Files: FileDao: added secure key to pre signed uri

2023-04-27 19:20:46 +03:00 · 2023-04-27 19:20:46 +03:00 · c24fc319c9
commit c24fc319c9
parent 5c0027f344
1 changed files with 15 additions and 6 deletions
--- a/products/ASC.Files/Core/Core/Dao/TeamlabDao/FileDao.cs
+++ b/products/ASC.Files/Core/Core/Dao/TeamlabDao/FileDao.cs
@ -46,6 +46,7 @@ internal class FileDao : AbstractDao, IFileDao<int>
    private readonly IMapper _mapper;
    private readonly ThumbnailSettings _thumbnailSettings;
    private readonly IQuotaService _quotaService;
+    private readonly EmailValidationKeyProvider _emailValidationKeyProvider;

    public FileDao(
        ILogger<FileDao> logger,
@ -73,7 +74,7 @@ internal class FileDao : AbstractDao, IFileDao<int>
        Settings settings,
        IMapper mapper,
        ThumbnailSettings thumbnailSettings,
-        IQuotaService quotaService)
+        IQuotaService quotaService, EmailValidationKeyProvider emailValidationKeyProvider)
        : base(
              dbContextManager,
              userManager,
@ -102,6 +103,7 @@ internal class FileDao : AbstractDao, IFileDao<int>
        _mapper = mapper;
        _thumbnailSettings = thumbnailSettings;
        _quotaService = quotaService;
+        _emailValidationKeyProvider = emailValidationKeyProvider;
    }

    public Task InvalidateCacheAsync(int fileId)
@ -371,11 +373,18 @@ internal class FileDao : AbstractDao, IFileDao<int>

    public Task<Uri> GetPreSignedUriAsync(File<int> file, TimeSpan expires)
    {
-        return _globalStore.GetStore().GetPreSignedUriAsync(string.Empty, GetUniqFilePath(file), expires,
-                                                 new List<string>
-                                                     {
-                                                             string.Concat("Content-Disposition:", ContentDispositionUtil.GetHeaderValue(file.Title, withoutBase: true))
-                                                     });
+        var path = GetUniqFilePath(file);
+        var headers = new List<string>
+        {
+            string.Concat("Content-Disposition:", ContentDispositionUtil.GetHeaderValue(file.Title, withoutBase: true))
+        };
+
+        if (!_authContext.IsAuthenticated)
+        {
+            headers.Add(SecureHelper.GenerateSecureKeyHeader(path, _emailValidationKeyProvider));
+        }
+
+        return _globalStore.GetStore().GetPreSignedUriAsync(string.Empty, path, expires, headers);
    }

    public Task<bool> IsSupportedPreSignedUriAsync(File<int> file)