From df7ae47a9a14ea907dd6b1dec446fdbe30836ef4 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?Laura=20Kl=C3=BCnder?= <laura@codingcatgirl.de>
Date: Thu, 30 Nov 2023 21:26:39 +0100
Subject: [PATCH] lets make the firmware build binary url harder to guess maybe

---
 src/c3nav/mesh/models.py | 5 ++++-
 1 file changed, 4 insertions(+), 1 deletion(-)

diff --git a/src/c3nav/mesh/models.py b/src/c3nav/mesh/models.py
index da5b9ced..ff6c000f 100644
--- a/src/c3nav/mesh/models.py
+++ b/src/c3nav/mesh/models.py
@@ -1,3 +1,4 @@
+import string
 from collections import UserDict, namedtuple
 from contextlib import suppress
 from dataclasses import dataclass
@@ -11,6 +12,7 @@ from django.core.validators import RegexValidator
 from django.db import NotSupportedError, models
 from django.db.models import Q, UniqueConstraint
 from django.utils import timezone
+from django.utils.crypto import get_random_string
 from django.utils.text import slugify
 from django.utils.translation import gettext_lazy as _
 
@@ -404,7 +406,8 @@ def firmware_upload_path(instance, filename):
     # file will be uploaded to MEDIA_ROOT/user_<id>/<filename>
     version = slugify(instance.version.version)
     variant = slugify(instance.variant)
-    return f"firmware/{version}/{variant}/{filename}"
+    random_string = get_random_string(32, string.ascii_letters + string.digits)
+    return f"firmware/{version}/{variant}/{random_string}/{filename}"
 
 
 class FirmwareBuild(models.Model):