Elgg  Version master
File.php
Go to the documentation of this file.
1 <?php
2 
3 namespace Elgg\FileService;
4 
5 use Elgg\Exceptions\DomainException;
6 use Elgg\Project\Paths;
7 use Elgg\Security\Base64Url;
8 
14 class File {
15 
16  const INLINE = 'inline';
17  const ATTACHMENT = 'attachment';
18 
22  private $file;
23 
27  private $expires;
28 
32  private $disposition;
33 
37  private $use_cookie = true;
38 
45  public function setFile(\ElggFile $file) {
46  $this->file = $file;
47  }
48 
54  public function getFile(): ?\ElggFile {
55  return $this->file;
56  }
57 
65  public function setExpires(string $expires = '+2 hours'): void {
66  $this->expires = strtotime($expires);
67  }
68 
77  public function setDisposition(string $disposition = self::ATTACHMENT): void {
78  if (!in_array($disposition, [self::ATTACHMENT, self::INLINE])) {
79  throw new DomainException("Disposition {$disposition} is not supported in " . __CLASS__);
80  }
81 
82  $this->disposition = $disposition;
83  }
84 
92  public function bindSession(bool $use_cookie = true): void {
93  $this->use_cookie = $use_cookie;
94  }
95 
101  public function getURL(): ?string {
102 
103  if (!$this->file->exists()) {
104  elgg_log('Unable to resolve resource URL for a file that does not exist on filestore');
105  return null;
106  }
107 
108  $relative_path = '';
109  $root_prefix = Paths::sanitize(_elgg_services()->config->dataroot);
110  $path = Paths::sanitize($this->file->getFilenameOnFilestore(), false);
111  if (str_starts_with($path, $root_prefix)) {
112  $relative_path = substr($path, strlen($root_prefix));
113  }
114 
115  if (!$relative_path) {
116  elgg_log('Unable to resolve relative path of the file on the filestore');
117  return null;
118  }
119 
120  if (preg_match('~[^a-zA-Z0-9_\./ ]~', $relative_path)) {
121  // Filenames may contain special characters that result in malformatted URLs
122  // and/or HMAC mismatches. We want to avoid that by encoding the path.
123  $relative_path = ':' . Base64Url::encode($relative_path);
124  }
125 
126  $data = [
127  'expires' => $this->expires ?? 0,
128  'last_updated' => filemtime($this->file->getFilenameOnFilestore()),
129  'disposition' => $this->disposition === self::INLINE ? 'i' : 'a',
130  'path' => $relative_path,
131  ];
132 
133  if ($this->use_cookie) {
134  $data['cookie'] = _elgg_services()->session->getID();
135  if (empty($data['cookie'])) {
136  return null;
137  }
138 
139  $data['use_cookie'] = 1;
140  } else {
141  $data['use_cookie'] = 0;
142  }
143 
144  ksort($data);
145  $mac = _elgg_services()->hmac->getHmac($data)->getToken();
146 
147  $url_segments = [
148  'serve-file',
149  "e{$data['expires']}",
150  "l{$data['last_updated']}",
151  "d{$data['disposition']}",
152  "c{$data['use_cookie']}",
153  $mac,
154  $relative_path,
155  ];
156 
157  return elgg_normalize_url(implode('/', $url_segments));
158  }
159 }
Elgg\FileService\File\setDisposition
setDisposition(string $disposition=self::ATTACHMENT)
Sets content disposition.
Definition: File.php:77
Elgg\FileService\File\bindSession
bindSession(bool $use_cookie=true)
Bind URL to current user session.
Definition: File.php:92
Elgg\FileService\File\setExpires
setExpires(string $expires= '+2 hours')
Sets URL expiration.
Definition: File.php:65
Elgg\FileService\File
File service.
Definition: File.php:14
void
c Accompany it with the information you received as to the offer to distribute corresponding source complete source code means all the source code for all modules it plus any associated interface definition plus the scripts used to control compilation and installation of the executable as a special the source code distributed need not include anything that is normally and so on of the operating system on which the executable unless that component itself accompanies the executable If distribution of executable or object code is made by offering access to copy from a designated then offering equivalent access to copy the source code from the same place counts as distribution of the source even though third parties are not compelled to copy the source along with the object code You may not or distribute the Program except as expressly provided under this License Any attempt otherwise to sublicense or distribute the Program is void
Definition: LICENSE.txt:215
Elgg\Exceptions\DomainException
Exception thrown if a value does not adhere to a defined valid data domain.
Definition: DomainException.php:11
$mac
$mac
Definition: contents.php:14
$path
$path
Definition: details.php:70
$data
if(!$entity instanceof\ElggUser) $data
Definition: attributes.php:13
Elgg\FileService\File\getFile
getFile()
Returns file object.
Definition: File.php:54
elgg_log
elgg_log($message, $level=\Psr\Log\LogLevel::NOTICE)
Log a message.
Definition: elgglib.php:86
Elgg\FileService\File\setFile
setFile(\ElggFile $file)
Set file object.
Definition: File.php:45
Elgg\Project\Paths\sanitize
static sanitize($path, $append_slash=true)
Sanitize file paths ensuring that they begin and end with slashes etc.
Definition: Paths.php:76
_elgg_services
_elgg_services()
Get the global service provider.
Definition: elgglib.php:351
elgg_normalize_url
elgg_normalize_url(string $url)
Definition: output.php:163
Elgg\FileService\File\getURL
getURL()
Returns publicly accessible URL.
Definition: File.php:101
preg_match
Elgg\Security\Base64Url\encode
static encode($bytes)
Encode base 64 URL.
Definition: Base64Url.php:18
Generated on Thu May 2 2024 00:02:50 for Elgg by   doxygen 1.8.11