NAME

OpenInteract2::File - Safe filesystem operations for OpenInteract

SYNOPSIS

use OpenInteract2::File;

my $filename = OpenInteract2::File->create_filename( 'conf/server.ini' );
my $filename = OpenInteract2::File->create_filename( 'uploads/myfile.exe' );

# These two save to the same file

my $filename = OpenInteract2::File->save_file( $fh, 'myfile.exe' );
my $filename = OpenInteract2::File->save_file( $fh, 'uploads/myfile.exe', 'true' );

# This one wants to write to the same file but doesn't pass a true
# value for overwriting, so it writes to 'uploads/myfile_x1.exe'

my $filename = OpenInteract2::File->save_file( $fh, 'uploads/myfile.exe' );

# See if a particular file already exists

if ( OpenInteract2::File->check_file( 'uploads/myfile.exe' ) ) {
    print "That file already exists!";
}

DESCRIPTION

We want to ensure that OpenInteract does not write to any file outside its configured website_directory. We also want to make it easy to find files inside a site. This module accomplishes both, and in an OS-independent manner.

METHODS

Class Methods

create_filename( $filename )

Creates a "safe" filename for $filename. Generally, this means that if there is a directory specified in $filename, the method ensures that it is under the configured 'website_dir'. If the leading directory is not found at the top level of the website directory, we assume that you want to save it to a subdirectory under the upload directory (typically 'upload') and create the path as necessary.

The goal is that we never, ever want to save a file outside the configured 'website_dir'. If this is a problem for your use, simply read or save the file yourself or save the file using the save_file() method and use the return value to rename it to your desired location.

Here are some examples from the test suite:

Website root: /home/httpd/mysite

Given                   Result
======================================================================
myfile.txt              /home/httpd/mysite/uploads/myfile.txt
otherdir/myfile.txt     /home/httpd/mysite/uploads/otherdir/myfile.txt
html/myfile.txt         /home/httpd/mysite/html/myfile.txt
html/images/sharpie.gif /home/httpd/mysite/html/images/sharpie.gif
/dingdong/myfile.txt    /home/httpd/mysite/uploads/dingdong/myfile.txt

check_file( $filename )

Retrieves a full path to $filename, or undef if the file does not exist. The $filename is assumed to be under the website directory and is checked according to the rules in create_filename().

Note that you cannot rely on this method to ensure a file will be named the same with a successive call to save_file(). For instance, in the following snippet $filename is not guaranteed to be named .../uploads/myfile.exe:

if ( OpenInteract2::File->check_file( 'uploads/myfile.exe' ) ) {
    my $filename = OpenInteract2::File->save_file( $fh, 'uploads/myfile.exe' );
}

Why not? Another process could have written the file 'uploads/myfile.exe' in between the call to check_file() and the call to save_file().

Returns: true if $filename exists under the website directory, false if not.

save_file( $filehandle, $filename[, $do_overwrite ] )

Saves $filehandle to $filename, ensuring first that $filename is 'safe' as determined by create_filename(). If a true value for $do_overwrite is passed then we will overwrite any existing file by the same name. Otherwise we try to create versions of the same name until one is found that will work properly.

my $file_a = OpenInteract2::File->save_file( $fh, 'logo.gif' ); # saves to 'uploads/logo.gif'
my $file_b = OpenInteract2::File->save_file( $fh, 'logo.gif' ); # saves to 'uploads/logo_x1.gif'
my $file_c = OpenInteract2::File->save_file( $fh, 'logo.gif' ); # saves to 'uploads/logo_x2.gif'

Returns: The full path to the file saved

get_mime_type( \%params )

Get the MIME type for the item which can be specified in \%params by:

filename: A file to check for its type. This first checks the file extension to see if it is known, if the extension is not known it uses the File::MMagic module to check the type. (Let the author know if you would like to be able to manipulate the extension-to-type mappings.)
content: Raw bytes to analyze for content type. This always uses the File::MMagic module.
filehandle: Filehandle to analyze for content type. This always uses the File::MMagic module.

If none of these parameters are specified an exception is thrown.

Returns: a valid MIME type if one can be discerned.

BUGS

None known.

TO DO

Nothing known.

COPYRIGHT

This library is free software; you can redistribute it and/or modify it under the same terms as Perl itself.

AUTHORS

Chris Winters <chris@cwinters.com>

To install OpenInteract2::URL, copy and paste the appropriate command in to your terminal.

cpanm

cpanm OpenInteract2::URL

CPAN shell

perl -MCPAN -e shell
install OpenInteract2::URL

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	go to github issues (only if github is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

	Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)