if (!zerolen($fileurl)) { if (strpos($fileurl, "/") === 0) { $fileurl = $http_location . $fileurl; } elseif (!is_url($fileurl)) { $fileurl = "http://" . $fileurl; } $tmp['file_path'] = $fileurl; $tmp['is_copied'] = false; $tmp['source'] = 'U'; $data[] = $tmp; } } } if (is_array($data)) { foreach ($data as $k => $val) { if (isset($val['file_path']) && !cw_is_allowed_file($val['file_path']) || !isset($val['file_path']) || zerolen($val['file_path'])) { if ($val['is_copied']) { @unlink($val['file_path']); } unset($data[$k]); continue; } list($val['file_size'], $val['image_x'], $val['image_y'], $val['image_type']) = cw_get_image_size($val['file_path']); if ($val['file_size'] == 0) { if ($data['is_copied']) { unlink($val['file_path']); } unset($data[$k]); continue; } if (!isset($val['filename'])) {
function cw_allow_file($file, $is_root = false) { global $app_dir, $customer_id, $current_area, $var_dirs; if (empty($file) || !cw_is_allowed_file($file)) { return false; } if (!is_url($file)) { $dir = $app_dir; if (!$is_root) { if ($current_area == "A") { $dir = $var_dirs['files']; } elseif ($current_area == "P" || $current_area == 'A') { $dir = $var_dirs['files'] . DIRECTORY_SEPARATOR . $customer_id; } else { $dir = $var_dirs['files']; } } $file = cw_allowed_path($dir, $file); } return $file; }