koriym/file-upload

Type-safe file upload handling with immutable value objects

0.2.0 2024-11-18 09:02 UTC

This package is auto-updated.

Last update: 2024-12-18 16:26:35 UTC


README

codecov Type Coverage Psalm Level Continuous Integration

Type-safe file upload handling with immutable value objects.

Motivation

Testing file uploads in PHP applications is traditionally complex and time-consuming. It often requires setting up a built-in web server, making HTTP requests, and managing multipart form data. This approach leads to slow, unreliable tests that are difficult to debug and maintain, especially in CI environments.

This library simplifies both the handling of file uploads and their testing. Instead of dealing with PHP's native $_FILES array directly, you work with immutable value objects that provide type safety and early validation. For testing, rather than simulating HTTP file uploads, you can create test instances directly from files on your filesystem. This approach makes tests faster, more reliable, and easier to debug while still testing real-world scenarios with actual file types and contents.

Installation

composer require koriym/file-upload

Usage

From $_FILES

$upload = FileUpload::create($_FILES['upload'], [
    'maxSize' => 5 * 1024 * 1024,          // 5MB
    'allowedTypes' => ['image/jpeg', 'image/png'],
    'allowedExtensions' => ['jpg', 'jpeg', 'png']
]);

match (true) {
    $upload instanceof FileUpload => $upload->move('./uploads/' . $upload->name)
        ? 'Upload successful'
        : 'Failed to move file',
    $upload instanceof ErrorFileUpload => 'Error: ' . $upload->message,
};

From File Path (for Testing)

$upload = FileUpload::fromFile('/path/to/image.jpg', [
    'maxSize' => 5 * 1024 * 1024,
    'allowedTypes' => ['image/jpeg', 'image/png']
]);

match (true) {
    $upload instanceof FileUpload => 'File validated successfully',
    $upload instanceof ErrorFileUpload => 'Validation error: ' . $upload->message,
};

Properties

Both FileUpload and ErrorFileUpload have the following properties:

public string $name;        // Original filename
public string $type;        // MIME type
public int $size;          // File size in bytes
public string $tmpName;    // Temporary file path
public int $error;         // PHP upload error code
public ?string $extension; // File extension

Additionally, ErrorFileUpload has:

public ?string $message;   // Error message

Validation Options

You can pass the following validation options to both create() and fromFile():

  • maxSize: Maximum file size in bytes
  • allowedTypes: Array of allowed MIME types
  • allowedExtensions: Array of allowed file extensions

Testing

Using toArray()

The library provides a toArray() method to convert a FileUpload object back to $_FILES format array, which is useful for creating test stubs:

$upload = FileUpload::create([
    'name' => 'test.jpg',
    'type' => 'image/jpeg',
    'size' => 1024,
    'tmp_name' => '/tmp/test',
    'error' => UPLOAD_ERR_OK
]);

$fileData = $upload->toArray();  // Returns $_FILES format array

Using fromFile()

For more realistic testing scenarios, you can create a FileUpload instance directly from a file:

// Place test files in your project's tests/fixtures directory
$upload = FileUpload::fromFile(__DIR__ . '/fixtures/test-image.jpg');

// Create with validation
$upload = FileUpload::fromFile('/path/to/test/doc.pdf', [
    'maxSize' => 1024 * 1024,
    'allowedTypes' => ['application/pdf']
]);

This is particularly useful when you want to test with real files and MIME types.

Note: The move() method behaves differently in CLI and web environments:

  • In web environment: Uses move_uploaded_file() for security
  • In CLI environment (testing): Uses rename() for testability

Testing Tips

Testing Code That Depends on $_FILES

When testing code that depends on $_FILES, you can use the combination of fromFile() and toArray() to create controlled, reproducible tests without the complexity of setting up actual HTTP file uploads:

See the example in docs/UploadHandlerTest.php.

Similar Libraries

Both Symfony HttpFoundation and Laravel provide file upload handling as part of their frameworks. While these frameworks offer more comprehensive features including storage abstraction and integration with their ecosystems, Koriym.FileUpload takes a more focused approach by providing a lightweight, framework-independent solution that transforms PHP's native $_FILES array into type-safe immutable objects.

Additional Information

PHP's $_FILES structure:

$_FILES['upload'] = [
    'name'      => 'profile.jpg',      // Original filename
    'type'      => 'image/jpeg',       // MIME type
    'size'      => 12345,              // File size in bytes
    'tmp_name'  => '/tmp/phpxxxxx',    // Temporary file path
    'error'     => 0                   // Error code (0 means success)
];

For multiple file uploads:

<form method="POST" enctype="multipart/form-data">
    <input type="file" name="images[]" multiple>
</form>
$_FILES['images'] = [
    'name'     => ['image1.jpg', 'image2.png'],
    'type'     => ['image/jpeg', 'image/png'],
    'size'     => [12345, 67890],
    'tmp_name' => ['/tmp/phpxxxxx', '/tmp/phpyyyyy'],
    'error'    => [0, 0]
];

PHP Upload Error Codes:

UPLOAD_ERR_OK         // 0: Success
UPLOAD_ERR_INI_SIZE   // 1: Exceeds upload_max_filesize in php.ini
UPLOAD_ERR_FORM_SIZE  // 2: Exceeds MAX_FILE_SIZE in HTML form
UPLOAD_ERR_PARTIAL    // 3: Partially uploaded
UPLOAD_ERR_NO_FILE    // 4: No file uploaded
UPLOAD_ERR_NO_TMP_DIR // 6: Missing temporary folder
UPLOAD_ERR_CANT_WRITE // 7: Failed to write to disk
UPLOAD_ERR_EXTENSION  // 8: Stopped by PHP extension