Feat/R2 migration (#174)

Author: mjanderson1227

apps/infrastructure-migrator/blob-mover.ts

@@ -0,0 +1,49 @@
+import { db, eq } from "db";
+import { userHackerData } from "db/schema";
+import { S3Client, PutObjectCommand } from "@aws-sdk/client-s3";
+import { staticUploads } from "config";
+
+export const S3 = new S3Client({
+	region: "auto",
+	endpoint: `https://${process.env.CLOUDFLARE_ACCOUNT_ID!}.r2.cloudflarestorage.com`,
+	credentials: {
+		accessKeyId: process.env.R2_ACCESS_KEY_ID!,
+		secretAccessKey: process.env.R2_SECRET_ACCESS_KEY!,
+	},
+});
+
+export async function migrateBlob() {
+	const resumeData = await db.query.userHackerData.findMany({
+		columns: { resume: true, clerkID: true },
+	});
+
+	for (let resumeEntry of resumeData) {
+		const { resume: resumeUrlAsString, clerkID: userID } = resumeEntry;
+		if (!resumeUrlAsString.length) continue;
+
+		const resumeUrl = new URL(resumeUrlAsString);
+		const resumeFetchResponse = await fetch(resumeUrl);
+
+		if (!resumeFetchResponse.ok) {
+			console.log("resume fetch failed");
+		}
+
+		const key = "Migrated" + decodeURIComponent(resumeUrl.pathname);
+
+		const cmd = new PutObjectCommand({
+			Key: key,
+			Bucket: staticUploads.bucketName,
+			ContentType: "application/pdf",
+		});
+
+		S3.send(cmd);
+
+		// New url to correspond to an api route
+		const newResumeUrl = `/api/upload/resume/view?key=${key}`;
+
+		await db
+			.update(userHackerData)
+			.set({ resume: newResumeUrl.toString() })
+			.where(eq(userHackerData.clerkID, userID));
+	}
+}

apps/infrastructure-migrator/driver.ts

@@ -3,6 +3,7 @@ import { drizzle as pgDrizzle } from "drizzle-orm/vercel-postgres";
 import { drizzle } from "drizzle-orm/libsql";
 import * as pgSchema from "./schema";
 import { createClient } from "@libsql/client";
+import { migrateBlob } from "./blob-mover";
 export * from "drizzle-orm";
 import dotenv from "dotenv";
 import * as schema from "db/schema";
@@ -195,6 +196,12 @@ async function migratePostgresSqLite() {
 
 	console.log("Migrated Chats To Users ✅\n\n");
 
+	console.log("Migrating Vercel Blob Files To R2");
+
+	migrateBlob();
+
+	console.log("Migrated Vercel Blob Files To R2");
+
 	return process.exit(0);
 }
 

apps/infrastructure-migrator/package.json

@@ -9,6 +9,7 @@
   "author": "",
   "license": "ISC",
   "dependencies": {
+    "@aws-sdk/client-s3": "^3.758.0",
     "@libsql/client": "^0.14.0",
     "@vercel/postgres": "^0.9.0",
     "config": "workspace:*",

apps/web/package.json

@@ -10,7 +10,9 @@
     "with-env": "dotenv -e ../../.env --"
   },
   "dependencies": {
+    "@aws-sdk/client-s3": "^3.750.0",
     "@aws-sdk/client-ses": "^3.616.0",
+    "@aws-sdk/s3-request-presigner": "^3.750.0",
     "@clerk/nextjs": "^4.29.4",
     "@gsap/react": "^2.1.1",
     "@hookform/resolvers": "^3.9.0",

apps/web/src/actions/registration.ts

@@ -1,7 +1,7 @@
 "use server";
 import { authenticatedAction } from "@/lib/safe-action";
 import { db, sql } from "db";
-import { del } from "@vercel/blob";
+import { del } from "@/lib/utils/server/file-upload";
 import z from "zod";
 import { returnValidationErrors } from "next-safe-action";
 import { hackerRegistrationFormValidator } from "@/validators/shared/registration";
@@ -87,6 +87,7 @@ export const registerHacker = authenticatedAction
 			if (resume != null && resume != c.noResumeProvidedURL) {
 				console.log(resume);
 				console.log("deleting resume");
+
 				await del(resume);
 			}
 			if (

apps/web/src/actions/user-profile-mod.ts

@@ -5,7 +5,7 @@ import { z } from "zod";
 import { db } from "db";
 import { userCommonData, userHackerData } from "db/schema";
 import { eq } from "db/drizzle";
-import { del } from "@vercel/blob";
+import { del } from "@/lib/utils/server/file-upload";
 import { decodeBase64AsFile } from "@/lib/utils/shared/files";
 import { revalidatePath } from "next/cache";
 import { UNIQUE_KEY_CONSTRAINT_VIOLATION_CODE } from "@/lib/constants";

apps/web/src/app/api/upload/pfp/route.ts

@@ -1,35 +1,34 @@
-import { handleBlobUpload, type HandleBlobUploadBody } from "@vercel/blob";
+import { getPresignedUploadUrl } from "@/lib/utils/server/s3";
 import { NextResponse } from "next/server";
 import { auth } from "@clerk/nextjs";
-import c from "config";
+import { staticUploads } from "config";
 
-export async function POST(request: Request): Promise<NextResponse> {
-	const body = (await request.json()) as HandleBlobUploadBody;
-	const { userId } = await auth();
+interface RequestBody {
+	location: string;
+	fileName: string;
+}
 
+// TODO: Verify this route works with create team.
+export async function POST(request: Request): Promise<NextResponse> {
 	try {
-		const jsonResponse = await handleBlobUpload({
-			body,
-			request,
-			onBeforeGenerateToken: async (pathname) => {
-				// Step 1. Generate a client token for the browser to upload the file
-
-				// ⚠️ Authenticate users before allowing client tokens to be generated and sent to browsers. Otherwise, you're exposing your Blob store to be an anonymous upload platform.
-				// See https://nextjs.org/docs/pages/building-your-application/routing/authenticating for more information
+		const body: RequestBody = (await request.json()) as RequestBody;
 
-				if (!userId) {
-					throw new Error("Not authenticated or bad pathname");
-				}
+		const { userId } = auth();
+		if (!userId) {
+			return new NextResponse(
+				"You do not have permission to upload files",
+				{
+					status: 401,
+				},
+			);
+		}
 
-				return {
-					maximumSizeInBytes: c.maxProfilePhotoSizeInBytes, // optional, default and maximum is 500MB
-					allowedContentTypes: ["image/jpeg", "image/png"], // optional, default is no restriction
-				};
-			},
-			onUploadCompleted: async () => undefined,
-		});
+		const randomSeq = crypto.randomUUID();
+		const [fileName, extension] = body.fileName.split(".");
+		const key = `${body.location}/${fileName}-${randomSeq}.${extension}`;
+		const url = await getPresignedUploadUrl(staticUploads.bucketName, key);
 
-		return NextResponse.json(jsonResponse);
+		return NextResponse.json({ url, key });
 	} catch (error) {
 		return NextResponse.json(
 			{ error: (error as Error).message },

apps/web/src/app/api/upload/resume/register/route.ts

@@ -1,35 +1,33 @@
-import { handleBlobUpload, type HandleBlobUploadBody } from "@vercel/blob";
+import { getPresignedUploadUrl } from "@/lib/utils/server/s3";
 import { NextResponse } from "next/server";
 import { auth } from "@clerk/nextjs";
-import c from "config";
+import { staticUploads } from "config";
 
-export async function POST(request: Request): Promise<NextResponse> {
-	const body = (await request.json()) as HandleBlobUploadBody;
-	const { userId } = await auth();
+interface RequestBody {
+	location: string;
+	fileName: string;
+}
 
+export async function POST(request: Request): Promise<NextResponse> {
 	try {
-		const jsonResponse = await handleBlobUpload({
-			body,
-			request,
-			onBeforeGenerateToken: async (pathname) => {
-				// Step 1. Generate a client token for the browser to upload the file
-
-				// ⚠️ Authenticate users before allowing client tokens to be generated and sent to browsers. Otherwise, you're exposing your Blob store to be an anonymous upload platform.
-				// See https://nextjs.org/docs/pages/building-your-application/routing/authenticating for more information
+		const body: RequestBody = (await request.json()) as RequestBody;
 
-				if (!userId) {
-					throw new Error("Not authenticated or bad pathname");
-				}
+		const { userId } = auth();
+		if (!userId) {
+			return new NextResponse(
+				"You do not have permission to upload files",
+				{
+					status: 401,
+				},
+			);
+		}
 
-				return {
-					maximumSizeInBytes: c.maxResumeSizeInBytes, // optional, default and maximum is 500MB
-					allowedContentTypes: ["application/pdf"], // optional, default is no restriction
-				};
-			},
-			onUploadCompleted: async () => undefined,
-		});
+		const randomSeq = crypto.randomUUID();
+		const [fileName, extension] = body.fileName.split(".");
+		const key = `${body.location}/${fileName}-${randomSeq}.${extension}`;
+		const url = await getPresignedUploadUrl(staticUploads.bucketName, key);
 
-		return NextResponse.json(jsonResponse);
+		return NextResponse.json({ url, key });
 	} catch (error) {
 		return NextResponse.json(
 			{ error: (error as Error).message },

apps/web/src/app/api/upload/resume/view/route.ts

@@ -0,0 +1,35 @@
+import { getPresignedViewingUrl } from "@/lib/utils/server/s3";
+import { redirect } from "next/navigation";
+import { staticUploads } from "config";
+import { auth } from "@clerk/nextjs";
+
+export async function GET(request: Request) {
+	const { userId } = auth();
+	if (!userId) {
+		return new Response("You must be logged in to access this resource", {
+			status: 401,
+		});
+	}
+
+	const key = new URL(request.url).searchParams.get("key");
+	if (!key) {
+		return new Response(
+			"Request must have a query parameter 'key' associated with it",
+			{
+				status: 400,
+			},
+		);
+	}
+
+	const decodedKey = decodeURIComponent(key);
+
+	// Presign the url and return redirect to it.
+	const presignedViewingUrl = await getPresignedViewingUrl(
+		staticUploads.bucketName,
+		decodedKey,
+	);
+
+	return redirect(presignedViewingUrl);
+}
+
+export const runtime = "edge";

apps/web/src/components/dash/main/team/NewTeam.tsx

@@ -21,7 +21,7 @@ import { Shell } from "lucide-react";
 import { useRouter } from "next/navigation";
 import { newTeamValidator } from "@/validators/shared/team";
 import c from "config";
-import { put } from "@vercel/blob";
+import { put } from "@/lib/utils/client/file-upload";
 
 export default function NewTeamForm() {
 	const formValidator = newTeamValidator.merge(
@@ -47,9 +47,9 @@ export default function NewTeamForm() {
 		const photo = values.photo;
 
 		if (photo) {
-			const { url } = await put(photo.name, photo, {
-				access: "public",
-				handleBlobUploadUrl: "/api/upload/pfp",
+			// TODO: verify this works with the create team
+			const url = await put(photo.name, photo, {
+				presignHandlerUrl: "/api/upload/pfp",
 			});
 			teamPhotoURL = url;
 		} else {