BookStack Code Mirror - bookstack/blobdiff - app/Uploads/ImageService.php

index 8eefbaf9dd3468521d388addb292c7285ffd9b16..89744386d60208d9a85bf0ed1562c79af8a963d0 100644 (file)

--- a/app/Uploads/ImageService.php

+++ b/app/Uploads/ImageService.php

@@ -7,6 +7,7 @@ use DB;

use Exception;

use Illuminate\Contracts\Cache\Repository as Cache;

use Illuminate\Contracts\Filesystem\Factory as FileSystem;

+use Illuminate\Support\Str;

use Intervention\Image\Exception\NotSupportedException;

use Intervention\Image\ImageManager;

use phpDocumentor\Reflection\Types\Integer;

@@ -45,9 +46,9 @@ class ImageService extends UploadService

protected function getStorage($type = '')

{

- $storageType = config('filesystems.default');

+ $storageType = config('filesystems.images');

- // Override default location if set to local public to ensure not visible.

+ // Ensure system images (App logo) are uploaded to a public space

if ($type === 'system' && $storageType === 'local_secure') {

$storageType = 'local';

}

@@ -123,29 +124,24 @@ class ImageService extends UploadService

}

/**

- * Saves a new image

- * @param string $imageName

- * @param string $imageData

- * @param string $type

- * @param int $uploadedTo

- * @return Image

+ * Save a new image into storage.

* @throws ImageUploadException

- private function saveNew($imageName, $imageData, $type, $uploadedTo = 0)

+ private function saveNew(string $imageName, string $imageData, string $type, int $uploadedTo = 0): Image

{

$storage = $this->getStorage($type);

$secureUploads = setting('app-secure-images');

- $imageName = str_replace(' ', '-', $imageName);

+ $fileName = $this->cleanImageFileName($imageName);

$imagePath = '/uploads/images/' . $type . '/' . Date('Y-m') . '/';

- while ($storage->exists($imagePath . $imageName)) {

- $imageName = str_random(3) . $imageName;

+ while ($storage->exists($imagePath . $fileName)) {

+ $fileName = Str::random(3) . $fileName;

}

- $fullPath = $imagePath . $imageName;

+ $fullPath = $imagePath . $fileName;

if ($secureUploads) {

- $fullPath = $imagePath . str_random(16) . '-' . $imageName;

+ $fullPath = $imagePath . Str::random(16) . '-' . $fileName;

}

try {

@@ -174,6 +170,23 @@ class ImageService extends UploadService

return $image;

}

+ /**

+ * Clean up an image file name to be both URL and storage safe.

+ */

+ protected function cleanImageFileName(string $name): string

+ {

+ $name = str_replace(' ', '-', $name);

+ $nameParts = explode('.', $name);

+ $extension = array_pop($nameParts);

+ $name = implode('.', $nameParts);

+ $name = Str::slug($name);

+ if (strlen($name) === 0) {

+ $name = Str::random(10);

+ }

+ return $name . '.' . $extension;

+ }

/**

* Checks if the image is a gif. Returns true if it is, else false.

@@ -220,7 +233,8 @@ class ImageService extends UploadService

$storage->put($thumbFilePath, $thumbData);

$storage->setVisibility($thumbFilePath, 'public');

- $this->cache->put('images-' . $image->id . '-' . $thumbFilePath, $thumbFilePath, 60 * 72);

+ $this->cache->put('images-' . $image->id . '-' . $thumbFilePath, $thumbFilePath, 60 * 60 * 72);

return $this->getPublicUrl($thumbFilePath);

}

@@ -253,7 +267,16 @@ class ImageService extends UploadService

} else {

$thumb->fit($width, $height);

}

- return (string)$thumb->encode();

+ $thumbData = (string)$thumb->encode();

+ // Use original image data if we're keeping the ratio

+ // and the resizing does not save any space.

+ if ($keepRatio && strlen($thumbData) > strlen($imageData)) {

+ return $imageData;

+ }

+ return $thumbData;

}

/**

@@ -282,11 +305,9 @@ class ImageService extends UploadService

/**

* Destroys an image at the given path.

- * Searches for image thumbnails in addition to main provided path..

- * @param string $path

- * @return bool

+ * Searches for image thumbnails in addition to main provided path.

- protected function destroyImagesFromPath(string $path)

+ protected function destroyImagesFromPath(string $path): bool

{

$storage = $this->getStorage();

@@ -296,8 +317,7 @@ class ImageService extends UploadService

// Delete image files

$imagesToDelete = $allImages->filter(function ($imagePath) use ($imageFileName) {

- $expectedIndex = strlen($imagePath) - strlen($imageFileName);

- return strpos($imagePath, $imageFileName) === $expectedIndex;

+ return basename($imagePath) === $imageFileName;

});

$storage->delete($imagesToDelete->all());

@@ -417,7 +437,7 @@ class ImageService extends UploadService

$isLocal = strpos(trim($uri), 'http') !== 0;

// Attempt to find local files even if url not absolute

- $base = baseUrl('/');

+ $base = url('/');

if (!$isLocal && strpos($uri, $base) === 0) {

$isLocal = true;

$uri = str_replace($base, '', $uri);

@@ -442,7 +462,12 @@ class ImageService extends UploadService

return null;

}

- return 'data:image/' . pathinfo($uri, PATHINFO_EXTENSION) . ';base64,' . base64_encode($imageData);

+ $extension = pathinfo($uri, PATHINFO_EXTENSION);

+ if ($extension === 'svg') {

+ $extension = 'svg+xml';

+ }

+ return 'data:image/' . $extension . ';base64,' . base64_encode($imageData);

}

/**

@@ -458,7 +483,7 @@ class ImageService extends UploadService

// Get the standard public s3 url if s3 is set as storage type

// Uses the nice, short URL if bucket name has no periods in otherwise the longer

// region-based url will be used to prevent http issues.

- if ($storageUrl == false && config('filesystems.default') === 's3') {

+ if ($storageUrl == false && config('filesystems.images') === 's3') {

$storageDetails = config('filesystems.disks.s3');

if (strpos($storageDetails['bucket'], '.') === false) {

$storageUrl = 'https://' . $storageDetails['bucket'] . '.s3.amazonaws.com';

@@ -469,7 +494,7 @@ class ImageService extends UploadService

$this->storageUrl = $storageUrl;

}

- $basePath = ($this->storageUrl == false) ? baseUrl('/') : $this->storageUrl;

+ $basePath = ($this->storageUrl == false) ? url('/') : $this->storageUrl;

return rtrim($basePath, '/') . $filePath;

}