PageRenderTime 44ms CodeModel.GetById 36ms RepoModel.GetById 0ms app.codeStats 0ms

/ xvweb/file.php

http://xvweb.googlecode.com/
PHP | 182 lines | 155 code | 12 blank | 15 comment | 36 complexity | c1a84303ad6edf63ef709314568cf79d MD5 | raw file
Possible License(s): GPL-2.0, GPL-3.0, LGPL-3.0 
    

  1. <?php

    2. 

  2. /***************************************************************************

    3. 

  3. ****************   Bordeux.NET Project             *************************

    4. 

  4. ****************   File name :   file.php          *************************

    5. 

  5. ****************   Start     :   22.05.2007 r.     *************************

    6. 

  6. ****************   License   :   LGPL              *************************

    7. 

  7. ****************   Version   :   1.0               *************************

    8. 

  8. ****************   Authors   :   XVweb team        *************************

    9. 

  9. *************************XVweb Team*****************************************

    10. 

  10. 				Krzyszof Bednarczyk, meybe you

    11. 

  11. /////////////////////////////////////////////////////////////////////////////

    12. 

  12.  Klasa XVweb jest na licencji LGPL v3.0 ( GNU LESSER GENERAL PUBLIC LICENSE)

    13. 

  13. ****************http://www.gnu.org/licenses/lgpl-3.0.txt********************

    14. 

  14. 		Pe?na dokumentacja znajduje si? na stronie domowej projektu: 

    15. 

  15. *********************http://www.bordeux.NET/Xvweb***************************

    16. 

  16. ***************************************************************************/

    17. 

  17. header("Cache-Control: no-cache, must-revalidate");

    18. 

  18. if(!isset($XVwebEngine)){

    19. 

  19. 	header("location: http://".$_SERVER['HTTP_HOST']."/");

    20. 

  20. 	exit;

    21. 

  21. }

    22. 

  22. include_once(ROOT_DIR.'config'.DIRECTORY_SEPARATOR.'files.config.php');

    23. 

  23. 

    24. 

  24. $TMPFileDir = dirname(__FILE__).DIRECTORY_SEPARATOR.'tmp'.DIRECTORY_SEPARATOR;

    25. 

  25. $XVwebEngine->FilesClass()->Date['FilesDir'] = $UploadDir;

    26. 

  26. $IDFile = $XVwebEngine->GetFromURL($PathInfo, 2);

    27. 

  27. if(!empty($IDFile)){

    28. 

  28. 	if(!is_numeric($IDFile)){

    29. 

  29. 		header("location: ".$URLS['Script'].'System/BadIDFile/');

    30. 

  30. 		exit;

    31. 

  31. 	}

    32. 

  32. 	

    33. 

  33. 	

    34. 

  34. 	if(isset($_GET['Delete']) && $_GET['SIDCheck'] == $GLOBALS['XVwebEngine']->Session->GetSID()){

    35. 

  35. 		try {

    36. 

  36. 			$XVwebEngine->FilesClass()->DeleteFile($IDFile);

    37. 

  37. 		} catch (XVwebException $e) {

    38. 

  38. 			if($e->getCode() == 1) 

    39. 

  39. 			header("location: ".$URLS['Script'].'System/AccessDenied/'); else

    40. 

  40. 			header("location: ".$URLS['Script'].'System/Error/');

    41. 

  41. 			exit;

    42. 

  42. 		}

    43. 

  43. 		header("location: ".$URLS['Script'].'System/FileDeleted/');

    44. 

  44. 		exit;

    45. 

  45. 	}

    46. 

  46. 	function DetectType(){

    47. 

  47. 	global $FileInfo, $ctype, $IsImage, $viewFileHeader;

    48. 

  48. 			switch ($FileInfo['Extension']) {

    49. 

  49. 				case "pdf": $ctype="application/pdf"; break;

    50. 

  50. 				case "exe": $ctype="application/octet-stream"; break;

    51. 

  51. 				case "zip": $ctype="application/zip"; break;

    52. 

  52. 				case "doc": $ctype="application/msword"; break;

    53. 

  53. 				case "xls": $ctype="application/vnd.ms-excel"; break;

    54. 

  54. 				case "ppt": $ctype="application/vnd.ms-powerpoint"; break;

    55. 

  55. 				case "gif": $ctype="image/gif"; $IsImage= true; $viewFileHeader= ""; break; 

    56. 

  56. 				case "png": $ctype="image/png"; $IsImage= true; $viewFileHeader= ""; break;

    57. 

  57. 				case "bmp": $ctype="image/bmp"; $IsImage= true; $viewFileHeader= ""; break;

    58. 

  58. 				case "jpeg":$ctype="image/jpg"; $IsImage= true; $viewFileHeader= ""; break;

    59. 

  59. 				case "jpg": $ctype="image/jpg"; $IsImage= true; $viewFileHeader= "";break;

    60. 

  60. 				case "swf": $ctype="application/x-shockwave-flash"; $IsImage= true; $viewFileHeader= "";break;

    61. 

  61. 				default: $ctype="application/force-download";

    62. 

  62. 			}

    63. 

  63. 	}

    64. 

  64. 	if(($XVwebEngine->GetFromURL($PathInfo, 3))){

    65. 

  65. 	if(!xvPerm("DownloadFile")){

    66. 

  66. 		header("location: ".$URLS['Script'].'System/AccessDenied/?flag=DownloadFile');

    67. 

  67. 		exit;

    68. 

  68. 	}

    69. 

  69. 		$FileInfo = $XVwebEngine->FilesClass()->GetFile($IDFile, true);

    70. 

  70. 		if($XVwebEngine->Plugins()->Menager()->event("onPreDownload")) eval($XVwebEngine->Plugins()->Menager()->event("onPreDownload"));

    71. 

  71. 		

    72. 

  72. 		$viewFileHeader=" attachment;";

    73. 

  73. 		$IsImage = false;

    74. 

  74. 		if(isset($_GET['Download'])) $ctype="application/force-download"; else{

    75. 

  75. 				 DetectType();

    76. 

  76. 		}

    77. 

  77. 		$NameClassFile = 'XV_Files_'.$FileInfo['Server'];

    78. 

  78. 		if(!class_exists($NameClassFile)){

    79. 

  79. 			exit("Server not found: ".$FileInfo['Server']. ' . Please add in config.php '.$NameClassFile.' class');

    80. 

  80. 		}

    81. 

  81. 		$ClassFile = new $NameClassFile;

    82. 

  82. 		

    83. 

  83. 		$FileLocation = $ClassFile->download($FileInfo['MD5File'].$FileInfo['SHA1File']);

    84. 

  84. 		

    85. 

  85. 		@set_time_limit(0);

    86. 

  86. 		if($viewFileHeader=="" && $IsImage && ((isset($_GET['width']) && is_numeric($_GET['width'])) or (isset($_GET['height']) && is_numeric($_GET['height'])))){

    87. 

  87. 		$Old = $FileLocation;

    88. 

  88. 		$FileLocation = Cache_dir.$FileInfo['MD5File'].$FileInfo['SHA1File'].(isset($_GET['width']) ? $_GET['width'] :"").'x'.(isset($_GET['height']) ? $_GET['height'] :"").'.'.$FileInfo['Extension'];

    89. 

  89. 		if(!file_exists($FileLocation)){

    90. 

  90. 					include_once($LocationXVWeb.DIRECTORY_SEPARATOR.'libraries'.DIRECTORY_SEPARATOR.'ResizeImage.class.php');

    91. 

  91. 						$image = new SimpleImage();

    92. 

  92. 						$image->load($Old);

    93. 

  93. 						if(isset($_GET['height']))

    94. 

  94. 						$image->resizeToHeight($_GET['height']);

    95. 

  95. 						if(isset($_GET['width']))

    96. 

  96. 						$image->resizeToWidth($_GET['width']);

    97. 

  97. 						$image->save($FileLocation);					

    98. 

  98. 			}

    99. 

  99. 					

    100. 

  100. 		}

    101. 

  101. 		if($ctype == "application/zip"){

    102. 

  102. 		$Zip = $XVwebEngine->GetFromURL($PathInfo, 4);

    103. 

  103. 			if(!empty($Zip)){

    104. 

  104. 			$FileInZip = substr($PathInfo, strlen('/File/'.$XVwebEngine->GetFromURL($PathInfo, 2).'/'.$XVwebEngine->GetFromURL($PathInfo, 3).'/'), -1);

    105. 

  105. 			$ZipFileLoc = $FileLocation;

    106. 

  106. 			$FileInfo['MD5File'] = md5(('zip://' .$FileLocation. '#'.$FileInZip));

    107. 

  107. 			$FileLocation = (Cache_dir.$FileInfo['MD5File']);

    108. 

  108. 			if(!file_exists($FileLocation)){

    109. 

  109. 				if(!@file_put_contents($FileLocation , file_get_contents('zip://' .$ZipFileLoc. '#'.$FileInZip))){

    110. 

  110. 					header("location: ".$URLS['Script'].'System/BadIDFile/');

    111. 

  111. 					exit;

    112. 

  112. 					}

    113. 

  113. 				}

    114. 

  114. 

    115. 

  115. 			$FileInfo['Extension'] = pathinfo($FileInZip, PATHINFO_EXTENSION);

    116. 

  116. 			$FileInfo['FileName'] = pathinfo($FileInZip, PATHINFO_FILENAME );

    117. 

  117. 			

    118. 

  118. 				DetectType();

    119. 

  119. 			}

    120. 

  120. 		}

    121. 

  121. 		ob_clean();

    122. 

  122. 		header("Pragma: public");

    123. 

  123. 		header("Expires: Sat, 26 Jul 2012 05:00:00 GMT");

    124. 

  124. 		header("Etag: ".$FileInfo['MD5File']); 

    125. 

  125. 		header("Cache-Control: maxage=50000, post-check=0, pre-check=0");

    126. 

  126. 		header("Cache-Control: private",false);

    127. 

  127. 		header("Content-Type: ".$ctype);

    128. 

  128. 		header("Content-Disposition:".$viewFileHeader." filename=\"".$FileInfo['FileName'].'.'.$FileInfo['Extension']."\";");

    129. 

  129. 		header("Content-Transfer-Encoding: binary");

    130. 

  130. 		header("Content-Length: ".filesize($FileLocation));

    131. 

  131. 		$DownloadRate = $XVwebEngine->Config("config")->find('config downloadlimit')->text();

    132. 

  132. 		if(!empty($DownloadRate) && $DownloadRate != 0){

    133. 

  133. 		flush();

    134. 

  134. 		$file = fopen($FileLocation , "r");    

    135. 

  135. 				while(!feof($file)) {

    136. 

  136. 					print fread($file, round($DownloadRate * 1024));    

    137. 

  137. 					flush();

    138. 

  138. 					sleep(1);    

    139. 

  139. 				}    

    140. 

  140. 		fclose($file);

    141. 

  141. 	}else {

    142. 

  142. 			@readfile($FileLocation ) or die($Language['Error']);

    143. 

  143. 		}

    144. 

  144. 		exit;

    145. 

  145. 

    146. 

  146. 	}

    147. 

  147. 	$FileInfo = $XVwebEngine->FilesClass()->GetFile($IDFile);

    148. 

  148. 	if(is_null($FileInfo["ID"])){

    149. 

  149. 			header("location: ".$URLS['Script'].'System/BadIDFile/');

    150. 

  150. 			exit;

    151. 

  151. 	}

    152. 

  152. 	

    153. 

  153. 	$FileInfo['FileSize'] = $XVwebEngine->FilesClass()->size_comp($FileInfo['FileSize']);

    154. 

  154. 	$Smarty->assign('File', $FileInfo);

    155. 

  155. 	$Smarty->assign('FileInfo', true);

    156. 

  156. 	$Smarty->assign('IntervalTime', sprintf($Language['IntervalTime'], ($XVwebEngine->FilesClass()->Date['CacheTime'] / 60) ));

    157. 

  157. 	$Smarty->display('file_show.tpl');

    158. 

  158. 	exit;

    159. 

  159. }

    160. 

  160. 

    161. 

  161. if(isset($_GET['SendFile']) && is_array($_FILES['UploadForm'])){

    162. 

  162. 		if(!(xvPerm('AddFile'))){ 

    163. 

  163. 			header("location: ".$URLS['Script'].'System/AccessDenied/');

    164. 

  164. 			exit;

    165. 

  165. 		}

    166. 

  166. 	$SaveFiles = array();

    167. 

  167. 	foreach ($_FILES['UploadForm']['tmp_name'] as $Key=>$TMPLocation){

    168. 

  168. 		$strUploadDir = $TMPFileDir . $_FILES['UploadForm']['name'][$Key];

    169. 

  169. 		if(move_uploaded_file($TMPLocation, $strUploadDir ) )

    170. 

  170. 			$SaveFiles[] = $XVwebEngine->FilesClass()->AddFile($strUploadDir); else

    171. 

  171. 			$SaveFiles[] =  array("Result"=>"Failed");

    172. 

  172. 		if($XVwebEngine->Plugins()->Menager()->event("onUploadFile")) eval($XVwebEngine->Plugins()->Menager()->event("onUploadFile"));

    173. 

  173. 	}

    174. 

  174. 	unset($TMPLocation);

    175. 

  175. 	$Smarty->assign('ViewCode', true);

    176. 

  176. 	$Smarty->assign('FileList', $SaveFiles);

    177. 

  177. 	$Smarty->display('file_show.tpl');

    178. 

  178. 	exit;

    179. 

  179. }

    180. 

  180. $Smarty->assign('UploadForm', true);

    181. 

  181. $Smarty->display('file_show.tpl');

    182. 

  182. ?>
    183.