上传文件类型验证
Uploaded File Type Verification
function uploadFile() {
var file = _("file1").files[0];
//alert(file.name+" | "+file.size+" | "+file.type);
var formdata = new FormData();
formdata.append("file1", file);
var ajax = new XMLHttpRequest();
ajax.upload.addEventListener("progress", progressHandler, false);
ajax.addEventListener("load", completeHandler, false);
ajax.addEventListener("error", errorHandler, false);
ajax.addEventListener("abort", abortHandler, false);
ajax.open("POST", "upload_file_for_booking.php");
ajax.send(formdata);
}
function progressHandler(event) {
_("loaded_n_total").innerHTML = " Yüklendi " + event.loaded + " bytes'tan " + event.total;
var percent = (event.loaded / event.total) * 100;
_("progressBar").value = Math.round(percent);
_("status").innerHTML = Math.round(percent) + "% Yüklendi ... Lütfen Bekleyin";
}
function completeHandler(event) {
_("status").innerHTML = event.target.responseText;
_("progressBar").value = 0;
$("#rez-but").removeAttr("style")
}
function errorHandler(event) {
_("status").innerHTML = "Yükleme Başarısız";
}
function abortHandler(event) {
_("status").innerHTML = "Yükleme Durduruldu";
}
<?php
$localhost = "localhost"; #localhost
$dbusername = "mydb"; #username of phpmyadmin
$dbpassword = "mydbpass"; #password of phpmyadmin
$dbname = "mydbname"; #database name
$conn = mysqli_connect($localhost,$dbusername,$dbpassword,$dbname);
$fileName = $_FILES["file1"]["name"]; // The file name
$fileTmpLoc = $_FILES["file1"]["tmp_name"]; // File in the PHP tmp folder
$fileType = $_FILES["file1"]["type"]; // The type of file it is
$fileSize = $_FILES["file1"]["size"]; // File size in bytes
$fileErrorMsg = $_FILES["file1"]["error"]; // 0 for false... and 1 for true
if (!$fileTmpLoc) { // if file not chosen
echo "Hata : Lütfen bir dosya seçiniz";
exit();
}
if(move_uploaded_file($fileTmpLoc, "upload/$fileName")){
$sql = "INSERT INTO `uploads` (`id`,`file_name`,`upload_time`) VALUES (NULL,'$fileName',NOW())";
mysqli_query($conn,$sql) ;
echo "$fileName Yükleme Tamamlandı.";
$class = 'show';
} else {
echo "Hata Oluştu";
$class = 'hidden';
}
?>
我试图在我上面转发的代码块中只允许上传pdf文件,但我没有成功。有没有人可以帮忙?
我正在使用 ajax 按钮上传。
我应该怎么做才能只上传 pdf 文件?
我应该在 ajax 端还是 php 端解决这个问题?
通过mime_content_type函数添加mime-type检查:
// ....
if (!$fileTmpLoc) { // if file not chosen
echo "Hata : Lütfen bir dosya seçiniz";
exit();
}
elseif( mime_content_type( $fileTmpLoc ) != 'application/pdf' ){
// non-pdf file error message here
}
// ...
function uploadFile() {
var file = _("file1").files[0];
//alert(file.name+" | "+file.size+" | "+file.type);
var formdata = new FormData();
formdata.append("file1", file);
var ajax = new XMLHttpRequest();
ajax.upload.addEventListener("progress", progressHandler, false);
ajax.addEventListener("load", completeHandler, false);
ajax.addEventListener("error", errorHandler, false);
ajax.addEventListener("abort", abortHandler, false);
ajax.open("POST", "upload_file_for_booking.php");
ajax.send(formdata);
}
function progressHandler(event) {
_("loaded_n_total").innerHTML = " Yüklendi " + event.loaded + " bytes'tan " + event.total;
var percent = (event.loaded / event.total) * 100;
_("progressBar").value = Math.round(percent);
_("status").innerHTML = Math.round(percent) + "% Yüklendi ... Lütfen Bekleyin";
}
function completeHandler(event) {
_("status").innerHTML = event.target.responseText;
_("progressBar").value = 0;
$("#rez-but").removeAttr("style")
}
function errorHandler(event) {
_("status").innerHTML = "Yükleme Başarısız";
}
function abortHandler(event) {
_("status").innerHTML = "Yükleme Durduruldu";
}
<?php
$localhost = "localhost"; #localhost
$dbusername = "mydb"; #username of phpmyadmin
$dbpassword = "mydbpass"; #password of phpmyadmin
$dbname = "mydbname"; #database name
$conn = mysqli_connect($localhost,$dbusername,$dbpassword,$dbname);
$fileName = $_FILES["file1"]["name"]; // The file name
$fileTmpLoc = $_FILES["file1"]["tmp_name"]; // File in the PHP tmp folder
$fileType = $_FILES["file1"]["type"]; // The type of file it is
$fileSize = $_FILES["file1"]["size"]; // File size in bytes
$fileErrorMsg = $_FILES["file1"]["error"]; // 0 for false... and 1 for true
if (!$fileTmpLoc) { // if file not chosen
echo "Hata : Lütfen bir dosya seçiniz";
exit();
}
if(move_uploaded_file($fileTmpLoc, "upload/$fileName")){
$sql = "INSERT INTO `uploads` (`id`,`file_name`,`upload_time`) VALUES (NULL,'$fileName',NOW())";
mysqli_query($conn,$sql) ;
echo "$fileName Yükleme Tamamlandı.";
$class = 'show';
} else {
echo "Hata Oluştu";
$class = 'hidden';
}
?>
我试图在我上面转发的代码块中只允许上传pdf文件,但我没有成功。有没有人可以帮忙?
我正在使用 ajax 按钮上传。
我应该怎么做才能只上传 pdf 文件?
我应该在 ajax 端还是 php 端解决这个问题?
通过mime_content_type函数添加mime-type检查:
// ....
if (!$fileTmpLoc) { // if file not chosen
echo "Hata : Lütfen bir dosya seçiniz";
exit();
}
elseif( mime_content_type( $fileTmpLoc ) != 'application/pdf' ){
// non-pdf file error message here
}
// ...