File scanning connector to handle multiple AV tools

[ARADDCC002]

No description provided.

[JR40159]

It would be good if this new connector type could have the same interface as other connectors and this could just be scanners.scan(file). Ideally we want to encapsulate the initialisation and the calling of each individual scanner inside the connector logic, not here in the service layer every time we want to use the scanners

[JR40159]

I don't think this check is necessary because the init() function is only called to initialise the av scanner

[JR40159]

Have you tested what happens if the Clam AV service isn't running? I assume this throw would be called. If so, the error message needs updating

[JR40159]

It's a bit of a pain but to be safe, you should probably check that av has been initialised at the start of functions like this when using the AV scanner and throw an error recommending that init() should be called first if av has not been assigned.

[JR40159]

In my opinion, these scanners should not be responsible for storing the scan information in the DB, they should just be an interface with a particular scanning and this method should take in a file stream and return a scan result object. Ther service layer should be responsible for getting the file stream and processing the scan results.

[ARADDCC002]

This is a bit tricky as it's async and the service that calls these connectors already returns the response to the user. We'd need to call the scanners, wait for the results, store them, then return a 200 response to the user from the backend.

[JR40159]

Just because we want a process to run asynchronously doesn't mean all the implementation needs to be in a single method. Use a .then() on the asynchronous call to provide the implementation for how we will process the results once the scanners are complete.

[JR40159]

Don't forget, this will require a migration. I don't think a migration was done when this field was originally added so this migration will have to account for when this field doesn't exist

[ARADDCC002]

I don't think it does but feel free to double check. From testing it looks like it will return single results as arrays anyway

[JR40159]

From looking at this diff it looks like the previous type of avScan was an object and now avScan is an array? That's why I thought this would require a migration

[ARADDCC002]

It becomes an array of the same type of object as it was before and it seems to handle it automatically thankfully it seems

[JR40159]

By default, we shouldn't have any scanners configured. This instead should be done in the docker_compose.cjs

[JR40159]

I would recommend call init() on all the connectors in fileScanConnectors here or in each case where you add a new connector to the list. This way, you can pick up on configuration errors early on

[JR40159]

In the other index.ts files for the other connectors we also have a caching mechanism we'll probably also want here. Something that checks if wrapper has already been assigned and returns it if it has

[JR40159]

See comment on index.ts about moving this to there

[JR40159]

This isn't a major thing but could we get this to look more like the other connectors eg: const auth = await authorisation.file(user, model, file, FileAction.Upload) so this would become if (scanners.info()) {

[JR40159]

See comment on file.ts to make this be return res.json({ scanners: scanners.info() })

[JR40159]

I'd be interested to look to see if Mongo can handle this logic for you and add new elements to the array if a an element with a tool doesn't exist and update the existing element if a element with that tool does exist

[JR40159]

Here you should use $push and then you won't need to have updatedAvScanArray

[JR40159]

Can this not be scanResult.state !== ScanState.Complete?

[JR40159]

When setting the scanners connectors to an empty array, the information still appears in the UI?

[JR40159]

?

[JR40159]

This should be an array?

[ARADDCC002]

This is just a reference though isn't it? I don't think we define if it's an array or not here

.