csvxml/public/upload.php

36 lines
943 B
PHP
Raw Normal View History

2019-08-25 21:45:52 +02:00
<?PHP
2019-08-30 23:14:18 +02:00
declare(strict_types = 1);
require_once __DIR__ . "/../functions/functions.php";
2019-08-30 23:14:18 +02:00
2020-11-08 14:30:14 +01:00
if (empty($_FILES)) {
throw new MDFileDoesNotExist("No file uploaded");
}
$targetpart = basename($_FILES['uploaded']['name']);
2020-11-08 14:30:14 +01:00
$target = __DIR__ . "/../csv/" . $targetpart;
// TODO: File name needs to be sanitized, or tmp name used
if (session_status() != PHP_SESSION_ACTIVE) {
session_start();
}
2020-12-10 00:49:46 +01:00
if (MD_STD_SEC::validateAntiCsrfToken() === false) {
throw new MDWrongCsrfTokenException();
}
2019-08-27 00:31:46 +02:00
//This is our size condition
2020-11-08 14:30:14 +01:00
if ($_FILES['uploaded']['size'] > 40000000) {
2019-08-27 00:31:46 +02:00
echo "Your file is too large.<br>";
2019-08-30 23:14:18 +02:00
return;
2019-08-27 00:31:46 +02:00
}
//Here we check that $ok was not set to 0 by an error
2019-08-30 23:14:18 +02:00
//If everything is ok we try to upload it
if(!move_uploaded_file($_FILES['uploaded']['tmp_name'], $target)) {
echo "Sorry, there was a problem uploading your file.";
return;
2019-08-25 21:45:52 +02:00
}
2019-08-30 23:14:18 +02:00
header("Location: index3.php?fnam=" . basename($_FILES['uploaded']['name']));