protected function getInput()
{
$params = JUDownloadHelper::getParams();
$max_upload = ini_get('upload_max_filesize');
$src = JUri::root() . JUDownloadFrontHelper::getDirectory("collection_icon_directory", "media/com_judownload/images/collection/", true) . $this->value;
$html = "<div class=\"avatar\" style=\"float: left;\">";
if ($this->value) {
$html .= "<div class=\"clearfix\"><img src=\"" . $src . "\" width=\"" . $params->get('collection_icon_width', 100) . "px\" height=\"" . $params->get('collection_icon_height', 100) . "px\" /></div>";
$html .= "<label><input type=\"checkbox\" name=\"remove_icon\" value=\"1\" /> " . JText::_('COM_JUDOWNLOAD_REMOVE_ICON') . "</label>";
}
$html .= "<div class=\"clearfix\"><input type=\"file\" name=\"collection_icon\" id=\"" . $this->id . "\" />";
$html .= "<input type=\"hidden\" name=\"" . $this->name . "\" value=\"" . $this->value . "\" /></div>";
$html .= "<div class=\"clearfix\"><i>" . JText::_('COM_JUDOWNLOAD_MAX_UPLOAD_FILESIZE') . " <strong>" . JUDownloadHelper::formatBytes($this->convertBytes($max_upload)) . "</strong></i></div>";
$html .= "</div>";
return $html;
}
protected function getInput()
{
$params = JUDownloadHelper::getParams();
$max_upload = ini_get('upload_max_filesize');
if ($this->value) {
$src = JUri::root(true) . "/" . JUDownloadFrontHelper::getDirectory("avatar_directory", "media/com_judownload/images/avatar/", true) . $this->value;
} else {
$src = JUri::root(true) . "/" . JUDownloadFrontHelper::getDirectory("avatar_directory", "media/com_judownload/images/avatar/", true) . "default/" . $params->get('default_avatar', 'default-avatar.png');
}
$html = '<div class="avatar" style="float: left;">';
$html .= '<div class="clearfix"><img src="' . $src . '" alt="Avatar" style="width:' . $params->get("avatar_width", 120) . 'px; height:' . $params->get("avatar_height", 120) . 'px;" /></div>';
if ($this->value) {
$html .= '<label for="remove-avatar">' . JText::_("COM_JUDOWNLOAD_REMOVE_AVATAR") . ' <input id="remove-avatar" type="checkbox" name="remove_avatar" value="1" /></label>';
}
$html .= '<div class="clearfix"><input type="file" name="avatar" id="' . $this->id . '" />';
$html .= '<input type="hidden" name="' . $this->name . '" value="' . $this->value . '" /></div>';
$html .= '<div class="clearfix"><i>' . JText::_("COM_JUDOWNLOAD_MAX_UPLOAD_FILESIZE") . ' <strong>' . JUDownloadHelper::formatBytes($this->convertBytes($max_upload)) . '</strong></i></div>';
$html .= '</div>';
return $html;
}
?>
][rename]" id="file-name-<?php
echo $key;
?>
" class="file-name validate-filename required" type="text" value="<?php
echo $file['rename'];
?>
" placeholder="<?php
echo JText::_('COM_JUDOWNLOAD_FILE_NAME');
?>
"/>
<span class="file-size add-on" title="<?php
echo JText::_('COM_JUDOWNLOAD_MIME_TYPE') . ': ' . $file['mime_type'];
?>
"><?php
echo JUDownloadHelper::formatBytes($file['size']);
?>
</span>
<input type="hidden" name="judlfiles[<?php
echo $key;
?>
][size]" class="file-size-value" value="<?php
echo $file['size'];
?>
" />
</div>
<?php
if ($file['id']) {
?>
<div class="file-replace-uploader" style="display: none">
<div class="upload-message"><?php
public function getInput($fieldValue = null)
{
if (!$this->isPublished())
{
return "";
}
$this->loadDefaultAssets();
if (isset($this->doc) && $this->doc->cat_id)
{
$params = JUDownloadHelper::getParams($this->doc->cat_id);
}
else
{
$params = JUDownloadHelper::getParams(null, $this->doc_id);
}
$max_upload = ini_get('upload_max_filesize');
$max_upload = JUDownloadHelper::formatBytes(self::convertBytes($max_upload));
$value = !is_null($fieldValue) ? $fieldValue : $this->value;
$icon_src = JUDownloadHelper::getDocumentIcon($value);
$this->setAttribute("type", "file", "input");
if (!$this->value)
{
$this->addAttribute("class", "validate-images", "input");
$this->addAttribute("class", $this->getInputClass(), "input");
}
$this->setVariable('icon_src', $icon_src);
$this->setVariable('max_upload', $max_upload);
$this->setVariable('params', $params);
$this->setVariable('value', $value);
return $this->fetch('input.php', __CLASS__);
}
public static function getFilesByDocumentId($docId)
{
$db = JFactory::getDbo();
$query = $db->getQuery(true);
$query->select('*');
$query->from('#__judownload_files');
$query->where('doc_id = ' . $docId);
$query->where('published = 1');
$db->setQuery($query);
$files = $db->loadObjectList();
foreach ($files AS $key => $file)
{
$file->size = JUDownloadHelper::formatBytes($file->size);
$files[$key] = $file;
}
return $files;
}
public static function validateImageFile($file)
{
$app = JFactory::getApplication();
if (empty($file['name']))
{
return false;
}
if (!JFile::exists($file['tmp_name']))
{
$app->enqueueMessage(JText::_('COM_JUDOWNLOAD_FILE_NOT_FOUND'), 'error');
return false;
}
$format = strtolower(JFile::getExt($file['name']));
$executable = array(
'php', 'js', 'exe', 'phtml', 'java', 'perl', 'py', 'asp', 'dll', 'go', 'ade', 'adp', 'bat', 'chm', 'cmd', 'com', 'cpl', 'hta', 'ins', 'isp',
'jse', 'lib', 'mde', 'msc', 'msp', 'mst', 'pif', 'scr', 'sct', 'shb', 'sys', 'vb', 'vbe', 'vbs', 'vxd', 'wsc', 'wsf', 'wsh'
);
$explodedFileName = explode('.', $file['name']);
if (count($explodedFileName) > 2)
{
foreach ($executable AS $extensionName)
{
if (in_array($extensionName, $explodedFileName))
{
$app->enqueueMessage(JText::_('COM_JUDOWNLOAD_INVALID_FILE_TYPE'), 'error');
return false;
}
}
}
$params = JUDownloadHelper::getParams();
$allowable = $params->get('upload_extensions', 'bmp,gif,jpg,png');
$allowable = explode(',', strtolower(str_replace("\n", ",", trim($allowable))));
if ($format == '' || $format == false || (!in_array($format, $allowable)))
{
$app->enqueueMessage(JText::sprintf('COM_JUDOWNLOAD_INVALID_FILE_TYPE', $format), 'error');
return false;
}
$maxSize = (int) ($params->get('image_max_size', 400) * 1024);
$maxSizeFormatted = JUDownloadHelper::formatBytes($maxSize);
if ($maxSize > 0 && (int) $file['size'] > $maxSize)
{
$app->enqueueMessage(JText::sprintf('COM_JUDOWNLOAD_REACH_MAX_FILE_SIZE', $maxSizeFormatted), 'error');
return false;
}
$imgInfo = null;
if (!empty($file['tmp_name']))
{
if (($imgInfo = getimagesize($file['tmp_name'])) === false)
{
$app->enqueueMessage(JText::_('COM_JUDOWNLOAD_INVALID_IMAGE_FILE'), 'error');
return false;
}
}
else
{
$app->enqueueMessage(JText::sprintf('COM_JUDOWNLOAD_REACH_MAX_FILE_SIZE', $maxSizeFormatted), 'error');
return false;
}
$xss_check = JFile::read($file['tmp_name'], false, 256);
$html_tags = array('abbr', 'acronym', 'address', 'applet', 'area', 'audioscope', 'base', 'basefont', 'bdo', 'bgsound', 'big', 'blackface', 'blink', 'blockquote', 'body', 'bq', 'br', 'button', 'caption', 'center', 'cite', 'code', 'col', 'colgroup', 'comment', 'custom', 'dd', 'del', 'dfn', 'dir', 'div', 'dl', 'dt', 'em', 'embed', 'fieldset', 'fn', 'font', 'form', 'frame', 'frameset', 'h1', 'h2', 'h3', 'h4', 'h5', 'h6', 'head', 'hr', 'html', 'iframe', 'ilayer', 'img', 'input', 'ins', 'isindex', 'keygen', 'kbd', 'label', 'layer', 'legend', 'li', 'limittext', 'link', 'listing', 'map', 'marquee', 'menu', 'meta', 'multicol', 'nobr', 'noembed', 'noframes', 'noscript', 'nosmartquotes', 'object', 'ol', 'optgroup', 'option', 'param', 'plaintext', 'pre', 'rt', 'ruby', 's', 'samp', 'script', 'select', 'server', 'shadow', 'sidebar', 'small', 'spacer', 'span', 'strike', 'strong', 'style', 'sub', 'sup', 'table', 'tbody', 'td', 'textarea', 'tfoot', 'th', 'thead', 'title', 'tr', 'tt', 'ul', 'var', 'wbr', 'xml', 'xmp', '!DOCTYPE', '!--');
foreach ($html_tags AS $tag)
{
if (stristr($xss_check, '<' . $tag . ' ') || stristr($xss_check, '<' . $tag . '>'))
{
$app->enqueueMessage(JText::_('COM_JUDOWNLOAD_IEXSS_WARNING'), 'error');
return false;
}
}
return true;
}
<i class="fa fa-close"></i> <?php echo JText::_('COM_JUDOWNLOAD_PUBLISH'); ?>
<?php
}?>
</span>
<input type="hidden" name="judlfiles[<?php echo $key; ?>][published]" class="file-published-value" value="<?php echo $file['published'] ? 1 : 0 ?>" />
<span class="remove btn btn-mini" data-iconremove="fa fa-trash-o" data-iconunremove="fa fa-undo">
<i class="fa fa-trash-o"></i> <?php echo JText::_('COM_JUDOWNLOAD_DELETE'); ?>
</span>
<input type="hidden" name="judlfiles[<?php echo $key; ?>][remove]" class="file-remove-value" value="0" />
</div>
<div class="file-row">
<div class="file-name-info input-append">
<input name="judlfiles[<?php echo $key; ?>][rename]" id="file-name-<?php echo $key; ?>" class="file-name validate-filename required" type="text" value="<?php echo $file['rename'] ?>" placeholder="<?php echo JText::_('COM_JUDOWNLOAD_FILE_NAME'); ?>"/>
<span class="file-size add-on" title="<?php echo JText::_('COM_JUDOWNLOAD_MIME_TYPE') . ': ' . $file['mime_type']; ?>"><?php echo JUDownloadHelper::formatBytes($file['size']); ?></span>
<input type="hidden" name="judlfiles[<?php echo $key; ?>][size]" class="file-size-value" value="<?php echo $file['size']; ?>" />
</div>
<?php
if($file['id'])
{?>
<div class="file-replace-uploader" style="display: none">
<div class="upload-message"><?php echo JText::_("COM_JUDOWNLOAD_YOUR_BROWSER_DOESNT_HAVE_FLASH_SILVERLIGHT_OR_HTML5_SUPPORT"); ?></div>
<div class="upload-progress progress progress-striped active" style="margin-bottom: 5px;">
<div class="bar">
<div class="upload-file-name"></div>
</div>
</div>
<div class="file-replace-container">
<span class="pickfiles btn btn-mini"><i class="fa fa-plus"></i> <?php echo JText::_('COM_JUDOWNLOAD_SELECT_FILE'); ?></span>
<span class="uploadfiles disabled btn btn-mini"><i class="fa fa-upload"></i> <?php echo JText::_('COM_JUDOWNLOAD_UPLOAD'); ?></span>
public function filterField($values)
{
$oldImages = $values;
$app = JFactory::getApplication();
$newImages = $app->input->files->get('field_' . $this->id);
$gallery = $gallery['old'] = $gallery['new'] = array();
$params = JUDownloadHelper::getParams(null, $this->doc_id);
$maxUploadImage = 4;
$count = 0;
if ($this->doc_id)
{
$db = JFactory::getDbo();
$query = 'SELECT id FROM #__judownload_images WHERE doc_id = ' . (int) $this->doc_id;
$db->setQuery($query);
$imageIds = $db->loadColumn();
foreach ($oldImages AS $key => $image)
{
if (!in_array($image['id'], $imageIds))
{
continue;
}
if ($maxUploadImage > 0 && $count >= $maxUploadImage)
{
break;
}
$gallery['old'][] = $image;
if (!$image['remove'])
{
$count++;
}
}
}
$error = array();
if ($newImages && (($count < $maxUploadImage && $maxUploadImage > 0) || $maxUploadImage <= 0))
{
$legal_extensions = "jpeg,jpg,png,gif,bmp";
$legal_mime = "image/jpeg,image/pjpeg,image/png,image/gif,image/bmp,image/x-windows-bmp";
$image_min_width = $params->get("image_min_width", 50);
$image_min_height = $params->get("image_min_height", 50);
$image_max_width = $params->get("image_max_width", 1024);
$image_max_height = $params->get("image_max_height", 1024);
$image_max_size = $params->get("image_max_size", 400) * 1024;
$num_files_exceed_limit = 0;
$num_files_invalid_dimension = 0;
foreach ($newImages AS $image)
{
if ($image['name'])
{
$image['name'] = str_replace(' ', '_', JFile::makeSafe($image['name']));
if ($count >= $maxUploadImage)
{
$num_files_exceed_limit++;
continue;
}
if (!JUDownloadFrontHelperPermission::canUpload($image, $error, $legal_extensions, $image_max_size, true, $legal_mime, '', $legal_extensions))
{
continue;
}
$image_dimension = getimagesize($image['tmp_name']);
if ($image_dimension[0] < $image_min_width || $image_dimension[1] < $image_min_height || $image_dimension[0] > $image_max_width || $image_dimension[1] > $image_max_height)
{
$num_files_invalid_dimension++;
continue;
}
$gallery['new'][] = $image;
$count++;
}
}
$app = JFactory::getApplication();
if ($error)
{
foreach ($error AS $key => $count)
{
switch ($key)
{
case 'WARN_SOURCE':
case 'WARN_FILENAME':
case 'WARN_FILETYPE':
case 'WARN_FILETOOLARGE' :
case 'WARN_INVALID_IMG' :
case 'WARN_INVALID_MIME' :
case 'WARN_IEXSS' :
$error_str = JText::plural("COM_JUDOWNLOAD_N_FILE_" . $key, $count);
break;
}
$app->enqueueMessage($error_str, 'notice');
}
}
if ($num_files_exceed_limit)
{
$image_upload_limit = JUDownloadHelper::formatBytes($image_max_size * 1024);
$app->enqueueMessage(JText::plural('COM_JUDOWNLOAD_N_IMAGES_ARE_NOT_SAVED_BECAUSE_THEY_EXCEEDED_FILE_SIZE_LIMIT', $num_files_exceed_limit, $image_upload_limit), 'notice');
}
if ($num_files_invalid_dimension)
{
$app->enqueueMessage(JText::plural('COM_JUDOWNLOAD_N_IMAGES_ARE_NOT_SAVED_BECAUSE_THEY_ARE_NOT_VALID_DIMENSION', $num_files_invalid_dimension, $image_min_width, $image_max_width, $image_min_height, $image_max_height), 'notice');
}
}
$gallery['count'] = $count;
return $gallery;
}
