@muhgholy/next-drive 4.23.10 → 4.23.13

package/dist/{chunk-XUPDNN2U.js → chunk-P5U4E6MG.js}

@@ -1533,8 +1533,7 @@ var uploadChunkSchema = z.object({
   fileName: nameSchema,
   fileSize: z.number().int().min(0).max(Number.MAX_SAFE_INTEGER),
   fileType: z.string().min(1).max(255),
-  folderId: z.string().optional(),
-  unauthenticated: z.coerce.boolean().optional()
+  folderId: z.string().optional()
 }).refine((data) => data.chunkIndex < data.totalChunks, {
   message: "Chunk index must be less than total chunks"
 });
@@ -2173,7 +2172,7 @@ var withSignedUrls = (items, config) => {
 
 // src/server/actions/drive.ts
 var handleDriveAction = async (ctx) => {
-  const { req, res, action, config, owner, isRootMode, information, provider, accountId } = ctx;
+  const { req, res, action, config, owner, isRootMode, authenticated, information, provider, accountId } = ctx;
   switch (action) {
     case "list": {
       if (req.method !== "GET") return void res.status(405).json({ status: 405, message: "Listing files requires a GET request" });
@@ -2262,16 +2261,16 @@ var handleDriveAction = async (ctx) => {
         cleanupTempFiles(files);
         return void res.status(400).json({ status: 400, message: uploadData.error.errors[0].message });
       }
-      const { chunkIndex, totalChunks, driveId, fileName, fileSize: fileSizeInBytes, fileType, folderId, unauthenticated } = uploadData.data;
+      const { chunkIndex, totalChunks, driveId, fileName, fileSize: fileSizeInBytes, fileType, folderId } = uploadData.data;
       let currentUploadId = driveId;
       const tempBaseDir = path.join(os2.tmpdir(), "next-drive-uploads");
       if (!currentUploadId) {
         if (chunkIndex !== 0) return void res.status(400).json({ message: "Could not upload: missing upload session for this chunk" });
-        if (unauthenticated) {
+        if (!authenticated) {
           const unauth = config.security?.unauthenticated;
           if (!unauth?.enabled) {
             cleanupTempFiles(files);
-            return void res.status(403).json({ status: 403, message: "Anonymous uploads are not enabled" });
+            return void res.status(401).json({ status: 401, message: "Authentication required to upload" });
           }
           if (fileSizeInBytes > unauth.maxUploadSizeInBytes) {
             cleanupTempFiles(files);
@@ -2330,15 +2329,15 @@ var handleDriveAction = async (ctx) => {
         const uploadDir2 = path.join(tempBaseDir, currentUploadId);
         fs.mkdirSync(uploadDir2, { recursive: true });
         const metadata = {
-          owner: unauthenticated ? null : owner,
-          accountId: unauthenticated ? null : accountId,
+          owner: authenticated ? owner : null,
+          accountId: authenticated ? accountId : null,
           providerName: provider.name,
           name: fileName,
-          parentId: unauthenticated || folderId === "root" || !folderId ? null : folderId,
+          parentId: !authenticated || folderId === "root" || !folderId ? null : folderId,
           fileSize: fileSizeInBytes,
           mimeType: fileType,
           totalChunks,
-          unauthenticated: !!unauthenticated
+          unauthenticated: !authenticated
         };
         fs.writeFileSync(path.join(uploadDir2, "metadata.json"), JSON.stringify(metadata));
       }
@@ -2676,12 +2675,12 @@ var driveAPIHandler = async (req, res) => {
     if (action === "information") {
       const { clientId, clientSecret, redirectUri } = config.storage?.google || {};
       const googleConfigured = !!(clientId && clientSecret && redirectUri);
-      let authenticated = false;
+      let authenticated2 = false;
       try {
         await getDriveInformation({ method: "REQUEST", req });
-        authenticated = true;
+        authenticated2 = true;
       } catch {
-        authenticated = false;
+        authenticated2 = false;
       }
       res.status(200).json({
         status: 200,
@@ -2691,15 +2690,26 @@ var driveAPIHandler = async (req, res) => {
             google: googleConfigured
           },
           mode,
-          authenticated,
+          authenticated: authenticated2,
           unauthenticatedUploads: !!config.security?.unauthenticated?.enabled
         }
       });
       return;
     }
-    const information = await getDriveInformation({ method: "REQUEST", req });
-    const { key: owner } = information;
     const isRootMode = mode === "ROOT";
+    let information;
+    let authenticated = true;
+    try {
+      information = await getDriveInformation({ method: "REQUEST", req });
+    } catch (err) {
+      if ((action === "upload" || action === "cancel") && config.security?.unauthenticated?.enabled) {
+        information = { key: null, storage: { quotaInBytes: 0 } };
+        authenticated = false;
+      } else {
+        throw err;
+      }
+    }
+    const { key: owner } = information;
     const wasAuthHandled = await handleAuthAction(req, res, action, config, owner);
     if (wasAuthHandled) return;
     const { provider, accountId } = await resolveProvider(req, owner);
@@ -2710,6 +2720,7 @@ var driveAPIHandler = async (req, res) => {
       config,
       owner,
       isRootMode,
+      authenticated,
       information,
       provider,
       accountId
@@ -2722,5 +2733,5 @@ var driveAPIHandler = async (req, res) => {
 };
 
 export { driveAPIHandler, driveCleanup, driveConfiguration, driveConfirm, driveDelete, driveFilePath, driveFileSchemaZod, driveGetUrl, driveInfo, driveList, driveListFiles, drivePurgeExpired, driveReadFile, driveUpload, drive_default, getDriveConfig, getDriveInformation };
-//# sourceMappingURL=chunk-XUPDNN2U.js.map
-//# sourceMappingURL=chunk-XUPDNN2U.js.map
+//# sourceMappingURL=chunk-P5U4E6MG.js.map
+//# sourceMappingURL=chunk-P5U4E6MG.js.map