photoprism/internal/api/upload.go

package api

import (
	"net/http"
	"os"
	"path"
	"path/filepath"
	"time"

	"github.com/photoprism/photoprism/internal/acl"
	"github.com/photoprism/photoprism/internal/event"
	"github.com/photoprism/photoprism/internal/i18n"
	"github.com/photoprism/photoprism/internal/service"
	"github.com/photoprism/photoprism/pkg/txt"

	"github.com/gin-gonic/gin"
)

// POST /api/v1/upload/:path
func Upload(router *gin.RouterGroup) {
	router.POST("/upload/:path", func(c *gin.Context) {
		conf := service.Config()
		if conf.ReadOnly() || !conf.Settings().Features.Upload {
			Abort(c, http.StatusForbidden, i18n.ErrReadOnly)
			return
		}

		s := Auth(SessionID(c), acl.ResourcePhotos, acl.ActionUpload)

		if s.Invalid() {
			AbortUnauthorized(c)
			return
		}

		start := time.Now()
		subPath := c.Param("path")

		f, err := c.MultipartForm()

		if err != nil {
			AbortBadRequest(c)
			return
		}

		event.Publish("upload.start", event.Data{"time": start})

		files := f.File["files"]
		uploaded := len(files)
		var uploads []string

		p := path.Join(conf.ImportPath(), "upload", subPath)

		if err := os.MkdirAll(p, os.ModePerm); err != nil {
			AbortBadRequest(c)
			return
		}

		for _, file := range files {
			filename := path.Join(p, filepath.Base(file.Filename))

			log.Debugf("upload: saving file %s", txt.Quote(file.Filename))

			if err := c.SaveUploadedFile(file, filename); err != nil {
				AbortBadRequest(c)
				return
			}

			uploads = append(uploads, filename)
		}

		if !conf.UploadNSFW() {
			nd := service.NsfwDetector()

			containsNSFW := false

			for _, filename := range uploads {
				labels, err := nd.File(filename)

				if err != nil {
					log.Debug(err)
					continue
				}

				if labels.IsSafe() {
					continue
				}

				log.Infof("nsfw: %s might be offensive", txt.Quote(filename))

				containsNSFW = true
			}

			if containsNSFW {
				for _, filename := range uploads {
					if err := os.Remove(filename); err != nil {
						log.Errorf("nsfw: could not delete %s", txt.Quote(filename))
					}
				}

				Abort(c, http.StatusForbidden, i18n.ErrOffensiveUpload)
				return
			}
		}

		elapsed := int(time.Since(start).Seconds())

		msg := i18n.Msg(i18n.MsgFilesUploadedIn, uploaded, elapsed)

		log.Info(msg)

		c.JSON(http.StatusOK, i18n.Response{Code: http.StatusOK, Msg: msg})
	})
}
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`package api`

			`import (`
			`"net/http"`
			`"os"`
Backend: Prepare TensorFlow for NSFW model Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-13 16:25:47 +01:00			`"path"`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`"path/filepath"`
			`"time"`

Sharing: ACL authorization for REST API #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-25 14:54:04 +02:00			`"github.com/photoprism/photoprism/internal/acl"`
Upload: Refactor UX Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-01-30 01:53:18 +01:00			`"github.com/photoprism/photoprism/internal/event"`
Logs: Improve event log and messages in i18n package Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-07 10:51:55 +02:00			`"github.com/photoprism/photoprism/internal/i18n"`
Backend: Refactor package structure Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-05 22:26:53 +02:00			`"github.com/photoprism/photoprism/internal/service"`
Backend: Move reusable packages to pkg/ Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-01-12 14:00:56 +01:00			`"github.com/photoprism/photoprism/pkg/txt"`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00
			`"github.com/gin-gonic/gin"`
			`)`

Rename "Import" to "Library" and add tabs to page 2019-06-14 21:16:59 +02:00			`// POST /api/v1/upload/:path`
Sharing: ACL authorization for REST API #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-25 14:54:04 +02:00			`func Upload(router *gin.RouterGroup) {`
Rename "Import" to "Library" and add tabs to page 2019-06-14 21:16:59 +02:00			`router.POST("/upload/:path", func(c *gin.Context) {`
Sharing: ACL authorization for REST API #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-25 14:54:04 +02:00			`conf := service.Config()`
Add common feature flags incl upload #284 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-13 18:08:21 +02:00			`if conf.ReadOnly() \|\| !conf.Settings().Features.Upload {`
Logs: Improve event log and messages in i18n package Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-07 10:51:55 +02:00			`Abort(c, http.StatusForbidden, i18n.ErrReadOnly)`
Disable import, upload and raw converter in read-only mode #56 2019-07-02 22:03:23 +02:00			`return`
			`}`

Sharing: ACL authorization for REST API #18 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-06-25 14:54:04 +02:00			`s := Auth(SessionID(c), acl.ResourcePhotos, acl.ActionUpload)`

			`if s.Invalid() {`
Backend: Add translations for API messages Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-04 12:54:35 +02:00			`AbortUnauthorized(c)`
Config: Add public flag to disable auth #16 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-11-11 21:10:41 +01:00			`return`
			`}`

Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`start := time.Now()`
Rename "Import" to "Library" and add tabs to page 2019-06-14 21:16:59 +02:00			`subPath := c.Param("path")`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00
Albums: Zip download #15 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-05 19:21:35 +01:00			`f, err := c.MultipartForm()`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00
			`if err != nil {`
Backend: Add translations for API messages Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-04 12:54:35 +02:00			`AbortBadRequest(c)`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`return`
			`}`

Upload: Refactor UX Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-01-30 01:53:18 +01:00			`event.Publish("upload.start", event.Data{"time": start})`

Albums: Zip download #15 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-05 19:21:35 +01:00			`files := f.File["files"]`
Backend: Implement NSFW config flags Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-15 17:19:16 +01:00			`uploaded := len(files)`
			`var uploads []string`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00
Backend: Prepare TensorFlow for NSFW model Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-13 16:25:47 +01:00			`p := path.Join(conf.ImportPath(), "upload", subPath)`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00
Backend: Prepare TensorFlow for NSFW model Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-13 16:25:47 +01:00			`if err := os.MkdirAll(p, os.ModePerm); err != nil {`
Backend: Add translations for API messages Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-04 12:54:35 +02:00			`AbortBadRequest(c)`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`return`
			`}`

			`for _, file := range files {`
Backend: Prepare TensorFlow for NSFW model Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-13 16:25:47 +01:00			`filename := path.Join(p, filepath.Base(file.Filename))`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00
Backend: Code clean-up Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-05-03 18:00:50 +02:00			`log.Debugf("upload: saving file %s", txt.Quote(file.Filename))`
Backend: Implement NSFW config flags Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-15 17:19:16 +01:00
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`if err := c.SaveUploadedFile(file, filename); err != nil {`
Backend: Add translations for API messages Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-04 12:54:35 +02:00			`AbortBadRequest(c)`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`return`
			`}`
Backend: Implement NSFW config flags Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-15 17:19:16 +01:00
			`uploads = append(uploads, filename)`
			`}`

			`if !conf.UploadNSFW() {`
Backend: Refactor package structure Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-04-05 22:26:53 +02:00			`nd := service.NsfwDetector()`
Backend: Implement NSFW config flags Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-15 17:19:16 +01:00
			`containsNSFW := false`

			`for _, filename := range uploads {`
Backend: Compile labels into source #160 Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-01-09 01:21:09 +01:00			`labels, err := nd.File(filename)`
Backend: Implement NSFW config flags Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-15 17:19:16 +01:00
			`if err != nil {`
			`log.Debug(err)`
			`continue`
			`}`

			`if labels.IsSafe() {`
			`continue`
			`}`

Backend: Code clean-up Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-05-03 18:00:50 +02:00			`log.Infof("nsfw: %s might be offensive", txt.Quote(filename))`
Backend: Implement NSFW config flags Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-15 17:19:16 +01:00
			`containsNSFW = true`
			`}`

			`if containsNSFW {`
			`for _, filename := range uploads {`
			`if err := os.Remove(filename); err != nil {`
Backend: Code clean-up Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-05-03 18:00:50 +02:00			`log.Errorf("nsfw: could not delete %s", txt.Quote(filename))`
Backend: Implement NSFW config flags Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-15 17:19:16 +01:00			`}`
			`}`

Logs: Improve event log and messages in i18n package Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-07 10:51:55 +02:00			`Abort(c, http.StatusForbidden, i18n.ErrOffensiveUpload)`
Backend: Implement NSFW config flags Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2019-12-15 17:19:16 +01:00			`return`
			`}`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`}`

Logs: Improve event log and messages in i18n package Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-07 10:51:55 +02:00			`elapsed := int(time.Since(start).Seconds())`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00
Logs: Improve event log and messages in i18n package Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-07 10:51:55 +02:00			`msg := i18n.Msg(i18n.MsgFilesUploadedIn, uploaded, elapsed)`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00
Logs: Improve event log and messages in i18n package Signed-off-by: Michael Mayer <michael@liquidbytes.net> 2020-07-07 10:51:55 +02:00			`log.Info(msg)`

			`c.JSON(http.StatusOK, i18n.Response{Code: http.StatusOK, Msg: msg})`
Proof-of-concept for upload & import 2019-06-13 20:26:01 +02:00			`})`
			`}`