File upload restriction to only docx

sghauri · 12 July 2019 03:38

I want to restrict file type. For example I want only docx can be uploaded.

crmspace · 12 July 2019 14:24

Hi,
as far as I remember the config only offers to define “bad” file extensions that can’t be uploaded. You could add a large list of extensions there.

In case no one else has a better idea, you could also dig through the source files and hardcode your restriction.

E: default bad extensions are:

'upload_badext' => 
  array (
    0 => 'php',
    1 => 'php3',
    2 => 'php4',
    3 => 'php5',
    4 => 'pl',
    5 => 'cgi',
    6 => 'py',
    7 => 'asp',
    8 => 'cfm',
    9 => 'js',
    10 => 'vbs',
    11 => 'html',
    12 => 'htm',
    13 => 'phtml',
  ),

cherub-chum · 19 December 2022 12:59

This is checking for Extension of file and adding .txt for the Bad/Restricted file type.
It does not throw any errors on the Front End?

github.com

salesagility/SuiteCRM/blob/hotfix/include/UploadFile.php#L444-L449

      
        
            foreach ($sugar_config['upload_badext'] as $badExt) {
                if (strtolower($this->file_ext) == strtolower($badExt)) {
                    $stored_file_name .= ".txt";
                    $this->file_ext = "txt";
                    break; // no need to look for more
                }

There is another restriction for File Types in the File Field JS but where is it actually getting the array for “restrictUploadsByExtension” is not clear.

github.com

hbartel/SuiteCRM/blob/master/jssource/src_files/include/SugarFields/Fields/File/SugarFieldFile.js#L189-L205

      
        
            isFileExtensionValid: function(fileName) {
                var docType = document.getElementById('doc_type').value;
                var fileExtension = this.getFileExtension(fileName);
                
                if( typeof(SUGAR.eapm[docType]) == 'undefined' || ! SUGAR.eapm[docType].restrictUploadsByExtension ){
                    return true;
                }   
                var whiteSuffixlist = SUGAR.eapm[docType]['restrictUploadsByExtension']; 
                if(whiteSuffixlist.constructor == Array){
                    var results = false;
                    for(var i=0;i<whiteSuffixlist.length;i++){
                        if( fileExtension.toLowerCase() == whiteSuffixlist[i].toLowerCase() ){
                            return true;
                        }
                    }
                }
                return results;

Anyone has thoughts on where to set the js File Type Restrictions ?