linea-it · crisingulani · May 6, 2026 · May 20, 2026
diff --git a/backend/core/migrations/0058_productfile_storage_kind_metadata.py b/backend/core/migrations/0058_productfile_storage_kind_metadata.py
@@ -0,0 +1,31 @@
+# Generated by Codex on 2026-04-30
+
+from django.db import migrations, models
+
+
+class Migration(migrations.Migration):
+
+    dependencies = [
+        ("core", "0057_delete_groupmembership"),
+    ]
+
+    operations = [
+        migrations.AddField(
+            model_name="productfile",
+            name="metadata",
+            field=models.JSONField(blank=True, default=dict),
+        ),
+        migrations.AddField(
+            model_name="productfile",
+            name="storage_kind",
+            field=models.CharField(
+                choices=[
+                    ("file", "File"),
+                    ("hats_collection", "HATS Collection"),
+                ],
+                default="file",
+                max_length=32,
+                verbose_name="Storage Kind",
+            ),
+        ),
+    ]
diff --git a/backend/core/models/__init__.py b/backend/core/models/__init__.py
@@ -2,7 +2,7 @@
 from core.models.product_type import ProductType
 from core.models.product import Product, ProductStatus
 from core.models.product_content import ProductContent
-from core.models.product_file import ProductFile, FileRoles
+from core.models.product_file import ProductFile, FileRoles, FileStorageKind
 from core.models.user_profile import Profile
 from core.models.pipeline import Pipeline
 from core.models.process import Process

diff --git a/backend/core/models/product_file.py b/backend/core/models/product_file.py
@@ -1,4 +1,6 @@
 import os
+import pathlib
+import shutil
 
 from core.models import Product
 from django.db import models
@@ -14,6 +16,11 @@ class FileRoles(models.IntegerChoices):
     AUXILIARY = 2, "Auxiliary"
 
 
+class FileStorageKind(models.TextChoices):
+    FILE = "file", "File"
+    HATS_COLLECTION = "hats_collection", "HATS Collection"
+
+
 class ProductFile(models.Model):
 
     product = models.ForeignKey(Product, on_delete=models.CASCADE, related_name="files")
@@ -37,12 +44,24 @@ class ProductFile(models.Model):
     extension = models.CharField(
         verbose_name="Extension", max_length=10, null=True, blank=True
     )
+    storage_kind = models.CharField(
+        verbose_name="Storage Kind",
+        max_length=32,
+        choices=FileStorageKind.choices,
+        default=FileStorageKind.FILE,
+    )
+    metadata = models.JSONField(default=dict, blank=True)
     created = models.DateTimeField(auto_now_add=True, blank=True)
     updated = models.DateTimeField(auto_now=True)
 
     def delete(self, *args, **kwargs):
         if self.file:
-            self.file.delete()
+            if self.storage_kind == FileStorageKind.HATS_COLLECTION:
+                path = pathlib.Path(self.file.path)
+                if path.exists():
+                    shutil.rmtree(path)
+            else:
+                self.file.delete()
         super().delete(*args, **kwargs)
 
     def can_delete(self, user) -> bool:

diff --git a/backend/core/product_steps.py b/backend/core/product_steps.py
@@ -3,8 +3,8 @@
 import time
 from json import dumps, loads
 
-from core.models import Product, ProductContent, ProductFile
-from core.product_handle import NotTableError
+from core.models import FileStorageKind, Product, ProductContent, ProductFile
+from core.product_handle import NotTableError, ProductHandle
 from core.serializers import ProductSerializer
 from core.table_data_collector import MainTableDataCollector
 from django.conf import settings
@@ -277,7 +277,9 @@ def registry(self):
     @classmethod
     def get_table_preview_path(cls, product):
         """Build the absolute path to the cached table preview JSON file."""
-        return pathlib.Path(settings.MEDIA_ROOT, product.path, cls.TABLE_PREVIEW_FILENAME)
+        return pathlib.Path(
+            settings.MEDIA_ROOT, product.path, cls.TABLE_PREVIEW_FILENAME
+        )
 
     @classmethod
     def get_table_preview_processing_path(cls, product):

diff --git a/backend/core/services/hats_collection.py b/backend/core/services/hats_collection.py
@@ -0,0 +1,283 @@
+import logging
+import os
+import pathlib
+import shutil
+import stat
+import tarfile
+import tempfile
+import zipfile
+
+from django.conf import settings
+
+LOGGER = logging.getLogger("django")
+
+HATS_ARCHIVE_EXTENSIONS = (".tar", ".tar.gz", ".tgz", ".zip")
+HATS_REJECTED_PRODUCT_TYPES = {"training_results"}
+DEFAULT_MAX_MEMBERS = 200000
+DEFAULT_MAX_EXTRACTED_SIZE = 20 * 1024 * 1024 * 1024
+
+
+class HatsArchiveError(ValueError):
+    pass
+
+
+class NotHatsCollectionError(HatsArchiveError):
+    pass
+
+
+class UnsafeArchiveError(HatsArchiveError):
+    pass
+
+
+def is_hats_archive_name(filename):
+    name = filename.lower()
+    return name.endswith(HATS_ARCHIVE_EXTENSIONS)
+
+
+def product_type_accepts_hats(product_type_name):
+    return product_type_name not in HATS_REJECTED_PRODUCT_TYPES
+
+
+def _is_relative_safe_path(path):
+    candidate = pathlib.PurePosixPath(path.replace("\\", "/"))
+    return not candidate.is_absolute() and ".." not in candidate.parts
+
+
+def _safe_target(root, member_name):
+    target = pathlib.Path(root, member_name).resolve()
+    root = pathlib.Path(root).resolve()
+    try:
+        target.relative_to(root)
+    except ValueError as exc:
+        raise UnsafeArchiveError(f"Unsafe archive path: {member_name}") from exc
+    return target
+
+
+def _check_member_count(count):
+    max_members = getattr(settings, "HATS_MAX_ARCHIVE_MEMBERS", DEFAULT_MAX_MEMBERS)
+    if count > max_members:
+        raise UnsafeArchiveError(
+            f"Archive has too many members ({count}; maximum is {max_members})."
+        )
+
+
+def _check_total_size(total_size):
+    max_size = getattr(
+        settings, "HATS_MAX_EXTRACTED_SIZE", DEFAULT_MAX_EXTRACTED_SIZE
+    )
+    if total_size > max_size:
+        raise UnsafeArchiveError(
+            "Archive extracted size exceeds the configured limit "
+            f"({total_size} bytes; maximum is {max_size})."
+        )
+
+
+def _extract_tar(archive_path, destination):
+    total_size = 0
+    with tarfile.open(archive_path) as tar:
+        members = tar.getmembers()
+        _check_member_count(len(members))
+
+        for member in members:
+            if not _is_relative_safe_path(member.name):
+                raise UnsafeArchiveError(f"Unsafe archive path: {member.name}")
+            if member.issym() or member.islnk() or member.isdev():
+                raise UnsafeArchiveError(
+                    f"Archive member is not a regular file or directory: {member.name}"
+                )
+            if member.isfile():
+                total_size += member.size
+                _check_total_size(total_size)
+
+        for member in members:
+            target = _safe_target(destination, member.name)
+            if member.isdir():
+                target.mkdir(parents=True, exist_ok=True)
+                continue
+
+            if member.isfile():
+                target.parent.mkdir(parents=True, exist_ok=True)
+                source = tar.extractfile(member)
+                if source is None:
+                    raise UnsafeArchiveError(
+                        f"Could not read archive member: {member.name}"
+                    )
+                with source, open(target, "wb") as output:
+                    shutil.copyfileobj(source, output)
+
+
+def _zip_member_is_symlink(info):
+    mode = info.external_attr >> 16
+    return stat.S_ISLNK(mode)
+
+
+def _extract_zip(archive_path, destination):
+    total_size = 0
+    with zipfile.ZipFile(archive_path) as zip_archive:
+        members = zip_archive.infolist()
+        _check_member_count(len(members))
+
+        for member in members:
+            if not _is_relative_safe_path(member.filename):
+                raise UnsafeArchiveError(f"Unsafe archive path: {member.filename}")
+            if _zip_member_is_symlink(member):
+                raise UnsafeArchiveError(
+                    f"Archive member is not a regular file or directory: {member.filename}"
+                )
+            if not member.is_dir():
+                total_size += member.file_size
+                _check_total_size(total_size)
+
+        for member in members:
+            target = _safe_target(destination, member.filename)
+            if member.is_dir():
+                target.mkdir(parents=True, exist_ok=True)
+                continue
+
+            target.parent.mkdir(parents=True, exist_ok=True)
+            with zip_archive.open(member) as source, open(target, "wb") as output:
+                shutil.copyfileobj(source, output)
+
+
+def _extract_archive(archive_path, destination):
+    name = archive_path.name.lower()
+    if name.endswith((".tar", ".tar.gz", ".tgz")):
+        _extract_tar(archive_path, destination)
+        return
+
+    if name.endswith(".zip"):
+        _extract_zip(archive_path, destination)
+        return
+
+    raise NotHatsCollectionError("Unsupported HATS archive extension.")
+
+
+def _candidate_roots(extracted_dir):
+    roots = []
+    for root, dirs, files in os.walk(extracted_dir):
+        file_names = set(files)
+        if "collection.properties" in file_names or "hats.properties" in file_names:
+            roots.append(pathlib.Path(root))
+    return roots
+
+
+def _read_properties_file(path):
+    data = {}
+    if not path.exists():
+        return data
+
+    with open(path, encoding="utf-8") as properties:
+        for raw_line in properties:
+            line = raw_line.strip()
+            if not line or line.startswith("#") or "=" not in line:
+                continue
+            key, value = line.split("=", 1)
+            data[key.strip()] = value.strip().replace("\\:", ":")
+    return data
+
+
+def _to_jsonable_dtypes(dtypes):
+    return {str(column): str(dtype) for column, dtype in dtypes.items()}
+
+
+def _validate_with_lsdb(candidate):
+    try:
+        import lsdb
+    except ImportError as exc:
+        raise HatsArchiveError(
+            "LSDB is not installed in the backend environment; "
+            "HATS validation cannot be performed."
+        ) from exc
+
+    try:
+        catalog = lsdb.open_catalog(candidate)
+    except Exception as exc:
+        raise NotHatsCollectionError(f"Archive is not a valid HATS collection: {exc}")
+
+    columns = [str(column) for column in getattr(catalog, "all_columns", [])]
+    if not columns:
+        columns = [str(column) for column in getattr(catalog, "columns", [])]
+
+    metadata = {
+        "columns": columns,
+        "dtypes": _to_jsonable_dtypes(getattr(catalog, "dtypes", {})),
+        "npartitions": getattr(catalog, "npartitions", None),
+        "name": getattr(catalog, "name", None),
+        "hats": _read_properties_file(pathlib.Path(candidate, "hats.properties")),
+        "collection": _read_properties_file(
+            pathlib.Path(candidate, "collection.properties")
+        ),
+    }
+
+    n_rows = metadata["hats"].get("hats_nrows")
+    if n_rows is not None:
+        try:
+            metadata["n_rows"] = int(n_rows)
+        except ValueError:
+            metadata["n_rows"] = None
+
+    return metadata
+
+
+def _find_hats_root(extracted_dir):
+    validation_errors = []
+    for candidate in _candidate_roots(extracted_dir):
+        try:
+            metadata = _validate_with_lsdb(candidate)
+            return candidate, metadata
+        except NotHatsCollectionError as exc:
+            validation_errors.append(str(exc))
+
+    message = "Archive does not contain a valid HATS collection."
+    if validation_errors:
+        message = f"{message} {'; '.join(validation_errors)}"
+    raise NotHatsCollectionError(message)
+
+
+def _write_upload_to_temp(uploaded_file, tmpdir):
+    suffix = pathlib.Path(uploaded_file.name).suffix
+    name = uploaded_file.name.lower()
+    if name.endswith(".tar.gz"):
+        suffix = ".tar.gz"
+    elif name.endswith(".tgz"):
+        suffix = ".tgz"
+
+    archive_path = pathlib.Path(tmpdir, f"upload{suffix}")
+    with open(archive_path, "wb") as output:
+        for chunk in uploaded_file.chunks():
+            output.write(chunk)
+    return archive_path
+
+
+def validate_and_store_hats_archive(uploaded_file, product, target_name="main"):
+    with tempfile.TemporaryDirectory() as tmpdir:
+        archive_path = _write_upload_to_temp(uploaded_file, tmpdir)
+        extracted_dir = pathlib.Path(tmpdir, "extracted")
+        extracted_dir.mkdir()
+
+        _extract_archive(archive_path, extracted_dir)
+        hats_root, metadata = _find_hats_root(extracted_dir)
+
+        product_root = pathlib.Path(settings.MEDIA_ROOT, product.path)
+        target = pathlib.Path(product_root, target_name)
+        if target.exists():
+            raise HatsArchiveError(
+                f"A HATS collection already exists for this product at '{target_name}'."
+            )
+
+        target.parent.mkdir(parents=True, exist_ok=True)
+        shutil.move(str(hats_root), str(target))
+
+    relative_path = pathlib.Path(product.path, target_name)
+    return str(relative_path), metadata
+
+
+def validate_hats_archive(uploaded_file):
+    with tempfile.TemporaryDirectory() as tmpdir:
+        archive_path = _write_upload_to_temp(uploaded_file, tmpdir)
+        extracted_dir = pathlib.Path(tmpdir, "extracted")
+        extracted_dir.mkdir()
+
+        _extract_archive(archive_path, extracted_dir)
+        _, metadata = _find_hats_root(extracted_dir)
+        return metadata