public function update_thumbnail()
{
if ($this->validateAction()) {
$fp = new Permissions($this->file);
if ($fp->canEditFileProperties()) {
$this->file->getVersionToModify();
$sr = new FileEditResponse();
$sr->setFile($this->file);
$sr->setMessage(t('File updated successfully.'));
$sr->outputJSON();
} else {
throw new Exception(t('Access Denied.'));
}
} else {
throw new Exception(t('Access Denied.'));
}
}
public function submit()
{
$requestSets = array();
if (is_array($this->request->request->get('fsID'))) {
$requestSets = $this->request->request->get('fsID');
}
if ($this->validateAction()) {
$sets = Set::getMySets();
foreach ($sets as $set) {
$fsp = new \Permissions($set);
if (in_array($set->getFileSetID(), $requestSets) && $fsp->canAddFile($this->file) && !$this->file->inFileSet($set)) {
// This was checked and it wasn't in the file set previously
$set->addFileToSet($this->file);
}
if ($this->file->inFileSet($set) && !in_array($set->getFileSetID(), $requestSets) && $fsp->canAddFile($this->file)) {
// This was not checked but it used to be in the set.
$set->removeFileFromSet($this->file);
}
}
}
$fsNew = $this->request->request->get('fsNew');
$fsNewShare = $this->request->request->get('fsNewShare');
if (is_array($fsNew)) {
foreach ($fsNew as $i => $name) {
if ($name) {
$type = $fsNewShare[$i] == 1 ? Set::TYPE_PUBLIC : Set::TYPE_PRIVATE;
$fs = Set::createAndGetSet($fsNew[$i], $type);
$fs->addFileToSet($this->file);
}
}
}
$response = new EditResponse();
$response->setFile($this->file);
$response->setMessage(t('File sets updated successfully.'));
$response->outputJSON();
}
if (!$resp instanceof \Concrete\Core\File\Version) {
$errorCode = $resp;
} else {
if (!is_object($fr)) {
// we check $fr because we don't want to set it if we are replacing an existing file
$respf = $resp->getFile();
$respf->setOriginalPage($_POST['ocID']);
} else {
$respf = $fr;
}
}
} else {
$errorCode = $_FILES['Filedata']['error'];
}
} else {
if (isset($_FILES['Filedata'])) {
// first, we check for validate upload token. If the posting of a file fails because of
// post_max_size then this may not even be set, leading to misleading errors
$error->add($valt->getErrorMessage());
} else {
$errorCode = FileImporter::E_PHP_FILE_ERROR_DEFAULT;
}
}
if ($errorCode > -1) {
$error->add(FileImporter::getErrorMessage($errorCode));
}
$r->setError($error);
if (is_object($respf)) {
$r->setFile($respf);
}
$r->outputJSON();
defined('C5_EXECUTE') or die("Access Denied.");
use Concrete\Core\File\EditResponse as FileEditResponse;
use Concrete\Core\File\StorageLocation\StorageLocation as FileStorageLocation;
$u = new User();
$form = Loader::helper('form');
$ih = Loader::helper('concrete/ui');
$fileID = $_REQUEST['fID'];
$f = File::getByID($fileID);
$token = Core::make('token');
$cp = new Permissions($f);
if (!$cp->canAdmin()) {
die(t("Access Denied."));
}
$form = Loader::helper('form');
$r = new FileEditResponse();
$r->setFile($f);
if ($_POST['task'] == 'set_password') {
if (!$token->validate('set_password_' . $fileID)) {
die(t('Invalid CSRF Token.'));
}
$f->setPassword($_POST['fPassword']);
$r->setMessage(t('File password saved successfully.'));
$r->outputJSON();
}
if ($_POST['task'] == 'set_location') {
if (!$token->validate('set_location_' . $fileID)) {
die(t('Invalid CSRF Token.'));
}
$fsl = FileStorageLocation::getByID($_POST['fslID']);
if (is_object($fsl)) {
try {
public function save()
{
if ($this->validateAction()) {
$fp = new Permissions($this->file);
if ($fp->canEditFileProperties()) {
$fv = $this->file->getVersionToModify();
$value = $this->request->request->get('value');
switch ($this->request->request->get('name')) {
case 'fvTitle':
$fv->updateTitle($value);
break;
case 'fvDescription':
$fv->updateDescription($value);
break;
case 'fvTags':
$fv->updateTags($value);
break;
}
$sr = new FileEditResponse();
$sr->setFile($this->file);
$sr->setMessage(t('File updated successfully.'));
$sr->setAdditionalDataAttribute('value', $value);
$sr->outputJSON();
} else {
throw new Exception(t('Access Denied.'));
}
} else {
throw new Exception(t('Access Denied.'));
}
}
