file-server
file-server copied to clipboard
Published
20 hours ago •
jveverka
jveverka
Simple file server providing REST APIs to access remote file system.
FileServer
This FileServer makes specified base directory accessible via REST APIs allowing you to list, download, upload, move and delete files and create empty directories. It also provides user access control and security.
Features implemented
- Standalone java server, running on linux system.
- Runs on the top of file system of host server.
- Provides access via REST APIs to the file system.
- File system operations supported
- list / read content of the directory
- download file, upload file
- create empty directory
- delete file or directory
- move file or directory
- get audit data for resource (file or directory) like number of downloads, uploads, ...
- Uses Role based access control
- Supports multi-tenancy (many users and roles)
- Access for anonymous users (user not logged in)
- Privileged admin role for server setup and monitoring
- Transport protocols: http or https
- Single jar distribution (~16MB).
- Admin APIs for monitoring and management access and users/roles.
- Audit APIs for admin, to check activities on server.
- Server setup is stored in memory or on file system.
Planned features
- web UI / web client for REST APIs
- compressed directory download
- compressed directory upload
Configurations
FileServer may be configured in several distinct ways. Check configurations examples chapter for more examples.
Requirements for developers
- JDK 11 or later (JDK 8 is supported as well)
- Gradle 7.2 or later
Runtime requirements
- JDK 11 or later (JDK 8 is supported as well)
- Requires read/write access to base directory on local file system.
Rest Endpoints
All REST endpoints use 'dynamic' path. This means that path ** is used as relative path in base directory.
See also postman collection example.
Get list of files
-
GET http://localhost:8888/services/files/list/** - list content directory or subdirectory
curl -X GET http://localhost:8888/services/files/list/ -b /tmp/cookies.txt
Download file
-
GET http://localhost:8888/services/files/download/** - download file on path. file must exist.
curl -X GET http://localhost:8888/services/files/download/path/to/001-data.txt -b /tmp/cookies.txt
Upload file
-
POST http://localhost:8888/services/files/upload/** - upload file, parent directory(ies) must exist before upload
curl -F 'file=@/local/path/to/file.txt' http://localhost:8888/services/files/upload/path/to/001-data.txt -b /tmp/cookies.txt
Delete files and/or directories
-
DELETE http://localhost:8888/services/files/delete/** - delete file or directory
curl -X DELETE http://localhost:8888/services/files/delete/path/to/001-data.txt -b /tmp/cookies.txt
Create empty directory
-
POST http://localhost:8888/services/files/createdir/** - create empty directory
curl -X POST http://localhost:8888/services/files/createdir/path/to/directory -b /tmp/cookies.txt
Move file or directory
-
POST http://localhost:8888/services/files/move/** - move file or directory. If source is file, destination must be also a file, If source is directory, destination must be directory as well.
curl -X POST http://localhost:8888/services/files/move/path/to/source -b /tmp/cookies.txt -d '{ "destinationPath": "path/to/destination" }''
Get audit data
-
GET http://localhost:8888/services/files/audit/** - get audit data for the resource.
curl -X GET http://localhost:8888/services/files/audit/path/to/source -b /tmp/cookies.txt
Security
In order to use file server REST endpoints above, user's http session must be authorized. Users have defined their roles and access rights to files and directories. See this example of server configuration.
login
-
POST http://localhost:8888/services/auth/login
curl -X POST http://localhost:8888/services/auth/login -H "Content-Type: application/json" -d '{ "userName": "master", "password": "secret" }' -c /tmp/cookies.txt
logout
-
GET http://localhost:8888/services/auth/logout
curl -X GET http://localhost:8888/services/auth/logout -b /tmp/cookies.txt
Admin access
Selected role fileserver.admin.role is used for admin access. Users with this role have access to special dedicated REST endpoints.
See this example of server configuration.
Refer to attached postman collection for all admin APIs.
Implemented admin features
- get volume information - base directory, used and free space
- get all open/active user sessions
- terminate selected user's session
- user management
- get name of admin role
- get name of anonymous role
- list all users
- create new user
- remove user
- file access filter management
- list all access filters
- create new access filter
- remove existing access filter
- audit data querying showing activities like:
- login / logout events
- file access events (download, upload, delete, ... all events are recorded)
- user management events
- file access filter management events
Run in Docker
- Run with default configuration application.yml - only for demo purposes.
docker run -d --name file-server-1.3.0 \ --restart unless-stopped \ -e SERVER_PORT=8888 \ -p 8888:8888 jurajveverka/file-server:1.3.0 - Run with custom configuration. Note that customized
application.ymlis located at${FS_CONFIG_DIR}/application.ymlandfileserver.homepoints to/opt/data/filesdocker run -d --name file-server-1.3.0 \ --restart unless-stopped \ -e SERVER_PORT=8888 \ -e APP_CONFIG_PATH=/opt/data/config/application.yml \ -v '${FS_CONFIG_DIR}':/opt/data/config \ -v '${FS_FILES_DIR}':/opt/data/files \ -p 8888:8888 jurajveverka/file-server:1.3.0 - Build your own docker image for amd64 or arm64v8 platform.
Build and Run
Variable fileserver.home in application.yml file defines base directory to be exposed via REST APIs.
gradle clean build test
java -jar build/libs/file-server-1.3.0-SNAPSHOT.jar --spring.config.location=file:./src/main/resources/application.yml
jveverka