dongya2030 2017-03-19 13:03
浏览 1122

使用Laravel 5.4验证从远程Url下载的文件

In Laravel 5.4, when a form submission is made, the file(if any) in the request is passed to the Illuminate\Http\File or Illuminate\Http\UploadedFile instance. But let's say instead of the file, a url of that file is passed as the input. Naturally, the server will have to make a request to that input url to download the file. How will you validate the file in this scenario? (lets say I want to check if its an image or a video)

  • 写回答

1条回答 默认 最新

  • donglun4521 2017-03-19 18:18
    关注

    As example you can use custom Validator class.

    So basically we have controller which perform validation of form.

    <?php

namespace App\Http\Controllers;

use App\Article;
use Illuminate\Http\Request;

use App\Http\Requests;
use App\Http\Controllers\Controller;

use Validator;

class ArticleController extends Controller
{
    /**
     * Store a newly created resource in storage.
     *
     * @return Response
     */
    public function store($id = 0)
    {
        $rules = [
            'title'    => 'required',
            'body'     => 'required',
            'fileLink' => 'file_link',
        ];

        $validator = Validator::make(Input::all(), $rules);

        // process the login
        if ($validator->fails()) {

            return redirect()
                ->route('article.create')
                ->withErrors($validator);

        } else {

          //Other code
        }
    }

}

    Then you have to create custom validator:

    <?php

namespace App\Validators;

class FileLinkValidator
{
    public function validate($attribute, $value, $parameters, $validator)
    {
        $isValid = false;

        $ch = curl_init($value);
        curl_setopt($ch, CURLOPT_NOBODY, true);
        curl_exec($ch);

        $code = curl_getinfo($ch, CURLINFO_HTTP_CODE);

        if($code == 200){
            $allowedContentTypes = [
                'image/jpeg'
            ];

            $contentType = curl_getinfo($ch, CURLINFO_CONTENT_TYPE);

            if(in_array($contentType,$allowedContentTypes)){
                $isValid = true;
            }
        }

        curl_close($ch);

        return $isValid;
    }
}

    Register validator:

    <?php

namespace App\Providers;

use Config;
use Illuminate\Support\ServiceProvider;
use Validator;

class AppServiceProvider extends ServiceProvider
{
    /**
     * Bootstrap any application services.
     *
     * @return void
     */
    public function boot()
    {
        Validator::extend('file_link', 'App\Validators\FileLinkValidator@validate','File Link should be valid url and contain file');
    }

    /**
     * Register any application services.
     *
     * @return void
     */
    public function register()
    {
       //
    }
}

    Then you can download file in controller and save it on disk and all metadata to database. But you have to perform another level of validation, to be more secure for users.

    评论

报告相同问题?

悬赏问题

  • ¥15 R语言Rstudio突然无法启动
  • ¥15 关于#matlab#的问题:提取2个图像的变量作为另外一个图像像元的移动量,计算新的位置创建新的图像并提取第二个图像的变量到新的图像
  • ¥15 改算法,照着压缩包里边,参考其他代码封装的格式 写到main函数里
  • ¥15 用windows做服务的同志有吗
  • ¥60 求一个简单的网页(标签-安全|关键词-上传)
  • ¥35 lstm时间序列共享单车预测,loss值优化,参数优化算法
  • ¥15 Python中的request,如何使用ssr节点,通过代理requests网页。本人在泰国,需要用大陆ip才能玩网页游戏,合法合规。
  • ¥100 为什么这个恒流源电路不能恒流?
  • ¥15 有偿求跨组件数据流路径图
  • ¥15 写一个方法checkPerson,入参实体类Person,出参布尔值