Page MenuHomePhabricator
Create Task
Maniphest T6007

"File link has expired" when trying to shared direct links to images
Closed, DuplicatePublic
Actions

Description

I don't think this ever used to happen. Now whenever I use the "View File" link and try to share it or embed it on an external website, I get a "File link has expired" message.

Is there any way to get direct links to images now?

Related Objects

Event Timeline

hach-que created this task.Aug 31 2014, 1:09 AM
hach-que raised the priority of this task from to Needs Triage.
hach-que updated the task description. (Show Details)
hach-que added a project: Phabricator.
hach-que added subscribers: hach-que, epriestley.
epriestley added a comment.Sep 1 2014, 6:40 PM

Files now have a "cacheable" flag, which is approximately equivalent to "public" -- internally, canCDN, i.e., can distribute over a content distribution network.

We currently set this flag on files uploaded as profile images, on generated thumbnails, and on files uploaded as macros.

Files with this flag allow public access without a one-time token. Flags without it require the viewer to carry a token with them, essentially proving they have current access to the file itself (and don't just know the URL). This stuff was added in T5685 and related tasks, primarily to give installs greater confidence about using Phabricator to store sensitive documents. Although the one-time tokens aren't really much more secure than the unguessable URLs alone in a practical sense, they feel a lot more secure.

This doesn't address two use cases, which are sort of the same use case, but not quite:

  • sharing arbitrary images with public users;
  • sharing arbitrary files (e.g., via Phragment) with public users.

We could do a couple of things here, I think:

  1. Let "public" visibility imply the "canCDN" flag. This will fix the images use case for public installs pretty naturally, but leaves the binary use case unaffected and doesn't help non-public installs (although maybe that's OK-ish?).
  2. Let users (only users with "Edit" permission?) generate a public link to the file? Or a link with options (expiry, one-time-use, etc)? This seems kind of involved.
  3. Let files dropped onto the home page get the canCDN flag.
    • Or, when you hover over the home page, let the user drop on the left half to create a private file (user-only visibility policy) and the right half to create a public (default policy, canCDN) file?
    • Seems sort of tricky for users.
  4. Let users turn canCDN on for a file? Also doesn't feel great.

Do any of these feel clearly better/worse to you? I don't really love any of them, but would like to find some solution that allows users to willingly share files with anonymous/public users.

hach-que added a comment.Sep 1 2014, 11:56 PM

I think public accessibility implying canCDN is the easiest fix here.

Basically the use case was that I dragged a screenshot onto the homepage, which made the file public, but then I couldn't share the direct image link.

Implying canCDN from public visibility should also fix any potential issues with Phragment, since you can just set the top level item to Public, tick the "recursive" option when editing policies, and then everything should work as expected.

chad triaged this task as Normal priority.Sep 2 2014, 8:36 PM
chad edited projects, added Files; removed Phabricator.
chasemp added a subscriber: chasemp.Dec 29 2014, 4:08 AM
epriestley mentioned this in T4214: Allow installs to change or supplement the "Phabricator" icon.Feb 25 2015, 8:12 PM
epriestley closed this task as a duplicate of T10262: Scramble file secrets when attached objects change their view policies.Feb 2 2016, 1:15 AM
epriestley mentioned this in T10262: Scramble file secrets when attached objects change their view policies.Feb 2 2016, 1:18 AM
chad mentioned this in T10505: "403 Forbidden" when downloading files.Mar 2 2016, 10:31 PM
Phabricator · Built by Phacility