UFAL/bitstream preview wrong file name according to it's mimetype (#890)

milanmajchrak · milanmajchrak · commit bd7f83798b99 · 2025-03-10T09:24:22.000+01:00
* Check if the preview file has a right name according to its mime type
diff --git a/dspace-api/src/main/java/org/dspace/content/PreviewContentServiceImpl.java b/dspace-api/src/main/java/org/dspace/content/PreviewContentServiceImpl.java
@@ -21,6 +21,7 @@
 import java.nio.file.StandardCopyOption;
 import java.sql.SQLException;
 import java.util.ArrayList;
+import java.util.Arrays;
 import java.util.Hashtable;
 import java.util.Iterator;
 import java.util.List;
@@ -196,6 +197,11 @@ public List<FileInfo> processInputStreamToFilePreview(Context context, Bitstream
         List<FileInfo> fileInfos = new ArrayList<>();
         String bitstreamMimeType = bitstream.getFormat(context).getMIMEType();
         if (bitstreamMimeType.equals("text/plain")) {
+            if (!validateBitstreamNameWithType(bitstream, "zip,tar,gz,tar.gz,tar.bz2")) {
+                throw new IOException("he file has an incorrect type according to the MIME type stored in the " +
+                        "database. This could cause the ZIP file to be previewed as a text file, potentially leading" +
+                        " to a database error.");
+            }
             String data = getFileContent(inputStream, true);
             fileInfos.add(new FileInfo(data, false));
         } else if (bitstreamMimeType.equals("text/html")) {
@@ -254,6 +260,22 @@ public String composePreviewURL(Context context, Item item, Bitstream bitstream,
         return url;
     }
 
+    /**
+     * Validate the bitstream name with the specified type. Check if the ZIP file is not previewed as a text file.
+     * @param bitstream
+     * @param forbiddenTypes "in the form of 'type1,type2,type3'"
+     * @return
+     */
+    private boolean validateBitstreamNameWithType(Bitstream bitstream, String forbiddenTypes) {
+        ArrayList<String> forbiddenTypesList = new ArrayList(Arrays.asList(forbiddenTypes.split(",")));
+        for (String forbiddenType : forbiddenTypesList) {
+            if (bitstream.getName().endsWith(forbiddenType)) {
+                return false;
+            }
+        }
+        return true;
+    }
+
     /**
      * Define the hierarchy organization for preview content and file info.
      * The hierarchy is established by the sub map.
diff --git a/dspace-api/src/main/java/org/dspace/scripts/filepreview/FilePreview.java b/dspace-api/src/main/java/org/dspace/scripts/filepreview/FilePreview.java
@@ -123,7 +123,7 @@ private void generateItemFilePreviews(Context context, UUID itemUUID) throws SQL
             return;
         }
 
-        List<Bundle> bundles = item.getBundles();
+        List<Bundle> bundles = item.getBundles("ORIGINAL");
         for (Bundle bundle : bundles) {
             List<Bitstream> bitstreams = bundle.getBitstreams();
             for (Bitstream bitstream : bitstreams) {

Original file line number	Diff line number	Diff line change
`@@ -123,7 +123,7 @@ private void generateItemFilePreviews(Context context, UUID itemUUID) throws SQL`
`123`	`123`	`return;`
`124`	`124`	`}`
`125`	`125`
`126`		`- List<Bundle> bundles = item.getBundles();`
	`126`	`+ List<Bundle> bundles = item.getBundles("ORIGINAL");`
`127`	`127`	`for (Bundle bundle : bundles) {`
`128`	`128`	`List<Bitstream> bitstreams = bundle.getBitstreams();`
`129`	`129`	`for (Bitstream bitstream : bitstreams) {`