Nginx upload module通过nginx服务来接受用户上传的文件,自动解析请求体中存储的所有文件上传到upload_store指定的目录下。这些文件信息从原始请求体中分离并根据nginx.conf中的配置重新组装好上传参数,交由upload_pass指定的段处理,从而允许处理任意上传文件。每个上传文件中的file字段值被一系列的upload_set_form_field指令值替换。每个上传文件的内容可以从$upload_tmp_path变量读取,或者可以将文件转移到目的目录下。上传的文件移除可以通过upload_cleanup指令控制。如果请求的方法不是POST,模块将返回405错误(405 Not Allowed),该错误提示可以通过error_page指令处理。
syntax: upload_pass <location>
default: none
severity: mandatory
context: server, location
syntax: upload_resumable <on/off>
default: off
severity: mandatory
context: main, server, location
syntax: upload_store <directory> [<level 1> [<level 2> ] ... ]
default: none
severity: mandatory
context: server, location
syntax: upload_state_store <directory> [<level 1> [<level 2> ] ... ]
default: none
severity: optional
context: server, location
syntax: upload_store_access <mode>
default: user:rw
severity: optional
context: server, location
syntax: upload_set_form_field <name> <value>
default: none
severity: optional
context: server, location
这些变量只会在处理部分请求体的时候被校验,例如 :
upload_set_form_field $ "$upload_file_name"; upload_set_form_field $upload_field_name.content_type "$upload_content_type"; upload_set_form_field $upload_field_name.path "$upload_tmp_path";
syntax: upload_aggregate_form_field <name> <value>
default: none
severity: optional
context: server, location
指定表单的字段名和字段值, 字段名和字段值可以包含nginx标准的变量,变量由 upload_set_form_field 指定或者使用下面这些变量:
警告: 变量 $upload_file_md5, $upload_file_md5_uc, $upload_file_sha1 和 $upload_file_sha1_uc 会耗用更多的资源来计算 MD5 和 SHA1 校验。
upload_aggregate_form_field $upload_field_name.md5 "$upload_file_md5"; upload_aggregate_form_field $upload_field_name.size "$upload_file_size";
syntax: upload_pass_form_field <regex>
default: none
severity: optional
context: server, location
给字段名指定一个正则表达式,这将会被转发到后端服务器,每个指令都可以设置多个匹配模式。只要碰到了匹配的模式, 指令就会被立刻转发到后端服务器,如果是PCRE不能识别的模式,则会进行精确匹配字段名,匹配了则转发到后端服务器,如果指令被忽略,则不会转发到后端服务器。
upload_pass_form_field "^submit$|^description$";
upload_pass_form_field "submit"; upload_pass_form_field "description";
syntax: upload_cleanup <HTTP status/range> [<HTTP status/range>...]
default: none
severity: optional
context: server, location
upload_cleanup 400 404 499 500-505;
syntax: upload_buffer_size <size>
default: size of memory page in bytes
severity: optional
context: server, location
syntax: upload_max_part_header_len <size>
default: 512
severity: optional
context: server, location
syntax: upload_max_file_size <size>
default: off
severity: optional
context: main, server, location
指定文件的最大尺寸。 文件长度超过该值将会被忽略。该指令是一个软限制,当碰到文件长度超过指定的最大值时,nginx也会继续接收处理请求体。如果要让该值必须起作用,需要通过client_max_body_size的硬限制来设置。该值设置为0,代表没有任何限制。
syntax: upload_limit_rate <rate>
default: 0
severity: optional
context: main, server, location
syntax: upload_max_output_body_len <size>
default: 100k
severity: optional
context: main, server, location
syntax: upload_tame_arrays <on/off>
default: off
severity: optional
context: main, server, location
指定在字段名中的方刮号是否被丢弃 (需要 PHP 数组).。
syntax: upload_pass_args <on/off>
default: off
severity: optional
context: main, server, location
允许转发请求参数, 该参数由 upload_pass.指定 无效的命名位置,例如:
<form action="/upload?id=5"> ... location /upload { upload_pass /internal_upload; upload_pass_args on; } ... location /internal_upload { ... proxy_pass http://backend; }
在这个例子中,后端服务器得到的请求地址为 "/upload?id=5". 该例子中,如果 upload_pass_args 设置为off ,则后端服务器得到的请求地址为 "/upload".
server { client_max_body_size 100m; listen 80; # Upload form should be submitted to this location location /upload { # Pass altered request body to this location upload_pass @test; # Store files to this directory # The directory is hashed, subdirectories 0 1 2 3 4 5 6 7 8 9 should exist upload_store /tmp 1; # Allow uploaded files to be read only by user upload_store_access user:r; # Set specified fields in request body upload_set_form_field $ "$upload_file_name"; upload_set_form_field $upload_field_name.content_type "$upload_content_type"; upload_set_form_field $upload_field_name.path "$upload_tmp_path"; # Inform backend about hash and size of a file upload_aggregate_form_field "$upload_field_name.md5" "$upload_file_md5"; upload_aggregate_form_field "$upload_field_name.size" "$upload_file_size"; upload_pass_form_field "^submit$|^description$"; upload_cleanup 400 404 499 500-505; } # Pass altered request body to a backend location @test { proxy_pass http://localhost:8080; } }
<html> <head> <title>Test upload</title> </head> <body> <h2>Select files to upload</h2> <form name="upload" method="POST" enctype="multipart/form-data" action="/upload"> <input type="file" name="file1"><br> <input type="file" name="file2"><br> <input type="file" name="file3"><br> <input type="file" name="file4"><br> <input type="file" name="file5"><br> <input type="file" name="file6"><br> <input type="submit" name="submit" value="Upload"> <input type="hidden" name="test" value="value"> </form> </body> </html>
