richard
/
wiki
mirror of https://github.com/Requarks/wiki.git
1
0
Fork 0
Code Issues Projects Releases Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
1980 Commits
3 Branches
119 Tags
73 MiB
Tree: 97dd0637e9
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '97dd0637e9'
${ noResults }
wiki/server/controllers/upload.js

107 lines
2.8 KiB
Raw Normal View History

feat: image upload + list root assets (wip)
5 years ago
feat: uploads config + security admin page
4 years ago
feat: image upload + list root assets (wip)
5 years ago
feat: image upload / display
5 years ago
feat: image upload + list root assets (wip)
5 years ago
feat: image upload / display
5 years ago
feat: image upload + list root assets (wip)
5 years ago
feat: image upload / display
5 years ago
fix: replace spaces in upload filenames
5 years ago
fix: disallow # char in file uploads (#3770)
3 years ago
fix: replace spaces in upload filenames
5 years ago
feat: image upload / display
5 years ago
fix: upload hierarchy error
5 years ago
feat: image upload / display
5 years ago
feat: image upload + list root assets (wip)
5 years ago
feat: image upload / display
5 years ago
feat: image upload + list root assets (wip)
5 years ago
feat: import assets from disk module
5 years ago
feat: image upload / display
5 years ago
fix: upload file hash order
5 years ago
feat: asset add/rename/remove + dump action for git and disk modules
5 years ago
feat: image upload + list root assets (wip)
5 years ago
  1. const express = require('express')
  2. const router = express.Router()
  3. const _ = require('lodash')
  4. const multer = require('multer')
  5. const path = require('path')
  6. const sanitize = require('sanitize-filename')
  8. /* global WIKI */
  10. /**
  11. * Upload files
  12. */
  13. router.post('/u', (req, res, next) => {
  14. multer({
  15. dest: path.resolve(WIKI.ROOTPATH, WIKI.config.dataPath, 'uploads'),
  16. limits: {
  17. fileSize: WIKI.config.uploads.maxFileSize,
  18. files: WIKI.config.uploads.maxFiles
  19. }
  20. }).array('mediaUpload')(req, res, next)
  21. }, async (req, res, next) => {
  22. if (!_.some(req.user.permissions, pm => _.includes(['write:assets', 'manage:system'], pm))) {
  23. return res.status(403).json({
  24. succeeded: false,
  25. message: 'You are not authorized to upload files.'
  26. })
  27. } else if (req.files.length < 1) {
  28. return res.status(400).json({
  29. succeeded: false,
  30. message: 'Missing upload payload.'
  31. })
  32. } else if (req.files.length > 1) {
  33. return res.status(400).json({
  34. succeeded: false,
  35. message: 'You cannot upload multiple files within the same request.'
  36. })
  37. }
  38. const fileMeta = _.get(req, 'files[0]', false)
  39. if (!fileMeta) {
  40. return res.status(500).json({
  41. succeeded: false,
  42. message: 'Missing upload file metadata.'
  43. })
  44. }
  46. // Get folder Id
  47. let folderId = null
  48. try {
  49. const folderRaw = _.get(req, 'body.mediaUpload', false)
  50. if (folderRaw) {
  51. folderId = _.get(JSON.parse(folderRaw), 'folderId', null)
  52. if (folderId === 0) {
  53. folderId = null
  54. }
  55. } else {
  56. throw new Error('Missing File Metadata')
  57. }
  58. } catch (err) {
  59. return res.status(400).json({
  60. succeeded: false,
  61. message: 'Missing upload folder metadata.'
  62. })
  63. }
  65. // Build folder hierarchy
  66. let hierarchy = []
  67. if (folderId) {
  68. try {
  69. hierarchy = await WIKI.models.assetFolders.getHierarchy(folderId)
  70. } catch (err) {
  71. return res.status(400).json({
  72. succeeded: false,
  73. message: 'Failed to fetch folder hierarchy.'
  74. })
  75. }
  76. }
  78. // Sanitize filename
  79. fileMeta.originalname = sanitize(fileMeta.originalname.toLowerCase().replace(/[\s,;#]+/g, '_'))
  81. // Check if user can upload at path
  82. const assetPath = (folderId) ? hierarchy.map(h => h.slug).join('/') + `/${fileMeta.originalname}` : fileMeta.originalname
  83. if (!WIKI.auth.checkAccess(req.user, ['write:assets'], { path: assetPath })) {
  84. return res.status(403).json({
  85. succeeded: false,
  86. message: 'You are not authorized to upload files to this folder.'
  87. })
  88. }
  90. // Process upload file
  91. await WIKI.models.assets.upload({
  92. ...fileMeta,
  93. mode: 'upload',
  94. folderId: folderId,
  95. assetPath,
  96. user: req.user
  97. })
  98. res.send('ok')
  99. })
  101. router.get('/u', async (req, res, next) => {
  102. res.json({
  103. ok: true
  104. })
  105. })
  107. module.exports = router