'mimes:png,gif,jpg,jpeg,svg,bmp,svg+xml,webp', 'avatar' => 'mimes:png,gif,jpg,jpeg,svg,bmp,svg+xml,webp', ]; } public function response(array $errors) { return $this->redirector->back()->withInput()->withErrors($errors, $this->errorBag); } /** * Fields that should be traited from base64 to files */ protected function base64FileKeys(): array { /** * image_source is here just legacy reasons. Api\AssetController * had it once to allow encoded image uploads. */ return [ 'image' => 'auto', 'image_source' => 'auto' ]; } /** * Handle and store any images attached to request * @param SnipeModel $item Item the image is associated with * @param string $path location for uploaded images, defaults to uploads/plural of item type. * @return SnipeModel Target asset is being checked out to. */ public function handleImages($item, $w = 600, $form_fieldname = 'image', $path = null, $db_fieldname = 'image') { $type = strtolower(class_basename(get_class($item))); if (is_null($path)) { $path = str_plural($type); if ($type == 'assetmodel') { $path = 'models'; } if ($type == 'user') { $path = 'avatars'; } } if ($this->offsetGet($form_fieldname) instanceof UploadedFile) { $image = $this->offsetGet($form_fieldname); \Log::debug('Image is an instance of UploadedFile'); } elseif ($this->hasFile($form_fieldname)) { $image = $this->file($form_fieldname); \Log::debug('Just use regular upload for '.$form_fieldname); } else { \Log::debug('No image found for form fieldname: '.$form_fieldname); } if (isset($image)) { if (!config('app.lock_passwords')) { $ext = $image->guessExtension(); $file_name = $type.'-'.$form_fieldname.'-'.$item->id.'-'.str_random(10).'.'.$ext; \Log::info('File name will be: '.$file_name); \Log::debug('File extension is: '.$ext); if ($image->getMimeType() == 'image/webp') { // If the file is a webp, we need to just move it since webp support // needs to be compiled into gd for resizing to be available \Log::debug('This is a webp, just move it'); Storage::disk('public')->put($path.'/'.$file_name, file_get_contents($image)); } elseif($image->getMimeType() == 'image/svg+xml') { // If the file is an SVG, we need to clean it and NOT encode it \Log::debug('This is an SVG'); $sanitizer = new Sanitizer(); $dirtySVG = file_get_contents($image->getRealPath()); $cleanSVG = $sanitizer->sanitize($dirtySVG); try { Storage::disk('public')->put($path . '/' . $file_name, $cleanSVG); } catch (\Exception $e) { \Log::debug($e); } } else { \Log::debug('Not an SVG or webp - resize'); \Log::debug('Trying to upload to: '.$path.'/'.$file_name); try { $upload = Image::make($image->getRealPath())->setFileInfoFromPath($image->getRealPath())->resize(null, $w, function ($constraint) { $constraint->aspectRatio(); $constraint->upsize(); })->orientate(); } catch(NotReadableException $e) { \Log::debug($e); $validator = \Validator::make([], []); $validator->errors()->add($form_fieldname, trans('general.unaccepted_image_type', ['mimetype' => $image->getClientMimeType()])); throw new \Illuminate\Validation\ValidationException($validator); } // This requires a string instead of an object, so we use ($string) Storage::disk('public')->put($path.'/'.$file_name, (string) $upload->encode()); } // Remove Current image if exists if (($item->{$form_fieldname}!='') && (Storage::disk('public')->exists($path.'/'.$item->{$db_fieldname}))) { \Log::debug('A file already exists that we are replacing - we should delete the old one.'); try { Storage::disk('public')->delete($path.'/'.$item->{$form_fieldname}); \Log::debug('Old file '.$path.'/'.$file_name.' has been deleted.'); } catch (\Exception $e) { \Log::debug('Could not delete old file. '.$path.'/'.$file_name.' does not exist?'); } } $item->{$db_fieldname} = $file_name; } // If the user isn't uploading anything new but wants to delete their old image, do so } elseif ($this->input('image_delete') == '1') { \Log::debug('Deleting image'); try { Storage::disk('public')->delete($path.'/'.$item->{$db_fieldname}); $item->{$db_fieldname} = null; } catch (\Exception $e) { \Log::debug($e); } } return $item; } }