includes/upload/UploadFromStash.php

   1 <?php
   2
   3 class UploadFromStash extends UploadBase {
   4
   5         static function isValidSessionKey( $key, $sessionData ) {
   6                 return !empty( $key ) &&
   7                         is_array( $sessionData ) &&
   8                         isset( $sessionData[$key] ) &&
   9                         isset( $sessionData[$key]['version'] ) &&
  10                         $sessionData[$key]['version'] == self::SESSION_VERSION;
  11         }
  12
  13         static function isValidRequest( &$request ) {
  14                 $sessionData = $request->getSessionData( 'wsUploadData' );
  15                 return self::isValidSessionKey(
  16                         $request->getInt( 'wpSessionKey' ),
  17                         $sessionData
  18                 );
  19         }
  20
  21         function initialize( $name, $sessionData ) {
  22                         /**
  23                          * Confirming a temporarily stashed upload.
  24                          * We don't want path names to be forged, so we keep
  25                          * them in the session on the server and just give
  26                          * an opaque key to the user agent.
  27                          */
  28                         parent::initialize( $name,
  29                                 $sessionData['mTempPath'],
  30                                 $sessionData['mFileSize'],
  31                                 false
  32                         );
  33
  34                         $this->mFileProps = $sessionData['mFileProps'];
  35         }
  36
  37         function initializeFromRequest( &$request ) {
  38                 $sessionKey = $request->getInt( 'wpSessionKey' );
  39                 $sessionData = $request->getSessionData('wsUploadData');
  40
  41                 $desiredDestName = $request->getText( 'wpDestFile' );
  42                 if( !$desiredDestName )
  43                         $desiredDestName = $request->getText( 'wpUploadFile' );
  44                 return $this->initialize( $desiredDestName, $sessionData[$sessionKey] );
  45         }
  46
  47         /**
  48          * File has been previously verified so no need to do so again.
  49          */
  50         protected function verifyFile( $tmpfile ) {
  51                 return true;
  52         }
  53
  54         /**
  55          * We're here from "ignore warnings anyway" so return just OK
  56          */
  57         function checkWarnings() {
  58                 return array();
  59         }
  60
  61 }