Merge pull request #225 from leancodepl/feature/file-upload

File upload + Service Provider logos

Author: jakubfijalkowski

.template.config/template.json

@@ -26,6 +26,7 @@
         "**/Migrations/*.cs",
         "**/Configuration/MetabaseConfiguration.cs",
         "**/DataAccess/*.ExamplesDomain.cs",
+        "**/DataAccess/Blobs/ServiceProviderLogoStorage.cs",
         "**/DataAccess/Queries/*.cs",
         "**/DataAccess/Repositories/*.cs",
         "**/Handlers/Booking/**/*.cs",
@@ -43,6 +44,7 @@
         "**/*.Domain.Tests/**/*.cs",
         "**/*.IntegrationTests/Booking/**",
         "**/*.IntegrationTests/Example/**",
+        "**/*.IntegrationTests/Helpers/ServiceProviderLogoStorageMock.cs",
         "**/*.Tests/Handlers/**",
         "**/Jenkinsfile",
         "**/docs"

backend/src/Examples/ExampleApp.Examples.Contracts/Booking/Management/ServiceProviderLogoUploadLink.cs

@@ -0,0 +1,13 @@
+using LeanCode.Contracts;
+using LeanCode.Contracts.Security;
+
+namespace ExampleApp.Examples.Contracts.Booking.Management;
+
+[AuthorizeWhenHasAnyOf(Auth.Roles.Admin)]
+public class ServiceProviderLogoUploadLink : IQuery<ServiceProviderLogoUploadLinkDTO> { }
+
+public class ServiceProviderLogoUploadLinkDTO
+{
+    public Uri Link { get; set; }
+    public Dictionary<string, string> RequiredHeaders { get; set; }
+}

backend/src/Examples/ExampleApp.Examples.Domain/Booking/Events/ServiceProviderCreated.cs

@@ -0,0 +1,29 @@
+using System.Text.Json.Serialization;
+using LeanCode.DomainModels.Model;
+using LeanCode.TimeProvider;
+
+namespace ExampleApp.Examples.Domain.Booking.Events;
+
+public class ServiceProviderCreated : IDomainEvent
+{
+    public Guid Id { get; }
+    public DateTime DateOccurred { get; }
+
+    public ServiceProviderId ServiceProviderId { get; }
+
+    public ServiceProviderCreated(ServiceProvider serviceProvider)
+    {
+        Id = Guid.NewGuid();
+        DateOccurred = Time.UtcNow;
+
+        ServiceProviderId = serviceProvider.Id;
+    }
+
+    [JsonConstructor]
+    public ServiceProviderCreated(Guid id, DateTime dateOccurred, ServiceProviderId serviceProviderId)
+    {
+        Id = id;
+        DateOccurred = dateOccurred;
+        ServiceProviderId = serviceProviderId;
+    }
+}

backend/src/Examples/ExampleApp.Examples.Domain/Booking/ServiceProvider.cs

@@ -1,3 +1,4 @@
+using ExampleApp.Examples.Domain.Booking.Events;
 using LeanCode.DomainModels.Ids;
 using LeanCode.DomainModels.Model;
 
@@ -44,7 +45,7 @@ public static ServiceProvider Create(
         double ratings
     )
     {
-        return new ServiceProvider
+        var serviceProvider = new ServiceProvider
         {
             Id = ServiceProviderId.New(),
             Name = name,
@@ -56,6 +57,10 @@ double ratings
             Location = location,
             Ratings = ratings,
         };
+
+        DomainEvents.Raise(new ServiceProviderCreated(serviceProvider));
+
+        return serviceProvider;
     }
 }
 

backend/src/Examples/ExampleApp.Examples/DataAccess/Blobs/BaseBlobStorage.cs

@@ -0,0 +1,202 @@
+using System.Diagnostics.CodeAnalysis;
+using Azure.Storage.Blobs;
+using Azure.Storage.Blobs.Models;
+using Azure.Storage.Sas;
+
+namespace ExampleApp.Examples.DataAccess.Blobs;
+
+public abstract class BaseBlobStorage
+{
+    private const string DeleteTagName = "ToDelete";
+    private const string DeleteValue = "1";
+
+    private readonly BlobStorageDelegationKeyProvider keyProvider;
+
+    protected BlobServiceClient Client { get; }
+    protected abstract string ContainerName { get; }
+    protected abstract PublicAccessType DefaultAccessType { get; }
+
+    protected BaseBlobStorage(BlobServiceClient client, BlobStorageDelegationKeyProvider keyProvider)
+    {
+        Client = client;
+        this.keyProvider = keyProvider;
+    }
+
+    public virtual bool IsValid(Uri uri)
+    {
+        var blobBuilder = new BlobUriBuilder(uri, false);
+        return IsValid(blobBuilder);
+    }
+
+    [return: NotNullIfNotNull(nameof(uri))]
+    public virtual Uri? PrepareForStorage(Uri? uri)
+    {
+        if (uri is null)
+        {
+            return null;
+        }
+        else
+        {
+            ValidateUri(uri);
+            return new UriBuilder(uri)
+            {
+                Query = null,
+                Port = -1,
+                Fragment = null,
+            }.Uri;
+        }
+    }
+
+    protected abstract bool IsValidBlobName(string blobName);
+
+    protected async Task<Uri> GetTemporaryUploadLinkAsync(string filename, CancellationToken cancellationToken)
+    {
+        var blob = await GetBlobClientAsync(filename, cancellationToken);
+
+        await blob.UploadAsync(
+            Stream.Null,
+            new BlobUploadOptions { Tags = new Dictionary<string, string> { [DeleteTagName] = DeleteValue } },
+            cancellationToken
+        );
+
+        return await GenerateBlobSasAsync(
+            blob,
+            BlobSasPermissions.Write | BlobSasPermissions.Read,
+            null,
+            cancellationToken
+        );
+    }
+
+    protected async Task CommitTemporaryUploadAsync(Uri uri, CancellationToken cancellationToken)
+    {
+        ValidateUri(uri);
+
+        var blobUri = new BlobUriBuilder(uri);
+        var container = Client.GetBlobContainerClient(ContainerName);
+        var blob = container.GetBlobClient(blobUri.BlobName);
+
+        await blob.SetTagsAsync(new Dictionary<string, string>(), cancellationToken: cancellationToken);
+    }
+
+    protected async Task<Uri> GetPermanentUploadLinkAsync(string filename, CancellationToken cancellationToken)
+    {
+        var blob = await GetBlobClientAsync(filename, cancellationToken);
+
+        return await GenerateBlobSasAsync(
+            blob,
+            BlobSasPermissions.Create | BlobSasPermissions.Write | BlobSasPermissions.Read,
+            null,
+            cancellationToken
+        );
+    }
+
+    protected async Task DeleteAsync(Uri uri, CancellationToken cancellationToken)
+    {
+        ValidateUri(uri);
+
+        var blobUri = new BlobUriBuilder(uri);
+        var container = Client.GetBlobContainerClient(ContainerName);
+        var blob = container.GetBlobClient(blobUri.BlobName);
+        await blob.DeleteIfExistsAsync(DeleteSnapshotsOption.IncludeSnapshots, cancellationToken: cancellationToken);
+    }
+
+    protected async Task<Uri> GetDownloadLinkAsync(
+        string filename,
+        string? contentDisposition = null,
+        CancellationToken cancellationToken = default
+    )
+    {
+        var blob = GetBlobClient(filename);
+        return await GenerateBlobSasAsync(blob, BlobSasPermissions.Read, contentDisposition, cancellationToken);
+    }
+
+    protected async Task<Uri> GetDownloadLinkAsync(
+        Uri uri,
+        string? contentDisposition = null,
+        CancellationToken cancellationToken = default
+    )
+    {
+        var blob = GetBlobClient(uri);
+        return await GenerateBlobSasAsync(blob, BlobSasPermissions.Read, contentDisposition, cancellationToken);
+    }
+
+    protected BlobClient GetBlobClient(string filename)
+    {
+        var container = Client.GetBlobContainerClient(ContainerName);
+        return container.GetBlobClient(filename);
+    }
+
+    protected BlobClient GetBlobClient(Uri uri)
+    {
+        var parsed = Parse(uri);
+        var container = Client.GetBlobContainerClient(ContainerName);
+        return container.GetBlobClient(parsed.BlobName);
+    }
+
+    protected async Task<BlobClient> GetBlobClientAsync(string filename, CancellationToken cancellationToken = default)
+    {
+        var container = Client.GetBlobContainerClient(ContainerName);
+        await container.CreateIfNotExistsAsync(DefaultAccessType, cancellationToken: cancellationToken);
+        return container.GetBlobClient(filename);
+    }
+
+    protected async Task<Uri> GenerateBlobSasAsync(
+        BlobClient blob,
+        BlobSasPermissions permissions,
+        string? contentDisposition = null,
+        CancellationToken cancellationToken = default
+    )
+    {
+        var sasBuilder = new BlobSasBuilder(permissions, DateTimeOffset.UtcNow.AddDays(2))
+        {
+            BlobName = blob.Name,
+            BlobContainerName = blob.BlobContainerName,
+            Resource = "b",
+            StartsOn = DateTimeOffset.UtcNow.AddMinutes(-3),
+            ContentDisposition = contentDisposition,
+        };
+
+        if (Client.CanGenerateAccountSasUri)
+        {
+            return blob.GenerateSasUri(sasBuilder);
+        }
+        else
+        {
+            var userDelegationKey = await keyProvider.GetKeyAsync(cancellationToken);
+            return new BlobUriBuilder(blob.Uri)
+            {
+                Sas = sasBuilder.ToSasQueryParameters(userDelegationKey, Client.AccountName),
+            }.ToUri();
+        }
+    }
+
+    protected void ValidateUri(Uri uri)
+    {
+        if (!IsValid(uri))
+        {
+            throw new ArgumentException("The URI is not a valid logo URI.", nameof(uri));
+        }
+    }
+
+    protected void ValidateUri(BlobUriBuilder uri)
+    {
+        if (!IsValid(uri))
+        {
+            throw new ArgumentException("The URI is not a valid logo URI.", nameof(uri));
+        }
+    }
+
+    protected BlobUriBuilder Parse(Uri uri)
+    {
+        var builder = new BlobUriBuilder(uri);
+        ValidateUri(builder);
+        return builder;
+    }
+
+    private bool IsValid(BlobUriBuilder blobBuilder)
+    {
+        return blobBuilder.AccountName == Client.AccountName
+            && blobBuilder.BlobContainerName == ContainerName
+            && IsValidBlobName(blobBuilder.BlobName);
+    }
+}

backend/src/Examples/ExampleApp.Examples/DataAccess/Blobs/BlobStorageDelegationKeyProvider.cs

@@ -0,0 +1,47 @@
+using Azure.Storage.Blobs;
+using Azure.Storage.Blobs.Models;
+using LeanCode.TimeProvider;
+using Microsoft.Extensions.Caching.Memory;
+
+namespace ExampleApp.Examples.DataAccess.Blobs;
+
+public class BlobStorageDelegationKeyProvider
+{
+    private const string CacheKey = "user_delegation_key-token";
+    private static readonly TimeSpan KeyLifetime = TimeSpan.FromDays(7);
+    private static readonly TimeSpan MaxSasLifetime = TimeSpan.FromDays(2);
+    private static readonly TimeSpan Skew = TimeSpan.FromMinutes(5);
+
+    private readonly Serilog.ILogger logger = Serilog.Log.ForContext<BlobStorageDelegationKeyProvider>();
+
+    private readonly IMemoryCache memoryCache;
+    private readonly BlobServiceClient client;
+
+    public BlobStorageDelegationKeyProvider(IMemoryCache memoryCache, BlobServiceClient client)
+    {
+        this.memoryCache = memoryCache;
+        this.client = client;
+    }
+
+    public Task<UserDelegationKey> GetKeyAsync(CancellationToken cancellationToken)
+    {
+        return memoryCache.GetOrCreateAsync(CacheKey, e => IssueKeyAsync(e, cancellationToken))!;
+    }
+
+    private async Task<UserDelegationKey> IssueKeyAsync(ICacheEntry entry, CancellationToken cancellationToken)
+    {
+        var now = Time.NowWithOffset;
+        var key = await client.GetUserDelegationKeyAsync(now - Skew, now + KeyLifetime, cancellationToken);
+
+        if (key?.Value is null)
+        {
+            logger.Warning("Cannot issue blob storage user delegation key");
+            throw new InvalidOperationException("Cannot issue blob storage user delegation key.");
+        }
+        else
+        {
+            entry.SetAbsoluteExpiration(now + KeyLifetime - MaxSasLifetime - Skew);
+            return key;
+        }
+    }
+}

backend/src/Examples/ExampleApp.Examples/DataAccess/Blobs/ServiceProviderLogoStorage.cs

@@ -0,0 +1,35 @@
+using Azure.Storage.Blobs;
+using Azure.Storage.Blobs.Models;
+
+namespace ExampleApp.Examples.DataAccess.Blobs;
+
+public class ServiceProviderLogoStorage : BaseBlobStorage
+{
+    protected override string ContainerName => "service-providers";
+    protected override PublicAccessType DefaultAccessType => PublicAccessType.Blob;
+
+    public ServiceProviderLogoStorage(BlobServiceClient client, BlobStorageDelegationKeyProvider keyProvider)
+        : base(client, keyProvider) { }
+
+    public Dictionary<string, string> GetRequiredUploadHeaders()
+    {
+        return new() { ["x-ms-blob-type"] = "blockblob" };
+    }
+
+    public virtual Task<Uri> StartLogoUploadAsync(CancellationToken cancellationToken)
+    {
+        return GetTemporaryUploadLinkAsync(Guid.NewGuid().ToString(), cancellationToken);
+    }
+
+    public virtual Task CommitLogoAsync(Uri logoUri, CancellationToken cancellationToken)
+    {
+        return CommitTemporaryUploadAsync(logoUri, cancellationToken);
+    }
+
+    public virtual Task DeleteLogoAsync(Uri logoUri, CancellationToken cancellationToken)
+    {
+        return DeleteAsync(logoUri, cancellationToken);
+    }
+
+    protected override bool IsValidBlobName(string blobName) => Guid.TryParse(blobName, out _);
+}

backend/src/Examples/ExampleApp.Examples/Handlers/Booking/Management/CommitServiceProviderLogosCH.cs

@@ -0,0 +1,25 @@
+using ExampleApp.Examples.DataAccess.Blobs;
+using ExampleApp.Examples.Domain.Booking;
+using ExampleApp.Examples.Domain.Booking.Events;
+using LeanCode.DomainModels.DataAccess;
+using MassTransit;
+
+namespace ExampleApp.Examples.Handlers.Booking.Management;
+
+public class CommitServiceProviderLogosCH(
+    IRepository<ServiceProvider, ServiceProviderId> serviceProviders,
+    ServiceProviderLogoStorage logoStorage
+) : IConsumer<ServiceProviderCreated>
+{
+    public async Task Consume(ConsumeContext<ServiceProviderCreated> context)
+    {
+        var msg = context.Message;
+        var serviceProvider = await serviceProviders.FindAndEnsureExistsAsync(
+            msg.ServiceProviderId,
+            context.CancellationToken
+        );
+
+        await logoStorage.CommitLogoAsync(serviceProvider.CoverPhoto, context.CancellationToken);
+        await logoStorage.CommitLogoAsync(serviceProvider.Thumbnail, context.CancellationToken);
+    }
+}