Hamza/Siro
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
Files
main
Siro/backend/EgyptDocuments/uploadEgyptIdBack.php
Hamza-Ayed 264e005a7b fix: PHP syntax errors in upload files and composer config 
- Fix PHP 8.x string interpolation syntax in upload log calls
- Fix const getenv() -> runtime variable in uploadSyrianDocs.php
- Add composer security advisory ignore for firebase/php-jwt
- Run composer update to sync lock file
2026-06-17 08:41:16 +03:00

88 lines
2.7 KiB
PHP
Raw Permalink Blame History

<?php
require_once __DIR__ . '/../connect.php';
header('Content-Type: application/json');
uploadLog("🚀 [EgyptDocuments/uploadEgyptIdBack.php] Egyptian ID back upload started.");
$rawDriverID = filterRequest("driverID");
if (empty($rawDriverID)) {
uploadLog("❌ Missing driverID parameter.", 'ERROR');
jsonError("driverID is required.");
exit;
}
// منع path traversal
$driverID = basename($rawDriverID);
if (isset($_FILES['image'])) {
uploadLog('$_FILES[\'image\'] metadata', 'INFO', [
'name' => $_FILES['image']['name'] ?? 'unknown',
'type' => $_FILES['image']['type'] ?? 'unknown',
'size' => $_FILES['image']['size'] ?? 0,
'upload_error_code' => $_FILES['image']['error'] ?? UPLOAD_ERR_OK
]);
} else {
uploadLog("No 'image' file was sent in the request.", 'WARNING');
}
if (!isset($_FILES['image']) || $_FILES['image']['error'] !== UPLOAD_ERR_OK) {
$err = $_FILES['image']['error'] ?? 'missing_file';
uploadLog("❌ File upload validation failed. Code: $err", 'ERROR');
jsonError("Image upload failed");
exit;
}
$image_file = $_FILES['image'];
$allowed_extensions = ['jpg', 'jpeg', 'png'];
$image_name = $image_file['name'];
$image_size = $image_file['size'];
$image_extension = strtolower(pathinfo($image_name, PATHINFO_EXTENSION));
if (!in_array($image_extension, $allowed_extensions, true)) {
uploadLog("❌ Invalid image format extension: .$image_extension", 'ERROR');
jsonError("Invalid image format");
exit;
}
$finfo = finfo_open(FILEINFO_MIME_TYPE);
$mime_type = finfo_file($finfo, $image_file['tmp_name']);
finfo_close($finfo);
$allowed_mime_types = ['image/jpeg', 'image/png', 'image/jpg'];
if (!in_array($mime_type, $allowed_mime_types, true)) {
uploadLog("❌ Invalid MIME type: $mime_type", 'ERROR');
jsonError("Invalid image format (MIME mismatch)");
exit;
}
$new_filename = $driverID . '.' . $image_extension;
$target_dir = __DIR__ . "/card_image/";
if (!is_dir($target_dir)) {
mkdir($target_dir, 0755, true);
}
$target_file = $target_dir . $new_filename;
if (!move_uploaded_file($image_file['tmp_name'], $target_file)) {
uploadLog("❌ Failed to save image to target file: $target_file", 'ERROR');
jsonError("Failed to save image");
exit;
}
// استخدام النطاق من البيئة بدلاً من Host header
$domain = getenv('APP_DOMAIN') ?: 'api.siromove.com';
$protocol = (!empty($_SERVER['HTTPS']) && $_SERVER['HTTPS'] !== 'off') ? "https" : "http";
$image_url = "$protocol://$domain/siro/EgyptDocuments/card_image/" . $new_filename;
uploadLog("✅ Egypt ID back uploaded successfully. URL: $image_url");
printSuccess([
"status" => "success",
"url" => $image_url,
"file_link" => $image_url,
"image_url" => $image_url
]);
Reference in New Issue View Git Blame Copy Permalink