ini_set("display_errors", 0); // set 1 to show errors /** * AUTH SHOULD BE DONE HERE !!!! */ //!!!! CHANGE THIS !!!!!! AND THEN ajax.php $session_id = session_id() ? session_id() : $_COOKIE["PHPSESSID"]; if (session_start()) { $_SESSION['session_id'] = $session_id; $_SESSION['user_auth'] = true; } $auth = false; if ($_SESSION['user']['level'] && $_SESSION['user']['level'] <= 1) { $auth = true; require 'EncriptDecript.php'; $ed = new EncriptDecript(); $encripted_session_id = $ed->encript($session_id); } if (!$auth) { die("You are not allowed to be here !!!"); } //------------------------------------------------------------ //PLUGIN PATH defined('PLUGIN_PATH') || define('PLUGIN_PATH', realpath(dirname(__FILE__) . DIRECTORY_SEPARATOR . '..')); //LIBS PATH defined('LIBS_PATH') || define('LIBS_PATH', realpath(dirname(__FILE__))); //ENCRIPTED SESSION ID defined('ENCRIPTED_SESSION_ID') || define('ENCRIPTED_SESSION_ID', $encripted_session_id); //!!!! CHANGE THIS !!!!!! // WEB BASE DIRECTORY defined('WEB_BASE') || define('WEB_BASE', 'uploads');
<?php /** * @name Ajax Rquests * @copyright Darius Matulionis * @author Darius Matulionis <*****@*****.**> */ //UPLOADIFY SESSION AUTH //!!!! CHANGE THIS IF NEDED!!!!!! if (!empty($_FILES) && isset($_FILES['Filedata']) && $_REQUEST['hash']) { require 'EncriptDecript.php'; $ed = new EncriptDecript(); $session_id = $ed->decript($_REQUEST['hash']); $_COOKIE['PHPSESSID'] = $session_id; session_id($session_id); session_start(); $_SESSION['user_auth'] = true; } require_once 'config.php'; require_once 'FilesHandler.php'; $filesHandler = new FilesHandler(); //FILES UPLOAD UPLOADIFY if (!empty($_FILES) && isset($_FILES['Filedata'])) { $tempFile = $_FILES['Filedata']['tmp_name']; $sub_dircetory = null; if ($_REQUEST['dir']) { $sub_dircetory = $_REQUEST['dir'] . "/"; } $targetPath = UPLOADS_PATH . DIRECTORY_SEPARATOR . $sub_dircetory; $targetFile = str_replace('//', '/', $targetPath) . $_FILES['Filedata']['name']; move_uploaded_file($tempFile, $targetFile);