Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Use signed url for local sync #1013

Merged
merged 1 commit into from
Oct 9, 2024
Merged

Use signed url for local sync #1013

merged 1 commit into from
Oct 9, 2024

Conversation

beastoin
Copy link
Collaborator

@beastoin beastoin commented Oct 9, 2024
edited by github-actions bot
Loading

Summary by Entelligence.AI

  • New Feature: Added enhanced security for file syncing operations. The system now generates temporal signed URLs with a 15-minute expiry time, improving the safety and integrity of data during transfer processes. This change ensures that only authorized entities can access the syncing files within the specified timeframe.

@beastoin beastoin merged commit f05038f into main Oct 9, 2024
1 check passed
@beastoin beastoin deleted the jzecm_wal_local_sync_958 branch October 9, 2024 11:17
@github-actions GitHub Actions
Copy link

github-actions bot commented Oct 9, 2024
edited
Loading

Image description Entelligence.AI

Walkthrough

This changeset introduces a more secure way of handling file syncing by generating temporal signed URLs. The sync.py router now uses the get_syncing_file_temporal_signed_url function from storage.py, which provides a URL that expires after 15 minutes, enhancing the security of file access.

Changes

File Summary
backend/routers/sync.py Updated to use get_syncing_file_temporal_signed_url for secure file syncing.
backend/utils/other/storage.py Added get_syncing_file_temporal_signed_url function to generate signed URLs with a 15-minute expiry time.

🎉🤖

In the realm of code where data does dwell,

A change was made, and made quite well.

Now files sync with a safer trend,

With signed URLs that timely end.

So celebrate this code so bright,

For it brings us closer to the light. 🌟

Uplevel your code reviews with Entelligence.AI Pro

Entelligence.AI Pro

If you like this project, please support us by purchasing the Pro version. The Pro version has advanced context, superior noise reduction and several proprietary improvements compared to the open source version. Moreover, Entelligence.AI Pro is free for open source projects.

github-actions[bot]
github-actions bot reviewed Oct 9, 2024
View reviewed changes
Copy link

@github-actions github-actions bot left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Image description Entelligence.AI

Commits Files that changed from the base of the PR and between 3e53cf4 and ac05dc9 commits.
Files selected (2)
  • backend/routers/sync.py (2)
  • backend/utils/other/storage.py (1)
Review comments generated (4)
  • Review: 1
  • LGTM: 3
Tips

Chat with Image description Entelligence.AI Bot (@Entelligence.AI)

  • Reply on review comments left by this bot to ask follow-up questions. A review comment is a comment on a diff or a file.
  • Invite the bot into a review comment chain by tagging @Entelligence.AI in a reply.

Code suggestions

  • The bot may make code suggestions, but please review them carefully before committing since the line number ranges may be misaligned.
  • You can edit the comment made by the bot and manually tweak the suggestion if it is slightly off.

Pausing incremental reviews

  • Add @Entelligence.AI: ignore anywhere in the PR description to pause further reviews from the bot.

backend/utils/other/storage.py
Comment on lines +213 to +217
def get_syncing_file_temporal_signed_url(file_path: str):
bucket = storage_client.bucket(syncing_local_bucket)
blob = bucket.blob(file_path)
blob.upload_from_filename(file_path)
return _get_signed_url(blob, 15)
Copy link

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

Image description Entelligence.AI

The get_syncing_file_temporal_signed_url function uploads a file to the bucket and then returns a signed URL for that file. However, it seems like this function is supposed to generate a signed URL for an existing file in the bucket, not upload a new one. The line blob.upload_from_filename(file_path) should probably be removed.

-    blob.upload_from_filename(file_path)
     return _get_signed_url(blob, 15)

Also, there's no error handling here. What if the file doesn't exist in the bucket? You should add some error handling to check if the blob exists before trying to get its signed URL.

if not blob.exists():
    raise FileNotFoundError(f"The file {file_path} does not exist in the bucket.")
return _get_signed_url(blob, 15)

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@github-actions github-actions[bot] github-actions[bot] left review comments

Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
1 participant
@beastoin