2015-01-10 16:40:54 -05:00
|
|
|
"use strict";
|
|
|
|
|
|
2015-12-28 15:38:02 +02:00
|
|
|
var fs = require('fs');
|
|
|
|
|
var path = require('path');
|
|
|
|
|
var async = require('async');
|
|
|
|
|
var nconf = require('nconf');
|
|
|
|
|
var validator = require('validator');
|
|
|
|
|
var winston = require('winston');
|
2016-04-26 23:22:19 +00:00
|
|
|
var mime = require('mime');
|
2015-01-10 16:40:54 -05:00
|
|
|
|
2015-12-28 15:38:02 +02:00
|
|
|
var meta = require('../meta');
|
|
|
|
|
var file = require('../file');
|
|
|
|
|
var plugins = require('../plugins');
|
|
|
|
|
var image = require('../image');
|
2015-01-10 16:40:54 -05:00
|
|
|
|
2015-12-28 15:38:02 +02:00
|
|
|
var uploadsController = {};
|
2015-01-10 16:40:54 -05:00
|
|
|
|
2016-04-20 13:58:25 -04:00
|
|
|
uploadsController.upload = function(req, res, filesIterator) {
|
2015-01-10 16:40:54 -05:00
|
|
|
var files = req.files.files;
|
|
|
|
|
|
2015-12-31 11:36:28 -05:00
|
|
|
if (!req.user && meta.config.allowGuestUploads !== '1') {
|
2015-01-10 16:40:54 -05:00
|
|
|
deleteTempFiles(files);
|
2015-12-31 11:36:28 -05:00
|
|
|
return res.status(403).json('[[error:guest-upload-disabled]]');
|
2015-01-10 16:40:54 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (!Array.isArray(files)) {
|
|
|
|
|
return res.status(500).json('invalid files');
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (Array.isArray(files[0])) {
|
|
|
|
|
files = files[0];
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
async.map(files, filesIterator, function(err, images) {
|
|
|
|
|
deleteTempFiles(files);
|
|
|
|
|
|
|
|
|
|
if (err) {
|
|
|
|
|
return res.status(500).send(err.message);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
// IE8 - send it as text/html so browser won't trigger a file download for the json response
|
|
|
|
|
// malsup.com/jquery/form/#file-upload
|
|
|
|
|
res.status(200).send(req.xhr ? images : JSON.stringify(images));
|
|
|
|
|
});
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
uploadsController.uploadPost = function(req, res, next) {
|
2015-02-18 21:09:33 -05:00
|
|
|
uploadsController.upload(req, res, function(uploadedFile, next) {
|
2016-03-23 12:19:29 +02:00
|
|
|
var isImage = uploadedFile.type.match(/image./);
|
|
|
|
|
if (isImage && plugins.hasListeners('filter:uploadImage')) {
|
|
|
|
|
return plugins.fireHook('filter:uploadImage', {image: uploadedFile, uid: req.uid}, next);
|
2015-11-11 13:52:29 -05:00
|
|
|
}
|
2016-03-23 12:19:29 +02:00
|
|
|
|
|
|
|
|
async.waterfall([
|
|
|
|
|
function(next) {
|
|
|
|
|
if (isImage) {
|
|
|
|
|
file.isFileTypeAllowed(uploadedFile.path, next);
|
|
|
|
|
} else {
|
|
|
|
|
next();
|
|
|
|
|
}
|
|
|
|
|
},
|
|
|
|
|
function (next) {
|
|
|
|
|
if (parseInt(meta.config.allowFileUploads, 10) !== 1) {
|
|
|
|
|
return next(new Error('[[error:uploads-are-disabled]]'));
|
|
|
|
|
}
|
|
|
|
|
uploadFile(req.uid, uploadedFile, next);
|
2016-04-20 13:58:25 -04:00
|
|
|
},
|
|
|
|
|
function(fileObj, next) {
|
|
|
|
|
if (!isImage || parseInt(meta.config.maximumImageWidth, 10) === 0) {
|
|
|
|
|
// Not an image, or resizing disabled. No need to resize.
|
|
|
|
|
return next(null, fileObj);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var fullPath = path.join(nconf.get('base_dir'), nconf.get('upload_path'), '..', fileObj.url),
|
|
|
|
|
parsedPath = path.parse(fullPath);
|
|
|
|
|
|
|
|
|
|
image.resizeImage({
|
|
|
|
|
path: fullPath,
|
|
|
|
|
target: path.join(parsedPath.dir, parsedPath.name + '-resized' + parsedPath.ext),
|
|
|
|
|
extension: parsedPath.ext,
|
|
|
|
|
width: parseInt(meta.config.maximumImageWidth, 10) || 760
|
|
|
|
|
}, function(err) {
|
|
|
|
|
// Return the resized version to the composer/postData
|
|
|
|
|
var parsedUrl = path.parse(fileObj.url);
|
2016-04-20 14:15:38 -04:00
|
|
|
parsedUrl.base = parsedUrl.name + '-resized' + parsedUrl.ext;
|
2016-04-20 13:58:25 -04:00
|
|
|
parsedUrl.name = parsedUrl.name + '-resized';
|
|
|
|
|
fileObj.url = path.format(parsedUrl);
|
|
|
|
|
|
|
|
|
|
next(err, fileObj);
|
|
|
|
|
});
|
2016-03-23 12:19:29 +02:00
|
|
|
}
|
|
|
|
|
], next);
|
2015-01-10 16:40:54 -05:00
|
|
|
}, next);
|
|
|
|
|
};
|
|
|
|
|
|
|
|
|
|
uploadsController.uploadThumb = function(req, res, next) {
|
|
|
|
|
if (parseInt(meta.config.allowTopicsThumbnail, 10) !== 1) {
|
|
|
|
|
deleteTempFiles(req.files.files);
|
|
|
|
|
return next(new Error('[[error:topic-thumbnails-are-disabled]]'));
|
|
|
|
|
}
|
|
|
|
|
|
2015-02-18 21:09:33 -05:00
|
|
|
uploadsController.upload(req, res, function(uploadedFile, next) {
|
2016-03-08 19:01:45 +02:00
|
|
|
file.isFileTypeAllowed(uploadedFile.path, function(err) {
|
2015-02-18 21:09:33 -05:00
|
|
|
if (err) {
|
|
|
|
|
return next(err);
|
|
|
|
|
}
|
|
|
|
|
|
2016-03-23 12:19:29 +02:00
|
|
|
if (!uploadedFile.type.match(/image./)) {
|
|
|
|
|
return next(new Error('[[error:invalid-file]]'));
|
2015-02-18 21:09:33 -05:00
|
|
|
}
|
2016-03-23 12:19:29 +02:00
|
|
|
|
|
|
|
|
var size = parseInt(meta.config.topicThumbSize, 10) || 120;
|
|
|
|
|
image.resizeImage({
|
|
|
|
|
path: uploadedFile.path,
|
|
|
|
|
extension: path.extname(uploadedFile.name),
|
|
|
|
|
width: size,
|
|
|
|
|
height: size
|
|
|
|
|
}, function(err) {
|
|
|
|
|
if (err) {
|
|
|
|
|
return next(err);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (plugins.hasListeners('filter:uploadImage')) {
|
|
|
|
|
return plugins.fireHook('filter:uploadImage', {image: uploadedFile, uid: req.uid}, next);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
uploadFile(req.uid, uploadedFile, next);
|
|
|
|
|
});
|
2015-02-18 21:09:33 -05:00
|
|
|
});
|
2015-01-10 16:40:54 -05:00
|
|
|
}, next);
|
|
|
|
|
};
|
|
|
|
|
|
2016-01-11 10:27:26 +02:00
|
|
|
uploadsController.uploadGroupCover = function(uid, uploadedFile, callback) {
|
|
|
|
|
if (plugins.hasListeners('filter:uploadImage')) {
|
|
|
|
|
return plugins.fireHook('filter:uploadImage', {image: uploadedFile, uid: uid}, callback);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
if (plugins.hasListeners('filter:uploadFile')) {
|
|
|
|
|
return plugins.fireHook('filter:uploadFile', {file: uploadedFile, uid: uid}, callback);
|
|
|
|
|
}
|
|
|
|
|
|
2016-03-08 19:01:45 +02:00
|
|
|
file.isFileTypeAllowed(uploadedFile.path, function(err) {
|
|
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
saveFileToLocal(uploadedFile, callback);
|
|
|
|
|
});
|
2015-10-28 17:42:42 -04:00
|
|
|
};
|
|
|
|
|
|
2015-02-18 21:09:33 -05:00
|
|
|
function uploadFile(uid, uploadedFile, callback) {
|
2015-01-10 16:40:54 -05:00
|
|
|
if (plugins.hasListeners('filter:uploadFile')) {
|
2015-02-18 21:09:33 -05:00
|
|
|
return plugins.fireHook('filter:uploadFile', {file: uploadedFile, uid: uid}, callback);
|
2015-01-10 16:40:54 -05:00
|
|
|
}
|
|
|
|
|
|
2015-02-18 21:09:33 -05:00
|
|
|
if (!uploadedFile) {
|
2015-01-10 16:40:54 -05:00
|
|
|
return callback(new Error('[[error:invalid-file]]'));
|
|
|
|
|
}
|
|
|
|
|
|
2015-02-18 21:09:33 -05:00
|
|
|
if (uploadedFile.size > parseInt(meta.config.maximumFileSize, 10) * 1024) {
|
2015-01-10 16:40:54 -05:00
|
|
|
return callback(new Error('[[error:file-too-big, ' + meta.config.maximumFileSize + ']]'));
|
|
|
|
|
}
|
2015-04-07 15:37:20 -04:00
|
|
|
|
2015-12-14 14:56:28 -05:00
|
|
|
if (meta.config.hasOwnProperty('allowedFileExtensions')) {
|
2015-12-28 15:38:02 +02:00
|
|
|
var allowed = file.allowedExtensions();
|
|
|
|
|
var extension = path.extname(uploadedFile.name);
|
2015-12-14 14:56:28 -05:00
|
|
|
if (allowed.length > 0 && allowed.indexOf(extension) === -1) {
|
|
|
|
|
return callback(new Error('[[error:invalid-file-type, ' + allowed.join(', ') + ']]'));
|
|
|
|
|
}
|
|
|
|
|
}
|
|
|
|
|
|
2016-01-11 10:27:26 +02:00
|
|
|
saveFileToLocal(uploadedFile, callback);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function saveFileToLocal(uploadedFile, callback) {
|
2016-04-26 23:22:19 +00:00
|
|
|
var extension = '';
|
|
|
|
|
if(!path.extname(uploadedFile.name)) {
|
|
|
|
|
extension = '.' + mime.extension(uploadedFile.type);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
var filename = (uploadedFile.name || 'upload') + extension;
|
2015-02-19 16:46:00 -05:00
|
|
|
|
|
|
|
|
filename = Date.now() + '-' + validator.escape(filename).substr(0, 255);
|
2015-02-18 21:09:33 -05:00
|
|
|
file.saveFileToLocal(filename, 'files', uploadedFile.path, function(err, upload) {
|
2015-01-10 16:40:54 -05:00
|
|
|
if (err) {
|
|
|
|
|
return callback(err);
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
callback(null, {
|
2015-04-07 15:37:20 -04:00
|
|
|
url: nconf.get('relative_path') + upload.url,
|
2015-02-18 21:09:33 -05:00
|
|
|
name: uploadedFile.name
|
2015-01-10 16:40:54 -05:00
|
|
|
});
|
|
|
|
|
});
|
|
|
|
|
}
|
|
|
|
|
|
|
|
|
|
function deleteTempFiles(files) {
|
2015-09-06 00:49:39 -04:00
|
|
|
async.each(files, function(file, next) {
|
|
|
|
|
fs.unlink(file.path, function(err) {
|
|
|
|
|
if (err) {
|
|
|
|
|
winston.error(err);
|
|
|
|
|
}
|
|
|
|
|
next();
|
|
|
|
|
});
|
|
|
|
|
});
|
2015-01-10 16:40:54 -05:00
|
|
|
}
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
|
module.exports = uploadsController;
|
