server/api/media/proxy/:id.ts

import { apiRoute, applyConfig } from "@/api";
import { createRoute } from "@hono/zod-openapi";
import type { ContentfulStatusCode, StatusCode } from "hono/utils/http-status";
import { z } from "zod";
import { config } from "~/packages/config-manager";
import { ErrorSchema } from "~/types/api";

export const meta = applyConfig({
    route: "/media/proxy/:id",
    ratelimits: {
        max: 100,
        duration: 60,
    },
    auth: {
        required: false,
    },
});

export const schemas = {
    param: z.object({
        id: z
            .string()
            .transform((val) => Buffer.from(val, "base64url").toString()),
    }),
};

const route = createRoute({
    method: "get",
    path: "/media/proxy/{id}",
    summary: "Proxy media through the server",
    request: {
        params: schemas.param,
    },
    responses: {
        200: {
            description: "Media",
            content: {
                "*": {
                    schema: z.any(),
                },
            },
        },
        400: {
            description: "Invalid URL to proxy",
            content: {
                "application/json": {
                    schema: ErrorSchema,
                },
            },
        },
    },
});

export default apiRoute((app) =>
    app.openapi(route, async (context) => {
        const { id } = context.req.valid("param");

        // Check if URL is valid
        if (!URL.canParse(id)) {
            return context.json(
                { error: "Invalid URL (it should be encoded as base64url" },
                400,
            );
        }

        const media = await fetch(id, {
            headers: {
                "Accept-Encoding": "br",
            },
            // @ts-expect-error Proxy is a Bun-specific feature
            proxy: config.http.proxy.address,
        });

        // Check if file extension ends in svg or svg
        // Cloudflare R2 serves those as application/xml
        if (
            media.headers.get("Content-Type") === "application/xml" &&
            id.endsWith(".svg")
        ) {
            media.headers.set("Content-Type", "image/svg+xml");
        }

        const realFilename =
            media.headers
                .get("Content-Disposition")
                ?.match(/filename="(.+)"/)?.[1] || id.split("/").pop();

        if (!media.body) {
            return context.body(null, media.status as StatusCode);
        }

        return context.body(media.body, media.status as ContentfulStatusCode, {
            "Content-Type":
                media.headers.get("Content-Type") || "application/octet-stream",
            "Content-Length": media.headers.get("Content-Length") || "0",
            "Content-Security-Policy": "",
            "Content-Encoding": "",
            // Real filename
            "Content-Disposition": `inline; filename="${realFilename}"`,
            // biome-ignore lint/suspicious/noExplicitAny: Hono doesn't type this response so this has a TS error
        }) as any;
    }),
);
refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`import { apiRoute, applyConfig } from "@/api";`
			`import { createRoute } from "@hono/zod-openapi";`
fix(api): :label: Use context.body for 204 responses 2024-12-30 16:18:28 +01:00			`import type { ContentfulStatusCode, StatusCode } from "hono/utils/http-status";`
fix(api): :bug: Fix incorrect proxy behaviour 2024-05-06 19:31:12 +02:00			`import { z } from "zod";`
feat(config): :sparkles: Add support for HTTP proxies on outgoing requests 2024-06-26 05:13:40 +02:00			`import { config } from "~/packages/config-manager";`
refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`import { ErrorSchema } from "~/types/api";`
fix(api): :bug: Fix incorrect proxy behaviour 2024-05-06 19:31:12 +02:00
			`export const meta = applyConfig({`
			`route: "/media/proxy/:id",`
			`ratelimits: {`
			`max: 100,`
			`duration: 60,`
			`},`
			`auth: {`
			`required: false,`
			`},`
			`});`

			`export const schemas = {`
			`param: z.object({`
			`id: z`
			`.string()`
			`.transform((val) => Buffer.from(val, "base64url").toString()),`
			`}),`
			`};`

refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`const route = createRoute({`
			`method: "get",`
			`path: "/media/proxy/{id}",`
			`summary: "Proxy media through the server",`
			`request: {`
			`params: schemas.param,`
			`},`
			`responses: {`
			`200: {`
			`description: "Media",`
			`content: {`
			`"*": {`
			`schema: z.any(),`
			`},`
			`},`
			`},`
			`400: {`
			`description: "Invalid URL to proxy",`
			`content: {`
			`"application/json": {`
			`schema: ErrorSchema,`
			`},`
			`},`
			`},`
			`},`
			`});`

refactor: :recycle: Use a typed wrapper for all API endpoints 2024-08-19 20:06:38 +02:00			`export default apiRoute((app) =>`
refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`app.openapi(route, async (context) => {`
			`const { id } = context.req.valid("param");`
fix(api): :bug: Fix incorrect proxy behaviour 2024-05-06 19:31:12 +02:00
refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`// Check if URL is valid`
			`if (!URL.canParse(id)) {`
			`return context.json(`
			`{ error: "Invalid URL (it should be encoded as base64url" },`
			`400,`
			`);`
			`}`
fix(api): :bug: Fix incorrect proxy behaviour 2024-05-06 19:31:12 +02:00
refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`const media = await fetch(id, {`
			`headers: {`
			`"Accept-Encoding": "br",`
			`},`
			`// @ts-expect-error Proxy is a Bun-specific feature`
			`proxy: config.http.proxy.address,`
			`});`
fix(api): :bug: (hopefully) fix some media not being decoded well on proxy 2024-06-06 03:56:40 +02:00
refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`// Check if file extension ends in svg or svg`
			`// Cloudflare R2 serves those as application/xml`
			`if (`
			`media.headers.get("Content-Type") === "application/xml" &&`
			`id.endsWith(".svg")`
			`) {`
			`media.headers.set("Content-Type", "image/svg+xml");`
			`}`
fix(api): :bug: Fix Cloudflare R2 incorrectly serving SVG images as XML 2024-06-16 13:50:32 +02:00
refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`const realFilename =`
			`media.headers`
			`.get("Content-Disposition")`
			`?.match(/filename="(.+)"/)?.[1] \|\| id.split("/").pop();`
feat(api): :sparkles: Add real filename to proxy 2024-06-06 06:07:22 +02:00
fix(api): :label: Use context.body for 204 responses 2024-12-30 16:18:28 +01:00			`if (!media.body) {`
			`return context.body(null, media.status as StatusCode);`
			`}`

			`return context.body(media.body, media.status as ContentfulStatusCode, {`
refactor(api): :recycle: More OpenAPI refactoring work 2024-09-16 15:29:09 +02:00			`"Content-Type":`
			`media.headers.get("Content-Type") \|\| "application/octet-stream",`
			`"Content-Length": media.headers.get("Content-Length") \|\| "0",`
			`"Content-Security-Policy": "",`
			`"Content-Encoding": "",`
			`// Real filename`
			"Content-Disposition": `inline; filename="${realFilename}"`,
			`// biome-ignore lint/suspicious/noExplicitAny: Hono doesn't type this response so this has a TS error`
			`}) as any;`
			`}),`
refactor: :recycle: Use a typed wrapper for all API endpoints 2024-08-19 20:06:38 +02:00			`);`