uploads: Move unauth-signed tokens into view.

2025-11-06 23:13:25 +00:00 · 2022-12-14 22:00:43 +00:00
parent ed6d62a9e7
commit 58dc1059f3
2 changed files with 29 additions and 33 deletions
--- a/zerver/lib/upload/local.py
+++ b/zerver/lib/upload/local.py
@@ -1,16 +1,11 @@
-import base64
-import binascii
 import logging
 import os
 import random
 import secrets
 import shutil
-from datetime import timedelta
 from typing import IO, Any, Callable, Literal, Optional

 from django.conf import settings
-from django.core.signing import BadSignature, TimestampSigner
-from django.urls import reverse

 from zerver.lib.avatar_hash import user_avatar_path
 from zerver.lib.upload.base import (
@@ -68,28 +63,6 @@ def delete_local_file(type: Literal["avatars", "files"], path: str) -> bool:
    return False


-LOCAL_FILE_ACCESS_TOKEN_SALT = "local_file_"
-
-
-def generate_unauthed_file_access_url(path_id: str) -> str:
-    signed_data = TimestampSigner(salt=LOCAL_FILE_ACCESS_TOKEN_SALT).sign(path_id)
-    token = base64.b16encode(signed_data.encode()).decode()
-
-    filename = path_id.split("/")[-1]
-    return reverse("local_file_unauthed", args=[token, filename])
-
-
-def get_local_file_path_id_from_token(token: str) -> Optional[str]:
-    signer = TimestampSigner(salt=LOCAL_FILE_ACCESS_TOKEN_SALT)
-    try:
-        signed_data = base64.b16decode(token).decode()
-        path_id = signer.unsign(signed_data, max_age=timedelta(seconds=60))
-    except (BadSignature, binascii.Error):
-        return None
-
-    return path_id
-
-
 class LocalUploadBackend(ZulipUploadBackend):
    def get_public_upload_root_url(self) -> str:
        return "/user_avatars/"