EasyImages2.0/app/upload.php

266 lines
9.3 KiB
PHP
Raw Permalink Normal View History

2023-03-08 18:42:50 +00:00
<?php
namespace Verot\Upload;
require __DIR__ . '/function.php';
require __DIR__ . '/class.upload.php';
2024-01-19 14:21:12 +00:00
// 定义返回头信息为Json
header("Content-type: application/json; charset=utf-8");
2023-03-08 18:42:50 +00:00
// 检查登录
if ($config['mustLogin']) {
if (!is_who_login('status')) {
2024-01-19 14:21:12 +00:00
exit(json_encode(
array(
"result" => "failed",
"code" => 401,
"message" => "本站已开启登陆上传,您尚未登陆",
),
JSON_UNESCAPED_UNICODE
));
2023-03-08 18:42:50 +00:00
}
}
// 无文件
if (empty($_FILES['file'])) {
exit(json_encode(
array(
"result" => "failed",
"code" => 204,
"message" => "没有选择上传的文件",
2024-01-19 14:21:12 +00:00
),
JSON_UNESCAPED_UNICODE
2023-03-08 18:42:50 +00:00
));
}
2023-04-12 07:30:49 +00:00
// sign : 前端生成的时间戳 time() - $_POST['sign'] = 从选择文件到上传完毕的耗费时间
if (empty($_POST['sign']) || time() - $_POST['sign'] > 12306) {
2024-01-19 14:21:12 +00:00
exit(json_encode(
array(
"result" => "failed",
"code" => 403,
"systime" => time(),
"message" => "上传签名错误,请刷新重试",
),
JSON_UNESCAPED_UNICODE
));
2023-03-08 18:42:50 +00:00
}
// 黑/白IP名单上传
if ($config['check_ip']) {
if (checkIP(null, $config['check_ip_list'], $config['check_ip_model'])) {
// 上传错误 code:403 未授权IP
2024-01-19 14:21:12 +00:00
exit(json_encode(
array(
"result" => "failed",
2024-03-03 23:23:11 +00:00
"code" => 205,
2024-01-19 14:21:12 +00:00
"message" => "你不能上传任何文件",
),
JSON_UNESCAPED_UNICODE
));
2023-03-08 18:42:50 +00:00
}
}
// 根据IP限制游客每日上传数量
if ($config['ip_upload_counts'] > 0 && !is_who_login('status')) {
2024-01-19 14:21:12 +00:00
if (false === get_ip_upload_log_counts(real_ip())) {
2023-03-08 18:42:50 +00:00
exit(json_encode(
array(
"result" => "failed",
2024-03-03 23:23:11 +00:00
"code" => 202,
2023-03-08 18:42:50 +00:00
"message" => sprintf("游客限制每日上传 %d 张", $config['ip_upload_counts']),
2024-01-19 14:21:12 +00:00
),
JSON_UNESCAPED_UNICODE
2023-03-08 18:42:50 +00:00
));
}
}
2024-01-19 14:21:12 +00:00
// 分片上传
if ($config['chunks']) {
$chunk = chunk($_POST['name']);
// exit($chunk);
$handle = new Upload($chunk, 'zh_CN');
} else {
$handle = new Upload($_FILES['file'], 'zh_CN');
}
2023-03-08 18:42:50 +00:00
if ($handle->uploaded) {
// 允许上传的mime类型
2024-01-19 14:21:12 +00:00
if ($config['allowed']) {
2023-03-08 18:42:50 +00:00
$handle->allowed = array('image/*');
}
// 检查svg是否存在script和a标签代码
if ($handle->file_src_name_ext === 'svg') {
$svg = file_get_contents($handle->file_src_pathname);
if (preg_match('/<script[\s\S]*?<\/script>/', $svg) || stripos($svg, 'href=')) {
exit(json_encode(
array(
"result" => "failed",
2024-03-03 23:23:11 +00:00
"code" => 406,
2023-03-08 18:42:50 +00:00
"message" => "请勿上传非法文件",
2024-01-19 14:21:12 +00:00
),
JSON_UNESCAPED_UNICODE
2023-03-08 18:42:50 +00:00
));
}
}
// 文件命名
$handle->file_new_name_body = imgName($handle->file_src_name_body);
// 最大上传限制
$handle->file_max_size = $config['maxSize'];
// 最大宽度
$handle->image_max_width = $config['maxWidth'];
// 最大高度
$handle->image_max_height = $config['maxHeight'];
// 最小宽度
$handle->image_min_width = $config['minWidth'];
// 最小高度
$handle->image_min_height = $config['minHeight'];
// 2023-01-06 转换图片为指定格式 只转换非webp格式和非动态图片
if ($handle->file_src_name_ext !== 'webp' && !isGifAnimated($handle->file_src_pathname)) {
$handle->image_convert = $config['imgConvert'];
}
// 2023-01-06 PNG 图像的压缩级别,介于 1快速但大文件和 9慢但较小文件之间
$handle->png_compression = 9 - round($config['compress_ratio'] / 11.2);
// WEBP 图像的压缩质量 1-100
$handle->webp_quality = $config['compress_ratio'];
// JPEG 图像的压缩质量 1-100
$handle->jpeg_quality = $config['compress_ratio'];
2024-01-19 14:21:12 +00:00
/* 等比例缩减图片 放到前端了
2023-03-08 18:42:50 +00:00
if ($config['imgRatio']) {
$handle->image_resize = true;
$handle->image_x = $config['image_x'];
$handle->image_y = $config['image_y'];
// 如果调整后的图像大于原始图像,则取消调整大小,以防止放大
$handle->image_no_enlarging = true;
}
*/
/**
* 为管理员和登陆用户创建自定义上传目录
* 管理员上传目录为自定义目录
* 上传者目录为其用户名
* 2022年5月1日
*/
// 默认目录
$Img_path = config_path();
// 开启管理员自定义目录
if ($config['admin_path_status']) {
2024-01-19 14:21:12 +00:00
if (checkLogin() === 204) {
2023-03-08 18:42:50 +00:00
$Img_path = config_path($config['admin_path'] . date('/Y/m/d/'));
}
}
// 开启上传者单独目录
if ($config['guest_path_status']) {
2024-01-19 14:21:12 +00:00
if (checkLogin() === 205) {
2023-03-08 18:42:50 +00:00
$getCok = json_decode($_COOKIE['auth']);
$Img_path = config_path($getCok[0] . date('/Y/m/d/'));
}
}
// 存储图片路径:i/201807/
$handle->process(APP_ROOT . $Img_path);
// 图片完整相对路径:/i/2021/05/03/k88e7p.jpg
if ($handle->processed) {
2024-03-03 23:23:11 +00:00
// 黑名单文件 - 通过MD5检测
if ($config['md5_black']) {
$befor_upload_file_md5 = md5_file($handle->file_src_pathname);
$after_upload_file_md5 = md5_file($handle->file_dst_pathname);
if (stristr($config['md5_blacklist'], $befor_upload_file_md5) || stristr($config['md5_blacklist'], $after_upload_file_md5)) {
if (file_exists($handle->file_dst_pathname)) unlink($handle->file_dst_pathname);
exit(json_encode(
array(
"result" => "failed",
"code" => 205,
"message" => "当前文件禁止上传",
),
JSON_UNESCAPED_UNICODE
));
}
}
2023-03-08 18:42:50 +00:00
// 图片相对路径
$pathIMG = $Img_path . $handle->file_dst_name;
// 图片访问网址
$imageUrl = rand_imgurl() . $pathIMG;
// 后续处理地址
$processUrl = $config['domain'] . $pathIMG;
// 隐藏config文件中的path目录,需要搭配网站设置
2024-01-19 14:21:12 +00:00
if ($config['hide_path'] === 1) {
2023-03-08 18:42:50 +00:00
$imageUrl = str_replace($config['path'], '/', $imageUrl);
}
// 源图保护 key值是由crc32加密的hide_key
// $hide_original = $config['hide'] == 1 ? $config['domain'] . '/app/hide.php?key=' . urlHash($pathIMG, 0, crc32($config['hide_key'])) : $imageUrl;
2024-01-19 14:21:12 +00:00
if ($config['hide'] === 1) {
2023-03-08 18:42:50 +00:00
$imageUrl = $config['domain'] . '/app/hide.php?key=' . urlHash($pathIMG, 0, crc32($config['hide_key']));
}
// 删除文件链接
if ($config['show_user_hash_del']) {
$delUrl = $config['domain'] . '/app/del.php?hash=' . urlHash($pathIMG, 0);
} else {
$delUrl = "Admin closed user delete";
}
// 当设置访问生成缩略图时自动生成 2022-12-30 修正 2023-01-30
$handleThumb = $config['domain'] . '/app/thumb.php?img=' . $pathIMG;
2024-01-19 14:21:12 +00:00
if ($config['thumbnail'] === 2) {
2023-03-08 18:42:50 +00:00
// 自定义缩略图长宽
$handle->image_resize = true;
$handle->image_x = $config['thumbnail_w'];
$handle->image_y = $config['thumbnail_h'];
// 如果调整后的图像大于原始图像,则取消调整大小,以防止放大
$handle->image_no_enlarging = true;
$handle->file_new_name_body = date('Y_m_d_') . $handle->file_dst_name_body;
$handle->process(APP_ROOT . $config['path'] . 'cache/');
$handleThumb = $config['domain'] . $config['path'] . 'cache/' . $handle->file_dst_name;
}
// 上传成功后返回json数据
$reJson = array(
"result" => "success",
"code" => 200,
"url" => $imageUrl,
"srcName" => $handle->file_src_name_body,
"thumb" => $handleThumb,
"del" => $delUrl,
// "memory" => getDistUsed(memory_get_peak_usage()), // 占用内存 2023-02-12
);
2024-01-19 14:21:12 +00:00
echo json_encode($reJson, JSON_UNESCAPED_UNICODE);
2023-03-08 18:42:50 +00:00
$handle->clean(); // 如果取消上传生成缩略图需要恢复此选项功能
2024-03-03 23:23:11 +00:00
} else { // 上传错误 code:400 客户端文件有问题
2023-03-08 18:42:50 +00:00
$reJson = array(
"result" => "failed",
2024-03-03 23:23:11 +00:00
"code" => 400,
2023-03-08 18:42:50 +00:00
"message" => $handle->error,
"memory" => getDistUsed(memory_get_peak_usage()), // 占用内存 2023-02-12
// 'log' => $handle->log, // 仅用作调试用
);
unset($handle);
exit(json_encode($reJson, JSON_UNESCAPED_UNICODE));
}
/** 后续处理 */
// 使用fastcgi_finish_request操作
if (function_exists('fastcgi_finish_request')) fastcgi_finish_request();
// 同IP上传日志
@write_ip_upload_count_logs();
// 日志
@write_upload_logs($pathIMG, $handle->file_src_name, $handle->file_dst_pathname, $handle->file_src_size);
// 鉴黄
@process_checkImg($processUrl);
// 水印
@water($handle->file_dst_pathname);
// 压缩
@process_compress($handle->file_dst_pathname);
2024-01-19 14:21:12 +00:00
// 上传至其他位置
@any_upload($pathIMG, APP_ROOT . $pathIMG, 'upload');
2023-03-08 18:42:50 +00:00
unset($handle);
}