spouliot/PowderCoatingLogix
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
edd7389d7d297f829a6dbacda4cdcc899209d625
PowderCoatingLogix/src/PowderCoating.Application/Services/JobPhotoService.cs
T
spouliot edd7389d7d Refactor: extract shared helpers, fix field drift, add assembly services 
- IJobItemAssemblyService / IQuotePricingAssemblyService: centralize job item
  and quote pricing construction that was duplicated across create, rework copy,
  and quote-to-job conversion paths
- BlobFileHelper: single ValidateUpload/GetContentType/SanitizeFileName used by
  6 blob services (JobPhoto, QuotePhoto, ProfilePhoto, CompanyLogo, Equipment,
  Catalog) and BillsController + ExpensesController, removing 8 private copies
- PagedResult<T>.From(): static factory eliminates 6-line boilerplate in 11
  controllers (Appointments, Customers, Equipment, Inventory, Invoices, Jobs,
  Maintenance, CompanyUsers, PlatformUsers, Quotes, Vendors)
- AccountingDropdownHelper: single LoadAsync() call replaces duplicate
  vendor/account/job queries in BillsController and ExpensesController
- JobTemplateItem: add IsSalesItem + Sku fields with migration; propagate
  through JobTemplatesController snapshot copy and GetTemplatesJson projection,
  and JobsController template-application path
- Test assertions updated for standardized BlobFileHelper error messages

Co-Authored-By: Claude Sonnet 4.6 <noreply@anthropic.com>
2026-05-09 22:12:33 -04:00

135 lines
5.8 KiB
C#
Raw Blame History

using Microsoft.AspNetCore.Http;
using Microsoft.Extensions.Logging;
using Microsoft.Extensions.Options;
using PowderCoating.Application.Configuration;
using PowderCoating.Application.Interfaces;
using PowderCoating.Core.Enums;
namespace PowderCoating.Application.Services;
/// <summary>
/// Manages job progress/completion photos stored in Azure Blob Storage.
/// Photos are stored in the <c>jobimages</c> container under the path
/// <c>{companyId}/job-photos/{jobId}/{guid}{ext}</c>.
/// <para>
/// A random GUID is used in the blob name (instead of a sequential ID or the
/// original filename) to prevent direct enumeration of photos across jobs by
/// guessing predictable URLs — a common IDOR (Insecure Direct Object Reference)
/// vulnerability pattern.
/// </para>
/// </summary>
public class JobPhotoService : IJobPhotoService
{
private readonly IAzureBlobStorageService _blobService;
private readonly StorageSettings _settings;
private readonly ILogger<JobPhotoService> _logger;
/// <summary>Image extensions accepted for job photos.</summary>
private static readonly string[] AllowedImageTypes = [".jpg", ".jpeg", ".png", ".gif", ".webp"];
/// <summary>Maximum photo size accepted on upload (10 MB).</summary>
private const long MaxPhotoSize = 10 * 1024 * 1024; // 10 MB
/// <summary>
/// Initialises the service with the blob storage provider, storage
/// configuration, and a logger for upload audit messages.
/// </summary>
public JobPhotoService(
IAzureBlobStorageService blobService,
IOptions<StorageSettings> settings,
ILogger<JobPhotoService> logger)
{
_blobService = blobService;
_settings = settings.Value;
_logger = logger;
}
/// <summary>
/// Validates and uploads a job photo to Azure Blob Storage.
/// A GUID is generated for the blob name to prevent IDOR enumeration attacks —
/// without it, an attacker could iterate <c>/job-photos/42/1.jpg</c>,
/// <c>/job-photos/42/2.jpg</c>, etc. to access another company's photos.
/// The <paramref name="caption"/> and <paramref name="photoType"/> parameters
/// are accepted for API symmetry but are persisted by the caller (controller)
/// in the <c>JobPhoto</c> entity, not by this service.
/// </summary>
/// <param name="file">The uploaded image file from the HTTP request.</param>
/// <param name="jobId">The job record's database ID.</param>
/// <param name="companyId">The tenant company's database ID (for path scoping).</param>
/// <param name="caption">Optional display caption stored by the caller.</param>
/// <param name="photoType">Photo classification (Before, After, Progress, etc.).</param>
/// <returns>
/// A tuple with a success flag, the stored blob path (on success), and a
/// human-readable error message (on failure).
/// </returns>
public async Task<(bool Success, string FilePath, string ErrorMessage)> SaveJobPhotoAsync(
IFormFile file,
int jobId,
int companyId,
string? caption = null,
JobPhotoType photoType = JobPhotoType.Progress)
{
var (isValid, extension, error) = BlobFileHelper.ValidateUpload(file, AllowedImageTypes, MaxPhotoSize);
if (!isValid)
return (false, string.Empty, error);
// SECURITY: Use GUID for blob name to prevent enumeration
var blobName = $"{companyId}/job-photos/{jobId}/{Guid.NewGuid()}{extension}";
var contentType = BlobFileHelper.GetContentType(extension);
using var stream = file.OpenReadStream();
var result = await _blobService.UploadAsync(_settings.Containers.JobImages, blobName, stream, contentType);
if (!result.Success)
return (false, string.Empty, result.ErrorMessage);
_logger.LogInformation("Job photo saved: {BlobName} for job {JobId}", blobName, jobId);
return (true, blobName, string.Empty);
}
/// <summary>
/// Deletes the job photo blob at the given path from Azure Blob Storage.
/// Called when a user removes a photo from the Job Details view.
/// </summary>
/// <param name="filePath">Blob-relative path previously returned by <see cref="SaveJobPhotoAsync"/>.</param>
/// <returns>Success flag and an error message on failure.</returns>
public async Task<(bool Success, string ErrorMessage)> DeleteJobPhotoAsync(string filePath)
{
if (string.IsNullOrWhiteSpace(filePath))
return (false, "File path is required.");
return await _blobService.DeleteAsync(_settings.Containers.JobImages, filePath);
}
/// <summary>
/// Downloads the raw bytes of a job photo for serving through the controller's
/// photo-proxy endpoint (which enforces tenant authorization before streaming).
/// </summary>
/// <param name="filePath">Blob-relative path of the photo.</param>
/// <returns>
/// A tuple with a success flag, the raw file bytes, the MIME content type,
/// and an error message on failure.
/// </returns>
public async Task<(bool Success, byte[] FileContent, string ContentType, string ErrorMessage)> GetJobPhotoAsync(string filePath)
{
if (string.IsNullOrWhiteSpace(filePath))
return (false, Array.Empty<byte>(), string.Empty, "File path is required.");
return await _blobService.DownloadAsync(_settings.Containers.JobImages, filePath);
}
/// <summary>
/// Checks whether a photo blob exists without downloading its content.
/// </summary>
/// <param name="filePath">Blob-relative path to check.</param>
/// <returns><c>true</c> if the blob exists; otherwise <c>false</c>.</returns>
public async Task<bool> JobPhotoExistsAsync(string filePath)
{
if (string.IsNullOrWhiteSpace(filePath))
return false;
return await _blobService.ExistsAsync(_settings.Containers.JobImages, filePath);
}
}
Reference in New Issue View Git Blame Copy Permalink