/protected/extensions/EAjaxUpload/qqFileUploader.php

https://bitbucket.org/markmoskalenko/svitor · PHP · 151 lines · 119 code · 15 blank · 17 comment · 13 complexity · a50abf4d7518369be20be632365556f8 MD5 · raw file 

    

  1. <?php
    2. 

  2. /**
    3. 

  3.  * Handle file uploads via XMLHttpRequest
    4. 

  4.  */
    5. 

  5. class qqUploadedFileXhr {
    6. 

  6.     /**
    7. 

  7.      * Save the file to the specified path
    8. 

  8.      * @return boolean TRUE on success
    9. 

  9.      */
    10. 

  10.     function save($path) {
    11. 

  11.         $input = fopen("php://input", "r");
    12. 

  12.         $temp = tmpfile();
    13. 

  13.         $realSize = stream_copy_to_stream($input, $temp);
    14. 

  14.         fclose($input);
    15. 

  15. 

  16.         if ($realSize != $this->getSize()){
    17. 

  17.             return false;
    18. 

  18.         }
    19. 

  19. 

  20.         $target = fopen($path, "w");
    21. 

  21.         fseek($temp, 0, SEEK_SET);
    22. 

  22.         stream_copy_to_stream($temp, $target);
    23. 

  23.         fclose($target);
    24. 

  24. 

  25.         return true;
    26. 

  26.     }
    27. 

  27.     function getName() {
    28. 

  28.         return $_GET['qqfile'];
    29. 

  29.     }
    30. 

  30.     function getSize() {
    31. 

  31.         if (isset($_SERVER["CONTENT_LENGTH"])){
    32. 

  32.             return (int)$_SERVER["CONTENT_LENGTH"];
    33. 

  33.         } else {
    34. 

  34.             throw new Exception('Getting content length is not supported.');
    35. 

  35.         }
    36. 

  36.     }
    37. 

  37. }
    38. 

  38. 

  39. /**
    40. 

  40.  * Handle file uploads via regular form post (uses the $_FILES array)
    41. 

  41.  */
    42. 

  42. class qqUploadedFileForm {
    43. 

  43.     /**
    44. 

  44.      * Save the file to the specified path
    45. 

  45.      * @return boolean TRUE on success
    46. 

  46.      */
    47. 

  47.     function save($path) {
    48. 

  48.         if(!move_uploaded_file($_FILES['qqfile']['tmp_name'], $path)){
    49. 

  49.             return false;
    50. 

  50.         }
    51. 

  51.         return true;
    52. 

  52.     }
    53. 

  53.     function getName() {
    54. 

  54.         return $_FILES['qqfile']['name'];
    55. 

  55.     }
    56. 

  56.     function getSize() {
    57. 

  57.         return $_FILES['qqfile']['size'];
    58. 

  58.     }
    59. 

  59. }
    60. 

  60. 

  61. class qqFileUploader {
    62. 

  62.     private $allowedExtensions = array();
    63. 

  63.     private $sizeLimit = 10485760;
    64. 

  64.     private $file;
    65. 

  65. 

  66.     function __construct(array $allowedExtensions = array(), $sizeLimit = 10485760){
    67. 

  67.         $allowedExtensions = array_map("strtolower", $allowedExtensions);
    68. 

  68. 

  69.         $this->allowedExtensions = $allowedExtensions;
    70. 

  70.         $this->sizeLimit = $sizeLimit;
    71. 

  71. 

  72.         $this->checkServerSettings();
    73. 

  73. 

  74.         if (isset($_GET['qqfile'])) {
    75. 

  75.             $this->file = new qqUploadedFileXhr();
    76. 

  76.         } elseif (isset($_FILES['qqfile'])) {
    77. 

  77.             $this->file = new qqUploadedFileForm();
    78. 

  78.         } else {
    79. 

  79.             $this->file = false;
    80. 

  80.         }
    81. 

  81.     }
    82. 

  82. 

  83.     private function checkServerSettings(){
    84. 

  84.         $postSize = $this->toBytes(ini_get('post_max_size'));
    85. 

  85.         $uploadSize = $this->toBytes(ini_get('upload_max_filesize'));
    86. 

  86. 

  87.         if ($postSize < $this->sizeLimit || $uploadSize < $this->sizeLimit){
    88. 

  88.             $size = max(1, $this->sizeLimit / 1024 / 1024) . 'M';
    89. 

  89.             die("{'error':'increase post_max_size and upload_max_filesize to $size'}");
    90. 

  90.         }
    91. 

  91.     }
    92. 

  92. 

  93.     private function toBytes($str){
    94. 

  94.         $val = trim($str);
    95. 

  95.         $last = strtolower($str[strlen($str)-1]);
    96. 

  96.         switch($last) {
    97. 

  97.             case 'g': $val *= 1024;
    98. 

  98.             case 'm': $val *= 1024;
    99. 

  99.             case 'k': $val *= 1024;
    100. 

  100.         }
    101. 

  101.         return $val;
    102. 

  102.     }
    103. 

  103. 

  104.     /**
    105. 

  105.      * Returns array('success'=>true) or array('error'=>'error message')
    106. 

  106.      */
    107. 

  107.     function handleUpload($uploadDirectory, $replaceOldFile = FALSE, $fileName = null){
    108. 

  108.         if (!is_writable($uploadDirectory)){
    109. 

  109.             return array('error' => "Server error. Upload directory isn't writable.");
    110. 

  110.         }
    111. 

  111. 

  112.         if (!$this->file){
    113. 

  113.             return array('error' => 'No files were uploaded.');
    114. 

  114.         }
    115. 

  115. 

  116.         $size = $this->file->getSize();
    117. 

  117. 

  118.         if ($size == 0) {
    119. 

  119.             return array('error' => 'File is empty');
    120. 

  120.         }
    121. 

  121. 

  122.         if ($size > $this->sizeLimit) {
    123. 

  123.             return array('error' => 'File is too large');
    124. 

  124.         }
    125. 

  125. 

  126.         $pathinfo = pathinfo($this->file->getName());
    127. 

  127.         $filename = $fileName ? $fileName : $pathinfo['filename'];
    128. 

  128.         //$filename = md5(uniqid());
    129. 

  129.         $ext = $pathinfo['extension'];
    130. 

  130. 

  131.         if($this->allowedExtensions && !in_array(strtolower($ext), $this->allowedExtensions)){
    132. 

  132.             $these = implode(', ', $this->allowedExtensions);
    133. 

  133.             return array('error' => 'File has an invalid extension, it should be one of '. $these . '.');
    134. 

  134.         }
    135. 

  135. 

  136.         if(!$replaceOldFile){
    137. 

  137.             /// don't overwrite previous files that were uploaded
    138. 

  138.             while (file_exists($uploadDirectory . $filename . '.' . $ext)) {
    139. 

  139.                 $filename .= rand(10, 99);
    140. 

  140.             }
    141. 

  141.         }
    142. 

  142. 

  143.         if ($this->file->save($uploadDirectory . $filename . '.' . $ext)){
    144. 

  144.             return array('success'=>true,'filename'=>$filename.'.'.$ext);
    145. 

  145.         } else {
    146. 

  146.             return array('error'=> 'Could not save uploaded file.' .
    147. 

  147.                 'The upload was cancelled, or server error encountered');
    148. 

  148.         }
    149. 

  149. 

  150.     }
    151. 

  151. }
    152.