AddFile(r.Context(), id, &model.File{
|
|
Key: header.Filename,
|
|
Name: header.Filename,
|
|
})
|
|
if err != nil {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, err)
|
|
|
|
return
|
|
}
|
|
}
|
|
}
|
|
|
|
func download(downloader *s3manager.Downloader) http.HandlerFunc {
|
|
return func(w http.ResponseWriter, r *http.Request) {
|
|
ticketID := chi.URLParam(r, "ticketID")
|
|
if ticketID == "" {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, errors.New("ticketID not given"))
|
|
|
|
return
|
|
}
|
|
|
|
key := chi.URLParam(r, "key")
|
|
if key == "" {
|
|
api.JSONErrorStatus(w, http.StatusBadRequest, errors.New("key not given"))
|
|
|
|
return
|
|
}
|
|
|
|
buf := sequentialWriter{w}
|
|
|
|
downloader.Concurrency = 1
|
|
_, err := downloader.Download(buf, &s3.GetObjectInput{
|
|
Bucket: aws.String("catalyst-" + ticketID),
|
|
Key: aws.String(key),
|
|
})
|
|
if err != nil {
|
|
api.JSONErrorStatus(w, http.StatusInternalServerError, err)
|
|
}
|
|
}
|
|
}
|
|
|
|
type sequentialWriter struct {
|
|
w io.Writer
|
|
}
|
|
|
|
func (fw sequentialWriter) WriteAt(p []byte, _ int64) (n int, err error) {
|
|
return fw.w.Write(p)
|
|
}
|