前端代码
<!DOCTYPE html>
<html>
<head>
<meta charset="utf-8">
<title>上传文件</title>
</head>
<body>
<form name="form1" action="upload.php" method="post" enctype="multipart/form-data">
产品标题: <input type="text" name="title"><br>
上传产品图片:<input type="file" name="uploadFile" value=""><br>
<input type="hidden" name="token" value="upload">
<input type="submit" name="" value="提交">
</form>
</body>
</html>
后端代码:
这里还是写个判断吧!
if(isset($_POST['token']) && $_POST['token'] == 'add')
{
}else
{
echo "来源不合法!";
}
然后我们再判断文件类型是否合法
/*获取文件类型*/
$arrs = $_FILES['uploadfile'];
<?php
/**
* @Author: Administrator
* @Date: 2019-07-08 14:00:42
* @Last Modified by: Administrator
* @Last Modified time: 2019-07-08 14:31:21
*/
/*先判断来源是不是安全的*/
if(isset($_POST['token']) && $_POST['token'] == 'add')
{
/*获取文件类型*/
$arrs = $_FILES['uploadfile'];
/*我们先定义一个图片文件类型数组*/
$arr = array('image/jpeg','image/png','image/gif');
/*循环文件类型*/
foreach($arrs['type'] as $key => $values)
{
if(in_array($values,$arr))
{
/*获取文件后缀*/
$ext = pathinfo($arrs['name'][$key],PATHINFO_EXTENSION); /*jpg,png,gif*/
$tmp_name = $arrs['tmp_name'][$key];
$dst_name = './'.uniqid().'.'.$ext;
move_uploaded_file($tmp_name,$dst_name);
}
}
}else
{
echo "来源不合法!";
}