123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347 |
- <?php
- namespace addons\cos\controller;
- use app\common\exception\UploadException;
- use app\common\library\Upload;
- use app\common\model\Attachment;
- use Qcloud\Cos\Client;
- use Qcloud\Cos\Signature;
- use think\addons\Controller;
- use think\Config;
- /**
- * COS云储存
- *
- */
- class Index extends Controller
- {
- protected $cosConfig = [];
- public function _initialize()
- {
- //跨域检测
- check_cors_request();
- parent::_initialize();
- Config::set('default_return_type', 'json');
- $config = get_addon_config('cos');
- $this->cosConfig = array(
- 'region' => $config['region'],
- 'schema' => 'https', //协议头部,默认为http
- 'credentials' => array(
- 'secretId' => $config['secretId'],
- 'secretKey' => $config['secretKey']
- )
- );
- }
- public function index()
- {
- Config::set('default_return_type', 'html');
- $this->error("当前插件暂无前台页面");
- }
- public function params()
- {
- $this->check();
- $config = get_addon_config('cos');
- $name = $this->request->post('name');
- $md5 = $this->request->post('md5');
- $chunk = $this->request->post('chunk');
- $key = (new Upload())->getSavekey($config['savekey'], $name, $md5);
- $key = ltrim($key, "/");
- $params = [
- 'key' => $key,
- 'md5' => $md5
- ];
- if ($chunk) {
- $fileSize = $this->request->post('size');
- $oss = new Client($this->cosConfig);
- $result = $oss->createMultipartUpload(array(
- 'Bucket' => $config['bucket'],
- 'Key' => $key,
- ));
- $uploadId = $result['UploadId'];
- $sig = new Signature($config['secretId'], $config['secretKey']);
- $partSize = $this->request->post("chunksize");
- $i = 0;
- $size_count = $fileSize;
- $values = array();
- while ($size_count > 0) {
- $size_count -= $partSize;
- $values[] = array(
- $partSize * $i,
- ($size_count > 0) ? $partSize : ($size_count + $partSize),
- );
- $i++;
- }
- $params['key'] = $key;
- $params['uploadId'] = $uploadId;
- $params['partsAuthorization'] = [];
- $date = gmdate('D, d M Y H:i:s \G\M\T');
- foreach ($values as $index => $part) {
- $partNumber = $index + 1;
- $options = array(
- 'Bucket' => $config['bucket'],
- 'Key' => $key,
- 'UploadId' => $uploadId,
- 'PartNumber' => $partNumber,
- 'Body' => ''
- );
- $command = $oss->getCommand('uploadPart', $options);
- $request = $oss->commandToRequestTransformer($command);
- $authorization = $sig->createAuthorization($request);
- $params['partsAuthorization'][$index] = $authorization;
- }
- $params['date'] = $date;
- } else {
- if ($config['uploadmode'] == 'client') {
- $expiretime = time() + $config['expire'];
- $expiration = gmdate("Y-m-d\TH:i:s.414\Z", $expiretime);
- $keytime = (time() - 60) . ';' . $expiretime;
- $policy = json_encode([
- 'expiration' => $expiration,
- 'conditions' => [
- ['q-sign-algorithm' => 'sha1'],
- ['q-ak' => $config['secretId']],
- ['q-sign-time' => $keytime]
- ]
- ]);
- $signature = hash_hmac('sha1', sha1($policy), hash_hmac('sha1', $keytime, $config['secretKey']));
- $params = [
- 'key' => $key,
- 'policy' => base64_encode($policy),
- 'q-sign-algorithm' => 'sha1',
- 'q-ak' => $config['secretId'],
- 'q-key-time' => $keytime,
- 'q-sign-time' => $keytime,
- 'q-signature' => $signature
- ];
- }
- }
- $this->success('', null, $params);
- return;
- }
- /**
- * 服务器中转上传文件
- * 上传分片
- * 合并分片
- * @param bool $isApi
- */
- public function upload($isApi = false)
- {
- if ($isApi === true) {
- if (!$this->auth->isLogin()) {
- $this->error("请登录后再进行操作");
- }
- } else {
- $this->check();
- }
- $config = get_addon_config('cos');
- $oss = new Client($this->cosConfig);
- //检测删除文件或附件
- $checkDeleteFile = function ($attachment, $upload, $force = false) use ($config) {
- //如果设定为不备份则删除文件和记录 或 强制删除
- if ((isset($config['serverbackup']) && !$config['serverbackup']) || $force) {
- if ($attachment && !empty($attachment['id'])) {
- $attachment->delete();
- }
- if ($upload) {
- //文件绝对路径
- $filePath = $upload->getFile()->getRealPath() ?: $upload->getFile()->getPathname();
- @unlink($filePath);
- }
- }
- };
- $chunkid = $this->request->post("chunkid");
- if ($chunkid) {
- $action = $this->request->post("action");
- $chunkindex = $this->request->post("chunkindex/d");
- $chunkcount = $this->request->post("chunkcount/d");
- $filesize = $this->request->post("filesize");
- $filename = $this->request->post("filename");
- $method = $this->request->method(true);
- $key = $this->request->post("key");
- $uploadId = $this->request->post("uploadId");
- if ($action == 'merge') {
- $attachment = null;
- $upload = null;
- //合并分片
- if ($config['uploadmode'] == 'server') {
- //合并分片文件
- try {
- $upload = new Upload();
- $attachment = $upload->merge($chunkid, $chunkcount, $filename);
- } catch (UploadException $e) {
- $this->error($e->getMessage());
- }
- }
- $etags = $this->request->post("etags/a", []);
- if (count($etags) != $chunkcount) {
- $checkDeleteFile($attachment, $upload, true);
- $this->error("分片数据错误");
- }
- $listParts = [];
- for ($i = 0; $i < $chunkcount; $i++) {
- $listParts[] = array("PartNumber" => $i + 1, "ETag" => $etags[$i]);
- }
- try {
- $result = $oss->completeMultipartUpload(array(
- 'Bucket' => $config['bucket'],
- 'Key' => $key,
- 'UploadId' => $uploadId,
- 'Parts' => $listParts
- )
- );
- } catch (\Exception $e) {
- $checkDeleteFile($attachment, $upload, true);
- $this->error($e->getMessage());
- }
- if (!isset($result['Key'])) {
- $checkDeleteFile($attachment, $upload, true);
- $this->error("上传失败");
- } else {
- $checkDeleteFile($attachment, $upload);
- $this->success("上传成功", '', ['url' => "/" . $key, 'fullurl' => cdnurl("/" . $key, true)]);
- }
- } else {
- //默认普通上传文件
- $file = $this->request->file('file');
- try {
- $upload = new Upload($file);
- $file = $upload->chunk($chunkid, $chunkindex, $chunkcount);
- } catch (UploadException $e) {
- $this->error($e->getMessage());
- }
- try {
- $params = array(
- 'Bucket' => $config['bucket'],
- 'Key' => $key,
- 'UploadId' => $uploadId,
- 'PartNumber' => $chunkindex + 1,
- 'Body' => $file->fread($file->getSize())
- );
- $ret = $oss->uploadPart($params);
- $etag = $ret['ETag'];
- } catch (\Exception $e) {
- $this->error($e->getMessage());
- }
- $this->success("上传成功", "", [], 3, ['ETag' => $etag]);
- }
- } else {
- $attachment = null;
- //默认普通上传文件
- $file = $this->request->file('file');
- try {
- $upload = new Upload($file);
- $attachment = $upload->upload();
- } catch (UploadException $e) {
- $this->error($e->getMessage());
- }
- //文件绝对路径
- $filePath = $upload->getFile()->getRealPath() ?: $upload->getFile()->getPathname();
- $url = $attachment->url;
- try {
- $ret = $oss->upload($config['bucket'], ltrim($attachment->url, "/"), $upload->getFile());
- //成功不做任何操作
- } catch (\Exception $e) {
- $checkDeleteFile($attachment, $upload, true);
- $this->error("上传失败");
- }
- $checkDeleteFile($attachment, $upload);
- $this->success("上传成功", '', ['url' => $url, 'fullurl' => cdnurl($url, true)]);
- }
- return;
- }
- /**
- * 回调
- */
- public function notify()
- {
- $this->check();
- $size = $this->request->post('size/d');
- $name = $this->request->post('name', '');
- $md5 = $this->request->post('md5', '');
- $type = $this->request->post('type', '');
- $url = $this->request->post('url', '');
- $width = $this->request->post('width/d');
- $height = $this->request->post('height/d');
- $category = $this->request->post('category', '');
- $category = array_key_exists($category, config('site.attachmentcategory') ?? []) ? $category : '';
- $suffix = strtolower(pathinfo($name, PATHINFO_EXTENSION));
- $suffix = $suffix && preg_match("/^[a-zA-Z0-9]+$/", $suffix) ? $suffix : 'file';
- $attachment = Attachment::where('url', $url)->where('storage', 'cos')->find();
- if (!$attachment) {
- $params = array(
- 'category' => $category,
- 'admin_id' => (int)session('admin.id'),
- 'user_id' => (int)cookie('uid'),
- 'filesize' => $size,
- 'filename' => $name,
- 'imagewidth' => $width,
- 'imageheight' => $height,
- 'imagetype' => $suffix,
- 'imageframes' => 0,
- 'mimetype' => $type,
- 'url' => $url,
- 'uploadtime' => time(),
- 'storage' => 'cos',
- 'sha1' => $md5,
- );
- Attachment::create($params, true);
- }
- $this->success();
- return;
- }
- /**
- * 检查签名是否正确或过期
- */
- protected function check()
- {
- $costoken = $this->request->post('costoken', '', 'trim');
- if (!$costoken) {
- $this->error("参数不正确");
- }
- $config = get_addon_config('cos');
- list($appId, $sign, $data) = explode(':', $costoken);
- if (!$appId || !$sign || !$data) {
- $this->error("参数不正确");
- }
- if ($appId !== $config['appId']) {
- $this->error("参数不正确");
- }
- if ($sign !== base64_encode(hash_hmac('sha1', base64_decode($data), $config['secretKey'], true))) {
- $this->error("签名不正确");
- }
- $json = json_decode(base64_decode($data), true);
- if ($json['deadline'] < time()) {
- $this->error("请求已经超时");
- }
- }
- }
|