1 <?php
36  // UploadStash
37  private $stash;
49  const MAX_SERVE_BYTES = 1048576; // 1MB
51  public function __construct() {
52  parent::__construct( 'UploadStash', 'upload' );
53  }
55  public function doesWrites() {
56  return true;
57  }
66  public function execute( $subPage ) {
69  $this->stash = RepoGroup::singleton()->getLocalRepo()->getUploadStash( $this->getUser() );
70  $this->checkPermissions();
72  if ( $subPage === null || $subPage === '' ) {
73  return $this->showUploads();
74  }
76  return $this->showUpload( $subPage );
77  }
87  public function showUpload( $key ) {
88  // prevent callers from doing standard HTML output -- we'll take it from here
89  $this->getOutput()->disable();
91  try {
92  $params = $this->parseKey( $key );
93  if ( $params['type'] === 'thumb' ) {
94  return $this->outputThumbFromStash( $params['file'], $params['params'] );
95  } else {
96  return $this->outputLocalFile( $params['file'] );
97  }
99  $code = 404;
100  $message = $e->getMessage();
101  } catch ( UploadStashZeroLengthFileException $e ) {
102  $code = 500;
103  $message = $e->getMessage();
104  } catch ( UploadStashBadPathException $e ) {
105  $code = 500;
106  $message = $e->getMessage();
107  } catch ( SpecialUploadStashTooLargeException $e ) {
108  $code = 500;
109  $message = 'Cannot serve a file larger than ' . self::MAX_SERVE_BYTES .
110  ' bytes. ' . $e->getMessage();
111  } catch ( Exception $e ) {
112  $code = 500;
113  $message = $e->getMessage();
114  }
116  throw new HttpError( $code, $message );
117  }
128  private function parseKey( $key ) {
129  $type = strtok( $key, '/' );
131  if ( $type !== 'file' && $type !== 'thumb' ) {
132  throw new UploadStashBadPathException( "Unknown type '$type'" );
133  }
134  $fileName = strtok( '/' );
135  $thumbPart = strtok( '/' );
136  $file = $this->stash->getFile( $fileName );
137  if ( $type === 'thumb' ) {
138  $srcNamePos = strrpos( $thumbPart, $fileName );
139  if ( $srcNamePos === false || $srcNamePos < 1 ) {
140  throw new UploadStashBadPathException( 'Unrecognized thumb name' );
141  }
142  $paramString = substr( $thumbPart, 0, $srcNamePos - 1 );
144  $handler = $file->getHandler();
145  if ( $handler ) {
146  $params = $handler->parseParamString( $paramString );
148  return [ 'file' => $file, 'type' => $type, 'params' => $params ];
149  } else {
150  throw new UploadStashBadPathException( 'No handler found for ' .
151  "mime {$file->getMimeType()} of file {$file->getPath()}" );
152  }
153  }
155  return [ 'file' => $file, 'type' => $type ];
156  }
166  private function outputThumbFromStash( $file, $params ) {
167  $flags = 0;
168  // this config option, if it exists, points to a "scaler", as you might find in
169  // the Wikimedia Foundation cluster. See outputRemoteScaledThumb(). This
170  // is part of our horrible NFS-based system, we create a file on a mount
171  // point here, but fetch the scaled file from somewhere else that
172  // happens to share it over NFS.
173  if ( $this->getConfig()->get( 'UploadStashScalerBaseUrl' ) ) {
174  $this->outputRemoteScaledThumb( $file, $params, $flags );
175  } else {
176  $this->outputLocallyScaledThumb( $file, $params, $flags );
177  }
178  }
189  private function outputLocallyScaledThumb( $file, $params, $flags ) {
190  // n.b. this is stupid, we insist on re-transforming the file every time we are invoked. We rely
191  // on HTTP caching to ensure this doesn't happen.
195  $thumbnailImage = $file->transform( $params, $flags );
196  if ( !$thumbnailImage ) {
197  throw new MWException( 'Could not obtain thumbnail' );
198  }
200  // we should have just generated it locally
201  if ( !$thumbnailImage->getStoragePath() ) {
202  throw new UploadStashFileNotFoundException( "no local path for scaled item" );
203  }
205  // now we should construct a File, so we can get MIME and other such info in a standard way
206  // n.b. MIME type may be different from original (ogx original -> jpeg thumb)
207  $thumbFile = new UnregisteredLocalFile( false,
208  $this->stash->repo, $thumbnailImage->getStoragePath(), false );
209  if ( !$thumbFile ) {
210  throw new UploadStashFileNotFoundException( "couldn't create local file object for thumbnail" );
211  }
213  return $this->outputLocalFile( $thumbFile );
214  }
235  private function outputRemoteScaledThumb( $file, $params, $flags ) {
236  // This option probably looks something like
237  // '//'. Do not use
238  // trailing slash.
239  $scalerBaseUrl = $this->getConfig()->get( 'UploadStashScalerBaseUrl' );
241  if ( preg_match( '/^\/\//', $scalerBaseUrl ) ) {
242  // this is apparently a protocol-relative URL, which makes no sense in this context,
243  // since this is used for communication that's internal to the application.
244  // default to http.
245  $scalerBaseUrl = wfExpandUrl( $scalerBaseUrl, PROTO_CANONICAL );
246  }
248  // We need to use generateThumbName() instead of thumbName(), because
249  // the suffix needs to match the file name for the remote thumbnailer
250  // to work
251  $scalerThumbName = $file->generateThumbName( $file->getName(), $params );
252  $scalerThumbUrl = $scalerBaseUrl . '/' . $file->getUrlRel() .
253  '/' . rawurlencode( $scalerThumbName );
255  // make a curl call to the scaler to create a thumbnail
256  $httpOptions = [
257  'method' => 'GET',
258  'timeout' => 5 // T90599 attempt to time out cleanly
259  ];
260  $req = MWHttpRequest::factory( $scalerThumbUrl, $httpOptions, __METHOD__ );
261  $status = $req->execute();
262  if ( !$status->isOK() ) {
263  $errors = $status->getErrorsArray();
264  $errorStr = "Fetching thumbnail failed: " . print_r( $errors, 1 );
265  $errorStr .= "\nurl = $scalerThumbUrl\n";
266  throw new MWException( $errorStr );
267  }
268  $contentType = $req->getResponseHeader( "content-type" );
269  if ( !$contentType ) {
270  throw new MWException( "Missing content-type header" );
271  }
273  return $this->outputContents( $req->getContent(), $contentType );
274  }
285  private function outputLocalFile( File $file ) {
286  if ( $file->getSize() > self::MAX_SERVE_BYTES ) {
288  }
290  return $file->getRepo()->streamFile( $file->getPath(),
291  [ 'Content-Transfer-Encoding: binary',
292  'Expires: Sun, 17-Jan-2038 19:14:07 GMT' ]
293  );
294  }
304  private function outputContents( $content, $contentType ) {
305  $size = strlen( $content );
306  if ( $size > self::MAX_SERVE_BYTES ) {
308  }
309  // Cancel output buffering and gzipping if set
311  self::outputFileHeaders( $contentType, $size );
312  print $content;
314  return true;
315  }
326  private static function outputFileHeaders( $contentType, $size ) {
327  header( "Content-Type: $contentType", true );
328  header( 'Content-Transfer-Encoding: binary', true );
329  header( 'Expires: Sun, 17-Jan-2038 19:14:07 GMT', true );
330  // Bug 53032 - It shouldn't be a problem here, but let's be safe and not cache
331  header( 'Cache-Control: private' );
332  header( "Content-Length: $size", true );
333  }
344  public static function tryClearStashedUploads( $formData, $form ) {
345  if ( isset( $formData['Clear'] ) ) {
346  $stash = RepoGroup::singleton()->getLocalRepo()->getUploadStash( $form->getUser() );
347  wfDebug( 'stash has: ' . print_r( $stash->listFiles(), true ) . "\n" );
349  if ( !$stash->clear() ) {
350  return Status::newFatal( 'uploadstash-errclear' );
351  }
352  }
354  return Status::newGood();
355  }
362  private function showUploads() {
363  // sets the title, etc.
364  $this->setHeaders();
365  $this->outputHeader();
367  // create the form, which will also be used to execute a callback to process incoming form data
368  // this design is extremely dubious, but supposedly HTMLForm is our standard now?
370  $context = new DerivativeContext( $this->getContext() );
371  $context->setTitle( $this->getPageTitle() ); // Remove subpage
372  $form = HTMLForm::factory( 'ooui', [
373  'Clear' => [
374  'type' => 'hidden',
375  'default' => true,
376  'name' => 'clear',
377  ]
378  ], $context, 'clearStashedUploads' );
379  $form->setSubmitDestructive();
380  $form->setSubmitCallback( [ __CLASS__, 'tryClearStashedUploads' ] );
381  $form->setSubmitTextMsg( 'uploadstash-clear' );
383  $form->prepareForm();
384  $formResult = $form->tryAuthorizedSubmit();
386  // show the files + form, if there are any, or just say there are none
387  $refreshHtml = Html::element( 'a',
388  [ 'href' => $this->getPageTitle()->getLocalURL() ],
389  $this->msg( 'uploadstash-refresh' )->text() );
390  $files = $this->stash->listFiles();
391  if ( $files && count( $files ) ) {
392  sort( $files );
393  $fileListItemsHtml = '';
394  foreach ( $files as $file ) {
395  $itemHtml = Linker::linkKnown( $this->getPageTitle( "file/$file" ), htmlspecialchars( $file ) );
396  try {
397  $fileObj = $this->stash->getFile( $file );
398  $thumb = $fileObj->generateThumbName( $file, [ 'width' => 220 ] );
399  $itemHtml .=
400  $this->msg( 'word-separator' )->escaped() .
401  $this->msg( 'parentheses' )->rawParams(
403  $this->getPageTitle( "thumb/$file/$thumb" ),
404  $this->msg( 'uploadstash-thumbnail' )->escaped()
405  )
406  )->escaped();
407  } catch ( Exception $e ) {
408  }
409  $fileListItemsHtml .= Html::rawElement( 'li', [], $itemHtml );
410  }
411  $this->getOutput()->addHTML( Html::rawElement( 'ul', [], $fileListItemsHtml ) );
412  $form->displayForm( $formResult );
413  $this->getOutput()->addHTML( Html::rawElement( 'p', [], $refreshHtml ) );
414  } else {
415  $this->getOutput()->addHTML( Html::rawElement( 'p', [],
416  Html::element( 'span', [], $this->msg( 'uploadstash-nofiles' )->text() )
417  . ' '
418  . $refreshHtml
419  ) );
420  }
422  return true;
423  }
424 }
427 }
