[cgiapp] Data validation of file uploads

Nicholas Bamber nicholas at periapt.co.uk
Mon Sep 20 03:01:35 EDT 2010


Really large uploads may well require special handling and that special 
handling is likely to be application specific.
(For example one might want to use a SAX parser or merely copy the data 
to holding area and let a process
on a non-webserver machine process the file.) I am not concerned with 
such edge cases.

For the purposes of my discussion we can assume that, say 5M, is a 
reasonable maximum file size. The modules that I am comparing with do 
slurp the entire file into memory. And by only providing a file handle 
they force the caller to do it more than once.


Michael Peters wrote:
> On 09/19/2010 06:07 PM, Nicholas Bamber wrote:
>
>> That's the approach I am taking at the moment. Any thoughts?
>
> This will make it impossible to use for large uploads because you'll 
> be slurping everything into memory.
>



More information about the cgiapp mailing list