2019-04-30 08:27:42 +08:00
|
|
|
# frozen_string_literal: true
|
|
|
|
|
2018-11-29 12:11:48 +08:00
|
|
|
require "file_store/s3_store"
|
|
|
|
|
|
|
|
RSpec.describe "Multisite s3 uploads", type: :multisite do
|
2020-06-17 09:16:37 +08:00
|
|
|
let(:original_filename) { "smallest.png" }
|
|
|
|
let(:uploaded_file) { file_from_fixtures(original_filename) }
|
2019-01-10 04:13:02 +08:00
|
|
|
let(:upload_sha1) { Digest::SHA1.hexdigest(File.read(uploaded_file)) }
|
2019-12-18 13:51:57 +08:00
|
|
|
let(:upload_path) { Discourse.store.upload_path }
|
2018-11-29 12:11:48 +08:00
|
|
|
|
2023-03-24 08:16:53 +08:00
|
|
|
def build_upload(secure: false)
|
|
|
|
Fabricate.build(
|
|
|
|
:upload,
|
|
|
|
sha1: upload_sha1,
|
|
|
|
id: 1,
|
|
|
|
original_filename: original_filename,
|
|
|
|
secure: secure,
|
|
|
|
)
|
2019-01-26 04:24:44 +08:00
|
|
|
end
|
|
|
|
|
2022-07-28 00:14:14 +08:00
|
|
|
describe "uploading to s3" do
|
2018-11-29 12:11:48 +08:00
|
|
|
before(:each) { setup_s3 }
|
|
|
|
|
|
|
|
describe "#store_upload" do
|
2018-12-19 13:32:32 +08:00
|
|
|
let(:s3_client) { Aws::S3::Client.new(stub_responses: true) }
|
|
|
|
let(:s3_helper) { S3Helper.new(SiteSetting.s3_upload_bucket, "", client: s3_client) }
|
|
|
|
let(:store) { FileStore::S3Store.new(s3_helper) }
|
2020-06-17 09:16:37 +08:00
|
|
|
let(:upload_opts) do
|
|
|
|
{
|
|
|
|
acl: "public-read",
|
|
|
|
cache_control: "max-age=31556952, public, immutable",
|
|
|
|
content_type: "image/png",
|
|
|
|
}
|
|
|
|
end
|
|
|
|
|
|
|
|
it "does not provide a content_disposition for images" do
|
|
|
|
s3_helper
|
|
|
|
.expects(:upload)
|
|
|
|
.with(uploaded_file, kind_of(String), upload_opts)
|
|
|
|
.returns(%w[path etag])
|
|
|
|
upload = build_upload
|
|
|
|
store.store_upload(uploaded_file, upload)
|
|
|
|
end
|
|
|
|
|
2025-01-07 10:32:32 +08:00
|
|
|
context "when the file is a SVG" do
|
|
|
|
let(:original_filename) { "small.svg" }
|
|
|
|
let(:uploaded_file) { file_from_fixtures("small.svg", "svg") }
|
2020-06-17 09:16:37 +08:00
|
|
|
|
|
|
|
it "adds an attachment content-disposition with the original filename" do
|
2020-06-23 15:10:56 +08:00
|
|
|
disp_opts = {
|
|
|
|
content_disposition:
|
|
|
|
"attachment; filename=\"#{original_filename}\"; filename*=UTF-8''#{original_filename}",
|
2025-01-07 10:32:32 +08:00
|
|
|
content_type: "image/svg+xml",
|
2020-06-23 15:10:56 +08:00
|
|
|
}
|
2020-06-17 09:16:37 +08:00
|
|
|
s3_helper
|
|
|
|
.expects(:upload)
|
|
|
|
.with(uploaded_file, kind_of(String), upload_opts.merge(disp_opts))
|
|
|
|
.returns(%w[path etag])
|
|
|
|
upload = build_upload
|
|
|
|
store.store_upload(uploaded_file, upload)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context "when the file is a video" do
|
|
|
|
let(:original_filename) { "small.mp4" }
|
|
|
|
let(:uploaded_file) { file_from_fixtures("small.mp4", "media") }
|
|
|
|
|
2025-01-07 10:32:32 +08:00
|
|
|
it "does not add content-disposition header" do
|
|
|
|
disp_opts = { content_type: "application/mp4" }
|
2020-06-17 09:16:37 +08:00
|
|
|
s3_helper
|
|
|
|
.expects(:upload)
|
|
|
|
.with(uploaded_file, kind_of(String), upload_opts.merge(disp_opts))
|
|
|
|
.returns(%w[path etag])
|
|
|
|
upload = build_upload
|
|
|
|
store.store_upload(uploaded_file, upload)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context "when the file is audio" do
|
|
|
|
let(:original_filename) { "small.mp3" }
|
|
|
|
let(:uploaded_file) { file_from_fixtures("small.mp3", "media") }
|
|
|
|
|
2025-01-07 10:32:32 +08:00
|
|
|
it "does not add content-disposition header" do
|
|
|
|
disp_opts = { content_type: "audio/mpeg" }
|
2020-06-17 09:16:37 +08:00
|
|
|
s3_helper
|
|
|
|
.expects(:upload)
|
|
|
|
.with(uploaded_file, kind_of(String), upload_opts.merge(disp_opts))
|
|
|
|
.returns(%w[path etag])
|
|
|
|
upload = build_upload
|
|
|
|
store.store_upload(uploaded_file, upload)
|
|
|
|
end
|
|
|
|
end
|
2018-12-19 13:32:32 +08:00
|
|
|
|
2018-11-29 12:11:48 +08:00
|
|
|
it "returns the correct url for default and second multisite db" do
|
2019-01-10 04:13:02 +08:00
|
|
|
test_multisite_connection("default") do
|
2019-01-26 04:24:44 +08:00
|
|
|
upload = build_upload
|
2019-01-25 05:54:03 +08:00
|
|
|
expect(store.store_upload(uploaded_file, upload)).to eq(
|
2020-09-14 19:32:25 +08:00
|
|
|
"//#{SiteSetting.s3_upload_bucket}.s3.dualstack.us-west-1.amazonaws.com/#{upload_path}/original/1X/c530c06cf89c410c0355d7852644a73fc3ec8c04.png",
|
2018-12-03 12:04:14 +08:00
|
|
|
)
|
2019-01-04 14:16:22 +08:00
|
|
|
expect(upload.etag).to eq("ETag")
|
2018-12-03 12:04:14 +08:00
|
|
|
end
|
2018-11-29 12:11:48 +08:00
|
|
|
|
2019-01-10 04:13:02 +08:00
|
|
|
test_multisite_connection("second") do
|
2019-12-18 13:51:57 +08:00
|
|
|
upload_path = Discourse.store.upload_path
|
2019-01-26 04:24:44 +08:00
|
|
|
upload = build_upload
|
2019-01-25 05:54:03 +08:00
|
|
|
expect(store.store_upload(uploaded_file, upload)).to eq(
|
2020-09-14 19:32:25 +08:00
|
|
|
"//#{SiteSetting.s3_upload_bucket}.s3.dualstack.us-west-1.amazonaws.com/#{upload_path}/original/1X/c530c06cf89c410c0355d7852644a73fc3ec8c04.png",
|
2018-11-29 12:11:48 +08:00
|
|
|
)
|
2019-01-04 14:16:22 +08:00
|
|
|
expect(upload.etag).to eq("ETag")
|
2018-11-29 12:11:48 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
2018-12-19 13:32:32 +08:00
|
|
|
|
2022-07-28 00:14:14 +08:00
|
|
|
describe "removal from s3" do
|
2020-09-14 19:32:25 +08:00
|
|
|
before { setup_s3 }
|
2018-12-19 13:32:32 +08:00
|
|
|
|
|
|
|
describe "#remove_upload" do
|
|
|
|
let(:store) { FileStore::S3Store.new }
|
2022-06-21 00:36:05 +08:00
|
|
|
|
|
|
|
let(:upload) { build_upload }
|
|
|
|
let(:upload_key) { "#{upload_path}/original/1X/#{upload.sha1}.png" }
|
|
|
|
|
|
|
|
def prepare_fake_s3
|
|
|
|
@fake_s3 = FakeS3.create
|
|
|
|
bucket = @fake_s3.bucket(SiteSetting.s3_upload_bucket)
|
|
|
|
bucket.put_object(key: upload_key, size: upload.filesize, last_modified: upload.created_at)
|
|
|
|
bucket
|
|
|
|
end
|
2018-12-19 13:32:32 +08:00
|
|
|
|
|
|
|
it "removes the file from s3 on multisite" do
|
2019-01-10 04:13:02 +08:00
|
|
|
test_multisite_connection("default") do
|
2019-12-18 13:51:57 +08:00
|
|
|
upload.update!(
|
|
|
|
url:
|
|
|
|
"//s3-upload-bucket.s3.dualstack.us-west-1.amazonaws.com/#{upload_path}/original/1X/#{upload.sha1}.png",
|
|
|
|
)
|
2022-06-21 00:36:05 +08:00
|
|
|
tombstone_key = "uploads/tombstone/default/original/1X/#{upload.sha1}.png"
|
|
|
|
bucket = prepare_fake_s3
|
2018-12-19 13:32:32 +08:00
|
|
|
|
2022-06-21 00:36:05 +08:00
|
|
|
expect(bucket.find_object(upload_key)).to be_present
|
|
|
|
expect(bucket.find_object(tombstone_key)).to be_nil
|
2018-12-19 13:32:32 +08:00
|
|
|
|
|
|
|
store.remove_upload(upload)
|
2022-06-21 00:36:05 +08:00
|
|
|
|
|
|
|
expect(bucket.find_object(upload_key)).to be_nil
|
|
|
|
expect(bucket.find_object(tombstone_key)).to be_present
|
2018-12-19 13:32:32 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
it "removes the file from s3 on another multisite db" do
|
2019-01-10 04:13:02 +08:00
|
|
|
test_multisite_connection("second") do
|
2019-12-18 13:51:57 +08:00
|
|
|
upload.update!(
|
|
|
|
url:
|
|
|
|
"//s3-upload-bucket.s3.dualstack.us-west-1.amazonaws.com/#{upload_path}/original/1X/#{upload.sha1}.png",
|
|
|
|
)
|
2022-06-21 00:36:05 +08:00
|
|
|
tombstone_key = "uploads/tombstone/second/original/1X/#{upload.sha1}.png"
|
|
|
|
bucket = prepare_fake_s3
|
2018-12-19 13:32:32 +08:00
|
|
|
|
2022-06-21 00:36:05 +08:00
|
|
|
expect(bucket.find_object(upload_key)).to be_present
|
|
|
|
expect(bucket.find_object(tombstone_key)).to be_nil
|
2018-12-19 13:32:32 +08:00
|
|
|
|
|
|
|
store.remove_upload(upload)
|
2022-06-21 00:36:05 +08:00
|
|
|
|
|
|
|
expect(bucket.find_object(upload_key)).to be_nil
|
|
|
|
expect(bucket.find_object(tombstone_key)).to be_present
|
2018-12-19 13:32:32 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
describe "when s3_upload_bucket includes folders path" do
|
2022-06-21 00:36:05 +08:00
|
|
|
let(:upload_key) { "discourse-uploads/#{upload_path}/original/1X/#{upload.sha1}.png" }
|
|
|
|
|
2018-12-19 13:32:32 +08:00
|
|
|
before { SiteSetting.s3_upload_bucket = "s3-upload-bucket/discourse-uploads" }
|
|
|
|
|
|
|
|
it "removes the file from s3 on multisite" do
|
2019-01-10 04:13:02 +08:00
|
|
|
test_multisite_connection("default") do
|
2019-12-18 13:51:57 +08:00
|
|
|
upload.update!(
|
|
|
|
url:
|
|
|
|
"//s3-upload-bucket.s3.dualstack.us-west-1.amazonaws.com/discourse-uploads/#{upload_path}/original/1X/#{upload.sha1}.png",
|
|
|
|
)
|
2022-06-21 00:36:05 +08:00
|
|
|
tombstone_key =
|
|
|
|
"discourse-uploads/uploads/tombstone/default/original/1X/#{upload.sha1}.png"
|
|
|
|
bucket = prepare_fake_s3
|
2018-12-19 13:32:32 +08:00
|
|
|
|
2022-06-21 00:36:05 +08:00
|
|
|
expect(bucket.find_object(upload_key)).to be_present
|
|
|
|
expect(bucket.find_object(tombstone_key)).to be_nil
|
2018-12-19 13:32:32 +08:00
|
|
|
|
|
|
|
store.remove_upload(upload)
|
2022-06-21 00:36:05 +08:00
|
|
|
|
|
|
|
expect(bucket.find_object(upload_key)).to be_nil
|
|
|
|
expect(bucket.find_object(tombstone_key)).to be_present
|
2018-12-19 13:32:32 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
2019-06-06 11:27:24 +08:00
|
|
|
|
2023-06-14 04:02:21 +08:00
|
|
|
describe "secure uploads" do
|
2019-06-06 11:27:24 +08:00
|
|
|
let(:store) { FileStore::S3Store.new }
|
|
|
|
let(:client) { Aws::S3::Client.new(stub_responses: true) }
|
|
|
|
let(:resource) { Aws::S3::Resource.new(client: client) }
|
|
|
|
let(:s3_bucket) { resource.bucket("some-really-cool-bucket") }
|
2020-12-31 02:13:13 +08:00
|
|
|
let(:s3_helper) { store.s3_helper }
|
2019-06-06 11:27:24 +08:00
|
|
|
let(:s3_object) { stub }
|
|
|
|
|
|
|
|
before(:each) do
|
2020-09-14 19:32:25 +08:00
|
|
|
setup_s3
|
2019-06-06 11:27:24 +08:00
|
|
|
SiteSetting.s3_upload_bucket = "some-really-cool-bucket"
|
2019-11-18 09:25:42 +08:00
|
|
|
SiteSetting.authorized_extensions = "pdf|png|jpg|gif"
|
2019-06-06 11:27:24 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
before { s3_object.stubs(:put).returns(Aws::S3::Types::PutObjectOutput.new(etag: "etag")) }
|
|
|
|
|
2019-11-18 09:25:42 +08:00
|
|
|
describe "when secure attachments are enabled" do
|
2019-06-06 11:27:24 +08:00
|
|
|
it "returns signed URL with correct path" do
|
|
|
|
test_multisite_connection("default") do
|
2021-05-27 23:42:25 +08:00
|
|
|
upload =
|
|
|
|
Fabricate(:upload, original_filename: "small.pdf", extension: "pdf", secure: true)
|
2021-11-08 07:16:38 +08:00
|
|
|
path = Discourse.store.get_path_for_upload(upload)
|
|
|
|
|
2019-06-06 11:27:24 +08:00
|
|
|
s3_helper.expects(:s3_bucket).returns(s3_bucket).at_least_once
|
2021-11-08 07:16:38 +08:00
|
|
|
s3_bucket.expects(:object).with("#{upload_path}/#{path}").returns(s3_object).at_least_once
|
2022-11-02 17:47:59 +08:00
|
|
|
s3_object.expects(:presigned_url).with(
|
|
|
|
:get,
|
|
|
|
{ expires_in: SiteSetting.s3_presigned_get_url_expires_after_seconds },
|
|
|
|
)
|
2019-06-06 11:27:24 +08:00
|
|
|
|
2021-05-27 23:42:25 +08:00
|
|
|
upload.url = store.store_upload(uploaded_file, upload)
|
|
|
|
expect(upload.url).to eq(
|
2021-11-08 07:16:38 +08:00
|
|
|
"//some-really-cool-bucket.s3.dualstack.us-west-1.amazonaws.com/#{upload_path}/#{path}",
|
2019-06-06 11:27:24 +08:00
|
|
|
)
|
|
|
|
expect(store.url_for(upload)).not_to eq(upload.url)
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2022-09-29 07:24:33 +08:00
|
|
|
describe "when secure uploads are enabled" do
|
2019-11-18 09:25:42 +08:00
|
|
|
before do
|
|
|
|
SiteSetting.login_required = true
|
2022-09-29 07:24:33 +08:00
|
|
|
SiteSetting.secure_uploads = true
|
2019-11-18 09:25:42 +08:00
|
|
|
s3_helper.stubs(:s3_client).returns(client)
|
|
|
|
Discourse.stubs(:store).returns(store)
|
|
|
|
end
|
|
|
|
|
|
|
|
it "returns signed URL with correct path" do
|
|
|
|
test_multisite_connection("default") do
|
|
|
|
upload = Fabricate.build(:upload_s3, sha1: upload_sha1, id: 1)
|
|
|
|
|
|
|
|
signed_url = Discourse.store.signed_url_for_path(upload.url)
|
|
|
|
expect(signed_url).to match(/Amz-Expires/)
|
2019-12-18 13:51:57 +08:00
|
|
|
expect(signed_url).to match("#{upload_path}")
|
2019-11-18 09:25:42 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
test_multisite_connection("second") do
|
2019-12-18 13:51:57 +08:00
|
|
|
upload_path = Discourse.store.upload_path
|
2019-11-18 09:25:42 +08:00
|
|
|
upload = Fabricate.build(:upload_s3, sha1: upload_sha1, id: 1)
|
|
|
|
|
|
|
|
signed_url = Discourse.store.signed_url_for_path(upload.url)
|
|
|
|
expect(signed_url).to match(/Amz-Expires/)
|
2019-12-18 13:51:57 +08:00
|
|
|
expect(signed_url).to match("#{upload_path}")
|
2019-11-18 09:25:42 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
2019-06-06 11:27:24 +08:00
|
|
|
describe "#update_upload_ACL" do
|
|
|
|
it "updates correct file for default and second multisite db" do
|
|
|
|
test_multisite_connection("default") do
|
2023-03-24 08:16:53 +08:00
|
|
|
upload = build_upload(secure: true)
|
|
|
|
upload.update!(original_filename: "small.pdf", extension: "pdf")
|
2019-06-06 11:27:24 +08:00
|
|
|
|
|
|
|
s3_helper.expects(:s3_bucket).returns(s3_bucket).at_least_once
|
2023-03-24 08:16:53 +08:00
|
|
|
expect_upload_acl_update(upload, upload_path)
|
2019-06-06 11:27:24 +08:00
|
|
|
|
|
|
|
expect(store.update_upload_ACL(upload)).to be_truthy
|
|
|
|
end
|
|
|
|
|
|
|
|
test_multisite_connection("second") do
|
2019-12-18 13:51:57 +08:00
|
|
|
upload_path = Discourse.store.upload_path
|
2023-03-24 08:16:53 +08:00
|
|
|
upload = build_upload(secure: true)
|
|
|
|
upload.update!(original_filename: "small.pdf", extension: "pdf")
|
2019-06-06 11:27:24 +08:00
|
|
|
|
|
|
|
s3_helper.expects(:s3_bucket).returns(s3_bucket).at_least_once
|
2023-03-24 08:16:53 +08:00
|
|
|
expect_upload_acl_update(upload, upload_path)
|
2019-06-06 11:27:24 +08:00
|
|
|
|
|
|
|
expect(store.update_upload_ACL(upload)).to be_truthy
|
|
|
|
end
|
|
|
|
end
|
2023-03-24 08:16:53 +08:00
|
|
|
|
|
|
|
describe "optimized images" do
|
|
|
|
it "updates correct file for default and second multisite DB" do
|
|
|
|
test_multisite_connection("default") do
|
|
|
|
upload = build_upload(secure: true)
|
|
|
|
upload_path = Discourse.store.upload_path
|
|
|
|
optimized_image = Fabricate(:optimized_image, upload: upload)
|
|
|
|
s3_helper.expects(:s3_bucket).returns(s3_bucket).at_least_once
|
|
|
|
expect_upload_acl_update(upload, upload_path)
|
|
|
|
expect_optimized_image_acl_update(optimized_image, upload_path)
|
|
|
|
|
|
|
|
expect(store.update_upload_ACL(upload)).to be_truthy
|
|
|
|
end
|
|
|
|
|
|
|
|
test_multisite_connection("second") do
|
|
|
|
upload = build_upload(secure: true)
|
|
|
|
upload_path = Discourse.store.upload_path
|
|
|
|
optimized_image = Fabricate(:optimized_image, upload: upload)
|
|
|
|
s3_helper.expects(:s3_bucket).returns(s3_bucket).at_least_once
|
|
|
|
expect_upload_acl_update(upload, upload_path)
|
|
|
|
expect_optimized_image_acl_update(optimized_image, upload_path)
|
|
|
|
|
|
|
|
expect(store.update_upload_ACL(upload)).to be_truthy
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
def expect_upload_acl_update(upload, upload_path)
|
|
|
|
s3_bucket
|
|
|
|
.expects(:object)
|
|
|
|
.with("#{upload_path}/original/1X/#{upload.sha1}.#{upload.extension}")
|
|
|
|
.returns(s3_object)
|
|
|
|
s3_object.expects(:acl).returns(s3_object)
|
|
|
|
s3_object.expects(:put).with(acl: "private").returns(s3_object)
|
|
|
|
end
|
|
|
|
|
|
|
|
def expect_optimized_image_acl_update(optimized_image, upload_path)
|
|
|
|
path = Discourse.store.get_path_for_optimized_image(optimized_image)
|
|
|
|
s3_bucket.expects(:object).with("#{upload_path}/#{path}").returns(s3_object)
|
|
|
|
s3_object.expects(:acl).returns(s3_object)
|
|
|
|
s3_object.expects(:put).with(acl: "private").returns(s3_object)
|
|
|
|
end
|
2019-06-06 11:27:24 +08:00
|
|
|
end
|
|
|
|
end
|
2020-05-23 12:56:13 +08:00
|
|
|
|
|
|
|
describe "#has_been_uploaded?" do
|
|
|
|
before do
|
2020-09-14 19:32:25 +08:00
|
|
|
setup_s3
|
2020-05-23 12:56:13 +08:00
|
|
|
SiteSetting.s3_upload_bucket = "s3-upload-bucket/test"
|
|
|
|
end
|
|
|
|
|
|
|
|
let(:store) { FileStore::S3Store.new }
|
|
|
|
|
2020-06-25 13:00:15 +08:00
|
|
|
it "returns false for blank urls and bad urls" do
|
|
|
|
expect(store.has_been_uploaded?("")).to eq(false)
|
|
|
|
expect(store.has_been_uploaded?("http://test@test.com:test/test.git")).to eq(false)
|
|
|
|
expect(store.has_been_uploaded?("http:///+test@test.com/test.git")).to eq(false)
|
2020-05-23 12:56:13 +08:00
|
|
|
end
|
|
|
|
|
|
|
|
it "returns true if the base hostname is the same for both urls" do
|
|
|
|
url =
|
|
|
|
"https://s3-upload-bucket.s3.dualstack.us-west-1.amazonaws.com/test/original/2X/d/dd7964f5fd13e1103c5244ca30abe1936c0a4b88.png"
|
|
|
|
expect(store.has_been_uploaded?(url)).to eq(true)
|
|
|
|
end
|
|
|
|
|
|
|
|
it "returns false if the base hostname is the same for both urls BUT the bucket name is different in the path" do
|
|
|
|
bucket = "someotherbucket"
|
|
|
|
url =
|
|
|
|
"https://s3-upload-bucket.s3.dualstack.us-west-1.amazonaws.com/#{bucket}/original/2X/d/dd7964f5fd13e1103c5244ca30abe1936c0a4b88.png"
|
|
|
|
expect(store.has_been_uploaded?(url)).to eq(false)
|
|
|
|
end
|
|
|
|
|
|
|
|
it "returns false if the hostnames do not match and the s3_cdn_url is blank" do
|
|
|
|
url =
|
|
|
|
"https://www.someotherhostname.com/test/original/2X/d/dd7964f5fd13e1103c5244ca30abe1936c0a4b88.png"
|
|
|
|
expect(store.has_been_uploaded?(url)).to eq(false)
|
|
|
|
end
|
|
|
|
|
|
|
|
it "returns true if the s3_cdn_url is present and matches the url hostname" do
|
|
|
|
SiteSetting.s3_cdn_url = "https://www.someotherhostname.com"
|
|
|
|
url =
|
|
|
|
"https://www.someotherhostname.com/test/original/2X/d/dd7964f5fd13e1103c5244ca30abe1936c0a4b88.png"
|
|
|
|
expect(store.has_been_uploaded?(url)).to eq(true)
|
|
|
|
end
|
2020-05-26 21:32:48 +08:00
|
|
|
|
|
|
|
it "returns false if the URI is an invalid mailto link" do
|
|
|
|
link = "mailto: roman;@test.com"
|
|
|
|
|
|
|
|
expect(store.has_been_uploaded?(link)).to eq(false)
|
|
|
|
end
|
2020-05-23 12:56:13 +08:00
|
|
|
end
|
2021-07-28 06:42:25 +08:00
|
|
|
|
2023-08-23 09:18:33 +08:00
|
|
|
describe "#signed_request_for_temporary_upload" do
|
2021-07-28 06:42:25 +08:00
|
|
|
before { setup_s3 }
|
|
|
|
|
|
|
|
let(:store) { FileStore::S3Store.new }
|
|
|
|
|
|
|
|
context "for a bucket with no folder path" do
|
|
|
|
before { SiteSetting.s3_upload_bucket = "s3-upload-bucket" }
|
|
|
|
|
2023-08-23 09:18:33 +08:00
|
|
|
it "returns a presigned url and headers with the correct params and the key for the temporary file" do
|
|
|
|
url, signed_headers = store.signed_request_for_temporary_upload("test.png")
|
FEATURE: Direct S3 multipart uploads for backups (#14736)
This PR introduces a new `enable_experimental_backup_uploads` site setting (default false and hidden), which when enabled alongside `enable_direct_s3_uploads` will allow for direct S3 multipart uploads of backup .tar.gz files.
To make multipart external uploads work with both the S3BackupStore and the S3Store, I've had to move several methods out of S3Store and into S3Helper, including:
* presigned_url
* create_multipart
* abort_multipart
* complete_multipart
* presign_multipart_part
* list_multipart_parts
Then, S3Store and S3BackupStore either delegate directly to S3Helper or have their own special methods to call S3Helper for these methods. FileStore.temporary_upload_path has also removed its dependence on upload_path, and can now be used interchangeably between the stores. A similar change was made in the frontend as well, moving the multipart related JS code out of ComposerUppyUpload and into a mixin of its own, so it can also be used by UppyUploadMixin.
Some changes to ExternalUploadManager had to be made here as well. The backup direct uploads do not need an Upload record made for them in the database, so they can be moved to their final S3 resting place when completing the multipart upload.
This changeset is not perfect; it introduces some special cases in UploadController to handle backups that was previously in BackupController, because UploadController is where the multipart routes are located. A subsequent pull request will pull these routes into a module or some other sharing pattern, along with hooks, so the backup controller and the upload controller (and any future controllers that may need them) can include these routes in a nicer way.
2021-11-11 06:25:31 +08:00
|
|
|
key = store.s3_helper.path_from_url(url)
|
2023-08-23 09:18:33 +08:00
|
|
|
expect(signed_headers).to eq("x-amz-acl" => "private")
|
2021-07-28 06:42:25 +08:00
|
|
|
expect(url).to match(/Amz-Expires/)
|
2021-09-06 08:21:20 +08:00
|
|
|
expect(key).to match(
|
|
|
|
/temp\/uploads\/default\/test_[0-9]\/[a-zA-z0-9]{0,32}\/[a-zA-z0-9]{0,32}.png/,
|
|
|
|
)
|
2021-07-28 06:42:25 +08:00
|
|
|
end
|
|
|
|
|
2023-08-23 09:18:33 +08:00
|
|
|
it "presigned url headers contains the metadata when provided" do
|
|
|
|
url, signed_headers =
|
|
|
|
store.signed_request_for_temporary_upload(
|
|
|
|
"test.png",
|
|
|
|
metadata: {
|
|
|
|
"test-meta": "testing",
|
|
|
|
},
|
|
|
|
)
|
|
|
|
expect(signed_headers).to eq("x-amz-acl" => "private", "x-amz-meta-test-meta" => "testing")
|
|
|
|
expect(url).not_to include("&x-amz-meta-test-meta=testing")
|
2021-07-28 06:42:25 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context "for a bucket with a folder path" do
|
|
|
|
before { SiteSetting.s3_upload_bucket = "s3-upload-bucket/site" }
|
|
|
|
|
|
|
|
it "returns a presigned url with the correct params and the key for the temporary file" do
|
2023-08-23 09:18:33 +08:00
|
|
|
url, _signed_headers = store.signed_request_for_temporary_upload("test.png")
|
FEATURE: Direct S3 multipart uploads for backups (#14736)
This PR introduces a new `enable_experimental_backup_uploads` site setting (default false and hidden), which when enabled alongside `enable_direct_s3_uploads` will allow for direct S3 multipart uploads of backup .tar.gz files.
To make multipart external uploads work with both the S3BackupStore and the S3Store, I've had to move several methods out of S3Store and into S3Helper, including:
* presigned_url
* create_multipart
* abort_multipart
* complete_multipart
* presign_multipart_part
* list_multipart_parts
Then, S3Store and S3BackupStore either delegate directly to S3Helper or have their own special methods to call S3Helper for these methods. FileStore.temporary_upload_path has also removed its dependence on upload_path, and can now be used interchangeably between the stores. A similar change was made in the frontend as well, moving the multipart related JS code out of ComposerUppyUpload and into a mixin of its own, so it can also be used by UppyUploadMixin.
Some changes to ExternalUploadManager had to be made here as well. The backup direct uploads do not need an Upload record made for them in the database, so they can be moved to their final S3 resting place when completing the multipart upload.
This changeset is not perfect; it introduces some special cases in UploadController to handle backups that was previously in BackupController, because UploadController is where the multipart routes are located. A subsequent pull request will pull these routes into a module or some other sharing pattern, along with hooks, so the backup controller and the upload controller (and any future controllers that may need them) can include these routes in a nicer way.
2021-11-11 06:25:31 +08:00
|
|
|
key = store.s3_helper.path_from_url(url)
|
2021-07-28 06:42:25 +08:00
|
|
|
expect(url).to match(/Amz-Expires/)
|
2021-09-06 08:21:20 +08:00
|
|
|
expect(key).to match(
|
|
|
|
/temp\/site\/uploads\/default\/test_[0-9]\/[a-zA-z0-9]{0,32}\/[a-zA-z0-9]{0,32}.png/,
|
|
|
|
)
|
2021-07-28 06:42:25 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
|
|
|
|
context "for a multisite site" do
|
|
|
|
before { SiteSetting.s3_upload_bucket = "s3-upload-bucket/standard99" }
|
|
|
|
|
|
|
|
it "returns a presigned url with the correct params and the key for the temporary file" do
|
|
|
|
test_multisite_connection("second") do
|
2023-08-23 09:18:33 +08:00
|
|
|
url, _signed_headers = store.signed_request_for_temporary_upload("test.png")
|
FEATURE: Direct S3 multipart uploads for backups (#14736)
This PR introduces a new `enable_experimental_backup_uploads` site setting (default false and hidden), which when enabled alongside `enable_direct_s3_uploads` will allow for direct S3 multipart uploads of backup .tar.gz files.
To make multipart external uploads work with both the S3BackupStore and the S3Store, I've had to move several methods out of S3Store and into S3Helper, including:
* presigned_url
* create_multipart
* abort_multipart
* complete_multipart
* presign_multipart_part
* list_multipart_parts
Then, S3Store and S3BackupStore either delegate directly to S3Helper or have their own special methods to call S3Helper for these methods. FileStore.temporary_upload_path has also removed its dependence on upload_path, and can now be used interchangeably between the stores. A similar change was made in the frontend as well, moving the multipart related JS code out of ComposerUppyUpload and into a mixin of its own, so it can also be used by UppyUploadMixin.
Some changes to ExternalUploadManager had to be made here as well. The backup direct uploads do not need an Upload record made for them in the database, so they can be moved to their final S3 resting place when completing the multipart upload.
This changeset is not perfect; it introduces some special cases in UploadController to handle backups that was previously in BackupController, because UploadController is where the multipart routes are located. A subsequent pull request will pull these routes into a module or some other sharing pattern, along with hooks, so the backup controller and the upload controller (and any future controllers that may need them) can include these routes in a nicer way.
2021-11-11 06:25:31 +08:00
|
|
|
key = store.s3_helper.path_from_url(url)
|
2021-07-28 06:42:25 +08:00
|
|
|
expect(url).to match(/Amz-Expires/)
|
2021-09-06 08:21:20 +08:00
|
|
|
expect(key).to match(
|
|
|
|
/temp\/standard99\/uploads\/second\/test_[0-9]\/[a-zA-z0-9]{0,32}\/[a-zA-z0-9]{0,32}.png/,
|
|
|
|
)
|
2021-07-28 06:42:25 +08:00
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
|
|
|
end
|
2018-11-29 12:11:48 +08:00
|
|
|
end
|