<?php
if (!isset($_GET['uh'])) {
die('Invalid link');
}
$_SERVER['REMOTE_USER'] = base64_decode($_GET['uh']);
require_once dirname(__FILE__) . "/../../php/util.php";
require_once dirname(__FILE__) . "/../filemanager/flm.class.php";
include dirname(__FILE__) . '/share.class.php';
$f = new FSHARE();
if (!isset($_GET['s']) || !isset($f->data[$_GET['s']]) || $f->data[$_GET['s']]['expire'] < time()) {
die('No such file or it expired');
}
function authenticate()
{
header('WWW-Authenticate: Basic realm="LEAVE USERNAME EMPTY!! Password only!"');
header('HTTP/1.0 401 Unauthorized');
echo "Not permitted\n";
exit;
}
if (!isset($_SERVER['PHP_AUTH_USER']) || $_SERVER['PHP_AUTH_PW'] != $f->data[$_GET['s']]['password']) {
authenticate();
} else {
$f->workdir = '';
$f->send_file($f->data[$_GET['s']]['file']);
}
<?php
require_once dirname(__FILE__) . "/../../php/cache.php";
require_once dirname(__FILE__) . "/../filemanager/flm.class.php";
include dirname(__FILE__) . '/share.class.php';
include dirname(__FILE__) . '/conf.php';
if (!isset($_POST['action'])) {
die('Invalid action');
}
$f = new FSHARE();
switch ($f->postlist['action']) {
case 'list':
$f->show();
break;
case 'del':
$f->del($f->postlist['target']);
$f->show();
break;
case 'add':
$f->add($f->postlist['file'], $f->postlist['target'], $f->postlist['to']);
$f->show();
break;
case 'edit':
$f->edit($f->postlist['file'], $f->postlist['target'], $f->postlist['to']);
$f->show();
break;
default:
die('Invalid action');
}