Added option tempFilePermissions to allow limiting file access on shared servers

richardgirges / express-fileupload

Simple express file upload middleware that wraps around busboy

MIT License

1.52k stars 261 forks source link

Added option tempFilePermissions to allow limiting file access on shared servers #376

Open raczynski opened 1 month ago

raczynski commented 1 month ago

By default it creates a tmp file with 666 permissions - this might expose users' data towards uncontrollable audience in shared servers, see defaults from specs: https://nodejs.org/docs/latest-v12.x/api/fs.html#fs_fs_createwritestream_path_options. This parameter will allow a developer to manage the access scope.

coveralls commented 1 month ago

coverage: 94.509% (+0.03%) from 94.477% when pulling 5fe9774facf258fbf0244589b40fc1c76b005d93 on raczynski:master into 2bc62748a71bb319e9ad660a4aa2683ecf621c32 on richardgirges:master.