Biukop
/
SFM-loan-Rest-Api
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
69 Commits
1 Branch
973KB
Tree: 5f47d33299
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '5f47d33299'
${ noResults }
SFM-loan-Rest-Api/apiV1Uploads.go

274 lines
6.6KB
Raw Blame History 

  1. package main

  2. 

  3. import (

  4. 	"biukop.com/sfm/loan"

  5. 	"crypto/sha256"

  6. 	"errors"

  7. 	"fmt"

  8. 	log "github.com/sirupsen/logrus"

  9. 	"io"

  10. 	"io/ioutil"

  11. 	"net/http"

  12. 	"os"

  13. 	"strconv"

  14. 	"time"

  15. )

  16. 

  17. func apiV1UploadMetaGet(w http.ResponseWriter, r *http.Request, ss *loan.Session) {

  18. 	id := r.URL.Path[len(apiV1Prefix+"upload-meta/"):] //remove prefix

  19. 	intId, e := strconv.Atoi(id)

  20. 	if e != nil {

  21. 		log.Println("invalid id for upload get", id, e)

  22. 		apiV1Client403Error(w, r, ss) // bad request

  23. 		return

  24. 	}

  25. 

  26. 	ulmeta := loan.Uploads{}

  27. 	e = ulmeta.Read(int64(intId))

  28. 	if e != nil {

  29. 		log.Println("upload not found", id, e)

  30. 		apiV1Client404Error(w, r, ss) // bad request

  31. 		return

  32. 	}

  33. 	apiV1SendJson(ulmeta, w, r, ss)

  34. }

  35. 

  36. func apiV1UploadDelete(w http.ResponseWriter, r *http.Request, ss *loan.Session) {

  37. 	id := r.URL.Path[len(apiV1Prefix+"upload/"):] //remove prefix

  38. 	intId, e := strconv.Atoi(id)

  39. 	if e != nil {

  40. 		log.Println("invalid id for upload get", id, e)

  41. 		apiV1Client403Error(w, r, ss) // bad request

  42. 		return

  43. 	}

  44. 

  45. 	ul := uploadsOnDisk{}

  46. 	ul.Upload = loan.Uploads{}

  47. 	e = ul.Upload.Read(int64(intId))

  48. 	if e != nil {

  49. 		log.Println("upload not found", id, e)

  50. 		apiV1Client404Error(w, r, ss) // bad request

  51. 		return

  52. 	}

  53. 

  54. 	e = ul.DeleteAll()

  55. 	if e != nil {

  56. 		log.Println("upload cannot be deleted", id, e)

  57. 		apiV1Server500Error(w, r) // bad operation

  58. 		return

  59. 	}

  60. 

  61. 	apiV1SendJson(ul.Upload, w, r, ss)

  62. }

  63. 

  64. func apiV1UploadOriginalFileGet(w http.ResponseWriter, r *http.Request, ss *loan.Session) {

  65. 	id := r.URL.Path[len(apiV1Prefix+"upload-original/"):] //remove prefix

  66. 	intId, e := strconv.Atoi(id)

  67. 	if e != nil {

  68. 		log.Println("invalid id for upload get", id, e)

  69. 		apiV1Client403Error(w, r, ss) // bad request

  70. 		return

  71. 	}

  72. 

  73. 	ul := uploadsOnDisk{}

  74. 	e = ul.Upload.Read(int64(intId))

  75. 	if e != nil {

  76. 		log.Println("no file uploaded", intId, e)

  77. 		apiV1Client404Error(w, r, ss) // bad request

  78. 		return

  79. 	}

  80. 

  81. 	if forceHttpDownload(r) {

  82. 		w.Header().Set("Content-Disposition", "attachment; filename="+ul.Upload.FileName)

  83. 	}

  84. 

  85. 	//check local file first

  86. 	path := ul.filePath()

  87. 	if fileExists(path) {

  88. 		http.ServeFile(w, r, path)

  89. 		return

  90. 	}

  91. 

  92. 	log.Error("Upload file not found on disk", ul)

  93. 	apiV1Server500Error(w, r) // bad request

  94. }

  95. 

  96. func apiV1UploadsPost(w http.ResponseWriter, r *http.Request, ss *loan.Session) {

  97. 	id := r.URL.Path[len(apiV1Prefix+"lender-upload/"):] //remove prefix

  98. 

  99. 	filepath, e := saveUploadToFile(r)

  100. 	if e != nil {

  101. 		log.Println("no file uploaded", filepath, e)

  102. 		apiV1Client404Error(w, r, ss) // bad request

  103. 		return

  104. 	}

  105. 

  106. 	intId, e := strconv.Atoi(id)

  107. 	if id != "" {

  108. 		if e != nil {

  109. 			log.Println("Error Getting File", e)

  110. 			apiV1Client404Error(w, r, ss) // bad request

  111. 			return

  112. 		}

  113. 		updateUploads(int64(intId), filepath, w, r, ss)

  114. 	} else {

  115. 		createUploads(filepath, w, r, ss)

  116. 	}

  117. }

  118. 

  119. func sha256File(input io.Reader) string {

  120. 	hash := sha256.New()

  121. 	if _, err := io.Copy(hash, input); err != nil {

  122. 		log.Fatal(err)

  123. 	}

  124. 	sum := hash.Sum(nil)

  125. 

  126. 	return fmt.Sprintf("%x", sum)

  127. }

  128. 

  129. func updateUploads(id int64, filePath string, w http.ResponseWriter, r *http.Request, ss *loan.Session) {

  130. 	ul := uploadsOnDisk{}

  131. 	e := ul.Upload.Read(int64(id))

  132. 	if e != nil {

  133. 		log.Println("bad upload id is given ", id, e)

  134. 		apiV1Client404Error(w, r, ss) // bad request

  135. 		return

  136. 	}

  137. 

  138. 	ul1, isDuplicate, e := saveUploadsMetaToDB(id, filePath, r, ss)

  139. 	ul.Upload.IsDuplicate = isDuplicate

  140. 	if e != nil {

  141. 		os.Remove(ul.filePath())

  142. 		ul1.Delete()

  143. 		log.Println("cannot save file info to db ", e)

  144. 		apiV1Server500Error(w, r) // bad request

  145. 		return

  146. 	}

  147. 

  148. 	apiV1SendJson(ul1, w, r, ss)

  149. }

  150. 

  151. func createUploads(filePath string, w http.ResponseWriter, r *http.Request, ss *loan.Session) {

  152. 	ul := uploadsOnDisk{}

  153. 	ulMeta, isDuplicate, e := saveUploadsMetaToDB(0, filePath, r, ss)

  154. 	ul.Upload = ulMeta

  155. 	ul.Upload.IsDuplicate = isDuplicate

  156. 	if e != nil {

  157. 		log.Println("cannot save file info to db ", e)

  158. 		e = ulMeta.Delete() // delete the newly created, if failed, db will clean it

  159. 		if e != nil {

  160. 			log.Error("failed to remove unused uploads", ul)

  161. 		}

  162. 

  163. 		e = os.Remove(ul.filePath())

  164. 		if e != nil {

  165. 			log.Error("failed to remove unused temp file", filePath)

  166. 		}

  167. 

  168. 		apiV1Server500Error(w, r) // bad request

  169. 		return

  170. 	}

  171. 	apiV1SendJson(ulMeta, w, r, ss)

  172. }

  173. 

  174. func saveUploadsMetaToDB(id int64, filePath string,

  175. 	r *http.Request, ss *loan.Session) (ulMeta loan.Uploads, duplicate bool, e error) {

  176. 	duplicate = false

  177. 	e = r.ParseMultipartForm(10 << 20) // we should have ready parsed this, just in case

  178. 	if e != nil {

  179. 		return

  180. 	}

  181. 	file, header, e := r.FormFile("files")

  182. 

  183. 	file.Seek(0, 0) //seek to beginning

  184. 	checksum := sha256File(file)

  185. 	ulMeta.Id = id

  186. 	ulMeta.Ts = time.Now()

  187. 	ulMeta.FileName = header.Filename

  188. 	file.Seek(0, 0) //seek to beginning

  189. 	ulMeta.Format = header.Header.Get("Content-type")

  190. 	ulMeta.Size = header.Size // necessary to prevent duplicate

  191. 	ulMeta.LastModified = 0

  192. 	ulMeta.Sha256 = checksum // necessary to prevent duplicate

  193. 	ulMeta.By = ss.User

  194. 	e = ulMeta.Write() // this Id will have the real Id if there is duplicates

  195. 

  196. 	if e != nil {

  197. 		log.Error("Fail to update db ", ulMeta, e)

  198. 	} else {

  199. 		if (id > 0 && ulMeta.Id != id) || (id == 0 && ulMeta.IsDuplicate) {

  200. 			duplicate = true

  201. 		}

  202. 		ul := uploadsOnDisk{}

  203. 		ul.Upload = ulMeta

  204. 		e = os.Rename(filePath, ul.filePath())

  205. 		if e != nil {

  206. 			os.Remove(filePath)

  207. 			log.Error("fail to move file from ", filePath, "to", ul.filePath())

  208. 		}

  209. 	}

  210. 	return

  211. }

  212. 

  213. func saveUploadToFile(r *http.Request) (filename string, e error) {

  214. 	e = r.ParseMultipartForm(10 << 20)

  215. 	if e != nil {

  216. 		return

  217. 	}

  218. 	file, header, e := r.FormFile("files")

  219. 	if e != nil {

  220. 		log.Println("Error Getting File", e)

  221. 		return

  222. 	}

  223. 

  224. 	out, pathError := ioutil.TempFile(config.UploadsDir.FileDir, "can-del-upload-*.tmp")

  225. 	if pathError != nil {

  226. 		log.Println("Error Creating a file for writing", pathError)

  227. 		return

  228. 	}

  229. 

  230. 	out.Seek(0, 0) //seek to beginning

  231. 	size, e := io.Copy(out, file)

  232. 	if e != nil {

  233. 		os.Remove(out.Name()) //remove on failure

  234. 		log.Println("Error copying", e)

  235. 		return

  236. 	}

  237. 

  238. 	if size != header.Size {

  239. 		e = errors.New("written file with incorrect size")

  240. 	}

  241. 	return out.Name(), e

  242. }

  243. 

  244. func getRequestedUpload(strId string, w http.ResponseWriter, r *http.Request, ss *loan.Session) (ret uploadsOnDisk, e error) {

  245. 

  246. 	Id, e := strconv.Atoi(strId)

  247. 	if e != nil {

  248. 		log.Error("Invalid uploads Id cannot convert to integer", Id, e)

  249. 		apiV1Client403Error(w, r, ss)

  250. 		return

  251. 	}

  252. 

  253. 	ul := loan.Uploads{}

  254. 	e = ul.Read(int64(Id))

  255. 	if e != nil {

  256. 		log.Error("Upload not found or read error from db", Id, e)

  257. 		apiV1Client404Error(w, r, ss)

  258. 		return

  259. 	}

  260. 

  261. 	ret.Upload = ul

  262. 	return

  263. }

  264. 

  265. func forceHttpDownload(r *http.Request) bool {

  266. 	keys, ok := r.URL.Query()["download"]

  267. 

  268. 	if !ok || len(keys[0]) < 1 {

  269. 		return false

  270. 	}

  271. 	key := keys[0]

  272. 	return key == "force"

  273. }