KeshavAnandCode/FTCWebsite
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

Update file uploads to use signed URLs from Replit's sidecar service

Browse Source 
Rewrite object_storage.py to utilize the Replit sidecar endpoint for generating signed URLs for file uploads, replacing direct Google Cloud Storage client interactions.

Replit-Commit-Author: Agent
Replit-Commit-Session-Id: cd9a7d26-a4e5-4215-975c-c59f4ed1f06d
Replit-Commit-Checkpoint-Type: full_checkpoint
Replit-Commit-Event-Id: 3bc03de1-efba-4e8b-802f-990f440ce8da
Replit-Commit-Screenshot-Url: https://storage.googleapis.com/screenshot-production-us-central1/d0a1d46d-d203-4308-bc6a-312ac7c0243b/cd9a7d26-a4e5-4215-975c-c59f4ed1f06d/05bPjFc
This commit is contained in:
abhiramtx
2025-12-13 21:37:17 +00:00
parent 6a8eb826a6
commit 4a0166b80e
4 changed files with 41 additions and 50 deletions
Download Patch File Download Diff File Expand all files Collapse all files

BIN
attached_assets/image_1765661730127.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 4.7 KiB

BIN
attached_assets/image_1765661747621.png Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 17 KiB

89
object_storage.py
View File

@@ -1,48 +1,47 @@
""" """
Object Storage Service for FTC Team Website Object Storage Service for FTC Team Website
Handles persistent file uploads using Google Cloud Storage (Replit Object Storage) Handles persistent file uploads using Replit Object Storage (via sidecar signed URLs)
""" """
from google.cloud import storage
from google.auth import identity_pool
import os import os
import json import requests
from uuid import uuid4 from uuid import uuid4
from werkzeug.utils import secure_filename from werkzeug.utils import secure_filename
from datetime import datetime, timedelta
REPLIT_SIDECAR_ENDPOINT = "http://127.0.0.1:1106" REPLIT_SIDECAR_ENDPOINT = "http://127.0.0.1:1106"
def get_replit_credentials(): def get_signed_upload_url(bucket_name, object_name, ttl_sec=900):
"""Create proper credentials for Replit Object Storage""" """Get a signed URL for uploading to object storage"""
credentials_config = { request_data = {
"audience": "replit", "bucket_name": bucket_name,
"subject_token_type": "access_token", "object_name": object_name,
"token_url": f"{REPLIT_SIDECAR_ENDPOINT}/token", "method": "PUT",
"type": "external_account", "expires_at": (datetime.utcnow() + timedelta(seconds=ttl_sec)).isoformat() + "Z"
"credential_source": {
"url": f"{REPLIT_SIDECAR_ENDPOINT}/credential",
"format": {
"type": "json",
"subject_token_field_name": "access_token",
},
},
"universe_domain": "googleapis.com",
} }
credentials = identity_pool.Credentials.from_info(credentials_config) response = requests.post(
return credentials f"{REPLIT_SIDECAR_ENDPOINT}/object-storage/signed-object-url",
json=request_data,
headers={"Content-Type": "application/json"}
)
if not response.ok:
raise Exception(f"Failed to get signed URL: {response.status_code} - {response.text}")
data = response.json()
return data.get("signed_url")
def get_public_url(bucket_name, object_name):
"""Get the public URL for an object"""
return f"https://storage.googleapis.com/{bucket_name}/{object_name}"
class ObjectStorageService: class ObjectStorageService:
def __init__(self): def __init__(self):
"""Initialize the object storage client with Replit credentials""" """Initialize the object storage service"""
credentials = get_replit_credentials()
self.client = storage.Client(
credentials=credentials,
project="",
)
self.bucket_name = os.environ.get('OBJECT_STORAGE_BUCKET') self.bucket_name = os.environ.get('OBJECT_STORAGE_BUCKET')
if not self.bucket_name: if not self.bucket_name:
raise ValueError( raise ValueError(
@@ -50,11 +49,9 @@ class ObjectStorageService:
"Please create a bucket in the Object Storage pane and set this variable." "Please create a bucket in the Object Storage pane and set this variable."
) )
self.bucket = self.client.bucket(self.bucket_name)
def upload_file(self, file, folder='uploads'): def upload_file(self, file, folder='uploads'):
""" """
Upload a file to object storage Upload a file to object storage using signed URLs
Args: Args:
file: Werkzeug FileStorage object file: Werkzeug FileStorage object
@@ -71,28 +68,22 @@ class ObjectStorageService:
unique_filename = f"{uuid4()}{file_extension}" unique_filename = f"{uuid4()}{file_extension}"
object_name = f"{folder}/{unique_filename}" object_name = f"{folder}/{unique_filename}"
blob = self.bucket.blob(object_name) signed_url = get_signed_upload_url(self.bucket_name, object_name)
blob.upload_from_file(
file.stream, file_content = file.read()
content_type = file.content_type or 'application/octet-stream' content_type = file.content_type or 'application/octet-stream'
upload_response = requests.put(
signed_url,
data=file_content,
headers={"Content-Type": content_type}
) )
blob.make_public() if not upload_response.ok:
raise Exception(f"Upload failed: {upload_response.status_code} - {upload_response.text}")
return blob.public_url return get_public_url(self.bucket_name, object_name)
def get_blob(self, url):
"""Get a blob object from a URL"""
if not url or not url.startswith('https://storage.googleapis.com/'):
return None
parts = url.replace(f'https://storage.googleapis.com/{self.bucket_name}/', '')
return self.bucket.blob(parts)
def delete_file(self, url): def delete_file(self, url):
"""Delete a file from object storage""" """Delete a file from object storage (placeholder - not implemented)"""
blob = self.get_blob(url)
if blob and blob.exists():
blob.delete()
return True
return False return False

BIN
static/images/dr5qp.jpg Normal file
View File

Binary file not shown.
Side by Side

After

Width:  |  Height:  |  Size: 4.5 KiB