PageRenderTime 43ms CodeModel.GetById 18ms RepoModel.GetById 1ms app.codeStats 0ms

/modules/fileman/admin/fileman_file_upload.php

https://gitlab.com/alexprowars/bitrix
PHP | 215 lines | 194 code | 20 blank | 1 comment | 34 complexity | 24a0981c4ea0aeba07080cf4fe9072e1 MD5 | raw file
    

  1. <?
    2. 

  2. require_once($_SERVER["DOCUMENT_ROOT"]."/bitrix/modules/main/include/prolog_admin_before.php");
    3. 

  3. require_once($_SERVER["DOCUMENT_ROOT"]."/bitrix/modules/fileman/prolog.php");
    4. 

  4. 

  5. if (!$USER->CanDoOperation('fileman_upload_files'))
    6. 

  6. 	$APPLICATION->AuthForm(GetMessage("ACCESS_DENIED"));
    7. 

  7. require_once($_SERVER["DOCUMENT_ROOT"]."/bitrix/modules/fileman/include.php");
    8. 

  8. IncludeModuleLangFile(__FILE__);
    9. 

  9. $addUrl = 'lang='.LANGUAGE_ID.($logical == "Y"?'&logical=Y':'');
    10. 

  10. 

  11. $strWarning = "";
    12. 

  12. 

  13. $io = CBXVirtualIo::GetInstance();
    14. 

  14. 

  15. $site = CFileMan::__CheckSite($site);
    16. 

  16. $DOC_ROOT = CSite::GetSiteDocRoot($site);
    17. 

  17. 

  18. $path = $io->CombinePath("/", $path);
    19. 

  19. $arPath = Array($site, $path);
    20. 

  20. $arParsedPath = CFileMan::ParsePath($arPath, true, false, "", $logical == "Y");
    21. 

  21. $abs_path = $DOC_ROOT.$path;
    22. 

  22. 

  23. $bCan = false;
    24. 

  24. 

  25. // Check permissions
    26. 

  26. if(!$USER->CanDoFileOperation('fm_upload_file',$arPath))
    27. 

  27. 	$strWarning = GetMessage("ACCESS_DENIED");
    28. 

  28. else
    29. 

  29. {
    30. 

  30. 	$bCan = true;
    31. 

  31. 	if($REQUEST_METHOD=="POST" && $save <> '' && check_bitrix_sessid())
    32. 

  32. 	{
    33. 

  33. 		$nums = intval($nums);
    34. 

  34. 		if($nums > 0)
    35. 

  35. 		{
    36. 

  36. 			for($i = 1; $i <= $nums; $i++)
    37. 

  37. 			{
    38. 

  38. 				$arFile = $_FILES["file_".$i];
    39. 

  39. 				if($arFile["name"] == '' || $arFile["tmp_name"]=="none")
    40. 

  40. 					continue;
    41. 

  41. 

  42. 				$arFile["name"] = CFileman::GetFileName($arFile["name"]);
    43. 

  43. 				$filename = ${"filename_".$i};
    44. 

  44. 				if($filename == '')
    45. 

  45. 					$filename = $arFile["name"];
    46. 

  46. 

  47. 				$pathto = Rel2Abs($path, $filename);
    48. 

  48. 				if(!$USER->CanDoFileOperation('fm_upload_file',Array($site, $pathto)))
    49. 

  49. 				{
    50. 

  50. 					$strWarning .= GetMessage("FILEMAN_FILEUPLOAD_ACCESS_DENIED")." \"".$pathto."\"\n";
    51. 

  51. 				}
    52. 

  52. 				elseif($arFile["error"] == 1 || $arFile["error"] == 2)
    53. 

  53. 				{
    54. 

  54. 					$strWarning .= GetMessage("FILEMAN_FILEUPLOAD_SIZE_ERROR", Array('#FILE_NAME#' => $pathto))."\n";
    55. 

  55. 				}
    56. 

  56. 				elseif(($mess = CFileMan::CheckFileName(str_replace('/', '', $pathto))) !== true)
    57. 

  57. 				{
    58. 

  58. 					$strWarning .= $mess.".\n";
    59. 

  59. 				}
    60. 

  60. 				else if($io->FileExists($DOC_ROOT.$pathto))
    61. 

  61. 				{
    62. 

  62. 					$strWarning .= GetMessage("FILEMAN_FILEUPLOAD_FILE_EXISTS1")." \"".$pathto."\" ".GetMessage("FILEMAN_FILEUPLOAD_FILE_EXISTS2").".\n";
    63. 

  63. 				}
    64. 

  64. 				elseif(!$USER->IsAdmin() && (HasScriptExtension($pathto) || mb_substr(CFileman::GetFileName($pathto), 0, 1) == "."))
    65. 

  65. 				{
    66. 

  66. 					$strWarning .= GetMessage("FILEMAN_FILEUPLOAD_PHPERROR")." \"".$pathto."\".\n";
    67. 

  67. 				}
    68. 

  68. 				else
    69. 

  69. 				{
    70. 

  70. 					$bQuota = true;
    71. 

  71. 					if (COption::GetOptionInt("main", "disk_space") > 0)
    72. 

  72. 					{
    73. 

  73. 						$f = $io->GetFile($arFile["tmp_name"]);
    74. 

  74. 						$bQuota = false;
    75. 

  75. 						$size = $f->GetFileSize();
    76. 

  76. 						$quota = new CDiskQuota();
    77. 

  77. 						if ($quota->checkDiskQuota(array("FILE_SIZE" => $size)))
    78. 

  78. 							$bQuota = true;
    79. 

  79. 					}
    80. 

  80. 

  81. 					if ($bQuota)
    82. 

  82. 					{
    83. 

  83. 						if(!$io->Copy($arFile["tmp_name"], $DOC_ROOT.$pathto))
    84. 

  84. 							$strWarning .= GetMessage("FILEMAN_FILEUPLOAD_FILE_CREATE_ERROR")." \"".$pathto."\"\n";
    85. 

  85. 						elseif(COption::GetOptionInt("main", "disk_space") > 0)
    86. 

  86. 							CDiskQuota::updateDiskQuota("file", $size, "copy");
    87. 

  87. 						$f = $io->GetFile($DOC_ROOT.$pathto);
    88. 

  88. 						$f->MarkWritable();
    89. 

  89. 						$module_id = 'fileman';
    90. 

  90. 						if(COption::GetOptionString($module_id, "log_page", "Y")=="Y")
    91. 

  91. 						{
    92. 

  92. 							$res_log['path'] = mb_substr($pathto, 1);
    93. 

  93. 							CEventLog::Log(
    94. 

  94. 								"content",
    95. 

  95. 								"FILE_ADD",
    96. 

  96. 								"main",
    97. 

  97. 								"",
    98. 

  98. 								serialize($res_log)
    99. 

  99. 							);
    100. 

  100. 						}
    101. 

  101. 					}
    102. 

  102. 					else
    103. 

  103. 						$strWarning .= $quota->LAST_ERROR."\n";
    104. 

  104. 				}
    105. 

  105. 			}
    106. 

  106. 		}
    107. 

  107. 

  108. 		if($strWarning == '')
    109. 

  109. 		{
    110. 

  110. 			if (!empty($_POST["apply"]))
    111. 

  111. 				LocalRedirect("/bitrix/admin/fileman_file_upload.php?".$addUrl."&site=".$site."&path=".UrlEncode($path));
    112. 

  112. 			else
    113. 

  113. 				LocalRedirect("/bitrix/admin/fileman_admin.php?".$addUrl."&site=".$site."&path=".UrlEncode($path));
    114. 

  114. 		}
    115. 

  115. 	}
    116. 

  116. }
    117. 

  117. 

  118. foreach ($arParsedPath["AR_PATH"] as $chainLevel)
    119. 

  119. {
    120. 

  120. 	$adminChain->AddItem(
    121. 

  121. 		array(
    122. 

  122. 			"TEXT" => htmlspecialcharsex($chainLevel["TITLE"]),
    123. 

  123. 			"LINK" => (($chainLevel["LINK"] <> '') ? $chainLevel["LINK"] : ""),
    124. 

  124. 		)
    125. 

  125. 	);
    126. 

  126. }
    127. 

  127. 

  128. $APPLICATION->SetTitle(GetMessage("FILEMAN_FILE_UPLOAD_TITLE"));
    129. 

  129. require($_SERVER["DOCUMENT_ROOT"]."/bitrix/modules/main/include/prolog_admin_after.php");
    130. 

  130. ?>
    131. 

  131. 

  132. <?CAdminMessage::ShowMessage($strWarning);?>
    133. 

  133. 

  134. <?if($strWarning == '' || $bCan):?>
    135. 

  135. 	<script>
    136. 

  136. 	function NewFileName(ob)
    137. 

  137. 	{
    138. 

  138. 		var
    139. 

  139. 			str_filename,
    140. 

  140. 			filename,
    141. 

  141. 			str_file = ob.value,
    142. 

  142. 			num = ob.name;
    143. 

  143. 

  144. 		num  = num.substr(num.lastIndexOf("_")+1);
    145. 

  145. 		str_file = str_file.replace(/\\/g, '/');
    146. 

  146. 		filename = str_file.substr(str_file.lastIndexOf("/")+1);
    147. 

  147. 		document.ffilemanupload["filename_"+num].value = filename;
    148. 

  148. 		if(document.ffilemanupload.nums.value==num)
    149. 

  149. 		{
    150. 

  150. 			num++;
    151. 

  151. 			var tbl = BX("bx-upload-tbl");
    152. 

  152. 			var cnt = tbl.rows.length;
    153. 

  153. 			var oRow = tbl.insertRow(cnt);
    154. 

  154. 			var oCell = oRow.insertCell(0);
    155. 

  155. 			oCell.className = "adm-detail-content-cell-l";
    156. 

  156. 			oCell.innerHTML = '<input type="text" name="filename_'+num+'" size="30" maxlength="255" value="">';
    157. 

  157. 			var oCell = oRow.insertCell(1);
    158. 

  158. 			oCell.className = "adm-detail-content-cell-r";
    159. 

  159. 			oCell.innerHTML = '<input type="file" name="file_'+num+'" size="30" maxlength="255" value="" onChange="NewFileName(this)">';
    160. 

  160. 

  161. 			document.ffilemanupload.nums.value = num;
    162. 

  162. 		}
    163. 

  163. 

  164. 		BX.adminPanel.modifyFormElements(BX("bx-upload-tbl"));
    165. 

  165. 	}
    166. 

  166. 	</script>
    167. 

  167. 	<form method="POST" action="<?echo $APPLICATION->GetCurPage()."?".$addUrl."&site=".$site."&path=".UrlEncode($path);?>" name="ffilemanupload" enctype="multipart/form-data">
    168. 

  168. 	<input type="hidden" name="logical" value="<?=htmlspecialcharsbx($logical)?>">
    169. 

  169. 	<?echo GetFilterHiddens("filter_");?>
    170. 

  170. 	<input type="hidden" name="save" value="Y">
    171. 

  171. 	<?=bitrix_sessid_post()?>
    172. 

  172. 

  173. 	<?
    174. 

  174. 	$aTabs = array(
    175. 

  175. 		array("DIV" => "edit1", "TAB" => GetMessage('FILEMAN_UPL_TAB'), "ICON" => "fileman", "TITLE" => GetMessage('FILEMAN_UPL_TAB_ALT')),
    176. 

  176. 	);
    177. 

  177. 	$tabControl = new CAdminTabControl("tabControl", $aTabs, true, true);
    178. 

  178. 	$tabControl->Begin();
    179. 

  179. 	$tabControl->BeginNextTab();
    180. 

  180. 	?>
    181. 

  181. 

  182. 	<tr><td colspan="2" align="left">
    183. 

  183. 		<input type="hidden" name="nums" value="5">
    184. 

  184. 		<table id="bx-upload-tbl">
    185. 

  185. 			<tr class="heading">
    186. 

  186. 				<td style="text-align: right!important;" width="40%">
    187. 

  187. 					<span style="display: inline-block; width: 200px; text-align: left;"><?= GetMessage("FILEMAN_FILEUPLOAD_NAME")?></span>
    188. 

  188. 				</td>
    189. 

  189. 				<td style="text-align: left!important;" width="60%">
    190. 

  190. 					<?= GetMessage("FILEMAN_FILEUPLOAD_FILE")?>
    191. 

  191. 				</td class="adm-detail-content-cell-r">
    192. 

  192. 			</tr>
    193. 

  193. 		<?for($i=1; $i<=5; $i++):?>
    194. 

  194. 			<tr>
    195. 

  195. 			<td class="adm-detail-content-cell-l">
    196. 

  196. 				<input type="text" name="filename_<?echo $i?>" size="30" maxlength="255" value="">
    197. 

  197. 			</td>
    198. 

  198. 			<td class="adm-detail-content-cell-r">
    199. 

  199. 				<input type="file" name="file_<?echo $i?>" size="30" maxlength="255" value="" onChange="NewFileName(this)">
    200. 

  200. 			</td>
    201. 

  201. 			</tr>
    202. 

  202. 		<?endfor?>
    203. 

  203. 	</table></td></tr>
    204. 

  204. 	<?$tabControl->EndTab();
    205. 

  205. 	$tabControl->Buttons(
    206. 

  206. 		array(
    207. 

  207. 			"disabled" => false,
    208. 

  208. 			"back_url" => "/bitrix/admin/fileman_admin.php?".$addUrl."&site=".$site."&path=".UrlEncode($path)
    209. 

  209. 		)
    210. 

  210. 	);
    211. 

  211. 	$tabControl->End();
    212. 

  212. 	?>
    213. 

  213. 	</form>
    214. 

  214. <?endif;?>
    215. 

  215. <?require($_SERVER["DOCUMENT_ROOT"]."/bitrix/modules/main/include/epilog_admin.php");?>
    216.