FriendsOfFlarum upload, the intelligent file attachment extension

treyb

Apologies if I missed this. Is there a way to make or control the transparency of a watermark? Right now the image gets place and can cover needed info.

fakruzaruret

May be someone use

A Burp Suite Pro extension to do security tests for HTTP file uploads.

PortSwigger/upload-scanner

Chope

Any hope of supporting Backblaze B2 driver?
Their service is much cheaper than Amazon s3.

treyb

Chope love backblaze too

luceos

Chope treyb bacblaze is s3 compatible. It should work as any s3 driver with fof upload if properly configured.

Darkle

Chope The setup is the same as any S3, the only note is that you have to manually edit the AwsS3.php file to change the hardcoded aws domain to backblazeb2.com.

luceos

Darkle it is possible to use an extender on Upload to create an adapter/driver for it. If you have this knowledge would you perhaps be interested in either PR'ing this driver to fof upload or create the driver as a lose extension? This would probably help a lot of people.

Darkle

luceos I'll look into it. The simplest approach might be to create a new adapter, something like b2.php, essentially a clone of AwsS3.php but with modified URL. However, I'll try to see if I can set the URL value through the extension settings to make the adapter more flexible. I don't remember exactly, but I believe B2, while S3 compatible, isn't 100% compatible, I don't face this with Cloudflare R2, but it looks like Backblaze might not be the only provider with this issue, so it's worth looking.

User32

Hello, are there any plans to fix the cleaning of abandoned files sent to s3? Currently, using the cleanup command also removes 'active' files attached to posts.

Darkle

I've got the custom S3 URL field done! If anyone wants to test it iamdarkle/upload FriendsOfFlarum/upload399 cc @treyb @Chope

I have to push a fix and the locale strings are missing, I'll finish it later.

ItsNeil17

I was uploading a bunch of files yesterday to a flarum instance using this extension and forgot what file I was on (I was uploading individually), so I copied the URL and tried to access it. It worked.

A few days prior if I'm not wrong a GitHub exploit had this same issue, any assets uploaded would be saved EVEN if that comment/post was never actually posted.

This is the same case with this extension and it would be great help if this was fixed. Maybe store those files inside a specific folder that gets deleted every 24 hours (or less) and once a post has been posted, it moves it to an actual folder?

This may be too much work as if I'm not wrong it just saves the image to a folder and returns a URL. I might PR this if needed?

luceos

ItsNeil17 this logic already exists but seems to be broken. I worked on the first iteration not too long ago but it was disabled once people ran into issues. I don't have the maintainer access anymore, but any assistance on resolving this issue would be appreciated.

html5syt

I have a problem:

[2024-04-28 14:30:00] flarum.ERROR: Error: Undefined constant GuzzleHttp\ClientInterface::VERSION in /data/host/skeleton/vendor/aws/aws-sdk-php/src/functions.php:265
Stack trace:
#0 /data/host/skeleton/vendor/aws/aws-sdk-php/src/ClientResolver.php(438): Aws\default_http_handler()
#1 /data/host/skeleton/vendor/aws/aws-sdk-php/src/ClientResolver.php(219): Aws\ClientResolver::_default_handler()
#2 /data/host/skeleton/vendor/aws/aws-sdk-php/src/AwsClient.php(137): Aws\ClientResolver->resolve()
#3 /data/host/skeleton/vendor/aws/aws-sdk-php/src/S3/S3Client.php(62): Aws\AwsClient->__construct()
#4 /data/host/skeleton/vendor/fof/upload/src/Adapters/Manager.php(106): Aws\S3\S3Client->__construct()
#5 /data/host/skeleton/vendor/fof/upload/src/Adapters/Manager.php(78): FoF\Upload\Adapters\Manager->awsS3()
#6 /data/host/skeleton/vendor/fof/upload/src/Helpers/Util.php(216): FoF\Upload\Adapters\Manager->instantiate()
#7 /data/host/skeleton/vendor/fof/upload/src/Commands/UploadHandler.php(75): FoF\Upload\Helpers\Util->getAdapter()
#8 [internal function]: FoF\Upload\Commands\UploadHandler->FoF\Upload\Commands\{closure}()
#9 /data/host/skeleton/vendor/illuminate/collections/Collection.php(695): array_map()
#10 /data/host/skeleton/vendor/fof/upload/src/Commands/UploadHandler.php(64): Illuminate\Support\Collection->map()
#11 /data/host/skeleton/vendor/illuminate/bus/Dispatcher.php(122): FoF\Upload\Commands\UploadHandler->handle()
#12 /data/host/skeleton/vendor/illuminate/pipeline/Pipeline.php(128): Illuminate\Bus\Dispatcher->Illuminate\Bus\{closure}()
#13 /data/host/skeleton/vendor/clarkwinkelmann/flarum-ext-anonymous-posting/src/FakeUserRelation/FakeUserHydratorPipe.php(17): Illuminate\Pipeline\Pipeline->Illuminate\Pipeline\{closure}()
#14 /data/host/skeleton/vendor/illuminate/pipeline/Pipeline.php(167): ClarkWinkelmann\AnonymousPosting\FakeUserRelation\FakeUserHydratorPipe->handle()
#15 /data/host/skeleton/vendor/illuminate/pipeline/Pipeline.php(103): Illuminate\Pipeline\Pipeline->Illuminate\Pipeline\{closure}()
#16 /data/host/skeleton/vendor/illuminate/bus/Dispatcher.php(132): Illuminate\Pipeline\Pipeline->then()
#17 /data/host/skeleton/vendor/illuminate/bus/Dispatcher.php(78): Illuminate\Bus\Dispatcher->dispatchNow()
#18 /data/host/skeleton/vendor/fof/upload/src/Api/Controllers/UploadController.php(60): Illuminate\Bus\Dispatcher->dispatch()
#19 /data/host/skeleton/vendor/flarum/core/src/Api/Controller/AbstractSerializeController.php(116): FoF\Upload\Api\Controllers\UploadController->data()
#20 /data/host/skeleton/vendor/flarum/core/src/Http/RouteHandlerFactory.php(41): Flarum\Api\Controller\AbstractSerializeController->handle()
#21 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/ExecuteRoute.php(27): Flarum\Http\RouteHandlerFactory->Flarum\Http\{closure}()
#22 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\ExecuteRoute->process()
#23 /data/host/skeleton/vendor/fof/reactions/src/Middleware/BindRequestToContainer.php(35): Laminas\Stratigility\Next->handle()
#24 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): FoF\Reactions\Middleware\BindRequestToContainer->process()
#25 /data/host/skeleton/vendor/fof/oauth/src/Middleware/BindRequest.php(33): Laminas\Stratigility\Next->handle()
#26 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): FoF\OAuth\Middleware\BindRequest->process()
#27 /data/host/skeleton/vendor/flarum/core/src/Api/Middleware/ThrottleApi.php(33): Laminas\Stratigility\Next->handle()
#28 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Api\Middleware\ThrottleApi->process()
#29 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/CheckCsrfToken.php(44): Laminas\Stratigility\Next->handle()
#30 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\CheckCsrfToken->process()
#31 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/ResolveRoute.php(69): Laminas\Stratigility\Next->handle()
#32 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\ResolveRoute->process()
#33 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/SetLocale.php(51): Laminas\Stratigility\Next->handle()
#34 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\SetLocale->process()
#35 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/AuthenticateWithHeader.php(58): Laminas\Stratigility\Next->handle()
#36 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\AuthenticateWithHeader->process()
#37 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/AuthenticateWithSession.php(31): Laminas\Stratigility\Next->handle()
#38 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\AuthenticateWithSession->process()
#39 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/RememberFromCookie.php(52): Laminas\Stratigility\Next->handle()
#40 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\RememberFromCookie->process()
#41 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/StartSession.php(61): Laminas\Stratigility\Next->handle()
#42 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\StartSession->process()
#43 /data/host/skeleton/vendor/flarum/core/src/Api/Middleware/FakeHttpMethods.php(29): Laminas\Stratigility\Next->handle()
#44 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Api\Middleware\FakeHttpMethods->process()
#45 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/ParseJsonBody.php(28): Laminas\Stratigility\Next->handle()
#46 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\ParseJsonBody->process()
#47 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/HandleErrors.php(57): Laminas\Stratigility\Next->handle()
#48 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\HandleErrors->process()
#49 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/InjectActorReference.php(25): Laminas\Stratigility\Next->handle()
#50 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\InjectActorReference->process()
#51 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/MiddlewarePipe.php(75): Laminas\Stratigility\Next->handle()
#52 /data/host/skeleton/vendor/middlewares/request-handler/src/RequestHandler.php(84): Laminas\Stratigility\MiddlewarePipe->process()
#53 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Middlewares\RequestHandler->process()
#54 /data/host/skeleton/vendor/middlewares/base-path-router/src/BasePathRouter.php(99): Laminas\Stratigility\Next->handle()
#55 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Middlewares\BasePathRouter->process()
#56 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Middleware/OriginalMessages.php(36): Laminas\Stratigility\Next->handle()
#57 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Laminas\Stratigility\Middleware\OriginalMessages->process()
#58 /data/host/skeleton/vendor/middlewares/base-path/src/BasePath.php(73): Laminas\Stratigility\Next->handle()
#59 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Middlewares\BasePath->process()
#60 /data/host/skeleton/vendor/flarum/core/src/Http/Middleware/ProcessIp.php(24): Laminas\Stratigility\Next->handle()
#61 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/Next.php(49): Flarum\Http\Middleware\ProcessIp->process()
#62 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/MiddlewarePipe.php(75): Laminas\Stratigility\Next->handle()
#63 /data/host/skeleton/vendor/laminas/laminas-stratigility/src/MiddlewarePipe.php(64): Laminas\Stratigility\MiddlewarePipe->process()
#64 /data/host/skeleton/vendor/laminas/laminas-httphandlerrunner/src/RequestHandlerRunner.php(73): Laminas\Stratigility\MiddlewarePipe->handle()
#65 /data/host/skeleton/vendor/flarum/core/src/Http/Server.php(45): Laminas\HttpHandlerRunner\RequestHandlerRunner->run()
#66 /data/host/bravely/public/index.php(34): Flarum\Http\Server->listen()
#67 {main}

I use R2 to store my pictures,and I can ensure the information are correct.
Who can help me?
(I use freeflarum,and if you want more information, you can ask me,sorry.)

html5syt

html5syt
Please ignore it, it was solved.Sorry.

nevermind-studio

I was wondering if this bug FriendsOfFlarum/upload395

is widespread - as in it happens to everyone - or not (because if not maybe it can be fixed on my end somehow?).

I want to point out that I'm not complaining, I'm always in awe about all the work that is constantly bening put on Flarum and its extensions and I don't mind the wait at all, I'm asking just out of curiosity since it's quite a "visible" bug on one of the most useful extensions out there.

luceos

nevermind-studio it happens to everyone yes.

bee-ren

Help I got error in uploading file
POST http://crypto-forum.test/api/fof/upload

Deprecated: Optional parameter $upload declared before required parameter $contents is implicitly treated as a required parameter in D:\Program\laragon\www\crypto-forum\vendor\fof\upload\src\Adapters\Flysystem.php on line 51 
 
Fatal error: Uncaught Laminas\HttpHandlerRunner\Exception\EmitterException: Output has been emitted previously; cannot emit response in D:\Program\laragon\www\crypto-forum\vendor\laminas\laminas-httphandlerrunner\src\Exception\EmitterException.php:20
Stack trace:
#0 D:\Program\laragon\www\crypto-forum\vendor\laminas\laminas-httphandlerrunner\src\Emitter\SapiEmitterTrait.php(42): Laminas\HttpHandlerRunner\Exception\EmitterException::forOutputSent()
#1 D:\Program\laragon\www\crypto-forum\vendor\laminas\laminas-httphandlerrunner\src\Emitter\SapiEmitter.php(21): Laminas\HttpHandlerRunner\Emitter\SapiEmitter->assertNoPreviousOutput()
#2 D:\Program\laragon\www\crypto-forum\vendor\laminas\laminas-httphandlerrunner\src\RequestHandlerRunner.php(75): Laminas\HttpHandlerRunner\Emitter\SapiEmitter->emit(Object(Flarum\Api\JsonApiResponse))
#3 D:\Program\laragon\www\crypto-forum\vendor\flarum\core\src\Http\Server.php(45): Laminas\HttpHandlerRunner\RequestHandlerRunner->run()
#4 D:\Program\laragon\www\crypto-forum\public\index.php(26): Flarum\Http\Server->listen()
#5 {main}
thrown in D:\Program\laragon\www\crypto-forum\vendor\laminas\laminas-httphandlerrunner\src\Exception\EmitterException.php on line 20

I got something like this

luceos

bee-ren disable deprecation warnings of your php in production.

Chope

Any hope of supporting Cloudflare R2?

Darkle

Chope What issue are you having with Cloudflare R2?

« Previous Page