Файловый менеджер

Файловый менеджер - Редактировать - /home/harasnat/www/sommer/administrator/components/com_jdownloads/src/Controller/UploadsController.php

Назад
<?php /** * @package jDownloads * @version 4.0 * @copyright (C) 2007 - 2022 - Arno Betz - www.jdownloads.com * @license http://www.gnu.org/copyleft/gpl.html GNU/GPL, see LICENSE.txt * * jDownloads is distributed in the hope that it will be useful, * but WITHOUT ANY WARRANTY; without even the implied warranty of * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the * GNU General Public License for more details. / / # Parts from this script are original from the component com_mediamu and are only modified to use it with jDownloads: # ------------------------------------------------------------------------ @author Ljubisa - ljufisha.blogspot.com @copyright Copyright (C) 2012 ljufisha.blogspot.com. All Rights Reserved. @license - http://www.gnu.org/licenses/gpl-3.0.html GNU/GPL Technical Support: http://ljufisha.blogspot.com / namespace JDownloads\Component\JDownloads\Administrator\Controller; \defined( '_JEXEC' ) or die; define("COM_MEDIAMU_DEBUG", false); use Joomla\CMS\Language\Text; use Joomla\CMS\Router\Route; use Joomla\CMS\Factory; use Joomla\CMS\MVC\Controller\AdminController; use Joomla\CMS\MVC\Model\BaseDatabaseModel; use Joomla\CMS\Session\Session; use Joomla\CMS\Filesystem\File; use Joomla\CMS\Filesystem\Folder; use Joomla\CMS\Component\ComponentHelper; use Joomla\CMS\MVC\Controller\BaseController; use Joomla\CMS\Filesystem\Path; use JDownloads\Component\JDownloads\Administrator\Helper\JDownloadsHelper; /* * jDownloads plupload Controller * / class UploadsController extends AdminController { /* * Constructor * / function __construct() { parent::__construct(); } /* * * File upload handler * * @return string JSON response / public function upload() { $params = ComponentHelper::getParams('com_jdownloads'); $files_uploaddir = $params->get('files_uploaddir'); $app = Factory::getApplication(); // 5 minutes execution time @set_time_limit(5 60); //enable valid json response when debugging is disabled if (!COM_MEDIAMU_DEBUG) { error_reporting(0); } $session = $app->getSession(); $user = $app->getIdentity(); $cleanupTargetDir = true; //remove old files $maxFileAge = 5 * 3600; // Temp file age in seconds //directory for file upload $targetDirWithSep = $files_uploaddir . '/'; //check for snooping $targetDirCleaned = Path::check($targetDirWithSep); //finally $targetDir = $targetDirCleaned; // Get parameters $chunk = $app->input->get('chunk', 0, 'request'); $chunks = $app->input->get('chunks', 0, 'request'); //current file name $fileNameFromReq = $app->input->get('name', '', 'request'); // Clean the fileName for security reasons $fileName = File::makeSafe($fileNameFromReq); //check file extension $ext_images = $params->get('plupload_image_file_extensions'); $ext_other = $params->get('plupload_other_file_extensions'); //prepare extensions for validation $exts = $ext_images . ',' . $ext_other; $exts_lc = strtolower($exts); $exts_arr = explode(',', $exts_lc); //check token if (!$session->checkToken('request')) { $this->_setResponse(400, Text::_('JINVALID_TOKEN')); } //check user perms if (!$user->authorise('core.create', 'com_jdownloads')) { $this->_setResponse(400, Text::_('COM_JDOWNLOADS_ERROR_PERM_DENIDED')); } //directory check if (!file_exists($targetDir) && !is_dir($targetDir) && strpos(COM_MEDIAMU_BASE_ROOT, $targetDir) !== false) { $this->_setResponse(100, Text::_('COM_JDOWNLOADS_ERROR_UPLOAD_INVALID_PATH')); } //file type check if (!in_array(strtolower(File::getExt($fileName)), $exts_arr)) { $this->_setResponse(100, Text::_('COM_JDOWNLOADS_ERROR_UPLOAD_INVALID_FILE_EXTENSION')); } if (!in_array(File::getExt($fileName), $exts_arr)) { $this->_setResponse(100, Text::_('COM_JDOWNLOADS_ERROR_UPLOAD_INVALID_FILE_EXTENSION')); } // Make sure the fileName is unique but only if chunking is disabled if ($chunks < 2 && file_exists($targetDir . '/' . $fileName)) { $ext = strrpos($fileName, '.'); $fileName_a = substr($fileName, 0, $ext); $fileName_b = substr($fileName, $ext); $count = 1; while (file_exists($targetDir . '/' . $fileName_a . '_' . $count . $fileName_b)) { $count++; } $fileName = $fileName_a . '_' . $count . $fileName_b; } $filePath = $targetDir . '/' . $fileName; // Remove old temp files if ($cleanupTargetDir && ($dir = opendir($targetDir))) { while (($file = readdir($dir)) !== false) { $tmpfilePath = $targetDir . '/' . $file; // Remove temp file if it is older than the max age and is not the current file if (preg_match('/\.part$/', $file) && (filemtime($tmpfilePath) < time() - $maxFileAge) && ($tmpfilePath != "{$filePath}.part")) { File::delete($tmpfilePath); } } closedir($dir); } else { $this->_setResponse(100, 'Failed to open temp directory.'); } // Look for the content type header if (isset($_SERVER["HTTP_CONTENT_TYPE"])) { $contentType = $_SERVER["HTTP_CONTENT_TYPE"]; } if (isset($_SERVER["CONTENT_TYPE"])) { $contentType = $_SERVER["CONTENT_TYPE"]; } // Handle non multipart uploads older WebKit versions didn't support multipart in HTML5 if (strpos($contentType, "multipart") !== false) { if (isset($_FILES['file']['tmp_name']) && is_uploaded_file($_FILES['file']['tmp_name'])) { // Open temp file $out = fopen("{$filePath}.part", $chunk == 0 ? "wb" : "ab"); if ($out) { // Read binary input stream and append it to temp file $in = fopen($_FILES['file']['tmp_name'], "rb"); if ($in) { while ($buff = fread($in, 4096)) { fwrite($out, $buff); } } else { $this->_setResponse (101, "Failed to open input stream."); } fclose($in); fclose($out); File::delete($_FILES['file']['tmp_name']); } else { $this->_setResponse (102, "Failed to open output stream."); } } else { $this->_setResponse (103, "Failed to move uploaded file"); } } else { // Open temp file $out = fopen("{$filePath}.part", $chunk == 0 ? "wb" : "ab"); if ($out) { // Read binary input stream and append it to temp file $in = fopen("php://input", "rb"); if ($in) { while ($buff = fread($in, 4096)) { fwrite($out, $buff); } } else { $this->_setResponse (101, "Failed to open input stream."); } fclose($in); fclose($out); } else { $this->_setResponse (102, "Failed to open output stream."); } } // Check if file has been uploaded if (!$chunks \|\| $chunk == $chunks - 1) { // Strip the temp .part suffix off @rename("{$filePath}.part", $filePath); } $this->_setResponse(0, null, false); } /** * * Set the JSON response and exists script * * @param int $code Error Code * @param string $msg Error Message * @param bool $error */ private function _setResponse($code, $msg = null, $error = true) { if($error) { $jsonrpc = array ( "error" => 1, "code" => $code, "msg" => $msg ); } else { $jsonrpc = array ( "error" => 0, "code" => $code, "msg" => "File uploaded!" ); } die(json_encode($jsonrpc)); } public function files() { // set redirect $this->setRedirect( 'index.php?option=com_jdownloads&view=files'); } public function downloads() { // set redirect $this->setRedirect( 'index.php?option=com_jdownloads&view=downloads'); } } ?>

| ver. 1.4 | Github | .