Logo Questions Linux Laravel Mysql Ubuntu Git Menu
HTML CSS JAVASCRIPT SQL PYTHON PHP BOOTSTRAP JAVA JQUERY R React Kotlin
 

How does one use magic to verify file type in a Django form clean method?

Tags:

django

django-forms

django-file-upload

python-magic

I have written an email form class in Django with a FileField. I want to check the uploaded file for its type via checking its mimetype. Subsequently, I want to limit file types to pdfs, word, and open office documents.

To this end, I have installed python-magic and would like to check file types as follows per the specs for python-magic:

mime = magic.Magic(mime=True)
file_mime_type = mime.from_file('address/of/file.txt')

However, recently uploaded files lack addresses on my server. I also do not know of any method of the mime object akin to "from_file_content" that checks for the mime type given the content of the file.

What is an effective way to use magic to verify file types of uploaded files in Django forms?

like image 286
dangerChihuahua007 Avatar asked Dec 27 '11 17:12

dangerChihuahua007

2 Answers

Stan described good variant with buffer. Unfortunately the weakness of this method is reading file to the memory. Another option is using temporary stored file:

import tempfile
import magic
with tempfile.NamedTemporaryFile() as tmp:
    for chunk in form.cleaned_data['file'].chunks():
        tmp.write(chunk)
    print(magic.from_file(tmp.name, mime=True))

Also, you might want to check the file size:

if form.cleaned_data['file'].size < ...:
    print(magic.from_buffer(form.cleaned_data['file'].read()))
else:
    # store to disk (the code above)

Additionally:

Whether the name can be used to open the file a second time, while the named temporary file is still open, varies across platforms (it can be so used on Unix; it cannot on Windows NT or later).

So you might want to handle it like so:

import os
tmp = tempfile.NamedTemporaryFile(delete=False)
try:
    for chunk in form.cleaned_data['file'].chunks():
        tmp.write(chunk)
    print(magic.from_file(tmp.name, mime=True))
finally:
    os.unlink(tmp.name)
    tmp.close()

Also, you might want to seek(0) after read():

if hasattr(f, 'seek') and callable(f.seek):
    f.seek(0)

Where uploaded data is stored

like image 126
Alexey Savanovich Avatar answered Nov 20 '22 05:11

Alexey Savanovich

Why no trying something like that in your view :

m = magic.Magic()
m.from_buffer(request.FILES['my_file_field'].read())

Or use request.FILES in place of form.cleaned_data if django.forms.Form is really not an option.

like image 5
Stan Avatar answered Nov 20 '22 06:11

Stan
Sign in to Comment

Related questions

How to take db backup in keycloak docker container
Django, Rails Routing...Point?
Why isn't keyword DateField.input_formats recognized in django 1.0.2 and Python 2.5?
How to Modify Choices of ModelMultipleChoiceField
Django form field using SelectDateWidget
Python - Idiom to check if string is empty, print default
Get SQL a Django model has (or would call) on .save()
Storing dynamic fields in Django forms
django unique field
Do a query through a foreignkey in Django
How do I translate the output of a filter in Django
Creating a django signal for user details updation
custom html field in the django admin changelist_view
Django how do i view query in manage shell
How to remove the unselected item in a select and radio input in Django
Trying to get the next value in sequence from a postgres DB, with django
Django: update database schema without losing data
Convert between coordinate systems with GeoDjango
How to print number with commas as thousands separator and decimal places in Python/Django
Django : Cannot Import name xrange

Donate For Us

If you love us? You can donate to us via Paypal or buy me a coffee so we can maintain and grow! Thank you!