Jingga/phpOMS
1
0
Fork 0
mirror of https://github.com/Karaka-Management/phpOMS.git synced 2026-02-11 22:38:42 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Supporting uploaded files and removing http verbs for security reasons

Browse Source
This commit is contained in:
Dennis Eichhorn 2015-12-20 22:26:07 +01:00
parent a626c0d0f0
commit 8c95184780
1 changed files with 22 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

23
Message/Http/Request.php
View File

@ -61,6 +61,14 @@ class Request extends RequestAbstract
*/ */
protected $path = null; protected $path = null;
/**
* Uploaded files.
*
* @var array
* @since 1.0.0
*/
protected $files = [];
/** /**
* Request information. * Request information.
* *
@ -93,6 +101,8 @@ class Request extends RequestAbstract
* *
* @return void * @return void
* *
* @throws
*
* @since 1.0.0 * @since 1.0.0
* @author Dennis Eichhorn <d.eichhorn@oms.com> * @author Dennis Eichhorn <d.eichhorn@oms.com>
*/ */
@ -103,10 +113,16 @@ class Request extends RequestAbstract
if (isset($_SERVER['CONTENT_TYPE'])) { if (isset($_SERVER['CONTENT_TYPE'])) {
if (strpos($_SERVER['CONTENT_TYPE'], 'application/json') !== false) { if (strpos($_SERVER['CONTENT_TYPE'], 'application/json') !== false) {
$this->data += json_decode(file_get_contents('php://input'), true); if(($json = json_decode(($input = file_get_contents('php://input')), true)) === false || $json === null) {
throw new \Exception('Is not valid json ' . $input);
}
$this->data += $json;
} elseif (strpos($_SERVER['CONTENT_TYPE'], 'application/x-www-form-urlencoded') !== false) { } elseif (strpos($_SERVER['CONTENT_TYPE'], 'application/x-www-form-urlencoded') !== false) {
parse_str(file_get_contents('php://input'), $temp); parse_str(file_get_contents('php://input'), $temp);
$this->data += $temp; $this->data += $temp;
} elseif (strpos($_SERVER['CONTENT_TYPE'], 'multipart/form-data') !== false) {
$this->files = $_FILES;
} }
} }
@ -370,6 +386,11 @@ class Request extends RequestAbstract
return '/'; return '/';
} }
public function getFiles() : array
{
return $this->files;
}
public function setHeader($key, \string $header, \bool $overwrite = true) public function setHeader($key, \string $header, \bool $overwrite = true)
{ {
// NOT Required for Http request // NOT Required for Http request