X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/1b8d669706fb952f0e5d1ad5e407073f4815907f..09a3f207ceb2ddcdc7d31d0190eeed94962740d1:/apps/workbench/app/controllers/collections_controller.rb diff --git a/apps/workbench/app/controllers/collections_controller.rb b/apps/workbench/app/controllers/collections_controller.rb index 625a6a8f61..2c8cf7e443 100644 --- a/apps/workbench/app/controllers/collections_controller.rb +++ b/apps/workbench/app/controllers/collections_controller.rb @@ -1,3 +1,7 @@ +# Copyright (C) The Arvados Authors. All rights reserved. +# +# SPDX-License-Identifier: AGPL-3.0 + require "arvados/keep" require "arvados/collection" require "uri" @@ -5,22 +9,22 @@ require "uri" class CollectionsController < ApplicationController include ActionController::Live - skip_around_filter :require_thread_api_token, if: proc { |ctrl| - Rails.configuration.anonymous_user_token and + skip_around_action :require_thread_api_token, if: proc { |ctrl| + !Rails.configuration.Users.AnonymousUserToken.empty? and 'show' == ctrl.action_name } - skip_around_filter(:require_thread_api_token, + skip_around_action(:require_thread_api_token, only: [:show_file, :show_file_links]) - skip_before_filter(:find_object_by_uuid, + skip_before_action(:find_object_by_uuid, only: [:provenance, :show_file, :show_file_links]) # We depend on show_file to display the user agreement: - skip_before_filter :check_user_agreements, only: :show_file - skip_before_filter :check_user_profile, only: :show_file + skip_before_action :check_user_agreements, only: :show_file + skip_before_action :check_user_profile, only: :show_file RELATION_LIMIT = 5 def show_pane_list - panes = %w(Files Upload Provenance_graph Used_by Advanced) + panes = %w(Files Upload Tags Provenance_graph Used_by Advanced) panes = panes - %w(Upload) unless (@object.editable? rescue false) panes end @@ -111,26 +115,17 @@ class CollectionsController < ApplicationController end def show_file_links - if Rails.configuration.keep_web_url || Rails.configuration.keep_web_download_url - # show_file will redirect to keep-web's directory listing - return show_file - end - Thread.current[:reader_tokens] = [params[:reader_token]] - return if false.equal?(find_object_by_uuid) - render layout: false + return show_file end def show_file - # We pipe from arv-get to send the file to the user. Before we start it, - # we ask the API server if the file actually exists. This serves two - # purposes: it lets us return a useful status code for common errors, and - # helps us figure out which token to provide to arv-get. # The order of searched tokens is important: because the anonymous user # token is passed along with every API request, we have to check it first. # Otherwise, it's impossible to know whether any other request succeeded # because of the reader token. coll = nil - tokens = [(Rails.configuration.anonymous_user_token || nil), + tokens = [(if !Rails.configuration.Users.AnonymousUserToken.empty? then + Rails.configuration.Users.AnonymousUserToken else nil end), params[:reader_token], Thread.current[:arvados_api_token]].compact usable_token = find_usable_token(tokens) do @@ -141,62 +136,18 @@ class CollectionsController < ApplicationController return end - # If we are configured to use a keep-web server, just redirect to - # the appropriate URL. - if Rails.configuration.keep_web_url or - Rails.configuration.keep_web_download_url - opts = {} - if usable_token == params[:reader_token] - opts[:path_token] = usable_token - elsif usable_token == Rails.configuration.anonymous_user_token - # Don't pass a token at all - else - # We pass the current user's real token only if it's necessary - # to read the collection. - opts[:query_token] = usable_token - end - opts[:disposition] = params[:disposition] if params[:disposition] - return redirect_to keep_web_url(params[:uuid], params[:file], opts) - end - - # No keep-web server available. Get the file data with arv-get, - # and serve it through Rails. - - file_name = params[:file].andand.sub(/^(\.\/|\/|)/, './') - if file_name.nil? or not coll.manifest.has_file?(file_name) - return render_not_found - end - - opts = params.merge(arvados_api_token: usable_token) - - # Handle Range requests. Currently we support only 'bytes=0-....' - if request.headers.include? 'HTTP_RANGE' - if m = /^bytes=0-(\d+)/.match(request.headers['HTTP_RANGE']) - opts[:maxbytes] = m[1] - size = params[:size] || '*' - self.response.status = 206 - self.response.headers['Content-Range'] = "bytes 0-#{m[1]}/#{size}" - end - end - - ext = File.extname(params[:file]) - self.response.headers['Content-Type'] = - Rack::Mime::MIME_TYPES[ext] || 'application/octet-stream' - if params[:size] - size = params[:size].to_i - if opts[:maxbytes] - size = [size, opts[:maxbytes].to_i].min - end - self.response.headers['Content-Length'] = size.to_s - end - self.response.headers['Content-Disposition'] = params[:disposition] if params[:disposition] - begin - file_enumerator(opts).each do |bytes| - response.stream.write bytes - end - ensure - response.stream.close + opts = {} + if usable_token == params[:reader_token] + opts[:path_token] = usable_token + elsif usable_token == Rails.configuration.Users.AnonymousUserToken + # Don't pass a token at all + else + # We pass the current user's real token only if it's necessary + # to read the collection. + opts[:query_token] = usable_token end + opts[:disposition] = params[:disposition] if params[:disposition] + return redirect_to keep_web_url(params[:uuid], params[:file], opts) end def sharing_scopes @@ -284,11 +235,7 @@ class CollectionsController < ApplicationController def download_link token = @search_sharing.first.api_token - if Rails.configuration.keep_web_url || Rails.configuration.keep_web_download_url - keep_web_url(@object.uuid, nil, {path_token: token}) - else - collections_url + "/download/#{@object.uuid}/#{token}/" - end + keep_web_url(@object.uuid, nil, {path_token: token}) end def share @@ -319,7 +266,7 @@ class CollectionsController < ApplicationController end def update - updated_attr = params[:collection].each.select {|a| a[0].andand.start_with? 'rename-file-path:'} + updated_attr = params[:collection].to_unsafe_hash.each.select {|a| a[0].andand.start_with? 'rename-file-path:'} if updated_attr.size > 0 # Is it file rename? @@ -440,43 +387,4 @@ class CollectionsController < ApplicationController uri.to_s end - - # Note: several controller and integration tests rely on stubbing - # file_enumerator to return fake file content. - def file_enumerator opts - FileStreamer.new opts - end - - class FileStreamer - include ArvadosApiClientHelper - def initialize(opts={}) - @opts = opts - end - def each - return unless @opts[:uuid] && @opts[:file] - - env = Hash[ENV].dup - - require 'uri' - u = URI.parse(arvados_api_client.arvados_v1_base) - env['ARVADOS_API_HOST'] = "#{u.host}:#{u.port}" - env['ARVADOS_API_TOKEN'] = @opts[:arvados_api_token] - env['ARVADOS_API_HOST_INSECURE'] = "true" if Rails.configuration.arvados_insecure_https - - bytesleft = @opts[:maxbytes].andand.to_i || 2**16 - io = IO.popen([env, 'arv-get', "#{@opts[:uuid]}/#{@opts[:file]}"], 'rb') - while bytesleft > 0 && (buf = io.read([bytesleft, 2**16].min)) != nil - # shrink the bytesleft count, if we were given a maximum byte - # count to read - if @opts.include? :maxbytes - bytesleft = bytesleft - buf.length - end - yield buf - end - io.close - # "If ios is opened by IO.popen, close sets $?." - # http://www.ruby-doc.org/core-2.1.3/IO.html#method-i-close - Rails.logger.warn("#{@opts[:uuid]}/#{@opts[:file]}: #{$?}") if $? != 0 - end - end end