From 5aae718a7702966594640aa4e6cf4077126bef87 Mon Sep 17 00:00:00 2001 From: wxg0103 <727495428@qq.com> Date: Thu, 16 Jul 2026 11:52:25 +0800 Subject: [PATCH] fix: update chat authentication response paths to ensure trailing slashes --- apps/oss/serializers/file.py | 9 ++++++--- 1 file changed, 6 insertions(+), 3 deletions(-) diff --git a/apps/oss/serializers/file.py b/apps/oss/serializers/file.py index 938472c2e67..723cd814873 100644 --- a/apps/oss/serializers/file.py +++ b/apps/oss/serializers/file.py @@ -88,6 +88,12 @@ def auth(file, mk_file_auth): # PublicFileAccess 中记录的文件允许公开访问 if QuerySet(PublicFileAccess).filter(source_type='FILE', source_id=str(file.id)).exists(): return + if file.source_type == FileSourceType.APPLICATION: + application = QuerySet(Application).filter(id=file.source_id).first() + if application is None: + _deny() + if file.meta.get('chat_id') is None: + return # 非公共文件,直接拒绝 if mk_file_auth is None: _deny() @@ -188,9 +194,6 @@ def _auth_system(file, user_id): application = QuerySet(Application).filter(id=file.source_id).first() if application is None: _deny() - # 如果是应用的高级设置的文件 - if file.meta.get('chat_id') is None: - return _check_workspace_resource_permission( user_auth, user_id, workspace_id=application.workspace_id,