supabase
diff --git a/‎migrations/tenant/0046-buckets-objects-grants.sql‎
Lines changed: 15 additions & 0 deletions b/‎migrations/tenant/0046-buckets-objects-grants.sql‎
Lines changed: 15 additions & 0 deletions
diff --git a/‎migrations/tenant/0046-iceberg-table-metadata.sql‎ renamed to ‎migrations/tenant/0047-iceberg-table-metadata.sql‎ b/‎migrations/tenant/0046-iceberg-table-metadata.sql‎ renamed to ‎migrations/tenant/0047-iceberg-table-metadata.sql‎
diff --git a/‎migrations/tenant/0047-iceberg-catalog-ids.sql‎ renamed to ‎migrations/tenant/0048-iceberg-catalog-ids.sql‎ b/‎migrations/tenant/0047-iceberg-catalog-ids.sql‎ renamed to ‎migrations/tenant/0048-iceberg-catalog-ids.sql‎
diff --git a/‎src/http/routes/object/createObject.ts‎
Lines changed: 1 addition & 0 deletions b/‎src/http/routes/object/createObject.ts‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/http/routes/object/getObject.ts‎
Lines changed: 7 additions & 2 deletions b/‎src/http/routes/object/getObject.ts‎
Lines changed: 7 additions & 2 deletions
diff --git a/‎src/http/routes/object/getPublicObject.ts‎
Lines changed: 3 additions & 1 deletion b/‎src/http/routes/object/getPublicObject.ts‎
Lines changed: 3 additions & 1 deletion
diff --git a/‎src/http/routes/object/getSignedObject.ts‎
Lines changed: 2 additions & 1 deletion b/‎src/http/routes/object/getSignedObject.ts‎
Lines changed: 2 additions & 1 deletion
diff --git a/‎src/http/routes/object/updateObject.ts‎
Lines changed: 1 addition & 0 deletions b/‎src/http/routes/object/updateObject.ts‎
Lines changed: 1 addition & 0 deletions
diff --git a/‎src/http/routes/render/renderAuthenticatedImage.ts‎
Lines changed: 4 additions & 1 deletion b/‎src/http/routes/render/renderAuthenticatedImage.ts‎
Lines changed: 4 additions & 1 deletion
diff --git a/‎src/http/routes/render/renderPublicImage.ts‎
Lines changed: 2 additions & 1 deletion b/‎src/http/routes/render/renderPublicImage.ts‎
Lines changed: 2 additions & 1 deletion
@@ -0,0 +1,15 @@
+do $$
+declare
+  super_user text = coalesce(current_setting('storage.super_user', true), 'postgres');
+begin
+  execute 'grant all on storage.buckets, storage.objects to ' || super_user || ' with grant option';
+end $$;
+
+do $$
+declare
+  anon_role text = coalesce(current_setting('storage.anon_role', true), 'anon');
+  authenticated_role text = coalesce(current_setting('storage.authenticated_role', true), 'authenticated');
+  service_role text = coalesce(current_setting('storage.service_role', true), 'service_role');
+begin
+  execute 'grant all on storage.buckets, storage.objects to ' || service_role || ', ' || authenticated_role || ', ' || anon_role;
+end $$;
@@ -32,6 +32,7 @@ interface createObjectRequestInterface extends RequestGenericInterface {
     'content-type': string
     'cache-control'?: string
     'x-upsert'?: string
+    'x-robots-tag'?: string
   }
 }
 
 
@@ -71,17 +71,21 @@ async function requestHandler(
 
   if (bucket.public) {
     // request is authenticated but we still use the superUser as we don't need to check RLS
-    obj = await request.storage.asSuperUser().from(bucketName).findObject(objectName, 'id, version')
+    obj = await request.storage
+      .asSuperUser()
+      .from(bucketName)
+      .findObject(objectName, 'id, version, metadata')
   } else {
     // request is authenticated use RLS
-    obj = await request.storage.from(bucketName).findObject(objectName, 'id, version')
+    obj = await request.storage.from(bucketName).findObject(objectName, 'id, version, metadata')
   }
 
   return request.storage.renderer('asset').render(request, response, {
     bucket: storageS3Bucket,
     key: s3Key,
     version: obj.version,
     download,
+    xRobotsTag: obj.metadata?.['xRobotsTag'] as string | undefined,
     signal: request.signals.disconnect.signal,
   })
 }
@@ -95,6 +99,7 @@ export default async function routes(fastify: FastifyInstance) {
       // @todo add success response schema here
       schema: {
         params: getObjectParamsSchema,
+        querystring: getObjectQuerySchema,
         headers: { $ref: 'authSchema#' },
         summary,
         response: { '4xx': { $ref: 'errorSchema#', description: 'Error response' } },
 
@@ -38,6 +38,7 @@ export default async function routes(fastify: FastifyInstance) {
       exposeHeadRoute: false,
       schema: {
         params: getPublicObjectParamsSchema,
+        querystring: getObjectQuerySchema,
         summary,
         response: { '4xx': { $ref: 'errorSchema#', description: 'Error response' } },
         tags: ['object'],
@@ -56,7 +57,7 @@ export default async function routes(fastify: FastifyInstance) {
         request.storage.asSuperUser().findBucket(bucketName, 'id,public', {
           isPublic: true,
         }),
-        bucketRef.findObject(objectName, 'id,version'),
+        bucketRef.findObject(objectName, 'id,version,metadata'),
       ])
 
       // send the object from s3
@@ -71,6 +72,7 @@ export default async function routes(fastify: FastifyInstance) {
         key: s3Key,
         version: obj.version,
         download,
+        xRobotsTag: obj.metadata?.['xRobotsTag'] as string | undefined,
         signal: request.signals.disconnect.signal,
       })
     }
 
@@ -83,14 +83,15 @@ export default async function routes(fastify: FastifyInstance) {
       const obj = await request.storage
         .asSuperUser()
         .from(bucketName)
-        .findObject(objParts.join('/'), 'id,version')
+        .findObject(objParts.join('/'), 'id,version,metadata')
 
       return request.storage.renderer('asset').render(request, response, {
         bucket: storageS3Bucket,
         key: s3Key,
         version: obj.version,
         download,
         expires: new Date(exp * 1000).toUTCString(),
+        xRobotsTag: obj.metadata?.['xRobotsTag'] as string | undefined,
         signal: request.signals.disconnect.signal,
       })
     }
 
@@ -29,6 +29,7 @@ interface updateObjectRequestInterface extends RequestGenericInterface {
     'content-type': string
     'cache-control'?: string
     'x-upsert'?: string
+    'x-robots-tag'?: string
   }
 }
 
 
@@ -51,7 +51,9 @@ export default async function routes(fastify: FastifyInstance) {
       const { bucketName } = request.params
       const objectName = request.params['*']
 
-      const obj = await request.storage.from(bucketName).findObject(objectName, 'id,version')
+      const obj = await request.storage
+        .from(bucketName)
+        .findObject(objectName, 'id,version,metadata')
 
       const s3Key = request.storage.location.getKeyLocation({
         tenantId: request.tenantId,
@@ -73,6 +75,7 @@ export default async function routes(fastify: FastifyInstance) {
         key: s3Key,
         version: obj.version,
         download,
+        xRobotsTag: obj.metadata?.['xRobotsTag'] as string | undefined,
         signal: request.signals.disconnect.signal,
       })
     }
 
@@ -56,7 +56,7 @@ export default async function routes(fastify: FastifyInstance) {
         request.storage.asSuperUser().findBucket(bucketName, 'id,public', {
           isPublic: true,
         }),
-        bucketRef.findObject(objectName, 'id,version'),
+        bucketRef.findObject(objectName, 'id,version,metadata'),
       ])
 
       const s3Key = `${request.tenantId}/${bucketName}/${objectName}`
@@ -75,6 +75,7 @@ export default async function routes(fastify: FastifyInstance) {
         key: s3Key,
         version: obj.version,
         download,
+        xRobotsTag: obj.metadata?.['xRobotsTag'] as string | undefined,
         signal: request.signals.disconnect.signal,
       })
     }
Original file line number	Diff line number	Diff line change
`@@ -32,6 +32,7 @@ interface createObjectRequestInterface extends RequestGenericInterface {`
`32`	`32`	`'content-type': string`
`33`	`33`	`'cache-control'?: string`
`34`	`34`	`'x-upsert'?: string`
	`35`	`+ 'x-robots-tag'?: string`
`35`	`36`	`}`
`36`	`37`	`}`
`37`	`38`
Original file line number	Diff line number	Diff line change
`@@ -29,6 +29,7 @@ interface updateObjectRequestInterface extends RequestGenericInterface {`
`29`	`29`	`'content-type': string`
`30`	`30`	`'cache-control'?: string`
`31`	`31`	`'x-upsert'?: string`
	`32`	`+ 'x-robots-tag'?: string`
`32`	`33`	`}`
`33`	`34`	`}`
`34`	`35`