1: 2: 3: 4: 5: 6: 7: 8: 9: 10: 11: 12: 13: 14: 15: 16: 17: 18: 19: 20: 21: 22: 23: 24: 25: 26: 27: 28: 29: 30: 31: 32: 33: 34: 35: 36: 37: 38: 39: 40: 41: 42: 43: 44: 45: 46: 47: 48: 49: 50: 51: 52: 53: 54: 55: 56: 57: 58: 59: 60: 61: 62: 63: 64: 65: 66: 67: 68: 69: 70: 71: 72: 73: 74: 75: 76: 77: 78: 79: 80: 81: 82: 83: 84: 85: 86: 87: 88: 89: 90: 91: 92: 93: 94: 95: 96: 97: 98: 99: 100: 101: 102: 103: 104: 105: 106: 107: 108: 109: 110: 111: 112: 113: 114: 115: 116: 117: 118: 119: 120: 121: 122: 123: 124: 125: 126: 127: 128: 129: 130: 131: 132: 133: 134: 135: 136: 137: 138: 139: 140: 141: 142: 143: 144: 145: 146: 147: 148: 149: 150: 151: 152: 153: 154: 155: 156: 157: 158: 159: 160: 161: 162: 163: 164: 165: 166: 167: 168: 169: 170: 171: 172: 173: 174: 175: 176: 177: 178: 179: 180: 181: 182: 183: 184: 185: 186: 187: 188: 189: 190: 191: 192: 193: 194: 195: 196: 197: 198: 199: 200: 201: 202: 203: 204: 205: 206: 207: 208: 209: 210: 211: 212: 213: 214: 215: 216: 217: 218: 219: 220: 221: 222: 223: 224: 225: 226: 227: 228: 229: 230: 231: 232: 233: 234: 235: 236: 237: 238: 239: 240: 241: 242: 243: 244: 245: 246: 247: 248: 249: 250: 251: 252: 253: 254: 255: 256: 257: 258: 259: 260: 261: 262: 263: 264: 265: 266: 267: 268: 269: 270: 271: 272: 273: 274: 275: 276: 277: 278: 279: 280: 281: 282: 283: 284: 285: 286: 287: 288: 289: 290: 291: 292: 293: 294: 295: 296: 297: 298: 299: 300: 301: 302: 303: 304: 305: 306: 307: 308: 309: 310: 311: 312: 313: 314: 315: 316: 317: 318: 319: 320: 321: 322: 323: 324: 325: 326: 327: 328: 329: 330: 331: 332: 333: 334: 335: 336: 337: 338: 339: 340: 341: 342: 343: 344: 345: 346: 347: 348: 349: 350: 351: 352: 353: 354: 355: 356: 357: 358: 359: 360: 361: 362: 363: 364: 365: 366: 367: 368: 369: 370: 371: 372: 373: 374: 375: 376: 377: 378: 379: 380: 381: 382: 383: 384: 385: 386: 387: 388: 389: 390: 391: 392: 393: 394: 395: 396: 397: 398: 399: 400: 401: 402: 403: 404: 405: 406: 407: 408: 409: 410: 411: 412: 413: 414: 415: 416: 417: 418: 419: 420: 421: 422: 423: 424: 425: 426: 427: 428: 429: 430: 431: 432: 433: 434: 435: 436: 437: 438: 439: 440: 441: 442: 443: 444: 445: 446: 447: 448: 449: 450: 451: 452: 453: 454: 455: 456: 457: 458: 459: 460: 461: 462: 463: 464: 465: 466: 467: 468: 469: 470: 471: 472: 473: 474: 475: 476: 477: 478: 479: 480: 481: 482: 483: 484: 485: 486: 487: 488: 489: 490: 491: 492: 493: 494: 495: 496: 497: 498: 499: 500: 501: 502: 503: 504: 505: 506: 507: 508: 509: 510: 511: 512: 513: 514: <?php
/**
* MvcCore
*
* This source file is subject to the BSD 3 License
* For the full copyright and license information, please view
* the LICENSE.md file that are distributed with this source code.
*
* @copyright Copyright (c) 2016 Tom Flidr (https://github.com/mvccore)
* @license https://mvccore.github.io/docs/mvccore/5.0.0/LICENCE.md
*/
namespace MvcCore\Ext\Forms\Field\Props;
/**
* Trait for classes:
* - `\MvcCore\Ext\Forms\Fields\File`
* - `\MvcCore\Ext\Forms\Validators\Files`
*/
trait Files {
/**
* List of allowed file mimetypes or file extensions.
* All defined file mimetypes are checked with `finfo` PHP extension and checked by
* allowed file extensions for defined mimetype.
* All defined file extensions are translated internally on server side into mimetypes,
* then checked with `finfo` PHP extension and checked by
* allowed file extensions for defined mimetype.
* Example: `$this->accept = ['image/*', 'audio/mp3', '.docx'];`
* @see https://developer.mozilla.org/en-US/docs/Web/HTML/Element/input#attr-accept
* @var \string[]
*/
protected $accept = [];
/**
* Boolean attribute indicates that capture of media directly from the
* device's sensors using a media capture mechanism is preferred,
* such as a webcam or microphone. This HTML attribute is used on mobile devices.
* @see https://developer.mozilla.org/en-US/docs/Web/HTML/Element/input#attr-capture
* @see https://www.w3.org/TR/html-media-capture/#dfn-media-capture-mechanism
* @var string|NULL
*/
protected $capture = NULL;
/**
* Allowed file name characters and characters groups for submit regular expression.
* All regular expression special characters will be escaped by `addcslashes()`
* function to create proper regular expression pattern to keep only characters
* and characters groups presented in this variable. If there are not defined any
* characters, there is used in submit filename sanitization PHP constant:
* `static::ALLOWED_FILE_NAME_CHARS_DEFAULT`;
* @var string|NULL
*/
protected $allowedFileNameChars = NULL;
/**
* Minimum uploaded files count. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-min-count="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @var int|NULL
*/
protected $minCount = NULL;
/**
* Maximum uploaded files count. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-max-count="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @var int|NULL
*/
protected $maxCount = NULL;
/**
* Minimum uploaded file size for one uploaded item in bytes. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-min-size="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @var int|NULL
*/
protected $minSize = NULL;
/**
* Maximum uploaded file size for one uploaded item in bytes. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-max-size="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @var int|NULL
*/
protected $maxSize = NULL;
/**
* Maximum number of allowed files count inside
* single uploaded archive file. If uploaded archive
* has more files inside than this number, it's
* proclaimed as archive bomb and it's not uploaded.
* Default value is `1000`.
* @var int
*/
protected $archiveMaxItems = 1000;
/**
* Maximum number of allowed ZIP archive levels inside.
* If uploaded archive contains another zip archive and
* those archive another and another, this is maximum
* level for nested ZIP archives. If Archive contains
* more levels than this, it's proclaimed as archive
* bomb and it's not uploaded. Default value is `3`.
* @var int
*/
protected $archiveMaxLevels = 3;
/**
* Maximum archive compression percentage.
* If archive file has lower percentage size
* than all archive file items together,
* it's proclaimed as archive bomb and it's
* not uploaded. Default value is `10000`.
* @var float
*/
protected $archiveMaxCompressPercentage = 10.0;
/**
* PNG image maximum width or maximum height.
* PNG images use ZIP compression and that's why
* those images could be used as ZIP bombs.
* This limit helps to prevent file bombs
* based on PNG images.
* @var int
*/
protected $pngImageMaxWidthHeight = 10000;
/**
* Bomb scanner classes to scan uploaded files for file bombs.
* All classes in this list must implement interface:
* `\MvcCore\Ext\Forms\Validators\Files\Validations\IBombScanner`.
* @var \string[]
*/
protected $bombScanners = [
'\\MvcCore\\Ext\\Forms\\Validators\\Files\\Validations\\BombScanners\\ZipArchive',
'\\MvcCore\\Ext\\Forms\\Validators\\Files\\Validations\\BombScanners\\PngImage',
'\\MvcCore\\Ext\\Forms\\Validators\\Files\\Validations\\BombScanners\\GzArchive'
];
/**
* Get list of allowed file mime-types or file extensions.
* All defined file mime-types are checked with `finfo` PHP extension and checked by
* allowed file extensions for defined mime-type.
* All defined file extensions are translated internally on server side into mime-types,
* then checked with `finfo` PHP extension and checked by
* allowed file extensions for defined mime-type.
* Example: `$this->accept = ['image/*', 'audio/mp3', '.docx'];`
* @see https://developer.mozilla.org/en-US/docs/Web/HTML/Element/input#attr-accept
* @return \string[]
*/
public function GetAccept () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->accept;
}
/**
* Set list of allowed file mime-types or file extensions.
* All defined file mime-types are checked with `finfo` PHP extension and checked by
* allowed file extensions for defined mime-type.
* All defined file extensions are translated internally on server side into mime-types,
* then checked with `finfo` PHP extension and checked by
* allowed file extensions for defined mime-type.
* Example: `$this->accept = ['image/*', 'audio/mp3', '.docx'];`
* @see https://developer.mozilla.org/en-US/docs/Web/HTML/Element/input#attr-accept
* @param \string[] $accept
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetAccept (array $accept = []) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->accept = $accept;
return $this;
}
/**
* Get boolean attribute indicates that capture of media directly from the
* device's sensors using a media capture mechanism is preferred,
* such as a webcam or microphone. This HTML attribute is used on mobile devices.
* @see https://developer.mozilla.org/en-US/docs/Web/HTML/Element/input#attr-capture
* @return string|NULL
*/
public function GetCapture () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->capture;
}
/**
* Set boolean attribute indicates that capture of media directly from the
* device's sensors using a media capture mechanism is preferred,
* such as a webcam or microphone. This HTML attribute is used on mobile devices.
* @see https://developer.mozilla.org/en-US/docs/Web/HTML/Element/input#attr-capture
* @param string|NULL $capture
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetCapture ($capture = 'camera') {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->capture = $capture;
return $this;
}
/**
* Get allowed file name characters and characters groups for submit regular expression.
* All regular expression special characters will be escaped by `addcslashes()`
* function to create proper regular expression pattern to keep only characters
* and characters groups presented in this variable. If there are not defined any
* characters, there is used in submit filename sanitization PHP constant:
* `static::ALLOWED_FILE_NAME_CHARS_DEFAULT`;
* @return string|NULL
*/
public function GetAllowedFileNameChars () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->allowedFileNameChars;
}
/**
* Set allowed file name characters and characters groups for submit regular expression.
* All regular expression special characters will be escaped by `addcslashes()`
* function to create proper regular expression pattern to keep only characters
* and characters groups presented in this variable. If there are not defined any
* characters, there is used in submit filename sanitization PHP constant:
* `static::ALLOWED_FILE_NAME_CHARS_DEFAULT`;
* @param string|NULL $allowedFileNameChars
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetAllowedFileNameChars ($allowedFileNameChars) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->allowedFileNameChars = $allowedFileNameChars;
return $this;
}
/**
* Get minimum uploaded files count. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-min-count="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @return int|NULL
*/
public function GetMinCount () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->minCount;
}
/**
* Set minimum uploaded files count. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-min-count="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @param int|NULL $minCount
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetMinCount ($minCount) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->minCount = $minCount === NULL ? NULL : intval($minCount);
return $this;
}
/**
* Get maximum uploaded files count. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-max-count="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @return int|NULL
*/
public function GetMaxCount () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->maxCount;
}
/**
* Set maximum uploaded files count. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-max-count="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @param int|NULL $maxCount
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetMaxCount ($maxCount) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->maxCount = $maxCount === NULL ? NULL : intval($maxCount);
return $this;
}
/**
* Get minimum uploaded file size for one uploaded item in bytes. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-min-size="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @return int|NULL
*/
public function GetMinSize () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->minSize;
}
/**
* Set minimum uploaded file size for one uploaded item in bytes. `NULL` by default.
* You can use integer value or human form string like `1MB`.
* This attribute is not HTML5, it's rendered as `data-min-size="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @param int|NULL $minSize
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetMinSize ($minSize) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
if ($minSize !== NULL)
$this->minSize = \MvcCore\Ext\Form::ConvertBytesFromHumanForm(
$minSize
);
return $this;
}
/**
* Get maximum uploaded file size for one uploaded item in bytes. `NULL` by default.
* This attribute is not HTML5, it's rendered as `data-max-size="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @return int|NULL
*/
public function GetMaxSize () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->maxSize;
}
/**
* Set maximum uploaded file size for one uploaded item in bytes. `NULL` by default.
* You can use integer value or human form string like `5MB`.
* This attribute is not HTML5, it's rendered as `data-max-size="..."`.
* Attribute is not used on client side by default, but you can do it, it's
* only checked if attribute is not `NULL` in submit processing.
* @param int|string|NULL $maxSize
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetMaxSize ($maxSize) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
if ($maxSize !== NULL)
$this->maxSize = \MvcCore\Ext\Form::ConvertBytesFromHumanForm(
$maxSize
);
return $this;
}
/**
* Set maximum number of allowed files count inside
* single uploaded archive file. If uploaded archive
* has more files inside than this number, it's
* proclaimed as archive bomb and it's not uploaded.
* Default value is `1000`.
* @param int $archiveMaxItems Default `1000`.
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetArchiveMaxItems ($archiveMaxItems = 1000) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->archiveMaxItems = $archiveMaxItems;
return $this;
}
/**
* Get maximum number of allowed files count inside
* single uploaded archive file. If uploaded archive
* has more files inside than this number, it's
* proclaimed as archive bomb and it's not uploaded.
* Default value is `1000`.
* @return int
*/
public function GetArchiveMaxItems () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->archiveMaxItems;
}
/**
* Maximum number of allowed ZIP archive levels inside.
* If uploaded archive contains another zip archive and
* those archive another and another, this is maximum
* level for nested ZIP archives. If Archive contains
* more levels than this, it's proclaimed as archive
* bomb and it's not uploaded. Default value is `3`.
* @param int $archiveMaxLevels Default `3`.
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetArchiveMaxLevels ($archiveMaxLevels = 3) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->archiveMaxLevels = $archiveMaxLevels;
return $this;
}
/**
* Maximum number of allowed ZIP archive levels inside.
* If uploaded archive contains another zip archive and
* those archive another and another, this is maximum
* level for nested ZIP archives. If Archive contains
* more levels than this, it's proclaimed as archive
* bomb and it's not uploaded. Default value is `3`.
* @return int
*/
public function GetArchiveMaxLevels () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->archiveMaxLevels;
}
/**
* Set maximum archive compression percentage.
* If archive file has lower percentage size
* than all archive file items together,
* it's proclaimed as archive bomb and it's
* not uploaded.
* @param float $archiveMaxCompressPercentage Default `10.0`.
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetArchiveMaxCompressPercentage ($archiveMaxCompressPercentage = 10.0) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->archiveMaxCompressPercentage = $archiveMaxCompressPercentage;
return $this;
}
/**
* Get maximum archive compression percentage.
* If archive file has lower percentage size
* than all archive file items together,
* it's proclaimed as archive bomb and it's
* not uploaded.
* @return float
*/
public function GetArchiveMaxCompressPercentage () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->archiveMaxCompressPercentage;
}
/**
* PNG image maximum width or maximum height.
* PNG images use ZIP compression and that's why
* those images could be used as ZIP bombs.
* This limit helps to prevent file bombs
* based on PNG images. Default value is `10000`.
* @param int $pngImageMaxWidthHeight Default `10.0`.
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetPngImageMaxWidthHeight ($pngImageMaxWidthHeight = 10000) {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$this->pngImageMaxWidthHeight = $pngImageMaxWidthHeight;
return $this;
}
/**
* PNG image maximum width or maximum height.
* PNG images use ZIP compression and that's why
* those images could be used as ZIP bombs.
* This limit helps to prevent file bombs
* based on PNG images. Default value is `10000`.
* @return int
*/
public function GetPngImageMaxWidthHeight () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->pngImageMaxWidthHeight;
}
/**
* Add bomb scanner class(es) to scan uploaded files for file bombs.
* All classes in this list must implement interface:
* `\MvcCore\Ext\Forms\Validators\Files\Validations\IBombScanner`.
* @param \string[] $bombScannerClasses,...
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function AddBombScanners () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$args = func_get_args();
if (count($args) === 1 && is_array($args)) {
$bombScannerClasses = $args[0];
} else {
$bombScannerClasses = $args;
}
foreach ($bombScannerClasses as $bombScannerClass) {
if (!in_array($bombScannerClass, $this->bombScanners, TRUE)) {
$this->bombScanners[] = $bombScannerClass;
}
}
return $this;
}
/**
* Set bomb scanner class(es) to scan uploaded files for file bombs.
* All classes in this list must implement interface:
* `\MvcCore\Ext\Forms\Validators\Files\Validations\IBombScanner`.
* @param \string[] $bombScannerClasses
* @return \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files
*/
public function SetBombScanners () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
$args = func_get_args();
if (count($args) === 1 && is_array($args)) {
$this->bombScanners = $args[0];
} else {
$this->bombScanners = $args;
}
return $this;
}
/**
* Get bomb scanner class(es) to scan uploaded files for file bombs.
* All classes in this list must implement interface:
* `\MvcCore\Ext\Forms\Validators\Files\Validations\IBombScanner`.
* @return \string[]
*/
public function GetBombScanners () {
/** @var $this \MvcCore\Ext\Forms\Fields\File|\MvcCore\Ext\Forms\Validators\Files */
return $this->bombScanners;
}
}