901 lines
29 KiB
PHP
901 lines
29 KiB
PHP
<?php
|
|
|
|
// Pandora FMS - http://pandorafms.com
|
|
// ==================================================
|
|
// Copyright (c) 2005-2011 Artica Soluciones Tecnologicas
|
|
// Please see http://pandorafms.org for full contribution list
|
|
|
|
// This program is free software; you can redistribute it and/or
|
|
// modify it under the terms of the GNU Lesser General Public License
|
|
// as published by the Free Software Foundation; version 2
|
|
|
|
// This program is distributed in the hope that it will be useful,
|
|
// but WITHOUT ANY WARRANTY; without even the implied warranty of
|
|
// MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
|
|
// GNU General Public License for more details.
|
|
|
|
/**
|
|
* @package Include
|
|
* @subpackage Filemanager
|
|
*/
|
|
|
|
/**#@+
|
|
* Constants
|
|
*/
|
|
define ('MIME_UNKNOWN', 0);
|
|
define ('MIME_DIR', 1);
|
|
define ('MIME_IMAGE', 2);
|
|
define ('MIME_ZIP', 3);
|
|
define ('MIME_TEXT', 4);
|
|
/**#@-*/
|
|
|
|
if (!function_exists ('mime_content_type')) {
|
|
/**
|
|
* Gets the MIME type of a file.
|
|
*
|
|
* Help function in case mime_magic is not loaded on PHP.
|
|
*
|
|
* @param string Filename to get MIME type.
|
|
*
|
|
* @return The MIME type of the file.
|
|
*/
|
|
function mime_content_type ($filename) {
|
|
$mime_types = array (
|
|
'txt' => 'text/plain',
|
|
'htm' => 'text/html',
|
|
'html' => 'text/html',
|
|
'php' => 'text/html',
|
|
'css' => 'text/css',
|
|
'js' => 'application/javascript',
|
|
'json' => 'application/json',
|
|
'xml' => 'application/xml',
|
|
'swf' => 'application/x-shockwave-flash',
|
|
'flv' => 'video/x-flv',
|
|
// images
|
|
'png' => 'image/png',
|
|
'jpe' => 'image/jpeg',
|
|
'jpeg' => 'image/jpeg',
|
|
'jpg' => 'image/jpeg',
|
|
'gif' => 'image/gif',
|
|
'bmp' => 'image/bmp',
|
|
'ico' => 'image/vnd.microsoft.icon',
|
|
'tiff' => 'image/tiff',
|
|
'tif' => 'image/tiff',
|
|
'svg' => 'image/svg+xml',
|
|
'svgz' => 'image/svg+xml',
|
|
// archives
|
|
'zip' => 'application/zip',
|
|
'rar' => 'application/x-rar-compressed',
|
|
'exe' => 'application/x-msdownload',
|
|
'msi' => 'application/x-msdownload',
|
|
'cab' => 'application/vnd.ms-cab-compressed',
|
|
'gz' => 'application/x-gzip',
|
|
'gz' => 'application/x-bzip2',
|
|
// audio/video
|
|
'mp3' => 'audio/mpeg',
|
|
'qt' => 'video/quicktime',
|
|
'mov' => 'video/quicktime',
|
|
// adobe
|
|
'pdf' => 'application/pdf',
|
|
'psd' => 'image/vnd.adobe.photoshop',
|
|
'ai' => 'application/postscript',
|
|
'eps' => 'application/postscript',
|
|
'ps' => 'application/postscript',
|
|
// ms office
|
|
'doc' => 'application/msword',
|
|
'rtf' => 'application/rtf',
|
|
'xls' => 'application/vnd.ms-excel',
|
|
'ppt' => 'application/vnd.ms-powerpoint',
|
|
// open office
|
|
'odt' => 'application/vnd.oasis.opendocument.text',
|
|
'ods' => 'application/vnd.oasis.opendocument.spreadsheet'
|
|
);
|
|
|
|
$ext_fields = explode ('.', $filename);
|
|
$ext = array_pop ($ext_fields);
|
|
$ext = strtolower ($ext);
|
|
if (array_key_exists ($ext, $mime_types)) {
|
|
return $mime_types[$ext];
|
|
}
|
|
elseif (function_exists ('finfo_open')) {
|
|
$finfo = finfo_open (FILEINFO_MIME);
|
|
$mimetype = finfo_file ($finfo, $filename);
|
|
finfo_close ($finfo);
|
|
return $mimetype;
|
|
}
|
|
else {
|
|
$temp = exec ("file ".$filename);
|
|
if (isset($temp) && $temp != '')
|
|
return $temp;
|
|
else
|
|
return 'application/octet-stream';
|
|
}
|
|
}
|
|
}
|
|
|
|
global $config;
|
|
|
|
if (isset($config['homedir_filemanager'])) {
|
|
$homedir_filemanager = io_safe_output($config['homedir_filemanager']);
|
|
}
|
|
else {
|
|
$homedir_filemanager = $config['homedir'];
|
|
}
|
|
|
|
$upload_file_or_zip = (bool) get_parameter('upload_file_or_zip');
|
|
|
|
if ($upload_file_or_zip) {
|
|
$decompress = get_parameter('decompress');
|
|
if (!$decompress) {
|
|
$upload_file = true;
|
|
$upload_zip = false;
|
|
}
|
|
else {
|
|
$upload_file = false;
|
|
$upload_zip = true;
|
|
}
|
|
}
|
|
else {
|
|
$upload_file = (bool) get_parameter ('upload_file');
|
|
$upload_zip = (bool) get_parameter ('upload_zip');
|
|
}
|
|
|
|
// Upload file
|
|
if ($upload_file) {
|
|
// Load global vars
|
|
global $config;
|
|
|
|
$config['filemanager'] = array();
|
|
$config['filemanager']['correct_upload_file'] = 0;
|
|
$config['filemanager']['message'] = null;
|
|
|
|
check_login ();
|
|
|
|
if (! check_acl ($config['id_user'], 0, "AW")) {
|
|
db_pandora_audit("ACL Violation", "Trying to access File manager");
|
|
require ("general/noaccess.php");
|
|
return;
|
|
}
|
|
|
|
if (isset ($_FILES['file']) && $_FILES['file']['name'] != "") {
|
|
$filename = $_FILES['file']['name'];
|
|
$filesize = $_FILES['file']['size'];
|
|
$real_directory = io_safe_output((string) get_parameter('real_directory'));
|
|
$directory = io_safe_output((string) get_parameter ('directory'));
|
|
$umask = io_safe_output((string) get_parameter('umask', ''));
|
|
|
|
$hash = get_parameter('hash', '');
|
|
$testHash = md5($real_directory . $directory . $config['dbpass']);
|
|
|
|
if ($hash != $testHash) {
|
|
$config['filemanager']['message'] =
|
|
ui_print_error_message(__('Security error'), '', true);
|
|
}
|
|
else {
|
|
// Copy file to directory and change name
|
|
if ($directory == '') {
|
|
$nombre_archivo = $real_directory .'/'. $filename;
|
|
}
|
|
else {
|
|
$nombre_archivo = $homedir_filemanager . '/' .
|
|
$directory . '/' . $filename;
|
|
}
|
|
|
|
if (! @copy ($_FILES['file']['tmp_name'], $nombre_archivo )) {
|
|
$config['filemanager']['message'] = ui_print_error_message(__('Upload error'), '', true);
|
|
}
|
|
else {
|
|
if ($umask !== '') {
|
|
chmod($nombre_archivo, $umask);
|
|
}
|
|
|
|
$config['filemanager']['correct_upload_file'] = 1;
|
|
$config['filemanager']['message'] = ui_print_success_message(__('Upload correct'), '', true);
|
|
|
|
// Delete temporal file
|
|
unlink ($_FILES['file']['tmp_name']);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
if (isset($_SERVER['CONTENT_LENGTH'])) {
|
|
// Control the max_post_size exceed
|
|
if (intval($_SERVER['CONTENT_LENGTH']) > 0 && empty($_POST) AND empty($_FILES)) {
|
|
$config['filemanager']['correct_upload_file'] = 0;
|
|
$config['filemanager']['message'] = ui_print_error_message(__('File size seems to be too large. Please check your php.ini configuration or contact with the administrator'), '', true);
|
|
}
|
|
}
|
|
|
|
// Create text file
|
|
$create_text_file = (bool) get_parameter ('create_text_file');
|
|
if ($create_text_file) {
|
|
// Load global vars
|
|
global $config;
|
|
|
|
$config['filemanager'] = array();
|
|
$config['filemanager']['correct_upload_file'] = 0;
|
|
$config['filemanager']['message'] = null;
|
|
|
|
check_login ();
|
|
|
|
if (! check_acl ($config['id_user'], 0, "AW")) {
|
|
db_pandora_audit("ACL Violation", "Trying to access File manager");
|
|
require ("general/noaccess.php");
|
|
return;
|
|
}
|
|
|
|
$filename = io_safe_output(get_parameter('name_file'));
|
|
|
|
if ($filename != "") {
|
|
|
|
$real_directory = (string) get_parameter('real_directory');
|
|
$real_directory = io_safe_output($real_directory);
|
|
$directory = (string) get_parameter ('directory');
|
|
$directory = io_safe_output($directory);
|
|
$umask = (string)get_parameter('umask', '');
|
|
|
|
$hash = get_parameter('hash', '');
|
|
$testHash = md5($real_directory . $directory . $config['dbpass']);
|
|
|
|
if ($hash != $testHash) {
|
|
ui_print_error_message(__('Security error'), '', true);
|
|
}
|
|
else {
|
|
if ($directory == '') {
|
|
$nombre_archivo = $real_directory . '/' . $filename;
|
|
}
|
|
else {
|
|
$nombre_archivo = $homedir_filemanager . '/' .
|
|
$directory . '/' . $filename;
|
|
}
|
|
|
|
if (! @touch($nombre_archivo)) {
|
|
$config['filemanager']['message'] = ui_print_error_message(__('Error creating file'), '', true);
|
|
}
|
|
else {
|
|
if ($umask !== '') {
|
|
chmod($nombre_archivo, $umask);
|
|
}
|
|
|
|
$config['filemanager']['message'] = ui_print_success_message(__('Upload correct'), '', true);
|
|
$config['filemanager']['correct_upload_file'] = 1;
|
|
}
|
|
}
|
|
}
|
|
else {
|
|
$config['filemanager']['message'] = ui_print_error_message(__('Error creating file with empty name'), '', true);
|
|
}
|
|
}
|
|
|
|
// Upload zip
|
|
if ($upload_zip) {
|
|
// Load global vars
|
|
global $config;
|
|
|
|
$config['filemanager'] = array();
|
|
$config['filemanager']['correct_upload_file'] = 0;
|
|
$config['filemanager']['message'] = null;
|
|
|
|
check_login ();
|
|
|
|
if (! check_acl ($config['id_user'], 0, "AW")) {
|
|
db_pandora_audit("ACL Violation", "Trying to access File manager");
|
|
require ("general/noaccess.php");
|
|
return;
|
|
}
|
|
|
|
if (isset ($_FILES['file']) && $_FILES['file']['name'] != "") {
|
|
$filename = $_FILES['file']['name'];
|
|
$filesize = $_FILES['file']['size'];
|
|
$real_directory = (string) get_parameter('real_directory');
|
|
$real_directory = io_safe_output($real_directory);
|
|
$directory = (string) get_parameter ('directory');
|
|
$directory = io_safe_output($directory);
|
|
|
|
$hash = get_parameter('hash', '');
|
|
$testHash = md5($real_directory . $directory . $config['dbpass']);
|
|
|
|
if ($hash != $testHash) {
|
|
$config['filemanager']['message'] = ui_print_error_message(__('Security error'), '', true);
|
|
}
|
|
else {
|
|
// Copy file to directory and change name
|
|
if ($directory == '') {
|
|
$nombre_archivo = $real_directory .'/'. $filename;
|
|
}
|
|
else {
|
|
$nombre_archivo = $homedir_filemanager . '/'.$directory.'/'.$filename;
|
|
}
|
|
|
|
if (! @copy ($_FILES['file']['tmp_name'], $nombre_archivo )) {
|
|
$config['filemanager']['message'] = ui_print_error_message(__('Attach error'), '', true);
|
|
}
|
|
else {
|
|
// Delete temporal file
|
|
unlink ($_FILES['file']['tmp_name']);
|
|
|
|
//Extract the zip file
|
|
$zip = new ZipArchive;
|
|
$pathname = $homedir_filemanager . '/'.$directory.'/';
|
|
|
|
if ($zip->open($nombre_archivo) === true) {
|
|
$zip->extractTo($pathname);
|
|
unlink($nombre_archivo);
|
|
}
|
|
$config['filemanager']['message'] = ui_print_success_message(__('Upload correct'), '', true);
|
|
$config['filemanager']['correct_upload_file'] = 1;
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
// CREATE DIR
|
|
$create_dir = (bool) get_parameter ('create_dir');
|
|
if ($create_dir) {
|
|
global $config;
|
|
|
|
$config['filemanager'] = array();
|
|
$config['filemanager']['correct_create_dir'] = 0;
|
|
$config['filemanager']['message'] = null;
|
|
|
|
$directory = (string) get_parameter ('directory', "/");
|
|
$directory = io_safe_output($directory);
|
|
$hash = get_parameter('hash', '');
|
|
$testHash = md5($directory . $config['dbpass']);
|
|
|
|
if ($hash != $testHash) {
|
|
ui_print_error_message(__('Security error.'));
|
|
}
|
|
else {
|
|
$dirname = (string) get_parameter ('dirname');
|
|
$dirname = io_safe_output($dirname);
|
|
|
|
if ($dirname != '') {
|
|
@mkdir ($homedir_filemanager . '/' .
|
|
$directory . '/' . $dirname);
|
|
$config['filemanager']['message'] = ui_print_success_message(__('Directory created'), '', true);
|
|
|
|
$config['filemanager']['correct_create_dir'] = 1;
|
|
}
|
|
else {
|
|
$config['filemanager']['message'] = ui_print_error_message(__('Error creating file with empty name'), '', true);
|
|
}
|
|
}
|
|
}
|
|
|
|
//DELETE FILE OR DIR
|
|
$delete_file = (bool) get_parameter ('delete_file');
|
|
if ($delete_file) {
|
|
global $config;
|
|
|
|
$config['filemanager'] = array();
|
|
$config['filemanager']['delete'] = 0;
|
|
$config['filemanager']['message'] = null;
|
|
|
|
$filename = (string) get_parameter ('filename');
|
|
$filename = io_safe_output($filename);
|
|
$hash = get_parameter('hash', '');
|
|
$testHash = md5($filename . $config['dbpass']);
|
|
|
|
if ($hash != $testHash) {
|
|
$config['filemanager']['message'] = ui_print_error_message(__('Security error'), '', true);
|
|
}
|
|
else {
|
|
$config['filemanager']['message'] = ui_print_success_message(__('Deleted'), '', true);
|
|
|
|
if (is_dir ($filename)) {
|
|
rmdir ($filename);
|
|
$config['filemanager']['delete'] = 1;
|
|
}
|
|
else {
|
|
unlink ($filename);
|
|
$config['filemanager']['delete'] = 1;
|
|
}
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Recursive delete directory and empty or not directory.
|
|
*
|
|
* @param string $dir The dir to deletete
|
|
*/
|
|
function filemanager_delete_directory($dir) {
|
|
// Windows compatibility
|
|
$dir = str_replace("\\", "/", $dir);
|
|
|
|
if ($handle = opendir($dir)) {
|
|
while (false !== ($file = readdir($handle))) {
|
|
if (($file != ".") && ($file != "..")) {
|
|
|
|
if (is_dir($dir . $file)) {
|
|
if (!rmdir($dir . $file)) {
|
|
filemanager_delete_directory($dir . $file . '/');
|
|
}
|
|
}
|
|
else {
|
|
unlink($dir . $file);
|
|
}
|
|
}
|
|
}
|
|
closedir($handle);
|
|
rmdir($dir);
|
|
}
|
|
}
|
|
|
|
/**
|
|
* Read a directory recursibly and return a array with the files with
|
|
* the absolute path and relative
|
|
*
|
|
* @param string $dir absoute dir to scan
|
|
* @param string $relative_path Relative path to scan, by default ''
|
|
*
|
|
* @return array The files in the dirs, empty array for empty dir of files.
|
|
*/
|
|
function filemanager_read_recursive_dir($dir, $relative_path = '', $add_empty_dirs = false) {
|
|
$return = array();
|
|
|
|
// Windows compatibility
|
|
$dir = str_replace("\\", "/", $dir);
|
|
$relative_path = str_replace("\\", "/", $relative_path);
|
|
|
|
if ($handle = opendir($dir))
|
|
{
|
|
while (false !== ($entry = readdir($handle))) {
|
|
if (($entry != ".") && ($entry != "..")) {
|
|
if (is_dir($dir . $entry)) {
|
|
$return[] = array(
|
|
'relative' => $relative_path . $entry,
|
|
'absolute' => $dir . $entry,
|
|
'dir' => true);
|
|
|
|
$return = array_merge($return,
|
|
filemanager_read_recursive_dir(
|
|
$dir . $entry . '/', $relative_path . $entry . '/',
|
|
'', $add_empty_dirs));
|
|
}
|
|
else {
|
|
$return[] = array(
|
|
'relative' => $relative_path . $entry,
|
|
'absolute' => $dir . $entry,
|
|
'dir' => false);
|
|
}
|
|
}
|
|
}
|
|
closedir($handle);
|
|
}
|
|
|
|
return $return;
|
|
}
|
|
|
|
/**
|
|
* The main function to show the directories and files.
|
|
*
|
|
* @param string $real_directory The string of dir as realpath.
|
|
* @param string $relative_directory The string of dir as relative path.
|
|
* @param string $url The url to set in the forms and some links in the explorer.
|
|
* @param string $father The directory father don't navigate bottom this.
|
|
* @param boolean $editor The flag to set the edition of text files.
|
|
* @param string $url_file The url to put in the files instead the default. By default empty string and use the url of filemanager.
|
|
* @param boolean $download_button The flag to show download button, by default false.
|
|
* @param string $umask The umask as hex values to set the new files or updload.
|
|
*/
|
|
function filemanager_file_explorer($real_directory, $relative_directory,
|
|
$url, $father = '', $editor = false, $readOnly = false,
|
|
$url_file = '', $download_button = false, $umask = '',
|
|
$homedir_filemanager = false) {
|
|
|
|
global $config;
|
|
|
|
|
|
// Windows compatibility
|
|
$real_directory = str_replace("\\", "/", $real_directory);
|
|
$relative_directory = str_replace("\\", "/", $relative_directory);
|
|
$father = str_replace("\\", "/", $father);
|
|
|
|
if ($homedir_filemanager === false) {
|
|
$homedir_filemanager = $config['homedir'];
|
|
unset($config['homedir_filemanager']);
|
|
config_update_value('homedir_filemanager',
|
|
$homedir_filemanager);
|
|
}
|
|
else {
|
|
$config['homedir_filemanager'] = $homedir_filemanager;
|
|
|
|
}
|
|
|
|
|
|
|
|
$hack_metaconsole = '';
|
|
if (defined('METACONSOLE'))
|
|
$hack_metaconsole = '../../';
|
|
|
|
?>
|
|
<script type="text/javascript">
|
|
function show_form_create_folder() {
|
|
show_main_buttons_folder()
|
|
$("#table_filemanager-1").css('display', '');
|
|
|
|
$("#main_buttons").css("display", "none");
|
|
$("#create_folder").css("display", "");
|
|
}
|
|
|
|
function show_upload_file() {
|
|
show_main_buttons_folder()
|
|
$("#table_filemanager-1").css('display', '');
|
|
|
|
$("#main_buttons").css("display", "none");
|
|
$("#upload_file").css("display", "");
|
|
}
|
|
|
|
function show_create_text_file() {
|
|
show_main_buttons_folder()
|
|
$("#table_filemanager-1").css('display', '');
|
|
|
|
$("#main_buttons").css("display", "none");
|
|
$("#create_text_file").css("display", "");
|
|
}
|
|
|
|
function show_main_buttons_folder() {
|
|
$("#table_filemanager-1").css('display', 'none');
|
|
$("#create_folder").css("display", "none");
|
|
$("#upload_file").css("display", "none");
|
|
$("#create_text_file").css("display", "none");
|
|
}
|
|
</script>
|
|
<?php
|
|
|
|
// List files
|
|
if (! is_dir ($real_directory)) {
|
|
echo __('Directory %s doesn\'t exist!', $relative_directory);
|
|
return;
|
|
}
|
|
|
|
$files = filemanager_list_dir ($real_directory);
|
|
|
|
$table = new stdClass();
|
|
$table->width = '100%';
|
|
$table->id = 'table_filemanager';
|
|
if (!defined('METACONSOLE')) {
|
|
$table->class = 'databox data';
|
|
$table->title = '<span>' . __('Index of %s', $relative_directory) . '</span>';
|
|
}
|
|
if (defined('METACONSOLE')) {
|
|
$table->class = 'databox_tactical';
|
|
$table->title = '<span>' . __('Index of images') . '</span>';
|
|
}
|
|
$table->colspan = array ();
|
|
$table->data = array ();
|
|
$table->head = array ();
|
|
$table->size = array ();
|
|
|
|
$table->align[1] = 'left';
|
|
$table->align[2] = 'left';
|
|
$table->align[3] = 'left';
|
|
$table->align[4] = 'left';
|
|
|
|
$table->size[0] = '24px';
|
|
|
|
$table->head[0] = '';
|
|
$table->head[1] = __('Name');
|
|
$table->head[2] = __('Last modification');
|
|
$table->head[3] = __('Size');
|
|
$table->head[4] = __('Actions');
|
|
if (!defined('METACONSOLE')) {
|
|
$table->headstyle[0] = 'background-color:#82B92E';
|
|
$table->headstyle[1] = 'background-color:#82B92E';
|
|
$table->headstyle[2] = 'background-color:#82B92E';
|
|
$table->headstyle[3] = 'background-color:#82B92E';
|
|
$table->headstyle[4] = 'background-color:#82B92E';
|
|
}
|
|
$prev_dir = explode ("/", $relative_directory);
|
|
$prev_dir_str = "";
|
|
for ($i = 0; $i < (count ($prev_dir) - 1); $i++) {
|
|
$prev_dir_str .= $prev_dir[$i];
|
|
if ($i < (count ($prev_dir) - 2))
|
|
$prev_dir_str .= "/";
|
|
}
|
|
|
|
|
|
if (($prev_dir_str != '') && ($father != $relative_directory)) {
|
|
$table->data[0][0] = html_print_image ('images/go_previous.png', true);
|
|
$table->data[0][1] = '<a href="' . $url . '&directory='.$prev_dir_str.'&hash2=' . md5($prev_dir_str.$config['dbpass']) . '">';
|
|
$table->data[0][1] .= __('Parent directory');
|
|
$table->data[0][1] .='</a>';
|
|
|
|
$table->colspan[0][1] = 5;
|
|
}
|
|
|
|
if (is_writable ($real_directory)) {
|
|
$table->rowstyle[1] = 'display: none;';
|
|
$table->data[1][0] = '';
|
|
$table->data[1][1] = '';
|
|
|
|
$table->data[1][1] .= '<div id="create_folder" style="display: none;">';
|
|
$table->data[1][1] .= '<form method="post" action="' . $url . '">';
|
|
$table->data[1][1] .= html_print_input_text ('dirname', '', '', 30, 255, true);
|
|
$table->data[1][1] .= ' ' . html_print_submit_button (__('Create'), 'crt', false, 'class="sub next"', true);
|
|
|
|
$table->data[1][1] .= ' ' . html_print_button(__('Close'), 'close',
|
|
false, 'show_main_buttons_folder();', "class='sub cancel'", true);
|
|
|
|
$table->data[1][1] .= html_print_input_hidden ('directory', $relative_directory, true);
|
|
$table->data[1][1] .= html_print_input_hidden ('create_dir', 1, true);
|
|
$table->data[1][1] .= html_print_input_hidden('hash', md5($relative_directory . $config['dbpass']), true);
|
|
$table->data[1][1] .= html_print_input_hidden('hash2', md5($relative_directory . $config['dbpass']), true);
|
|
$table->data[1][1] .= '</form>';
|
|
$table->data[1][1] .= '</div>';
|
|
|
|
$table->data[1][1] .= '<div id="upload_file" style="display: none;">';
|
|
|
|
$table->data[1][1] .= '<form method="post" action="' . $url . '" enctype="multipart/form-data">';
|
|
$table->data[1][1] .= ui_print_help_tip (__("The zip upload in this dir, easy to upload multiple files."), true);
|
|
$table->data[1][1] .= html_print_input_file ('file', true, false);
|
|
$table->data[1][1] .= html_print_input_hidden('umask', $umask, true);
|
|
$table->data[1][1] .= html_print_checkbox('decompress', 1, false, true);
|
|
$table->data[1][1] .= __('Decompress');
|
|
$table->data[1][1] .= ' ';
|
|
$table->data[1][1] .= ' ' . html_print_submit_button (__('Go'), 'go', false, 'class="sub next"', true);
|
|
|
|
$table->data[1][1] .= ' ' . html_print_button(__('Close'), 'close',
|
|
false, 'show_main_buttons_folder();', "class='sub cancel'", true);
|
|
|
|
$table->data[1][1] .= html_print_input_hidden ('real_directory', $real_directory, true);
|
|
$table->data[1][1] .= html_print_input_hidden ('directory', $relative_directory, true);
|
|
$table->data[1][1] .= html_print_input_hidden('hash', md5($real_directory . $relative_directory . $config['dbpass']), true);
|
|
$table->data[1][1] .= html_print_input_hidden('hash2', md5($relative_directory . $config['dbpass']), true);
|
|
$table->data[1][1] .= html_print_input_hidden ('upload_file_or_zip', 1, true);
|
|
$table->data[1][1] .= '</form>';
|
|
$table->data[1][1] .= '</div>';
|
|
|
|
$table->data[1][1] .= '<div id="create_text_file" style="display: none;">';
|
|
$table->data[1][1] .= '<form method="post" action="' . $url . '">';
|
|
$table->data[1][1] .= html_print_input_text('name_file', '', '', 30, 50, true);
|
|
$table->data[1][1] .= ' ' . html_print_submit_button (__('Create'), 'create', false, 'class="sub next"', true);
|
|
|
|
$table->data[1][1] .= ' ' . html_print_button(__('Close'), 'close',
|
|
false, 'show_main_buttons_folder();', "class='sub cancel'", true);
|
|
|
|
$table->data[1][1] .= html_print_input_hidden ('real_directory', $real_directory, true);
|
|
$table->data[1][1] .= html_print_input_hidden ('directory', $relative_directory, true);
|
|
$table->data[1][1] .= html_print_input_hidden('hash', md5($real_directory . $relative_directory . $config['dbpass']), true);
|
|
$table->data[1][1] .= html_print_input_hidden('umask', $umask, true);
|
|
$table->data[1][1] .= html_print_input_hidden ('create_text_file', 1, true);
|
|
$table->data[1][1] .= '</form>';
|
|
$table->data[1][1] .= '</div>';
|
|
|
|
$table->colspan[1][1] =5;
|
|
}
|
|
|
|
foreach ($files as $fileinfo) {
|
|
|
|
$fileinfo['realpath'] = str_replace("\\", "/", $fileinfo['realpath']);
|
|
$relative_path = str_replace($_SERVER['DOCUMENT_ROOT'], '', $fileinfo['realpath']);
|
|
|
|
$data = array ();
|
|
|
|
switch ($fileinfo['mime']) {
|
|
case MIME_DIR:
|
|
$data[0] = html_print_image ('images/mimetypes/directory.png', true, array('title' => __('Directory')));
|
|
break;
|
|
case MIME_IMAGE:
|
|
$data[0] = html_print_image ('images/mimetypes/image.png', true, array('title' => __('Image')));
|
|
break;
|
|
case MIME_ZIP:
|
|
$data[0] = html_print_image ('images/mimetypes/zip.png', true, array('title' => __('Compressed file')));
|
|
break;
|
|
case MIME_TEXT:
|
|
$data[0] = html_print_image ('images/mimetypes/text.png', true, array('title' => __('Text file')));
|
|
break;
|
|
case MIME_UNKNOWN:
|
|
if ($fileinfo['size'] == 0) {
|
|
|
|
if ((strstr($fileinfo['name'], '.txt') !== false)||(strstr($fileinfo['name'], '.conf') !== false)||(strstr($fileinfo['name'], '.sql') !== false)||(strstr($fileinfo['name'], '.pl') !== false)) {
|
|
$fileinfo['mime'] = MIME_TEXT;
|
|
$data[0] = html_print_image ('images/mimetypes/text.png', true, array('title' => __('Text file')));
|
|
}else{
|
|
//unknow
|
|
$data[0] = '';
|
|
}
|
|
}else{
|
|
//pdf
|
|
$data[0] = '';
|
|
}
|
|
break;
|
|
default:
|
|
$data[0] = html_print_image ('images/mimetypes/unknown.png', true, array('title' => __('Unknown')));
|
|
break;
|
|
}
|
|
|
|
if ($fileinfo['is_dir']) {
|
|
$data[1] = '<a href="' . $url . '&directory='.$relative_directory.'/'.$fileinfo['name'].'&hash2=' . md5($relative_directory.'/'.$fileinfo['name'].$config['dbpass']) . '">'.$fileinfo['name'].'</a>';
|
|
}
|
|
else if (!empty($url_file)) {
|
|
//Set the custom url file
|
|
$url_file_clean = str_replace('[FILE_FULLPATH]', $fileinfo['realpath'], $url_file);
|
|
|
|
$data[1] = '<a href="' . $url_file_clean . '">' . $fileinfo['name'] . '</a>';
|
|
}
|
|
else {
|
|
$hash = md5($relative_path . $config['dbpass']);
|
|
$data[1] = '<a href="' . $hack_metaconsole . 'include/get_file.php?file='.urlencode(base64_encode($relative_path)).'&hash=' . $hash . '">'.$fileinfo['name'].'</a>';
|
|
}
|
|
|
|
// Notice that uploaded php files could be dangerous
|
|
if (pathinfo($fileinfo['realpath'], PATHINFO_EXTENSION) == 'php' &&
|
|
(is_readable($fileinfo['realpath']) || is_executable($fileinfo['realpath']))) {
|
|
$error_message = __('This file could be executed by any user');
|
|
$error_message .= '. ' . __('Make sure it can\'t perform dangerous tasks');
|
|
$data[1] = '<span class="error forced_title" data-title="' . $error_message . '" data-use_title_for_force_title="1">'
|
|
. $data[1]
|
|
. '</span>';
|
|
}
|
|
|
|
$data[2] = ui_print_timestamp ($fileinfo['last_modified'], true,
|
|
array ('prominent' => true));
|
|
if ($fileinfo['is_dir']) {
|
|
$data[3] = '';
|
|
}
|
|
else {
|
|
$data[3] = ui_format_filesize($fileinfo['size']);
|
|
}
|
|
|
|
//Actions buttons
|
|
//Delete button
|
|
$data[4] = '';
|
|
$data[4] .= '<span style="">';
|
|
$typefile = array_pop(explode(".",$fileinfo['name']));
|
|
if (is_writable ($fileinfo['realpath']) &&
|
|
(! is_dir ($fileinfo['realpath']) || count (scandir ($fileinfo['realpath'])) < 3)) {
|
|
$data[4] .= '<form method="post" action="' . $url . '" style="display: inline;">';
|
|
$data[4] .= '<input type="image" src="images/cross.png" onClick="if (!confirm(\' '.__('Are you sure?').'\')) return false;">';
|
|
$data[4] .= html_print_input_hidden ('filename', $fileinfo['realpath'], true);
|
|
$data[4] .= html_print_input_hidden('hash', md5($fileinfo['realpath'] . $config['dbpass']), true);
|
|
$data[4] .= html_print_input_hidden ('delete_file', 1, true);
|
|
|
|
$relative_dir = str_replace($homedir_filemanager, '', str_replace("\\", "/", dirname($fileinfo['realpath'])));
|
|
if ($relative_dir[0] == '/') {
|
|
$relative_dir = substr($relative_dir, 1);
|
|
}
|
|
$hash2 = md5($relative_dir . $config['dbpass']);
|
|
|
|
$data[4] .= html_print_input_hidden ('directory', $relative_dir, true);
|
|
$data[4] .= html_print_input_hidden ('hash2', $hash2, true);
|
|
$data[4] .= '</form>';
|
|
|
|
if (($editor) && (!$readOnly)) {
|
|
if (($typefile != 'bin') && ($typefile != 'pdf') && ($typefile != 'png') && ($typefile != 'jpg') &&
|
|
($typefile != 'iso') && ($typefile != 'docx') && ($typefile != 'doc')) {
|
|
$hash = md5($fileinfo['realpath'] . $config['dbpass']);
|
|
$data[4] .= "<a style='vertical-align: top;' href='$url&edit_file=1&hash=" . $hash . "&location_file=" . $fileinfo['realpath'] . "' style='float: left;'>" . html_print_image('images/edit.png', true, array("style" => 'margin-top: 2px;', 'title' => __('Edit file'))) . "</a>";
|
|
}
|
|
}
|
|
}
|
|
if ((!$fileinfo['is_dir']) && ($download_button)) {
|
|
$hash = md5($fileinfo['realpath'] . $config['dbpass']);
|
|
$data[4] .= '<a href="include/get_file.php?file='.urlencode(base64_encode($fileinfo['realpath'])).'&hash=' . $hash . '" style="vertical-align: 25%;">';
|
|
$data[4] .= html_print_image('images/file.png', true);
|
|
$data[4] .= '</a>';
|
|
}
|
|
$data[4] .= '</span>';
|
|
|
|
array_push ($table->data, $data);
|
|
}
|
|
|
|
if (!$readOnly) {
|
|
if (is_writable ($real_directory)) {
|
|
//The buttons to make actions
|
|
|
|
if (defined("METACONSOLE"))
|
|
echo "<div style='text-align: left; width: " . $table->width . ";'>";
|
|
else
|
|
echo "<div style='text-align: right; width: " . $table->width . "; margin-bottom:5px;'>";
|
|
|
|
echo "<a href='javascript: show_form_create_folder();' style='margin-right: 3px; margin-bottom: 5px;'>";
|
|
echo html_print_image('images/create_directory.png', true,
|
|
array("title" => __('Create directory')));
|
|
echo "</a>";
|
|
|
|
echo "<a href='javascript: show_create_text_file();' style='margin-right: 3px; margin-bottom: 5px;'>";
|
|
echo html_print_image('images/create_file.png', true,
|
|
array("title" => __('Create text')));
|
|
echo "</a>";
|
|
|
|
echo "<a href='javascript: show_upload_file();'>";
|
|
echo html_print_image('images/upload_file.png', true,
|
|
array("title" => __('Upload file/s')));
|
|
echo "</a>";
|
|
|
|
echo "</div>";
|
|
}
|
|
else {
|
|
echo "<div style='text-align: right; width: " . $table->width . "; color:#AC4444;'>";
|
|
echo "<image src='images/info.png' />" . __('The directory is read-only');
|
|
echo "</div>";
|
|
}
|
|
}
|
|
html_print_table ($table);
|
|
}
|
|
|
|
/**
|
|
* Check if a directory is writable.
|
|
*
|
|
* @param string Directory path to check.
|
|
* @param bool If set, it will try to make the directory writeable if it's not.
|
|
*
|
|
* @param bool Wheter the directory is writeable or not.
|
|
*/
|
|
function filemanager_get_file_info ($filepath) {
|
|
global $config;
|
|
|
|
$realpath = realpath ($filepath);
|
|
$filepath = str_replace("\\", "/", $filepath); // Windows compatibility
|
|
|
|
$info = array ('mime' => MIME_UNKNOWN,
|
|
'mime_extend' => mime_content_type ($filepath),
|
|
'link' => 0,
|
|
'is_dir' => false,
|
|
'name' => basename ($realpath),
|
|
'url' => str_replace('//', '/', $config['homeurl'].str_ireplace ($config['homedir'], '', $realpath)),
|
|
'realpath' => $realpath,
|
|
'size' => filesize ($realpath),
|
|
'last_modified' => filemtime ($realpath)
|
|
);
|
|
|
|
$zip_mimes = array ('application/zip',
|
|
'application/x-rar-compressed',
|
|
'application/x-gzip',
|
|
'application/x-bzip2');
|
|
if (is_dir ($filepath)) {
|
|
$info['mime'] = MIME_DIR;
|
|
$info['is_dir'] = true;
|
|
$info['size'] = 0;
|
|
}
|
|
else if (strpos ($info['mime_extend'], 'image') !== false) {
|
|
$info['mime'] = MIME_IMAGE;
|
|
}
|
|
else if (in_array ($info['mime_extend'], $zip_mimes)) {
|
|
$info['mime'] = MIME_ZIP;
|
|
}
|
|
else if (strpos ($info['mime_extend'], 'text') !== false) {
|
|
$info['mime'] = MIME_TEXT;
|
|
}
|
|
|
|
return $info;
|
|
}
|
|
|
|
/**
|
|
* Check if a directory is writable.
|
|
*
|
|
* @param string Directory path to check.
|
|
* @param bool If set, it will try to make the directory writeable if it's not.
|
|
*
|
|
* @param bool Wheter the directory is writeable or not.
|
|
*/
|
|
function filemanager_list_dir ($dirpath) {
|
|
|
|
$dirpath = str_replace("\\", "/", $dirpath); // Windows compatibility
|
|
|
|
$files = array ();
|
|
$dirs = array ();
|
|
$dir = opendir ($dirpath);
|
|
while ($file = @readdir ($dir)) {
|
|
/* Ignore hidden files */
|
|
if ($file[0] == '.')
|
|
continue;
|
|
$info = filemanager_get_file_info ($dirpath.'/'.$file);
|
|
if ($info['is_dir']) {
|
|
$dirs[$file] = $info;
|
|
}
|
|
else {
|
|
$files[$file] = $info;
|
|
}
|
|
}
|
|
ksort ($files);
|
|
ksort ($dirs);
|
|
closedir ($dir);
|
|
|
|
return array_merge ($dirs, $files);
|
|
}
|
|
?>
|