93a35fc7be
* Move apifmt * Move safepath * Move Loki package * Regenerate Loki mock * Missing file for Loki
43 lines
1.0 KiB
Go
43 lines
1.0 KiB
Go
package resources
|
|
|
|
import (
|
|
"errors"
|
|
"path"
|
|
|
|
"github.com/grafana/grafana/apps/provisioning/pkg/safepath"
|
|
)
|
|
|
|
var (
|
|
ErrPathTooDeep = errors.New("the path is too deep")
|
|
ErrUnsupportedFileExtension = errors.New("unsupported file extension")
|
|
ErrNotRelative = errors.New("path must be relative to the root")
|
|
)
|
|
|
|
const maxPathDepth = 8
|
|
|
|
// IsPathSupported checks if the file path is supported by the provisioning API.
|
|
// it also validates if the path is safe and if the file extension is supported.
|
|
func IsPathSupported(filePath string) error {
|
|
// Validate the path for any traversal attempts first
|
|
if err := safepath.IsSafe(filePath); err != nil {
|
|
return err
|
|
}
|
|
|
|
if safepath.Depth(filePath) > maxPathDepth {
|
|
return ErrPathTooDeep
|
|
}
|
|
|
|
if safepath.IsAbs(filePath) {
|
|
return ErrNotRelative
|
|
}
|
|
|
|
// Only check file extension if it's not a folder path
|
|
if !safepath.IsDir(filePath) {
|
|
if ext := path.Ext(filePath); ext != ".yml" && ext != ".yaml" && ext != ".json" {
|
|
return ErrUnsupportedFileExtension
|
|
}
|
|
}
|
|
|
|
return nil
|
|
}
|