WordPress插件开发-文件上传:如何允许指定的文件类型?

时间:2018-10-11 04:27:23

标签: php wordpress file-upload file-extension file-type

这是允许将图像上传到网站根目录的代码。这是管理区域中的子菜单页面,它调用一个函数,并且函数主体如下:

 <div class="wrap">
<h2>Upload files</h2><br><br><br>
<form action="" method="post" enctype="multipart/form-data">
<input type="file" class="button" name="fileToUpload" id="fileToUpload">
<input type="submit" class="button button-primary" value="Upload File" name="submit">
</form>
</div>
<?php
// Check if image file is a actual image or fake image
if(isset($_POST["submit"])) {
    $target_dir = get_home_path();//wp_upload_dir();
    $target_file = get_home_path() . '/' . basename($_FILES["fileToUpload"]["name"]);
    $uploadOk = 1;
    $imageFileType = strtolower(pathinfo($target_file,PATHINFO_EXTENSION));
    $check = getimagesize($_FILES["fileToUpload"]["tmp_name"]);
    if($check !== false) {
        ?>
        <div id="setting-error-settings_updated" class="updated settings-error notice is-dismissible">
        <strong>File is an image</strong>
        </div>
        <?php
        $uploadOk = 1;
    } else {
         ?>
        <div id="setting-error-settings_updated" class="updated settings-error notice is-dismissible">
        <strong>File is not an image</strong>
        </div>
        <?php
        $uploadOk = 0;
    }
    // Check if file already exists
    if (file_exists($target_file)) {
         ?>
        <div id="setting-error-settings_updated" class="updated settings-error notice is-dismissible">
        <strong>File already exists.</strong>
        </div>
        <?php
        $uploadOk = 0;
    }
    // Check file size
    if ($_FILES["fileToUpload"]["size"] > 500000) {
          ?>
        <div id="setting-error-settings_updated" class="updated settings-error notice is-dismissible">
        <strong>Your file is too large.</strong>
        </div>
        <?php
        $uploadOk = 0;
    }
    // Allow certain file formats
    if($imageFileType != "jpg" && $imageFileType != "png" && $imageFileType != 
        "jpeg"
    && $imageFileType != "gif" ) {
          ?>
        <div id="setting-error-settings_updated" class="updated settings-error notice is-dismissible">
        <strong>Sorry, only JPG, JPEG, PNG & GIF files are allowed.</strong>
        </div>
        <?php
        $uploadOk = 0;
    }
    // Check if $uploadOk is set to 0 by an error
    if ($uploadOk == 0) {
          ?>
        <div id="setting-error-settings_updated" class="updated settings-error notice is-dismissible">
        <strong>Sorry, your file was not uploaded.</strong>
        </div>
        <?php
        // if everything is ok, try to upload file
    } else {
        if (move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file)) {                 
             ?>
        <div id="setting-error-settings_updated" class="updated settings-error notice is-dismissible">
        <strong>The file has been uploaded.</strong>
        </div>
        <?php

        } else {
            echo "Sorry, there was an error uploading your file.";
        }
    }

}

我想允许这些文件类型而不是图像:.xml,.rar,.zip,.txt。我试图用函数getimagesize()更改函数getfilesize()并更改// Allow certain file formats注释之后的文件扩展名。但这是行不通的。您是否知道应该怎么做才能允许上传这些文件类型,而不是当前允许上传的文件类型?

1 个答案:

答案 0 :(得分:1)

基本上是... 

$allowed_extenstions=array('jpg','png','pdf','zip');

    $ext = pathinfo(esc_attr($_FILES['file']['name']), PATHINFO_EXTENSION);
            if (!in_array($ext,$allowed_learning_extenstions))
            {
                echo "invalid_file_type";
                die();
            }

`
相关问题
最新问题