X-Git-Url: https://git.arvados.org/arvados.git/blobdiff_plain/5bcba288077488791daa43a15d5fd5fb0c6e653c..bf159738719badbbe1e08ee4f839027892912ab2:/apps/workbench/app/controllers/collections_controller.rb diff --git a/apps/workbench/app/controllers/collections_controller.rb b/apps/workbench/app/controllers/collections_controller.rb index f4aa0395f3..38b58a1650 100644 --- a/apps/workbench/app/controllers/collections_controller.rb +++ b/apps/workbench/app/controllers/collections_controller.rb @@ -1,8 +1,14 @@ require "arvados/keep" +require "uri" +require "cgi" class CollectionsController < ApplicationController include ActionController::Live + skip_around_filter :require_thread_api_token, if: proc { |ctrl| + Rails.configuration.anonymous_user_token and + 'show' == ctrl.action_name + } skip_around_filter(:require_thread_api_token, only: [:show_file, :show_file_links]) skip_before_filter(:find_object_by_uuid, @@ -115,16 +121,38 @@ class CollectionsController < ApplicationController # we ask the API server if the file actually exists. This serves two # purposes: it lets us return a useful status code for common errors, and # helps us figure out which token to provide to arv-get. + # The order of searched tokens is important: because the anonymous user + # token is passed along with every API request, we have to check it first. + # Otherwise, it's impossible to know whether any other request succeeded + # because of the reader token. coll = nil - tokens = [Thread.current[:arvados_api_token], params[:reader_token]].compact + tokens = [(Rails.configuration.anonymous_user_token || nil), + params[:reader_token], + Thread.current[:arvados_api_token]].compact usable_token = find_usable_token(tokens) do coll = Collection.find(params[:uuid]) end + if usable_token.nil? + # Response already rendered. + return + end + + if Rails.configuration.keep_web_url + opts = {} + if usable_token == params[:reader_token] + opts[:path_token] = usable_token + elsif usable_token == Rails.configuration.anonymous_user_token + # Don't pass a token at all + else + # We pass the current user's real token only if it's necessary + # to read the collection. + opts[:query_token] = usable_token + end + return redirect_to keep_web_url(params[:uuid], params[:file], opts) + end file_name = params[:file].andand.sub(/^(\.\/|\/|)/, './') - if usable_token.nil? - return # Response already rendered. - elsif file_name.nil? or not coll.manifest.has_file?(file_name) + if file_name.nil? or not coll.manifest.has_file?(file_name) return render_not_found end @@ -180,9 +208,19 @@ class CollectionsController < ApplicationController def show return super if !@object + + @logs = [] + + if params["tab_pane"] == "Provenance_graph" + @prov_svg = ProvenanceHelper::create_provenance_graph(@object.provenance, "provenance_svg", + {:request => request, + :direction => :bottom_up, + :combine_jobs => :script_only}) rescue nil + end + if current_user if Keep::Locator.parse params["uuid"] - @same_pdh = Collection.filter([["portable_data_hash", "=", @object.portable_data_hash]]) + @same_pdh = Collection.filter([["portable_data_hash", "=", @object.portable_data_hash]]).limit(20) if @same_pdh.results.size == 1 redirect_to collection_path(@same_pdh[0]["uuid"]) return @@ -190,6 +228,8 @@ class CollectionsController < ApplicationController owners = @same_pdh.map(&:owner_uuid).to_a.uniq preload_objects_for_dataclass Group, owners preload_objects_for_dataclass User, owners + uuids = @same_pdh.map(&:uuid).to_a.uniq + preload_links_for_objects uuids render 'hash_matches' return else @@ -208,6 +248,7 @@ class CollectionsController < ApplicationController .where(head_uuid: @object.uuid, link_class: 'permission', name: 'can_read').results @logs = Log.limit(RELATION_LIMIT).order("created_at DESC") + .select(%w(uuid event_type object_uuid event_at summary)) .where(object_uuid: @object.uuid).results @is_persistent = Link.limit(1) .where(head_uuid: @object.uuid, tail_uuid: current_user.uuid, @@ -215,12 +256,6 @@ class CollectionsController < ApplicationController .results.any? @search_sharing = search_scopes - if params["tab_pane"] == "Provenance_graph" - @prov_svg = ProvenanceHelper::create_provenance_graph(@object.provenance, "provenance_svg", - {:request => request, - :direction => :bottom_up, - :combine_jobs => :script_only}) rescue nil - end if params["tab_pane"] == "Used_by" @used_by_svg = ProvenanceHelper::create_provenance_graph(@object.used_by, "used_by_svg", {:request => request, @@ -288,7 +323,24 @@ class CollectionsController < ApplicationController return nil end - def file_enumerator(opts) + def keep_web_url(uuid_or_pdh, file, opts) + fmt = {uuid_or_pdh: uuid_or_pdh.sub('+', '-')} + uri = URI.parse(Rails.configuration.keep_web_url % fmt) + uri.path += '/' unless uri.path.end_with? '/' + if opts[:path_token] + uri.path += 't=' + opts[:path_token] + '/' + end + uri.path += '_/' + uri.path += CGI::escape(file) + if opts[:query_token] + uri.query = 'api_token=' + CGI::escape(opts[:query_token]) + end + uri.to_s + end + + # Note: several controller and integration tests rely on stubbing + # file_enumerator to return fake file content. + def file_enumerator opts FileStreamer.new opts end