add direct upload feature

[Ahmedsam199]

New Features

• Direct Upload Checkbox: Introduced a checkbox in dfp_external_storage to enable direct uploads, enhancing user control over the upload process.
• Direct Upload Button: Implemented a direct upload button in the file uploader, providing a more intuitive and faster upload experience.
• Multiple Buckets Validation: Added validation in DFPExternalStorage to prevent configuration with multiple buckets, ensuring data integrity and preventing potential conflicts.
• Direct Upload Validation: Implemented a validation mechanism in dfp_external_storage to prevent multiple direct uploads while enabled, avoiding resource contention.
• Get Presigned URL: Implemented API endpoint to generate presigned URLs, enhancing security and flexibility in accessing files.
• Create File API: Added a new API endpoint for creating files, enabling programmatic file management.
• Enabled Direct Upload Doc Fetching: Enhanced the API to fetch only enabled direct upload documents, optimizing performance.
• Minio Presigned URL Connection: Exposed get_presigned_url connection for MinioConnection, allowing external access to files via presigned URLs.

Bug Fixes

• File Population Removal: Removed file population for new records in the file uploader, resolving issues related to data integrity.
• Child Table Field Trigger: Fixed a bug where the field in the child table would not trigger when a file was uploaded using the main Frappe on_upload function.
• Server Timestamp Issue: Removed the parent document refresh in api.py to prevent server timestamp issues during file uploads.
• S3 Key Length: Extended the dfp_external_storage_s3_key length to 255 characters to accommodate longer file paths, preventing truncation issues.

Documentation

• Direct Upload Documentation: Added documentation for direct uploads to the README file, providing comprehensive instructions for users.

Refactor

• Storage Name Dependency Removal: Removed the storage_name dependency in api.py, improving code maintainability.

Testing

• Create File API Test: Added a test case for the create file API, ensuring its reliability and functionality.
• Presigned URL Tests: Added tests for presigned URLs, verifying their proper generation and usage.
• Multiple Disabled Direct Upload Docs Test: Added a test case for multiple disabled direct upload documents, validating the system's behavior in such scenarios.

[developmentforpeople]

Hi @Ahmedsam199 thank you very much for your PR :) !!! I am reviewing it locally. I will ask some questions here related to some lines :) Thanks thanks thanks for your time and effort doing this new great functionality and creating a PR! :)

[developmentforpeople]

@Ahmedsam199 for all "file_uploader" folder, do you think it is possible to reuse funcionality from Frappe and extend it here with custom props and methods?

[Ahmedsam199]

couldn't figure it out honestly

[developmentforpeople]

Why not using the MinioConnection->presigned_get_object() within dfp_external_storage.py?

[Ahmedsam199]

i just want to keep the api separate from your logic

[developmentforpeople]

Whitelisted method create_file_record is open to anyone without system user access to upload files to your S3, is that right? I am wrong?

[Ahmedsam199]

That's because if you want to use the direct upload separated from frappe UI

[developmentforpeople]

@Ahmedsam199 I installed locally your PR to do some checks.

At this moment I localized one security issue that should be resolved before merging the PR.

1. create_file_record could be used by a low permissions user to create almost any document in Frappe, because kwargs can override even the doctype parameter and document is created with ignore_permissions=True:

2. We should be able to find a way for overriding class FileUploader to add our functionality without duplicate so many files from frappe. If Frappe team makes improvements to those files, we will be always affected. If not easy we could create only a bundle.js but importing all files that are the same, for example. Tell me if you want I think about it :)

3. Using always te same: spaces or tabs, not mixed:

@Ahmedsam199 thanks again for your time, tell me if I can help you with something ;)