Goals
- Learn to store attachments in a way that is accessible by authorized users only
- Learn to prevent users from uploading malicious content
Resources
- Deliver CarrierWave attachments to authorized users only.
- File uploads should validate the file extension
- Self-expiring URLs with Apache (for context, you don't need to implement this)
Exercise
Add the following feature to MovieDB:
- Actors have a contract document
- Only users with an admin role are allowed to upload or download contract documents
- It should be impossible for an unauthorized user to access a contract document, e.g. by guessing the download URL
Create two implementations of this requirement:
- Contracts are saved to
RAILS_ROOT/public/system, but including a non-guessable secret in their path - Contracts are saved to
RAILS_ROOT/storageand can only be downloaded through a controller action that checks authorization
Discuss the pros and cons of both implementation with your mentor. In particular:
- How much load does each implementation cause on the server?
- Can you withdraw access permissions from someone who used to have them?
Hint
Don't forget to add
storageas a "linked_dir" in your config/deploy.rb Show archive.org snapshot
Posted by Henning Koch to makandra Curriculum (2015-08-20 15:10)