dolibarr 20.0.0
flowjs-server.php
Go to the documentation of this file.
1<?php
2/* Copyright (C) 2023 Laurent Destailleur <eldy@users.sourceforge.net>
3 * Copyright (C) 2024 MDW <mdeweerd@users.noreply.github.com>
4 *
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License as published by
7 * the Free Software Foundation; either version 3 of the License, or
8 * (at your option) any later version.
9 *
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
14 *
15 * You should have received a copy of the GNU General Public License
16 * along with this program. If not, see <https://www.gnu.org/licenses/>.
17 */
18
24if (!defined('NOTOKENRENEWAL')) {
25 define('NOTOKENRENEWAL', '1'); // Disables token renewal
26}
27if (!defined('NOREQUIREMENU')) {
28 define('NOREQUIREMENU', '1');
29}
30if (!defined('NOREQUIREHTML')) {
31 define('NOREQUIREHTML', '1');
32}
33if (!defined('NOREQUIREAJAX')) {
34 define('NOREQUIREAJAX', '1');
35}
36if (!defined('NOREQUIRESOC')) {
37 define('NOREQUIRESOC', '1');
38}
39// If there is no need to load and show top and left menu
40if (!defined("NOLOGIN")) {
41 define("NOLOGIN", '1');
42}
43//if (! defined('NOREQUIRETRAN')) define('NOREQUIRETRAN','1'); // Required to know date format for dol_print_date
44
45// Load Dolibarr environment
46require '../../main.inc.php';
47require_once DOL_DOCUMENT_ROOT.'/core/lib/files.lib.php';
48
49$action = GETPOST('action', 'aZ09');
50
51$module = GETPOST('module', 'aZ09arobase');
52
53$flowFilename = GETPOST('flowFilename', 'alpha');
54$flowIdentifier = GETPOST('flowIdentifier', 'alpha');
55$flowChunkNumber = GETPOST('flowChunkNumber', 'alpha');
56$flowChunkSize = GETPOST('flowChunkSize', 'alpha');
57$flowTotalSize = GETPOST('flowTotalSize', 'alpha');
58
59$result = restrictedArea($user, $module, 0, '', 0, 'fk_soc', 'rowid', 0, 1); // Call with mode return
60
61if ($action != 'upload') {
62 httponly_accessforbidden("Param action must be 'upload'");
63}
64
65if (!empty($conf->$module->dir_temp)) {
66 $upload_dir = $conf->$module->dir_temp;
67} else {
68 httponly_accessforbidden("Param module does not has a dir_temp directory. Module does not exists or is not activated.");
69}
70
71/*
72 * Action
73 */
74
76
77$result = false;
78
79if (!empty($upload_dir)) {
80 $temp_dir = $upload_dir.'/'.$flowIdentifier;
81} else {
82 $temp_dir = DOL_DATA_ROOT.'/'.$module.'/temp/'.$flowIdentifier;
83 $upload_dir = DOL_DATA_ROOT.'/'.$module.'/temp/';
84}
85
86if ($module != "test" && !isModEnabled($module)) {
87 echo json_encode("The module ".$module." is not enabled");
88 header("HTTP/1.0 400");
89 die();
90}
91
92if ($_SERVER['REQUEST_METHOD'] === 'GET') {
93 $chunk_file = $temp_dir.'/'.$flowFilename.'.part'.$flowChunkNumber;
94 if (file_exists($chunk_file)) {
95 header("HTTP/1.0 200 Ok");
96 } else {
97 header("HTTP/1.0 404 Not Found");
98 }
99} else {
100 // loop through files and move the chunks to a temporarily created directory
101 if (file_exists($upload_dir.'/'.$flowFilename)) {
102 echo json_encode('File '.$flowIdentifier.' was already uploaded');
103 header("HTTP/1.0 200 Ok");
104 die();
105 } elseif (!empty($_FILES)) {
106 foreach ($_FILES as $file) {
107 // check the error status
108 if ($file['error'] != 0) {
109 dol_syslog('error '.$file['error'].' in file '.$flowFilename);
110 continue;
111 }
112
113 // init the destination file (format <filename.ext>.part<#chunk>
114 // the file is stored in a temporary directory
115 $dest_file = $temp_dir.'/'.$flowFilename.'.part'.$flowChunkNumber;
116
117 // create the temporary directory
118 if (!dol_is_dir($temp_dir)) {
119 dol_mkdir($temp_dir);
120 }
121
122 // move the temporary file
123 if (!dol_move_uploaded_file($file['tmp_name'], $dest_file, 0)) {
124 dol_syslog('Error saving (move_uploaded_file) chunk '.$flowChunkNumber.' for file '.$flowFilename);
125 } else {
126 // check if all the parts present, and create the final destination file
127 $result = createFileFromChunks($temp_dir, $upload_dir, $flowFilename, $flowChunkSize, $flowTotalSize);
128 }
129 }
130 }
131}
132if ($result) {
133 echo json_encode('File '.$flowIdentifier.' uploaded');
134} else {
135 echo json_encode('Error while uploading file '.$flowIdentifier);
136}
137
138
149function createFileFromChunks($temp_dir, $upload_dir, $fileName, $chunkSize, $totalSize)
150{
151 dol_syslog(__FUNCTION__, LOG_DEBUG);
152
153 // count all the parts of this file
154 $total_files = 0;
155 $files = dol_dir_list($temp_dir, 'files');
156 foreach ($files as $file) {
157 if (stripos($file["name"], $fileName) !== false) {
158 $total_files++;
159 }
160 }
161
162 // check that all the parts are present
163 // the size of the last part is between chunkSize and 2*$chunkSize
164 if ($total_files * (float) $chunkSize >= ((float) $totalSize - (float) $chunkSize + 1)) {
165 // create the final destination file
166 if (($fp = fopen($upload_dir.'/'.$fileName, 'w')) !== false) {
167 for ($i = 1; $i <= $total_files; $i++) {
168 fwrite($fp, file_get_contents($temp_dir.'/'.$fileName.'.part'.$i));
169 dol_syslog('writing chunk '.$i);
170 }
171 fclose($fp);
172 } else {
173 dol_syslog('cannot create the destination file');
174 return false;
175 }
176
177 // rename the temporary directory (to avoid access from other
178 // concurrent chunks uploads)
179 @rename($temp_dir, $temp_dir.'_UNUSED');
180 }
181
182 return true;
183}
dol_move_uploaded_file($src_file, $dest_file, $allowoverwrite, $disablevirusscan=0, $uploaderrorcode=0, $nohook=0, $varfiles='addedfile', $upload_dir='')
Check validity of a file upload from an GUI page, and move it to its final destination.
dol_dir_list($utf8_path, $types="all", $recursive=0, $filter="", $excludefilter=null, $sortcriteria="name", $sortorder=SORT_ASC, $mode=0, $nohook=0, $relativename="", $donotfollowsymlinks=0, $nbsecondsold=0)
Scan a directory and return a list of files/directories.
Definition files.lib.php:63
dol_is_dir($folder)
Test if filename is a directory.
GETPOST($paramname, $check='alphanohtml', $method=0, $filter=null, $options=null, $noreplace=0)
Return value of a param into GET or POST supervariable.
dol_syslog($message, $level=LOG_INFO, $ident=0, $suffixinfilename='', $restricttologhandler='', $logcontext=null)
Write log message into outputs.
dol_mkdir($dir, $dataroot='', $newmask='')
Creation of a directory (this can create recursive subdir)
if(!defined( 'NOREQUIREMENU')) if(!empty(GETPOST('seteventmessages', 'alpha'))) if(!function_exists("llxHeader")) top_httphead($contenttype='text/html', $forcenocache=0)
Show HTTP header.
httponly_accessforbidden($message='1', $http_response_code=403, $stringalreadysanitized=0)
Show a message to say access is forbidden and stop program.
restrictedArea(User $user, $features, $object=0, $tableandshare='', $feature2='', $dbt_keyfield='fk_soc', $dbt_select='rowid', $isdraft=0, $mode=0)
Check permissions of a user to show a page and an object.