uploadvalidator.class.php

一个用PHP编写的

<?php

	lt_include( PLOG_CLASS_PATH."class/data/validator/validator.class.php" );
	lt_include( PLOG_CLASS_PATH."class/config/config.class.php" );
    lt_include( PLOG_CLASS_PATH."class/misc/glob.class.php" );	

	define( "UPLOAD_MAX_SIZE", 2000000 );

    define( "UPLOAD_VALIDATOR_ERROR_UPLOAD_TOO_BIG", -1 );
    define( "UPLOAD_VALIDATOR_ERROR_FORBIDDEN_EXTENSION", -2 );
    define( "UPLOAD_VALIDATOR_ERROR_NOT_WHITELISTED_EXTENSION", -10 );

	/**
	 * \ingroup Validator
	 *
     * Given a FileUpload object, checks that it is not bigger than the maximum size allowed
     * and that it does not have one of the forbidden extensions.
     *
     * The maximum size allowed is controlled via the 'maximum_file_upload_size' configuration setting 
     * and the list of forbidden extensions can be configured via the upload_forbidde_files configuration
     * setting.
     *
     * If the validation is unsuccessful, the error codes UPLOAD_VALIDATOR_ERROR_UPLOAD_TOO_BIG or 
     * UPLOAD_VALIDATOR_ERROR_FORBIDDEN_EXTENSION will be set.
     */
	class UploadValidator extends Validator 
	{

        /**
         * Constructor. Initializes the rule.
         */
    	function UploadValidator()
        {
        	$this->Validator();
        }

    	/**
         * Returns true if the file is a valid upload, after making it go through all
         * our tests.
         *
         * @param upload An FileUpload object containing information about the file
         * @return Returns true if it is valid or a negative value meaning an error otherwise:
         * <ul><li>ERROR_UPLOAD_TOO_BIG (-1): The file bigger than the maximum allowed size</li>
         * <li>ERROR_FORBIDDEN_EXTENSION: The file has a forbidden extension.</li></ul>
         */
    	function validate( $upload )
        {
        	$config =& Config::getConfig();

            $forbiddenFilesStr = $config->getValue( "upload_forbidden_files" );
            $allowedFilesStr = $config->getValue( "upload_allowed_files" );
            $maxUploadSize     = $config->getValue( "maximum_file_upload_size" );
			
			// check if we received an object of the right type, or else just quit
			if( $upload == null ) {
				return false;
			}

            // first of all, check the size
            if( $maxUploadSize != 0 && $upload->getSize() > $maxUploadSize ) {
            	return UPLOAD_VALIDATOR_ERROR_UPLOAD_TOO_BIG;
            }

			if( $allowedFilesStr != "" )
				$result = $this->validateWhitelist( $upload, $allowedFilesStr );
			elseif( $forbiddenFilesStr != "" )
				$result = $this->validateBlacklist( $upload, $forbiddenFilesStr );
			else
				$result = true;
				
			return( $result );
        }

		/**
		 * @private
		 * Validates the given uploaded file agains a blackist/list of forbidden extensions
		 * @return Returns true if successful or false otherwise
		 */
		function validateBlacklist( $upload, $forbiddenFilesStr )
		{
            // check if the filename extension is forbidden or not
            $fileName = basename($upload->getFileName());
            foreach( explode( " ", $forbiddenFilesStr ) as $file ) {
            	if( Glob::myFnmatch( $file, $fileName )) {
                	return UPLOAD_VALIDATOR_ERROR_FORBIDDEN_EXTENSION;
                }
            }

        	return true;			
		}
		
		/**
		 * @private
		 * Validates the given uploaded file agains a whitelist/list of allowed extensions
		 * @return Returns true if successful or false otherwise
		 */		
		function validateWhitelist( $upload, $allowedFilesStr )
		{
            // check if the filename extension is one of the allowed ones or not
            $fileName = basename($upload->getFileName());
            foreach( explode( " ", $allowedFilesStr ) as $file ) {
            	if( Glob::myFnmatch( $file, $fileName )) {
					print("it's a valid file!");
                	return true;
                }
            }

        	return UPLOAD_VALIDATOR_ERROR_NOT_WHITELISTED_EXTENSION;			
		}
    }
?>