Merge pull request #2 from IMC-GER/revise-javascript

Revise javascript

Author: IMC-GER

README.md

@@ -27,8 +27,8 @@ This extension can change the image size and/or the image file size. It rotate i
 - [Post - upload attachments](https://raw.githubusercontent.com/IMC-GER/images/main/screenshots/imgupload/en/imgupload_upload_en.jpg)
 
 ## Requirements
-- phpBB 3.2.4 or higher
-- php 7.1 or higher
+- phpBB 3.3.0 or higher
+- php 7.2 or higher
 - php ImageMagick library installed
 
 ## Compatible with
@@ -54,6 +54,16 @@ For full functionality "Maximum avatar file size" in "ACP" > "Board configuratio
 
 ## Changelog
 
+### v1.4.0 (14-01-2024)
+- Revised JS code
+- Fixed JS code in ACP don't work with radio buttons
+- Fixed if the attachment thumbnail is too small, it will not be centered
+- Added security measures for Ajax request
+- Added updating the image file size in the row after uploading or rotating
+- Changed error handling for missing thumbnail file to a warning message
+- Changed compression method for png files
+- Changed phpBB min. version to 3.3.0
+
 ### v1.3.2 (13-12-2023)
 - Fixed error when upload none image file
 - Fixed upload aborts sporadically with large files

imcger/imgupload/README.md

@@ -27,8 +27,8 @@ This extension can change the image size and/or the image file size. It rotate i
 - [Post - upload attachments](https://raw.githubusercontent.com/IMC-GER/images/main/screenshots/imgupload/en/imgupload_upload_en.jpg)
 
 ## Requirements
-- phpBB 3.2.4 or higher
-- php 7.1 or higher
+- phpBB 3.3.0 or higher
+- php 7.2 or higher
 - php ImageMagick library installed
 
 ## Compatible with
@@ -54,6 +54,16 @@ For full functionality "Maximum avatar file size" in "ACP" > "Board configuratio
 
 ## Changelog
 
+### v1.4.0 (14-01-2024)
+- Revised JS code
+- Fixed JS code in ACP don't work with radio buttons
+- Fixed if the attachment thumbnail is too small, it will not be centered
+- Added security measures for Ajax request
+- Added updating the image file size in the row after uploading or rotating
+- Changed error handling for missing thumbnail file to a warning message
+- Changed compression method for png files
+- Changed phpBB min. version to 3.3.0
+
 ### v1.3.2 (13-12-2023)
 - Fixed error when upload none image file
 - Fixed upload aborts sporadically with large files

imcger/imgupload/acp/main_info.php

@@ -1,6 +1,5 @@
 <?php
 /**
- *
  * Image upload use ImageMagick
  * An extension for the phpBB Forum Software package.
  *

imcger/imgupload/acp/main_module.php

@@ -1,6 +1,5 @@
 <?php
 /**
- *
  * Images upload use ImageMagick
  * An extension for the phpBB Forum Software package.
  *

imcger/imgupload/adm/style/acp_imgupload.js

@@ -1,15 +1,20 @@
-/*
- Image upload use ImageMagick
-------------------------------------- */
+/**
+ * Image upload use ImageMagick
+ * An extension for the phpBB Forum Software package.
+ *
+ * @copyright (c) 2022, Thorsten Ahlers
+ * @license GNU General Public License, version 2 (GPL-2.0)
+ *
+ */
 
-function imcgerImgInlineDisabled() {
-	if (document.getElementById('img_create_thumbnail').checked) {
-		document.getElementById('imcger_imgupload_image_inline').disabled = false;
+$('input[name=img_create_thumbnail]').on('change', function () {
+	if ($('input[name=img_create_thumbnail]:checked').last().val() == 1) {
+		$('input[name=imcger_imgupload_image_inline]').prop('disabled', false);
 	} else {
-		document.getElementById('imcger_imgupload_image_inline').checked = false;
-		setTimeout(document.getElementById('imcger_imgupload_image_inline').disabled = true, 1000);
+		$('input[name=imcger_imgupload_image_inline]').attr('type') == 'radio' ?
+			$('input[name=imcger_imgupload_image_inline]').last().click() : $('input[name=imcger_imgupload_image_inline]').prop('checked', false);
+		$('input[name=imcger_imgupload_image_inline]').prop('disabled', true);
 	}
-}
+});
 
-document.getElementById('img_create_thumbnail').addEventListener('click', imcgerImgInlineDisabled);
-imcgerImgInlineDisabled();
+$('input[name=imcger_imgupload_image_inline]').trigger('change');

imcger/imgupload/adm/style/acp_imgupload_body.html

@@ -10,25 +10,25 @@ <h1>{{ lang('ACP_IMCGER_IMGUPLOAD_TITLE') }}</h1>
 	<fieldset>
 		<legend>{{ lang('ACP_ATTACHMENT_SETTINGS') }}</legend>
 		<dl>
-			<dt><label for="img_create_thumbnail">{{ lang('CREATE_THUMBNAIL') ~ lang('COLON') }}</label><br/><span>{{ lang('CREATE_THUMBNAIL_EXPLAIN') }}</span></dt>
+			<dt><label for="img_create_thumbnail">{{ lang('CREATE_THUMBNAIL') ~ lang('COLON') }}</label><br><span>{{ lang('CREATE_THUMBNAIL_EXPLAIN') }}</span></dt>
 			<dd>
 				{{ _self.switch('img_create_thumbnail', CREATE_THUMBNAIL, switch_type) }}
 			</dd>
 		</dl>
 		<dl>
-			<dt><label for="imcger_imgupload_tum_quality">{{ lang('ACP_IMCGER_THUMB_QUALITY') ~ lang('COLON') }}</label><br/><span>{{ lang('ACP_IMCGER_THUMB_QUALITY_DESC') }}</span></dt>
+			<dt><label for="imcger_imgupload_tum_quality">{{ lang('ACP_IMCGER_THUMB_QUALITY') ~ lang('COLON') }}</label><br><span>{{ lang('ACP_IMCGER_THUMB_QUALITY_DESC') }}</span></dt>
 			<dd>
 				{{ _self.number('imcger_imgupload_tum_quality', IMCGER_TUM_QUALITY, 50, 90) }}
 			</dd>
 		</dl>
 		<dl>
-			<dt><label for="imcger_imgupload_image_inline">{{ lang('ACP_IMCGER_IMAGE_INLINE') ~ lang('COLON') }}</label><br/><span>{{ lang('ACP_IMCGER_IMAGE_INLINE_DESC') }}</span></dt>
+			<dt><label for="imcger_imgupload_image_inline">{{ lang('ACP_IMCGER_IMAGE_INLINE') ~ lang('COLON') }}</label><br><span>{{ lang('ACP_IMCGER_IMAGE_INLINE_DESC') }}</span></dt>
 			<dd>
 				{{ _self.switch('imcger_imgupload_image_inline', IMCGER_IMGUPLOAD_IMAGE_INLINE, switch_type) }}
 			</dd>
 		</dl>
 		<dl>
-			<dt><label for="imcger_imgupload_img_max_thumb_width">{{ lang('ACP_IMCGER_IMG_MAX_THUMB_WIDTH') ~ lang('COLON') }}</label><br/><span>{{ lang('ACP_IMCGER_IMG_MAX_THUMB_WIDTH_DESC') }}</span></dt>
+			<dt><label for="imcger_imgupload_img_max_thumb_width">{{ lang('ACP_IMCGER_IMG_MAX_THUMB_WIDTH') ~ lang('COLON') }}</label><br><span>{{ lang('ACP_IMCGER_IMG_MAX_THUMB_WIDTH_DESC') }}</span></dt>
 			<dd>
 				{{ _self.number('imcger_imgupload_img_max_thumb_width', IMCGER_IMG_MAX_THUMB_WIDTH, 0, 99999) }}
 			</dd>
@@ -38,23 +38,23 @@ <h1>{{ lang('ACP_IMCGER_IMGUPLOAD_TITLE') }}</h1>
 	<fieldset>
 		<legend>{{ lang('ACP_IMCGER_SETTINGS_IMAGE') }}</legend>
 		<dl>
-			<dt><label for="imcger_imgupload_img_quality">{{ lang('ACP_IMCGER_IMAGE_QUALITY') ~ lang('COLON') }}</label><br/><span>{{ lang('ACP_IMCGER_IMAGE_QUALITY_DESC') }}</span></dt>
+			<dt><label for="imcger_imgupload_img_quality">{{ lang('ACP_IMCGER_IMAGE_QUALITY') ~ lang('COLON') }}</label><br><span>{{ lang('ACP_IMCGER_IMAGE_QUALITY_DESC') }}</span></dt>
 			<dd>
 				{{ _self.number('imcger_imgupload_img_quality', IMCGER_IMG_QUALITY, 50, 90) }}
 			</dd>
 		</dl>
 
 		<dl>
-			<dt><label for="imcger_imgupload_max_width">{{ lang('ACP_IMCGER_MAX_SIZE') ~ lang('COLON') }}</label><br/><span>{{ lang('ACP_IMCGER_MAX_SIZE_DESC') }}</span></dt>
+			<dt><label for="imcger_imgupload_max_width">{{ lang('ACP_IMCGER_MAX_SIZE') ~ lang('COLON') }}</label><br><span>{{ lang('ACP_IMCGER_MAX_SIZE_DESC') }}</span></dt>
 			<dd>
 				{{ _self.number('imcger_imgupload_max_width', IMCGER_MAX_WIDTH, 0, 99999) }} x {{ _self.number('imcger_imgupload_max_height', IMCGER_MAX_HEIGHT, 0, 99999) }}
 			</dd>
 		</dl>
 
 		<dl>
-			<dt><label for="imcger_imgupload_max_filesize">{{ lang('ACP_IMCGER_MAX_FILESIZE') ~ lang('COLON') }}</label><br/><span>{{ lang('ACP_IMCGER_MAX_FILESIZE_DESC') }}</span></dt>
+			<dt><label for="imcger_imgupload_max_filesize">{{ lang('ACP_IMCGER_MAX_FILESIZE') ~ lang('COLON') }}</label><br><span>{{ lang('ACP_IMCGER_MAX_FILESIZE_DESC') }}</span></dt>
 			<dd>
-				{{ _self.number('imcger_imgupload_max_filesize', IMCGER_MAX_FILESIZE, 0, 9999999999) }} <select name="size_select"><option value="b" {% if IMCGER_UNIT == 'b' %} selected="selected"{% endif %}>Bytes</option><option value="kb" {% if IMCGER_UNIT == 'kb' %} selected="selected"{% endif %}>KiB</option><option value="mb" {% if IMCGER_UNIT == 'mb' %} selected="selected"{% endif %}>MiB</option></select>
+				{{ _self.number('imcger_imgupload_max_filesize', IMCGER_MAX_FILESIZE, 0, 9999999999) }} <select name="size_select"><option value="b" {% if IMCGER_UNIT == 'b' %} selected{% endif %}>Bytes</option><option value="kb" {% if IMCGER_UNIT == 'kb' %} selected{% endif %}>KiB</option><option value="mb" {% if IMCGER_UNIT == 'mb' %} selected{% endif %}>MiB</option></select>
 			</dd>
 		</dl>
 

imcger/imgupload/composer.json

@@ -3,8 +3,8 @@
     "type": "phpbb-extension",
     "description": "Using ImageMagick php librarie for resize image attachments and creating thumbnails.",
     "homepage": "https://github.com/IMC-GER/phpBB-Image-upload-use-ImageMagick/tags",
-    "version": "1.3.2",
-    "time": "2023-12-13",
+    "version": "1.4.0",
+    "time": "2024-01-14",
     "license": "GPL-2.0-only",
     "authors": [
         {
@@ -20,14 +20,14 @@
     ],
     "require": {
         "php": ">=7.1.0",
-        "phpbb/phpbb": "^3.2.4",
+        "phpbb/phpbb": "^3.3.0",
         "composer/installers": "~1.0",
         "ext-imagick": "*"
     },
     "extra": {
         "display-name": "Image upload use ImageMagick",
         "soft-require": {
-            "phpbb/phpbb": "^3.2.4"
+            "phpbb/phpbb": "^3.3.0"
         },
         "version-check": {
             "host": "raw.githubusercontent.com",

imcger/imgupload/config/services.yml

@@ -18,6 +18,7 @@ services:
             - '@auth'
             - '@language'
             - '@ext.manager'
+            - '@filesystem'
             - '%core.root_path%'
             - '%core.php_ext%'
 

imcger/imgupload/controller/admin_controller.php

@@ -1,6 +1,5 @@
 <?php
 /**
- *
  * Image upload use ImageMagick
  * An extension for the phpBB Forum Software package.
  *
@@ -11,6 +10,9 @@
 
 namespace imcger\imgupload\controller;
 
+/**
+* ACP Controller
+*/
 class admin_controller
 {
 	/** @var config */

imcger/imgupload/controller/save_rotated_img_controller.php

@@ -5,16 +5,13 @@
  *
  * @copyright (c) 2022, Thorsten Ahlers
  * @license GNU General Public License, version 2 (GPL-2.0)
+ *
  */
 
 namespace imcger\imgupload\controller;
 
 /**
- * @ignore
- */
-
-/**
- * Main controller
+ * Ajax main controller
  */
 class save_rotated_img_controller
 {
@@ -39,20 +36,26 @@ class save_rotated_img_controller
 	/** @var \phpbb\extension\manager */
 	protected $ext_manager;
 
+	/** @var \phpbb\filesystem\filesystem */
+	protected $filesystem;
+
 	/** @var string phpBB root path */
 	protected $root_path;
 
 	/** @var string phpEx */
 	protected $php_ext;
 
 	/**
+	 * Constructor for ajax controller
+	 *
 	 * @param \phpbb\config\config				$config
 	 * @param \phpbb\user						$user
 	 * @param \phpbb\request\request			$request
 	 * @param \phpbb\db\driver\driver_interface	$db
 	 * @param \phpbb\auth\auth					$auth
 	 * @param \phpbb\language\language			$language
 	 * @param \phpbb\extension\manager			$ext_manager
+	 * @param \phpbb\filesystem\filesystem		$filesystem
 	 * @param string							$root_path
 	 * @param string							$php_ext
 	 */
@@ -64,6 +67,7 @@ public function __construct(
 		\phpbb\auth\auth $auth,
 		\phpbb\language\language $language,
 		\phpbb\extension\manager $ext_manager,
+		\phpbb\filesystem\filesystem $filesystem,
 		$root_path,
 		$php_ext
 	)
@@ -75,6 +79,7 @@ public function __construct(
 		$this->auth			= $auth;
 		$this->language		= $language;
 		$this->ext_manager	= $ext_manager;
+		$this->filesystem	= $filesystem;
 		$this->root_path	= $root_path;
 		$this->php_ext		= $php_ext;
 
@@ -85,9 +90,12 @@ public function __construct(
 	/**
 	 * Rotate Image with ImageMagick
 	 *
-	 * @var 	string	$data	String contain attach id and rotate degree
+	 * @var 	int		attach_id		contain attach id
+	 * @var 	int		img_rotate_deg	contain rotate degree
+	 * @var 	int		creation_time	creation time of token
+	 * @var 	string	form_token		form token
 	 *
-	 * @return	array			Json arry with old and new attach id or error message
+	 * @return	array	Json arry with status, old and new attach id, new file size or error message
 	 */
 	public function save_image()
 	{
@@ -103,14 +111,21 @@ public function save_image()
 			$this->json_response(3);
 		}
 
-		$img_attach_id	= $this->request->variable('attach_id', '');
-		$img_rotate_deg	= $this->request->variable('img_rotate_deg', '');
-
 		// Get name of the extension
 		$metadata_manager = $this->ext_manager->create_extension_metadata_manager('imcger/imgupload');
 		$ext_display_name = $metadata_manager->get_metadata('display-name');
 
-		if (!$img_attach_id || !$img_rotate_deg)
+		// Check form token
+		if (!check_form_key('posting'))
+		{
+			$this->json_response(5, $ext_display_name, $this->language->lang('FORM_INVALID'));
+		}
+
+		// Get variable, accept only integer
+		$img_attach_id	= intval($this->request->variable('attach_id', ''));
+		$img_rotate_deg	= intval($this->request->variable('img_rotate_deg', ''));
+
+		if (!$img_attach_id || $img_rotate_deg < 1 || $img_rotate_deg > 360)
 		{
 			$this->json_response(5, $ext_display_name, $this->language->lang('IUL_WRONG_PARAM'));
 		}
@@ -135,7 +150,7 @@ public function save_image()
 		$image_file_path = $this->root_path . trim($this->config['upload_path'], '/') . '/' . $img_data['physical_filename'];
 		$thumb_file_path = $this->root_path . trim($this->config['upload_path'], '/') . '/' . 'thumb_' . $img_data['physical_filename'];
 
-		if (file_exists($image_file_path))
+		if ($this->filesystem->exists($image_file_path))
 		{
 			$img_data['filesize'] = $this->rotate_image($image_file_path, $img_rotate_deg);
 		}
@@ -144,13 +159,14 @@ public function save_image()
 			$this->json_response(4, $ext_display_name, $this->language->lang('IUL_IMG_NOT_EXIST'));
 		}
 
-		if ($img_data['thumbnail'] && file_exists($thumb_file_path))
+		if ($img_data['thumbnail'] && $this->filesystem->exists($thumb_file_path))
 		{
 			$this->rotate_image($thumb_file_path, $img_rotate_deg);
 		}
 		else if ($img_data['thumbnail'])
 		{
-			$this->json_response(4, $ext_display_name, $this->language->lang('IUL_THUMB_NOT_EXIST'));
+			$img_data['thumbnail'] = 0;
+			$alert_msg = $this->language->lang('IUL_THUMB_NOT_EXIST');
 		}
 
 		// Update DataBase
@@ -166,7 +182,7 @@ public function save_image()
 			$sql = 'DELETE FROM ' . ATTACHMENTS_TABLE . ' WHERE attach_id = ' . (int) $img_attach_id;
 			$this->db->sql_query($sql);
 
-			$this->json_response(0, $ext_display_name, '', $img_attach_id, $new_attach_id);
+			$this->json_response(0, $ext_display_name, $alert_msg ?? '', $img_attach_id, $new_attach_id, $img_data['filesize']);
 		}
 		else
 		{
@@ -201,10 +217,11 @@ private function rotate_image($path, $deg)
 	 * @param 	string	$message		Messagebox message
 	 * @param	int		$old_attach_id	Previous attachment id
 	 * @param 	int		$new_attach_id	New attachment id
+	 * @param 	int		$file_size		New file size
 	 *
 	 * @return	string	$json
 	 */
-	private function json_response($status, $title = '', $message = '', $old_attach_id = 0, $new_attach_id = 0)
+	private function json_response($status, $title = '', $message = '', $old_attach_id = 0, $new_attach_id = 0, $file_size = 0)
 	{
 		$json_response = new \phpbb\json_response;
 		$json_response->send([
@@ -213,6 +230,7 @@ private function json_response($status, $title = '', $message = '', $old_attach_
 			'message'		=> $message,
 			'oldAttachId'	=> (int) $old_attach_id,
 			'newAttachId'	=> (int) $new_attach_id,
+			'fileSize'		=> (int) $file_size,
 		]);
 	}
 }