refactor: move assets to their own model (#2301)

* refactor: move assets to their own model * move asset privacy checks to the model
author: Mohamed Bassem <me@mbassem.com> 2025-12-24 13:58:37 +0200
committer: GitHub <noreply@github.com> 2025-12-24 11:58:37 +0000
commit: 013ca67c151b51575151424084f6358522b83579 (patch)
tree: c7c57c518b6c57d6cbab9d0620cc027d51fa06e0 /packages/trpc/models
parent: 314c363e5ca69a50626650ade8968feec583e5ce (diff)
download: karakeep-013ca67c151b51575151424084f6358522b83579.tar.zst
1 files changed, 252 insertions, 0 deletions
diff --git a/packages/trpc/models/assets.ts b/packages/trpc/models/assets.ts
new file mode 100644
index 00000000..98b89594
--- /dev/null
+++ b/packages/trpc/models/assets.ts
@@ -0,0 +1,252 @@
+import { TRPCError } from "@trpc/server";
+import { and, desc, eq, sql } from "drizzle-orm";
+import { z } from "zod";
+
+import { assets } from "@karakeep/db/schema";
+import { deleteAsset } from "@karakeep/shared/assetdb";
+import { zAssetTypesSchema } from "@karakeep/shared/types/bookmarks";
+
+import { AuthedContext } from "..";
+import {
+  isAllowedToAttachAsset,
+  isAllowedToDetachAsset,
+  mapDBAssetTypeToUserType,
+  mapSchemaAssetTypeToDB,
+} from "../lib/attachments";
+import { BareBookmark } from "./bookmarks";
+
+export class Asset {
+  constructor(
+    protected ctx: AuthedContext,
+    public asset: typeof assets.$inferSelect,
+  ) {}
+
+  static async fromId(ctx: AuthedContext, id: string): Promise<Asset> {
+    const assetdb = await ctx.db.query.assets.findFirst({
+      where: eq(assets.id, id),
+    });
+
+    if (!assetdb) {
+      throw new TRPCError({
+        code: "NOT_FOUND",
+        message: "Asset not found",
+      });
+    }
+
+    const asset = new Asset(ctx, assetdb);
+
+    if (!(await asset.canUserView())) {
+      throw new TRPCError({
+        code: "NOT_FOUND",
+        message: "Asset not found",
+      });
+    }
+
+    return asset;
+  }
+
+  static async list(
+    ctx: AuthedContext,
+    input: {
+      limit: number;
+      cursor: number | null;
+    },
+  ) {
+    const page = input.cursor ?? 1;
+    const [results, totalCount] = await Promise.all([
+      ctx.db
+        .select()
+        .from(assets)
+        .where(eq(assets.userId, ctx.user.id))
+        .orderBy(desc(assets.size))
+        .limit(input.limit)
+        .offset((page - 1) * input.limit),
+      ctx.db
+        .select({ count: sql<number>`count(*)` })
+        .from(assets)
+        .where(eq(assets.userId, ctx.user.id)),
+    ]);
+
+    return {
+      assets: results.map((a) => ({
+        ...a,
+        assetType: mapDBAssetTypeToUserType(a.assetType),
+      })),
+      nextCursor: page * input.limit < totalCount[0].count ? page + 1 : null,
+      totalCount: totalCount[0].count,
+    };
+  }
+
+  static async attachAsset(
+    ctx: AuthedContext,
+    input: {
+      bookmarkId: string;
+      asset: {
+        id: string;
+        assetType: z.infer<typeof zAssetTypesSchema>;
+      };
+    },
+  ) {
+    const [asset] = await Promise.all([
+      Asset.fromId(ctx, input.asset.id),
+      this.ensureBookmarkOwnership(ctx, input.bookmarkId),
+    ]);
+    asset.ensureOwnership();
+
+    if (!isAllowedToAttachAsset(input.asset.assetType)) {
+      throw new TRPCError({
+        code: "BAD_REQUEST",
+        message: "You can't attach this type of asset",
+      });
+    }
+
+    const [updatedAsset] = await ctx.db
+      .update(assets)
+      .set({
+        assetType: mapSchemaAssetTypeToDB(input.asset.assetType),
+        bookmarkId: input.bookmarkId,
+      })
+      .where(and(eq(assets.id, input.asset.id), eq(assets.userId, ctx.user.id)))
+      .returning();
+
+    return {
+      id: updatedAsset.id,
+      assetType: mapDBAssetTypeToUserType(updatedAsset.assetType),
+      fileName: updatedAsset.fileName,
+    };
+  }
+
+  static async replaceAsset(
+    ctx: AuthedContext,
+    input: {
+      bookmarkId: string;
+      oldAssetId: string;
+      newAssetId: string;
+    },
+  ) {
+    const [oldAsset, newAsset] = await Promise.all([
+      Asset.fromId(ctx, input.oldAssetId),
+      Asset.fromId(ctx, input.newAssetId),
+      this.ensureBookmarkOwnership(ctx, input.bookmarkId),
+    ]);
+    oldAsset.ensureOwnership();
+    newAsset.ensureOwnership();
+
+    if (
+      !isAllowedToAttachAsset(
+        mapDBAssetTypeToUserType(oldAsset.asset.assetType),
+      )
+    ) {
+      throw new TRPCError({
+        code: "BAD_REQUEST",
+        message: "You can't attach this type of asset",
+      });
+    }
+
+    await ctx.db.transaction(async (tx) => {
+      await tx.delete(assets).where(eq(assets.id, input.oldAssetId));
+      await tx
+        .update(assets)
+        .set({
+          bookmarkId: input.bookmarkId,
+          assetType: oldAsset.asset.assetType,
+        })
+        .where(eq(assets.id, input.newAssetId));
+    });
+
+    await deleteAsset({
+      userId: ctx.user.id,
+      assetId: input.oldAssetId,
+    }).catch(() => ({}));
+  }
+
+  static async detachAsset(
+    ctx: AuthedContext,
+    input: {
+      bookmarkId: string;
+      assetId: string;
+    },
+  ) {
+    const [asset] = await Promise.all([
+      Asset.fromId(ctx, input.assetId),
+      this.ensureBookmarkOwnership(ctx, input.bookmarkId),
+    ]);
+
+    if (
+      !isAllowedToDetachAsset(mapDBAssetTypeToUserType(asset.asset.assetType))
+    ) {
+      throw new TRPCError({
+        code: "BAD_REQUEST",
+        message: "You can't detach this type of asset",
+      });
+    }
+
+    const result = await ctx.db
+      .delete(assets)
+      .where(
+        and(
+          eq(assets.id, input.assetId),
+          eq(assets.bookmarkId, input.bookmarkId),
+        ),
+      );
+    if (result.changes == 0) {
+      throw new TRPCError({ code: "NOT_FOUND" });
+    }
+    await deleteAsset({ userId: ctx.user.id, assetId: input.assetId }).catch(
+      () => ({}),
+    );
+  }
+
+  private static async ensureBookmarkOwnership(
+    ctx: AuthedContext,
+    bookmarkId: string,
+  ) {
+    const bookmark = await BareBookmark.bareFromId(ctx, bookmarkId);
+    bookmark.ensureOwnership();
+  }
+
+  ensureOwnership() {
+    if (this.asset.userId != this.ctx.user.id) {
+      throw new TRPCError({
+        code: "FORBIDDEN",
+        message: "User is not allowed to access resource",
+      });
+    }
+  }
+
+  static async ensureOwnership(ctx: AuthedContext, assetId: string) {
+    return (await Asset.fromId(ctx, assetId)).ensureOwnership();
+  }
+
+  async canUserView(): Promise<boolean> {
+    // Asset owner can always view it
+    if (this.asset.userId === this.ctx.user.id) {
+      return true;
+    }
+
+    // If asset is attached to a bookmark, check bookmark access permissions
+    if (this.asset.bookmarkId) {
+      try {
+        // This throws if the user doesn't have access to the bookmark
+        await BareBookmark.bareFromId(this.ctx, this.asset.bookmarkId);
+        return true;
+      } catch (e) {
+        if (e instanceof TRPCError && e.code === "FORBIDDEN") {
+          return false;
+        }
+        throw e;
+      }
+    }
+
+    return false;
+  }
+
+  async ensureCanView() {
+    if (!(await this.canUserView())) {
+      throw new TRPCError({
+        code: "NOT_FOUND",
+        message: "Asset not found",
+      });
+    }
+  }
+}
author	Mohamed Bassem <me@mbassem.com>	2025-12-24 13:58:37 +0200
committer	GitHub <noreply@github.com>	2025-12-24 11:58:37 +0000
commit	013ca67c151b51575151424084f6358522b83579 (patch)
tree	c7c57c518b6c57d6cbab9d0620cc027d51fa06e0 /packages/trpc/models
parent	314c363e5ca69a50626650ade8968feec583e5ce (diff)
download	karakeep-013ca67c151b51575151424084f6358522b83579.tar.zst