fix(security): extend file access checks to remaining tool routes

waleedlatif1 · waleedlatif1 · commit 3645d8318e0a · 2026-05-14T11:41:03.000-07:00
diff --git a/apps/sim/app/api/tools/microsoft_teams/write_channel/route.ts b/apps/sim/app/api/tools/microsoft_teams/write_channel/route.ts
@@ -20,7 +20,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
   try {
     const authResult = await checkInternalAuth(request, { requireWorkflowId: false })
 
-    if (!authResult.success) {
+    if (!authResult.success || !authResult.userId) {
       logger.warn(`[${requestId}] Unauthorized Teams channel write attempt: ${authResult.error}`)
       return NextResponse.json(
         {
@@ -31,10 +31,11 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
       )
     }
 
+    const userId = authResult.userId
     logger.info(
       `[${requestId}] Authenticated Teams channel write request via ${authResult.authType}`,
       {
-        userId: authResult.userId,
+        userId,
       }
     )
 
@@ -54,6 +55,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
       accessToken: validatedData.accessToken,
       requestId,
       logger,
+      userId,
     })
 
     let messageContent = validatedData.content
diff --git a/apps/sim/app/api/tools/microsoft_teams/write_chat/route.ts b/apps/sim/app/api/tools/microsoft_teams/write_chat/route.ts
@@ -20,7 +20,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
   try {
     const authResult = await checkInternalAuth(request, { requireWorkflowId: false })
 
-    if (!authResult.success) {
+    if (!authResult.success || !authResult.userId) {
       logger.warn(`[${requestId}] Unauthorized Teams chat write attempt: ${authResult.error}`)
       return NextResponse.json(
         {
@@ -31,10 +31,11 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
       )
     }
 
+    const userId = authResult.userId
     logger.info(
       `[${requestId}] Authenticated Teams chat write request via ${authResult.authType}`,
       {
-        userId: authResult.userId,
+        userId,
       }
     )
 
@@ -53,6 +54,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
       accessToken: validatedData.accessToken,
       requestId,
       logger,
+      userId,
     })
 
     let messageContent = validatedData.content
diff --git a/apps/sim/app/api/tools/quiver/text-to-svg/route.ts b/apps/sim/app/api/tools/quiver/text-to-svg/route.ts
@@ -8,16 +8,18 @@ import { withRouteHandler } from '@/lib/core/utils/with-route-handler'
 import type { RawFileInput } from '@/lib/uploads/utils/file-schemas'
 import { processFilesToUserFiles } from '@/lib/uploads/utils/file-utils'
 import { downloadFileFromStorage } from '@/lib/uploads/utils/file-utils.server'
+import { assertToolFileAccess } from '@/app/api/files/authorization'
 
 const logger = createLogger('QuiverTextToSvgAPI')
 
 export const POST = withRouteHandler(async (request: NextRequest) => {
   const requestId = generateRequestId()
 
   const authResult = await checkInternalAuth(request, { requireWorkflowId: false })
-  if (!authResult.success) {
+  if (!authResult.success || !authResult.userId) {
     return NextResponse.json({ success: false, error: 'Unauthorized' }, { status: 401 })
   }
+  const userId = authResult.userId
 
   try {
     const parsed = await parseRequest(
@@ -51,6 +53,13 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
             if (parsed && typeof parsed === 'object') {
               const userFiles = processFilesToUserFiles([parsed as RawFileInput], requestId, logger)
               if (userFiles.length > 0) {
+                const denied = await assertToolFileAccess(
+                  userFiles[0].key,
+                  userId,
+                  requestId,
+                  logger
+                )
+                if (denied) return denied
                 const buffer = await downloadFileFromStorage(userFiles[0], requestId, logger)
                 apiReferences.push({ base64: buffer.toString('base64') })
               }
@@ -61,6 +70,8 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
         } else if (typeof ref === 'object' && ref !== null) {
           const userFiles = processFilesToUserFiles([ref as RawFileInput], requestId, logger)
           if (userFiles.length > 0) {
+            const denied = await assertToolFileAccess(userFiles[0].key, userId, requestId, logger)
+            if (denied) return denied
             const buffer = await downloadFileFromStorage(userFiles[0], requestId, logger)
             apiReferences.push({ base64: buffer.toString('base64') })
           }
diff --git a/apps/sim/app/api/tools/sap_concur/upload/route.ts b/apps/sim/app/api/tools/sap_concur/upload/route.ts
@@ -8,6 +8,7 @@ import { generateRequestId } from '@/lib/core/utils/request'
 import { withRouteHandler } from '@/lib/core/utils/with-route-handler'
 import { processFilesToUserFiles, type RawFileInput } from '@/lib/uploads/utils/file-utils'
 import { downloadFileFromStorage } from '@/lib/uploads/utils/file-utils.server'
+import { assertToolFileAccess } from '@/app/api/files/authorization'
 import {
   assertSafeExternalUrl,
   extractSapConcurError,
@@ -180,13 +181,14 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
 
   try {
     const authResult = await checkInternalAuth(request, { requireWorkflowId: false })
-    if (!authResult.success) {
+    if (!authResult.success || !authResult.userId) {
       logger.warn(`[${requestId}] Unauthorized Concur upload request: ${authResult.error}`)
       return NextResponse.json(
         { success: false, error: authResult.error || 'Authentication required' },
         { status: 401 }
       )
     }
+    const userId = authResult.userId
 
     // boundary-raw-json: internal upload envelope validated by SapConcurUploadRequestSchema below; not a public boundary
     const json = await request.json()
@@ -204,6 +206,8 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
       )
     }
     const userFile = userFiles[0]
+    const denied = await assertToolFileAccess(userFile.key, userId, requestId, logger)
+    if (denied) return denied
     const fileBuffer = await downloadFileFromStorage(userFile, requestId, logger)
     const fileName = userFile.name
     const mimeType = inferMimeType(fileName, userFile.type)
diff --git a/apps/sim/app/api/tools/slack/send-message/route.ts b/apps/sim/app/api/tools/slack/send-message/route.ts
@@ -17,7 +17,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
   try {
     const authResult = await checkInternalAuth(request, { requireWorkflowId: false })
 
-    if (!authResult.success) {
+    if (!authResult.success || !authResult.userId) {
       logger.warn(`[${requestId}] Unauthorized Slack send attempt: ${authResult.error}`)
       return NextResponse.json(
         {
@@ -28,8 +28,9 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
       )
     }
 
+    const userId = authResult.userId
     logger.info(`[${requestId}] Authenticated Slack send request via ${authResult.authType}`, {
-      userId: authResult.userId,
+      userId,
     })
 
     const parsed = await parseRequest(slackSendMessageContract, request, {})
@@ -50,6 +51,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
         accessToken: validatedData.accessToken,
         channel: validatedData.channel ?? undefined,
         userId: validatedData.userId ?? undefined,
+        ownerUserId: userId,
         text: validatedData.text,
         threadTs: validatedData.thread_ts ?? undefined,
         blocks: validatedData.blocks ?? undefined,
diff --git a/apps/sim/app/api/tools/slack/utils.ts b/apps/sim/app/api/tools/slack/utils.ts
@@ -2,6 +2,7 @@ import type { Logger } from '@sim/logger'
 import { secureFetchWithValidation } from '@/lib/core/security/input-validation.server'
 import { processFilesToUserFiles } from '@/lib/uploads/utils/file-utils'
 import { downloadFileFromStorage } from '@/lib/uploads/utils/file-utils.server'
+import { verifyFileAccess } from '@/app/api/files/authorization'
 import type { ToolFileData } from '@/tools/types'
 
 /**
@@ -73,7 +74,8 @@ async function uploadFilesToSlack(
   files: any[],
   accessToken: string,
   requestId: string,
-  logger: Logger
+  logger: Logger,
+  ownerUserId: string
 ): Promise<{ fileIds: string[]; files: ToolFileData[] }> {
   const userFiles = processFilesToUserFiles(files, requestId, logger)
   const uploadedFileIds: string[] = []
@@ -82,6 +84,11 @@ async function uploadFilesToSlack(
   for (const userFile of userFiles) {
     logger.info(`[${requestId}] Uploading file: ${userFile.name}`)
 
+    const hasAccess = await verifyFileAccess(userFile.key, ownerUserId)
+    if (!hasAccess) {
+      throw new Error('File not found')
+    }
+
     const buffer = await downloadFileFromStorage(userFile, requestId, logger)
 
     const getUrlResponse = await fetch('https://slack.com/api/files.getUploadURLExternal', {
@@ -220,6 +227,7 @@ export interface SlackMessageParams {
   accessToken: string
   channel?: string
   userId?: string
+  ownerUserId: string
   text: string
   threadTs?: string | null
   blocks?: unknown[] | null
@@ -245,7 +253,7 @@ export async function sendSlackMessage(
   }
   error?: string
 }> {
-  const { accessToken, text, threadTs, blocks, files } = params
+  const { accessToken, text, threadTs, blocks, files, ownerUserId } = params
   let { channel } = params
 
   if (!channel && params.userId) {
@@ -278,7 +286,8 @@ export async function sendSlackMessage(
     files,
     accessToken,
     requestId,
-    logger
+    logger,
+    ownerUserId
   )
 
   // No valid files uploaded - send text-only
diff --git a/apps/sim/app/api/tools/stt/route.ts b/apps/sim/app/api/tools/stt/route.ts
@@ -17,6 +17,7 @@ import {
   downloadFileFromStorage,
   resolveInternalFileUrl,
 } from '@/lib/uploads/utils/file-utils.server'
+import { assertToolFileAccess } from '@/app/api/files/authorization'
 import type { TranscriptSegment } from '@/tools/stt/types'
 
 const logger = createLogger('SttProxyAPI')
@@ -31,7 +32,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
 
   try {
     const authResult = await checkInternalAuth(request, { requireWorkflowId: false })
-    if (!authResult.success) {
+    if (!authResult.success || !authResult.userId) {
       return NextResponse.json({ error: 'Unauthorized' }, { status: 401 })
     }
 
@@ -79,6 +80,8 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
       const file = Array.isArray(body.audioFile) ? body.audioFile[0] : body.audioFile
       logger.info(`[${requestId}] Processing uploaded file: ${file.name}`)
 
+      const deniedAudio = await assertToolFileAccess(file.key, userId, requestId, logger)
+      if (deniedAudio) return deniedAudio
       audioBuffer = await downloadFileFromStorage(file, requestId, logger)
       audioFileName = file.name
       // file.type may be missing if the file came from a block that doesn't preserve it
@@ -97,6 +100,8 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
         : body.audioFileReference
       logger.info(`[${requestId}] Processing referenced file: ${file.name}`)
 
+      const deniedRef = await assertToolFileAccess(file.key, userId, requestId, logger)
+      if (deniedRef) return deniedRef
       audioBuffer = await downloadFileFromStorage(file, requestId, logger)
       audioFileName = file.name
 
diff --git a/apps/sim/app/api/tools/textract/parse/route.ts b/apps/sim/app/api/tools/textract/parse/route.ts
@@ -18,6 +18,7 @@ import {
   downloadFileFromStorage,
   resolveInternalFileUrl,
 } from '@/lib/uploads/utils/file-utils.server'
+import { assertToolFileAccess } from '@/app/api/files/authorization'
 
 export const dynamic = 'force-dynamic'
 export const maxDuration = 300 // 5 minutes for large multi-page PDF processing
@@ -428,6 +429,8 @@ export const POST = withRouteHandler(async (request: NextRequest) => {
         )
       }
 
+      const denied = await assertToolFileAccess(userFile.key, userId, requestId, logger)
+      if (denied) return denied
       const buffer = await downloadFileFromStorage(userFile, requestId, logger)
       bytes = buffer.toString('base64')
       contentType = userFile.type || 'application/octet-stream'
diff --git a/apps/sim/tools/microsoft_teams/server-utils.ts b/apps/sim/tools/microsoft_teams/server-utils.ts
@@ -7,6 +7,7 @@ import type { Logger } from '@sim/logger'
 import { secureFetchWithValidation } from '@/lib/core/security/input-validation.server'
 import { processFilesToUserFiles, type RawFileInput } from '@/lib/uploads/utils/file-utils'
 import { downloadFileFromStorage } from '@/lib/uploads/utils/file-utils.server'
+import { verifyFileAccess } from '@/app/api/files/authorization'
 import type { UserFile } from '@/executor/types'
 import type { GraphApiErrorResponse, GraphDriveItem } from '@/tools/microsoft_teams/types'
 
@@ -45,8 +46,9 @@ export async function uploadFilesForTeamsMessage(params: {
   accessToken: string
   requestId: string
   logger: Logger
+  userId: string
 }): Promise<TeamsFileUploadResult> {
-  const { rawFiles, accessToken, requestId, logger: log } = params
+  const { rawFiles, accessToken, requestId, logger: log, userId } = params
   const attachments: TeamsAttachmentRef[] = []
   const filesOutput: TeamsFileOutput[] = []
 
@@ -72,6 +74,11 @@ export async function uploadFilesForTeamsMessage(params: {
 
     log.info(`[${requestId}] Uploading file to Teams: ${file.name} (${file.size} bytes)`)
 
+    const hasAccess = await verifyFileAccess(file.key, userId)
+    if (!hasAccess) {
+      throw new Error('File not found')
+    }
+
     // Download file from storage
     const buffer = await downloadFileFromStorage(file, requestId, log)
     filesOutput.push({

Original file line number	Diff line number	Diff line change
`@@ -20,7 +20,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {`
`20`	`20`	`try {`
`21`	`21`	`const authResult = await checkInternalAuth(request, { requireWorkflowId: false })`
`22`	`22`
`23`		`- if (!authResult.success) {`
	`23`	`+ if (!authResult.success \|\| !authResult.userId) {`
`24`	`24`	logger.warn(`[${requestId}] Unauthorized Teams channel write attempt: ${authResult.error}`)
`25`	`25`	`return NextResponse.json(`
`26`	`26`	`{`
`@@ -31,10 +31,11 @@ export const POST = withRouteHandler(async (request: NextRequest) => {`
`31`	`31`	`)`
`32`	`32`	`}`
`33`	`33`
	`34`	`+ const userId = authResult.userId`
`34`	`35`	`logger.info(`
`35`	`36`	`[${requestId}] Authenticated Teams channel write request via ${authResult.authType}`,
`36`	`37`	`{`
`37`		`- userId: authResult.userId,`
	`38`	`+ userId,`
`38`	`39`	`}`
`39`	`40`	`)`
`40`	`41`
`@@ -54,6 +55,7 @@ export const POST = withRouteHandler(async (request: NextRequest) => {`
`54`	`55`	`accessToken: validatedData.accessToken,`
`55`	`56`	`requestId,`
`56`	`57`	`logger,`
	`58`	`+ userId,`
`57`	`59`	`})`
`58`	`60`
`59`	`61`	`let messageContent = validatedData.content`
Original file line number	Diff line number	Diff line change
`@@ -18,6 +18,7 @@ import {`
`18`	`18`	`downloadFileFromStorage,`
`19`	`19`	`resolveInternalFileUrl,`
`20`	`20`	`} from '@/lib/uploads/utils/file-utils.server'`
	`21`	`+import { assertToolFileAccess } from '@/app/api/files/authorization'`
`21`	`22`
`22`	`23`	`export const dynamic = 'force-dynamic'`
`23`	`24`	`export const maxDuration = 300 // 5 minutes for large multi-page PDF processing`
`@@ -428,6 +429,8 @@ export const POST = withRouteHandler(async (request: NextRequest) => {`
`428`	`429`	`)`
`429`	`430`	`}`
`430`	`431`
	`432`	`+ const denied = await assertToolFileAccess(userFile.key, userId, requestId, logger)`
	`433`	`+ if (denied) return denied`
`431`	`434`	`const buffer = await downloadFileFromStorage(userFile, requestId, logger)`
`432`	`435`	`bytes = buffer.toString('base64')`
`433`	`436`	`contentType = userFile.type \|\| 'application/octet-stream'`