lib/classes/JsonApi/Routes/StockImages/StockImagesUpload.php


1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
130
131
132
133
134
135
136
137
138
139
140
141
142
143
144
145
146
147
148
149
150
151
152
153

<?php

namespace JsonApi\Routes\StockImages;

use JsonApi\Errors\AuthorizationFailedException;
use JsonApi\Errors\BadRequestException;
use JsonApi\Errors\RecordNotFoundException;
use JsonApi\NonJsonApiController;
use Psr\Http\Message\ResponseInterface as Response;
use Psr\Http\Message\ServerRequestInterface as Request;
use Slim\Psr7\UploadedFile;
use Studip\Services\ImageValidator;
use Studip\StockImages\Scaler;
use Studip\StockImages\PaletteCreator;

class StockImagesUpload extends NonJsonApiController
{
    /**
     * @SuppressWarnings(PHPMD.UnusedFormalParameter)
     */
    public function __invoke(Request $request, Response $response, $args): Response
    {
        $resource = \StockImage::find($args['id']);
        if (!$resource) {
            throw new RecordNotFoundException();
        }

        if (!Authority::canUploadStockImage($this->getUser($request), $resource)) {
            throw new AuthorizationFailedException();
        }

        $this->handleUpload($request, $resource);
        $this->processStockImage($resource);

        return $this->redirectToStockImage($response, $resource);
    }

    private function handleUpload(Request $request, \StockImage $resource): void
    {
        $uploadedFile = $this->getUploadedFile($request);
        if (UPLOAD_ERR_OK !== $uploadedFile->getError()) {
            $error = $this->getErrorString($uploadedFile->getError());
            throw new BadRequestException($error);
        }

        $error = self::validate($uploadedFile);
        if (!empty($error)) {
            throw new BadRequestException($error);
        }

        $resource->mime_type = $uploadedFile->getClientMediaType();
        $resource->size = $uploadedFile->getSize();
        $uploadedFile->moveTo($resource->getPath());

        $imageSize = getimagesize($resource->getPath());
        $resource->width = $imageSize[0];
        $resource->height = $imageSize[1];

        $resource->store();
    }

    private function getUploadedFile(Request $request): UploadedFile
    {
        $files = iterator_to_array($this->getUploadedFiles($request));

        if (0 === count($files)) {
            throw new BadRequestException('File upload required.');
        }

        if (count($files) > 1) {
            throw new BadRequestException('Multiple file upload not possible.');
        }

        $uploadedFile = reset($files);
        if (UPLOAD_ERR_OK !== $uploadedFile->getError()) {
            throw new BadRequestException('Upload error.');
        }

        return $uploadedFile;
    }

    /**
     * @return iterable<UploadedFile> a list of uploaded files
     */
    private function getUploadedFiles(Request $request): iterable
    {
        foreach ($request->getUploadedFiles() as $item) {
            if (!is_array($item)) {
                yield $item;
                continue;
            }
            foreach ($item as $file) {
                yield $file;
            }
        }
    }

    private function getErrorString(int $errNo): string
    {
        $errors = [
            UPLOAD_ERR_OK => 'There is no error, the file uploaded with success',
            UPLOAD_ERR_INI_SIZE => 'The uploaded file exceeds the upload_max_filesize directive in php.ini',
            UPLOAD_ERR_FORM_SIZE => 'The uploaded file exceeds the MAX_FILE_SIZE directive that was specified in the HTML form',
            UPLOAD_ERR_PARTIAL => 'The uploaded file was only partially uploaded',
            UPLOAD_ERR_NO_FILE => 'No file was uploaded',
            UPLOAD_ERR_NO_TMP_DIR => 'Missing a temporary folder',
            UPLOAD_ERR_CANT_WRITE => 'Failed to write file to disk.',
            UPLOAD_ERR_EXTENSION => 'A PHP extension stopped the file upload.',
        ];

        return $errors[$errNo] ?? '';
    }

    /**
     * @return string|null null, if the file is valid, otherwise a string containing the error
     */
    private function validate(UploadedFile $file)
    {
        $validator = $this->container->get(ImageValidator::class);

        $mimeType = $file->getClientMediaType();
        $fileName = $file->getClientFilename();
        if (
            !$validator->validateMimeType($mimeType)
            || !$validator->validateName($fileName)
        ) {
            return 'Unsupported media type.';
        }
    }

    /**
     * @SuppressWarnings(PHPMD.Superglobals)
     */
    private function redirectToStockImage(Response $response, \StockImage $stockImage): Response
    {
        $pathinfo = $this->getSchema($stockImage)
            ->getSelfLink($stockImage)
            ->getStringRepresentation($this->container->get('json-api-integration-urlPrefix'));
        $old = \URLHelper::setBaseURL($GLOBALS['ABSOLUTE_URI_STUDIP']);
        $url = \URLHelper::getURL($pathinfo, [], true);
        \URLHelper::setBaseURL($old);

        return $response->withHeader('Location', $url)->withStatus(201);
    }

    private function processStockImage(\StockImage $resource): void
    {
        $scaler = new Scaler();
        $scaler($resource);
        $paletteCreator = new PaletteCreator();
        $paletteCreator($resource);
    }
}