add possibility to upload and download from specific folder

2026-04-22 10:46:33 +00:00 · 2024-12-24 12:48:02 +02:00
parent 81d2409009
commit 0945635a1c
2 changed files with 21 additions and 14 deletions
@@ -135,15 +135,15 @@ app.MapGet("/users",
    .RequireAuthorization(apiAdminPolicy)
    .WithOpenApi(op => new(op){ Summary = "List users by criteria"});

-app.MapPost("/resources",
-        async (IFormFile data, IResourcesService resourceService, CancellationToken cancellationToken)
-            => await resourceService.SaveResource(data, cancellationToken))
+app.MapPost("/resources/{dataFolder?}",
+        async ([FromRoute]string? dataFolder, IFormFile data, IResourcesService resourceService, CancellationToken cancellationToken)
+            => await resourceService.SaveResource(dataFolder, data, cancellationToken))
    .Accepts<IFormFile>("multipart/form-data")
    .RequireAuthorization(apiUploaderPolicy)
    .DisableAntiforgery();

-app.MapPost("/resources/get", //Need to have POST method for secure password
-    async ([FromBody]GetResourceRequest request, IAuthService authService, IUserService userService, IResourcesService resourcesService, CancellationToken cancellationToken) =>
+app.MapPost("/resources/get/{dataFolder?}", //Need to have POST method for secure password
+    async ([FromBody]GetResourceRequest request, [FromRoute]string? dataFolder, IAuthService authService, IUserService userService, IResourcesService resourcesService, CancellationToken cancellationToken) =>
    {
        var user = authService.CurrentUser;
        if (user == null)
@@ -152,7 +152,7 @@ app.MapPost("/resources/get", //Need to have POST method for secure password
        await userService.CheckHardware(user, request);

        var key = Security.MakeEncryptionKey(user.Email, request.Password, request.Hardware.Hash);
-        var stream = await resourcesService.GetEncryptedResource(request.FileName, key, cancellationToken);
+        var stream = await resourcesService.GetEncryptedResource(dataFolder, request.FileName, key, cancellationToken);

        return Results.File(stream, "application/octet-stream", request.FileName);
    }).RequireAuthorization()