geonode/geonode/assets/utils.py at 51c5f112eea3cb87c385863e14d2c6b66fc4a2ff · GeoNode/geonode · GitHub

1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153
154
155
156
157
158
159
160
161
162
163
164
165
166
167
168
169
170
171
172
173
174
175
176
177
178
179
180
181
182
183
184
185
186
187
188
189
190
191
192
193
194
195
196
197
198
199
200
201
202
203
204
205
206
207
208
209
210
211
212
213
214
215
216
217
218
219
220
221
222
223
224
225
226
227
228
229
230
231
232
233
234
235
236
237
238
239
240
241
242
243
244
245
246
247
248
249
250
251
252
253
254
255
256
257
258
import logging
import os.path

from django.http import HttpResponse
from django.core.exceptions import PermissionDenied
from geonode.security.permissions import DOWNLOAD_PERMISSIONS
from geonode.assets.handlers import asset_handler_registry
from geonode.assets.models import Asset
from geonode.base.models import ResourceBase, Link
from geonode.security.utils import get_visible_resources
from geonode.security.registry import permissions_registry
from pathlib import Path

logger = logging.getLogger(__name__)


def get_perms_response(request, asset: Asset):
    user = request.user

    # quick check
    is_admin = user.is_superuser if user and user.is_authenticated else False
    if is_admin or user == asset.owner:
        logger.debug("Asset: access allowed by user")
        return None

    visibile_res = get_visible_resources(queryset=ResourceBase.objects.filter(link__asset=asset), user=request.user)

    if visibile_res.exists():
        # retrieving the resource permissions for the given user
        resource_perms = permissions_registry.get_perms(instance=visibile_res.first(), user=user)
        # check if download perms is available
        if set(DOWNLOAD_PERMISSIONS).issubset(resource_perms):
            logger.debug("Asset: access allowed by Resource")
            return None
        raise PermissionDenied
    elif user and user.is_authenticated:
        return HttpResponse(status=403)
    else:
        return HttpResponse(status=401)


def get_default_asset(resource: ResourceBase, link_type=None) -> Asset or None:
    """
    Get the default asset for a ResourceBase.

    In this first implementation we select the first one --
    in the future there may be further flags to identify the preferred one
    """
    filters = {"link__resource": resource}
    if link_type:
        filters["link__link_type"] = link_type
    asset = Asset.objects.filter(**filters).first()
    return asset.get_real_instance() if asset else None


DEFAULT_TYPES = {"image": ["jpg", "jpeg", "gif", "png", "bmp", "svg"]}


def find_type(ext):
    return next((datatype for datatype, extensions in DEFAULT_TYPES.items() if ext.lower() in extensions), None)


def create_link(resource, asset, link_type=None, extension=None, name=None, mime=None, asset_handler=None, **kwargs):
    asset = asset.get_real_instance()
    asset_handler = asset_handler or asset_handler_registry.get_handler(asset)

    if not link_type or not extension or not name:
        fallback_name, fallback_ext = (
            os.path.splitext(os.path.basename(asset.location[0])) if len(asset.location) else (None, None)
        )
        if fallback_ext:
            fallback_ext = fallback_ext.lstrip(".")
        link_type = link_type or find_type(fallback_ext) if fallback_ext else None

    link = Link(
        resource=resource,
        asset=asset,
        url=asset_handler.create_link_url(asset),
        extension=extension or fallback_ext or "Unknown",
        link_type=link_type or "data",
        name=name or fallback_name or asset.title,
        mime=mime or "",
    )
    link.save()
    return link


def create_asset(
    owner,
    files,
    handler=None,
    title=None,
    description=None,
    asset_type=None,
    clone_files: bool = True,
) -> Asset:
    asset_handler = handler or asset_handler_registry.get_default_handler()
    asset = None
    try:
        asset = asset_handler.create(
            title=title or "Unknown",
            description=description or asset_type or "Unknown",
            type=asset_type or "Unknown",
            owner=owner,
            files=files,
            clone_files=clone_files,
        )
        return asset
    except Exception as e:
        logger.error(f"Error creating Asset: {e}", exc_info=e)
        raise


def create_asset_and_link(
    resource,
    owner,
    files,
    handler=None,
    title=None,
    description=None,
    link_type=None,
    extension=None,
    asset_type=None,
    mime=None,
    clone_files: bool = True,
) -> tuple[Asset, Link]:
    asset_handler = handler or asset_handler_registry.get_default_handler()
    asset = link = None
    try:
        first_file = next(iter(files)) if len(files) else None
        filename = (
            first_file
            if isinstance(first_file, (str, Path))
            else getattr(first_file, "name", None) if first_file else None
        )
        default_title, default_ext = os.path.splitext(filename) if filename else ("Unknown", None)
        if default_ext:
            default_ext = default_ext.lstrip(".")
        link_type = link_type or find_type(default_ext) if default_ext else None
        asset = create_asset(
            owner=owner,
            files=files,
            handler=asset_handler,
            title=title or default_title,
            description=description,
            asset_type=asset_type,
            clone_files=clone_files,
        )

        link = create_link(
            resource,
            asset,
            asset_handler=asset_handler,
            link_type=link_type,
            extension=extension,
            name=title,
            mime=mime,
        )

        return asset, link
    except Exception as e:
        logger.error(f"Error creating Asset for resource {resource}: {e}", exc_info=e)
        rollback_asset_and_link(asset, link)
        raise Exception(f"Error creating asset: {e}")


def create_asset_and_link_dict(resource, values: dict, clone_files=True):
    return create_asset_and_link(
        resource,
        values["owner"],
        values["files"],
        title=values.pop("data_title", None),
        description=values.pop("description", None),
        link_type=values.pop("link_type", None),
        extension=values.pop("extension", None),
        asset_type=values.pop("data_type", None),
        clone_files=clone_files,
    )


def copy_assets_and_links(resource, target=None) -> list:
    assets_and_links = []
    links_with_assets = Link.objects.filter(resource=resource, asset__isnull=False).prefetch_related("asset")

    for link in links_with_assets:
        link.asset = asset_handler_registry.get_handler(link.asset).clone(link.asset)
        link.pk = None
        link.resource = target
        link.save()
        assets_and_links.append((link.asset, link))
    return assets_and_links


def rollback_asset_and_link(asset, link):
    try:
        if link:
            link.delete()
        if asset:
            asset.delete()  # TODO: make sure we are only deleting from DB and not also the stored data
    except Exception as e:
        logger.error(f"Could not rollback asset[{asset}] and link[{link}]", exc_info=e)


def is_asset_deletable(asset: Asset):
    """
    Checks if an asset can be deleted.
    currently Assets with titles "Original" or "Files" are protected and cannot be deleted.
    Further logics can be added here.
    """
    if asset.title in ["Original", "Files"]:
        return False
    return True


def unlink_asset(resource: ResourceBase, asset: Asset, remove_asset: bool = True):
    """
    Unlinks an asset from a resource. By default, the asset is deleted.

    Behavior:
    - If the asset title is "Original" or "Files", it will not be unlinked or deleted.
    - If remove_asset=False:
        * Only the link between the resource and asset is removed.
    - If remove_asset=True(default):
        * If the asset is linked to other resources, only the link is removed.
        * If the asset is only linked to the provided resource, the asset itself is deleted,
          which in turn triggers the deletion of the associated files.
    """
    if not is_asset_deletable(asset):
        return False, "Asset is protected and will not be unlinked or deleted."

    link = Link.objects.filter(resource=resource, asset=asset).first()
    if not link:
        return False, "Link between resource and asset not found."

    if not remove_asset:
        # Always just remove the link
        link.delete()
        msg = f"Asset {asset.pk} was unlinked from resource {resource.pk} but not deleted."
        logger.info(msg)
        return True, msg

    # Check if the asset is linked to other resources
    other_links_count = Link.objects.filter(asset=asset).exclude(pk=link.pk).count()

    if other_links_count > 0:
        # Only delete the link
        link.delete()
        msg = f"Asset {asset.pk} was unlinked but not deleted, because still linked to {other_links_count} resources"
        logger.info(msg)
        return True, msg
    else:
        # Delete the link and the asset. Post delete signal call the handler to remove the file eg: LocalAsset which will handle the deletion of the physical file.
        asset_pk = asset.pk
        link.delete()
        asset.delete()
        msg = f"Asset {asset_pk} was unlinked and deleted from resource {resource.pk}."
        logger.info(msg)
        return True, msg