mirror of
https://github.com/eigent-ai/eigent.git
synced 2026-05-24 13:43:45 +00:00
291 lines
9.4 KiB
Python
291 lines
9.4 KiB
Python
# ========= Copyright 2025-2026 @ Eigent.ai All Rights Reserved. =========
|
|
# Licensed under the Apache License, Version 2.0 (the "License");
|
|
# you may not use this file except in compliance with the License.
|
|
# You may obtain a copy of the License at
|
|
#
|
|
# http://www.apache.org/licenses/LICENSE-2.0
|
|
#
|
|
# Unless required by applicable law or agreed to in writing, software
|
|
# distributed under the License is distributed on an "AS IS" BASIS,
|
|
# WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or implied.
|
|
# See the License for the specific language governing permissions and
|
|
# limitations under the License.
|
|
# ========= Copyright 2025-2026 @ Eigent.ai All Rights Reserved. =========
|
|
|
|
import json
|
|
import logging
|
|
import mimetypes
|
|
import time
|
|
from pathlib import Path
|
|
from typing import Annotated
|
|
from urllib.parse import quote
|
|
|
|
from fastapi import APIRouter, File, Header, HTTPException, Query, UploadFile
|
|
from fastapi.responses import FileResponse
|
|
|
|
from app.utils.file_utils import list_files, resolve_under_base
|
|
from app.utils.server.session import (
|
|
SessionIdError,
|
|
get_session_uploads_dir,
|
|
validate_session_id,
|
|
)
|
|
from app.utils.workspace_paths import get_workspace_root
|
|
from app.utils.workspace_resolver import get_workspace_resolver
|
|
|
|
router = APIRouter()
|
|
file_logger = logging.getLogger("file_controller")
|
|
|
|
# Config
|
|
MAX_FILE_SIZE_BYTES = 50 * 1024 * 1024 # 50MB
|
|
MAX_FILES_PER_SESSION = 20
|
|
|
|
|
|
def _validate_session_id(session_id: str) -> str:
|
|
return validate_session_id(session_id)
|
|
|
|
|
|
def _get_session_uploads_dir(session_id: str) -> Path:
|
|
return get_session_uploads_dir(session_id, get_workspace_root())
|
|
|
|
|
|
def _count_session_uploads(session_id: str) -> int:
|
|
uploads_dir = _get_session_uploads_dir(session_id)
|
|
if not uploads_dir.exists():
|
|
return 0
|
|
return sum(
|
|
1 for p in uploads_dir.iterdir() if not p.name.endswith(".meta.json")
|
|
)
|
|
|
|
|
|
@router.post("/files")
|
|
async def upload_file(
|
|
file: Annotated[UploadFile, File()],
|
|
x_session_id: Annotated[str | None, Header(alias="X-Session-ID")] = None,
|
|
) -> dict:
|
|
"""
|
|
Upload file. Requires X-Session-ID header.
|
|
Returns file_id for message attachments reference.
|
|
"""
|
|
if not x_session_id:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="X-Session-ID header is required for file upload",
|
|
)
|
|
try:
|
|
validated_session_id = _validate_session_id(x_session_id)
|
|
except SessionIdError as exc:
|
|
raise HTTPException(
|
|
status_code=400, detail="Invalid X-Session-ID"
|
|
) from exc
|
|
|
|
# Check session file count limit
|
|
count = _count_session_uploads(validated_session_id)
|
|
if count >= MAX_FILES_PER_SESSION:
|
|
raise HTTPException(
|
|
status_code=429,
|
|
detail=f"Maximum {MAX_FILES_PER_SESSION} files per session",
|
|
)
|
|
|
|
# Read and validate size
|
|
content = await file.read()
|
|
if len(content) > MAX_FILE_SIZE_BYTES:
|
|
raise HTTPException(
|
|
status_code=413,
|
|
detail=f"File size exceeds {MAX_FILE_SIZE_BYTES // (1024 * 1024)}MB limit",
|
|
)
|
|
|
|
# Generate safe filename
|
|
timestamp = int(time.time() * 1000)
|
|
safe_name = "".join(
|
|
c if c.isalnum() or c in "._-" else "_"
|
|
for c in (file.filename or "file")
|
|
)
|
|
stored_name = f"{safe_name}_{timestamp}"
|
|
|
|
# Write to disk
|
|
uploads_dir = _get_session_uploads_dir(validated_session_id)
|
|
uploads_dir.mkdir(parents=True, exist_ok=True)
|
|
target_path = uploads_dir / stored_name
|
|
target_path.write_bytes(content)
|
|
meta_path = uploads_dir / f"{stored_name}.meta.json"
|
|
try:
|
|
meta_path.write_text(
|
|
json.dumps(
|
|
{
|
|
"original_filename": file.filename or stored_name,
|
|
"size": len(content),
|
|
"uploaded_at": int(time.time()),
|
|
},
|
|
ensure_ascii=False,
|
|
),
|
|
encoding="utf-8",
|
|
)
|
|
except Exception:
|
|
file_logger.warning("Failed to write upload sidecar: %s", meta_path)
|
|
|
|
file_id = f"upload://{stored_name}"
|
|
file_logger.info(
|
|
f"File uploaded: session={validated_session_id}, file_id={file_id}, size={len(content)}"
|
|
)
|
|
|
|
return {
|
|
"file_id": file_id,
|
|
"filename": file.filename or "file",
|
|
"size": len(content),
|
|
}
|
|
|
|
|
|
def _normalize_relative_path(path: str) -> str:
|
|
"""Normalize relative path to URL-safe POSIX style."""
|
|
return path.replace("\\", "/")
|
|
|
|
|
|
@router.get("/files")
|
|
async def list_project_files(
|
|
project_id: str = Query(..., description="Project ID"),
|
|
email: str = Query(..., description="User email"),
|
|
task_id: str | None = Query(
|
|
None, description="Optional task ID to scope listing"
|
|
),
|
|
) -> list[dict]:
|
|
"""
|
|
List files in project working directory (Brain storage).
|
|
Used by Web mode when ipcRenderer is unavailable.
|
|
Returns [{filename, url}] where url can be used to fetch file content.
|
|
"""
|
|
if not project_id or not email:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="project_id and email are required",
|
|
)
|
|
resolver = get_workspace_resolver()
|
|
base = (
|
|
resolver.task_output_root(project_id, task_id, email)
|
|
if task_id
|
|
else resolver.project_root(project_id, email)
|
|
)
|
|
list_dir = str(base)
|
|
if not base.exists():
|
|
file_logger.debug(
|
|
"list_project_files: path does not exist: %s",
|
|
list_dir,
|
|
)
|
|
return []
|
|
base_path = str(base.resolve())
|
|
try:
|
|
paths = list_files(list_dir, base=base_path, max_entries=500)
|
|
except Exception as e:
|
|
file_logger.warning("list_project_files failed: %s", e)
|
|
return []
|
|
result: list[dict] = []
|
|
for abs_path in paths:
|
|
try:
|
|
rel = _normalize_relative_path(
|
|
Path(abs_path).relative_to(base_path).as_posix()
|
|
)
|
|
# URL-encode the relative path for stream endpoint
|
|
path_param = quote(rel, safe="")
|
|
stream_url = (
|
|
f"/files/stream?path={path_param}&project_id={quote(project_id)}"
|
|
f"&email={quote(email)}"
|
|
)
|
|
if task_id:
|
|
stream_url = f"{stream_url}&task_id={quote(task_id)}"
|
|
result.append(
|
|
{
|
|
"filename": Path(abs_path).name,
|
|
"url": stream_url,
|
|
"relativePath": rel,
|
|
}
|
|
)
|
|
except (ValueError, OSError):
|
|
continue
|
|
return result
|
|
|
|
|
|
@router.get("/files/stream")
|
|
async def stream_file(
|
|
path: str = Query(..., description="Relative path from project root"),
|
|
project_id: str = Query(..., description="Project ID"),
|
|
email: str = Query(..., description="User email"),
|
|
task_id: str | None = Query(None, description="Optional task ID"),
|
|
):
|
|
"""
|
|
Stream file content. Path must be relative to project root.
|
|
Used by Web mode to fetch file content for display.
|
|
"""
|
|
if not path or not project_id or not email:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="path, project_id and email are required",
|
|
)
|
|
resolver = get_workspace_resolver()
|
|
base = (
|
|
resolver.task_output_root(project_id, task_id, email)
|
|
if task_id
|
|
else resolver.project_root(project_id, email)
|
|
)
|
|
# Resolve path and ensure it stays under project root (security)
|
|
try:
|
|
resolved = resolve_under_base(path, str(base.resolve()))
|
|
except Exception as e:
|
|
file_logger.warning("stream_file path validation failed: %s", e)
|
|
raise HTTPException(status_code=400, detail="Invalid path") from e
|
|
p = Path(resolved)
|
|
if not p.is_file():
|
|
raise HTTPException(status_code=404, detail="File not found")
|
|
media_type, _ = mimetypes.guess_type(str(p))
|
|
if not media_type:
|
|
media_type = "application/octet-stream"
|
|
# content_disposition_type=inline: display in iframe instead of triggering download
|
|
return FileResponse(
|
|
path=str(p),
|
|
filename=p.name,
|
|
media_type=media_type,
|
|
content_disposition_type="inline",
|
|
)
|
|
|
|
|
|
@router.get("/files/preview/{email}/{project_id}/{file_path:path}")
|
|
async def preview_file(
|
|
email: str,
|
|
project_id: str,
|
|
file_path: str,
|
|
task_id: str | None = Query(None, description="Optional task ID"),
|
|
):
|
|
"""
|
|
Preview file content with a path-based URL so relative references inside
|
|
HTML/CSS/JS resolve against the project directory structure.
|
|
"""
|
|
if not file_path or not project_id or not email:
|
|
raise HTTPException(
|
|
status_code=400,
|
|
detail="file_path, project_id and email are required",
|
|
)
|
|
|
|
resolver = get_workspace_resolver()
|
|
base = (
|
|
resolver.task_output_root(project_id, task_id, email)
|
|
if task_id
|
|
else resolver.project_root(project_id, email)
|
|
)
|
|
try:
|
|
resolved = resolve_under_base(file_path, str(base.resolve()))
|
|
except Exception as e:
|
|
file_logger.warning("preview_file path validation failed: %s", e)
|
|
raise HTTPException(status_code=400, detail="Invalid path") from e
|
|
|
|
p = Path(resolved)
|
|
if not p.is_file():
|
|
raise HTTPException(status_code=404, detail="File not found")
|
|
|
|
media_type, _ = mimetypes.guess_type(str(p))
|
|
if not media_type:
|
|
media_type = "application/octet-stream"
|
|
|
|
return FileResponse(
|
|
path=str(p),
|
|
filename=p.name,
|
|
media_type=media_type,
|
|
content_disposition_type="inline",
|
|
)
|