tags:

views:

26

answers:

1
+1  Q: 

Blob extension validation

Hey!

I use the following to insert a JPEG into a blob field:

db.Blob(self.request.get("imgFile"))

How can I check if "imgFile" is a JPEG?

I dont want to let people upload EXEs, etc.

Thank

Joel

A: 

The magic number for a JPEG file is FFD8 according to this site. What you could do is look at the two first bytes to see if they match before inserting the blob into the datastore.

Gab Royer  2010-08-02 14:55:57

related questions

.html() jQuery method bizzare bug -   resolves to empty space locally, but not on production.
cron jobs on google appengine
How do I get the key value of a db.ReferenceProperty without a database hit?
Is Google App Engine a worthy platform for a Lifestreaming app?
Sure Google Appengine scales, but is it also fast?
Feedback on using Google App Engine?
Delete all data for a kind in Google App Engine
How can I unit test responses from the webapp WSGI application in Google App Engine?
How to think in data stores instead of databases?
How do you access an authenticated Google App Engine service from a (non-web) python client?
Google App Engine: how can I programmatically access the properties of my Model class?
Upload files in Google App Engine
How do you design data models for Bigtable/Datastore (GAE) ?
Anyone out there using web2py?
Which python framework is best for web development in google app engine?
How can I access App Engine through a Corporate proxy?
What's a good way to find relative paths in Google App Engine?
Any good AJAX framework for Google App Engine apps?
Python: No module named core.exceptions
Project structure for Google App Engine
Google App Engine: Is it possible to do a Gql LIKE query?
How to get the correct Content-Length for a POST request.
Deleting an Google App Engine application
Django Templates and variable attributes.
Graphing JavaScript Library