Files
upage-git/app/routes/assets.$userId.$filename.ts
2025-09-24 17:02:44 +08:00

54 lines
1.7 KiB
TypeScript

import { type LoaderFunctionArgs } from '@remix-run/node';
import fs from 'fs';
import { getUser } from '~/lib/.server/auth';
import { createScopedLogger } from '~/lib/.server/logger';
import { storageProvider } from '~/lib/storage/index.server';
const logger = createScopedLogger('api.assets');
/**
* 处理文件访问请求, 只有文件所有者可以访问
*/
export async function loader({ request, params }: LoaderFunctionArgs) {
try {
const { userId, filename } = params;
if (!userId || !filename) {
return new Response('文件不存在', { status: 404 });
}
const authResult = await getUser(request);
const currentUserId = authResult.userInfo?.sub;
const fileExists = await storageProvider.fileExists(userId, filename);
if (!fileExists) {
logger.debug('文件不存在', { userId, filename });
return new Response('文件不存在', { status: 404 });
}
if (currentUserId !== userId) {
logger.warn('无权访问文件', { userId, currentUserId, filename });
return new Response('无权访问此文件', { status: 403 });
}
const file = await storageProvider.getFile(userId, filename);
if (!file) {
logger.debug('文件不存在', { userId, filename });
return new Response('文件不存在', { status: 404 });
}
const fileContent = await fs.promises.readFile(file.path);
return new Response(new Uint8Array(fileContent), {
headers: {
'Content-Type': file.contentType,
'Content-Length': String(file.size),
'Cache-Control': 'public, max-age=31536000',
},
});
} catch (error) {
logger.error('获取文件失败:', error);
return new Response('服务器错误', { status: 500 });
}
}