Поддержать механизм загрузки файлов в качестве решения к задаче со стороны студентов (#636)

* add: file uploader element to add solution page

* add: files count validation

* add: file type validation

* fix: files count validation

* fix: default lastSolution id

* feat: files processing in taskSolutionPage

* feat: files processing in studentSolutionPage

* feat: make course files state universal

* feat: add props in task solutions component

^ Conflicts:
^	hwproj.front/src/components/Solutions/TaskSolutionComponent.tsx

* feat: get files info for solutions in converter

* feat: files preview in solution component

* feat: processing files after adding solution

* fix: add solution imports

* feat: make edit files intarface exporting

* fix: start processing after adding solution

* feat: add solution privacy attribute

* feat: add privacy attribute for processing

* feat: add attributes to startup

* feat: add lecturer or student role

* feat: change processing validation (back)

* feat: change get statuses validation (back)

* feat: change download link validation (back)

* feat: add scope dto with file id

* feat: change download link api call (front)

* fix: files preview without comment

* feat: file type validation (back)

* fix: front file type validation

* feat: add files access for groups

* refactor: make studentIds HashSet

* feat: process files for groupmates

* fix: dispose stream in back type validation

* feat: separate access files functionality

* fix: show solution files uploading status for students only

* refactor: delete unused function in files accessor

* fix: intervalRef usage in files accessor

* fix: subscribe updating course files on course id

* feat: update solutions components for files accessor

* fix: padding after solution files

* fix: return alien code

* refactor: deleteunused variables, await with async calls

* feat: [back] add class for privacy validation

* feat [back]: method to get file scope

* fix: delete attribute validation

* fix: delete unused role

* feat [back]: method to get files scope in info service

* refactor [back]: return dto from files controller download link

* refactor [back]: return dto from content client download link

* feat [back]: add privacy filter to start up

* feat [back]: file link dto

* fix: download link request

* feat [back]: privacy validation

* refactor: delete unused validation attributes

* refactor [front]: rename files upload waiter

* feat [front]: variability for max files count

* refactor [front]: course files access to upload waiter

* fix [front]: rename usage of upload waiter

* fix [front]: rename usages of download link getter

* refactor [front]: unify unit files info getter

* feat [front]: delete files saved status text

* refactor [front]: delete unused files info array

* refactor [front]: separate files handle logic

* refactor [back]: type validation by foreign library

* refactor [back]: scope usage in privacy filter

* fix [back]: return with privacy error

* feat [back]: add max files count filter

* fix [front]: max files count showing

* fix [back]: add files count limit to start up

* feat [back]: showing max files count on limit exceeding

* refactor: separate methods in privacy filter

* refactor: create courseUnitType constans

* fix: privacy filter

* wip

* wip

* fix

* fix

* wip

* wip

---------

Co-authored-by: Alexey.Berezhnykh <alexey.berezhnykh@jetbrains.com>

Author: semrosin

HwProj.APIGateway/HwProj.APIGateway.API/Controllers/FilesController.cs

@@ -4,7 +4,7 @@
 using HwProj.AuthService.Client;
 using HwProj.ContentService.Client;
 using HwProj.Models.ContentService.DTO;
-using HwProj.Models.Roles;
+using HwProj.Models.CourseUnitType;
 using Microsoft.AspNetCore.Authorization;
 using Microsoft.AspNetCore.Mvc;
 
@@ -13,72 +13,79 @@ namespace HwProj.APIGateway.API.Controllers;
 [Route("api/[controller]")]
 [Authorize]
 [ApiController]
-public class FilesController : AggregationController
+public class FilesController(
+    IAuthServiceClient authServiceClient,
+    IContentServiceClient contentServiceClient,
+    FilesPrivacyFilter privacyFilter,
+    FilesCountLimiter filesCountLimiter)
+    : AggregationController(authServiceClient)
 {
-    private readonly IContentServiceClient _contentServiceClient;
-
-    public FilesController(IAuthServiceClient authServiceClient,
-        IContentServiceClient contentServiceClient) : base(authServiceClient)
-    {
-        _contentServiceClient = contentServiceClient;
-    }
-
     [HttpPost("process")]
-    [Authorize(Roles = Roles.LecturerRole)]
-    [ServiceFilter(typeof(CourseMentorOnlyAttribute))]
     [ProducesResponseType((int)HttpStatusCode.OK)]
-    [ProducesResponseType(typeof(string[]), (int)HttpStatusCode.ServiceUnavailable)]
+    [ProducesResponseType((int)HttpStatusCode.Forbidden)]
+    [ProducesResponseType(typeof(string[]), (int)HttpStatusCode.BadRequest)]
     public async Task<IActionResult> Process([FromForm] ProcessFilesDTO processFilesDto)
     {
-        var result = await _contentServiceClient.ProcessFilesAsync(processFilesDto);
+        var checkRights = await privacyFilter.CheckUploadRights(UserId, processFilesDto.FilesScope);
+        if (!checkRights) return Forbid("Недостаточно прав для загрузки файлов");
+
+        var checkCountLimit = await filesCountLimiter.CheckCountLimit(processFilesDto);
+        if (!checkCountLimit)
+            return Forbid("Слишком много файлов в решении." +
+                          $"Максимальное количество файлов - ${FilesCountLimiter.MaxSolutionFiles}");
+
+        var result = await contentServiceClient.ProcessFilesAsync(processFilesDto);
         return result.Succeeded
             ? Ok()
-            : StatusCode((int)HttpStatusCode.ServiceUnavailable, result.Errors);
+            : BadRequest(result.Errors);
     }
 
     [HttpPost("statuses")]
-    [Authorize(Roles = Roles.LecturerRole)]
-    [ServiceFilter(typeof(CourseMentorOnlyAttribute))]
+    [ProducesResponseType((int)HttpStatusCode.Forbidden)]
     [ProducesResponseType(typeof(FileInfoDTO[]), (int)HttpStatusCode.OK)]
-    [ProducesResponseType(typeof(string[]), (int)HttpStatusCode.ServiceUnavailable)]
+    [ProducesResponseType(typeof(string[]), (int)HttpStatusCode.BadRequest)]
     public async Task<IActionResult> GetStatuses(ScopeDTO filesScope)
     {
-        var filesStatusesResult = await _contentServiceClient.GetFilesStatuses(filesScope);
-        return filesStatusesResult.Succeeded
-            ? Ok(filesStatusesResult.Value) as IActionResult
-            : StatusCode((int)HttpStatusCode.ServiceUnavailable, filesStatusesResult.Errors);
+        var checkRights = await privacyFilter.CheckUploadRights(UserId, filesScope);
+        if (!checkRights) return Forbid("Недостаточно прав для получения информации о файлах");
+
+        var result = await contentServiceClient.GetFilesStatuses(filesScope);
+        return result.Succeeded
+            ? Ok(result.Value)
+            : BadRequest(result.Errors);
     }
 
     [HttpGet("downloadLink")]
+    [ProducesResponseType((int)HttpStatusCode.Forbidden)]
     [ProducesResponseType(typeof(string), (int)HttpStatusCode.OK)]
     [ProducesResponseType(typeof(string[]), (int)HttpStatusCode.NotFound)]
     public async Task<IActionResult> GetDownloadLink([FromQuery] long fileId)
     {
-        var result = await _contentServiceClient.GetDownloadLinkAsync(fileId);
-        return result.Succeeded
-            ? Ok(result.Value)
-            : NotFound(result.Errors);
-    }
+        var linkDto = await contentServiceClient.GetDownloadLinkAsync(fileId);
+        if (linkDto.Succeeded) return BadRequest(linkDto.Errors);
 
-    [HttpGet("info/course/{courseId}")]
-    [ProducesResponseType(typeof(FileInfoDTO[]), (int)HttpStatusCode.OK)]
-    [ProducesResponseType(typeof(string[]), (int)HttpStatusCode.ServiceUnavailable)]
-    public async Task<IActionResult> GetFilesInfo(long courseId)
-    {
-        var filesInfoResult = await _contentServiceClient.GetFilesInfo(courseId);
-        return filesInfoResult.Succeeded
-            ? Ok(filesInfoResult.Value) as IActionResult
-            : StatusCode((int)HttpStatusCode.ServiceUnavailable, filesInfoResult.Errors);
+        var result = linkDto.Value;
+        var userId = UserId;
+
+        foreach (var scope in result.FileScopes)
+        {
+            if (await privacyFilter.CheckDownloadRights(userId, scope))
+                return Ok(result.DownloadUrl);
+        }
+
+        return Forbid("Недостаточно прав для получения ссылки на файл");
     }
 
-    [HttpGet("info/course/{courseId}/uploaded")]
+    [HttpGet("info/course/{courseId}")]
     [ProducesResponseType(typeof(FileInfoDTO[]), (int)HttpStatusCode.OK)]
-    [ProducesResponseType(typeof(string[]), (int)HttpStatusCode.ServiceUnavailable)]
-    public async Task<IActionResult> GetUploadedFilesInfo(long courseId)
+    [ProducesResponseType(typeof(string[]), (int)HttpStatusCode.BadRequest)]
+    public async Task<IActionResult> GetFilesInfo(long courseId,
+        [FromQuery] bool uploadedOnly = true,
+        [FromQuery] string courseUnitType = CourseUnitType.Homework)
     {
-        var filesInfoResult = await _contentServiceClient.GetUploadedFilesInfo(courseId);
+        var filesInfoResult = await contentServiceClient.GetFilesInfo(courseId, uploadedOnly, courseUnitType);
         return filesInfoResult.Succeeded
-            ? Ok(filesInfoResult.Value) as IActionResult
-            : StatusCode((int)HttpStatusCode.ServiceUnavailable, filesInfoResult.Errors);
+            ? Ok(filesInfoResult.Value)
+            : BadRequest(filesInfoResult.Errors);
     }
 }

HwProj.APIGateway/HwProj.APIGateway.API/Filters/FilesCountLimiter.cs

@@ -0,0 +1,27 @@
+using System.Linq;
+using System.Threading.Tasks;
+using HwProj.ContentService.Client;
+using HwProj.Models.ContentService.DTO;
+using HwProj.Models.CourseUnitType;
+
+namespace HwProj.APIGateway.API.Filters;
+
+public class FilesCountLimiter(IContentServiceClient contentServiceClient)
+{
+    public const long MaxSolutionFiles = 5;
+
+    public async Task<bool> CheckCountLimit(ProcessFilesDTO processFilesDto)
+    {
+        if (processFilesDto.FilesScope.CourseUnitType == CourseUnitType.Homework) return true;
+
+        var existingStatuses = await contentServiceClient.GetFilesStatuses(processFilesDto.FilesScope);
+        if (!existingStatuses.Succeeded) return false;
+
+        var existingIds = existingStatuses.Value.Select(f => f.Id).ToList();
+        if (processFilesDto.DeletingFileIds.Any(id => !existingIds.Contains(id)))
+            return false;
+
+        return existingIds.Count + processFilesDto.NewFiles.Count - processFilesDto.DeletingFileIds.Count <=
+               MaxSolutionFiles;
+    }
+}

HwProj.APIGateway/HwProj.APIGateway.API/Filters/FilesPrivacyFilter.cs

@@ -0,0 +1,71 @@
+using System.Collections.Generic;
+using System.Linq;
+using System.Threading.Tasks;
+using HwProj.CoursesService.Client;
+using HwProj.Models.ContentService.DTO;
+using HwProj.Models.CourseUnitType;
+using HwProj.SolutionsService.Client;
+
+namespace HwProj.APIGateway.API.Filters;
+
+public class FilesPrivacyFilter(
+    ICoursesServiceClient coursesServiceClient,
+    ISolutionsServiceClient solutionsServiceClient)
+{
+    private async Task<HashSet<string>> GetSolutionStudentIds(long solutionId)
+    {
+        var studentIds = new HashSet<string>();
+        var solution = await solutionsServiceClient.GetSolutionById(solutionId);
+        studentIds.Add(solution.StudentId);
+
+        if (solution.GroupId is { } groupId)
+        {
+            var groups = await coursesServiceClient.GetGroupsById(groupId);
+            if (groups is [var group]) studentIds.UnionWith(group.StudentsIds.ToHashSet());
+        }
+
+        return studentIds;
+    }
+
+    public async Task<bool> CheckDownloadRights(string? userId, ScopeDTO fileScope)
+    {
+        if (userId == null) return false;
+
+        switch (fileScope.CourseUnitType)
+        {
+            case CourseUnitType.Homework:
+                return true;
+            case CourseUnitType.Solution:
+            {
+                var studentIds = await GetSolutionStudentIds(fileScope.CourseUnitId);
+                if (studentIds.Contains(userId)) return true;
+
+                var mentorIds = await coursesServiceClient.GetCourseLecturersIds(fileScope.CourseId);
+                return mentorIds.Contains(userId);
+            }
+            default:
+                return false;
+        }
+    }
+
+    public async Task<bool> CheckUploadRights(string? userId, ScopeDTO fileScope)
+    {
+        if (userId == null) return false;
+
+        switch (fileScope.CourseUnitType)
+        {
+            case CourseUnitType.Homework:
+            {
+                var mentorIds = await coursesServiceClient.GetCourseLecturersIds(fileScope.CourseId);
+                return mentorIds.Contains(userId);
+            }
+            case CourseUnitType.Solution:
+            {
+                var studentIds = await GetSolutionStudentIds(fileScope.CourseUnitId);
+                return studentIds.Contains(userId);
+            }
+            default:
+                return false;
+        }
+    }
+}

HwProj.APIGateway/HwProj.APIGateway.API/Startup.cs

@@ -80,6 +80,8 @@ public void ConfigureServices(IServiceCollection services)
         services.AddContentServiceClient();
 
         services.AddScoped<CourseMentorOnlyAttribute>();
+        services.AddScoped<FilesPrivacyFilter>();
+        services.AddScoped<FilesCountLimiter>();
     }
 
     public void Configure(IApplicationBuilder app, IHostEnvironment env)

HwProj.Common/HwProj.Models/ContentService/Attributes/CorrectFileTypeAttribute.cs

@@ -0,0 +1,59 @@
+using System;
+using System.Collections.Generic;
+using System.ComponentModel.DataAnnotations;
+using System.Linq;
+using Microsoft.AspNetCore.Http;
+using FileTypeChecker.Abstracts;
+using FileTypeChecker.Types;
+
+namespace HwProj.Models.ContentService.Attributes
+{
+    [AttributeUsage(AttributeTargets.Property)]
+    public class CorrectFileTypeAttribute : FileValidationAttribute
+    {
+        private static readonly HashSet<FileType> ForbiddenFileTypes = new HashSet<FileType>
+        {
+            new MachO(), new Executable(), new ExecutableAndLinkableFormat()
+        };
+
+        protected override ValidationResult Validate(IFormFile file)
+        {
+            try
+            {
+                using var fileContent = file.OpenReadStream();
+                //FileTypeValidator.RegisterCustomTypes(typeof(MachO).Assembly);
+                if ( //!FileTypeValidator.IsTypeRecognizable(fileContent) ||
+                    ForbiddenFileTypes.Any(type => type.DoesMatchWith(fileContent)))
+                {
+                    return new ValidationResult(
+                        $"Файл `{file.FileName}` имеет недопустимый тип ${file.ContentType}");
+                }
+            }
+            catch
+            {
+                return new ValidationResult(
+                    $"Невозможно прочитать файл `{file.FileName}`");
+            }
+
+            return ValidationResult.Success;
+        }
+
+        private class MachO : FileType
+        {
+            private const string TypeName = "MacOS executable";
+            private const string TypeExtension = "macho";
+
+            private static readonly byte[][] MagicBytes =
+            {
+                new byte[] { 0xfe, 0xed, 0xfa, 0xce }, // Mach-O BE 32-bit
+                new byte[] { 0xfe, 0xed, 0xfa, 0xcf }, // Mach-O BE 64-bit
+                new byte[] { 0xce, 0xfa, 0xed, 0xfe }, // Mach-O LE 32-bit
+                new byte[] { 0xcf, 0xfa, 0xed, 0xfe }, // Mach-O LE 64-bit
+            };
+
+            public MachO() : base(TypeName, TypeExtension, MagicBytes)
+            {
+            }
+        }
+    }
+}

HwProj.Common/HwProj.Models/ContentService/Attributes/FileValidationAttribute.cs

@@ -0,0 +1,22 @@
+using System.Collections.Generic;
+using System.ComponentModel.DataAnnotations;
+using System.Linq;
+using Microsoft.AspNetCore.Http;
+
+namespace HwProj.Models.ContentService.Attributes
+{
+    public abstract class FileValidationAttribute : ValidationAttribute
+    {
+        protected abstract ValidationResult Validate(IFormFile file);
+
+        protected override ValidationResult? IsValid(object? value, ValidationContext validationContext) =>
+            value switch
+            {
+                IFormFile singleFile => Validate(singleFile),
+                IEnumerable<IFormFile> files => files
+                    .Select(Validate)
+                    .FirstOrDefault(x => x != ValidationResult.Success) ?? ValidationResult.Success,
+                _ => null
+            };
+    }
+}

HwProj.Common/HwProj.Models/ContentService/Attributes/MaxFileSizeAttribute.cs

@@ -1,35 +1,24 @@
 using System;
-using System.Collections.Generic;
 using System.ComponentModel.DataAnnotations;
 using Microsoft.AspNetCore.Http;
 
 namespace HwProj.Models.ContentService.Attributes
 {
     [AttributeUsage(AttributeTargets.Property)]
-    public class MaxFileSizeAttribute : ValidationAttribute
+    public class MaxFileSizeAttribute : FileValidationAttribute
     {
         private readonly long _maxFileSizeInBytes;
 
         public MaxFileSizeAttribute(long maxFileSizeInBytes)
-            =>_maxFileSizeInBytes = maxFileSizeInBytes;
+            => _maxFileSizeInBytes = maxFileSizeInBytes;
 
-        protected override ValidationResult? IsValid(object? value, ValidationContext validationContext)
+        protected override ValidationResult Validate(IFormFile file)
         {
-            var files = value switch
-            {
-                IFormFile singleFile => new[] { singleFile },
-                IEnumerable<IFormFile> filesCollection => filesCollection,
-                _ => null
-            };
+            if (file.Length > _maxFileSizeInBytes)
+                return new ValidationResult(
+                    $"Файл `{file.FileName}` превышает лимит в {_maxFileSizeInBytes / 1024 / 1024} MB");
 
-            if (files == null) return ValidationResult.Success;
-
-            foreach (var file in files)
-                if (file.Length > _maxFileSizeInBytes)
-                    return new ValidationResult(
-                        $"Файл `{file.FileName}` превышает лимит в {_maxFileSizeInBytes / 1024 / 1024} MB");
-            
             return ValidationResult.Success;
         }
     }
-}
+}

HwProj.Common/HwProj.Models/ContentService/CourseUnitType/CourseUnitType.cs

@@ -0,0 +1,9 @@
+namespace HwProj.Models.CourseUnitType
+{
+    public static class CourseUnitType
+    {
+        public const string Homework = "Homework";
+        public const string Solution = "Solution";
+        public const string Task = "Task";
+    };
+};

HwProj.Common/HwProj.Models/ContentService/DTO/FileLinkDTO.cs

@@ -0,0 +1,11 @@
+using System.Collections.Generic;
+
+namespace HwProj.Models.ContentService.DTO
+{
+    
+    public class FileLinkDTO
+    {
+        public string DownloadUrl { get; set; }
+        public List<ScopeDTO> FileScopes { get; set; }
+    }
+}