feat: serve static files similar to the notebook #361
Conversation
…elist and blacklist rules
|
Thanks for this @maartenbreddels this is not what I had in mind with the inlining but I think that it is a good solution at least for now. Happy to merge this. |
|
|
||
| def get_absolute_path(self, root, path): | ||
| # StaticFileHandler.get always calls this method first, so we use this as the | ||
| # place to check the path. Note that now the path seperator is os dependent (\\ on windows) |
| whitelisted = any(re.fullmatch(pattern, path) for pattern in self.whitelist) | ||
| blacklisted = any(re.fullmatch(pattern, path) for pattern in self.blacklist) | ||
| if not whitelisted: | ||
| raise tornado.web.HTTPError(403, 'File not whitelisted') |
There was a problem hiding this comment.
I think these probably should be 404s to be indistinguishable from the file not existing. If you decide on 403s, though, perhaps a more generic message is better, like the default 403 message, or just now message.
I think it is fine to unconditionally redirect, since that gives no more information.
I think the default should be secure, i.e., no files served. |
but limited by whitelist and blacklist rules.
Issue
When using the following in a Jupyter notebook:
The Jupyter notebook server will happily serve the svg file.
However, in voila, we consider this a security risk, since we do not assume the users are trusted (we don't want to give users access to our files). However, in voila, we'd like this to work as well.
Solution
This PR solves this by having whitelist and blacklist regexes that protect the content that is served. Each request for a file needs to match at least one whitelist regex and NO blacklist regex
E.g. to serve all files, except those starting with private, or notebook files:
To serve only images:
Uncertain
I think that we should not always redirect in the handler.py, since it tells users that a file exists (this gives an attacker information which files exists). I think we should check the rules in two places.
Should the default be as it is now (images, and notebooks/py files always blacklisted)?
TODO: