Support manifest traversal #452
Conversation
For retreiving file ntries using paths.
Manually join header values, as for some reason HTTP layer uses only single value.
pkg/api/bzz_test.go
Outdated
| fileName := "sample.html" | ||
| filePath := "test/" + fileName | ||
| missingFilePath := "test/missing" | ||
| sampleHtml := `<!DOCTYPE html> | ||
| <html> | ||
| <body> | ||
|
|
||
| <h1>My First Heading</h1> | ||
|
|
||
| <p>My first paragraph.</p> | ||
|
|
||
| </body> | ||
| </html>` | ||
|
|
||
| var err error | ||
| var fileReference swarm.Address | ||
| var manifestFileReference swarm.Address |
There was a problem hiding this comment.
I would maybe put this in the TestBzz scope and just have these individual tests below. Don't see a need for sub-tests.
zbiljic
added
ready for review
| @@ -54,6 +54,10 @@ func (s *server) setupRouting() { | |||
| "POST": http.HandlerFunc(s.chunkUploadHandler), | |||
| }) | |||
|
|
|||
| handle(router, "/bzz:/{address}/{path:.*}", jsonhttp.MethodHandler{ | |||
There was a problem hiding this comment.
we agreed to use /bzz:/ notation?
https://beehive.ethswarm.org/swarm/pl/fzgc13trxpgjz8k37ft3y8zzgo
There was a problem hiding this comment.
https://beehive.ethswarm.org/swarm/pl/sfyot87eqin68cpsum3qspwp7w, I guess we just agreed to try /bzz/?
There was a problem hiding this comment.
from these links, it is unclear to me tbh
pkg/api/bzz.go
Outdated
|
|
||
| entryAddress := entry.GetReference() | ||
|
|
||
| toDecryptEntry := len(entryAddress.Bytes()) == (swarm.HashSize + encryption.KeyLength) |
There was a problem hiding this comment.
maybe we should extract this as a function on addresses
| @@ -54,6 +54,10 @@ func (s *server) setupRouting() { | |||
| "POST": http.HandlerFunc(s.chunkUploadHandler), | |||
| }) | |||
|
|
|||
| handle(router, "/bzz:/{address}/{path:.*}", jsonhttp.MethodHandler{ | |||
There was a problem hiding this comment.
from these links, it is unclear to me tbh
| ManifestContentType = "application/bzz-manifest+json" | ||
| ) | ||
|
|
||
| func (s *server) bzzDownloadHandler(w http.ResponseWriter, r *http.Request) { |
There was a problem hiding this comment.
This is a very long function
There was a problem hiding this comment.
That it is. It was intentionally left like that, to have linear steps that are being performed. There is also a lot of boilerplate regarding HTTP API.
BTW, not the longest one, the file.go wins in that regard.
There was a problem hiding this comment.
well mistakes don't need to be repeated
There was a problem hiding this comment.
Terribly sorry but I would say this function is not specially long, and having a "long" function is not bad in any general way. Also, we are trying to isolate the PRs to be small, and limit the change set, so I would not spend to much time here to refactor the files.go code. This function is using a code from files.go, and although I agree it should be refactored, I don't think it needs to be in this specific PR. Especially, since we asked about this on mattermost and got the info that the code inside was not considered business logic and that it should be used in this way: https://beehive.ethswarm.org/swarm/pl/83bayftmzfgqbqgocpyxwkn3xc.
In order to refactor this function we should probably:
- Extract specific error types
- Remove logging and request rendering form the function and move it to calling functions, based on extracted error types
- Maybe move this to a special upload/download/transfer package/component in
pkgand letapibe thin and only API related
So, anyways, my 2 c are that we should keep this PR minimal and focus on the user-story, and open the separate PR to refactor the code, since this code will move stuff from files.go and possibly other api calls as well. Just my 2 c, I am OK either way.
|
@zbiljic thank you very much for addressing all my comments 👍 |
|
related follow-up issue: #463 |
See #433
NOTE: This is PoC, and uses simple, JSON-based manifest structure, which will be changed to solidity friendly implementation later on. It also lacks various protections against possible attacks.
Includes initial support for resolving the relative path from the
bzzURL.If the referenced address (hash) is of type manifest, it will attempt to lookup noted path from URL in that manifest, and if matched return the content of that file.
Route used is
/bzz:/{address}/{path:.*}.This implementation borrowed heavily from
file.goandbytes.go. Initial PoC uses JSON-based manifest (for ease of testing), which is identified byapplication/bzz-manifest+jsonMIME type in file metadata. Manifest entry structure contains headers for the referenced file, which will be populated on response. All manifest-based operations are hidden behind interfaces, which should allow for easier switch to any other structure for manifest later on.Example of usage for PoC website:
step 1 - upload 'index.html'
Used HTML content:
step 2 - upload some image
For example, 'ethersphere.png' was taken.
step 3 - manually create manifest JSON
References used are the ones received for each file upload.
Note that 'index.html' uses 'ethersphere.png' on specific path.
{ "entries": { "index.html": { "reference": "<INDEX_HTML_REFERENCE>", "name": "index.html", "headers": { "Content-Type": ["text/html"] } }, "images/ethersphere.png": { "reference": "<PNG_REFERENCE>", "name": "ethersphere.png", "headers": { "Content-Type": ["image/png"] } } } }step 4 - upload created manifest
We use
/filesAPI, and set special content type for manifest file (for this PoC).step 5 - check "website"
It should now be possible to open the "website" in browser by going to: