/** * Deletes a file. * * @param id File ID * @return Response * @throws JSONException */ @DELETE @Path("{id: [a-z0-9\\-]+}") @Produces(MediaType.APPLICATION_JSON) public Response delete(@PathParam("id") String id) throws JSONException { if (!authenticate()) { throw new ForbiddenClientException(); } // Get the file FileDao fileDao = new FileDao(); DocumentDao documentDao = new DocumentDao(); File file; try { file = fileDao.getFile(id); documentDao.getDocument(file.getDocumentId(), principal.getId()); } catch (NoResultException e) { throw new ClientException("FileNotFound", MessageFormat.format("File not found: {0}", id)); } // Delete the file fileDao.delete(file.getId()); // Raise a new file deleted event FileDeletedAsyncEvent fileDeletedAsyncEvent = new FileDeletedAsyncEvent(); fileDeletedAsyncEvent.setFile(file); AppContext.getInstance().getAsyncEventBus().post(fileDeletedAsyncEvent); // Always return ok JSONObject response = new JSONObject(); response.put("status", "ok"); return Response.ok().entity(response).build(); }
/** * Returns a file. * * @param fileId File ID * @return Response * @throws JSONException */ @GET @Path("{id: [a-z0-9\\-]+}/data") @Produces(MediaType.APPLICATION_OCTET_STREAM) public Response data( @PathParam("id") final String fileId, @QueryParam("share") String shareId, @QueryParam("size") String size) throws JSONException { authenticate(); if (size != null) { if (!Lists.newArrayList("web", "thumb").contains(size)) { throw new ClientException("SizeError", "Size must be web or thumb"); } } // Get the file FileDao fileDao = new FileDao(); DocumentDao documentDao = new DocumentDao(); UserDao userDao = new UserDao(); File file; Document document; try { file = fileDao.getFile(fileId); document = documentDao.getDocument(file.getDocumentId()); // Check document visibility ShareDao shareDao = new ShareDao(); if (!shareDao.checkVisibility(document, principal.getId(), shareId)) { throw new ForbiddenClientException(); } } catch (NoResultException e) { throw new ClientException( "FileNotFound", MessageFormat.format("File not found: {0}", fileId)); } // Get the stored file java.io.File storedfile; String mimeType; boolean decrypt = false; if (size != null) { storedfile = Paths.get(DirectoryUtil.getStorageDirectory().getPath(), fileId + "_" + size).toFile(); mimeType = MimeType.IMAGE_JPEG; // Thumbnails are JPEG decrypt = true; // Thumbnails are encrypted if (!storedfile.exists()) { storedfile = new java.io.File(getClass().getResource("/image/file.png").getFile()); mimeType = MimeType.IMAGE_PNG; decrypt = false; } } else { storedfile = Paths.get(DirectoryUtil.getStorageDirectory().getPath(), fileId).toFile(); mimeType = file.getMimeType(); decrypt = true; // Original files are encrypted } // Stream the output and decrypt it if necessary StreamingOutput stream; User user = userDao.getById(document.getUserId()); try { InputStream fileInputStream = new FileInputStream(storedfile); final InputStream responseInputStream = decrypt ? EncryptionUtil.decryptInputStream(fileInputStream, user.getPrivateKey()) : fileInputStream; stream = new StreamingOutput() { @Override public void write(OutputStream outputStream) throws IOException, WebApplicationException { try { ByteStreams.copy(responseInputStream, outputStream); } finally { responseInputStream.close(); outputStream.close(); } } }; } catch (Exception e) { throw new ServerException("FileError", "Error while reading the file", e); } return Response.ok(stream) .header("Content-Type", mimeType) .header( "Expires", new SimpleDateFormat("EEE, dd MMM yyyy HH:mm:ss Z") .format(new Date().getTime() + 3600000 * 24)) .build(); }