Update create-signed-file endpoint to return presigned url

Author: adriaanwm

apps/file/libs.py

@@ -82,25 +82,23 @@ def signed_url(
 
     Returns a dict:
         result = {
-            'data': dict
+            'presigned_url': string,
+            'content_type': string,
             'url': string
         }
 
     To upload a file:
-        - send a post request to result['data']['url']
-        - include the following form data:
-            - 'file': the file from the file html input
-            - each key/value in result['data']['fields']
+        - send a PUT request to result['presigned_url']
+        - make sure Content-Type header is result['content_type']
+        - make the file the body of the request
 
     Once uploaded, the file will be at result['url']
-
-    reference:
-        https://devcenter.heroku.com/articles/s3-upload-python
     '''
     content_type = content_type or mimetypes.guess_type(file_name)[0]
+    has_file_ext = len(file_name.split('.')) > 1
     file_ext = file_name.split('.')[-1]
-    file_name = uuid4().hex if file_name is None else file_name
-    if file_name.endswith(file_ext):
+    file_name = uuid4().hex if file_name is None else f'{uuid4().hex}-{file_name}'
+    if has_file_ext:
         ext_len = len(file_ext) + 1
         file_name = file_name[:-ext_len]
 
@@ -111,21 +109,19 @@ def signed_url(
         aws_secret_access_key=secret
     )
 
-    presigned_post = s3.generate_presigned_post(
-        Bucket=bucket,
-        Key=destination_name,
-        Fields={'acl': permissions, 'Content-Type': content_type},
-        Conditions=[
-            {'acl': permissions},
-            {'Content-Type': content_type}
-        ],
-        ExpiresIn=expires_in
+    presigned_url = s3.generate_presigned_url(
+        'put_object',
+        Params={
+            'Bucket': bucket,
+            'Key': destination_name,
+            'ACL': permissions,
+            'ContentType': content_type
+        },
+        ExpiresIn=3600
     )
 
     return {
-        'data': presigned_post,
-        'url': 'https://{}.s3.amazonaws.com/{}'.format(
-            bucket,
-            destination_name
-        )
+        'presigned_url': presigned_url,
+        'content_type': content_type,
+        'url': presigned_url.split('?')[0]
     }

apps/file/serializers.py

@@ -1,5 +1,3 @@
-import mimetypes
-
 from django.contrib.auth import get_user_model
 from rest_framework import serializers
 
@@ -43,7 +41,8 @@ class CreateSignedFileSerializer(serializers.Serializer):
 
     file_id = serializers.IntegerField(read_only=True)
     url = serializers.URLField(read_only=True)
-    s3_data = serializers.JSONField(read_only=True)
+    presigned_url = serializers.URLField(read_only=True)
+    content_type = serializers.CharField(read_only=True)
 
     def create(self, validated_data):
         file_name = validated_data['file_name'].replace(' ', '_')
@@ -53,18 +52,15 @@ def create(self, validated_data):
             content_type=validated_data.get('content_type', None)
         )
 
-        mime_type, encoding = mimetypes.guess_type(signed['url'])
-
         file_obj = File.objects.create(
             owner=self.context['request'].user,
-            mime_type=mime_type or ''
+            mime_type=signed['content_type']
         )
 
-        file_obj.upload.name = file_name
+        file_obj.upload.name = signed['url'].split('/')[-1]
         file_obj.save()
 
         return {
-            's3_data': signed['data'],
-            'url': signed['url'],
+            **signed,
             'file_id': file_obj.id
         }

apps/file/tests.py

@@ -27,7 +27,6 @@ def test_signed_file(self):
         response = self.client.post(url, {'file_name': "file.jpg"}, format='json')
         self.assertIn('file_id', response.data)
         self.assertIn('url', response.data)
-        self.assertIn('s3_data', response.data)
-        self.assertIn('url', response.data['s3_data'])
-        self.assertIn('fields', response.data['s3_data'])
+        self.assertIn('content_type', response.data)
+        self.assertIn('presigned_url', response.data)
         self.assertEqual(response.data['url'], File.objects.last().upload.url)

apps/file/urls.py

@@ -4,7 +4,7 @@
 
 
 urlpatterns = [
-    path('create-signed-file', views.CreateSignedFile.as_view(), name='create-signed-file'),
+    path('user/files/create-signed-file', views.CreateSignedFile.as_view(), name='create-signed-file'),
     path('files', views.UploadFile.as_view(), name='upload-file'),
     path('files/<int:pk>', views.FileDetail.as_view(), name='file-detail'),
 ]

project/settings.py

@@ -264,7 +264,7 @@
 AWS_DEFAULT_REGION = os.environ.get('BUCKETEER_AWS_REGION')
 AWS_SECRET_ACCESS_KEY = os.environ.get('BUCKETEER_AWS_SECRET_ACCESS_KEY')
 AWS_STORAGE_BUCKET_NAME = os.environ.get('BUCKETEER_BUCKET_NAME')
-AWS_LOCATION = ''
+AWS_LOCATION = os.environ.get('AWS_LOCATION', '')
 AWS_DEFAULT_ACL = 'public-read'
 AWS_QUERYSTRING_AUTH = False
 

project/urls.py

@@ -14,8 +14,8 @@
     path('admin/', admin.site.urls),
 
     # Apps
-    path('', include('apps.file.urls')),
-    path('', include('apps.user.urls')),
+    path('api/', include('apps.file.urls')),
+    path('api/', include('apps.user.urls')),
 
     # DRF API
     path('api/', api_root, name='index'),

query-string-list.py

@@ -0,0 +1,141 @@
+import uuid
+from typing import TypeVar, Generic, List, Any, Callable, get_args
+from pydantic import Field
+from pydantic_core import core_schema
+from ninja.filter_schema import FilterSchema as NinjaFilterSchema # Use alias to avoid name clash
+
+# Define a TypeVar for the list items
+T = TypeVar('T')
+
+class QueryStringList(Generic[T]):
+    """
+    A Pydantic type that parses a query string parameter into a list of a specified type.
+    It handles both comma-separated values in a single parameter
+    (e.g., "?tags=movie,tv") and repeated parameters (e.g., "?id=1&id=2").
+    """
+
+    # Store the target item type (e.g., str, int, uuid.UUID)
+    item_type: type
+
+    @classmethod
+    def _parse_value(cls, value: Any) -> List[T]:
+        """
+        Parses the input value (string or list) into a list of the target item type.
+        """
+        items_to_validate: List[str] = []
+
+        if isinstance(value, list):
+            # Input is already a list (from repeated query parameters)
+            items_to_validate = [str(item) for item in value] # Ensure items are strings before validation
+        elif isinstance(value, str):
+            # Input is a string (comma-separated or single value)
+            items_to_validate = [item.strip() for item in value.split(',') if item.strip()]
+        else:
+            # Let Pydantic's validation handle other incorrect types later if necessary,
+            # but ideally, web frameworks pass strings or lists for query params.
+            # We could raise a ValueError here for stricter input checking.
+             raise ValueError(f"Expected list or comma-separated str, got {type(value).__name__}")
+
+
+        validated_items: List[T] = []
+        for item_str in items_to_validate:
+            try:
+                # Attempt to convert/validate the item using the target item_type's constructor
+                # This works well for types like int, float, str, uuid.UUID
+                validated_item = cls.item_type(item_str)
+                validated_items.append(validated_item)
+            except (ValueError, TypeError) as e:
+                # If conversion fails, raise a ValueError that Pydantic can catch
+                raise ValueError(f"Invalid item '{item_str}' for type {cls.item_type.__name__}: {e}") from e
+
+        return validated_items
+
+    @classmethod
+    def __get_pydantic_core_schema__(
+        cls, source: type[Any], handler: Callable[[Any], core_schema.CoreSchema]
+    ) -> core_schema.CoreSchema:
+        """
+        Hook into Pydantic's schema generation process.
+        """
+        # 1. Extract the target item type T from QueryStringList[T]
+        args = get_args(source)
+        if not args or len(args) != 1:
+            raise TypeError(f"{cls.__name__} requires exactly one type argument, e.g., {cls.__name__}[str]")
+        
+        # Store the item type on the class for the parser function to use.
+        # Note: This approach assumes the class object is stable during validation.
+        # Pydantic generally creates validators per schema field instance.
+        cls.item_type = args[0] 
+
+        # 2. Define the core schema:
+        # It should accept either a string or a list as input.
+        # Then, it uses our custom parsing function `_parse_value`.
+
+        # Schema that accepts raw input (list or string)
+        # input_schema = core_schema.union_schema(
+        #     [
+        #         core_schema.list_schema(core_schema.any_schema()), # Accepts lists (repeated params)
+        #         core_schema.str_schema()  # Accepts strings (comma-separated or single)
+        #     ],
+        #     custom_error_type='value_error', # Generic error type if neither matches
+        #     custom_error_message='Input must be a query string or a list of query parameters'
+        # )
+        
+        # Chain the input schema with our custom parser/validator function
+        # `no_info_plain_validator_function` takes a function that accepts only the value.
+        # final_schema = core_schema.no_info_plain_validator_function(
+        #     cls._parse_value, # Our function that handles parsing and type conversion
+        #     # We could potentially chain input_schema first, but letting _parse_value
+        #     # handle both list and str input directly is simpler here.
+        # )
+        
+        # Pydantic V2 often uses function validators directly like this. 
+        # Let's simplify to just the plain validator assuming it gets the raw query param value.
+        
+        # Simplified schema: Directly use our parser function.
+        # Pydantic will pass the raw query parameter value (str or list) to it.
+        return core_schema.no_info_plain_validator_function(cls._parse_value)
+
+# --- Example Usage ---
+
+# Assume you have Django models like this (simplified):
+# class Tag(models.Model):
+#     name = models.CharField(max_length=50, unique=True)
+#
+# class Like(models.Model):
+#     user = models.ForeignKey(User, on_delete=models.CASCADE)
+#     post = models.ForeignKey('Post', on_delete=models.CASCADE)
+#
+# class Post(models.Model):
+#     title = models.CharField(max_length=100)
+#     tags = models.ManyToManyField(Tag, related_name='posts')
+#     likes = models.ManyToManyField(User, through=Like, related_name='liked_posts')
+
+
+# Define your FilterSchema using the custom QueryStringList type
+# class PostFilterSchema(NinjaFilterSchema):
+#     # Handles ?tags=movie,tv OR ?tags=movie&tags=tv
+#     # Maps to queryset filter: Post.objects.filter(tags__name__in=['movie', 'tv'])
+#     tags: QueryStringList[str] | None = Field(None, q='tags__name__in')
+#
+#     # Handles ?liked_by=uuid1,uuid2 OR ?liked_by=uuid1&liked_by=uuid2
+#     # Maps to queryset filter: Post.objects.filter(likes__user__in=[UUID('uuid1'), UUID('uuid2')])
+#     liked_by: QueryStringList[uuid.UUID] | None = Field(None, q='likes__user__in') # 'likes' is the ManyToManyField name from Post to User (through Like)
+
+# Example Ninja API endpoint
+# from ninja import NinjaAPI
+# from django.shortcuts import get_list_or_404
+# from .models import Post # Assuming models.py is in the same directory
+
+# api = NinjaAPI()
+
+# @api.get("/posts")
+# def list_posts(request, filters: PostFilterSchema):
+#     queryset = Post.objects.all()
+#     filtered_queryset = filters.filter(queryset) # Apply the filters
+#
+#     # You might want to apply distinct() if filtering on ManyToMany fields causes duplicates
+#     posts = get_list_or_404(filtered_queryset.distinct())
+#
+#     # Replace with your actual Post schema/serialization
+#     return [{"id": post.id, "title": post.title} for post in posts]