filename regex
This commit is contained in:
parent
ea991b0a7a
commit
253bd36232
1 changed files with 40 additions and 44 deletions
84
app.py
84
app.py
|
@ -1,59 +1,55 @@
|
||||||
import os
|
import os
|
||||||
|
import re
|
||||||
import uuid
|
import uuid
|
||||||
from flask import Flask, request, jsonify, send_from_directory, render_template
|
from flask import Flask, request, jsonify, send_from_directory
|
||||||
|
|
||||||
app = Flask(__name__)
|
app = Flask(__name__)
|
||||||
|
app.config['UPLOAD_FOLDER'] = os.environ.get('UPLOAD_FOLDER', './uploads')
|
||||||
|
app.config['MAX_CONTENT_LENGTH'] = 5 * 1024 * 1024 # 5MB
|
||||||
|
|
||||||
UPLOAD_DIRECTORY = os.environ.get("UPLOAD_DIRECTORY", "/uploads")
|
VALID_FILENAME_REGEX = r'^[a-zA-Z0-9\-_\.]+$'
|
||||||
if not os.path.exists(UPLOAD_DIRECTORY):
|
|
||||||
os.makedirs(UPLOAD_DIRECTORY)
|
|
||||||
|
|
||||||
UPLOAD_TOKEN = os.environ.get("UPLOAD_TOKEN")
|
def is_valid_filename(filename):
|
||||||
|
return bool(re.match(VALID_FILENAME_REGEX, filename))
|
||||||
|
|
||||||
def allowed_file(filename):
|
@app.route('/upload', methods=['POST'])
|
||||||
return True
|
def upload_file():
|
||||||
|
if 'file' not in request.files:
|
||||||
|
return jsonify({'error': 'No file part in the request'}), 400
|
||||||
|
|
||||||
@app.route("/")
|
file = request.files['file']
|
||||||
def index():
|
if file.filename == '':
|
||||||
|
return jsonify({'error': 'No file selected for upload'}), 400
|
||||||
|
|
||||||
|
if not is_valid_filename(file.filename):
|
||||||
|
return jsonify({'error': 'Invalid filename. Only alphanumeric characters, hyphens, underscores, and periods are allowed.'}), 400
|
||||||
|
|
||||||
|
filename = file.filename
|
||||||
|
file.save(os.path.join(app.config['UPLOAD_FOLDER'], filename))
|
||||||
|
return jsonify({'success': 'File {} successfully uploaded'.format(filename)})
|
||||||
|
|
||||||
|
@app.route('/download/<filename>', methods=['GET'])
|
||||||
|
def download_file(filename):
|
||||||
|
try:
|
||||||
|
return send_from_directory(app.config['UPLOAD_FOLDER'], filename)
|
||||||
|
except FileNotFoundError:
|
||||||
|
return jsonify({'error': 'File not found'}), 404
|
||||||
|
|
||||||
|
@app.route('/list', methods=['GET'])
|
||||||
|
def list_files():
|
||||||
files = []
|
files = []
|
||||||
for filename in os.listdir(UPLOAD_DIRECTORY):
|
total_size = 0
|
||||||
path = os.path.join(UPLOAD_DIRECTORY, filename)
|
for filename in os.listdir(app.config['UPLOAD_FOLDER']):
|
||||||
|
path = os.path.join(app.config['UPLOAD_FOLDER'], filename)
|
||||||
if os.path.isfile(path):
|
if os.path.isfile(path):
|
||||||
files.append({"filename": filename, "size": os.path.getsize(path)})
|
size = os.path.getsize(path)
|
||||||
total_size = sum(f["size"] for f in files)
|
files.append({'filename': filename, 'size': size})
|
||||||
return render_template("index.html", files=files, total_size=total_size, count=len(files))
|
total_size += size
|
||||||
|
return jsonify({'files': files, 'count': len(files), 'total_size': total_size})
|
||||||
|
|
||||||
@app.route("/upload", methods=["POST"])
|
if __name__ == '__main__':
|
||||||
def upload():
|
app.run(debug=True, host='0.0.0.0', port=int(os.environ.get('PORT', 5000)))
|
||||||
if "file" not in request.files:
|
|
||||||
return "No file found", 400
|
|
||||||
file = request.files["file"]
|
|
||||||
if file.filename == "":
|
|
||||||
return "No file selected", 400
|
|
||||||
if not allowed_file(file.filename):
|
|
||||||
return "Invalid file type", 400
|
|
||||||
if UPLOAD_TOKEN and request.headers.get("Authorization") != f"Bearer {UPLOAD_TOKEN}":
|
|
||||||
return "Unauthorized", 401
|
|
||||||
filename = str(uuid.uuid4())
|
|
||||||
file.save(os.path.join(UPLOAD_DIRECTORY, filename))
|
|
||||||
return jsonify({"filename": filename})
|
|
||||||
|
|
||||||
@app.route("/download/<filename>", methods=["GET"])
|
|
||||||
def download(filename):
|
|
||||||
return send_from_directory(UPLOAD_DIRECTORY, filename)
|
|
||||||
|
|
||||||
@app.route("/metrics")
|
|
||||||
def metrics():
|
|
||||||
files = []
|
|
||||||
for filename in os.listdir(UPLOAD_DIRECTORY):
|
|
||||||
path = os.path.join(UPLOAD_DIRECTORY, filename)
|
|
||||||
if os.path.isfile(path):
|
|
||||||
files.append({"filename": filename, "size": os.path.getsize(path)})
|
|
||||||
total_size = sum(f["size"] for f in files)
|
|
||||||
return jsonify({"count": len(files), "total_size": total_size, "files": files})
|
|
||||||
|
|
||||||
if __name__ == "__main__":
|
|
||||||
app.run(host="0.0.0.0", port=5040, debug=True)
|
|
||||||
|
|
||||||
|
|
||||||
|
|
||||||
|
|
Reference in a new issue