use BookStack\Facades\Activity;
use BookStack\Interfaces\Loggable;
use BookStack\Model;
-use finfo;
+use BookStack\Util\WebSafeMimeSniffer;
use Illuminate\Foundation\Bus\DispatchesJobs;
use Illuminate\Foundation\Validation\ValidatesRequests;
use Illuminate\Http\Exceptions\HttpResponseException;
/**
* On a permission error redirect to home and display.
* the error as a notification.
+ *
+ * @return never
*/
protected function showPermissionError()
{
protected function downloadResponse(string $content, string $fileName): Response
{
return response()->make($content, 200, [
- 'Content-Type' => 'application/octet-stream',
- 'Content-Disposition' => 'attachment; filename="' . $fileName . '"',
+ 'Content-Type' => 'application/octet-stream',
+ 'Content-Disposition' => 'attachment; filename="' . $fileName . '"',
+ 'X-Content-Type-Options' => 'nosniff',
]);
}
*/
protected function inlineDownloadResponse(string $content, string $fileName): Response
{
- $finfo = new finfo(FILEINFO_MIME_TYPE);
- $mime = $finfo->buffer($content) ?: 'application/octet-stream';
+ $mime = (new WebSafeMimeSniffer())->sniff($content);
return response()->make($content, 200, [
- 'Content-Type' => $mime,
- 'Content-Disposition' => 'inline; filename="' . $fileName . '"',
+ 'Content-Type' => $mime,
+ 'Content-Disposition' => 'inline; filename="' . $fileName . '"',
+ 'X-Content-Type-Options' => 'nosniff',
]);
}
/**
* Log an activity in the system.
*
- * @param string|Loggable
+ * @param string|Loggable $detail
*/
protected function logActivity(string $type, $detail = ''): void
{
/**
* Get the validation rules for image files.
*/
- protected function getImageValidationRules(): string
+ protected function getImageValidationRules(): array
{
- return 'image_extension|mimes:jpeg,png,gif,webp';
+ return ['image_extension', 'mimes:jpeg,png,gif,webp', 'max:' . (config('app.upload_limit') * 1000)];
}
}
projects / bookstack / blobdiff