How do I make sure a file path is within a given subdirectory?

Question

I want to make sure a file path set via query string does not go outside of the desired subdirectory. Right now, I am checking that:

1. The path does not start w

Answer 1

Call

$path = realpath("sample/$path");

Then check that the resulting path starts with the directory you're expecting.