Home Explore Help
Register Sign In
Valavuo
/
inventory
2
0
Fork 0
Files Issues 0 Pull Requests 0 Wiki
Tree: c2819b6136
Branches Tags
inventory
/
backend
/
api
/
upload.php

upload.php 2.1 KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768 
  1. <?php
    2. 

  2. header("Access-Control-Allow-Origin: *");
    3. 

  3. header("Content-Type: application/json; charset=UTF-8");
    4. 

  4. header("Access-Control-Allow-Methods: POST, OPTIONS");
    5. 

  5. header("Access-Control-Allow-Headers: Content-Type, Access-Control-Allow-Headers, Authorization, X-Requested-With");
    6. 

  6. 

  7. if ($_SERVER['REQUEST_METHOD'] == 'OPTIONS') {
    8. 

  8.     exit(0);
    9. 

  9. }
    10. 

  10. 

  11. if ($_SERVER['REQUEST_METHOD'] !== 'POST') {
    12. 

  12.     http_response_code(405);
    13. 

  13.     echo json_encode(array("message" => "Method not allowed."));
    14. 

  14.     exit;
    15. 

  15. }
    16. 

  16. 

  17. if (!isset($_FILES['picture']) || $_FILES['picture']['error'] !== UPLOAD_ERR_OK) {
    18. 

  18.     http_response_code(400);
    19. 

  19.     echo json_encode(array("message" => "No file uploaded or upload error."));
    20. 

  20.     exit;
    21. 

  21. }
    22. 

  22. 

  23. $uploadDir = '/var/www/html/uploads/';
    24. 

  24. $allowedTypes = ['image/jpeg', 'image/png', 'image/gif', 'image/webp'];
    25. 

  25. $maxFileSize = 5 * 1024 * 1024; // 5MB
    26. 

  26. 

  27. if (!file_exists($uploadDir)) {
    28. 

  28.     mkdir($uploadDir, 0755, true);
    29. 

  29. }
    30. 

  30. 

  31. $file = $_FILES['picture'];
    32. 

  32. $fileType = $file['type'];
    33. 

  33. $fileSize = $file['size'];
    34. 

  34. $fileName = $file['name'];
    35. 

  35. $tmpName = $file['tmp_name'];
    36. 

  36. 

  37. if (!in_array($fileType, $allowedTypes)) {
    38. 

  38.     http_response_code(400);
    39. 

  39.     echo json_encode(array("message" => "Invalid file type. Only JPEG, PNG, GIF, and WebP are allowed."));
    40. 

  40.     exit;
    41. 

  41. }
    42. 

  42. 

  43. if ($fileSize > $maxFileSize) {
    44. 

  44.     http_response_code(400);
    45. 

  45.     echo json_encode(array("message" => "File too large. Maximum size is 5MB."));
    46. 

  46.     exit;
    47. 

  47. }
    48. 

  48. 

  49. $fileExtension = pathinfo($fileName, PATHINFO_EXTENSION);
    50. 

  50. $uniqueFileName = uniqid() . '.' . $fileExtension;
    51. 

  51. $uploadPath = $uploadDir . $uniqueFileName;
    52. 

  52. 

  53. if (move_uploaded_file($tmpName, $uploadPath)) {
    54. 

  54.     $baseUrl = (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] === 'on' ? "https" : "http") . "://$_SERVER[HTTP_HOST]";
    55. 

  55.     $apiPath = dirname($_SERVER['PHP_SELF']);
    56. 

  56.     $fullUrl = $baseUrl . $apiPath . '/' . $uploadPath;
    57. 

  57.     
    58. 

  58.     http_response_code(200);
    59. 

  59.     echo json_encode(array(
    60. 

  60.         "message" => "File uploaded successfully.",
    61. 

  61.         "filename" => $uniqueFileName,
    62. 

  62.         "url" => $fullUrl
    63. 

  63.     ));
    64. 

  64. } else {
    65. 

  65.     http_response_code(500);
    66. 

  66.     echo json_encode(array("message" => "Failed to upload file."));
    67. 

  67. }
    68. 

  68. ?>
    69.