dolibarr 19.0.4
flowjs-server.php
Go to the documentation of this file.
1<?php
2/* Copyright (C) 2023 Laurent Destailleur <eldy@users.sourceforge.net>
3 *
4 * This program is free software; you can redistribute it and/or modify
5 * it under the terms of the GNU General Public License as published by
6 * the Free Software Foundation; either version 3 of the License, or
7 * (at your option) any later version.
8 *
9 * This program is distributed in the hope that it will be useful,
10 * but WITHOUT ANY WARRANTY; without even the implied warranty of
11 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
12 * GNU General Public License for more details.
13 *
14 * You should have received a copy of the GNU General Public License
15 * along with this program. If not, see <https://www.gnu.org/licenses/>.
16 */
17
23if (!defined('NOTOKENRENEWAL')) {
24 define('NOTOKENRENEWAL', '1'); // Disables token renewal
25}
26if (!defined('NOREQUIREMENU')) {
27 define('NOREQUIREMENU', '1');
28}
29if (!defined('NOREQUIREHTML')) {
30 define('NOREQUIREHTML', '1');
31}
32if (!defined('NOREQUIREAJAX')) {
33 define('NOREQUIREAJAX', '1');
34}
35if (!defined('NOREQUIRESOC')) {
36 define('NOREQUIRESOC', '1');
37}
38// If there is no need to load and show top and left menu
39if (!defined("NOLOGIN")) {
40 define("NOLOGIN", '1');
41}
42//if (! defined('NOREQUIRETRAN')) define('NOREQUIRETRAN','1'); // Required to know date format for dol_print_date
43
44// Load Dolibarr environment
45require '../../main.inc.php';
46require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';
47
48$action = GETPOST('action', 'aZ09');
49
50$module = GETPOST('module', 'aZ09arobase');
51
52$flowFilename = GETPOST('flowFilename', 'alpha');
53$flowIdentifier = GETPOST('flowIdentifier', 'alpha');
54$flowChunkNumber = GETPOST('flowChunkNumber', 'alpha');
55$flowChunkSize = GETPOST('flowChunkSize', 'alpha');
56$flowTotalSize = GETPOST('flowTotalSize', 'alpha');
57
58$result = restrictedArea($user, $module, 0, '', 0, 'fk_soc', 'rowid', 0, 1); // Call with mode return
59
60if ($action != 'upload') {
61 httponly_accessforbidden("Param action must be 'upload'");
62}
63
64if (!empty($conf->$module->dir_temp)) {
65 $upload_dir = $conf->$module->dir_temp;
66} else {
67 httponly_accessforbidden("Param module does not has a dir_temp directory. Module does not exists or is not activated.");
68}
69
70/*
71 * Action
72 */
73
75
76dol_syslog(join(',', $_GET));
77
78$result = false;
79
80if (!empty($upload_dir)) {
81 $temp_dir = $upload_dir.'/'.$flowIdentifier;
82} else {
83 $temp_dir = DOL_DATA_ROOT.'/'.$module.'/temp/'.$flowIdentifier;
84 $upload_dir = DOL_DATA_ROOT.'/'.$module.'/temp/';
85}
86
87if ($module != "test" && !isModEnabled($module)) {
88 echo json_encode("The module ".$module." is not enabled");
89 header("HTTP/1.0 400");
90 die();
91}
92
93if ($_SERVER['REQUEST_METHOD'] === 'GET') {
94 $chunk_file = $temp_dir.'/'.$flowFilename.'.part'.$flowChunkNumber;
95 if (file_exists($chunk_file)) {
96 header("HTTP/1.0 200 Ok");
97 } else {
98 header("HTTP/1.0 404 Not Found");
99 }
100} else {
101 // loop through files and move the chunks to a temporarily created directory
102 if (file_exists($upload_dir.'/'.$flowFilename)) {
103 echo json_encode('File '.$flowIdentifier.' was already uploaded');
104 header("HTTP/1.0 200 Ok");
105 die();
106 } elseif (!empty($_FILES)) {
107 foreach ($_FILES as $file) {
108 // check the error status
109 if ($file['error'] != 0) {
110 dol_syslog('error '.$file['error'].' in file '.$flowFilename);
111 continue;
112 }
113
114 // init the destination file (format <filename.ext>.part<#chunk>
115 // the file is stored in a temporary directory
116 $dest_file = $temp_dir.'/'.$flowFilename.'.part'.$flowChunkNumber;
117
118 // create the temporary directory
119 if (!dol_is_dir($temp_dir)) {
120 dol_mkdir($temp_dir);
121 }
122
123 // move the temporary file
124 if (!dol_move_uploaded_file($file['tmp_name'], $dest_file, 0)) {
125 dol_syslog('Error saving (move_uploaded_file) chunk '.$flowChunkNumber.' for file '.$flowFilename);
126 } else {
127 // check if all the parts present, and create the final destination file
128 $result = createFileFromChunks($temp_dir, $upload_dir, $flowFilename, $flowChunkSize, $flowTotalSize);
129 }
130 }
131 }
132}
133if ($result) {
134 echo json_encode('File '.$flowIdentifier.' uploaded');
135} else {
136 echo json_encode('Error while uploading file '.$flowIdentifier);
137}
138
139
150function createFileFromChunks($temp_dir, $upload_dir, $fileName, $chunkSize, $totalSize)
151{
152 dol_syslog(__FUNCTION__, LOG_DEBUG);
153
154 // count all the parts of this file
155 $total_files = 0;
156 $files = dol_dir_list($temp_dir, 'files');
157 foreach ($files as $file) {
158 if (stripos($file["name"], $fileName) !== false) {
159 $total_files++;
160 }
161 }
162
163 // check that all the parts are present
164 // the size of the last part is between chunkSize and 2*$chunkSize
165 if ($total_files * $chunkSize >= ($totalSize - $chunkSize + 1)) {
166 // create the final destination file
167 if (($fp = fopen($upload_dir.'/'.$fileName, 'w')) !== false) {
168 for ($i=1; $i<=$total_files; $i++) {
169 fwrite($fp, file_get_contents($temp_dir.'/'.$fileName.'.part'.$i));
170 dol_syslog('writing chunk '.$i);
171 }
172 fclose($fp);
173 } else {
174 dol_syslog('cannot create the destination file');
175 return false;
176 }
177
178 // rename the temporary directory (to avoid access from other
179 // concurrent chunks uploads)
180 @rename($temp_dir, $temp_dir.'_UNUSED');
181 }
182
183 return true;
184}
dol_move_uploaded_file($src_file, $dest_file, $allowoverwrite, $disablevirusscan=0, $uploaderrorcode=0, $nohook=0, $varfiles='addedfile', $upload_dir='')
Make control on an uploaded file from an GUI page and move it to final destination.
dol_dir_list($path, $types="all", $recursive=0, $filter="", $excludefilter=null, $sortcriteria="name", $sortorder=SORT_ASC, $mode=0, $nohook=0, $relativename="", $donotfollowsymlinks=0, $nbsecondsold=0)
Scan a directory and return a list of files/directories.
Definition files.lib.php:62
dol_is_dir($folder)
Test if filename is a directory.
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
dol_syslog($message, $level=LOG_INFO, $ident=0, $suffixinfilename='', $restricttologhandler='', $logcontext=null)
Write log message into outputs.
dol_mkdir($dir, $dataroot='', $newmask='')
Creation of a directory (this can create recursive subdir)
if(!defined( 'NOREQUIREMENU')) if(!empty(GETPOST('seteventmessages', 'alpha'))) if(!function_exists("llxHeader")) top_httphead($contenttype='text/html', $forcenocache=0)
Show HTTP header.
restrictedArea(User $user, $features, $object=0, $tableandshare='', $feature2='', $dbt_keyfield='fk_soc', $dbt_select='rowid', $isdraft=0, $mode=0)
Check permissions of a user to show a page and an object.
httponly_accessforbidden($message=1, $http_response_code=403, $stringalreadysanitized=0)
Show a message to say access is forbidden and stop program.