mindscreen/fal_upload
Composer 安装命令:
composer require mindscreen/fal_upload
包简介
Handling file uploads via Extbase, inspired by upload_example of helhum
README 文档
README
.. post:: :tags: TYPO3, Extbase
| Project: | TYPO3 CMS extension ext:fal_upload for TYPO3 >= 6.2.4 |
|---|---|
| Author: | |
| Repository: | At Github mindscreen/t3ext-fal_upload |
| Credit: |
|
Overview:
What does it do?
This is an extension simplifying the addition of file upload functionality in other extensions.
How does it work?
- The heart of the extension is the UploadedFileReferenceConverter
- an extended FileReference model is needed
- an extended ObjectStorageConverter is needed
- an extended UploadViewHelper is needed
What needs to be done?
TypeConverter
We want to have a custom TypeConverter to:
- evaluate the file upload array
- move the uploaded file to a FAL storage using the FAL API
- and have the result persisted in the database using the Extbase persistence.
Error handling
We don't want to just throw exceptions but use the TypeConverter API to return useful error messages to the user.
Configurability
Things should be configurable, especially the TypeConverter. It needs to know about
- the folder to upload to
- what to do in case of a name conflict for the uploaded file
- the allowed file extensions
- how to deal with an already attached resource.
The actual configuration is done through by PropertyMappingConfiguration.
Some configuration options:
<?php class UploadedFileReferenceConverter extends \TYPO3\CMS\Extbase\Property\TypeConverter\AbstractTypeConverter { /** * Folder where the file upload should go to * (including storage). */ const CONFIGURATION_UPLOAD_FOLDER = 1; /** * How to handle an upload when the name * of the uploaded file conflicts. */ const CONFIGURATION_UPLOAD_CONFLICT_MODE = 2; /** * Whether to replace an already present resource. * Useful for "maxitems = 1" fields and properties * with no ObjectStorage annotation. */ const CONFIGURATION_ALLOWED_FILE_EXTENSIONS = 4; }
Handle validation errors and already attached resources
Different cases need to be handled.
Case: A file is already attached
- When editing an entity that has already an image attached to it, through a previous upload for example, saving the entity without re-uploading a file should keep the attached resource.
Knowing about an already attached resource is not only in the domain of the TypeConverter. Therefore the UploadViewHelper assigns such values to a hidden input and protects it by an hash value (hmac).
Additionally the viewhhelper accept child nodes and provides an object "resource". This means that you can render the attached resource if you like to. In this example a preview of the image is shown:
<h:form.upload property="image" > <f:if condition="{resource}"> <f:image image="{resource}" alt="" width="50"/> </f:if> </h:form.upload><br />
Case: Upload succeeds, validation fails
In this case the file upload succeeds but due to validation errors in some other fields the whole form isn't accepted. This also means it isn't persisted yet but we nevertheless want to keep the uploaded file as a resource as we don't want to upload it again.
Security
To make file upload secure the TypeConverter needs at least needs to care about these two issues:
Deny upload of PHP files!
<?php if (!GeneralUtility::verifyFilenameAgainstDenyPattern($uploadInfo['name'])) { throw new TypeConverterException('Uploading files with PHP file extensions is not allowed!', 1399312430); }
It cannot be stressed enough how important these three lines of code are!
Important
- These lines are mandatory and NOT optional.
- These lines are independent from the configurable allowed file extensions.
Install
- Get from Github, install as extension
- Create folder ./fileadmin/content
- No extra TypoScript needs to be included
- Create an extension and use the classes provided by the plugin
- Start playing
Adaptation
- Look into the controller to get an idea about how how to configure the type converter.
- Look into the TCA to see how to properly set the match_fields so that Extbase Persistence does the right thing.
- ...
Contribute
Enjoy!
mindscreen/fal_upload 适用场景与选型建议
mindscreen/fal_upload 是一款 基于 PHP 开发的 Composer 扩展包,目前已累计 3.42k 次下载、GitHub Stars 达 0, 最近一次更新时间为 2018 年 08 月 03 日, 在 PHP 生态内属于活跃度较高的组件。
我们在过去多个企业项目中使用过 mindscreen/fal_upload 或与其功能相近的方案,如果你在选型或落地过程中遇到问题,例如 版本兼容、二次改造、私有化封装、与内部系统对接、生产 BUG 排查,欢迎联系我们协助评估。
基于 mindscreen/fal_upload 在你已有业务上做功能扩展、字段裁剪、UI 适配、与内部账号 / 权限 / 日志系统的深度对接。
线上偶发问题、内存泄漏、慢查询、并发异常等排查修复;针对高流量场景做缓存、队列、索引层面的调优。
承接完整的项目从需求 → 设计 → 开发 → 上线 → 长期运维;也可按月提供技术保姆服务。
统计信息
- 总下载量: 3.42k
- 月度下载量: 0
- 日度下载量: 0
- 收藏数: 0
- 点击次数: 0
- 依赖项目数: 0
- 推荐数: 0
其他信息
- 授权协议: GPL-2.0
- 更新时间: 2018-08-03