function DoResponse() { if (!isset($_GET['Command']) || !isset($_GET['Type']) || !isset($_GET['CurrentFolder'])) { return; } // Get the main request informaiton. $sCommand = $_GET['Command']; $sResourceType = $_GET['Type']; $sCurrentFolder = $_GET['CurrentFolder']; // Check if it is an allowed type. if (!in_array($sResourceType, array('File', 'Image', 'Flash', 'Media'))) { return; } // Check the current folder syntax (must begin and start with a slash). if (!ereg('/$', $sCurrentFolder)) { $sCurrentFolder .= '/'; } if (strpos($sCurrentFolder, '/') !== 0) { $sCurrentFolder = '/' . $sCurrentFolder; } // File Upload doesn't have to Return XML, so it must be intercepted before anything. if ($sCommand == 'FileUpload') { FileUpload($sResourceType, $sCurrentFolder); return; } // Prevent the browser from caching the result. // Date in the past header('Expires: Mon, 26 Jul 1997 05:00:00 GMT'); // always modified header('Last-Modified: ' . gmdate('D, d M Y H:i:s') . ' GMT'); // HTTP/1.1 header('Cache-Control: no-store, no-cache, must-revalidate'); header('Cache-Control: post-check=0, pre-check=0', false); // HTTP/1.0 header('Pragma: no-cache'); // Set the response format. header('Content-Type:text/xml; charset=utf-8'); CreateXmlHeader($sCommand, $sResourceType, $sCurrentFolder); // Execute the required command. switch ($sCommand) { case 'GetFolders': GetFolders($sResourceType, $sCurrentFolder); break; case 'GetFoldersAndFiles': GetFoldersAndFiles($sResourceType, $sCurrentFolder); break; case 'CreateFolder': CreateFolder($sResourceType, $sCurrentFolder); break; } CreateXmlFooter(); exit; }
function DoResponse() { global $Config; if (!isset($_GET)) { global $_GET; } if (!isset($_GET['Command']) || !isset($_GET['Type']) || !isset($_GET['CurrentFolder'])) { return; } // Get the main request informaiton. $sCommand = $_GET['Command']; $sResourceType = $_GET['Type']; $sCurrentFolder = GetCurrentFolder(); // Check if it is an allowed command if (!IsAllowedCommand($sCommand)) { SendError(1, 'Команда "' . $sCommand . '" недоступна'); } // Check if it is an allowed type. if (!IsAllowedType($sResourceType)) { SendError(1, 'Неверный тип'); } // File Upload doesn't have to Return XML, so it must be intercepted before anything. if ($sCommand == 'FileUpload') { FileUpload($sResourceType, $sCurrentFolder, $sCommand); return; } CreateXmlHeader($sCommand, $sResourceType, $sCurrentFolder); // Execute the required command. switch ($sCommand) { case 'GetFolders': GetFolders($sResourceType, $sCurrentFolder); break; case 'GetFoldersAndFiles': GetFoldersAndFiles($sResourceType, $sCurrentFolder); break; case 'CreateFolder': CreateFolder($sResourceType, $sCurrentFolder); break; case 'FileDelete': if ($Config['Delete']) { FileDelete($sResourceType, $sCurrentFolder, $sCommand); } break; case 'FolderDelete': if ($Config['Delete']) { FolderDelete($sResourceType, $sCurrentFolder, $sCommand); } break; } CreateXmlFooter(); exit; }
function DoResponse() { if (!isset($_GET)) { global $_GET; } if (!isset($_GET['Command']) || !isset($_GET['Type']) || !isset($_GET['CurrentFolder'])) { return; } // Get the main request informaiton. $sCommand = urlencode($_GET['Command']); $sResourceType = urlencode($_GET['Type']); $sCurrentFolder = GetCurrentFolder(); // Check if it is an allowed command if (!IsAllowedCommand($sCommand)) { SendError(1, 'FileBrowserError_Command' . ';;' . $sCommand); } // Check if it is an allowed type. if (!IsAllowedType($sResourceType)) { SendError(1, 'FileBrowserError_Type' . ';;' . $sResourceType); } // File Upload doesn't have to Return XML, so it must be intercepted before anything. if ($sCommand == 'FileUpload') { FileUpload($sResourceType, $sCurrentFolder, $sCommand); return; } if ($sCommand == 'GetDwfckNs') { GetDwfckNs(); return; } CreateXmlHeader($sCommand, $sResourceType, $sCurrentFolder); // Execute the required command. switch ($sCommand) { case 'GetFolders': GetFolders($sResourceType, $sCurrentFolder); break; case 'GetFoldersAndFiles': GetFoldersAndFiles($sResourceType, $sCurrentFolder); break; case 'CreateFolder': CreateFolder($sResourceType, $sCurrentFolder); break; case 'UnlinkFile': UnlinkFile($sResourceType, $sCurrentFolder, $sCommand, $_GET['file']); break; } CreateXmlFooter(); exit; }
function DoResponse() { if (!isset($_GET)) { global $_GET; } if ( !isset( $_GET['Command'] ) || !isset( $_GET['Type'] ) || !isset( $_GET['CurrentFolder'] ) ) return ; // Get the main request informaiton. $sCommand = $_GET['Command'] ; $sResourceType = $_GET['Type'] ; $sCurrentFolder = GetCurrentFolder() ; // Check if it is an allowed command if ( ! IsAllowedCommand( $sCommand ) ) SendError( 1, 'The "' . $sCommand . '" command isn\'t allowed' ) ; // Check if it is an allowed type. if ( !IsAllowedType( $sResourceType ) ) SendError( 1, 'Invalid type specified' ) ; // File Upload doesn't have to Return XML, so it must be intercepted before anything. if ( $sCommand == 'FileUpload' ) { FileUpload( $sResourceType, $sCurrentFolder, $sCommand ) ; return ; } CreateXmlHeader( $sCommand, $sResourceType, $sCurrentFolder ) ; // Execute the required command. switch ( $sCommand ) { case 'GetFolders' : GetFolders( $sResourceType, $sCurrentFolder ) ; break ; case 'GetFoldersAndFiles' : GetFoldersAndFiles( $sResourceType, $sCurrentFolder ) ; break ; case 'CreateFolder' : CreateFolder( $sResourceType, $sCurrentFolder ) ; break ; } CreateXmlFooter() ; exit ; }
function DoResponse() { if (!isset($_GET)) { global $_GET; } if (!isset($_GET['Command']) || !isset($_GET['Type']) || !isset($_GET['CurrentFolder'])) { return; } //require_once(GetRootPath() . '\\conlive_8_12\\site\\config\\project.php'); //$con = new Project(); $f = fopen("cok2.txt", "w"); fprintf($f, $_SESSION['em']); // Get the main request informaiton. $sCommand = $_GET['Command']; $sResourceType = $_GET['Type']; $sCurrentFolder = GetCurrentFolder(); // Check if it is an allowed command if (!IsAllowedCommand($sCommand)) { SendError(1, 'The "' . $sCommand . '" command isn\'t allowed'); } // Check if it is an allowed type. if (!IsAllowedType($sResourceType)) { SendError(1, 'Invalid type specified'); } // File Upload doesn't have to Return XML, so it must be intercepted before anything. if ($sCommand == 'FileUpload') { FileUpload($sResourceType, $sCurrentFolder, $sCommand); return; } CreateXmlHeader($sCommand, $sResourceType, $sCurrentFolder); // Execute the required command. switch ($sCommand) { case 'GetFolders': GetFolders($sResourceType, $sCurrentFolder); break; case 'GetFoldersAndFiles': GetFoldersAndFiles($sResourceType, $sCurrentFolder); break; case 'CreateFolder': CreateFolder($sResourceType, $sCurrentFolder); break; } CreateXmlFooter(); exit; }
function DoResponse() { if (!isset($_GET['Command']) || !isset($_GET['Type']) || !isset($_GET['CurrentFolder'])) { return; } // Get the main request informaiton. $sCommand = $_GET['Command']; $sResourceType = $_GET['Type']; $sCurrentFolder = $_GET['CurrentFolder']; // Check if it is an allowed type. if (!in_array($sResourceType, array('File', 'Image', 'Flash', 'Media'))) { return; } // Check the current folder syntax (must begin and start with a slash). if (!ereg('/$', $sCurrentFolder)) { $sCurrentFolder .= '/'; } if (strpos($sCurrentFolder, '/') !== 0) { $sCurrentFolder = '/' . $sCurrentFolder; } // Check for invalid folder paths (..) if (strpos($sCurrentFolder, '..')) { SendError(102, ""); } // File Upload doesn't have to Return XML, so it must be intercepted before anything. if ($sCommand == 'FileUpload') { FileUpload($sResourceType, $sCurrentFolder); return; } CreateXmlHeader($sCommand, $sResourceType, $sCurrentFolder); // Execute the required command. switch ($sCommand) { case 'GetFolders': GetFolders($sResourceType, $sCurrentFolder); break; case 'GetFoldersAndFiles': GetFoldersAndFiles($sResourceType, $sCurrentFolder); break; case 'CreateFolder': CreateFolder($sResourceType, $sCurrentFolder); break; } CreateXmlFooter(); exit; }
function DoResponse() { if (!isset($_GET)) { global $_GET; } if (!isset($_GET['Command']) || !isset($_GET['Type']) || !isset($_GET['CurrentFolder'])) { return; } $sCommand = $_GET['Command']; $sResourceType = $_GET['Type']; $sCurrentFolder = GetCurrentFolder(); if (!IsAllowedCommand($sCommand)) { SendError(1, 'The "' . $sCommand . '" command isn\'t allowed'); } if (!IsAllowedType($sResourceType)) { SendError(1, 'Invalid type specified'); } if ($sCommand == 'FileUpload') { FileUpload($sResourceType, $sCurrentFolder, $sCommand); return; } CreateXmlHeader($sCommand, $sResourceType, $sCurrentFolder); switch ($sCommand) { case 'GetFolders': GetFolders($sResourceType, $sCurrentFolder); break; case 'GetFoldersAndFiles': GetFoldersAndFiles($sResourceType, $sCurrentFolder); break; case 'CreateFolder': CreateFolder($sResourceType, $sCurrentFolder); break; } CreateXmlFooter(); exit; }
function UnlinkFile($resourceType, $currentFolder, $sCommand, $filename) { global $Config; global $Dwfck_conf_values; $move = false; $sServerDir = ServerMapFolder($resourceType, $currentFolder, 'GetFoldersAndFiles'); if (preg_match('/^(.*?)\\/(.*?)$/', $filename, $matches)) { $move = true; $sMoveDir = $sServerDir; $sMoveDir .= dwiki_encodeFN($matches[1]); $sMoveDir = rtrim($sMoveDir, '/'); $filename = $matches[2]; mkdir_rek($sMoveDir); if (preg_match('/secure$/', $sMoveDir)) { if (!file_exists($sMoveDir . '/' . '.htaccess')) { copy('htaccess', $sMoveDir . '/' . '.htaccess'); } } $moveFile = $sMoveDir . '/' . dwiki_encodeFN($filename); } else { if ($Dwfck_conf_values['fnencode'] == 'url' || $Config['osWindows'] && !isset($Dwfck_conf_values['fnencode'])) { $sServerDir = encode_dir($sServerDir); } } $unlinkFile = $sServerDir . dwiki_encodeFN($filename); if ($Config['osWindows']) { $unlinkFile = normalizeWIN($unlinkFile); } if ($move) { if ($Config['osWindows']) { $moveFile = normalizeWIN($moveFile); } if (rename($unlinkFile, $moveFile)) { return GetFoldersAndFiles($resourceType, $currentFolder); } else { $sErrorNumber = '205'; echo '<Error number="' . $sErrorNumber . '" />'; return; } } if (file_exists($unlinkFile) && unlink($unlinkFile)) { return GetFoldersAndFiles($resourceType, $currentFolder); } else { $sErrorNumber = '204'; echo '<Error number="' . $sErrorNumber . '" />'; } }
} if (substr($sCurrentFolder, 0, 1) !== '/') { $sCurrentFolder = '/' . $sCurrentFolder; } // Execute the required command. switch ($sCommand) { case 'FileUpload': FileUpload($sCurrentFolder); break; case 'DeleteFile': CreateXmlHeader('DeleteFile', $sCurrentFolder); DeleteFile($sCurrentFolder, $sType); CreateXmlFooter(); break; case 'GetFoldersAndFiles': CreateXmlHeader('GetFoldersAndFiles', $sCurrentFolder); GetFoldersAndFiles($sCurrentFolder, $sType); CreateXmlFooter(); break; case 'CreateFolder': CreateXmlHeader('CreateFolder', $sCurrentFolder); CreateFolder($sCurrentFolder, $sType); CreateXmlFooter(); break; default: case 'GetFolders': CreateXmlHeader('GetFolders', $sCurrentFolder); GetFolders($sCurrentFolder, $sType); CreateXmlFooter(); break; }