How to Upload Files With HTML

Written by austingil | Published 2023/03/15
Tech Story Tags: web-development | html | file-uploads | programming | coding | front-end-development | software-development | software-engineering

TLDRThis is the first post in a series about uploading files to the web. The full series will look like: Uploading files with HTML, uploading files with JavaScript and receiving file uploads with Node.js. Optimizing storage costs with Object Storage and Optimizing delivery with a CDN are the next two posts.via the TL;DR App

Today, we are kicking off the first post in a series all about uploading files to the web. In this post, weā€™ll start with the basics of usingĀ HTML. The full series will look like this:

  1. Uploading files with HTML

  2. Uploading files with JavaScript

  3. Receiving file uploads with Node.js (Nuxt.js)

  4. Optimizing storage costs with Object Storage

  5. Optimizing delivery with a CDN

  6. Securing file uploads with malware scans

https://www.youtube.com/watch?v=s2TTck1sj4s&embedable=true

Access Files

The very first step is accessing a file to upload. Unfortunately, or rather, fortunately, browsers canā€™t access our file systems. If they did, it would be a major security concern.

There is work being done on theĀ File System Access API, but itā€™s experimental and will be limited access, so letā€™s just pretend it doesnā€™t exist.

Accessing a file requires user interaction, which means we need something in the UI for the user to interact with. Conveniently, there is theĀ input element with a fileĀ typeĀ attribute.

<input type="file" />

On its own, a file input isnā€™t very useful. It allows a user to select a file from their device, but thatā€™s about it.

To actually send the file to a server, we need to make anĀ HTTP request, which means we need aĀ <form>. Weā€™ll put the file input inside along with aĀ <button>Ā to submit the form.

The input will also need aĀ <label>Ā to make itĀ accessibleĀ for assistive technology, anĀ idĀ attribute to associate it with the label, and aĀ nameĀ attribute in order to include its data along with the HTTP request.

<form>
  <label for="file">File</label>
  <input id="file" type="file" />
  <button>Upload</button>
</form>

Looks good šŸ‘.

Doesnā€™t work good, though šŸ‘Ž.

Include a Request Body

If we watch theĀ network tabĀ as we submit the form, we can see that it generates aĀ GETĀ request, and the payload is sent as aĀ query stringĀ that looks like this: ā€œ?name=filename.txtā€œ. Itā€™s essentially a key-value pair, with the key being the inputĀ nameĀ and the value being the name of the file.

This is sent as a string.

Not quite what weā€™re going for here.

We canā€™t actually send a file using a GET request because you canā€™t put a file in the query string parameters. We need to put the file in theĀ body of the request. To do that, we need to send aĀ POSTĀ request, which we can do by changing the formā€™sĀ methodĀ attribute toĀ "post".

<form method="post">
  <label for="file">File</label>
  <input id="file" name="file" type="file" />
  <button>Upload</button>
</form>

Now, if we explore that request, we can see that we are making a post request. We can also see that the request has a payload containing the formā€™s data. Unfortunately, the data is still just a key-value pair with the inputĀ nameĀ and the filename.

Set the Content-Type

Weā€™re still not actually sending the file, and the reason has to do with the request ā€œContent-Typeā€œ.

By default, when a form is submitted, the request is sent with aĀ Content-TypeĀ ofĀ application/x-www-form-urlencoded.

And unfortunately, we canā€™t send the binary file information asĀ URL-encoded data.

In order to send the file contents asĀ binary data, we have to change theĀ Content-TypeĀ of the request toĀ multipart/form-data. And in order to do that, we can set the formā€™sĀ enctypeĀ attribute.

<form method="post" enctype="multipart/form-data">
  <label for="file">File</label>
  <input id="file" name="file" type="file" />
  <button>Upload</button>
</form>

Now, if we submit the form one more time, we can see the request uses the POST method and has theĀ Content-TypeĀ set toĀ multipart/form-data. In Chromium browsers, youā€™ll no longer see the request payload, but you can see it in the Firefox devtools under the request Params tab.

We did it!!!

Recap

With all that in place, we can upload files using HTML. To re-iterate, sending files with HTML requires three things:

  1. Create an input with theĀ typeĀ of file to access the file system.

  2. Use a form withĀ method="post"Ā to include a body on the request.

  3. Set the requestā€™sĀ Content-TypeĀ toĀ multipart/form-dataĀ using theĀ enctypeĀ attribute.

I hope you learned something new today, and you come back for the rest of the series.

In the rest of the series, weā€™ll cover things like uploading files with JavaScript, receiving files on the backend, optimizing resources and costs with Object Storage, security concerns for uploads, and delivery improvements.

Once again, hereā€™s what the series outline will look like:

  1. Uploading files with HTML

  2. Uploading files with JavaScript

  3. Receiving file uploads with Node.js (Nuxt.js)

  4. Optimizing storage costs with Object Storage

  5. Optimizing delivery with a CDN

  6. Securing file uploads with malware scans

Thank you so much for reading. If you liked this article, pleaseĀ share it. It's one of the best ways to support me. You can alsoĀ sign up for my newsletter,Ā orĀ follow me on TwitterĀ if you want to know when new articles are published.

Also published here.

Written by austingil | I want to help you build better websites. It's fun!
Published by HackerNoon on 2023/03/15
ABOUTHow hackers start their afternoons. We publish tech stories and build publishing software.

READEntirely free library read by hundreds of millions to learn anything about any technology.

WRITEHackerNoon elevates quality technology writing far and wide across the interwebs.

PARTNERHackerNoon works directly with tech companies to place ads by content relevancy