Skip to main content

Upload file to the server (for dummies)

EXERCISE 1: UPLOADING A FILE WITHOUT RESTRICTION

WARNING: This is a very simple file uploading exercise, intentionally created for training purposes to expose students the concept of file uploading processes. DO NOT use this in production, because it has no security feature…

What it does: This application will have the capability to upload any selected file into the web server.

Output: This application will look like this in Firefox;

image

For the purpose of this exercise, you need to create another folder in the project folder. This folder will serve as the storage for whatever file the user uploaded.image

The PHP code: It is a single file PHP script.

<form enctype="multipart/form-data" action="" method="POST">
Choose a file to upload: <input name="upload" type="file" >
<br>
<input type="submit" value="Upload File">
</form>
<hr>

<?php
//process the upload if user has selected a file
if ($_FILES['upload']['name']!=NULL){

//create this folder in the same location as your php script
//this folder will be the storage path of your file
$target_path = "filestorage/";
$target_path = $target_path . $_FILES['upload']['name'];

if(move_uploaded_file($_FILES['upload']['tmp_name'], $target_path)) {
//Display file link
echo "Displaying file link<br>";
echo "The file <a href='$target_path'>$target_path</a> " .
"has been uploaded<br>";
echo "File properties <br>";
echo "File name: ". $_FILES['upload']['name']."<br>";
echo "File type: ". $_FILES['upload']['type']."<br>";
echo "File size: ". $_FILES['upload']['size']."<br>";
echo "File tmp_name: ". $_FILES['upload']['tmp_name']."<br>";
}
else{
//uploading error
echo "There was an error uploading the file, " .
"please try again!<br>";
echo "File error code: ". $_FILES['upload']['error'];
}
}
else{//no file selected
echo "Please select a file to upload...";
}

?>

 

Explanation: elaboration of what’s happening in the PHP code…

The form elements;



  • enctype="multipart/form-data" - Necessary for our to-be-created PHP file to function properly (read more). It is used for submitting forms that contain files, non-ASCII data, and binary data.

  • method="POST" - Informs the browser that we want to send information to the server using POST. It won’t work if you set it to GET.

  • input name="upload" - upload is how we will access the file in our PHP script.

The server processes;


When the PHP script is executed, the uploaded file exists in a temporary storage area on the server. If the file is not moved to a different location it will be destroyed! To save the file we need to make use of the $_FILES associative array.

The $_FILES array is where PHP stores all the information about files. There are two elements of this array that we will need to understand for this example.


  • upload - upload is the reference we assigned in our HTML form. We will need this to tell the $_FILES array which file we want to play around with.
  • $_FILES['upload']['name'] - name contains the original path of the user uploaded file.
  • $_FILES['upload']['tmp_name'] - tmp_name contains the path to the temporary file that resides on the server. The file should exist on the server in a temporary directory with a temporary name.

  • if ($_FILES['upload']['name']!=NULL) – means if there is no file selected by the user.

  • $target_path – is the full path of the file saved in the server. By right it is supposed to be in filestorage/your_file.ext

  • move_uploaded_file($_FILES['upload']['tmp_name'], $target_path) – a PHP function to ensure that the file designated by filename ($_FILES['upload']['tmp_name']) is a valid upload file (meaning that it was uploaded via PHP's HTTP POST upload mechanism). If the file is valid, it will be moved to the filename given by destination (in $target_path). (read more –> http://php.net/move_uploaded_file )

***Credit to TiZag.com. Modified from the tutorial in http://www.tizag.com/phpT/fileupload.php .


 


EXERCISE 2: UPLOADING A FILE WITH FILE TYPE RESTRICTIONS


This exercise will impose file type restrictions. It will only receive image files with PNG, GIF or JPG format. Before uploading the file to the server, check the file type. Display the image in the output.


<form enctype="multipart/form-data" action="" method="POST">
Choose an image to upload (PNG, JPG, GIF): <input name="upload" type="file" >
<br>
<input type="submit" value="Upload Image">
</form>
<hr>

<?php
//process the upload if user has selected a file
if ($_FILES['upload']['name']!=NULL){

//create this folder in the same location as your php script
//this folder will be the storage path of your file
$target_path = "filestorage/";
$target_path = $target_path . $_FILES['upload']['name'];
if ($_FILES['upload']['type']== 'image/x-png'
|| $_FILES['upload']['type']== 'image/png'
|| $_FILES['upload']['type']== 'image/jpeg'
|| $_FILES['upload']['type']== 'image/pjpeg'
|| $_FILES['upload']['type']== 'image/gif'){
if(move_uploaded_file($_FILES['upload']['tmp_name'], $target_path)) {
//Display file link
echo "Displaying file link<br>";
echo "The file <a href='$target_path'>$target_path</a> " .
"has been uploaded<br>";
echo "File properties <br>";
echo "File name: ". $_FILES['upload']['name']."<br>";
echo "File type: ". $_FILES['upload']['type']."<br>";
echo "File size: ". $_FILES['upload']['size']."<br>";
echo "File tmp_name: ". $_FILES['upload']['tmp_name']."<br>";
}
else{
//uploading error
echo "There was an error uploading the file, " .
"please try again!<br>";
echo "File error code: ". $_FILES['upload']['error'];
}
}
}
else{//no file selected
echo "Please select a file to upload...";
}

?>


EXERCISE 3: UPLOADING A FILE WITH FILE TYPE AND SIZE RESTRICTIONS


Create a file uploading application that only receive a PDF file with file size smaller than 100KB. Display the link of the transferred file.


<form enctype="multipart/form-data" action="" method="POST">
Choose a PDF file less than 100KB: <input name="upload" type="file" >
<br>
<input type="submit" value="Upload PDF">
</form>

<hr>

<?php

//process the upload if user has selected a file
if ($_FILES['upload']['name']!=NULL){

//create this folder in the same location as your php script
//this folder will be the storage path of your file
$target_path = "filestorage/";

if ($_FILES["upload"]["type"] == "application/pdf"
&& $_FILES["upload"]["size"] <=102400){
$target_path = $target_path . $_FILES['upload']['name'];
if(move_uploaded_file($_FILES['upload']['tmp_name'], $target_path)) {
//Display file link
echo "Displaying file link<br>";
echo "The file <a href='$target_path'>$target_path</a> has been uploaded";
}
else{
//uploading error
echo "There was an error uploading the file, please try again!<br>";
echo "File type: ".$_FILES["upload"]["type"]."<br>";
echo "File size: ".$_FILES["upload"]["size"]."<br>";
}
}
else {
echo "Only PDF file <100KB is allowed. Try again<br>";
echo "File type: ".$_FILES["upload"]["type"]."<br>";
echo "File size: ".$_FILES["upload"]["size"]."<br>";
}
}
else{//no file selected
echo "Please select an image file to upload...";
}
?>

Comments

Popular posts from this blog

Several English proverbs and the Malay pair

Or you could download here for the Malay proverbs app – https://play.google.com/store/apps/details?id=net.kerul.peribahasa English proverbs and the Malay pair Corpus Reference: Amir Muslim, 2009. Peribahasa dan ungkapan Inggeris-Melayu. DBP, Kuala Lumpur http://books.google.com.my/books/about/Peribahasa_dan_ungkapan_Inggeris_Melayu.html?id=bgwwQwAACAAJ CTRL+F to search Proverbs in English Definition in English Similar Malay Proverbs Definition in Malay 1 Where there is a country, there are people. A country must have people. Ada air adalah ikan. Ada negeri adalah rakyatnya. 2 Dry bread at home is better than roast meat home's the best hujan emas di negeri orang,hujan batu di negeri sendiri Betapa baik pun tempat orang, baik lagi tempat sendiri. 3 There's no accounting for tastes We can't assume that every people have a same feel Kepala sama hitam hati lain-lain. Dalam kehidupan ini, setiap insan berbeza cara, kesukaan, perangai, tabia...

Pemasangan Joomla! 1.7 pada pelayan web komputer anda

Latihan ini akan memasang sistem pengurusan kandungan laman web ke dalam pelayan web yang anda telah pasang sebelum ini . LANGKAH 1: Aktifkan Pelayan Web dan Pangkalan Data Aktifkan XAMPP Control Panel, melalui “ Start->All Programs->ApacheFriends->XAMPP Control Panel ”. Rajah 2.1 Pastikan pelayan web Apache dan pelayan pangkalan data MySQL diaktifkan dengan klik butang START. -> Rajah 2.2

Installing Google AdMob into Android Apps

Previously I wrote on why ads are needed to help maintaining an app. Read the article here http://blog.kerul.net/2011/05/generating-revenue-from-free-mobile.html . ---This is quite an old article. You may find the latest supporting AdMob 6.x in here http://blog.kerul.net/2012/08/example-how-to-install-google-admob-6x.html --- This is quite a long tutorial, there are 3 major steps involved. The experiment is done using Windows 7, Eclipse Helios and AdMob SDK 4.1.0 (which currently is the latest-during time of writing). STEP 1: Get the ads from AdMob.com To display the AdMob ads in your Android mobile apps, you need to register first at the admob.com . After completing the registration, login and Add Site/App. Refer to Figure 1. Figure 1 Choose the desired platform and fill in the details (as in Figure 2). Just put http:// in the Android Package URL if your app is not published in the market yet. And click Continue. Figure 2 Download the AdMob Android SDK, and save the zip fil...

ViewFlipper Example–a simple FlashCard

UPDATE: Improved with Fling gesture (Sept 2012) UPDATE: ViewFlipper with Flip-In and Flip-Out Animation (August 2012) This tutorial is to demonstrate the ViewFlipper layout that is almost similar to CardLayout (in Java). The app will produce a simple Flash card that provide several screens with different picture for each card. Flip-in and Flip-out animation provided. Added in Sept 2012 – an improvement to support Fling gesture – enjoy… The amendment is only on the coding part. Some how the layout design (main.xml) is quite long. Later I’ll produce separated screen by including several XML layout from outside files. Screenshots;

Submit your blog address here

Create your own blog and send the address by submitting the comment of this article. Make sure to provide your full name, matrix and URL address of your blog. Refer to the picture below. Manual on developing a blog using blogger.com and AdSense, download here … Download Windows Live Writer (a superb offline blog post editor)