function maybeString()
{
return $this->ifOk(function ($x) {
if (trim($x) === '') {
return Result::none($x);
} else {
return Result::ok($x);
}
});
}
function getSubmissionPart($against)
{
# Validating file inputs is a rather difficult task.
# This solution is based on: http://php.net/manual/en/features.file-upload.php#114004
# It should be pretty bullet-proof, which is important because
# it is easy to create security vulnerabilities with file uploads.
return $against->files($this->name)->ifOk(function ($val) {
# See http://php.net/manual/en/features.file-upload.php
if (!is_array($val) || !isset($val['error']) || is_array($val['error'])) {
return Result::error('Invalid data.');
} else {
if ($val['error'] === UPLOAD_ERR_INI_SIZE || $val['error'] === UPLOAD_ERR_FORM_SIZE) {
return Result::error('File size exceeds server or form limit.');
} else {
if ($val['error'] === UPLOAD_ERR_NO_FILE) {
return Result::none(null);
} else {
if ($val['error'] === UPLOAD_ERR_OK) {
return Result::ok($val);
} else {
return Result::error('Error uploading file.');
}
}
}
}
})->requiredMaybe($this->required)->ifOk(function ($file) {
if ($file['size'] > $this->maxSize) {
return Result::error('File must be under ' . $this->maxSize . ' bytes in size.');
} else {
return Result::ok($file);
}
})->ifOk(function ($file) {
$finfo = new finfo(FILEINFO_MIME_TYPE);
$mime = $finfo->file($file['tmp_name']);
$ext = array_search($mime, $this->allowedExtensions, true);
if ($ext === false) {
return Result::error('Invalid file type or wrong MIME type. Allowed extensions are: ' . implode(', ', array_keys($this->allowedExtensions)) . '.');
}
if (!is_uploaded_file($file['tmp_name'])) {
return Result::error('Security error.');
}
$filename = sha1_file($file['tmp_name']) . '-' . floor(microtime(true)) . '.' . $ext;
return Result::ok(new FileInfo($file, $filename, $mime, $this->permissions));
})->name($this->name);
}
