CodeExplorer
You are a developer and looking for Shopware projects?
Apply Now!
illegalFileName example
'documents'
))->getMessage());
$file = $this->getUploadFixture('empty.xls');
$this->getUploadService()->upload($file, 'test', 'documents', Context::createDefaultContext());
}
public function testUploadDocumentFailFilenameContainsPhp(): void
{
$this->expectException(MediaException::class);
$this->expectExceptionMessage(
MediaException::illegalFileName('contains.php.pdf', 'contains PHP related file extension')->getMessage()
);
$file = $this->getUploadFixture('contains.php.pdf');
$this->getUploadService()->upload($file, 'test', 'documents', Context::createDefaultContext());
}
public function testUploadImage(): void
{
$file = $this->getUploadFixture('image.png');
$result = $this->getUploadService()->upload($file, 'test', 'images', Context::createDefaultContext());
))->getMessage());
$file = $this->getUploadFixture('empty.xls');
$this->getUploadService()->upload($file, 'test', 'documents', Context::createDefaultContext());
}
public function testUploadDocumentFailFilenameContainsPhp(): void
{
$this->expectException(MediaException::class);
$this->expectExceptionMessage(
MediaException::illegalFileName('contains.php.pdf', 'contains PHP related file extension')->getMessage()
);
$file = $this->getUploadFixture('contains.php.pdf');
$this->getUploadService()->upload($file, 'test', 'documents', Context::createDefaultContext());
}
public function testUploadImage(): void
{
$file = $this->getUploadFixture('image.png');
$result = $this->getUploadService()->upload($file, 'test', 'images', Context::createDefaultContext());
static::assertEquals(
'No file extension provided. Please use the "extension" query parameter to specify the extension of the uploaded file.',
$exception->getMessage()
);
}
public function testIllegalFileName(): void
{
$fileName = 'illegal-filename';
$cause = 'cause';
$exception = MediaException::illegalFileName($fileName, $cause);
static::assertEquals(Response::HTTP_BAD_REQUEST, $exception->getStatusCode());
static::assertEquals(MediaException::MEDIA_ILLEGAL_FILE_NAME, $exception->getErrorCode());
static::assertEquals('Provided filename "illegal-filename" is not permitted: cause', $exception->getMessage());
static::assertEquals(['fileName' => $fileName, 'cause' => $cause], $exception->getParameters());
}
public function testMediaNotFound(): void
{
$mediaId = 'media-id';
'No file extension provided. Please use the "extension" query parameter to specify the extension of the uploaded file.',
$exception->getMessage()
);
}
public function testIllegalFileName(): void
{
$fileName = 'illegal-filename';
$cause = 'cause';
$exception = MediaException::illegalFileName($fileName, $cause);
static::assertEquals(Response::HTTP_BAD_REQUEST, $exception->getStatusCode());
static::assertEquals(MediaException::MEDIA_ILLEGAL_FILE_NAME, $exception->getErrorCode());
static::assertEquals('Provided filename "illegal-filename" is not permitted: cause', $exception->getMessage());
static::assertEquals(['fileName' => $fileName, 'cause' => $cause], $exception->getParameters());
}
public function testMediaNotFound(): void
{
$mediaId = 'media-id';
return $mediaId;
}
private function checkValidFile(UploadedFile $file): void
{
if (!$file->isValid()) {
throw MediaException::invalidFile($file->getErrorMessage());
}
if (preg_match('/.+\.ph(p([3457s]|-s)?|t|tml)/', $file->getFilename())) {
throw MediaException::illegalFileName($file->getFilename(), 'contains PHP related file extension');
}
}
}
}
private function checkValidFile(UploadedFile $file): void
{
if (!$file->isValid()) {
throw MediaException::invalidFile($file->getErrorMessage());
}
if (preg_match('/.+\.ph(p([3457s]|-s)?|t|tml)/', $file->getFilename())) {
throw MediaException::illegalFileName($file->getFilename(), 'contains PHP related file extension');
}
}
}
$this->validateFileNameDoesNotEndWithSpaces($fileName);
$this->validateFileNameDoesNotEndOrStartWithDot($fileName);
$this->validateFileNameDoesNotContainForbiddenCharacter($fileName);
$this->validateFileNameDoesNotContainC0Character($fileName);
}
private function validateFileNameDoesNotEndOrStartWithDot(string $fileName): void
{
if (mb_substr($fileName, 0, 1) === '.') {
throw MediaException::illegalFileName($fileName, 'Filename must not start with a "." (dot).');
}
if (mb_substr($fileName, mb_strlen($fileName) - 1) === '.') {
throw MediaException::illegalFileName($fileName, 'Filename must not end with a "." (dot).');
}
}
private function validateFileNameDoesNotContainForbiddenCharacter(string $fileName): void
{
foreach (self::RESTRICTED_CHARACTERS as $character) {
if (mb_strpos($fileName, $character) !== false) {
$tempFile = tempnam(sys_get_temp_dir(), '');
if (!$tempFile) {
throw MediaException::cannotCreateTempFile();
}
$fileName = $request->query->getString('fileName', $mediaId);
$destination = preg_replace('/[\x00-\x1F\x7F-\xFF]/', '', $fileName);
if (!\is_string($destination)) {
throw MediaException::illegalFileName($fileName, 'Filename must be a string');
}
try {
$uploadedFile = $this->mediaService->fetchFile($request, $tempFile);
$this->fileSaver->persistFileToMedia(
$uploadedFile,
$destination,
$mediaId,
$context
);