How to check whether the user uploaded a file in PHP

Question

I do some form validation to ensure that the file a user uploaded is of the right type  But the upload is optional  so I want to skip the validation if he didn t upload anything and submitted the rest of the form  How can I check whether he uploaded something or not  Will   FILES  myflie    size    lt  0 work

User · Answer

karim79 has the right answer  but I had to rewrite his example to suit my purposes   His example assumes that the name of the submitted field is known and can be hard coded in   I took that a step further and made a function that will tell me if any files were uploaded without having to know the name of the upload field          Tests all upload fields to determine whether any files were submitted          return boolean     function files uploaded             bail if there were no upload forms    if empty   FILES           return false          check for uploaded files      files     FILES  files    tmp name        foreach   files as  field title   gt   temp name            if   empty  temp name   amp  amp  is uploaded file   temp name                    found one              return true                            return false if no files were found    return false

User · Answer

lt  DOCTYPE html gt   lt html gt   lt body gt    lt form action     method  post  enctype  multipart form-data  gt      Select image to upload       lt input name  my files    type  file  multiple  multiple    gt       lt input type  submit  value  Upload Image  name  submit  gt   lt  form gt     lt  php   if  isset   FILES  my files              myFile     FILES  my files         fileCount   count  myFile  name               for   i   0   i  lt  fileCount   i                           error    myFile  error    i                 if   error     4       error 4 is for  no file selected                                echo  no file selected                              else                                 name     myFile  name    i                  echo  name                  echo   lt br gt                     temporary file    myFile  tmp name    i                  echo  temporary file                 echo   lt br gt                    type    myFile  type    i                  echo  type                 echo   lt br gt                    size    myFile  size    i                  echo  size                 echo   lt br gt                       target path    uploads  name       first make a folder named  uploads  where you will upload files                    if move uploaded file  temporary file  target path                                          echo   uploaded                      echo   lt br gt                       echo   lt br gt                                           else                                        echo  no upload                                                                    gt     lt  body gt   lt  html gt    But be alert  User can upload any type of file and also can hack your server or system by uploading a malicious or php file  In this script there should be some validations  Thank you

User · Answer

You should use   FILES  form name   error    It returns UPLOAD ERR NO FILE if no file was uploaded  Full list  PHP  Error Messages Explained  function isUploadOkay  form name   amp  error message        if   isset   FILES  form name               error message    No file upload with name   form name  in form            return false             error     FILES  form name   error            List at  http   php net manual en features file-upload errors php     if   error    UPLOAD ERR OK            switch   error                case UPLOAD ERR INI SIZE                   error message    The uploaded file exceeds the upload max filesize directive in php ini                    break               case UPLOAD ERR FORM SIZE                   error message    The uploaded file exceeds the MAX FILE SIZE directive that was specified in the HTML form                    break               case UPLOAD ERR PARTIAL                   error message    The uploaded file was only partially uploaded                    break               case UPLOAD ERR NO FILE                   error message    No file was uploaded                    break               case UPLOAD ERR NO TMP DIR                   error message    Missing a temporary folder                    break               case UPLOAD ERR CANT WRITE                   error message    Failed to write file to disk                    break               case UPLOAD ERR EXTENSION                   error message    A PHP extension interrupted the upload                    break               default                   error message    Unknown error               break                    return false              error message   null      return true

User · Answer

I checked your code and think you should try this   if  file exists   FILES  fileupload    tmp name        is uploaded file   FILES  fileupload    tmp name                    echo  No upload                else         echo  upload

User · Answer

is uploaded file   is great to use  specially for checking whether it is an uploaded file or a local file  for security purposes    However  if you want to check whether the user uploaded a file   use   FILES  file    error      UPLOAD ERR OK   See the PHP manual on file upload error messages  If you just want to check for no file  use UPLOAD ERR NO FILE

User · Answer

This code worked for me  I am using multiple file uploads so I needed to check whether there has been any upload   HTML part    lt input name  files    type  file  multiple  multiple    gt    PHP part   if isset   FILES  files           foreach   FILES  files    tmp name   as  key   gt   tmp name           if  empty   FILES  files    tmp name    key              things you want to do

User · Answer

You can use is uploaded file     if  file exists   FILES  myfile    tmp name        is uploaded file   FILES  myfile    tmp name           echo  No upload       From the docs      Returns TRUE if the file named by   filename was uploaded via HTTP POST    This is useful to help ensure that a   malicious user hasn t tried to trick   the script into working on files upon   which it should not be working--for   instance   etc passwd       This sort of check is especially   important if there is any chance that   anything done with uploaded files   could reveal their contents to the   user  or even to other users on the   same system    EDIT  I m using this in my FileUpload class  in case it helps   public function fileUploaded         if empty   FILES             return false                     this- gt file     FILES  this- gt formField       if  file exists  this- gt file  tmp name        is uploaded file  this- gt file  tmp name               this- gt errors  FileNotExists     true          return false               return true

User · Answer

In general when the user upload the file  the PHP server doen t catch any exception mistake or errors  it means that the file is uploaded successfully  https   www php net manual en reserved variables files php 109648 if   boolval    FILES  image    error       0

[php] How to check whether the user uploaded a file in PHP?

Examples related to php