Merge pull request #678 from OpenC3/browse_volumes

Browse volumes

Author: jmthomas

.env

@@ -13,14 +13,19 @@ OPENC3_NAMESPACE=openc3inc
 OPENC3_DEPENDENCY_REGISTRY=docker.io
 OPENC3_ENTERPRISE_REGISTRY=ghcr.io
 OPENC3_ENTERPRISE_NAMESPACE=openc3
-# Bucket configuration
+# Bucket & Volume configuration
 OPENC3_LOGS_BUCKET=logs
 OPENC3_TOOLS_BUCKET=tools
 OPENC3_CONFIG_BUCKET=config
-# Add additional buckets using the same convention:
+OPENC3_GEMS_VOLUME=/gems
+OPENC3_PLUGIN_DEFAULT_VOLUME=/plugins/DEFAULT
+# Add additional buckets and volumes using the same convention:
 # OPENC3_TEST_BUCKET=test_bucket
 # This would add a new bucket called "test". Note the middle section OPENC3_(TEST)_BUCKET
 # is the displayed name of the bucket and the value is the actual bucket name in MINIO, S3, GCP, etc.
+# OPENC3_TEST_VOLUME=/path/to/somewhere
+# This would add a new volume called "test". Note the middle section OPENC3_(TEST)_VOLUME
+# is the displayed name of the volume and the value is the actual root path of the volume.
 
 # Redis configuration
 OPENC3_REDIS_HOSTNAME=openc3-redis

openc3-cosmos-cmd-tlm-api/app/controllers/storage_controller.rb

@@ -1,4 +1,4 @@
-# encoding: ascii-8bit
+# encoding: utf-8
 
 # Copyright 2022 Ball Aerospace & Technologies Corp.
 # All Rights Reserved.
@@ -34,67 +34,169 @@ def buckets
     render :json => buckets, :status => 200
   end
 
+  def volumes
+    # ENV.map returns a big array of mostly nils which is why we compact
+    # The non-nil are MatchData objects due to the regex match
+    matches = ENV.map { |key, value| key.match(/^OPENC3_(.+)_VOLUME$/) }.compact
+    # MatchData [0] is the full text, [1] is the captured group
+    # downcase to make it look nicer, BucketExplorer.vue calls toUpperCase on the API requests
+    volumes = matches.map { |match| match[1].downcase }.sort
+    # Add a slash prefix to identify volumes separately from buckets
+    volumes.map! {|volume| "/#{volume}" }
+    render :json => volumes, :status => 200
+  end
+
   def files
     return unless authorization('system')
-    bucket = OpenC3::Bucket.getClient()
-    bucket_name = ENV[params[:bucket]] # Get the actual bucket name
-    path = params[:path]
-    path = '/' if path.nil? || path.empty?
-    # if user wants metadata returned
-    metadata = params[:metadata].present? ? true : false
-    results = bucket.list_files(bucket: bucket_name, path: path, metadata: metadata)
+    root = ENV[params[:root]] # Get the actual bucket / volume name
+    raise "Unknown bucket / volume #{params[:root]}" unless root
+    results = []
+    if params[:root].include?('_BUCKET')
+      bucket = OpenC3::Bucket.getClient()
+      path = sanitize_path(params[:path])
+      path = '/' if path.empty?
+      # if user wants metadata returned
+      metadata = params[:metadata].present? ? true : false
+      results = bucket.list_files(bucket: root, path: path, metadata: metadata)
+    elsif params[:root].include?('_VOLUME')
+      dirs = []
+      files = []
+      path = sanitize_path(params[:path])
+      list = Dir["/#{root}/#{path}/*"] # Ok for path to be blank
+      list.each do |file|
+        if File.directory?(file)
+          dirs << File.basename(file)
+        else
+          stat = File.stat(file)
+          files << { name: File.basename(file), size: stat.size, modified: stat.mtime }
+        end
+      end
+      results << dirs
+      results << files
+    else
+      raise "Unknown root #{params[:root]}"
+    end
     render :json => results, :status => 200
   rescue OpenC3::Bucket::NotFound => error
     render :json => { :status => 'error', :message => error.message }, :status => 404
+  rescue Exception => e
+    OpenC3::Logger.error("File listing failed: #{e.message}", user: user_info(request.headers['HTTP_AUTHORIZATION']))
+    render :json => { status: 'error', message: e.message }, status: 500
+  end
+
+  def download_file
+    return unless authorization('system')
+    volume = ENV[params[:volume]] # Get the actual volume name
+    raise "Unknown volume #{params[:volume]}" unless volume
+    filename = "/#{volume}/#{params[:object_id]}"
+    filename = sanitize_path(filename)
+    file = File.read(filename, mode: 'rb')
+    render :json => { filename: params[:object_id], contents: Base64.encode64(file) }
+  rescue Exception => e
+    OpenC3::Logger.error("Download failed: #{e.message}", user: user_info(request.headers['HTTP_AUTHORIZATION']))
+    render :json => { status: 'error', message: e.message }, status: 500
   end
 
   def get_download_presigned_request
     return unless authorization('system')
     bucket = OpenC3::Bucket.getClient()
     bucket_name = ENV[params[:bucket]] # Get the actual bucket name
-    bucket.check_object(bucket: bucket_name, key: params[:object_id])
+    raise "Unknown bucket #{params[:bucket]}" unless bucket_name
+    path = sanitize_path(params[:object_id])
+    bucket.check_object(bucket: bucket_name, key: path)
     result = bucket.presigned_request(bucket: bucket_name,
-                                      key: params[:object_id],
+                                      key: path,
                                       method: :get_object,
                                       internal: params[:internal])
     render :json => result, :status => 201
+  rescue Exception => e
+    OpenC3::Logger.error("Download request failed: #{e.message}", user: user_info(request.headers['HTTP_AUTHORIZATION']))
+    render :json => { status: 'error', message: e.message }, status: 500
   end
 
   def get_upload_presigned_request
     return unless authorization('system_set')
     bucket_name = ENV[params[:bucket]] # Get the actual bucket name
-    key_split = params[:object_id].to_s.split('/')
+    raise "Unknown bucket #{params[:bucket]}" unless bucket_name
+    path = sanitize_path(params[:object_id])
+    key_split = path.split('/')
     # Anywhere other than config/SCOPE/targets_modified requires admin
     if !(params[:bucket] == 'OPENC3_CONFIG_BUCKET' && key_split[1] == 'targets_modified')
       return unless authorization('admin')
     end
 
     bucket = OpenC3::Bucket.getClient()
     result = bucket.presigned_request(bucket: bucket_name,
-                                      key: params[:object_id],
+                                      key: path,
                                       method: :put_object,
                                       internal: params[:internal])
-    OpenC3::Logger.info("S3 upload presigned request generated: #{bucket_name}/#{params[:object_id]}",
+    OpenC3::Logger.info("S3 upload presigned request generated: #{bucket_name}/#{path}",
         scope: params[:scope], user: user_info(request.headers['HTTP_AUTHORIZATION']))
     render :json => result, :status => 201
+  rescue Exception => e
+    OpenC3::Logger.error("Upload request failed: #{e.message}", user: user_info(request.headers['HTTP_AUTHORIZATION']))
+    render :json => { status: 'error', message: e.message }, status: 500
   end
 
   def delete
     return unless authorization('system_set')
+    if params[:bucket].presence
+      deleteBucketItem(params)
+    elsif params[:volume].presence
+      deleteVolumeItem(params)
+    else
+      raise "Must pass bucket or volume parameter!"
+    end
+    head :ok
+  rescue Exception => e
+    OpenC3::Logger.error("Delete failed: #{e.message}", user: user_info(request.headers['HTTP_AUTHORIZATION']))
+    render :json => { status: 'error', message: e.message }, status: 500
+  end
+
+  private
+
+  def sanitize_path(path)
+    return '' if path.nil?
+    # path is passed as a parameter thus we have to sanitize it or the code scanner detects:
+    # "Uncontrolled data used in path expression"
+    # This method is taken directly from the Rails source:
+    #   https://api.rubyonrails.org/v5.2/classes/ActiveStorage/Filename.html#method-i-sanitized
+    # NOTE: I removed the '/' character because we have to allow this in order to traverse the path
+    sanitized = path.encode(Encoding::UTF_8, invalid: :replace, undef: :replace, replace: "�").strip.tr("\u{202E}%$|:;\t\r\n\\", "-").gsub('..', '-')
+    if sanitized != path
+      raise "Invalid path: #{path}"
+    end
+    sanitized
+  end
+
+  def deleteBucketItem(params)
     bucket_name = ENV[params[:bucket]] # Get the actual bucket name
-    key_split = params[:object_id].to_s.split('/')
+    raise "Unknown bucket #{params[:bucket]}" unless bucket_name
+    path = sanitize_path(params[:object_id])
+    key_split = path.split('/')
     # Anywhere other than config/SCOPE/targets_modified requires admin
     if !(params[:bucket] == 'OPENC3_CONFIG_BUCKET' && key_split[1] == 'targets_modified')
       return unless authorization('admin')
     end
 
     if ENV['OPENC3_LOCAL_MODE']
-      OpenC3::LocalMode.delete_local(params[:object_id])
+      OpenC3::LocalMode.delete_local(path)
     end
 
-    OpenC3::Bucket.getClient().delete_object(bucket: bucket_name, key: params[:object_id])
-    OpenC3::Logger.info("Deleted: #{bucket_name}/#{params[:object_id]}",
+    OpenC3::Bucket.getClient().delete_object(bucket: bucket_name, key: path)
+    OpenC3::Logger.info("Deleted: #{bucket_name}/#{path}",
+        scope: params[:scope], user: user_info(request.headers['HTTP_AUTHORIZATION']))
+  end
+
+  def deleteVolumeItem(params)
+    # Deleting requires admin
+    return unless authorization('admin')
+    volume = ENV[params[:volume]] # Get the actual volume name
+    raise "Unknown volume #{params[:volume]}" unless volume
+    filename = "/#{volume}/#{params[:object_id]}"
+    filename = sanitize_path(filename)
+    FileUtils.rm filename
+    OpenC3::Logger.info("Deleted: #{filename}",
         scope: params[:scope], user: user_info(request.headers['HTTP_AUTHORIZATION']))
-    head :ok
   end
 end

openc3-cosmos-cmd-tlm-api/config/routes.rb

@@ -149,7 +149,9 @@
     get '/autocomplete/data/:type', to: 'script_autocomplete#get_ace_autocomplete_data', type: /[^\/]+/
 
     get '/storage/buckets', to: 'storage#buckets'
-    get '/storage/files/:bucket/(*path)', to: 'storage#files'
+    get '/storage/volumes', to: 'storage#volumes'
+    get '/storage/files/:root/(*path)', to: 'storage#files'
+    get '/storage/download_file/:object_id', to: 'storage#download_file', object_id: /.*/
     get '/storage/download/:object_id', to: 'storage#get_download_presigned_request', object_id: /.*/
     get '/storage/upload/:object_id', to: 'storage#get_upload_presigned_request', object_id: /.*/
     delete '/storage/delete/:object_id', to: 'storage#delete', object_id: /.*/

openc3-cosmos-init/plugins/packages/openc3-cosmos-tool-bucketexplorer/src/router.js

@@ -26,7 +26,7 @@ export default new Router({
   base: process.env.BASE_URL,
   routes: [
     {
-      path: '/:path?',
+      path: '/:path*',
       name: 'Bucket Explorer',
       component: () => import('./tools/BucketExplorer/BucketExplorer.vue'),
     },