U i@s`dZddlZddlmZmZmZddlmZddlm Z edgdZ e de d d d Z dS) zPublic endpoint for serving portfolio attachment files. Registered WITHOUT JWT dependency in main.py. Security: filenames are UUID hex strings (not guessable). Nginx basic-auth still covers the full site on production. N) APIRouter HTTPExceptionstatus) FileResponse) get_full_pathzportfolio-files)tagsz%/api/portfolio/attachments/{filename}filenamecsTd|ksd|ksd|kr&ttjddt|}tj|sHttjddt||dS)N/z..\zInvalid filename) status_codedetailzFile not foundr) rrHTTP_400_BAD_REQUESTrospathexistsHTTP_404_NOT_FOUNDr)r rrA/var/www/html/me.goteku.com/backend/app/routes/portfolio_files.pyserve_portfolio_attachments  r)__doc__rfastapirrrfastapi.responsesrapp.helpers.file_storagerroutergetstrrrrrrs