sharex-php-uploader/upload.php

144 lines
4.1 KiB
PHP
Raw Normal View History

2023-04-09 10:58:09 +00:00
<?php
$before = microtime(true); // Start time of the script
error_reporting(E_ERROR); // Hide PHP errors
header('Content-type:application/json;charset=utf-8'); // Set the content type to JSON
/**
* Configuration
*/
2023-04-09 10:58:09 +00:00
$tokens = array("set me"); // Your secret keys
2023-04-09 11:04:17 +00:00
$uploadDir = "./"; // The upload directory
$useRandomFileNames = false; // Use random file names instead of the original file name
$shouldConvertToWebp = true; // Should the script convert images to webp?
$webpQuality = 90; // The quality of the webp image (0-100)
$fileNameLength = 8; // The length of the random file name
2023-04-09 15:54:20 +00:00
$webpThreadhold = 1048576; // 1MB - The minimum file size for converting to webp (in bytes)
2023-04-09 10:58:09 +00:00
/**
* Check if the token is valid
*/
function checkToken($token): bool
{
2023-04-09 10:58:09 +00:00
global $tokens;
return isset($token) && in_array($token, $tokens);
2023-04-09 10:58:09 +00:00
}
/**
* Generate a random string
*/
function generateRandomString($length = 10): string
{
$characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
$charactersLength = strlen($characters);
$randomString = '';
for ($i = 0; $i < $length; $i++) {
$randomString .= $characters[rand(0, $charactersLength - 1)];
}
return $randomString;
}
2023-04-09 16:36:53 +00:00
/**
* Get the time taken to execute the script
*/
function getTimeTaken()
{
global $before;
return round(microtime(true) - $before, 3) . "ms";
}
2023-04-09 10:58:09 +00:00
/**
* Return a JSON response
*/
function returnJson($data): void
{
echo (json_encode($data));
2023-04-09 10:58:09 +00:00
die();
}
try {
$token = $_POST['secret']; // The provided secret key
$file = $_FILES['sharex']; // The uploaded file
2023-04-09 10:58:09 +00:00
// Check if the token is valid
if (!checkToken($token)) {
returnJson(array(
'status' => 'ERROR',
2023-04-09 16:37:56 +00:00
'url' => 'Invalid or missing upload secret',
2023-04-09 16:36:53 +00:00
// Remove this if you don't want to show the support URL
2023-04-09 16:31:08 +00:00
'support' => "For support, visit - https://git.fascinated.cc/Fascinated/sharex-php-uploader",
2023-04-09 16:36:53 +00:00
'timeTaken' => getTimeTaken()
));
die();
}
2023-04-09 10:58:09 +00:00
// Check if the file was uploaded
if (!isset($file)) {
returnJson(array(
'status' => 'ERROR',
2023-04-09 16:37:56 +00:00
'url' => 'No file was uploaded',
2023-04-09 16:36:53 +00:00
'timeTaken' => getTimeTaken()
));
die();
}
2023-04-09 10:58:09 +00:00
2023-04-09 15:51:05 +00:00
$target_file = preg_replace("/[^A-Za-z0-9_.]/", '', $_FILES["sharex"]["name"]); // Remove unwanted characters
$fileType = pathinfo($target_file, PATHINFO_EXTENSION); // File extension (e.g. png, jpg, etc.)
2023-04-09 10:58:09 +00:00
// Check if the file already exists
if (file_exists($uploadDir . $target_file)) {
returnJson(array(
'status' => 'ERROR',
2023-04-09 16:37:56 +00:00
'url' => 'File already exists',
2023-04-09 16:36:53 +00:00
'timeTaken' => getTimeTaken()
));
die();
}
$shouldSave = true; // Whether or not the file should be saved
$finalName = $target_file; // The final name of the file
if ($useRandomFileNames) { // Generate a random file name if enabled
$finalName = generateRandomString($fileNameLength) . "." . $fileType;
}
// Convert the image to webp if applicable
if (in_array($fileType, array("png", "jpeg", "jpg")) && $_FILES["sharex"]["size"] > $webpThreadhold && $shouldConvertToWebp) {
$image = imagecreatefromstring(file_get_contents($_FILES["sharex"]["tmp_name"]));
$webp_file = pathinfo($finalName, PATHINFO_FILENAME) . ".webp";
imagewebp($image, $webp_file, $webpQuality); // Convert the image and save it
2023-04-09 11:24:47 +00:00
imagedestroy($image); // Free up memory
$finalName = $webp_file;
$shouldSave = false;
}
2023-04-09 10:58:09 +00:00
if ($shouldSave) {
// Move the file to the uploads folder
if (move_uploaded_file($_FILES["sharex"]["tmp_name"], $uploadDir . $finalName)) {
returnJson(array(
'status' => 'OK',
2023-04-09 16:39:19 +00:00
'url' => $finalName,
2023-04-09 16:36:53 +00:00
'timeTaken' => getTimeTaken()
));
2023-04-09 16:40:37 +00:00
die();
}
2023-04-09 16:40:37 +00:00
returnJson(array(
'status' => 'ERROR',
'url' => 'Failed to save file. Check the permissions of the upload directory.',
'timeTaken' => getTimeTaken()
));
die();
}
returnJson(array(
'status' => 'OK',
2023-04-09 16:40:37 +00:00
'url' => $finalName,
2023-04-09 16:36:53 +00:00
'timeTaken' => getTimeTaken()
));
2023-04-09 15:54:20 +00:00
die();
2023-04-09 11:22:39 +00:00
} catch (Exception $e) { // Handle any errors
returnJson(array(
'status' => 'ERROR',
2023-04-09 16:37:56 +00:00
'url' => $e->getMessage(),
2023-04-09 16:36:53 +00:00
'timeTaken' => getTimeTaken()
));
die();
2023-04-09 10:58:09 +00:00
}