Improved the uploading of file in regard to temporary filename.

Avoid to overwrite the same file for concurrent requests uploading the same filename.
2014-06-11 16:52:22 +02:00
parent ce4c62a989
commit 67641da44d
5 changed files with 357 additions and 116 deletions
--- a/library/server/wsf/src/request/value/wsf_uploaded_file.e
+++ b/library/server/wsf/src/request/value/wsf_uploaded_file.e
@@ -102,6 +102,16 @@ feature -- Access: Uploaded File
 	filename: STRING
 			-- original filename

+	safe_filename: STRING
+			-- Safe name version of `filename'.
+			-- i.e: removing whitespace, accent, unicode characters ...
+		local
+			ut: WSF_FILE_UTILITIES [RAW_FILE]
+		do
+			create ut
+			Result := ut.safe_filename (filename)
+		end
+
 	content_type: STRING
 			-- Content type

@@ -118,7 +128,7 @@ feature -- Access: Uploaded File
 			end
 		end

-	tmp_basename: detachable STRING
+	tmp_basename: detachable READABLE_STRING_GENERAL
 			-- Basename of tmp file

 feature -- Conversion
@@ -156,92 +166,6 @@ feature -- Conversion
 			retry
 		end

-feature -- Implementation		
-
-	safe_filename: STRING
-		local
-			fn: like filename
-			c: CHARACTER
-			i, n: INTEGER
-		do
-			fn := filename
-
-				--| Compute safe filename, to avoid creating impossible filename, or dangerous one
-			from
-				i := 1
-				n := fn.count
-				create Result.make (n)
-			until
-				i > n
-			loop
-				c := fn[i]
-				inspect c
-				when '.', '-', '_' then
-					Result.extend (c)
-				when 'A' .. 'Z', 'a' .. 'z', '0' .. '9' then
-					Result.extend (c)
-				else
-					inspect c
-					when '%/192/' then Result.extend ('A') -- À
-					when '%/193/' then Result.extend ('A') -- Á
-					when '%/194/' then Result.extend ('A') -- Â
-					when '%/195/' then Result.extend ('A') -- Ã
-					when '%/196/' then Result.extend ('A') -- Ä
-					when '%/197/' then Result.extend ('A') -- Å
-					when '%/199/' then Result.extend ('C') -- Ç
-					when '%/200/' then Result.extend ('E') -- È
-					when '%/201/' then Result.extend ('E') -- É
-					when '%/202/' then Result.extend ('E') -- Ê
-					when '%/203/' then Result.extend ('E') -- Ë
-					when '%/204/' then Result.extend ('I') -- Ì
-					when '%/205/' then Result.extend ('I') -- Í
-					when '%/206/' then Result.extend ('I') -- Î
-					when '%/207/' then Result.extend ('I') -- Ï
-					when '%/210/' then Result.extend ('O') -- Ò
-					when '%/211/' then Result.extend ('O') -- Ó
-					when '%/212/' then Result.extend ('O') -- Ô
-					when '%/213/' then Result.extend ('O') -- Õ
-					when '%/214/' then Result.extend ('O') -- Ö
-					when '%/217/' then Result.extend ('U') -- Ù
-					when '%/218/' then Result.extend ('U') -- Ú
-					when '%/219/' then Result.extend ('U') -- Û
-					when '%/220/' then Result.extend ('U') -- Ü
-					when '%/221/' then Result.extend ('Y') -- Ý
-					when '%/224/' then Result.extend ('a') -- à
-					when '%/225/' then Result.extend ('a') -- á
-					when '%/226/' then Result.extend ('a') -- â
-					when '%/227/' then Result.extend ('a') -- ã
-					when '%/228/' then Result.extend ('a') -- ä
-					when '%/229/' then Result.extend ('a') -- å
-					when '%/231/' then Result.extend ('c') -- ç
-					when '%/232/' then Result.extend ('e') -- è
-					when '%/233/' then Result.extend ('e') -- é
-					when '%/234/' then Result.extend ('e') -- ê
-					when '%/235/' then Result.extend ('e') -- ë
-					when '%/236/' then Result.extend ('i') -- ì
-					when '%/237/' then Result.extend ('i') -- í
-					when '%/238/' then Result.extend ('i') -- î
-					when '%/239/' then Result.extend ('i') -- ï
-					when '%/240/' then Result.extend ('o') -- ð
-					when '%/242/' then Result.extend ('o') -- ò
-					when '%/243/' then Result.extend ('o') -- ó
-					when '%/244/' then Result.extend ('o') -- ô
-					when '%/245/' then Result.extend ('o') -- õ
-					when '%/246/' then Result.extend ('o') -- ö
-					when '%/249/' then Result.extend ('u') -- ù
-					when '%/250/' then Result.extend ('u') -- ú
-					when '%/251/' then Result.extend ('u') -- û
-					when '%/252/' then Result.extend ('u') -- ü
-					when '%/253/' then Result.extend ('y') -- ý
-					when '%/255/' then Result.extend ('y') -- ÿ
-					else
-						Result.extend ('-')
-					end
-				end
-				i := i + 1
-			end
-		end
-
 feature -- Basic operation

 	move_to (a_destination: READABLE_STRING_GENERAL): BOOLEAN
@@ -317,7 +241,7 @@ feature -- Element change
 		end

 note
-	copyright: "2011-2013, Jocelyn Fiat, Javier Velilla, Olivier Ligot, Eiffel Software and others"
+	copyright: "2011-2014, Jocelyn Fiat, Javier Velilla, Olivier Ligot, Colin Adams, Eiffel Software and others"
 	license: "Eiffel Forum License v2 (see http://www.eiffel.com/licensing/forum.txt)"
 	source: "[
 			Eiffel Software