mirror of
https://gitlab.com/crafty-controller/crafty-4.git
synced 2024-08-30 18:23:09 +00:00
139 lines
4.7 KiB
Python
139 lines
4.7 KiB
Python
import logging
|
|
import os
|
|
import time
|
|
|
|
from app.classes.models.server_permissions import Enum_Permissions_Server
|
|
from app.classes.shared.helpers import helper
|
|
from app.classes.shared.console import console
|
|
from app.classes.shared.main_controller import Controller
|
|
from app.classes.web.websocket_helper import websocket_helper
|
|
from app.classes.web.base_handler import BaseHandler
|
|
|
|
try:
|
|
import tornado.web
|
|
import tornado.options
|
|
import tornado.httpserver
|
|
|
|
except ModuleNotFoundError as ex:
|
|
helper.auto_installer_fix(ex)
|
|
|
|
logger = logging.getLogger(__name__)
|
|
|
|
# Class & Function Defination
|
|
MAX_STREAMED_SIZE = 1024 * 1024 * 1024
|
|
|
|
|
|
@tornado.web.stream_request_body
|
|
class UploadHandler(BaseHandler):
|
|
|
|
# noinspection PyAttributeOutsideInit
|
|
def initialize(
|
|
self, controller: Controller = None, tasks_manager=None, translator=None
|
|
):
|
|
self.controller = controller
|
|
self.tasks_manager = tasks_manager
|
|
self.translator = translator
|
|
|
|
def prepare(self):
|
|
self.do_upload = True
|
|
# pylint: disable=unused-variable
|
|
api_key, token_data, exec_user = self.current_user
|
|
server_id = self.get_argument("server_id", None)
|
|
superuser = exec_user["superuser"]
|
|
if api_key is not None:
|
|
superuser = superuser and api_key.superuser
|
|
user_id = exec_user["user_id"]
|
|
|
|
if superuser:
|
|
exec_user_server_permissions = (
|
|
self.controller.server_perms.list_defined_permissions()
|
|
)
|
|
elif api_key is not None:
|
|
exec_user_server_permissions = (
|
|
self.controller.server_perms.get_api_key_permissions_list(
|
|
api_key, server_id
|
|
)
|
|
)
|
|
else:
|
|
exec_user_server_permissions = (
|
|
self.controller.server_perms.get_user_id_permissions_list(
|
|
exec_user["user_id"], server_id
|
|
)
|
|
)
|
|
|
|
server_id = self.request.headers.get("X-ServerId", None)
|
|
|
|
if user_id is None:
|
|
logger.warning("User ID not found in upload handler call")
|
|
console.warning("User ID not found in upload handler call")
|
|
self.do_upload = False
|
|
|
|
if server_id is None:
|
|
logger.warning("Server ID not found in upload handler call")
|
|
console.warning("Server ID not found in upload handler call")
|
|
self.do_upload = False
|
|
|
|
if Enum_Permissions_Server.Files not in exec_user_server_permissions:
|
|
logger.warning(
|
|
f"User {user_id} tried to upload a file to {server_id} without permissions!"
|
|
)
|
|
console.warning(
|
|
f"User {user_id} tried to upload a file to {server_id} without permissions!"
|
|
)
|
|
self.do_upload = False
|
|
|
|
path = self.request.headers.get("X-Path", None)
|
|
filename = self.request.headers.get("X-FileName", None)
|
|
full_path = os.path.join(path, filename)
|
|
|
|
if not helper.in_path(
|
|
helper.get_os_understandable_path(
|
|
self.controller.servers.get_server_data_by_id(server_id)["path"]
|
|
),
|
|
full_path,
|
|
):
|
|
print(
|
|
user_id,
|
|
server_id,
|
|
helper.get_os_understandable_path(
|
|
self.controller.servers.get_server_data_by_id(server_id)["path"]
|
|
),
|
|
full_path,
|
|
)
|
|
logger.warning(
|
|
f"User {user_id} tried to upload a file to {server_id} but the path is not inside of the server!"
|
|
)
|
|
console.warning(
|
|
f"User {user_id} tried to upload a file to {server_id} but the path is not inside of the server!"
|
|
)
|
|
self.do_upload = False
|
|
|
|
if self.do_upload:
|
|
try:
|
|
self.f = open(full_path, "wb")
|
|
except Exception as e:
|
|
logger.error(f"Upload failed with error: {e}")
|
|
self.do_upload = False
|
|
# If max_body_size is not set, you cannot upload files > 100MB
|
|
self.request.connection.set_max_body_size(MAX_STREAMED_SIZE)
|
|
|
|
def post(self):
|
|
logger.info("Upload completed")
|
|
files_left = int(self.request.headers.get("X-Files-Left", None))
|
|
|
|
if self.do_upload:
|
|
time.sleep(5)
|
|
if files_left == 0:
|
|
websocket_helper.broadcast("close_upload_box", "success")
|
|
self.finish("success") # Nope, I'm sending "success"
|
|
self.f.close()
|
|
else:
|
|
time.sleep(5)
|
|
if files_left == 0:
|
|
websocket_helper.broadcast("close_upload_box", "error")
|
|
self.finish("error")
|
|
|
|
def data_received(self, chunk):
|
|
if self.do_upload:
|
|
self.f.write(chunk)
|