addressed bot identified issues

garland3 · garland3 · commit fee54a4e67f8 · 2025-10-25T20:53:01.000Z
diff --git a/backend/main.py b/backend/main.py
@@ -177,12 +177,12 @@ async def websocket_endpoint(websocket: WebSocket):
     """
     await websocket.accept()
 
-    # Basic auth: derive user from query parameters or use test user
+    # Basic auth: derive user from query parameters - reject if not provided
     user_email = websocket.query_params.get('user')
     if not user_email:
-        # Fallback to test user or require auth
-        config_manager = app_factory.get_config_manager()
-        user_email = config_manager.app_settings.test_user or 'test@test.com'
+        # Reject connection if user is not provided or authentication fails
+        await websocket.close(code=4401, reason="Unauthorized: user authentication required")
+        return
 
     session_id = uuid4()
 
diff --git a/backend/routes/files_routes.py b/backend/routes/files_routes.py
@@ -60,12 +60,13 @@ async def upload_file(
     # Validate base64 content size (configurable limit to prevent abuse)
     try:
         content_size = len(request.content_base64) * 3 // 4  # approximate decoded size
-        max_size = 50 * 1024 * 1024  # 50MB default (configurable)
-        if content_size > max_size:
-            raise HTTPException(status_code=413, detail=f"File too large. Maximum size is {max_size // (1024*1024)}MB")
     except Exception:
         raise HTTPException(status_code=400, detail="Invalid base64 content")
 
+    max_size = 250 * 1024 * 1024  # 250MB default (configurable)
+    if content_size > max_size:
+        raise HTTPException(status_code=413, detail=f"File too large. Maximum size is {max_size // (1024*1024)}MB")
+
     try:
         s3_client = app_factory.get_file_storage()
         result = await s3_client.upload_file(
@@ -127,11 +128,8 @@ async def list_files(
         processed_files = []
         for file_data in result:
             processed_file = file_data.copy()
-            if isinstance(processed_file.get('last_modified'), str):
-                # If already a string, keep it
-                pass
-            else:
-                # Convert datetime to ISO format string
+            if not isinstance(processed_file.get('last_modified'), str):
+                # Convert datetime to ISO format string if it's not already a string
                 try:
                     processed_file['last_modified'] = processed_file['last_modified'].isoformat()
                 except AttributeError:
diff --git a/frontend/src/components/SessionFilesView.jsx b/frontend/src/components/SessionFilesView.jsx
@@ -1,4 +1,3 @@
-import { useState, useEffect } from 'react'
 import {
   File,
   Image,

Original file line number	Diff line number	Diff line change
`@@ -1,4 +1,3 @@`
`1`		`-import { useState, useEffect } from 'react'`
`2`	`1`	`import {`
`3`	`2`	`File,`
`4`	`3`	`Image,`