Overview

Namespaces

  • None
  • Quform
    • Traduttore_Registry

Classes

  • Quform
  • Quform_Admin_InsertForm
  • Quform_Admin_Page
  • Quform_Admin_Page_Controller
  • Quform_Admin_Page_Dashboard
  • Quform_Admin_Page_Entries
  • Quform_Admin_Page_Entries_Edit
  • Quform_Admin_Page_Entries_List
  • Quform_Admin_Page_Entries_View
  • Quform_Admin_Page_Factory
  • Quform_Admin_Page_Forms_Add
  • Quform_Admin_Page_Forms_Edit
  • Quform_Admin_Page_Forms_List
  • Quform_Admin_Page_Help
  • Quform_Admin_Page_Preview
  • Quform_Admin_Page_Settings
  • Quform_Admin_Page_Tools
  • Quform_Admin_Page_Tools_ExportEntries
  • Quform_Admin_Page_Tools_ExportForm
  • Quform_Admin_Page_Tools_Home
  • Quform_Admin_Page_Tools_ImportForm
  • Quform_Admin_Page_Tools_Migrate
  • Quform_Admin_Page_Tools_Uninstall
  • Quform_Api
  • Quform_Block
  • Quform_Builder
  • Quform_Captcha
  • Quform_ClassLoader
  • Quform_Confirmation
  • Quform_Container
  • Quform_Dashboard_Widget
  • Quform_Dispatcher
  • Quform_Element
  • Quform_Element_Captcha
  • Quform_Element_Checkbox
  • Quform_Element_Column
  • Quform_Element_Container
  • Quform_Element_Container_Iterator
  • Quform_Element_Date
  • Quform_Element_Email
  • Quform_Element_Factory
  • Quform_Element_Field
  • Quform_Element_File
  • Quform_Element_Group
  • Quform_Element_Hidden
  • Quform_Element_Honeypot
  • Quform_Element_Html
  • Quform_Element_Multi
  • Quform_Element_Multiselect
  • Quform_Element_Name
  • Quform_Element_Page
  • Quform_Element_Password
  • Quform_Element_Radio
  • Quform_Element_Recaptcha
  • Quform_Element_Row
  • Quform_Element_Select
  • Quform_Element_Submit
  • Quform_Element_Text
  • Quform_Element_Textarea
  • Quform_Element_Time
  • Quform_Entry_Controller
  • Quform_Entry_Exporter
  • Quform_Entry_List_Settings
  • Quform_Entry_List_Table
  • Quform_Entry_Processor
  • Quform_Entry_UserSearcher
  • Quform_Filter_Abstract
  • Quform_Filter_Alpha
  • Quform_Filter_AlphaNumeric
  • Quform_Filter_Digits
  • Quform_Filter_Regex
  • Quform_Filter_Static
  • Quform_Filter_StripTags
  • Quform_Filter_Trim
  • Quform_Form
  • Quform_Form_Controller
  • Quform_Form_Exporter
  • Quform_Form_Factory
  • Quform_Form_Importer
  • Quform_Form_Iterator
  • Quform_Form_List_Settings
  • Quform_Form_List_Table
  • Quform_Form_Processor
  • Quform_License
  • Quform_Migrator
  • Quform_NonceRefresher
  • Quform_Notification
  • Quform_Notification_Resender
  • Quform_Options
  • Quform_Permissions
  • Quform_Repository
  • Quform_ScriptLoader
  • Quform_Session
  • Quform_Settings
  • Quform_Shortcode
  • Quform_Themes
  • Quform_TokenReplacer
  • Quform_Toolbar
  • Quform_Translations
  • Quform_Updater
  • Quform_Upgrader
  • Quform_Uploader
  • Quform_Validator_Abstract
  • Quform_Validator_Alpha
  • Quform_Validator_AlphaNumeric
  • Quform_Validator_Array
  • Quform_Validator_Captcha
  • Quform_Validator_Date
  • Quform_Validator_Digits
  • Quform_Validator_Duplicate
  • Quform_Validator_Email
  • Quform_Validator_FileUpload
  • Quform_Validator_GreaterThan
  • Quform_Validator_Honeypot
  • Quform_Validator_Identical
  • Quform_Validator_InArray
  • Quform_Validator_Length
  • Quform_Validator_LessThan
  • Quform_Validator_Recaptcha
  • Quform_Validator_Regex
  • Quform_Validator_Required
  • Quform_Validator_Static
  • Quform_Validator_Time
  • Quform_View
  • Quform_ViewFactory
  • Quform_Widget_Form
  • Quform_Widget_Popup

Interfaces

  • Quform_Attachable
  • Quform_Element_Editable
  • Quform_Filter_Interface
  • Quform_Validator_Interface

Constants

  • Quform\Traduttore_Registry\TRANSIENT_KEY_PLUGIN
  • Quform\Traduttore_Registry\TRANSIENT_KEY_THEME

Functions

  • Quform\Traduttore_Registry\add_project
  • Quform\Traduttore_Registry\clean_translations_cache
  • Quform\Traduttore_Registry\get_available_locales
  • Quform\Traduttore_Registry\get_installed_translations
  • Quform\Traduttore_Registry\get_translations
  • Quform\Traduttore_Registry\register_clean_translations_cache
  • Quform\Traduttore_Registry\sanitize_date
  • Overview
  • Namespace
  • Class 
  1: <?php
  2: 
  3: /**
  4:  * @copyright Copyright (c) 2009-2022 ThemeCatcher (https://www.themecatcher.net)
  5:  */
  6: class Quform_Uploader
  7: {
  8:     /**
  9:      * @var array
 10:      */
 11:     protected static $fileKeys = array('error', 'name', 'size', 'tmp_name', 'type');
 12: 
 13:     /**
 14:      * @var Quform_Session
 15:      */
 16:     protected $session;
 17: 
 18:     /**
 19:      * @var Quform_Repository
 20:      */
 21:     protected $repository;
 22: 
 23:     /**
 24:      * @var Quform_Form_Factory
 25:      */
 26:     protected $formFactory;
 27: 
 28:     /**
 29:      * @param  Quform_Session       $session
 30:      * @param  Quform_Repository    $repository
 31:      * @param  Quform_Form_Factory  $formFactory
 32:      */
 33:     public function __construct(Quform_Session $session, Quform_Repository $repository,
 34:                                 Quform_Form_Factory $formFactory)
 35:     {
 36:         $this->session = $session;
 37:         $this->repository = $repository;
 38:         $this->formFactory = $formFactory;
 39:     }
 40: 
 41:     /**
 42:      * Hook entry point for handling uploads via Ajax
 43:      */
 44:     public function upload()
 45:     {
 46:         if ( ! Quform::isPostRequest() || Quform::get($_POST, 'quform_ajax_uploading') != '1') {
 47:             return;
 48:         }
 49: 
 50:         $this->validateUploadRequest();
 51:         $this->handleUploadRequest();
 52:     }
 53: 
 54:     /**
 55:      * Handle the request to upload a file via Ajax
 56:      */
 57:     protected function handleUploadRequest()
 58:     {
 59:         $config = $this->repository->getConfig((int) $_POST['quform_form_id']);
 60: 
 61:         if ( ! is_array($config)) {
 62:             wp_send_json(array(
 63:                 'type' => 'error',
 64:                 'message' => __('Could not find the form config', 'quform')
 65:             ));
 66:         }
 67: 
 68:         $config['uniqueId'] = $_POST['quform_form_uid'];
 69: 
 70:         $form = $this->formFactory->create($config);
 71: 
 72:         if ( ! ($form instanceof Quform_Form) || $form->config('trashed')) {
 73:             wp_send_json(array(
 74:                 'type' => 'error',
 75:                 'message' => __('Could not find the form', 'quform')
 76:             ));
 77:         }
 78: 
 79:         if ( ! $form->isActive()) {
 80:             wp_send_json(array(
 81:                 'type' => 'error',
 82:                 'message' => __('This form is not currently active', 'quform')
 83:             ));
 84:         }
 85: 
 86:         $element = $form->getElementById((int) $_POST['quform_element_id']);
 87: 
 88:         if ( ! ($element instanceof Quform_Element_File)) {
 89:             wp_send_json(array(
 90:                 'type' => 'error',
 91:                 'message' => __('Could not find the element', 'quform')
 92:             ));
 93:         }
 94: 
 95:         if ( ! isset($_FILES[$element->getName()])) {
 96:             wp_send_json(array(
 97:                 'type' => 'error',
 98:                 'message' => __('File data not found', 'quform')
 99:             ));
100:         }
101: 
102:         $uploadsTmpDir = $this->getUploadsTempDir();
103: 
104:         if ( ! is_dir($uploadsTmpDir)) {
105:             wp_mkdir_p($uploadsTmpDir);
106:         }
107: 
108:         if ( ! wp_is_writable($uploadsTmpDir)) {
109:             wp_send_json(array(
110:                 'type' => 'error',
111:                 'message' => __('Temporary uploads directory is not writable', 'quform')
112:             ));
113:         }
114: 
115:         // Disable the minimum number of files validator check while handling this upload
116:         $validator = $element->getFileUploadValidator();
117:         $validator->setConfig('minimumNumberOfFiles', 0);
118: 
119:         if ($element->isValid()) {
120:             $sessionKey = $form->getSessionKey() . '.uploads.' . $element->getName();
121: 
122:             // Generate a unique ID for this upload
123:             $uniqueId = $this->generateUploadUid();
124: 
125:             // Save the upload data into session
126:             $filename = tempnam($uploadsTmpDir, 'quform');
127:             move_uploaded_file($_FILES[$element->getName()]['tmp_name'][0], $filename);
128:             $_FILES[$element->getName()]['tmp_name'][0] = $filename;
129: 
130:             $files = $this->session->has($sessionKey) ? $this->session->get($sessionKey) : array();
131: 
132:             foreach (self::$fileKeys as $key) {
133:                 $files[$key][] = $_FILES[$element->getName()][$key][0];
134:             }
135: 
136:             $files['quform_upload_uid'][] = $uniqueId;
137:             $files['timestamp'][] = time();
138: 
139:             $this->session->set($sessionKey, $files);
140: 
141:             wp_send_json(array(
142:                 'type' => 'success',
143:                 'uid' => $uniqueId
144:             ));
145:         } else {
146:             wp_send_json(array(
147:                 'type' => 'error',
148:                 'message' => $element->getError()
149:             ));
150:         }
151:     }
152: 
153:     /**
154:      * Get the path to the temporary uploads directory
155:      *
156:      * @return string
157:      */
158:     protected function getUploadsTempDir()
159:     {
160:         return Quform::getTempDir('/quform/uploads');
161:     }
162: 
163:     /**
164:      * Validate the request to upload a file via Ajax
165:      */
166:     protected function validateUploadRequest()
167:     {
168:         if ( ! isset($_POST['quform_form_id'], $_POST['quform_form_uid'], $_POST['quform_element_id']) ||
169:              ! is_numeric($_POST['quform_form_id']) ||
170:              ! Quform_Form::isValidUniqueId($_POST['quform_form_uid']) ||
171:              ! is_numeric($_POST['quform_element_id'])
172:         ) {
173:             wp_send_json(array(
174:                 'type' => 'error',
175:                 'message' => __('Bad request', 'quform')
176:             ));
177:         }
178:     }
179: 
180:     /**
181:      * Handle upload processing
182:      *
183:      * @param Quform_Form $form
184:      */
185:     public function process(Quform_Form $form)
186:     {
187:         foreach ($form->getRecursiveIterator() as $element) {
188:             if ( ! ($element instanceof Quform_Element_File)) {
189:                 continue;
190:             }
191: 
192:             // Do not save uploads for elements that are not part of this submission, i.e. hidden by
193:             // conditional logic or not visible (e.g. logged in users only / admin only). Validation is
194:             // skipped for such elements, so saving their files would bypass the allowed file type checks.
195:             if ($element->isConditionallyHidden() || ! $element->isVisible()) {
196:                 continue;
197:             }
198: 
199:             $elementName = $element->getName();
200: 
201:             if ( ! array_key_exists($elementName, $_FILES) || ! is_array($_FILES[$elementName])) {
202:                 continue;
203:             }
204: 
205:             $files = $_FILES[$elementName];
206: 
207:             if (is_array($files['error'])) {
208:                 foreach ($files['error'] as $key => $error) {
209:                     if ($error == UPLOAD_ERR_OK) {
210:                         // Normalise the array structure
211:                         $file = array();
212: 
213:                         foreach (self::$fileKeys as $k) {
214:                             $file[$k] = $files[$k][$key];
215:                         }
216: 
217:                         // Save the upload unique ID, generate one if it doesn't exist (e.g. from non-Ajax uploads)
218:                         $file['quform_upload_uid'] = isset($files['quform_upload_uid'][$key]) && $this->isValidUploadUid($files['quform_upload_uid'][$key]) ? $files['quform_upload_uid'][$key] : $this->generateUploadUid();
219:                         $file['timestamp'] = isset($files['timestamp'][$key]) ? $files['timestamp'][$key] : time();
220: 
221:                         $this->processUploadedFile($file, $element, $form);
222:                     }
223:                 }
224:             }
225:         }
226:     }
227: 
228:     /**
229:      * Process the uploaded file
230:      *
231:      * @param   array                $file     The file data
232:      * @param   Quform_Element_File  $element  The Quform file element instance
233:      * @param   Quform_Form          $form     The form instance
234:      */
235:     protected function processUploadedFile(array $file, Quform_Element_File $element, Quform_Form $form)
236:     {
237:         $pathInfo = pathinfo($file['name']);
238:         $extension = isset($pathInfo['extension']) ? $pathInfo['extension'] : '';
239: 
240:         $filename = Quform::isNonEmptyString($extension) ? str_replace(".$extension", '', $pathInfo['basename']) : $pathInfo['basename'];
241:         $filename = sanitize_file_name($filename);
242:         $filename = apply_filters('quform_filename_' . $element->getName(), $filename, $element, $form); /* Deprecated */
243:         $filename = apply_filters('quform_upload_filename_' . $element->getIdentifier(), $filename, $file, $element, $form);
244: 
245:         if (Quform::isNonEmptyString($extension)) {
246:             $filename = Quform::isNonEmptyString($filename) ? "$filename.$extension" : "upload.$extension";
247:         } else {
248:             $filename = Quform::isNonEmptyString($filename) ? $filename : 'upload';
249:         }
250: 
251:         $file['name'] = $filename;
252:         $file['path'] = $file['tmp_name'];
253: 
254:         unset($file['error'], $file['tmp_name']);
255: 
256:         if ($element->config('saveToServer')) {
257:             $result = $this->saveUploadedFile($file, $element, $form);
258: 
259:             if (is_array($result)) {
260:                 $file = $result;
261: 
262:                 if ($element->config('addToMediaLibrary')) {
263:                     $this->addToMediaLibrary($file, $element, $form);
264:                 }
265:             }
266:         } else {
267:             // Rename the file to the actual filename so that attachments work correctly
268:             $tmpPath = trailingslashit(dirname($file['path']));
269: 
270:             // Check if the file name already exists, if so generate a new one
271:             if (file_exists($tmpPath . $file['name'])) {
272:                 $count = 1;
273:                 $newFilenamePath = $tmpPath . $file['name'];
274: 
275:                 while (file_exists($newFilenamePath)) {
276:                     $newFilename = $count++ . '_' . $file['name'];
277:                     $newFilenamePath = $tmpPath . $newFilename;
278:                 }
279: 
280:                 $file['name'] = $newFilename;
281:             }
282: 
283:             // Move the file
284:             if (rename($file['path'], $tmpPath . $file['name']) !== false) {
285:                 chmod($tmpPath . $file['name'], 0644);
286: 
287:                 $file['path'] = $tmpPath . $file['name'];
288:             }
289:         }
290: 
291:         $element->addFile($file);
292:     }
293: 
294:     /**
295:      * Add the given file to the WordPress media library
296:      *
297:      * @param array                $file     The file data
298:      * @param Quform_Element_File  $element  The File element instance
299:      * @param Quform_Form          $form     The form instance
300:      */
301:     protected function addToMediaLibrary(array $file, Quform_Element_File $element, Quform_Form $form)
302:     {
303:         require_once ABSPATH . 'wp-admin/includes/image.php';
304:         require_once ABSPATH . 'wp-admin/includes/media.php';
305: 
306:         $type = wp_check_filetype($file['name']);
307: 
308:         $attachment = array(
309:             'post_title' => $file['name'],
310:             'post_content' => '',
311:             'post_mime_type' => $type['type'],
312:             'guid' => $file['url']
313:         );
314: 
315:         $attachment = apply_filters('quform_uploader_attachment', $attachment, $file, $element, $form);
316:         $attachment = apply_filters('quform_uploader_attachment_' . $element->getIdentifier(), $attachment, $file, $element, $form);
317: 
318:         $attachId = wp_insert_attachment($attachment, $file['path']);
319:         wp_update_attachment_metadata($attachId, wp_generate_attachment_metadata($attachId, $file['path']));
320:     }
321: 
322:     /**
323:      * Save the uploaded file
324:      *
325:      * TODO support files outside of the WP uploads DIR
326:      *
327:      * @param   array                 $file     The file data
328:      * @param   Quform_Element_File   $element  The Quform file element instance
329:      * @param   Quform_Form           $form     The form instance
330:      * @return  array|bool                      The file data or false on failure
331:      */
332:     protected function saveUploadedFile(array $file, Quform_Element_File $element, Quform_Form $form)
333:     {
334:         if (($wpUploadsDir = Quform::getUploadsDir()) == false) {
335:             // Uploads dir is not writable
336:             return false;
337:         }
338: 
339:         // Get the save path
340:         $path = $element->config('savePath') == '' ? 'quform/{form_id}-{upload_security_token}/{year}/{month}/' : $element->config('savePath');
341: 
342:         // Replace placeholders
343:         $path = str_replace(
344:             array(
345:                 '{form_id}',
346:                 '{year}',
347:                 '{month}',
348:                 '{day}',
349:                 '{upload_security_token}'
350:             ),
351:             array(
352:                 $form->getId(),
353:                 Quform::date('Y'),
354:                 Quform::date('m'),
355:                 Quform::date('d'),
356:                 md5($form->getId() . $form->config('createdAt'))
357:             ),
358:             $path
359:         );
360: 
361:         // Apply any filter hooks to the path
362:         $path = apply_filters('quform_upload_path', $path, $element, $form);
363:         $path = apply_filters('quform_upload_path_' . $form->getId(), $path, $element, $form);
364: 
365:         // Join the path with the WP uploads directory
366:         $absolutePath = rtrim($wpUploadsDir, '/') . '/' . ltrim($path, '/');
367: 
368:         // Apply filters to the absolute path
369:         $absolutePath = apply_filters('quform_upload_absolute_path', $absolutePath, $element, $form);
370:         $absolutePath = apply_filters('quform_upload_absolute_path_' . $form->getId(), $absolutePath, $element, $form);
371: 
372:         // Add a trailing slash
373:         $path = trailingslashit($path);
374:         $absolutePath = trailingslashit($absolutePath);
375: 
376:         // Make the upload directory if it's not set
377:         if (!is_dir($absolutePath)) {
378:             wp_mkdir_p($absolutePath);
379:         }
380: 
381:         // Check if the file name already exists, if so generate a new one
382:         if (file_exists($absolutePath . $file['name'])) {
383:             $count = 1;
384:             $newFilenamePath = $absolutePath . $file['name'];
385: 
386:             while (file_exists($newFilenamePath)) {
387:                 $newFilename = $count++ . '_' . $file['name'];
388:                 $newFilenamePath = $absolutePath . $newFilename;
389:             }
390: 
391:             $file['name'] = $newFilename;
392:         }
393: 
394:         // Move the file
395:         if (rename($file['path'], $absolutePath . $file['name']) !== false) {
396:             chmod($absolutePath . $file['name'], 0644);
397: 
398:             $file['path'] = $absolutePath . $file['name'];
399:             $file['url'] = Quform::getUploadsUrl($path . $file['name']);
400: 
401:             return $file;
402:         } else {
403:             return false;
404:         }
405:     }
406: 
407:     /**
408:      * Merge files uploaded by the enhanced uploader into the $_FILES array and set file upload element values from session if set
409:      *
410:      * @param Quform_Form $form
411:      */
412:     public function mergeSessionFiles(Quform_Form $form)
413:     {
414:         $uploads = $this->session->get(sprintf('%s.uploads', $form->getSessionKey()));
415: 
416:         // Files the user removed
417:         $removedUploadUids = isset($_POST['quform_removed_upload_uids']) && Quform::isNonEmptyString($_POST['quform_removed_upload_uids']) ? explode(',', $_POST['quform_removed_upload_uids']) : array();
418: 
419:         if (is_array($uploads)) {
420:             foreach ($uploads as $elementName => $uploadInfo) {
421:                 if (is_array($uploadInfo['quform_upload_uid'])) {
422:                     // Multiple file upload
423:                     foreach ($uploadInfo['quform_upload_uid'] as $key => $id) {
424:                         if (in_array($id, $removedUploadUids)) {
425:                             foreach (self::$fileKeys as $fileKey) {
426:                                 unset($uploads[$elementName][$fileKey][$key]);
427:                             }
428:                             unset($uploads[$elementName]['quform_upload_uid'][$key]);
429:                         }
430:                     }
431: 
432:                     // If there are no uploads remaining just remove the whole array
433:                     if ( ! count($uploads[$elementName]['quform_upload_uid'])) {
434:                         unset($uploads[$elementName]);
435:                     }
436:                 } else {
437:                     // Single file upload
438:                     if (in_array($uploadInfo['quform_upload_uid'], $removedUploadUids)) {
439:                         unset($uploads[$elementName]);
440:                     }
441:                 }
442:             }
443: 
444:             // Merge them into $_FILES
445:             $_FILES = array_merge($_FILES, $uploads);
446:         }
447: 
448:         $files = $this->session->get(sprintf('%s.files', $form->getSessionKey()));
449: 
450:         if (is_array($files)) {
451:             foreach ($files as $elementName => $value) {
452:                 $element = $form->getElementByName($elementName);
453: 
454:                 foreach ($value as $key => $file) {
455:                     if (in_array($file['quform_upload_uid'], $removedUploadUids)) {
456:                         unset($value[$key]);
457:                     }
458:                 }
459: 
460:                 $value = array_values($value); // reindex the array
461: 
462:                 if ($element instanceof Quform_Element_File) {
463:                     $element->setValue($value);
464:                 }
465:             }
466:         }
467:     }
468: 
469:     /**
470:      * Save the values of file upload fields into session
471:      *
472:      * @param Quform_Form $form
473:      */
474:     public function saveFileUploadValuesIntoSession(Quform_Form $form)
475:     {
476:         foreach ($form->getRecursiveIterator() as $element) {
477:             if ( ! $element instanceof Quform_Element_File) {
478:                 continue;
479:             }
480: 
481:             if ( ! $element->isEmpty()) {
482:                 $this->session->set($form->getSessionKey() . '.files.' . $element->getName(), $element->getValue());
483:             }
484:         }
485:     }
486: 
487:     /**
488:      * Save file upload data from the $_FILES array into session
489:      *
490:      * @param Quform_Form $form
491:      */
492:     public function saveUploadedFilesIntoSession(Quform_Form $form)
493:     {
494:         foreach ($form->getRecursiveIterator() as $element) {
495:             if ( ! $element instanceof Quform_Element_File) {
496:                 continue;
497:             }
498: 
499:             $elementName = $element->getName();
500: 
501:             if ( ! array_key_exists($elementName, $_FILES) || ! is_array($_FILES[$elementName])) {
502:                 continue;
503:             }
504: 
505:             $uploadsTmpDir = $this->getUploadsTempDir();
506: 
507:             if ( ! is_dir($uploadsTmpDir)) {
508:                 wp_mkdir_p($uploadsTmpDir);
509:             }
510: 
511:             if ( ! wp_is_writable($uploadsTmpDir)) {
512:                 continue;
513:             }
514: 
515:             if ($element->isValid()) {
516:                 $sessionKey = $form->getSessionKey() . '.uploads.' . $elementName;
517:                 $files = array();
518: 
519:                 foreach ($_FILES[$elementName]['error'] as $key => $error) {
520:                     if ($error == UPLOAD_ERR_OK) {
521:                         if (is_uploaded_file($_FILES[$elementName]['tmp_name'][$key])) {
522:                             $filename = tempnam($uploadsTmpDir, 'quform');
523:                             move_uploaded_file($_FILES[$elementName]['tmp_name'][$key], $filename);
524:                             $_FILES[$elementName]['tmp_name'][$key] = $filename;
525:                         }
526: 
527:                         foreach (self::$fileKeys as $fileKey) {
528:                             $files[$fileKey][] = $_FILES[$elementName][$fileKey][$key];
529:                             $file[$fileKey] = $_FILES[$elementName][$fileKey][$key];
530:                         }
531: 
532:                         $files['quform_upload_uid'][] = isset($_FILES[$elementName]['quform_upload_uid'][$key]) && $this->isValidUploadUid($_FILES[$elementName]['quform_upload_uid'][$key]) ? $_FILES[$elementName]['quform_upload_uid'][$key] : $this->generateUploadUid();
533:                         $files['timestamp'][] = time();
534: 
535:                         $element->addFile($file);
536:                     }
537:                 }
538: 
539:                 if (count($files)) {
540:                     $this->session->set($sessionKey, $files);
541:                 } else {
542:                     $this->session->forget($sessionKey);
543:                 }
544:             }
545:         }
546:     }
547: 
548:     /**
549:      * Check that the given upload uid is valid
550:      *
551:      * @param   string  $uid
552:      * @return  bool
553:      */
554:     protected function isValidUploadUid($uid)
555:     {
556:         return is_string($uid) && preg_match('/^[a-zA-Z0-9]{40}$/', $uid);
557:     }
558: 
559:     /**
560:      * Generate an upload unique ID
561:      *
562:      * @return string
563:      */
564:     protected function generateUploadUid()
565:     {
566:         return Quform::randomString(40);
567:     }
568: 
569:     /**
570:      * Deletes any files uploaded via the enhanced uploader that were temporarily
571:      * stored in the system temp directory but were never used.
572:      */
573:     public function cleanup()
574:     {
575:         $uploadsTmpDir = $this->getUploadsTempDir();
576: 
577:         if (is_dir($uploadsTmpDir) && $handle = opendir($uploadsTmpDir)) {
578:             clearstatcache();
579:             $keepUntil = time() - 21600; // Delete anything older than six hours (60 * 60 * 6)
580:             while (false !== ($file = readdir($handle))) {
581:                 $filePath = $uploadsTmpDir . '/' . $file;
582:                 $mtime = filemtime($filePath);
583:                 if ($file != '.' && $file != '..' && $mtime < $keepUntil) {
584:                     @unlink($filePath);
585:                 }
586:             }
587: 
588:             closedir($handle);
589:         }
590:     }
591: 
592:     /**
593:      * Schedule the task to cleanup unused uploads
594:      */
595:     protected function scheduleCleanup()
596:     {
597:         if ( ! wp_next_scheduled('quform_upload_cleanup')) {
598:             wp_schedule_event(time() + (12 * HOUR_IN_SECONDS), 'twicedaily', 'quform_upload_cleanup');
599:         }
600:     }
601: 
602:     /**
603:      * Unschedule the task to cleanup unused uploads
604:      */
605:     protected function unscheduleCleanup()
606:     {
607:         if ($timestamp = wp_next_scheduled('quform_upload_cleanup')) {
608:             wp_unschedule_event($timestamp, 'quform_upload_cleanup');
609:         }
610:     }
611: 
612:     /**
613:      * Schedule the the task to cleanup unused uploads
614:      *
615:      * Called on plugin activation
616:      */
617:     public function activate()
618:     {
619:         $this->scheduleCleanup();
620: 
621:         $uploadsTmpDir = $this->getUploadsTempDir();
622: 
623:         if ( ! is_dir($uploadsTmpDir)) {
624:             wp_mkdir_p($uploadsTmpDir);
625:         }
626:     }
627: 
628:     /**
629:      * Unschedule the task to cleanup unused uploads, and run the cleanup
630:      *
631:      * Called on plugin deactivation
632:      */
633:     public function deactivate()
634:     {
635:         $this->unscheduleCleanup();
636:         $this->cleanup();
637:     }
638: 
639:     /**
640:      * Unschedule the task to cleanup unused uploads, and run the cleanup
641:      *
642:      * Called on plugin uninstall
643:      */
644:     public function uninstall()
645:     {
646:         $this->unscheduleCleanup();
647:         $this->cleanup();
648:     }
649: }
650:
API documentation generated by ApiGen