diff options
author | steckbrief <steckbrief@chefmail.de> | 2016-01-06 19:39:32 +0100 |
---|---|---|
committer | steckbrief <steckbrief@chefmail.de> | 2016-01-06 19:39:32 +0100 |
commit | 2c946d39fbfc8ed47b32ba450f03af2919702928 (patch) | |
tree | 4ae4fccdcd04e4dcc45c8be3e7495b077aae3df6 /storage-backend | |
parent | b72fb066c91a366dc16921b1ab7462831f7a8e2e (diff) |
server validation added
several bug fixes
Diffstat (limited to 'storage-backend')
-rw-r--r-- | storage-backend/index.php | 22 |
1 files changed, 18 insertions, 4 deletions
diff --git a/storage-backend/index.php b/storage-backend/index.php index d9c82d5..0998c8c 100644 --- a/storage-backend/index.php +++ b/storage-backend/index.php @@ -11,6 +11,7 @@ * size * content_type * user_jid + * 403: In case the XMPP Server Key is not valid * 406: * File is empty (error code: 1) * File too large (error code: 2, parameters: max_file_size) @@ -47,6 +48,10 @@ switch ($method) { $filesize = getMandatoryPostParameter('size'); $type = getOptionalPostParameter('content_type'); $userJid = getMandatoryPostParameter('user_jid'); + // Check if xmppServerKey is allowed to request slots + if (false === checkXmppServerKey($config['valid_xmpp_server_keys'], $xmppServerKey)) { + sendHttpReturnCodeAndJson(403, 'Server is not allowed to request an upload slot'); + } // check file size - return 406 (not acceptable) if file too small if ($filesize <= 0) { sendHttpReturnCodeAndJson(406, ['msg' => 'File is empty.', 'err_code' => 1]); @@ -82,17 +87,17 @@ switch ($method) { sendHttpReturnCodeAndJson(403, "The slot does not exist."); } $slotParameters = require(getSlotFilePath($slotUUID, $config)); - if ($slotParameters['filename'] != $filename) { + if ($slotParameters['filename'] != $filename) { // Works because filename is rawurlencoded in slot store and filename is from PUT URL sendHttpReturnCodeAndJson(403, "Uploaded filename differs from requested slot filename."); } - $uploadFilePath = getUploadFilePath($slotUUID, $config, $filename); + $uploadFilePath = getUploadFilePath($slotUUID, $config, rawurldecode($filename)); if (file_exists($uploadFilePath)) { sendHttpReturnCodeAndJson(403, "The slot was already used."); } // save file $incomingFileStream = fopen("php://input", "r"); $targetFileStream = fopen($uploadFilePath, "w"); - $uploadedFilesize = stream_copy_to_stream($incomingFileStream, $targetFileStream); + $uploadedFilesize = stream_copy_to_stream($incomingFileStream, $targetFileStream, $slotParameters['filesize'] + 1); // max. 1 byte more than expected to avoid spamming fclose($targetFileStream); // check actual file size with registered file size - return 413 if ($uploadedFilesize != $slotParameters['filesize']) { @@ -113,6 +118,15 @@ switch ($method) { break; } +function checkXmppServerKey($validXmppServerKeys, $xmppServerKey) { + foreach ($validXmppServerKeys as $validXmppServerKey) { + if ($validXmppServerKey == $xmppServerKey) { + return true; + } + } + return false; +} + function getMandatoryPostParameter($parameterName) { $parameter = $_POST[$parameterName]; if (!isset($parameter) || is_null($parameter) || empty($parameter)) { @@ -154,7 +168,7 @@ function getFilenameFromUri($uri) { function registerSlot($slotUUID, $filename, $filesize, $contentType, $userJid, $config) { $contents = "<?php\n/*\n * This is an autogenerated file - do not edit\n */\n\n"; - $contents .= 'return [\'filename\' => \''.$filename.'\', \'filesize\' => \''.$filesize.'\', '; + $contents .= 'return [\'filename\' => \''.rawurlencode($filename).'\', \'filesize\' => \''.$filesize.'\', '; $contents .= '\'content_type\' => \''.$contentType.'\', \'user_jid\' => \''.$userJid.'\'];'; if (!file_put_contents(getSlotFilePath($slotUUID, $config), $contents)) { sendHttpReturnCodeAndMessage(500, "Could not create slot registry entry."); |