1. <?php
  3. /**
  4. * Decodes a dataset input for development purposes with defensive checks.
  5. *
  6. * This function prioritizes safety and validation to prevent potential
  7. * vulnerabilities during development. It's not intended for production
  8. * environments where security is paramount.
  9. *
  10. * @param mixed $data The input data to decode. Can be a string, array, or other data type.
  11. * @param string $encoding The encoding of the data (e.g., 'utf-8', 'iso-8859-1'). Defaults to 'utf-8'.
  12. * @param string $type The expected data type (e.g., 'json', 'csv', 'xml'). Defaults to 'json'.
  13. * @param array $options Optional configuration options. Defaults to an empty array.
  14. *
  15. * @return mixed The decoded data, or false on error.
  16. */
  17. function decodeDataset(mixed $data, string $encoding = 'utf-8', string $type = 'json', array $options = []): mixed
  18. {
  19. // Defensive check: Ensure input data is not null or empty.
  20. if (empty($data)) {
  21. error_log("decodeDataset: Input data is empty.");
  22. return false;
  23. }
  25. // Data type validation and handling.
  26. switch ($type) {
  27. case 'json':
  28. // JSON decoding with error handling.
  29. $decodedData = json_decode($data, true, 512, JSON_THROW_ON_ERROR); // Allow large JSON, throw on error
  30. if (json_last_error() !== JSON_ERROR_NONE) {
  31. error_log("decodeDataset: JSON decoding error: " . json_last_error_msg());
  32. return false;
  33. }
  34. break;
  36. case 'csv':
  37. // CSV decoding (basic example - consider using a more robust CSV parser).
  38. $decodedData = [];
  39. if (is_string($data)) {
  40. $rows = explode("\n", $data);
  41. foreach ($rows as $row) {
  42. $fields = explode(',', $row);
  43. $decodedData[] = $fields;
  44. }
  45. } else {
  46. error_log("decodeDataset: Invalid CSV data format.");
  47. return false;
  48. }
  49. break;
  51. case 'xml':
  52. // XML decoding (using simplexml)
  53. try {
  54. $decodedData = simplexml_load_string($data);
  55. } catch (Exception $e) {
  56. error_log("decodeDataset: XML parsing error: " . $e->getMessage());
  57. return false;
  58. }
  59. break;
  61. default:
  62. error_log("decodeDataset: Unsupported data type: " . $type);
  63. return false;
  64. }
  66. //Encoding check and conversion
  67. if(is_string($decodedData)){
  68. if(mb_detect_encoding($decodedData, $encoding, STR_CASE_INSENSITIVE) === false){
  69. $decodedData = mb_convert_encoding($decodedData, $encoding, 'UTF-8');
  70. if($decodedData === false){
  71. error_log("decodeDataset: Could not convert encoding");
  72. return false;
  73. }
  74. }
  75. }
  78. //Additional validation/sanitization (example). Expand as needed.
  79. if (is_array($decodedData)) {
  80. foreach ($decodedData as $key => $value) {
  81. if (is_array($value)) {
  82. // Recursively validate nested arrays.
  83. }
  84. }
  85. }
  88. return $decodedData;
  89. }
  91. ?>

Add your comment