Home Explore Help
Register Sign In
shenzhen
/
tjdify
Watch 2
Star 0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: 14784f0b6d
Branches Tags
tjdify
/
api
/
controllers
/
files
/
upload.py

upload.py 2.2 KB
History Raw

12345678910111213141516171819202122232425262728293031323334353637383940414243444546474849505152535455565758596061626364656667686970 
  1. from flask import request
    2. 

  2. from flask_restful import Resource, marshal_with  # type: ignore
    3. 

  3. from werkzeug.exceptions import Forbidden
    4. 

  4. 

  5. import services
    6. 

  6. from controllers.console.wraps import setup_required
    7. 

  7. from controllers.files import api
    8. 

  8. from controllers.files.error import UnsupportedFileTypeError
    9. 

  9. from controllers.inner_api.plugin.wraps import get_user
    10. 

  10. from controllers.service_api.app.error import FileTooLargeError
    11. 

  11. from core.file.helpers import verify_plugin_file_signature
    12. 

  12. from fields.file_fields import file_fields
    13. 

  13. from services.file_service import FileService
    14. 

  14. 

  15. 

  16. class PluginUploadFileApi(Resource):
    17. 

  17.     @setup_required
    18. 

  18.     @marshal_with(file_fields)
    19. 

  19.     def post(self):
    20. 

  20.         # get file from request
    21. 

  21.         file = request.files["file"]
    22. 

  22. 

  23.         timestamp = request.args.get("timestamp")
    24. 

  24.         nonce = request.args.get("nonce")
    25. 

  25.         sign = request.args.get("sign")
    26. 

  26.         tenant_id = request.args.get("tenant_id")
    27. 

  27.         if not tenant_id:
    28. 

  28.             raise Forbidden("Invalid request.")
    29. 

  29. 

  30.         user_id = request.args.get("user_id")
    31. 

  31.         user = get_user(tenant_id, user_id)
    32. 

  32. 

  33.         filename = file.filename
    34. 

  34.         mimetype = file.mimetype
    35. 

  35. 

  36.         if not filename or not mimetype:
    37. 

  37.             raise Forbidden("Invalid request.")
    38. 

  38. 

  39.         if not timestamp or not nonce or not sign:
    40. 

  40.             raise Forbidden("Invalid request.")
    41. 

  41. 

  42.         if not verify_plugin_file_signature(
    43. 

  43.             filename=filename,
    44. 

  44.             mimetype=mimetype,
    45. 

  45.             tenant_id=tenant_id,
    46. 

  46.             user_id=user_id,
    47. 

  47.             timestamp=timestamp,
    48. 

  48.             nonce=nonce,
    49. 

  49.             sign=sign,
    50. 

  50.         ):
    51. 

  51.             raise Forbidden("Invalid request.")
    52. 

  52. 

  53.         try:
    54. 

  54.             upload_file = FileService.upload_file(
    55. 

  55.                 filename=filename,
    56. 

  56.                 content=file.read(),
    57. 

  57.                 mimetype=mimetype,
    58. 

  58.                 user=user,
    59. 

  59.                 source=None,
    60. 

  60.             )
    61. 

  61.         except services.errors.file.FileTooLargeError as file_too_large_error:
    62. 

  62.             raise FileTooLargeError(file_too_large_error.description)
    63. 

  63.         except services.errors.file.UnsupportedFileTypeError:
    64. 

  64.             raise UnsupportedFileTypeError()
    65. 

  65. 

  66.         return upload_file, 201
    67. 

  67. 

  68. 

  69. api.add_resource(PluginUploadFileApi, "/files/upload/for-plugin")
    70. 

  70.