Files not protected when auth is enabled #1101
Labels
auth
Pertaining to authentication.
evaluate-with-priority
What's needed to address this one?
needs-triage
security
Comments
dokterbob
added
security
evaluate-with-priority
Open
|
Any update on this chainlit this is really, BIG Risk |
qvalentin
added a commit
to qvalentin/chainlit
that referenced
this issue
Oct 16, 2024
|
This is a significant security concern because it allows an attacker to upload a malicious file (e.g., an HTML file with inline JavaScript) and share the I have opened this pull request to address this issue. |
|
Really sorry, I must have missed this issue, which was created before I joined the project. Happy to see the fix, I want to try and get this solved before the next release (1.3.0). |
dokterbob
changed the title
dokterbob
pushed a commit
that referenced
this issue
Oct 16, 2024
dokterbob
pushed a commit
that referenced
this issue
Oct 16, 2024
dokterbob
pushed a commit
that referenced
this issue
Oct 17, 2024
dokterbob
added a commit
that referenced
this issue
Oct 21, 2024
…#1441) * Unit tests for `get_file` and `upload_file` endpoints, including authorization. * Add auth to /project/file get endpoint by @qvalentin , closes #1101. --------- Co-authored-by: qvalentin <[email protected]>
dokterbob
added a commit
that referenced
this issue
Oct 22, 2024
…#1441) * Unit tests for `get_file` and `upload_file` endpoints, including authorization. * Add auth to /project/file get endpoint by @qvalentin , closes #1101. --------- Co-authored-by: qvalentin <[email protected]>
dokterbob
pushed a commit
that referenced
this issue
Oct 25, 2024
dokterbob
pushed a commit
that referenced
this issue
Oct 25, 2024
dokterbob
added a commit
that referenced
this issue
Oct 25, 2024
* Update server.py (#1474) Solving the underlying issue properly requires moving to HTTP only cookies, which is out of scope for now (we want to properly clean up auth). We're gonna ship this ASAP. This reopens #1101 and #1438 . * Changelog for 1.3.1 and 2.0.dev2. * Bump version to 1.3.1. --------- Co-authored-by: Josh Hayes <[email protected]>
dokterbob
changed the title
This was referenced Nov 6, 2024
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
Describe the bug
When you has chainlit configured with authentication, in an incognito browser you can freely access to temporal audio files generated in audio assistants, only putting the URL in the browser like: https://192.168.0.150:8888/project/file/16745f20-dddf-4cf6-84d5-6d424635c63b?session_id=e8bafcfa-ff64-4517-bdc6-8ceddc74e89d
To Reproduce
Inspect the audio control in an authenticated chainlit instalation, copy paste the source URL from the any audio control generated by your assistant, put the link like https://192.168.0.150:8888/project/file/16745f20-dddf-4cf6-84d5-6d424635c63b?session_id=e8bafcfa-ff64-4517-bdc6-8ceddc74e89d in an incognito tab or browser.
Expected behavior
Audio files are sensitive material, if auth on chainlit is activated, then audio files must be protected some way with the JWT token, nice to have: temporary generated audio files links, in order to expire at x minutes from generation.
Smartphone (please complete the following information):
Not tested
The text was updated successfully, but these errors were encountered: