Skip to main content

Upload file to the server (for dummies)

EXERCISE 1: UPLOADING A FILE WITHOUT RESTRICTION

WARNING: This is a very simple file uploading exercise, intentionally created for training purposes to expose students the concept of file uploading processes. DO NOT use this in production, because it has no security feature…

What it does: This application will have the capability to upload any selected file into the web server.

Output: This application will look like this in Firefox;

image

For the purpose of this exercise, you need to create another folder in the project folder. This folder will serve as the storage for whatever file the user uploaded.image

The PHP code: It is a single file PHP script.

<form enctype="multipart/form-data" action="" method="POST">
Choose a file to upload: <input name="upload" type="file" >
<br>
<input type="submit" value="Upload File">
</form>
<hr>

<?php
//process the upload if user has selected a file
if ($_FILES['upload']['name']!=NULL){

//create this folder in the same location as your php script
//this folder will be the storage path of your file
$target_path = "filestorage/";
$target_path = $target_path . $_FILES['upload']['name'];

if(move_uploaded_file($_FILES['upload']['tmp_name'], $target_path)) {
//Display file link
echo "Displaying file link<br>";
echo "The file <a href='$target_path'>$target_path</a> " .
"has been uploaded<br>";
echo "File properties <br>";
echo "File name: ". $_FILES['upload']['name']."<br>";
echo "File type: ". $_FILES['upload']['type']."<br>";
echo "File size: ". $_FILES['upload']['size']."<br>";
echo "File tmp_name: ". $_FILES['upload']['tmp_name']."<br>";
}
else{
//uploading error
echo "There was an error uploading the file, " .
"please try again!<br>";
echo "File error code: ". $_FILES['upload']['error'];
}
}
else{//no file selected
echo "Please select a file to upload...";
}

?>

 

Explanation: elaboration of what’s happening in the PHP code…

The form elements;



  • enctype="multipart/form-data" - Necessary for our to-be-created PHP file to function properly (read more). It is used for submitting forms that contain files, non-ASCII data, and binary data.

  • method="POST" - Informs the browser that we want to send information to the server using POST. It won’t work if you set it to GET.

  • input name="upload" - upload is how we will access the file in our PHP script.

The server processes;


When the PHP script is executed, the uploaded file exists in a temporary storage area on the server. If the file is not moved to a different location it will be destroyed! To save the file we need to make use of the $_FILES associative array.

The $_FILES array is where PHP stores all the information about files. There are two elements of this array that we will need to understand for this example.


  • upload - upload is the reference we assigned in our HTML form. We will need this to tell the $_FILES array which file we want to play around with.
  • $_FILES['upload']['name'] - name contains the original path of the user uploaded file.
  • $_FILES['upload']['tmp_name'] - tmp_name contains the path to the temporary file that resides on the server. The file should exist on the server in a temporary directory with a temporary name.

  • if ($_FILES['upload']['name']!=NULL) – means if there is no file selected by the user.

  • $target_path – is the full path of the file saved in the server. By right it is supposed to be in filestorage/your_file.ext

  • move_uploaded_file($_FILES['upload']['tmp_name'], $target_path) – a PHP function to ensure that the file designated by filename ($_FILES['upload']['tmp_name']) is a valid upload file (meaning that it was uploaded via PHP's HTTP POST upload mechanism). If the file is valid, it will be moved to the filename given by destination (in $target_path). (read more –> http://php.net/move_uploaded_file )

***Credit to TiZag.com. Modified from the tutorial in http://www.tizag.com/phpT/fileupload.php .


 


EXERCISE 2: UPLOADING A FILE WITH FILE TYPE RESTRICTIONS


This exercise will impose file type restrictions. It will only receive image files with PNG, GIF or JPG format. Before uploading the file to the server, check the file type. Display the image in the output.


<form enctype="multipart/form-data" action="" method="POST">
Choose an image to upload (PNG, JPG, GIF): <input name="upload" type="file" >
<br>
<input type="submit" value="Upload Image">
</form>
<hr>

<?php
//process the upload if user has selected a file
if ($_FILES['upload']['name']!=NULL){

//create this folder in the same location as your php script
//this folder will be the storage path of your file
$target_path = "filestorage/";
$target_path = $target_path . $_FILES['upload']['name'];
if ($_FILES['upload']['type']== 'image/x-png'
|| $_FILES['upload']['type']== 'image/png'
|| $_FILES['upload']['type']== 'image/jpeg'
|| $_FILES['upload']['type']== 'image/pjpeg'
|| $_FILES['upload']['type']== 'image/gif'){
if(move_uploaded_file($_FILES['upload']['tmp_name'], $target_path)) {
//Display file link
echo "Displaying file link<br>";
echo "The file <a href='$target_path'>$target_path</a> " .
"has been uploaded<br>";
echo "File properties <br>";
echo "File name: ". $_FILES['upload']['name']."<br>";
echo "File type: ". $_FILES['upload']['type']."<br>";
echo "File size: ". $_FILES['upload']['size']."<br>";
echo "File tmp_name: ". $_FILES['upload']['tmp_name']."<br>";
}
else{
//uploading error
echo "There was an error uploading the file, " .
"please try again!<br>";
echo "File error code: ". $_FILES['upload']['error'];
}
}
}
else{//no file selected
echo "Please select a file to upload...";
}

?>


EXERCISE 3: UPLOADING A FILE WITH FILE TYPE AND SIZE RESTRICTIONS


Create a file uploading application that only receive a PDF file with file size smaller than 100KB. Display the link of the transferred file.


<form enctype="multipart/form-data" action="" method="POST">
Choose a PDF file less than 100KB: <input name="upload" type="file" >
<br>
<input type="submit" value="Upload PDF">
</form>

<hr>

<?php

//process the upload if user has selected a file
if ($_FILES['upload']['name']!=NULL){

//create this folder in the same location as your php script
//this folder will be the storage path of your file
$target_path = "filestorage/";

if ($_FILES["upload"]["type"] == "application/pdf"
&& $_FILES["upload"]["size"] <=102400){
$target_path = $target_path . $_FILES['upload']['name'];
if(move_uploaded_file($_FILES['upload']['tmp_name'], $target_path)) {
//Display file link
echo "Displaying file link<br>";
echo "The file <a href='$target_path'>$target_path</a> has been uploaded";
}
else{
//uploading error
echo "There was an error uploading the file, please try again!<br>";
echo "File type: ".$_FILES["upload"]["type"]."<br>";
echo "File size: ".$_FILES["upload"]["size"]."<br>";
}
}
else {
echo "Only PDF file <100KB is allowed. Try again<br>";
echo "File type: ".$_FILES["upload"]["type"]."<br>";
echo "File size: ".$_FILES["upload"]["size"]."<br>";
}
}
else{//no file selected
echo "Please select an image file to upload...";
}
?>

Comments

Popular posts from this blog

Several English proverbs and the Malay pair

Or you could download here for the Malay proverbs app – https://play.google.com/store/apps/details?id=net.kerul.peribahasa English proverbs and the Malay pair Corpus Reference: Amir Muslim, 2009. Peribahasa dan ungkapan Inggeris-Melayu. DBP, Kuala Lumpur http://books.google.com.my/books/about/Peribahasa_dan_ungkapan_Inggeris_Melayu.html?id=bgwwQwAACAAJ CTRL+F to search Proverbs in English Definition in English Similar Malay Proverbs Definition in Malay 1 Where there is a country, there are people. A country must have people. Ada air adalah ikan. Ada negeri adalah rakyatnya. 2 Dry bread at home is better than roast meat home's the best hujan emas di negeri orang,hujan batu di negeri sendiri Betapa baik pun tempat orang, baik lagi tempat sendiri. 3 There's no accounting for tastes We can't assume that every people have a same feel Kepala sama hitam hati lain-lain. Dalam kehidupan ini, setiap insan berbeza cara, kesukaan, perangai, tabia

Applications of Web 2.0

Web 2.0 describes the changing trends in the use of World Wide Web technology and web design that aim to enhance creativity , secure information sharing, collaboration and functionality of the web. Web 2.0 concepts have led to the development and evolution of web-based communities and hosted services , such as social-networking sites , video sharing sites , wikis , blogs . Find a website or web application that conform to the criteria of Web 2.0. Put the name of the application and the URL in the comment below. Please provide your full name and matrix number. Make sure the application you choose is not already chosen by your friend in the previous comment.

Login JSON Android using Login Activity

I’ve been trying to release this tutorial quite a while. At last after a long hard effort. Since HttpClient is not supported any more in Android SDK 23, I have to resort to org.json.JSONObject and java.net.HttpURLConnection library to do online database with JSON. The objective of this tutorial is to log-in from a mobile client with the username and password stored in an online database facility. STEP 1: Create a new Android project, this time choose the LoginActivity .

Most used STRING functions in my PHP coding

These are my favourite string manipulation functions in my daily coding life. Dedicated especially to Web Programming students. Read them and have fun. Expect a happiness after a storm , and you’ll find your “inner peace”… This post is still in draft. I’ll update and refine with more examples that I’ve personally develop. More after the break…

Bootstrap Template for PHP database system - MyCompanyHR

HTML without framework is dull. Doing hard-coded CSS and JS are quite difficult with no promising result on cross platform compatibility. So I decided to explore BootStrap as they said it is the most popular web framework. What is BootStrap? - Bootstrap is the most popular HTML, CSS, and JavaScript framework for developing responsive, mobile-first web sites. (  http://www.w3schools.com/bootstrap/   ) Available here -  http://getbootstrap.com/ Why you need Flat-UI? Seems like a beautiful theme to make my site look professional. Anyway you could get variety of BootStrap theme out there, feel free to select here  http://bootstraphero.com/the-big-badass-list-of-twitter-bootstrap-resources/ Flat-UI is from DesignModo -   http://designmodo.com/flat/ Web Programming MyCompanyHR – PHP & MySQL mini project (with Boostrap HTML framework) Template 1: Template for the Lab Exercise. This is a project sample of a staff record management system. It has the PHP structured co