#!/usr/bin/perl -ws

use strict;
use CGI;
use CGI::Carp qw ( fatalsToBrowser );
use File::Basename;

$| = 1;


$CGI::POST_MAX = 1024 * 50000;
#$CGI::POST_MAX = 4096 * 50000;
my $safe_filename_characters = "a-zA-Z0-9_.-";
#my $upload_dir = "/home/mywebsite/htdocs/upload";
my $upload_dir = "/tmp/";

my $query = new CGI;
my $filename = $query->param("file");
 
 

if ( !$filename )
{
print $query->header ( );
print "There was a problem uploading your file (try a smaller file)  > $filename <  .";
exit;
}

my ( $name, $path, $extension ) = fileparse ( $filename, '..*' );
$filename = $name . $extension;
$filename =~ tr/ /_/;
$filename =~ s/[^$safe_filename_characters]//g;

if ( $filename =~ /^([$safe_filename_characters]+)$/ )
{
	$filename = $1;
}
else
{
	die "Filename contains invalid characters";
}

my $upload_filehandle = $query->upload("file");

open ( UPLOADFILE, ">$upload_dir/$filename" ) or die "Here is die $!";
binmode UPLOADFILE;

#if ( <$upload_filehandle> )
if ( <$upload_filehandle> )
{
	print UPLOADFILE;
}

close UPLOADFILE;

print $query->header ( );
print <<END_HTML;
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<title>Thanks!</title>
<style type="text/css">
img {border: none;}
</style>
</head>	
<body>
<p>Thanks for uploading your file!</p>
<p>Your file : $filename</p>
  
</body>
</html>
END_HTML