Create profileURLImageUpload

akanchhaS · Jan 10, 2025 · 24dda9d · 24dda9d
1 parent b07457a
commit 24dda9d
Showing 1 changed file with 39 additions and 0 deletions.
diff --git a/profileURLImageUpload b/profileURLImageUpload
@@ -0,0 +1,39 @@
+/*
+ * Copyright (c) 2014-2020 Bjoern Kimminich.
+ * SPDX-License-Identifier: MIT
+ */
+
+const fs = require('fs')
+const models = require('../models/index')
+const insecurity = require('../lib/insecurity')
+const request = require('request')
+const logger = require('../lib/logger')
+
+module.exports = function profileImageUrlUpload () {
+  return (req, res, next) => {
+    if (req.body.imageUrl !== undefined) {
+      const url = req.body.imageUrl
+      if (typeof url === "string" && url.match(/(.)*solve\/challenges\/server-side(.)*/) !== null) req.app.locals.abused_ssrf_bug = true
+      const loggedInUser = insecurity.authenticatedUsers.get(req.cookies.token)
+      if (loggedInUser) {
+        const imageRequest = request
+          .get(url)
+          .on('error', function (err) {
+            models.User.findByPk(loggedInUser.data.id).then(user => { return user.update({ profileImage: url }) }).catch(error => { next(error) })
+            logger.warn('Error retrieving user profile image: ' + err.message + '; using image link directly')
+          })
+          .on('response', function (res) {
+            if (res.statusCode === 200) {
+              const ext = ['jpg', 'jpeg', 'png', 'svg', 'gif'].includes(url.split('.').slice(-1)[0].toLowerCase()) ? url.split('.').slice(-1)[0].toLowerCase() : 'jpg'
+              imageRequest.pipe(fs.createWriteStream(`frontend/dist/frontend/assets/public/images/uploads/${loggedInUser.data.id}.${ext}`))
+              models.User.findByPk(loggedInUser.data.id).then(user => { return user.update({ profileImage: `/assets/public/images/uploads/${loggedInUser.data.id}.${ext}` }) }).catch(error => { next(error) })
+            } else models.User.findByPk(loggedInUser.data.id).then(user => { return user.update({ profileImage: url }) }).catch(error => { next(error) })
+          })
+      } else {
+        next(new Error('Blocked illegal activity by ' + req.connection.remoteAddress))
+      }
+    }
+    res.location(process.env.BASE_PATH + '/profile')
+    res.redirect(process.env.BASE_PATH + '/profile')
+  }
+}