FileValidator.php 7.97 KB
Newer Older
w  
Qiang Xue committed
1 2 3
<?php
/**
 * @link http://www.yiiframework.com/
Qiang Xue committed
4
 * @copyright Copyright (c) 2008 Yii Software LLC
w  
Qiang Xue committed
5 6 7
 * @license http://www.yiiframework.com/license/
 */

w  
Qiang Xue committed
8 9
namespace yii\validators;

10 11 12
use Yii;
use yii\web\UploadedFile;

w  
Qiang Xue committed
13
/**
14
 * FileValidator verifies if an attribute is receiving a valid uploaded file.
w  
Qiang Xue committed
15
 *
16
 * @property integer $sizeLimit The size limit for uploaded files. This property is read-only.
17
 *
w  
Qiang Xue committed
18
 * @author Qiang Xue <qiang.xue@gmail.com>
Alexander Makarov committed
19
 * @since 2.0
w  
Qiang Xue committed
20
 */
21
class FileValidator extends Validator
w  
Qiang Xue committed
22 23
{
	/**
24
	 * @var array|string a list of file name extensions that are allowed to be uploaded.
w  
Qiang Xue committed
25 26 27 28
	 * This can be either an array or a string consisting of file extension names
	 * separated by space or comma (e.g. "gif, jpg").
	 * Extension names are case-insensitive. Defaults to null, meaning all file name
	 * extensions are allowed.
Gudz Taras committed
29
	 * @see wrongType
w  
Qiang Xue committed
30 31 32 33 34 35 36 37 38 39 40 41 42
	 */
	public $types;
	/**
	 * @var integer the minimum number of bytes required for the uploaded file.
	 * Defaults to null, meaning no limit.
	 * @see tooSmall
	 */
	public $minSize;
	/**
	 * @var integer the maximum number of bytes required for the uploaded file.
	 * Defaults to null, meaning no limit.
	 * Note, the size limit is also affected by 'upload_max_filesize' INI setting
	 * and the 'MAX_FILE_SIZE' hidden field value.
43
	 * @see tooBig
w  
Qiang Xue committed
44 45
	 */
	public $maxSize;
46 47 48 49
	/**
	 * @var integer the maximum file count the given attribute can hold.
	 * It defaults to 1, meaning single file upload. By defining a higher number,
	 * multiple uploads become possible.
Gudz Taras committed
50
	 * @see tooMany
51 52 53 54 55 56 57 58 59 60
	 */
	public $maxFiles = 1;
	/**
	 * @var string the error message used when a file is not uploaded correctly.
	 */
	public $message;
	/**
	 * @var string the error message used when no file is uploaded.
	 */
	public $uploadRequired;
w  
Qiang Xue committed
61 62
	/**
	 * @var string the error message used when the uploaded file is too large.
63 64 65 66 67
	 * You may use the following tokens in the message:
	 *
	 * - {attribute}: the attribute name
	 * - {file}: the uploaded file name
	 * - {limit}: the maximum size allowed (see [[getSizeLimit()]])
w  
Qiang Xue committed
68
	 */
69
	public $tooBig;
w  
Qiang Xue committed
70 71
	/**
	 * @var string the error message used when the uploaded file is too small.
72 73 74 75 76
	 * You may use the following tokens in the message:
	 *
	 * - {attribute}: the attribute name
	 * - {file}: the uploaded file name
	 * - {limit}: the value of [[minSize]]
w  
Qiang Xue committed
77 78 79 80
	 */
	public $tooSmall;
	/**
	 * @var string the error message used when the uploaded file has an extension name
Gudz Taras committed
81
	 * that is not listed in [[types]]. You may use the following tokens in the message:
82 83
	 *
	 * - {attribute}: the attribute name
Gudz Taras committed
84
	 * - {file}: the uploaded file name
85
	 * - {extensions}: the list of the allowed extensions.
w  
Qiang Xue committed
86 87 88
	 */
	public $wrongType;
	/**
89 90 91 92 93
	 * @var string the error message used if the count of multiple uploads exceeds limit.
	 * You may use the following tokens in the message:
	 *
	 * - {attribute}: the attribute name
	 * - {limit}: the value of [[maxFiles]]
w  
Qiang Xue committed
94 95 96 97
	 */
	public $tooMany;

	/**
98
	 * Initializes the validator.
w  
Qiang Xue committed
99
	 */
100
	public function init()
w  
Qiang Xue committed
101
	{
102 103
		parent::init();
		if ($this->message === null) {
104
			$this->message = Yii::t('yii', 'File upload failed.');
105 106
		}
		if ($this->uploadRequired === null) {
107
			$this->uploadRequired = Yii::t('yii', 'Please upload a file.');
w  
Qiang Xue committed
108
		}
109
		if ($this->tooMany === null) {
110
			$this->tooMany = Yii::t('yii', 'You can upload at most {limit} files.');
111 112
		}
		if ($this->wrongType === null) {
113
			$this->wrongType = Yii::t('yii', 'Only files with these extensions are allowed: {extensions}.');
114 115
		}
		if ($this->tooBig === null) {
116
			$this->tooBig = Yii::t('yii', 'The file "{file}" is too big. Its size cannot exceed {limit} bytes.');
117 118
		}
		if ($this->tooSmall === null) {
119
			$this->tooSmall = Yii::t('yii', 'The file "{file}" is too small. Its size cannot be smaller than {limit} bytes.');
120 121 122
		}
		if (!is_array($this->types)) {
			$this->types = preg_split('/[\s,]+/', strtolower($this->types), -1, PREG_SPLIT_NO_EMPTY);
123
		}
w  
Qiang Xue committed
124 125 126
	}

	/**
127
	 * Validates the attribute.
w  
Qiang Xue committed
128
	 * @param \yii\base\Model $object the object being validated
w  
Qiang Xue committed
129 130
	 * @param string $attribute the attribute being validated
	 */
131
	public function validateAttribute($object, $attribute)
w  
Qiang Xue committed
132
	{
133 134 135 136 137 138 139
		if ($this->maxFiles > 1) {
			$files = $object->$attribute;
			if (!is_array($files)) {
				$this->addError($object, $attribute, $this->uploadRequired);
				return;
			}
			foreach ($files as $i => $file) {
140
				if (!$file instanceof UploadedFile || $file->error == UPLOAD_ERR_NO_FILE) {
141 142 143 144
					unset($files[$i]);
				}
			}
			$object->$attribute = array_values($files);
145 146
			if (empty($files)) {
				$this->addError($object, $attribute, $this->uploadRequired);
147 148
			}
			if (count($files) > $this->maxFiles) {
149
				$this->addError($object, $attribute, $this->tooMany, ['limit' => $this->maxFiles]);
150 151 152 153 154 155 156
			} else {
				foreach ($files as $file) {
					$this->validateFile($object, $attribute, $file);
				}
			}
		} else {
			$file = $object->$attribute;
157
			if ($file instanceof UploadedFile && $file->error != UPLOAD_ERR_NO_FILE) {
158 159
				$this->validateFile($object, $attribute, $file);
			} else {
160
				$this->addError($object, $attribute, $this->uploadRequired);
w  
Qiang Xue committed
161 162 163 164 165
			}
		}
	}

	/**
166
	 * Internally validates a file object.
w  
Qiang Xue committed
167
	 * @param \yii\base\Model $object the object being validated
w  
Qiang Xue committed
168
	 * @param string $attribute the attribute being validated
169
	 * @param UploadedFile $file uploaded file passed to check against a set of rules
w  
Qiang Xue committed
170
	 */
171
	public function validateFile($object, $attribute, $file)
w  
Qiang Xue committed
172
	{
173
		switch ($file->error) {
174
			case UPLOAD_ERR_OK:
175
				if ($this->maxSize !== null && $file->size > $this->maxSize) {
176
					$this->addError($object, $attribute, $this->tooBig, ['file' => $file->name, 'limit' => $this->getSizeLimit()]);
177
				}
178
				if ($this->minSize !== null && $file->size < $this->minSize) {
179
					$this->addError($object, $attribute, $this->tooSmall, ['file' => $file->name, 'limit' => $this->minSize]);
180
				}
181
				if (!empty($this->types) && !in_array(strtolower(pathinfo($file->name, PATHINFO_EXTENSION)), $this->types, true)) {
182
					$this->addError($object, $attribute, $this->wrongType, ['file' => $file->name, 'extensions' => implode(', ', $this->types)]);
183 184 185 186
				}
				break;
			case UPLOAD_ERR_INI_SIZE:
			case UPLOAD_ERR_FORM_SIZE:
187
				$this->addError($object, $attribute, $this->tooBig, ['file' => $file->name, 'limit' => $this->getSizeLimit()]);
188 189 190
				break;
			case UPLOAD_ERR_PARTIAL:
				$this->addError($object, $attribute, $this->message);
191
				Yii::warning('File was only partially uploaded: ' . $file->name, __METHOD__);
192 193 194
				break;
			case UPLOAD_ERR_NO_TMP_DIR:
				$this->addError($object, $attribute, $this->message);
195
				Yii::warning('Missing the temporary folder to store the uploaded file: ' . $file->name, __METHOD__);
196 197 198
				break;
			case UPLOAD_ERR_CANT_WRITE:
				$this->addError($object, $attribute, $this->message);
199
				Yii::warning('Failed to write the uploaded file to disk: ' . $file->name, __METHOD__);
200 201 202
				break;
			case UPLOAD_ERR_EXTENSION:
				$this->addError($object, $attribute, $this->message);
203
				Yii::warning('File upload was stopped by some PHP extension: ' . $file->name, __METHOD__);
204 205 206
				break;
			default:
				break;
w  
Qiang Xue committed
207 208 209 210 211 212
		}
	}

	/**
	 * Returns the maximum size allowed for uploaded files.
	 * This is determined based on three factors:
213 214 215 216
	 *
	 * - 'upload_max_filesize' in php.ini
	 * - 'MAX_FILE_SIZE' hidden field
	 * - [[maxSize]]
w  
Qiang Xue committed
217 218 219
	 *
	 * @return integer the size limit for uploaded files.
	 */
w  
Qiang Xue committed
220
	public function getSizeLimit()
w  
Qiang Xue committed
221 222 223
	{
		$limit = ini_get('upload_max_filesize');
		$limit = $this->sizeToBytes($limit);
224
		if ($this->maxSize !== null && $limit > 0 && $this->maxSize < $limit) {
w  
Qiang Xue committed
225
			$limit = $this->maxSize;
226 227 228 229
		}
		if (isset($_POST['MAX_FILE_SIZE']) && $_POST['MAX_FILE_SIZE'] > 0 && $_POST['MAX_FILE_SIZE'] < $limit) {
			$limit = (int)$_POST['MAX_FILE_SIZE'];
		}
w  
Qiang Xue committed
230 231 232 233 234 235 236 237 238 239 240
		return $limit;
	}

	/**
	 * Converts php.ini style size to bytes
	 *
	 * @param string $sizeStr $sizeStr
	 * @return int
	 */
	private function sizeToBytes($sizeStr)
	{
241 242 243 244 245 246 247 248 249 250 251 252
		switch (substr($sizeStr, -1)) {
			case 'M':
			case 'm':
				return (int)$sizeStr * 1048576;
			case 'K':
			case 'k':
				return (int)$sizeStr * 1024;
			case 'G':
			case 'g':
				return (int)$sizeStr * 1073741824;
			default:
				return (int)$sizeStr;
w  
Qiang Xue committed
253 254
		}
	}
Rasmus Lerdorf committed
255
}