mirror of
https://github.com/danny-avila/LibreChat.git
synced 2026-07-04 05:13:52 +00:00
* feat: add signed CloudFront downloads * fix: preserve local IdP avatar paths * fix: address signed download review findings * fix: harden CloudFront cookie scope validation * fix: preserve URL save API compatibility * fix: store CDN SSO avatars under shared prefix * fix: Harden CloudFront tenant file access * fix: Preserve CloudFront download compatibility * fix: Address CloudFront review follow-ups * fix: Preserve file URL fallback user paths * fix: Address download review hardening * fix: Use file owner for S3 RAG cleanup * fix: Address final download review nits * fix: Clear stale avatar CloudFront cookies * fix: Align download filename helpers with dev * fix: Address final CloudFront review follow-ups * fix: Stream S3 URL uploads * fix: Set S3 stream upload length * fix: Preserve download metadata filepath * fix: Avoid remote content length for stream uploads * fix: Use bounded multipart URL uploads * fix: Harden S3 filename boundaries
54 lines
1.7 KiB
JavaScript
54 lines
1.7 KiB
JavaScript
const fs = require('fs').promises;
|
|
const express = require('express');
|
|
const { logger } = require('@librechat/data-schemas');
|
|
const { getStrategyFunctions } = require('~/server/services/Files/strategies');
|
|
const { resizeAvatar } = require('~/server/services/Files/images/avatar');
|
|
const { getFileStrategy } = require('~/server/utils/getFileStrategy');
|
|
const { filterFile } = require('~/server/services/Files/process');
|
|
|
|
const router = express.Router();
|
|
|
|
router.post('/', async (req, res) => {
|
|
try {
|
|
const appConfig = req.config;
|
|
filterFile({ req, file: req.file, image: true, isAvatar: true });
|
|
const userId = req.user.id;
|
|
const { manual } = req.body;
|
|
const input = await fs.readFile(req.file.path);
|
|
|
|
if (!userId) {
|
|
throw new Error('User ID is undefined');
|
|
}
|
|
|
|
const fileStrategy = getFileStrategy(appConfig, { isAvatar: true });
|
|
const desiredFormat = appConfig.imageOutputType;
|
|
const resizedBuffer = await resizeAvatar({
|
|
userId,
|
|
input,
|
|
desiredFormat,
|
|
});
|
|
|
|
const { processAvatar } = getStrategyFunctions(fileStrategy);
|
|
const url = await processAvatar({
|
|
buffer: resizedBuffer,
|
|
userId,
|
|
manual,
|
|
tenantId: req.user.tenantId,
|
|
});
|
|
|
|
res.json({ url });
|
|
} catch (error) {
|
|
const message = 'An error occurred while uploading the profile picture';
|
|
logger.error(message, error);
|
|
res.status(500).json({ message });
|
|
} finally {
|
|
try {
|
|
await fs.unlink(req.file.path);
|
|
logger.debug('[/files/images/avatar] Temp. image upload file deleted');
|
|
} catch {
|
|
logger.debug('[/files/images/avatar] Temp. image upload file already deleted');
|
|
}
|
|
}
|
|
});
|
|
|
|
module.exports = router;
|