Refactor file upload for content fragment

[flvndvd]

Description

Summary

While working on vision, we identified a race condition in the process of uploading content fragment files. Currently, we create the conversation/post the message with the content fragment before uploading the associated file, which causes issues. As we plan to use URLs for vision and need to resize images (increasing upload time), the existing logic needs an refactoring.

Key Changes

This PR revamps the current logic, separating files from content fragments. While files will still be used within content fragments, they can now exist independently. The goal is to achieve this separation without storing every file in a database. The main changes include:

1. New Endpoint /files: This endpoint must be called first, allowing the client to obtain a file ID. The endpoint returns the file ID and a signed (using JWT) upload URL valid for 30 seconds.
2. New Endpoint /files/:fileId: This endpoint supports both file upload and retrieval. For uploads, the client must provide the token to verify that the file ID was generated by our system. While it currently doesn't process textual files, it does resize images. Once the file is uploaded, the endpoint returns a download URL, which can be used in the url field of a content fragment.

The useFileUploaderService has been adjusted to accommodate these changes. Previously, no special handling was done until files were submitted. With the new approach, files are uploaded to our cloud storage as soon as they are uploaded to the system, unblocking the send button only after the upload and resizing are complete. This avoids impacting the chat experience.

Impact on Production

• All files must now be uploaded using the new architecture to be used in content fragments.
• Text extraction remains on the front-end for now but will soon be moved to the new pattern.
• Legacy logic for uploading raw files post-content fragment creation is removed.

Trade-offs and Future Considerations

This solution has some trade-offs, such as the inability to recompute file IDs and the loss of the current GCS structure of conversation/message/content. There is also the potential for "ghost" files to remain in the system if they are added to the input bar but never sent. However, these drawbacks are acceptable given the increased flexibility needed for future file handling enhancements.

Note on Public API

These changes do not yet apply to the public API but will be rolled out once vision becomes generally available.

Image Resizing

Based on experiments with vision, we plan to resize the largest side of images down to 768px.

Follow up work

• Implement file deletion when files are being removed from the input bar

Demos

Risk

Worst case, file upload is broken.

⚠️ Rolling back is not fully safe, as it will disrupt the file downloads for files created while this code was in production.

Deploy Plan

[flvndvd]

I'll remove this, which gates vision before shipping.

[spolu]

This seems non homogeneous. We should standardize on content type or file extension. Do browsers accept both?

[flvndvd]

Yes this was for test purpose, will be reworked in the final PR.

[spolu]

Left some comments.

I thiiiink this PR needs to be split if we want to make forward progress as it includes things that needs to be discussed separately:

• A new file upload endpoint whose details needs to be discussed in details: do we support streaming? do we support transformation? what API do we want for this?
• Move content fragment to the new file upload. This one is quite straightforward and will be much easier to review once the file upload endpoint is cut and solid
• Introduce image attachments which will require further separate discussions

Happy to have all of them here, but I'm not sure it's the most efficent :)

[spolu]

This seems non homogeneous. We should standardize on content type or file extension. Do browsers accept both?

[spolu]

Why stop looking for errors?

[spolu]

why is content still pushed here?

[spolu]

Can we avoid these type of functions which are just a wrapper on another function but also only used once makes understanding the code harder not simpler IMHO

[spolu]

This endpoint needs to be aggressively rate-limited

[spolu]

Should be a Promise.all here or at least have some form of parallelization as we def don't want to wait for a sequential upload?

[spolu]

No try catch of our own errors

[spolu]

Should use a Result

[spolu]

If we're building a new file API we should make sure to support something forward looking. This downloads the entire file in memory before uploading right?

If not: since we're cutting a new API we want to make sure it supports proper streaming?

[spolu]

It creates interesting questions on how we want to handle that: we can't stream and transform at the same time. Which hints that we likely want a file status API and an asyncrhonous processing mechanism run server side to resize images or extract PDFs.

[spolu]

Will this materialize the file in memory? We'd want to stream to GCS instead here no?

[flvndvd]

Here the file is not in memory but written on the disk. It's then exposed as a stream that we can handle. We could avoid saving anything on the disk by simply streaming straight away to GCS but this means that we can't do any pre-processing before saving.