Skip to content

fix: skip egress tracking if content found in multiple spaces #199

New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Merged
fforbeck merged 2 commits into from
Nov 25, 2025
Merged

fix: skip egress tracking if content found in multiple spaces #199

Show file tree
Hide file tree
Changes from all commits
Commits
Show all changes
2 commits
Select commit Hold shift + click to select a range
b8e3ce1
fix: skip egress tracking if content found in multiple spaces
fforbeck Nov 24, 2025
0642d3e
added tests
fforbeck Nov 24, 2025
File filter

Filter by extension

Filter by extension
Conversations
Failed to load comments.
Loading
Jump to
Jump to file
Failed to load files.
Loading
Diff view
Diff view
12 changes: 11 additions & 1 deletion src/middleware/withAuthorizedSpace.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -104,6 +104,15 @@ export function withAuthorizedSpace (handler) {
.map((site) => extractSpaceDID(site.space))
.filter((space) => space !== undefined)

// If content is found in multiple DIFFERENT spaces, skip egress tracking
// by not setting ctx.space (security/billing concern - ambiguous ownership)
const uniqueSpaces = [...new Set(spaces.map(s => s.toString()))]
const skipEgressTracking = uniqueSpaces.length > 1
if (skipEgressTracking && env.DEBUG === 'true') {
console.log(`Content found in ${uniqueSpaces.length} different spaces - egress tracking will be skipped`)
console.log(`Spaces: ${uniqueSpaces.join(', ')}`)
}

try {
// First space to successfully authorize is the one we'll use.
const { space: selectedSpace, delegationProofs } = await Promise.any(
Expand All @@ -117,7 +126,8 @@ export function withAuthorizedSpace (handler) {
)
return handler(request, env, {
...ctx,
space: SpaceDID.from(selectedSpace.toString()),
// Only set space if we're not skipping egress tracking
space: skipEgressTracking ? undefined : SpaceDID.from(selectedSpace.toString()),
delegationProofs,
locator: locator.scopeToSpaces([selectedSpace])
})
Expand Down
74 changes: 64 additions & 10 deletions test/unit/middleware/withAuthorizedSpace.spec.js
View file
Open in desktop
Original file line number Diff line number Diff line change
Expand Up @@ -326,12 +326,13 @@ describe('withAuthorizedSpace', async () => {
{ ...ctx, authToken: 'space1-token', delegationProofs: [], gatewaySigner }
)

expect(await response1.json()).to.deep.equal({
CID: cid.toString(),
Space: space1.did(),
Token: 'space1-token',
URLs: ['http://example.com/1/blob']
})
// When content is in multiple spaces, ctx.space is undefined (egress tracking skipped)
// Note: JSON.stringify removes undefined values, so Space won't be in the response
const result1 = await response1.json()
expect(result1.CID).to.equal(cid.toString())
expect(result1.Space).to.be.undefined
expect(result1.Token).to.equal('space1-token')
expect(result1.URLs).to.deep.equal(['http://example.com/1/blob'])

const error2 = await rejection(
withAuthorizedSpace(sinon.fake(innerHandler))(
Expand All @@ -357,11 +358,64 @@ describe('withAuthorizedSpace', async () => {
{ ...ctx, authToken: 'space3-token', delegationProofs: [], gatewaySigner }
)

expect(await response3.json()).to.deep.equal({
// When content is in multiple spaces, ctx.space is undefined (egress tracking skipped)
// Note: JSON.stringify removes undefined values, so Space won't be in the response
const result3 = await response3.json()
expect(result3.CID).to.equal(cid.toString())
expect(result3.Space).to.be.undefined
expect(result3.Token).to.equal('space3-token')
expect(result3.URLs).to.deep.equal(['http://example.com/3/blob'])
})

it('should NOT skip egress tracking when content is in a single space', async () => {
const cid = createTestCID(0)
const space1 = await ed25519.Signer.generate()

const ctx = {
...context,
dataCid: cid,
locator: createLocator(cid.multihash, {
ok: {
digest: cid.multihash,
site: [
{
location: [new URL('http://example.com/1/blob')],
range: { offset: 0, length: 100 },
space: space1.did()
},
{
location: [new URL('http://example.com/2/blob')],
range: { offset: 0, length: 100 },
space: space1.did() // Same space, different location
}
]
},
error: undefined
}),
delegationsStorage: createDelegationStorage([
await serve.transportHttp.delegate({
issuer: space1,
audience: gatewayIdentity,
with: space1.did(),
nb: { token: 'space1-token' }
})
]),
gatewayIdentity
}

const response = await withAuthorizedSpace(innerHandler)(
request,
{},
{ ...ctx, authToken: 'space1-token', delegationProofs: [], gatewaySigner }
)

// When content is in a single space (even with multiple sites), ctx.space should be set
const result = await response.json()
expect(result).to.deep.equal({
CID: cid.toString(),
Space: space3.did(),
Token: 'space3-token',
URLs: ['http://example.com/3/blob']
Space: space1.did(),
Token: 'space1-token',
URLs: ['http://example.com/1/blob', 'http://example.com/2/blob']
})
})

Expand Down