#899 restrict custom field file uploads to images and pdfs

Author: Kieron

anchor/models/extend.php

@@ -154,21 +154,10 @@ public static function files() {
 	}
 
 	public static function upload($file) {
-		$storage = PATH . 'content' . DS;
+		$uploader = new Uploader(PATH . 'content', array('png', 'jpg', 'bmp', 'gif', 'pdf'));
+		$filepath = $uploader->upload($file);
 
-		if(!is_dir($storage)) mkdir($storage);
-
-		$ext = pathinfo($file['name'], PATHINFO_EXTENSION);
-
-		// Added rtrim to remove file extension before adding again
-		$filename = slug(rtrim($file['name'], '.' . $ext)) . '.' . $ext;
-		$filepath = $storage . $filename;
-
-		if(move_uploaded_file($file['tmp_name'], $filepath)) {
-			return $filepath;
-		}
-
-		return false;
+		return $filepath;
 	}
 
 	public static function process_image($extend) {

anchor/routes/admin.php

@@ -227,7 +227,6 @@
 	Upload an image
 */
 Route::post('admin/upload', array('before' => 'auth', 'main' => function() {
-
 	$uploader = new Uploader(PATH . 'content', array('png', 'jpg', 'bmp', 'gif', 'pdf'));
 	$filepath = $uploader->upload($_FILES['file']);
 

index.php

@@ -23,7 +23,7 @@
 
 define('DS', DIRECTORY_SEPARATOR);
 define('ENV', getenv('APP_ENV'));
-define('VERSION', '0.10');
+define('VERSION', '0.11');
 
 define('PATH', dirname(__FILE__) . DS);
 define('APP', PATH . 'anchor' . DS);