Advice on how to make file upload button

Status
This thread has been locked.

Satan

Devil#0666
Supreme
Feedback score
52
Posts
3,667
Reactions
1,442
Resources
0
Hey... so I've been surface level researching how to code a working file upload button.

I saw PHP, MySQL, etc. But I'm wondering whats the standard for security of the files that get uploaded and if anyone here has experience using AWS to host these files securely.

I'm not talking front-end web dev... this is back end I believe.
 
PebbleHost
High performance, consistent uptime and fast support. Minecraft hosting that just works.

Christopher

Floating around
Supreme
Feedback score
8
Posts
2,048
Reactions
1,120
Resources
0
Hey... so I've been surface level researching how to code a working file upload button.

I saw PHP, MySQL, etc. But I'm wondering whats the standard for security of the files that get uploaded and if anyone here has experience using AWS to host these files securely.

I'm not talking front-end web dev... this is back end I believe.
Haha, yes, definitely back-end.

PHP is probably your best option if your not familiar with back-end development, just google around and copy one of your liking.
 

Satan

Devil#0666
Supreme
Feedback score
52
Posts
3,667
Reactions
1,442
Resources
0
I read somewhere along the lines that PHP is not the safest/secure way to upload and store files, some security threats or something. I saw https://github.com/react-dropzone/react-dropzone with using react... wondering if thats more secure somehow and more robust than php?
 

Wvisoecj

Supreme
Feedback score
9
Posts
471
Reactions
677
Resources
0
I read somewhere along the lines that PHP is not the safest/secure way to upload and store files, some security threats or something. I saw https://github.com/react-dropzone/react-dropzone with using react... wondering if thats more secure somehow and more robust than php?

PHP can be secure if you do it right. Just do some basic validation on filenames and filetypes as MarkFreak said. Server-side Javascript can be just as insecure as any other server-side language if done incorrectly. Both PHP and Node.js are time tested and have been around for years. There are best practices for each one.

React and PHP are different things. React will not make your upload process more secure or any less secure. The only security precaution you need to make are in your backend and the connection you have with the backend server. Make sure the connection is secure with TLS with a good crypto suite. Make sure your backend server never executes the uploaded files. After that you're free to put it in Amazon S3 Bucket, GCP Cloud Storage, or local disk. That should cover the basics but there are always more things to learn about it, so I do recommend you go into depth with it after you have something basic working.
 
Status
This thread has been locked.
Top