root
/
threadr.lostcave.ddnss.de
3
1
Fork 2
Code Issues 1 Pull Requests Projects Releases Wiki Activity

User's avatars shouldn't be fetched from thirdparty URLs #68

New Issue
Open
opened 2025-06-18 03:43:35 +02:00 by jocadbz · 4 comments
jocadbz commented 2025-06-18 03:43:35 +02:00
Collaborator

On our current implementation, we fetch users avatars by setting a direct URL for the image.
You should already know, but that's a really bad practice, and a security risk itself.

Let's uhhh, fix that.

On our current implementation, we fetch users avatars by setting a direct URL for the image. You should already know, but that's a really bad practice, and a security risk itself. Let's uhhh, fix that.
jocadbz added the
Bad Style
ToDo
Priority: High
 labels 2025-06-18 03:43:35 +02:00
jocadbz self-assigned this 2025-06-18 03:43:35 +02:00
jocadbz commented 2025-06-18 03:45:22 +02:00
Poster
Collaborator

As suggested by @BodgeMaster :

  • give the files a unique ID
  • add a table for file id, original file name, file hash, hash algorithm (can be used for attachments in the future)
  • store file on disk with perms 400 in a directory with perms 700, filename is the id+extension
  • directory is configurable
  • user profile has the id
  • <img src="/file_endpoint?id=1337" alt="Username&apos;s Avatar">

I do think that storing pfps as blobs on the database itself is also a viable option.

As suggested by @BodgeMaster : - give the files a unique ID - add a table for file id, original file name, file hash, hash algorithm (can be used for attachments in the future) - store file on disk with perms 400 in a directory with perms 700, filename is the id+extension - directory is configurable - user profile has the id - `<img src="/file_endpoint?id=1337" alt="Username&apos;s Avatar">` I do think that storing pfps as blobs on the database itself is also a viable option.
BodgeMaster commented 2025-06-18 22:52:43 +02:00
Collaborator

re: storing files in a database: That would work for pfps because they’re relatively small but I was thinking a few steps ahead.
Generally, databases are not that great for file storage. ThreadR will need infra for file storage one way or the other to support attachments, so that system might as well serve as a backbone for pfps.

re: storing files in a database: That would work for pfps because they’re relatively small but I was thinking a few steps ahead. Generally, databases are not that great for file storage. ThreadR will need infra for file storage one way or the other to support attachments, so that system might as well serve as a backbone for pfps.
jocadbz commented 2025-06-19 01:52:31 +02:00
Poster
Collaborator

I see. Makes sense.

I see. Makes sense.
jocadbz commented 2025-06-21 21:25:38 +02:00
Poster
Collaborator

Fixed on 7b0528ef36.
Still a very rough implementation, but should work.

Fixed on 7b0528ef36. Still a very rough implementation, but should work.
Sign in to join this conversation.
No Branch/Tag Specified
Branches Tags
jocadbz
master
legacy
Labels
Clear labels   
#19

The ideal label to put on all the things that look kinda hack...   
Bad Style

Convention violations and just overall bad style   
Broken

A bug that compromises usability   
Bug

Unexpected behavior that doesn't compromise usability   
Legacy

Ignore this issue, it exists for historical reasons only.   
Migration

Issues related to moving ThreadR from its old home as the main page on LostCave to a new server and a new domain   
Network

Network issues that need to be addressed   
Priority: High

high priority   
Priority: Low

low priority   
Priority: Normal

normal priority   
Priority: URGENT

Do ASAP   
Suggestion

"No pressure, it's fine."   
ToDo

Does this really need an explanation?   
nofun

Nobody wants to deal with this.
No Label
#19
Bad Style
Broken
Bug
Legacy
Migration
Network
Priority: High
Priority: Low
Priority: Normal
Priority: URGENT
Suggestion
ToDo
nofun
Milestone
Clear milestone
No items
No Milestone
Projects
Clear projects
No project
Assignees
Clear assignees
No Assignees
jocadbz
2 Participants
Notifications
Due Date
The due date is invalid or out of range. Please use the format 'yyyy-mm-dd'.

No due date set.

Dependencies

No dependencies set.

Reference: root/threadr.lostcave.ddnss.de#68
There is no content yet.
Delete Branch "%!s(<nil>)"

Deleting a branch is permanent. Although the deleted branch may exist for a short time before cleaning up, in most cases it CANNOT be undone. Continue?