Join David Powers for an in-depth discussion in this video Planning the class's features, part of Uploading Files Securely with PHP.
- View Offline
…In the previous chapter, we created a basic script to upload the single file.…But it was far from perfect.…Although there was a hidden form field to set the maximum size for an individual…file, someone could easily create a form…of their own to get around that restriction.…No checks are made on the type of file being uploaded.…If the files are stored in the public folder, this presents a security risk.…There's no check…on filenames.…So they could contain spaces, causing problems on Linux servers or in URLs.…
Also, files with the same name as…an existing one, automatically overwrite the original.…The basic script handles only one file at a time.…And it would be difficult to reuse without adapting…the same script each time you want to use it.…To solve these shortcomings, we're going to create a custom class.…A class is basically a collection of…related variables and functions that are designed…to work together to perform a specific task, in this case to upload files.…
Variables defined inside the class are known as properties.…
At the end of this course, you'll have a robust, flexible class that can be incorporated into many projects (including web forms) with just a few lines of code.
- How PHP handles file uploads
- Setting the maximum file size
- Moving the file to its destination
- Creating and using a namespaced class
- Displaying error messages
- Restricting unacceptable MIME types and file extensions
- Using the class
- Reporting errors
- Altering the user