/** * @covers \Pressbooks\Media\is_valid_media */ public function test_is_valid_media() { $goodFiles = ['video.mp4', 'video.webm', 'video.ogv', 'audio.ogg', 'audio.mp3', 'audio.aac', 'audio.vorbis']; foreach ($goodFiles as $file) { $this->assertTrue(\Pressbooks\Media\is_valid_media('__UNUSED__', $file)); } $badFiles = ['image.png', 'image.gif', 'image.jpg', 'image.jpeg', 'foo.bar', '/etc/hosts']; foreach ($badFiles as $file) { $this->assertFalse(\Pressbooks\Media\is_valid_media('__UNUSED__', $file)); } }
/** * Fetch a url with wp_remote_get(), save it to $fullpath with a unique name. * Will return an empty string if something went wrong. * * @param string $url * @param string $fullpath * @return string|array */ protected function fetchAndSaveUniqueMedia($url, $fullpath) { if (isset($this->fetchedMediaCache[$url])) { return $this->fetchedMediaCache[$url]; } $response = wp_remote_get($url, array('timeout' => $this->timeout)); // WordPress error? if (is_wp_error($response)) { try { // protocol relative urls handed to wp_remote_get will fail // try adding a protocol $protocol_relative = wp_parse_url($url); if (!isset($protocol_relative['scheme'])) { if (true === is_ssl()) { $url = 'https:' . $url; } else { $url = 'http:' . $url; } } $response = wp_remote_get($url, array('timeout' => $this->timeout)); if (is_wp_error($response)) { throw new \Exception('Bad URL: ' . $url); } } catch (\Exception $exc) { $this->fetchedImageCache[$url] = ''; error_log('\\PressBooks\\Export\\Epub3\\fetchAndSaveUniqueMedia wp_error on wp_remote_get() - ' . $response->get_error_message() . ' - ' . $exc->getMessage()); return ''; } } // Basename without query string $filename = explode('?', basename($url)); $filename = array_shift($filename); $filename = sanitize_file_name(urldecode($filename)); $filename = Sanitize\force_ascii($filename); $tmp_file = \Pressbooks\Utility\create_tmp_file(); file_put_contents($tmp_file, wp_remote_retrieve_body($response)); if (!\Pressbooks\Media\is_valid_media($tmp_file, $filename)) { $this->fetchedMediaCache[$url] = ''; return ''; // Not a valid media type } // Check for duplicates, save accordingly if (!file_exists("{$fullpath}/{$filename}")) { copy($tmp_file, "{$fullpath}/{$filename}"); } elseif (md5(file_get_contents($tmp_file)) != md5(file_get_contents("{$fullpath}/{$filename}"))) { $filename = wp_unique_filename($fullpath, $filename); copy($tmp_file, "{$fullpath}/{$filename}"); } $this->fetchedMediaCache[$url] = $filename; return $filename; }