public function update_thumbnail() { if ($this->validateAction()) { $fp = new Permissions($this->file); if ($fp->canEditFileProperties()) { $this->file->getVersionToModify(); $sr = new FileEditResponse(); $sr->setFile($this->file); $sr->setMessage(t('File updated successfully.')); $sr->outputJSON(); } else { throw new Exception(t('Access Denied.')); } } else { throw new Exception(t('Access Denied.')); } }
public function submit() { $requestSets = array(); if (is_array($this->request->request->get('fsID'))) { $requestSets = $this->request->request->get('fsID'); } if ($this->validateAction()) { $sets = Set::getMySets(); foreach ($sets as $set) { $fsp = new \Permissions($set); if (in_array($set->getFileSetID(), $requestSets) && $fsp->canAddFile($this->file) && !$this->file->inFileSet($set)) { // This was checked and it wasn't in the file set previously $set->addFileToSet($this->file); } if ($this->file->inFileSet($set) && !in_array($set->getFileSetID(), $requestSets) && $fsp->canAddFile($this->file)) { // This was not checked but it used to be in the set. $set->removeFileFromSet($this->file); } } } $fsNew = $this->request->request->get('fsNew'); $fsNewShare = $this->request->request->get('fsNewShare'); if (is_array($fsNew)) { foreach ($fsNew as $i => $name) { if ($name) { $type = $fsNewShare[$i] == 1 ? Set::TYPE_PUBLIC : Set::TYPE_PRIVATE; $fs = Set::createAndGetSet($fsNew[$i], $type); $fs->addFileToSet($this->file); } } } $response = new EditResponse(); $response->setFile($this->file); $response->setMessage(t('File sets updated successfully.')); $response->outputJSON(); }
if (!$resp instanceof \Concrete\Core\File\Version) { $errorCode = $resp; } else { if (!is_object($fr)) { // we check $fr because we don't want to set it if we are replacing an existing file $respf = $resp->getFile(); $respf->setOriginalPage($_POST['ocID']); } else { $respf = $fr; } } } else { $errorCode = $_FILES['Filedata']['error']; } } else { if (isset($_FILES['Filedata'])) { // first, we check for validate upload token. If the posting of a file fails because of // post_max_size then this may not even be set, leading to misleading errors $error->add($valt->getErrorMessage()); } else { $errorCode = FileImporter::E_PHP_FILE_ERROR_DEFAULT; } } if ($errorCode > -1) { $error->add(FileImporter::getErrorMessage($errorCode)); } $r->setError($error); if (is_object($respf)) { $r->setFile($respf); } $r->outputJSON();
defined('C5_EXECUTE') or die("Access Denied."); use Concrete\Core\File\EditResponse as FileEditResponse; use Concrete\Core\File\StorageLocation\StorageLocation as FileStorageLocation; $u = new User(); $form = Loader::helper('form'); $ih = Loader::helper('concrete/ui'); $fileID = $_REQUEST['fID']; $f = File::getByID($fileID); $token = Core::make('token'); $cp = new Permissions($f); if (!$cp->canAdmin()) { die(t("Access Denied.")); } $form = Loader::helper('form'); $r = new FileEditResponse(); $r->setFile($f); if ($_POST['task'] == 'set_password') { if (!$token->validate('set_password_' . $fileID)) { die(t('Invalid CSRF Token.')); } $f->setPassword($_POST['fPassword']); $r->setMessage(t('File password saved successfully.')); $r->outputJSON(); } if ($_POST['task'] == 'set_location') { if (!$token->validate('set_location_' . $fileID)) { die(t('Invalid CSRF Token.')); } $fsl = FileStorageLocation::getByID($_POST['fslID']); if (is_object($fsl)) { try {
public function save() { if ($this->validateAction()) { $fp = new Permissions($this->file); if ($fp->canEditFileProperties()) { $fv = $this->file->getVersionToModify(); $value = $this->request->request->get('value'); switch ($this->request->request->get('name')) { case 'fvTitle': $fv->updateTitle($value); break; case 'fvDescription': $fv->updateDescription($value); break; case 'fvTags': $fv->updateTags($value); break; } $sr = new FileEditResponse(); $sr->setFile($this->file); $sr->setMessage(t('File updated successfully.')); $sr->setAdditionalDataAttribute('value', $value); $sr->outputJSON(); } else { throw new Exception(t('Access Denied.')); } } else { throw new Exception(t('Access Denied.')); } }