feat: add FileUploadHelper for centralized file upload validation

- Create new FileUploadHelper with validateUploadedFile() and readUploadedFile()
- Centralizes upload validation (error check, is_uploaded_file, filename validation, size check)
- Automatic cleanup (@Unlink) before throwing exceptions
- Comprehensive unit tests with 7 test cases covering all edge cases
- Mock is_uploaded_file() via namespace for testing
- Follows Nextcloud core patterns (AvatarControllerTest)

Signed-off-by: Vitor Mattos <[email protected]>

Author: vitormattos

lib/Helper/FileUploadHelper.php

@@ -0,0 +1,67 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Helper;
+
+use InvalidArgumentException;
+use OC\Files\FilenameValidator;
+use OCP\IL10N;
+
+/**
+ * Helper for validating and processing uploaded files
+ */
+class FileUploadHelper {
+	public function __construct(
+		private IL10N $l10n,
+	) {
+	}
+
+	/**
+	 * Validate uploaded file from $_FILES
+	 *
+	 * @param array $uploadedFile Single file from $_FILES (e.g., $_FILES['file'])
+	 * @throws InvalidArgumentException
+	 */
+	public function validateUploadedFile(array $uploadedFile): void {
+		if ($uploadedFile['error'] !== 0) {
+			@unlink($uploadedFile['tmp_name']);
+			throw new InvalidArgumentException($this->l10n->t('Invalid file provided'));
+		}
+
+		if (!is_uploaded_file($uploadedFile['tmp_name'])) {
+			@unlink($uploadedFile['tmp_name']);
+			throw new InvalidArgumentException($this->l10n->t('Invalid file provided'));
+		}
+
+		$validator = \OCP\Server::get(FilenameValidator::class);
+		if ($validator->isForbidden($uploadedFile['tmp_name'])) {
+			@unlink($uploadedFile['tmp_name']);
+			throw new InvalidArgumentException($this->l10n->t('Invalid file provided'));
+		}
+
+		if ($uploadedFile['size'] > \OCP\Util::uploadLimit()) {
+			@unlink($uploadedFile['tmp_name']);
+			throw new InvalidArgumentException($this->l10n->t('File is too big'));
+		}
+	}
+
+	/**
+	 * Read content from uploaded file
+	 *
+	 * @param array $uploadedFile Single file from $_FILES
+	 * @return string File content
+	 * @throws InvalidArgumentException
+	 */
+	public function readUploadedFile(array $uploadedFile): string {
+		$content = file_get_contents($uploadedFile['tmp_name']);
+		if ($content === false) {
+			throw new InvalidArgumentException($this->l10n->t('Cannot read file'));
+		}
+		return $content;
+	}
+}

lib/Helper/ValidateHelper.php

@@ -78,6 +78,7 @@ public function __construct(
 		private IRootFolder $root,
 	) {
 	}
+
 	public function validateNewFile(array $data, int $type = self::TYPE_TO_SIGN, ?IUser $user = null): void {
 		$this->validateFile($data, $type, $user);
 		if (!empty($data['file']['fileId'])) {

lib/Service/AccountService.php

@@ -9,7 +9,6 @@
 namespace OCA\Libresign\Service;
 
 use InvalidArgumentException;
-use OC\Files\Filesystem;
 use OCA\Libresign\AppInfo\Application;
 use OCA\Libresign\Db\File as FileEntity;
 use OCA\Libresign\Db\FileMapper;
@@ -23,6 +22,7 @@
 use OCA\Libresign\Exception\LibresignException;
 use OCA\Libresign\Handler\CertificateEngine\CertificateEngineFactory;
 use OCA\Libresign\Handler\SignEngine\Pkcs12Handler;
+use OCA\Libresign\Helper\FileUploadHelper;
 use OCA\Libresign\Helper\ValidateHelper;
 use OCA\Settings\Mailer\NewUserMailHelper;
 use OCP\Accounts\IAccountManager;
@@ -77,6 +77,7 @@ public function __construct(
 		private FolderService $folderService,
 		private IClientService $clientService,
 		private ITimeFactory $timeFactory,
+		private FileUploadHelper $uploadHelper,
 	) {
 	}
 
@@ -509,14 +510,13 @@ public function deleteSignatureElement(?IUser $user, string $sessionId, int $nod
 	 * @throws InvalidArgumentException
 	 */
 	public function uploadPfx(array $file, IUser $user): void {
-		if (
-			$file['error'] !== 0
-			|| !is_uploaded_file($file['tmp_name'])
-			|| Filesystem::isFileBlacklisted($file['tmp_name'])
-		) {
+		try {
+			$this->uploadHelper->validateUploadedFile($file);
+		} catch (InvalidArgumentException) {
 			// TRANSLATORS Error when the uploaded certificate file is not valid
 			throw new InvalidArgumentException($this->l10n->t('Invalid file provided. Need to be a .pfx file.'));
 		}
+
 		if ($file['size'] > 10 * 1024) {
 			// TRANSLATORS Error when the certificate file is bigger than normal
 			throw new InvalidArgumentException($this->l10n->t('File is too big'));

lib/Service/FileService.php

@@ -11,7 +11,6 @@
 use DateTime;
 use DateTimeInterface;
 use InvalidArgumentException;
-use OC\Files\Filesystem;
 use OCA\Libresign\AppInfo\Application;
 use OCA\Libresign\Db\File;
 use OCA\Libresign\Db\FileElement;
@@ -24,6 +23,7 @@
 use OCA\Libresign\Exception\LibresignException;
 use OCA\Libresign\Handler\DocMdpHandler;
 use OCA\Libresign\Handler\SignEngine\Pkcs12Handler;
+use OCA\Libresign\Helper\FileUploadHelper;
 use OCA\Libresign\Helper\ValidateHelper;
 use OCA\Libresign\ResponseDefinitions;
 use OCA\Libresign\Service\IdentifyMethod\IIdentifyMethod;
@@ -93,6 +93,7 @@ public function __construct(
 		protected LoggerInterface $logger,
 		protected IL10N $l10n,
 		private EnvelopeService $envelopeService,
+		private FileUploadHelper $uploadHelper,
 	) {
 		$this->docMdpHandler = $docMdpHandler;
 		$this->fileData = new stdClass();
@@ -206,18 +207,7 @@ public function setFileFromRequest(?array $file): self {
 		if ($file === null) {
 			throw new InvalidArgumentException($this->l10n->t('No file provided'));
 		}
-		if (
-			$file['error'] !== 0
-			|| !is_uploaded_file($file['tmp_name'])
-			|| Filesystem::isFileBlacklisted($file['tmp_name'])
-		) {
-			unlink($file['tmp_name']);
-			throw new InvalidArgumentException($this->l10n->t('Invalid file provided'));
-		}
-		if ($file['size'] > \OCP\Util::uploadLimit()) {
-			unlink($file['tmp_name']);
-			throw new InvalidArgumentException($this->l10n->t('File is too big'));
-		}
+		$this->uploadHelper->validateUploadedFile($file);
 
 		$this->fileContent = file_get_contents($file['tmp_name']);
 		$mimeType = $this->mimeTypeDetector->detectString($this->fileContent);

lib/Service/RequestSignatureService.php

@@ -18,6 +18,7 @@
 use OCA\Libresign\Enum\SignatureFlow;
 use OCA\Libresign\Events\SignRequestCanceledEvent;
 use OCA\Libresign\Handler\DocMdpHandler;
+use OCA\Libresign\Helper\FileUploadHelper;
 use OCA\Libresign\Helper\ValidateHelper;
 use OCA\Libresign\Service\IdentifyMethod\IIdentifyMethod;
 use OCP\AppFramework\Db\DoesNotExistException;
@@ -58,6 +59,7 @@ public function __construct(
 		protected SignRequestStatusService $signRequestStatusService,
 		protected DocMdpConfigService $docMdpConfigService,
 		protected EnvelopeService $envelopeService,
+		protected FileUploadHelper $uploadHelper,
 	) {
 	}
 

lib/Service/TFile.php

@@ -10,6 +10,7 @@
 
 use OCA\Libresign\Exception\LibresignException;
 use OCA\Libresign\Handler\DocMdpHandler;
+use OCA\Libresign\Helper\FileUploadHelper;
 use OCA\Libresign\Vendor\setasign\Fpdi\PdfParserService\Type\PdfTypeException;
 use OCP\Files\Node;
 use OCP\Http\Client\IClientService;
@@ -19,6 +20,7 @@ trait TFile {
 	private $mimetype = null;
 	protected IClientService $client;
 	protected DocMdpHandler $docMdpHandler;
+	protected FileUploadHelper $uploadHelper;
 
 	public function getNodeFromData(array $data): Node {
 		if (!$this->folderService->getUserId()) {
@@ -45,6 +47,28 @@ public function getNodeFromData(array $data): Node {
 		return $folderToFile->newFile($data['name'] . '.' . $extension, $content);
 	}
 
+	public function getNodeFromUploadedFile(array $data): Node {
+		if (!$this->folderService->getUserId()) {
+			$this->folderService->setUserId($data['userManager']->getUID());
+		}
+
+		$uploadedFile = $data['uploadedFile'];
+
+		$this->uploadHelper->validateUploadedFile($uploadedFile);
+		$content = $this->uploadHelper->readUploadedFile($uploadedFile);
+
+		$extension = $this->getExtension($content);
+		$this->validateFileContent($content, $extension);
+
+		$userFolder = $this->folderService->getFolder();
+		$folderName = $this->folderService->getFolderName($data, $data['userManager']);
+		$folderToFile = $userFolder->newFolder($folderName);
+
+		@unlink($uploadedFile['tmp_name']);
+
+		return $folderToFile->newFile($data['name'] . '.' . $extension, $content);
+	}
+
 	/**
 	 * @throws \Exception
 	 * @throws LibresignException

tests/php/Unit/Helper/FileUploadHelperTest.php

@@ -0,0 +1,155 @@
+<?php
+
+declare(strict_types=1);
+/**
+ * SPDX-FileCopyrightText: 2025 LibreCode coop and contributors
+ * SPDX-License-Identifier: AGPL-3.0-or-later
+ */
+
+namespace OCA\Libresign\Helper;
+
+function is_uploaded_file($filename) {
+	return file_exists($filename);
+}
+
+namespace OCA\Libresign\Tests\Unit\Helper;
+
+use InvalidArgumentException;
+use OCA\Libresign\Helper\FileUploadHelper;
+use OCP\IL10N;
+use PHPUnit\Framework\MockObject\MockObject;
+use PHPUnit\Framework\TestCase;
+
+class FileUploadHelperTest extends TestCase {
+	private FileUploadHelper $helper;
+	private IL10N&MockObject $l10n;
+	private string $tempFile;
+
+	protected function setUp(): void {
+		parent::setUp();
+
+		$this->l10n = $this->createMock(IL10N::class);
+		$this->l10n->method('t')
+			->willReturnCallback(fn ($text) => $text);
+
+		$this->helper = new FileUploadHelper($this->l10n);
+
+		$this->tempFile = tempnam(sys_get_temp_dir(), 'upload_test_');
+		file_put_contents($this->tempFile, 'test content');
+	}
+
+	protected function tearDown(): void {
+		if (file_exists($this->tempFile)) {
+			@unlink($this->tempFile);
+		}
+		parent::tearDown();
+	}
+
+	public function testValidateUploadedFileSuccess(): void {
+		$uploadedFile = [
+			'tmp_name' => $this->tempFile,
+			'error' => UPLOAD_ERR_OK,
+			'size' => filesize($this->tempFile),
+		];
+
+		$this->helper->validateUploadedFile($uploadedFile);
+
+		$this->assertTrue(file_exists($this->tempFile));
+	}
+
+	public function testValidateUploadedFileWithUploadError(): void {
+		$uploadedFile = [
+			'tmp_name' => $this->tempFile,
+			'error' => UPLOAD_ERR_INI_SIZE,
+			'size' => 0,
+		];
+
+		$this->expectException(InvalidArgumentException::class);
+		$this->expectExceptionMessage('Invalid file provided');
+
+		try {
+			$this->helper->validateUploadedFile($uploadedFile);
+		} finally {
+			$this->assertFalse(file_exists($this->tempFile), 'File should be deleted after error');
+		}
+	}
+
+	public function testValidateUploadedFileNotActuallyUploaded(): void {
+		$nonExistentFile = sys_get_temp_dir() . '/non_existent_file_' . time();
+
+		$uploadedFile = [
+			'tmp_name' => $nonExistentFile,
+			'error' => UPLOAD_ERR_OK,
+			'size' => 100,
+		];
+
+		$this->expectException(InvalidArgumentException::class);
+		$this->expectExceptionMessage('Invalid file provided');
+
+		$this->helper->validateUploadedFile($uploadedFile);
+	}
+
+	public function testValidateUploadedFileTooBig(): void {
+		$uploadedFile = [
+			'tmp_name' => $this->tempFile,
+			'error' => UPLOAD_ERR_OK,
+			'size' => \OCP\Util::uploadLimit() + 1,
+		];
+
+		$this->expectException(InvalidArgumentException::class);
+		$this->expectExceptionMessage('File is too big');
+
+		try {
+			$this->helper->validateUploadedFile($uploadedFile);
+		} finally {
+			$this->assertFalse(file_exists($this->tempFile), 'File should be deleted when too big');
+		}
+	}
+
+	public function testReadUploadedFileSuccess(): void {
+		$expectedContent = 'test file content';
+		file_put_contents($this->tempFile, $expectedContent);
+
+		$uploadedFile = [
+			'tmp_name' => $this->tempFile,
+		];
+
+		$content = $this->helper->readUploadedFile($uploadedFile);
+
+		$this->assertEquals($expectedContent, $content);
+	}
+
+	public function testReadUploadedFileNotReadable(): void {
+		$uploadedFile = [
+			'tmp_name' => '/path/that/does/not/exist.txt',
+		];
+
+		$this->expectException(InvalidArgumentException::class);
+		$this->expectExceptionMessage('Cannot read file');
+
+		$this->helper->readUploadedFile($uploadedFile);
+	}
+
+	public function testValidateUploadedFileWithForbiddenName(): void {
+		$forbiddenFile = sys_get_temp_dir() . '/test<file>.txt';
+
+		if (@file_put_contents($forbiddenFile, 'test') === false) {
+			$this->markTestSkipped('Cannot create file with forbidden characters on this OS');
+			return;
+		}
+
+		$uploadedFile = [
+			'tmp_name' => $forbiddenFile,
+			'error' => UPLOAD_ERR_OK,
+			'size' => filesize($forbiddenFile),
+		];
+
+		try {
+			$this->helper->validateUploadedFile($uploadedFile);
+			@unlink($forbiddenFile);
+		} catch (InvalidArgumentException $e) {
+			$this->assertEquals('Invalid file provided', $e->getMessage());
+			$this->assertFalse(file_exists($forbiddenFile));
+		}
+	}
+}