durran-carrierwave 0.3.2.3

data/lib/carrierwave/sanitized_file.rb

@@ -0,0 +1,272 @@
+# encoding: utf-8
+
+require 'pathname'
+
+module CarrierWave
+
+  ##
+  # SanitizedFile is a base class which provides a common API around all
+  # the different quirky Ruby File libraries. It has support for Tempfile,
+  # File, StringIO, Merb-style upload Hashes, as well as paths given as
+  # Strings and Pathnames.
+  #
+  # It's probably needlessly comprehensive and complex. Help is appreciated.
+  #
+  class SanitizedFile
+
+    attr_accessor :file
+
+    def initialize(file)
+      self.file = file
+    end
+
+    ##
+    # Returns the filename as is, without sanizting it.
+    #
+    # === Returns
+    #
+    # [String] the unsanitized filename
+    #
+    def original_filename
+      return @original_filename if @original_filename
+      if @file and @file.respond_to?(:original_filename)
+        @file.original_filename
+      elsif path
+        File.basename(path)
+      end
+    end
+
+    ##
+    # Returns the filename, sanitized to strip out any evil characters.
+    #
+    # === Returns
+    #
+    # [String] the sanitized filename
+    #
+    def filename
+      sanitize(original_filename) if original_filename
+    end
+
+    alias_method :identifier, :filename
+
+    ##
+    # Returns the part of the filename before the extension. So if a file is called 'test.jpeg'
+    # this would return 'test'
+    #
+    # === Returns
+    #
+    # [String] the first part of the filename
+    #
+    def basename
+      split_extension(filename)[0] if filename
+    end
+
+    ##
+    # Returns the file extension
+    #
+    # === Returns
+    #
+    # [String] the extension
+    #
+    def extension
+      split_extension(filename)[1] if filename
+    end
+
+    ##
+    # Returns the file's size.
+    #
+    # === Returns
+    #
+    # [Integer] the file's size in bytes.
+    #
+    def size
+      if is_path?
+        exists? ? File.size(path) : 0
+      elsif @file.respond_to?(:size)
+        @file.size
+      elsif path
+        exists? ? File.size(path) : 0
+      else
+        0
+      end
+    end
+
+    ##
+    # Returns the full path to the file. If the file has no path, it will return nil.
+    #
+    # === Returns
+    #
+    # [String, nil] the path where the file is located.
+    #
+    def path
+      unless @file.blank?
+        if is_path?
+          File.expand_path(@file)
+        elsif @file.respond_to?(:path) and not @file.path.blank?
+          File.expand_path(@file.path)
+        end
+      end
+    end
+
+    ##
+    # === Returns
+    #
+    # [Boolean] whether the file is supplied as a pathname or string.
+    #
+    def is_path?
+      !!((@file.is_a?(String) || @file.is_a?(Pathname)) && !@file.blank?)
+    end
+
+    ##
+    # === Returns
+    #
+    # [Boolean] whether the file is valid and has a non-zero size
+    #
+    def empty?
+      @file.nil? || self.size.nil? || self.size.zero?
+    end
+
+    alias_method :blank?, :empty?
+
+    ##
+    # === Returns
+    #
+    # [Boolean] Whether the file exists
+    #
+    def exists?
+      return File.exists?(self.path) if self.path
+      return false
+    end
+
+    ##
+    # Returns the contents of the file.
+    #
+    # === Returns
+    #
+    # [String] contents of the file
+    #
+    def read
+      if is_path?
+        File.read(@file)
+      else
+        @file.rewind if @file.respond_to?(:rewind)
+        @file.read
+      end
+    end
+
+    ##
+    # Moves the file to the given path
+    #
+    # === Parameters
+    #
+    # [new_path (String)] The path where the file should be moved.
+    # [permissions (Integer)] permissions to set on the file in its new location.
+    #
+    def move_to(new_path, permissions=nil)
+      return if self.empty?
+      new_path = File.expand_path(new_path)
+
+      mkdir!(new_path)
+      if exists?
+        FileUtils.mv(path, new_path) unless new_path == path
+      else
+        File.open(new_path, "wb") { |f| f.write(read) }
+      end
+      chmod!(new_path, permissions)
+      self.file = new_path
+    end
+
+    ##
+    # Creates a copy of this file and moves it to the given path. Returns the copy.
+    #
+    # === Parameters
+    #
+    # [new_path (String)] The path where the file should be copied to.
+    # [permissions (Integer)] permissions to set on the copy
+    #
+    # === Returns
+    #
+    # @return [CarrierWave::SanitizedFile] the location where the file will be stored.
+    #
+    def copy_to(new_path, permissions=nil)
+      return if self.empty?
+      new_path = File.expand_path(new_path)
+
+      mkdir!(new_path)
+      if exists?
+        FileUtils.cp(path, new_path) unless new_path == path
+      else
+        File.open(new_path, "wb") { |f| f.write(read) }
+      end
+      chmod!(new_path, permissions)
+      self.class.new(new_path)
+    end
+
+    ##
+    # Removes the file from the filesystem.
+    #
+    def delete
+      FileUtils.rm(self.path) if exists?
+    end
+
+    ##
+    # Returns the content type of the file.
+    #
+    # === Returns
+    #
+    # [String] the content type of the file
+    #
+    def content_type
+      return @content_type if @content_type
+      @file.content_type.chomp if @file.respond_to?(:content_type) and @file.content_type
+    end
+
+  private
+
+    def file=(file)
+      if file.is_a?(Hash)
+        @file = file["tempfile"] || file[:tempfile]
+        @original_filename = file["filename"] || file[:filename]
+        @content_type = file["content_type"] || file[:content_type]
+      else
+        @file = file
+        @original_filename = nil
+        @content_type = nil
+      end
+    end
+
+    # create the directory if it doesn't exist
+    def mkdir!(path)
+      FileUtils.mkdir_p(File.dirname(path)) unless File.exists?(File.dirname(path))
+    end
+
+    def chmod!(path, permissions)
+      File.chmod(permissions, path) if permissions
+    end
+
+    # Sanitize the filename, to prevent hacking
+    def sanitize(name)
+      name = name.gsub("\\", "/") # work-around for IE
+      name = File.basename(name)
+      name = name.gsub(/[^a-zA-Z0-9\.\-\+_]/,"_")
+      name = "_#{name}" if name =~ /\A\.+\z/
+      name = "unnamed" if name.size == 0
+      return name.downcase
+    end
+
+    def split_extension(fn)
+      # regular expressions to try for identifying extensions
+      ext_regexps = [
+        /\A(.+)\.([^\.]{1,3}\.[^\.]{1,4})\z/, # matches "something.tar.gz"
+        /\A(.+)\.([^\.]+)\z/ # matches "something.jpg"
+      ]
+      ext_regexps.each do |regexp|
+        if fn =~ regexp
+          return $1, $2
+        end
+      end
+      return fn, "" # In case we weren't able to split the extension
+    end
+
+  end # SanitizedFile
+end # CarrierWave

data/lib/carrierwave/storage/abstract.rb

@@ -0,0 +1,32 @@
+# encoding: utf-8
+
+module CarrierWave
+  module Storage
+
+    ##
+    # This file serves mostly as a specification for Storage engines. There is no requirement
+    # that storage engines must be a subclass of this class.
+    #
+    class Abstract
+
+      attr_reader :uploader
+
+      def initialize(uploader)
+        @uploader = uploader
+      end
+
+      def self.setup!; end
+
+      def identifier
+        uploader.filename
+      end
+
+      def store!(file)
+      end
+
+      def retrieve!(identifier)
+      end
+
+    end # Abstract
+  end # Storage
+end # CarrierWave

data/lib/carrierwave/storage/file.rb

@@ -0,0 +1,50 @@
+# encoding: utf-8
+
+module CarrierWave
+  module Storage
+
+    ##
+    # File storage stores file to the Filesystem (surprising, no?). There's really not much
+    # to it, it uses the store_dir defined on the uploader as the storage location. That's
+    # pretty much it.
+    #
+    class File < Abstract
+
+      ##
+      # Move the file to the uploader's store path.
+      #
+      # === Parameters
+      #
+      # [file (CarrierWave::SanitizedFile)] the file to store
+      #
+      # === Returns
+      #
+      # [CarrierWave::SanitizedFile] a sanitized file
+      #
+      def store!(file)
+        path = ::File.join(uploader.store_path)
+        path = ::File.expand_path(path, uploader.public)
+        file.move_to(path, CarrierWave.config[:permissions])
+        file
+      end
+
+      ##
+      # Retrieve the file from its store path
+      #
+      # === Parameters
+      #
+      # [identifier (String)] the filename of the file
+      #
+      # === Returns
+      #
+      # [CarrierWave::SanitizedFile] a sanitized file
+      #
+      def retrieve!(identifier)
+        path = ::File.join(uploader.store_path(identifier))
+        path = ::File.expand_path(path, uploader.public)
+        CarrierWave::SanitizedFile.new(path)
+      end
+
+    end # File
+  end # Storage
+end # CarrierWave

data/lib/carrierwave/storage/s3.rb

@@ -0,0 +1,215 @@
+# encoding: utf-8
+
+module CarrierWave
+  module Storage
+
+    ##
+    # Uploads things to Amazon S3 webservices. It requies the aws/s3 gem. In order for
+    # CarrierWave to connect to Amazon S3, you'll need to specify an access key id, secret key
+    # and bucket
+    #
+    #     CarrierWave.config[:s3][:access_key_id] = "xxxxxx"
+    #     CarrierWave.config[:s3][:secret_access_key] = "xxxxxx"
+    #     CarrierWave.config[:s3][:bucket] = "my_bucket_name"
+    #
+    # You can also set the access policy for the uploaded files:
+    #
+    #     CarrierWave.config[:s3][:access] = :public_read
+    #
+    # Possible values are the 'canned access control policies' provided in the aws/s3 gem,
+    # they are:
+    #
+    # [:private]              No one else has any access rights.
+    # [:public_read]          The anonymous principal is granted READ access.
+    #                         If this policy is used on an object, it can be read from a
+    #                         browser with no authentication.
+    # [:public_read_write]    The anonymous principal is granted READ and WRITE access.
+    # [:authenticated_read]   Any principal authenticated as a registered Amazon S3 user
+    #                         is granted READ access.
+    #
+    # The default is :public_read, it should work in most cases.
+    #
+    # You can change the generated url to a cnamed domain by setting the cnamed config:
+    #
+    #     CarrierWave.config[:s3][:cnamed] = true
+    #
+    # No the resulting url will be
+    #     
+    #     http://bucket_name.domain.tld/path/to/file
+    #
+    # instead of
+    #
+    #     http://s3.amazonaws.com/bucket_name.domain.tld/path/to/file
+    #
+    class S3 < Abstract
+
+      class File
+
+        def initialize(path, identifier)
+          @path = path
+          @identifier = identifier
+        end
+
+        ##
+        # Returns the current path of the file on S3
+        #
+        # === Returns
+        #
+        # [String] A path
+        #
+        def path
+          @path
+        end
+
+        ##
+        # Returns the filename on S3
+        #
+        # === Returns
+        #
+        # [String] path to the file
+        #
+        def identifier
+          @identifier
+        end
+
+        ##
+        # Reads the contents of the file from S3
+        #
+        # === Returns
+        #
+        # [String] contents of the file
+        #
+        def read
+          AWS::S3::S3Object.value @path, bucket
+        end
+
+        ##
+        # Remove the file from Amazon S3
+        #
+        def delete
+          AWS::S3::S3Object.delete @path, bucket
+        end
+
+        ##
+        # Returns the url on Amazon's S3 service
+        #
+        # === Returns
+        #
+        # [String] file's url
+        #
+        def url
+          if CarrierWave::config[:s3][:cnamed]
+            ["http://", bucket, @path].compact.join('/')
+          else
+            ["http://s3.amazonaws.com", bucket, @path].compact.join('/')
+          end
+        end
+
+        def about
+          s3_object.about
+        end
+
+        def metadata
+          s3_object.metadata
+        end
+
+        def content_type
+          s3_object.content_type
+        end
+
+        def content_type=(new_content_type)
+          s3_object.content_type = new_content_type
+        end
+
+        def content_disposition
+          s3_object.content_disposition
+        end
+
+        def content_disposition=(new_disposition)
+          s3_object.content_disposition = new_disposition
+        end
+
+        def store
+          s3_object.store
+        end
+
+        def s3_object
+          @s3_object ||= AWS::S3::S3Object.find(@path, bucket)
+        end
+
+
+      private
+
+        def bucket
+          CarrierWave::Storage::S3.bucket
+        end
+
+        def access
+          CarrierWave::Storage::S3.access
+        end
+
+      end
+
+      ##
+      # === Returns
+      #
+      # [String] the bucket set in the config options
+      #
+      def self.bucket
+        CarrierWave.config[:s3][:bucket]
+      end
+
+      ##
+      # === Returns
+      #
+      # [Symbol] the access priviliges the uploaded files should have
+      #
+      def self.access
+        CarrierWave.config[:s3][:access]
+      end
+
+      ##
+      # Connect to Amazon S3
+      #
+      def self.setup!
+        require 'aws/s3'
+        AWS::S3::Base.establish_connection!(
+          :access_key_id     => CarrierWave.config[:s3][:access_key_id],
+          :secret_access_key => CarrierWave.config[:s3][:secret_access_key]
+        )
+      end
+
+      ##
+      # Store the file on S3
+      #
+      # === Parameters
+      #
+      # [file (CarrierWave::Storage::S3::File)] the file to store
+      #
+      # === Returns
+      #
+      # [CarrierWave::Storage::S3] the stored file
+      #
+      def store!(file)
+        AWS::S3::S3Object.store(::File.join(uploader.store_path), file.read, self.class.bucket, :access => self.class.access)
+        CarrierWave::Storage::S3::File.new(uploader.store_path, uploader.filename)
+      end
+
+      # Do something to retrieve the file
+      #
+      # @param [CarrierWave::Uploader] uploader an uploader object
+      # @param [String] identifier uniquely identifies the file
+      #
+      # [identifier (String)] uniquely identifies the file
+      #
+      # === Returns
+      #
+      # [CarrierWave::Storage::S3::File] the stored file
+      #
+      def retrieve!(identifier)
+        CarrierWave::Storage::S3::File.new(uploader.store_path(identifier), identifier)
+      end
+
+    end # S3
+  end # Storage
+end # CarrierWave