You are here

Home » API reference » File Upload Secure Validator 7

README.txt in File Upload Secure Validator 7

Same filename and directory in other branches
  1. 7.2 README.txt
This is a very simple and small module which performs a server side validation
for the extension of an uploaded file of any content type's file field. Default
drupal 7 file validation is performed by file_validate_extensions which only
relies on the file name extension.
'File Upload Secure Validator' uses the php library 'fileinfo' and is dependent
on that. Therefore the server hosting the drupal instance should have this
library enabled. Through this php lib we can perform a more secure and reliable
check on the file's mime type and compare that to the allowed file extensions,
as these are set by the admin within the content type's field settings.

This module is useful when we need to enforce a maximum security mime type
detection.

Dependencies
The module depends on the php library <strong>fileinfo</strong>. Please make
sure this library is present and enabled on the server.

Installation
Install module like usual. No special installation considerations

Configuration 
No configuration options. After enabling the module, it will perform an
alternative server side extension validation on every uploaded file of every
content type file field.

File

README.txt
View source 
  1. This is a very simple and small module which performs a server side validation

  2. for the extension of an uploaded file of any content type's file field. Default

  3. drupal 7 file validation is performed by file_validate_extensions which only

  4. relies on the file name extension.

  5. 'File Upload Secure Validator' uses the php library 'fileinfo' and is dependent

  6. on that. Therefore the server hosting the drupal instance should have this

  7. library enabled. Through this php lib we can perform a more secure and reliable

  8. check on the file's mime type and compare that to the allowed file extensions,

  9. as these are set by the admin within the content type's field settings.

  10. 

  11. This module is useful when we need to enforce a maximum security mime type

  12. detection.

  13. 

  14. Dependencies

  15. The module depends on the php library fileinfo. Please make

  16. sure this library is present and enabled on the server.

  17. 

  18. Installation

  19. Install module like usual. No special installation considerations

  20. 

  21. Configuration 

  22. No configuration options. After enabling the module, it will perform an

  23. alternative server side extension validation on every uploaded file of every

  24. content type file field.