Get <img> with bearer token

aorzelskiGH · aorzelskiGH · commit 4459d1d8c8bf · 2025-11-11T14:46:34.000+01:00
diff --git a/src/AasxServerBlazor/Controller/ImageController.cs b/src/AasxServerBlazor/Controller/ImageController.cs
@@ -0,0 +1,98 @@
+/********************************************************************************
+* Copyright (c) {2019 - 2024} Contributors to the Eclipse Foundation
+*
+* See the NOTICE file(s) distributed with this work for additional
+* information regarding copyright ownership.
+*
+* This program and the accompanying materials are made available under the
+* terms of the Apache License Version 2.0 which is available at
+* https://www.apache.org/licenses/LICENSE-2.0
+*
+* SPDX-License-Identifier: Apache-2.0
+********************************************************************************/
+
+using System;
+using System.Linq;
+using System.Net;
+using System.Net.Http;
+using System.Net.Http.Headers;
+using System.Threading.Tasks;
+using Microsoft.AspNetCore.Authentication.BearerToken;
+using Microsoft.AspNetCore.Mvc;
+using Microsoft.IdentityModel.Tokens;
+
+namespace AasxServerBlazor.Controller
+{
+    [ApiController]
+    public class ImageController : ControllerBase
+    {
+        [HttpGet]
+        [Route("/blazor/image/{id}")]
+        public async Task<IActionResult> GetImage(string id)
+        {
+            id = Base64UrlEncoder.Decode(id);
+
+            if (!id.StartsWith("$$"))
+            {
+                return NotFound();
+            }
+
+            var split = id.Split("$$");
+            id = split[1];
+
+            var bearer = "";
+            var basicAuth = "";
+            if (split.Length == 4)
+            {
+                switch (split[2])
+                {
+                    case "bearer":
+                        bearer = split[3];
+                        break;
+                    case "basicauth":
+                        basicAuth = split[3];
+                        break;
+                    default:
+                        break;
+                }
+            }
+
+            if (id.Contains("?bearerHead="))
+            {
+                split = id.Split("?bearerHead=");
+                id = split[0];
+                bearer = split[1];
+            }
+
+            var handler = new HttpClientHandler
+            {
+                DefaultProxyCredentials = CredentialCache.DefaultCredentials
+            };
+
+            var client = new HttpClient(handler);
+
+            var request = new HttpRequestMessage(HttpMethod.Get, id);
+
+            if (bearer != "")
+            {
+                request.Headers.Authorization = new AuthenticationHeaderValue("Bearer", bearer);
+            }
+            if (basicAuth != "")
+            {
+                request.Headers.Authorization = new AuthenticationHeaderValue("Basic", basicAuth);
+            }
+
+            var response = await client.SendAsync(request, HttpCompletionOption.ResponseHeadersRead);
+
+            if (!response.IsSuccessStatusCode)
+            {
+                return StatusCode((int)response.StatusCode);
+            }
+
+            var contentType = response.Content.Headers.ContentType?.ToString() ?? "image/jpeg";
+            var stream = await response.Content.ReadAsStreamAsync();
+
+            return new FileStreamResult(stream, contentType);
+        }
+    }
+}
diff --git a/src/AasxServerBlazor/Pages/Pcf2.razor b/src/AasxServerBlazor/Pages/Pcf2.razor
@@ -267,7 +267,7 @@
                                             // <img src=data:image;base64,@productImage class="h-16" style="max-width: @maxWidthPx; object-fit: contain;" />
                                             productImage = getImageLink(cs.credentials, node.productImage, node.envIndex);
                                             if (productImage != null)
-                                            {
+                                            {
                                                 <img src=@productImage class="h-16" style="max-width: @maxWidthPx; object-fit: contain;"/>
                                             }
                                         }
@@ -663,6 +663,10 @@
                     ;
                 }
             }
+            else
+            {
+                ;
+            }
         }
         else
         {
@@ -767,7 +771,11 @@
                                     path = path.Replace("http://", "http://" + userPW + "@");
                                 }
                             }
-
+
+                            if (path.Contains("?bearerHead="))
+                            {
+                                path = "/blazor/image/"+Base64UrlEncoder.Encode("$$"+path);
+                            }
                             return path;
                         }
                         catch
diff --git a/src/AasxServerStandardBib/Credentials.cs b/src/AasxServerStandardBib/Credentials.cs
@@ -186,6 +186,11 @@ public static bool get(AasxTaskService aasxTaskService, List<AasxCredentialsEntr
                                 qp.Add("bearer=" + cList[i].bearer);
                                 result = true;
                                 break;
+                            case "bearerHead":
+                                bearerCheckAndInit(cList[i], aasxTaskService);
+                                qp.Add("bearerHead=" + cList[i].bearer);
+                                result = true;
+                                break;
                             case "querypara":
                                 if (cList[i].parameters.Count == 2)
                                 {
@@ -230,24 +235,24 @@ public static bool get(AasxTaskService aasxTaskService, List<AasxCredentialsEntr
 
         public static bool keep(List<AasxCredentialsEntry> cList, string urlPath, bool blazor = false)
         {
-            bool result = false;
+            var result = false;
 
-            for (int i = 0; i < cList.Count; i++)
-            {
-                int lenPrefix = cList[i].urlPrefix.Length;
-                int lenUrl = urlPath.Length;
-                if (lenPrefix <= lenUrl)
-                {
-                    string u = urlPath.Substring(0, lenPrefix);
-                    if (cList[i].urlPrefix == "*" || u == cList[i].urlPrefix)
-                    {
-                        switch (cList[i].type)
-                        {
-                            case "keeppath":
-                                result = true;
-                                break;
+            for (var i = 0; i < cList.Count; i++)
+            {
+                switch (cList[i].type.ToLower())
+                {
+                    case "keeppath":
+                        var lenPrefix = cList[i].urlPrefix.Length;
+                        var lenUrl = urlPath.Length;
+                        if (lenPrefix <= lenUrl)
+                        {
+                            var u = urlPath.Substring(0, lenPrefix);
+                            if (cList[i].urlPrefix == "*" || u == cList[i].urlPrefix)
+                            {
+                                result = true;
+                            }
                         }
-                    }
+                        break;
                 }
             }
             return result;
diff --git a/src/IO.Swagger.Registry.Lib.V3/Services/RegistryInitializerService.cs b/src/IO.Swagger.Registry.Lib.V3/Services/RegistryInitializerService.cs
@@ -584,15 +584,19 @@ public async Task InitRegistry(List<AasxCredentialsEntry> cList, DateTime timest
                                         var    success  = false;
                                         var    external = false;
                                         string idEncoded;
-                                        var    endpoint = sd.Endpoints?[0].ProtocolInformation?.Href;
-                                        var    s1       = endpoint?.Split("/shells/");
-                                        if (s1 != null && s1.Length == 2)
-                                        {
-                                            var s2 = s1[1].Split("/submodels/");
-                                            if (s2.Length == 2)
-                                            {
-                                                idEncoded = s2[1].Replace("/submodel/", "");
-                                                endpoint  = s1[0] + "/submodels/" + idEncoded;
+                                        var    endpoint = sd.Endpoints?[0].ProtocolInformation?.Href;
+
+                                        if (endpoint != null && !AasxCredentials.keep(cList, endpoint, false))
+                                        {
+                                            var s1 = endpoint?.Split("/shells/");
+                                            if (s1 != null && s1.Length == 2)
+                                            {
+                                                var s2 = s1[1].Split("/submodels/");
+                                                if (s2.Length == 2)
+                                                {
+                                                    idEncoded = s2[1].Replace("/submodel/", "");
+                                                    endpoint = s1[0] + "/submodels/" + idEncoded;
+                                                }
                                             }
                                         }
 
@@ -606,8 +610,17 @@ public async Task InitRegistry(List<AasxCredentialsEntry> cList, DateTime timest
                                             }
 
                                             if (queryPara != "")
-                                            {
-                                                queryPara = "?" + queryPara;
+                                            {
+                                                if (queryPara.StartsWith("bearerHead="))
+                                                {
+                                                    var bearer = queryPara.Replace("bearerHead=", "");
+                                                    queryPara = "";
+                                                    client.DefaultRequestHeaders.Authorization = new AuthenticationHeaderValue("Bearer", bearer);
+                                                }
+                                                else
+                                                {
+                                                    queryPara = "?" + queryPara;
+                                                }
                                             }
 
                                             if (userPW != "")

Original file line number	Diff line number	Diff line change
`@@ -267,7 +267,7 @@`
`267`	`267`	`// <img src=data:image;base64,@productImage class="h-16" style="max-width: @maxWidthPx; object-fit: contain;" />`
`268`	`268`	`productImage = getImageLink(cs.credentials, node.productImage, node.envIndex);`
`269`	`269`	`if (productImage != null)`
`270`		`- {`
	`270`	`+ {`
`271`	`271`	`<img src=@productImage class="h-16" style="max-width: @maxWidthPx; object-fit: contain;"/>`
`272`	`272`	`}`
`273`	`273`	`}`
`@@ -663,6 +663,10 @@`
`663`	`663`	`;`
`664`	`664`	`}`
`665`	`665`	`}`
	`666`	`+ else`
	`667`	`+ {`
	`668`	`+ ;`
	`669`	`+ }`
`666`	`670`	`}`
`667`	`671`	`else`
`668`	`672`	`{`
`@@ -767,7 +771,11 @@`
`767`	`771`	`path = path.Replace("http://", "http://" + userPW + "@");`
`768`	`772`	`}`
`769`	`773`	`}`
`770`		`-`
	`774`	`+`
	`775`	`+ if (path.Contains("?bearerHead="))`
	`776`	`+ {`
	`777`	`+ path = "/blazor/image/"+Base64UrlEncoder.Encode("$$"+path);`
	`778`	`+ }`
`771`	`779`	`return path;`
`772`	`780`	`}`
`773`	`781`	`catch`