instiki/app/controllers/file_controller.rb

require 'fileutils'
require 'application'
require 'instiki_errors'

class FileController < ApplicationController

  layout 'default'

  def file
    if @params['file']
      # received a file
      File.open(file_name) { |f| f.write(@params['file'].read }
      
    elsif have_file?
      send_file(file_path)
    else
      logger.debug("File not found: #{file_path}")
      # go to the template, which is a file upload form
    end
  end

  def cancel_upload
    return_to_last_remembered
  end
  
  def 
  
  private

  def have_file?
    sanitize_file_name
    File.file?(file_path)
  end

  SANE_FILE_NAME = /[-_A-Za-z0-9]{1,255}/

  def sanitize_file_name
    raise Instiki::ValidationError.new("Invalid path: no file name") unless @file_name
    unless @file_name =~ SANE_FILE_NAME
      raise ValidationError.new("Invalid file name: '#{@file_name}'.\n" +
            "Only latin characters, digits, underscores and dashes are accepted.")
    end
  end

  def file_area
    raise Instiki::ValidationError.new("Invalid path: no web name") unless @web_name
    file_area = File.expand_path("#{@wiki.storage_path}/#{@web_name}")
    FileUtils.mkdir_p(file_area) unless File.directory?(file_area)
    file_area
  end

  def file_path
    "#{file_area}/#{@file_name}"
  end

end
File download (primitive implementation) 2005-01-22 03:49:52 +01:00			`require 'fileutils'`
Beginnings of a FileController (serving the file upload feature) 2005-01-22 02:35:00 +01:00			`require 'application'`
File download (primitive implementation) 2005-01-22 03:49:52 +01:00			`require 'instiki_errors'`
URI rewriting to determine a controller based on an action name 2005-01-22 02:57:05 +01:00
Beginnings of a FileController (serving the file upload feature) 2005-01-22 02:35:00 +01:00			`class FileController < ApplicationController`

Actions that send files to browser smartly determine content-type HTTP header by the file name extnsion 2005-01-22 15:58:43 +01:00			`layout 'default'`
Beginnings of a FileController (serving the file upload feature) 2005-01-22 02:35:00 +01:00
			`def file`
Naive implementation of a file upload 2005-01-22 19:38:16 +01:00			`if @params['file']`
			`# received a file`
			`File.open(file_name) { \|f\| f.write(@params['file'].read }`

			`elsif have_file?`
File download (primitive implementation) 2005-01-22 03:49:52 +01:00			`send_file(file_path)`
			`else`
Actions that send files to browser smartly determine content-type HTTP header by the file name extnsion 2005-01-22 15:58:43 +01:00			`logger.debug("File not found: #{file_path}")`
Naive implementation of a file upload 2005-01-22 19:38:16 +01:00			`# go to the template, which is a file upload form`
Beginnings of a FileController (serving the file upload feature) 2005-01-22 02:35:00 +01:00			`end`
			`end`
Actions that send files to browser smartly determine content-type HTTP header by the file name extnsion 2005-01-22 15:58:43 +01:00
Naive implementation of a file upload 2005-01-22 19:38:16 +01:00			`def cancel_upload`
			`return_to_last_remembered`
			`end`

			`def`

Beginnings of a FileController (serving the file upload feature) 2005-01-22 02:35:00 +01:00			`private`
Actions that send files to browser smartly determine content-type HTTP header by the file name extnsion 2005-01-22 15:58:43 +01:00
File download (primitive implementation) 2005-01-22 03:49:52 +01:00			`def have_file?`
			`sanitize_file_name`
			`File.file?(file_path)`
Beginnings of a FileController (serving the file upload feature) 2005-01-22 02:35:00 +01:00			`end`

			`SANE_FILE_NAME = /[-_A-Za-z0-9]{1,255}/`
File download (primitive implementation) 2005-01-22 03:49:52 +01:00
			`def sanitize_file_name`
Actions that send files to browser smartly determine content-type HTTP header by the file name extnsion 2005-01-22 15:58:43 +01:00			`raise Instiki::ValidationError.new("Invalid path: no file name") unless @file_name`
File download (primitive implementation) 2005-01-22 03:49:52 +01:00			`unless @file_name =~ SANE_FILE_NAME`
			`raise ValidationError.new("Invalid file name: '#{@file_name}'.\n" +`
			`"Only latin characters, digits, underscores and dashes are accepted.")`
Beginnings of a FileController (serving the file upload feature) 2005-01-22 02:35:00 +01:00			`end`
			`end`

File download (primitive implementation) 2005-01-22 03:49:52 +01:00			`def file_area`
Actions that send files to browser smartly determine content-type HTTP header by the file name extnsion 2005-01-22 15:58:43 +01:00			`raise Instiki::ValidationError.new("Invalid path: no web name") unless @web_name`
File download (primitive implementation) 2005-01-22 03:49:52 +01:00			`file_area = File.expand_path("#{@wiki.storage_path}/#{@web_name}")`
			`FileUtils.mkdir_p(file_area) unless File.directory?(file_area)`
			`file_area`
			`end`
Beginnings of a FileController (serving the file upload feature) 2005-01-22 02:35:00 +01:00
File download (primitive implementation) 2005-01-22 03:49:52 +01:00			`def file_path`
			`"#{file_area}/#{@file_name}"`
			`end`

			`end`